last executing test programs: 7.538434251s ago: executing program 4: r0 = socket(0xa, 0x1, 0x0) setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x100000011, @multicast2, 0x0, 0x0, 'lc\x00'}, 0x2c) setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000000)={0x11, @multicast1, 0x0, 0x0, 'lblcr\x00'}, 0x2c) 7.131861411s ago: executing program 4: syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000005600)='./bus\x00', 0x8, &(0x7f0000000a40)={[{@autodefrag}, {@enospc_debug}, {@max_inline={'max_inline', 0x3d, [0x54]}}, {@datasum}, {@clear_cache}, {@ssd}, {@noenospc_debug}, {@barrier}, {@nospace_cache}, {@thread_pool={'thread_pool', 0x3d, 0x7}}]}, 0x1, 0x55a3, &(0x7f0000005680)="$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") open(&(0x7f0000002000)='./bus\x00', 0x143142, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000240)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0}) syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000100)='.\x00', 0x1a4243c, &(0x7f0000000c80)=ANY=[@ANYRES16=r3, @ANYRES8, @ANYRES8, @ANYBLOB="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", @ANYRESHEX, @ANYRESOCT, @ANYRES64=r4, @ANYRES32=r1, @ANYRES8=r2, @ANYRES8=0x0], 0x1, 0x0, &(0x7f0000000000)) 6.820594056s ago: executing program 3: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETOFFLOAD(r0, 0xc004743e, 0x20001400) ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x8008743f, 0x20000002) 6.377833661s ago: executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000800)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @geneve={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GENEVE_DF={0x5, 0xd, 0x5}]}}}]}, 0x3c}}, 0x0) 5.905131789s ago: executing program 3: r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0) ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r0, 0x7a6, 0x0) 5.563164525s ago: executing program 3: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000380)=[@in6={0xa, 0x0, 0x0, @remote}], 0x1c) sendto$inet6(r0, &(0x7f00000003c0)='?', 0x1, 0x0, &(0x7f0000000080)={0xa, 0x0, 0x0, @private2}, 0x1c) setsockopt(r0, 0x84, 0x7f, &(0x7f0000000140)="0200000009800089", 0x8) 4.978165801s ago: executing program 2: syz_mount_image$udf(&(0x7f0000000400), &(0x7f0000000a80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000001c0)=ANY=[], 0x1, 0x4b1, &(0x7f0000001200)="$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") mkdir(0x0, 0x0) syz_mount_image$fuse(0x0, &(0x7f0000000e80)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, 0x0, 0x0, 0x0, 0x0) creat(&(0x7f0000000d00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) syz_mount_image$fuse(0x0, &(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 4.367222024s ago: executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000540), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000880)={0x14, r1, 0x1}, 0x14}}, 0x0) 4.298717157s ago: executing program 2: r0 = socket$tipc(0x1e, 0x2, 0x0) getsockopt$TIPC_CONN_TIMEOUT(r0, 0x10f, 0x82, 0xffffffffffffffff, 0x0) 3.876312953s ago: executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0) r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x206, 0x8401) ioctl$USBDEVFS_ALLOW_SUSPEND(r2, 0x5522) ioctl$USBDEVFS_BULK(r2, 0x5523, 0x0) ioctl$USBDEVFS_FORBID_SUSPEND(r2, 0x5521) 3.642598776s ago: executing program 2: r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0) ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r0, 0x7b1, 0x0) 3.211586096s ago: executing program 2: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000080)='kfree\x00', r0}, 0x10) r1 = io_uring_setup(0x1bd3, &(0x7f0000000000)) io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000300)=""/4095, 0x440000}], 0x1000000000000209) 2.957216077s ago: executing program 0: syz_genetlink_get_family_id$devlink(&(0x7f0000000180), 0xffffffffffffffff) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0) mmap(&(0x7f0000002000/0x2000)=nil, 0x2000, 0x0, 0x2012, r0, 0x0) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) msgsnd(0x0, &(0x7f0000000180)=ANY=[], 0x2000, 0x0) 2.869326991s ago: executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000038c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000004440)=@base={0x10, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x48) 2.712432959s ago: executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(0x0, 0x0, 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='./file0/../file0/../file0\x00', 0x0, 0x201000, 0x0) unshare(0x4020400) r0 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00') ppoll(&(0x7f0000000280)=[{r0}], 0x1, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000040)='./file0/../file0/../file0\x00', &(0x7f0000000100)='devpts\x00', 0x0, 0x0) 2.450992584s ago: executing program 4: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000380)=[@in6={0xa, 0x0, 0x0, @remote}], 0x1c) sendto$inet6(r0, &(0x7f00000003c0)='?', 0x1, 0x0, &(0x7f0000000080)={0xa, 0x0, 0x0, @private2}, 0x1c) setsockopt(r0, 0x84, 0x7f, &(0x7f0000000140)="0200000009800089", 0x8) 2.245091614s ago: executing program 0: syz_mount_image$udf(&(0x7f0000000400), &(0x7f0000000a80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000001c0)=ANY=[], 0x1, 0x4b1, &(0x7f0000001200)="$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") mkdir(&(0x7f0000000000)='./control\x00', 0x0) syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) creat(&(0x7f0000000d00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) syz_mount_image$fuse(0x0, &(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 2.223135994s ago: executing program 1: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETOFFLOAD(r0, 0xc004743e, 0x20001400) ioctl$TUNSETOFFLOAD(r0, 0x8008743f, 0x0) 2.07100433s ago: executing program 2: syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00') preadv(r1, &(0x7f0000001380)=[{&(0x7f0000000380)=""/4096, 0x1000}], 0x1, 0x0, 0x0) syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0) 1.670721988s ago: executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000540), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000880)={0x14, r1, 0x1}, 0x14}}, 0x0) 1.643144408s ago: executing program 0: r0 = socket$tipc(0x1e, 0x2, 0x0) getsockopt$TIPC_CONN_TIMEOUT(r0, 0x10f, 0x82, 0xffffffffffffffff, 0x0) 1.515122573s ago: executing program 2: syz_mount_image$jfs(&(0x7f0000000200), &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="646973636172642c71756f74612c6572726f72733d72656d6f756e742d726f2c696f636861727365743d6d61637475726b6973682c6572726f72733d72656d6f756e742d726f2c71756f74612c696f636861727365743d6d616363726f617469616e006572726f72733d72656d6f756e742d726f2c75737271756f74612c4f72726f72733d72656d6f756e742d726f2c726573697a653d3078666666666666666666666666666666652c6572726f72733d636f6e74696e75652c726573697a652c646973636172642c61707072616973652c7375626a5f757365723d21952c7375626a5f726f6c653d726573697a652c00"], 0x1, 0x61ae, &(0x7f0000007640)="$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") chdir(&(0x7f0000000140)='./file0\x00') 1.213913609s ago: executing program 4: syz_mount_image$vfat(&(0x7f0000003880), &(0x7f0000000040)='./file1\x00', 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="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"], 0x6, 0x29f, &(0x7f00000008c0)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x7a05, 0x1700) write$cgroup_subtree(r0, &(0x7f00000003c0)=ANY=[], 0x7) write$cgroup_pid(r1, &(0x7f0000000500), 0x12) 1.152476532s ago: executing program 0: syz_mount_image$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00') r1 = open(&(0x7f0000000a40)='./bus\x00', 0x141a42, 0x0) sendfile(r1, r0, 0x0, 0x100801701) 1.134405543s ago: executing program 1: syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x8008, &(0x7f0000000500)=ANY=[@ANYRES32, @ANYRESHEX, @ANYRESOCT, @ANYRESHEX=0x0, @ANYRES16, @ANYRES8, @ANYBLOB="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", @ANYRES16, @ANYRESDEC, @ANYRES64=0x0], 0xf, 0xa8, &(0x7f0000000140)="$eJzs1zFqAkEUBuC3GxK2TRdIkXqb3MGjiKU2YqUIXsGLeBWPsL2FxbYijugOiGitIt9XvOH/h4Fp33q3+l3WEWkRkeqf8SZdFNPZsD+anGfwlsp8VhHx993lba/rinzftPNB037cPv660wEAAC+rjP/rfEi52OctMOLzNLLq0R8EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeLJjAAAA//83Ayl0") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) getdents64(r0, 0x0, 0x0) 690.412354ms ago: executing program 1: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000038c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000004440)=@base={0x10, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x48) 533.166173ms ago: executing program 0: socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000100)=ANY=[@ANYBLOB="740000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000004c0012800c0001006d6163766c616e003c00028008000100100000001c0005800a000400aaaaaaaaaabb00000a000400d8928afb7028000008000300030000000a000400aaaaaaaaaabb000008000500", @ANYRES32], 0x74}}, 0x0) 416.196865ms ago: executing program 4: r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r2) sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x1c, r3, 0x1, 0x0, 0x0, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r1}]}, 0x1c}}, 0x0) write$nci(r0, 0x0, 0x0) 289.445947ms ago: executing program 1: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000080)='kfree\x00', r0}, 0x10) r1 = io_uring_setup(0x1bd3, &(0x7f0000000000)) io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000300)=""/4095, 0x440000}], 0x1000000000000209) 0s ago: executing program 0: syz_emit_vhci(&(0x7f0000000340)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x0, 0x0, 0x2019}}}, 0x7) kernel console output (not intermixed with test programs): 41.545826][ T6617] loop2: rw=0, sector=12, nr_sectors = 4 limit=0 [ 341.559540][ T6617] FAT-fs (loop2): unable to read inode block for updating (i_pos 203) [ 341.983274][ T6624] loop4: detected capacity change from 0 to 16 [ 342.053820][ T3012] hsr_slave_0: left promiscuous mode [ 342.055656][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 342.065998][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 342.081684][ T6624] erofs: (device loop4): erofs_read_inode: unsupported chunk format 7fff of nid 36 [ 342.118261][ T3012] hsr_slave_1: left promiscuous mode [ 342.170549][ T3012] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 342.178376][ T3012] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 342.233648][ T3012] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 342.241629][ T3012] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 342.302773][ T5091] syz-executor.2: attempt to access beyond end of device [ 342.302773][ T5091] loop2: rw=0, sector=12, nr_sectors = 4 limit=0 [ 342.325689][ T5091] FAT-fs (loop2): Directory bread(block 3) failed [ 342.378320][ T3012] veth1_macvtap: left promiscuous mode [ 342.384264][ T3012] veth0_macvtap: left promiscuous mode [ 342.390341][ T3012] veth1_vlan: left promiscuous mode [ 342.484426][ T5091] syz-executor.2: attempt to access beyond end of device [ 342.484426][ T5091] loop2: rw=0, sector=0, nr_sectors = 4 limit=0 [ 342.498332][ T5091] FAT-fs (loop2): unable to read boot sector to mark fs as dirty [ 342.518388][ T5075] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 342.534152][ T5075] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 342.544094][ T5075] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 342.557526][ T5075] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 342.580581][ T5075] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 342.602708][ T5075] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 343.156942][ T3012] team0 (unregistering): Port device team_slave_1 removed [ 343.225752][ T3012] team0 (unregistering): Port device team_slave_0 removed [ 343.815816][ T6637] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 344.480224][ T6079] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 344.710279][ T5075] Bluetooth: hci2: command tx timeout [ 344.845808][ T6629] chnl_net:caif_netlink_parms(): no params data found [ 345.093908][ T6649] loop4: detected capacity change from 0 to 512 [ 345.207876][ T6649] EXT4-fs (loop4): 1 truncate cleaned up [ 345.216162][ T6649] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 345.507029][ T5073] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 345.694265][ T6658] loop4: detected capacity change from 0 to 256 [ 346.086365][ T6663] loop1: detected capacity change from 0 to 16 [ 346.349772][ T6663] erofs: (device loop1): erofs_read_inode: unsupported chunk format 7fff of nid 36 [ 346.428179][ T6629] bridge0: port 1(bridge_slave_0) entered blocking state [ 346.436907][ T6629] bridge0: port 1(bridge_slave_0) entered disabled state [ 346.454865][ T6629] bridge_slave_0: entered allmulticast mode [ 346.464048][ T6629] bridge_slave_0: entered promiscuous mode [ 346.667915][ T6669] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 346.695714][ T6629] bridge0: port 2(bridge_slave_1) entered blocking state [ 346.703998][ T6629] bridge0: port 2(bridge_slave_1) entered disabled state [ 346.711962][ T6629] bridge_slave_1: entered allmulticast mode [ 346.724112][ T6629] bridge_slave_1: entered promiscuous mode [ 346.790494][ T5075] Bluetooth: hci2: command tx timeout [ 346.945401][ T5089] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 346.980366][ T6629] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 347.008657][ T6629] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 347.019177][ T5089] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 347.063004][ T5089] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 347.143187][ T5089] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 347.155409][ T5089] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 347.164096][ T6629] team0: Port device team_slave_0 added [ 347.166895][ T5089] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 347.204625][ T6629] team0: Port device team_slave_1 added [ 347.341941][ T6629] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 347.349093][ T6629] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 347.376324][ T6629] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 347.497334][ T6629] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 347.504681][ T6629] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 347.531122][ T6629] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 347.804136][ T6677] loop4: detected capacity change from 0 to 512 [ 347.978891][ T6677] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 347.992185][ T6677] ext4 filesystem being mounted at /root/syzkaller-testdir1564157872/syzkaller.UYUVaX/115/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 348.059817][ T6629] hsr_slave_0: entered promiscuous mode [ 348.101667][ T6629] hsr_slave_1: entered promiscuous mode [ 348.123910][ T6629] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 348.131858][ T6629] Cannot create hsr debugfs directory [ 348.610624][ T6692] loop1: detected capacity change from 0 to 256 [ 348.811322][ T6697] loop0: detected capacity change from 0 to 512 [ 348.840821][ T5089] Bluetooth: hci2: command tx timeout [ 348.933406][ T6670] chnl_net:caif_netlink_parms(): no params data found [ 348.959868][ T6697] EXT4-fs (loop0): 1 truncate cleaned up [ 348.966057][ T6697] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 349.320484][ T5089] Bluetooth: hci3: command tx timeout [ 349.329767][ T6079] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 349.336783][ T3012] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 349.489644][ T3012] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 349.620200][ T3012] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 349.829388][ T3012] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 349.928075][ T5073] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 350.376593][ T3012] bridge_slave_1: left allmulticast mode [ 350.382712][ T3012] bridge_slave_1: left promiscuous mode [ 350.389285][ T3012] bridge0: port 2(bridge_slave_1) entered disabled state [ 350.434727][ T3012] bridge_slave_0: left allmulticast mode [ 350.440955][ T3012] bridge_slave_0: left promiscuous mode [ 350.447527][ T3012] bridge0: port 1(bridge_slave_0) entered disabled state [ 350.690226][ T6712] loop1: detected capacity change from 0 to 4096 [ 350.930499][ T5089] Bluetooth: hci2: command tx timeout [ 350.962431][ T3012] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 351.000219][ T3012] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 351.047840][ T3012] bond0 (unregistering): Released all slaves [ 351.187588][ T6670] bridge0: port 1(bridge_slave_0) entered blocking state [ 351.194752][ T6712] loop1: detected capacity change from 0 to 1024 [ 351.202960][ T6670] bridge0: port 1(bridge_slave_0) entered disabled state [ 351.210730][ T6670] bridge_slave_0: entered allmulticast mode [ 351.219522][ T6670] bridge_slave_0: entered promiscuous mode [ 351.369124][ T6670] bridge0: port 2(bridge_slave_1) entered blocking state [ 351.377146][ T6670] bridge0: port 2(bridge_slave_1) entered disabled state [ 351.384978][ T6670] bridge_slave_1: entered allmulticast mode [ 351.394022][ T6670] bridge_slave_1: entered promiscuous mode [ 351.411161][ T5089] Bluetooth: hci3: command tx timeout [ 351.438039][ T6717] loop4: detected capacity change from 0 to 256 [ 351.457563][ T6629] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 351.713958][ T6629] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 351.780720][ T6670] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 351.909305][ T6629] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 351.967437][ T6670] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 351.979837][ T6629] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 352.159301][ T3012] hsr_slave_0: left promiscuous mode [ 352.185116][ T3012] hsr_slave_1: left promiscuous mode [ 352.233692][ T3012] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 352.245456][ T3012] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 352.323609][ T3012] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 352.331446][ T3012] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 352.448140][ T3012] veth1_macvtap: left promiscuous mode [ 352.459105][ T3012] veth0_macvtap: left promiscuous mode [ 352.465166][ T3012] veth1_vlan: left promiscuous mode [ 352.470845][ T3012] veth0_vlan: left promiscuous mode [ 353.484653][ T5089] Bluetooth: hci3: command tx timeout [ 353.496967][ T3012] team0 (unregistering): Port device team_slave_1 removed [ 353.594398][ T3012] team0 (unregistering): Port device team_slave_0 removed [ 354.221928][ T6670] team0: Port device team_slave_0 added [ 354.311465][ T6670] team0: Port device team_slave_1 added [ 354.540007][ T6670] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 354.541689][ T6736] loop1: detected capacity change from 0 to 4096 [ 354.547074][ T6670] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 354.582373][ T6670] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 354.726688][ T6738] loop4: detected capacity change from 0 to 512 [ 354.766717][ T6670] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 354.773954][ T6670] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 354.800760][ T6670] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 354.804713][ T6738] EXT4-fs (loop4): 1 truncate cleaned up [ 354.818577][ T6738] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 355.201491][ T6670] hsr_slave_0: entered promiscuous mode [ 355.258661][ T6670] hsr_slave_1: entered promiscuous mode [ 355.286036][ T6670] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 355.293197][ T5073] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 355.293910][ T6670] Cannot create hsr debugfs directory [ 355.328522][ T6745] loop1: detected capacity change from 0 to 512 [ 355.372348][ T6629] 8021q: adding VLAN 0 to HW filter on device bond0 [ 355.571032][ T5089] Bluetooth: hci3: command tx timeout [ 355.723134][ T6629] 8021q: adding VLAN 0 to HW filter on device team0 [ 355.847785][ T781] bridge0: port 1(bridge_slave_0) entered blocking state [ 355.855584][ T781] bridge0: port 1(bridge_slave_0) entered forwarding state [ 356.029374][ T781] bridge0: port 2(bridge_slave_1) entered blocking state [ 356.037200][ T781] bridge0: port 2(bridge_slave_1) entered forwarding state [ 356.340628][ T6759] loop0: detected capacity change from 0 to 256 [ 357.115353][ T6670] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 357.246168][ T6670] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 357.351832][ T6670] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 357.521640][ T6670] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 358.504633][ T6629] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 358.715417][ T6788] loop0: detected capacity change from 0 to 512 [ 358.831434][ T6670] 8021q: adding VLAN 0 to HW filter on device bond0 [ 358.954393][ T6670] 8021q: adding VLAN 0 to HW filter on device team0 [ 359.037332][ T5126] bridge0: port 1(bridge_slave_0) entered blocking state [ 359.039491][ T6788] EXT4-fs (loop0): 1 truncate cleaned up [ 359.045085][ T5126] bridge0: port 1(bridge_slave_0) entered forwarding state [ 359.058651][ T6788] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 359.131805][ T5126] bridge0: port 2(bridge_slave_1) entered blocking state [ 359.139466][ T5126] bridge0: port 2(bridge_slave_1) entered forwarding state [ 359.231762][ T6629] veth0_vlan: entered promiscuous mode [ 359.256939][ C1] TCP: request_sock_TCPv6: Possible SYN flooding on port [::1]:20002. Sending cookies. [ 359.383372][ T6629] veth1_vlan: entered promiscuous mode [ 359.423381][ T6670] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 359.434943][ T6670] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 359.629343][ T6079] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 359.752318][ T6629] veth0_macvtap: entered promiscuous mode [ 359.780302][ T29] audit: type=1804 audit(1716934633.267:44): pid=6798 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir1564157872/syzkaller.UYUVaX/126/file0" dev="sda1" ino=1942 res=1 errno=0 [ 359.862508][ T6629] veth1_macvtap: entered promiscuous mode [ 359.991511][ T6629] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 360.002410][ T6629] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 360.012574][ T6629] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 360.023322][ T6629] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 360.044715][ T6629] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 360.211314][ T6629] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 360.222045][ T6629] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 360.232214][ T6629] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 360.247955][ T6629] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 360.259537][ T6629] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 360.270318][ T6629] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 360.285249][ T6629] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 360.457966][ T6629] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 360.467900][ T6629] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 360.477341][ T6629] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 360.486457][ T6629] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 361.286950][ T6670] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 361.304793][ T6815] loop4: detected capacity change from 0 to 256 [ 361.736188][ T6670] veth0_vlan: entered promiscuous mode [ 361.836966][ T6670] veth1_vlan: entered promiscuous mode [ 362.218148][ T6670] veth0_macvtap: entered promiscuous mode [ 362.321983][ T6670] veth1_macvtap: entered promiscuous mode [ 362.546372][ T6670] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 362.557532][ T6670] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 362.568177][ T6670] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 362.578941][ T6670] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 362.589121][ T6670] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 362.600971][ T6670] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 362.618549][ T6670] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 362.765975][ T6833] loop1: detected capacity change from 0 to 512 [ 362.847310][ T6670] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 362.858836][ T6670] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 362.872576][ T6670] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 362.883487][ T6670] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 362.893617][ T6670] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 362.905499][ T6670] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 362.915933][ T6670] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 362.928867][ T6670] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 362.944095][ T6670] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 363.052482][ T6670] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 363.061706][ T6670] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 363.071041][ T6670] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 363.082526][ T6670] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 363.315168][ T29] audit: type=1804 audit(1716934636.757:45): pid=6842 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir1117831310/syzkaller.YlXbR8/32/file0" dev="sda1" ino=1956 res=1 errno=0 [ 363.913707][ T6855] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 365.487324][ T6883] loop0: detected capacity change from 0 to 256 [ 365.943732][ T3272] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 365.951966][ T3272] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 366.041390][ T3272] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 366.049583][ T3272] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 366.730894][ T29] audit: type=1804 audit(1716934640.187:46): pid=6900 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir2319649731/syzkaller.ZSztbq/46/file0" dev="sda1" ino=1961 res=1 errno=0 [ 368.244827][ T70] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 368.253679][ T70] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 368.358348][ T6931] loop4: detected capacity change from 0 to 256 [ 368.403967][ T6038] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 368.412070][ T6038] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 368.826626][ T29] audit: type=1804 audit(1716934642.327:47): pid=6936 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2772172146/syzkaller.xOQMyh/5/file0" dev="sda1" ino=1961 res=1 errno=0 [ 369.089293][ T6935] loop0: detected capacity change from 0 to 4096 [ 370.091671][ T6955] netlink: 'syz-executor.4': attribute type 29 has an invalid length. [ 370.101094][ T6955] netlink: 'syz-executor.4': attribute type 29 has an invalid length. [ 370.154923][ T6955] netlink: 'syz-executor.4': attribute type 29 has an invalid length. [ 370.661834][ T29] audit: type=1804 audit(1716934644.137:48): pid=6961 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir1564157872/syzkaller.UYUVaX/134/file0" dev="sda1" ino=1963 res=1 errno=0 [ 371.373517][ T6973] loop3: detected capacity change from 0 to 256 [ 372.106039][ T6975] loop4: detected capacity change from 0 to 4096 [ 372.132132][ T6984] netlink: 'syz-executor.2': attribute type 29 has an invalid length. [ 372.141511][ T6984] netlink: 'syz-executor.2': attribute type 29 has an invalid length. [ 372.219871][ T6985] netlink: 'syz-executor.2': attribute type 29 has an invalid length. [ 372.737005][ T29] audit: type=1804 audit(1716934646.177:49): pid=6991 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir2896358694/syzkaller.C8gXo2/8/file0" dev="sda1" ino=1945 res=1 errno=0 [ 374.345506][ T7016] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 374.355320][ T7016] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 374.404370][ T7018] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 374.454947][ T7017] loop0: detected capacity change from 0 to 256 [ 375.054310][ T7030] syz-executor.4 uses obsolete (PF_INET,SOCK_PACKET) [ 375.346820][ T7027] loop1: detected capacity change from 0 to 4096 [ 375.458148][ T10] IPVS: starting estimator thread 0... [ 375.550606][ T7034] IPVS: using max 240 ests per chain, 12000 per kthread [ 376.030871][ T7042] netlink: 'syz-executor.0': attribute type 10 has an invalid length. [ 376.059406][ T7042] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets). [ 376.349427][ T7048] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 376.359875][ T7048] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 376.402806][ T7050] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 376.575491][ T7053] netlink: 'syz-executor.0': attribute type 11 has an invalid length. [ 376.584773][ T7053] netlink: 'syz-executor.0': attribute type 11 has an invalid length. [ 376.593424][ T7053] netlink: 193500 bytes leftover after parsing attributes in process `syz-executor.0'. [ 376.658340][ T7052] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 376.949222][ T7061] loop3: detected capacity change from 0 to 256 [ 376.953426][ T10] IPVS: starting estimator thread 0... [ 376.967508][ T7056] loop4: detected capacity change from 0 to 1024 [ 377.050480][ T7064] IPVS: using max 240 ests per chain, 12000 per kthread [ 377.118395][ T7056] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 377.131624][ T7056] ext4 filesystem being mounted at /root/syzkaller-testdir1564157872/syzkaller.UYUVaX/142/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 377.267822][ T7056] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 377.703661][ T7076] binder: BINDER_SET_CONTEXT_MGR already set [ 377.710358][ T7076] binder: 7075:7076 ioctl 4018620d 20000040 returned -16 [ 377.847284][ T7080] netlink: 'syz-executor.4': attribute type 10 has an invalid length. [ 377.900114][ T7080] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets). [ 377.968096][ T7074] loop1: detected capacity change from 0 to 4096 [ 378.493597][ T7086] netlink: 'syz-executor.4': attribute type 29 has an invalid length. [ 378.502954][ T7086] netlink: 'syz-executor.4': attribute type 29 has an invalid length. [ 378.582037][ T7086] netlink: 'syz-executor.4': attribute type 29 has an invalid length. [ 379.012563][ T7096] loop1: detected capacity change from 0 to 256 [ 379.584863][ T7109] netlink: 'syz-executor.3': attribute type 10 has an invalid length. [ 379.684312][ T7109] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets). [ 380.344784][ T29] audit: type=1804 audit(1716934653.807:50): pid=7122 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir2896358694/syzkaller.C8gXo2/22/file0" dev="sda1" ino=1957 res=1 errno=0 [ 380.495335][ T7124] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 380.687623][ T7120] loop1: detected capacity change from 0 to 4096 [ 382.858431][ T7140] 9pnet: Could not find request transport: f [ 384.643456][ T7160] validate_nla: 2 callbacks suppressed [ 384.643531][ T7160] netlink: 'syz-executor.4': attribute type 29 has an invalid length. [ 384.659090][ T7160] netlink: 'syz-executor.4': attribute type 29 has an invalid length. [ 384.725964][ T7165] netlink: 'syz-executor.4': attribute type 29 has an invalid length. [ 384.760327][ T29] audit: type=1804 audit(1716934658.257:51): pid=7164 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir2319649731/syzkaller.ZSztbq/67/file0" dev="sda1" ino=1955 res=1 errno=0 [ 386.378090][ T5075] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 386.395501][ T5075] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 386.418287][ T5075] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 386.508480][ T5075] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 386.531288][ T5075] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 386.541753][ T5075] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 387.011178][ T7194] loop0: detected capacity change from 0 to 512 [ 387.061661][ T3012] nci: nci_add_new_protocol: the target found does not have the desired protocol [ 387.111881][ T7194] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 387.125478][ T7194] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 387.312544][ T7201] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 387.321897][ T7201] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 387.361247][ T7194] EXT4-fs (loop0): 1 truncate cleaned up [ 387.367137][ T7194] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 387.405248][ T3467] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 387.444172][ T7201] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 387.573504][ T3467] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 387.607519][ T6079] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 387.746890][ T3467] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 387.963986][ T3467] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 388.093155][ T7186] chnl_net:caif_netlink_parms(): no params data found [ 388.344700][ T29] audit: type=1804 audit(1716934661.797:52): pid=7214 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir2896358694/syzkaller.C8gXo2/32/file0" dev="sda1" ino=1953 res=1 errno=0 [ 388.443848][ T3467] bridge_slave_1: left allmulticast mode [ 388.449733][ T3467] bridge_slave_1: left promiscuous mode [ 388.456461][ T3467] bridge0: port 2(bridge_slave_1) entered disabled state [ 388.511355][ T3467] bridge_slave_0: left allmulticast mode [ 388.518194][ T3467] bridge_slave_0: left promiscuous mode [ 388.525117][ T3467] bridge0: port 1(bridge_slave_0) entered disabled state [ 388.603808][ T5075] Bluetooth: hci4: command tx timeout [ 389.182232][ T7224] loop1: detected capacity change from 0 to 512 [ 389.212391][ T3467] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 389.235075][ T7224] EXT4-fs: Invalid journal IO priority (must be 0-7) [ 389.278791][ T3467] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 389.337650][ T3467] bond0 (unregistering): Released all slaves [ 389.867360][ T7237] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 389.876681][ T7237] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 389.929210][ T7239] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 390.197326][ T3467] hsr_slave_0: left promiscuous mode [ 390.247560][ T3467] hsr_slave_1: left promiscuous mode [ 390.289484][ T3467] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 390.298256][ T3467] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 390.340514][ T3467] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 390.349303][ T3467] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 390.458878][ T3467] veth1_macvtap: left promiscuous mode [ 390.465342][ T3467] veth0_macvtap: left promiscuous mode [ 390.471426][ T3467] veth1_vlan: left promiscuous mode [ 390.476992][ T3467] veth0_vlan: left promiscuous mode [ 390.493211][ T3081] nci: nci_add_new_protocol: the target found does not have the desired protocol [ 390.680475][ T5075] Bluetooth: hci4: command tx timeout [ 391.334820][ T3467] team0 (unregistering): Port device team_slave_1 removed [ 391.483528][ T3467] team0 (unregistering): Port device team_slave_0 removed [ 391.832316][ T7251] loop0: detected capacity change from 0 to 256 [ 392.230740][ T7186] bridge0: port 1(bridge_slave_0) entered blocking state [ 392.238458][ T7186] bridge0: port 1(bridge_slave_0) entered disabled state [ 392.247986][ T7186] bridge_slave_0: entered allmulticast mode [ 392.257044][ T7186] bridge_slave_0: entered promiscuous mode [ 392.339660][ T29] audit: type=1804 audit(1716934665.817:53): pid=7255 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir2319649731/syzkaller.ZSztbq/74/file0" dev="sda1" ino=1956 res=1 errno=0 [ 392.368167][ T7186] bridge0: port 2(bridge_slave_1) entered blocking state [ 392.376026][ T7186] bridge0: port 2(bridge_slave_1) entered disabled state [ 392.383804][ T7186] bridge_slave_1: entered allmulticast mode [ 392.394171][ T7186] bridge_slave_1: entered promiscuous mode [ 392.675095][ T7186] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 392.751873][ T7186] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 392.766582][ T5075] Bluetooth: hci4: command tx timeout [ 392.972953][ T7186] team0: Port device team_slave_0 added [ 393.029246][ T7186] team0: Port device team_slave_1 added [ 393.200263][ T5126] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 393.249273][ T7186] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 393.257499][ T7186] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 393.284080][ T7186] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 393.360607][ T7186] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 393.367759][ T7186] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 393.394201][ T7186] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 393.706957][ T7186] hsr_slave_0: entered promiscuous mode [ 393.736591][ T7186] hsr_slave_1: entered promiscuous mode [ 393.765589][ T7186] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 393.773712][ T7186] Cannot create hsr debugfs directory [ 394.030699][ T5126] usb 3-1: unable to get BOS descriptor or descriptor too short [ 394.038731][ T5126] usb 3-1: no configurations [ 394.043845][ T5126] usb 3-1: can't read configurations, error -22 [ 394.381198][ T7274] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 394.390598][ T7274] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 394.576848][ T7276] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 394.840985][ T5075] Bluetooth: hci4: command tx timeout [ 395.393229][ T29] audit: type=1804 audit(1716934668.907:54): pid=7286 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir1117831310/syzkaller.YlXbR8/67/file0" dev="sda1" ino=1961 res=1 errno=0 [ 395.502682][ T7186] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 395.575619][ T7186] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 395.631237][ T7186] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 395.714818][ T7186] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 395.796897][ T7280] loop4: detected capacity change from 0 to 8192 [ 395.928960][ T7289] loop2: detected capacity change from 0 to 2048 [ 396.164918][ T7289] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 396.194226][ T3467] IPVS: stop unused estimator thread 0... [ 396.346382][ T7289] EXT4-fs error (device loop2): ext4_find_extent:936: inode #2: comm syz-executor.2: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 396.463224][ T7289] EXT4-fs (loop2): Remounting filesystem read-only [ 396.488577][ T7298] netlink: 'syz-executor.0': attribute type 29 has an invalid length. [ 396.498275][ T7298] netlink: 'syz-executor.0': attribute type 29 has an invalid length. [ 396.522840][ T7298] netlink: 'syz-executor.0': attribute type 29 has an invalid length. [ 396.592324][ T7298] netlink: 'syz-executor.0': attribute type 29 has an invalid length. [ 396.616489][ T7298] netlink: 'syz-executor.0': attribute type 29 has an invalid length. [ 396.642930][ T7298] netlink: 'syz-executor.0': attribute type 29 has an invalid length. [ 396.683016][ T7298] netlink: 'syz-executor.0': attribute type 29 has an invalid length. [ 396.708226][ T6670] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 397.086657][ T7186] 8021q: adding VLAN 0 to HW filter on device bond0 [ 397.236835][ T7186] 8021q: adding VLAN 0 to HW filter on device team0 [ 397.264774][ T7307] netlink: 'syz-executor.0': attribute type 29 has an invalid length. [ 397.274116][ T7307] netlink: 'syz-executor.0': attribute type 29 has an invalid length. [ 397.303750][ T5132] bridge0: port 1(bridge_slave_0) entered blocking state [ 397.311557][ T5132] bridge0: port 1(bridge_slave_0) entered forwarding state [ 397.355619][ T7307] netlink: 'syz-executor.0': attribute type 29 has an invalid length. [ 397.412436][ T5132] bridge0: port 2(bridge_slave_1) entered blocking state [ 397.420288][ T5132] bridge0: port 2(bridge_slave_1) entered forwarding state [ 398.094073][ T29] audit: type=1804 audit(1716934671.557:55): pid=7320 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir1117831310/syzkaller.YlXbR8/70/file0" dev="sda1" ino=1947 res=1 errno=0 [ 399.387016][ T7186] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 399.975868][ T7186] veth0_vlan: entered promiscuous mode [ 400.115062][ T7186] veth1_vlan: entered promiscuous mode [ 400.464616][ T7186] veth0_macvtap: entered promiscuous mode [ 400.524859][ T7186] veth1_macvtap: entered promiscuous mode [ 400.700489][ T7186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 400.711317][ T7186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 400.721488][ T7186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 400.732232][ T7186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 400.742420][ T7186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 400.753197][ T7186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 400.772459][ T7186] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 400.907100][ T7186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 400.918222][ T7186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 400.929246][ T7186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 400.940125][ T7186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 400.950205][ T7186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 400.960987][ T7186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 400.971075][ T7186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 400.981864][ T7186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 401.005608][ T7186] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 401.126278][ T7186] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 401.136020][ T29] audit: type=1804 audit(1716934674.607:56): pid=7361 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir2896358694/syzkaller.C8gXo2/45/file0" dev="sda1" ino=1948 res=1 errno=0 [ 401.161821][ T7186] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 401.170995][ T7186] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 401.180086][ T7186] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 401.753771][ T7368] loop1: detected capacity change from 0 to 512 [ 401.807757][ T7368] EXT4-fs: Ignoring removed mblk_io_submit option [ 403.416493][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 403.423837][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 404.545749][ T29] audit: type=1804 audit(1716934678.077:57): pid=7402 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir2896358694/syzkaller.C8gXo2/51/file0" dev="sda1" ino=1958 res=1 errno=0 [ 407.081414][ T3012] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 407.089654][ T3012] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 407.207488][ T29] audit: type=1804 audit(1716934680.707:58): pid=7441 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir1564157872/syzkaller.UYUVaX/173/file0" dev="sda1" ino=1948 res=1 errno=0 [ 407.268027][ T3012] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 407.276243][ T3012] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 408.414292][ T7463] tun0: tun_chr_ioctl cmd 2147767521 [ 408.937023][ T7472] loop4: detected capacity change from 0 to 128 [ 409.002901][ T7472] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 410.066317][ T7499] tun0: tun_chr_ioctl cmd 2147767521 [ 410.397933][ T7507] loop1: detected capacity change from 0 to 128 [ 410.486552][ T7507] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 411.342819][ T29] audit: type=1804 audit(1716934684.797:59): pid=7521 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir1117831310/syzkaller.YlXbR8/85/file0" dev="sda1" ino=1965 res=1 errno=0 [ 411.723697][ T29] audit: type=1326 audit(1716934685.187:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7527 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f978167cee9 code=0x7ffc0000 [ 411.749479][ T29] audit: type=1326 audit(1716934685.187:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7527 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f978167cee9 code=0x7ffc0000 [ 411.773401][ T29] audit: type=1326 audit(1716934685.187:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7527 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f978167cee9 code=0x7ffc0000 [ 411.796582][ T29] audit: type=1326 audit(1716934685.187:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7527 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f978167cee9 code=0x7ffc0000 [ 411.819756][ T29] audit: type=1326 audit(1716934685.187:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7527 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f978167cee9 code=0x7ffc0000 [ 411.843021][ T29] audit: type=1326 audit(1716934685.187:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7527 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f978167cee9 code=0x7ffc0000 [ 411.868399][ T29] audit: type=1326 audit(1716934685.187:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7527 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f978167cee9 code=0x7ffc0000 [ 411.897331][ T29] audit: type=1326 audit(1716934685.187:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7527 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f978167cee9 code=0x7ffc0000 [ 412.227958][ T7533] tun0: tun_chr_ioctl cmd 2147767521 [ 412.272989][ T7538] loop3: detected capacity change from 0 to 128 [ 412.324921][ T7538] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 413.290153][ T7557] TCP: Unexpected MD5 Hash found for [fe80::bb].0->[fe80::aa].20002 [] [ 413.548275][ T7559] loop3: detected capacity change from 0 to 512 [ 413.579193][ T7559] EXT4-fs: Ignoring removed oldalloc option [ 413.671590][ T29] kauditd_printk_skb: 10 callbacks suppressed [ 413.671660][ T29] audit: type=1804 audit(1716934687.147:78): pid=7561 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir1117831310/syzkaller.YlXbR8/88/file0" dev="sda1" ino=1948 res=1 errno=0 [ 413.721279][ T7559] EXT4-fs error (device loop3): ext4_orphan_get:1394: inode #15: comm syz-executor.3: casefold flag without casefold feature [ 413.766501][ T7559] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 413.797645][ T7559] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 413.801311][ T7566] tun0: tun_chr_ioctl cmd 2147767521 [ 413.979541][ T7186] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 414.428033][ T7575] loop3: detected capacity change from 0 to 128 [ 414.492511][ T7575] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 415.202817][ T7588] tipc: Started in network mode [ 415.208111][ T7588] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711 [ 415.216336][ T7588] tipc: Enabled bearer , priority 17 [ 415.707710][ T7592] loop4: detected capacity change from 0 to 512 [ 415.867105][ T7592] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 416.037158][ T7592] EXT4-fs (loop4): 1 orphan inode deleted [ 416.052222][ T7592] EXT4-fs (loop4): 1 truncate cleaned up [ 416.058143][ T7592] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 416.221645][ T781] tipc: Node number set to 11578026 [ 416.277978][ T7592] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1216: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 416.316371][ T7592] EXT4-fs (loop4): Remounting filesystem read-only [ 416.422464][ T7610] loop2: detected capacity change from 0 to 128 [ 416.492918][ T7610] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 416.506883][ T5073] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 416.969737][ T7618] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 417.746511][ T7633] loop1: detected capacity change from 0 to 512 [ 418.414050][ T7646] loop3: detected capacity change from 0 to 128 [ 418.469200][ T7646] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 418.682083][ T7652] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 419.617094][ T7670] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'. [ 419.645976][ T7670] vlan2: entered promiscuous mode [ 419.652264][ T7670] gretap0: entered promiscuous mode [ 419.989821][ T7679] loop0: detected capacity change from 0 to 128 [ 420.031131][ T7679] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 420.668621][ T7689] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 420.840874][ T5081] Bluetooth: hci1: command 0x0406 tx timeout [ 420.847246][ T5086] Bluetooth: hci5: command 0x0406 tx timeout [ 422.173398][ T7722] netlink: 6 bytes leftover after parsing attributes in process `syz-executor.0'. [ 422.502114][ T7725] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 423.569330][ T7746] loop4: detected capacity change from 0 to 256 [ 424.671585][ T7757] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 424.971638][ T781] IPVS: starting estimator thread 0... [ 425.070492][ T7760] IPVS: using max 240 ests per chain, 12000 per kthread [ 425.840565][ T7776] loop0: detected capacity change from 0 to 256 [ 426.684790][ T7789] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 426.747002][ T5156] IPVS: starting estimator thread 0... [ 426.851244][ T7792] IPVS: using max 288 ests per chain, 14400 per kthread [ 427.475176][ T7803] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 427.687642][ T7806] loop1: detected capacity change from 0 to 128 [ 427.750783][ T7806] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 428.931718][ T7821] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 429.500884][ T7832] loop0: detected capacity change from 0 to 128 [ 429.541507][ T7832] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 429.945250][ T7838] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 431.674166][ T7866] loop0: detected capacity change from 0 to 128 [ 431.766830][ T7866] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 432.329360][ T7878] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 433.891226][ T7904] loop0: detected capacity change from 0 to 128 [ 433.920679][ T7904] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 434.714945][ T6218] IPVS: starting estimator thread 0... [ 434.810973][ T7921] IPVS: using max 240 ests per chain, 12000 per kthread [ 435.303371][ T7932] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 436.337596][ T7945] loop3: detected capacity change from 0 to 128 [ 436.389665][ T7945] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 436.585639][ T7950] usb usb8: usbfs: interface 0 claimed by hub while 'syz-executor.4' sets config #0 [ 437.055335][ T7956] IPVS: set_ctl: invalid protocol: 0 224.0.0.2:0 [ 437.079193][ T5400] IPVS: starting estimator thread 0... [ 437.170563][ T7957] IPVS: using max 240 ests per chain, 12000 per kthread [ 437.745595][ T7972] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 438.377633][ T7980] loop3: detected capacity change from 0 to 128 [ 438.461358][ T7980] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 438.730669][ T7984] usb usb8: usbfs: interface 0 claimed by hub while 'syz-executor.2' sets config #0 [ 439.131820][ T7991] IPVS: set_ctl: invalid protocol: 0 224.0.0.2:0 [ 440.135108][ T8011] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 440.173858][ T8010] loop0: detected capacity change from 0 to 128 [ 440.246871][ T8010] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 440.349383][ T8015] usb usb8: usbfs: interface 0 claimed by hub while 'syz-executor.3' sets config #0 [ 440.921321][ T8021] IPVS: set_ctl: invalid protocol: 0 224.0.0.2:0 [ 441.873021][ T8042] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.3'. [ 442.299549][ T8048] loop0: detected capacity change from 0 to 128 [ 442.344936][ T8050] usb usb8: usbfs: interface 0 claimed by hub while 'syz-executor.2' sets config #0 [ 442.367351][ T8048] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 442.459077][ T8056] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 444.221574][ T8083] usb usb8: usbfs: interface 0 claimed by hub while 'syz-executor.0' sets config #0 [ 444.397896][ T8085] loop4: detected capacity change from 0 to 128 [ 444.461517][ T8085] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 444.886710][ T8098] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 446.189637][ T8124] usb usb8: usbfs: interface 0 claimed by hub while 'syz-executor.4' sets config #0 [ 447.501571][ T8154] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 450.076086][ T8200] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 452.934697][ T8243] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 454.277810][ T8263] input: syz0 as /devices/virtual/input/input5 [ 455.787088][ T8289] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 456.102424][ T8294] IPVS: set_ctl: invalid protocol: 0 224.0.0.1:0 [ 456.825689][ T6218] kernel write not supported for file /uhid (pid: 6218 comm: kworker/1:9) [ 457.465801][ T8314] dccp_invalid_packet: P.type (REQUEST) not Data || [Data]Ack, while P.X == 0 [ 458.017897][ T8318] loop4: detected capacity change from 0 to 1024 [ 458.192687][ T8318] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 458.366289][ T8334] IPVS: set_ctl: invalid protocol: 0 224.0.0.1:0 [ 458.609082][ T5073] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2777: inode #2: comm syz-executor.4: corrupted in-inode xattr: bad e_name length [ 458.701283][ T5073] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2847: Unable to expand inode 2. Delete some EAs or run e2fsck. [ 458.823480][ T5073] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.4: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled [ 458.874554][ T5073] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.4: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled [ 459.049481][ T8342] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 459.390594][ T5073] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 459.413203][ T8344] loop0: detected capacity change from 0 to 1024 [ 459.512915][ T4285] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 459.657626][ T4285] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 459.884833][ T4285] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 460.066184][ T4285] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 460.106200][ T3515] hfsplus: b-tree write err: -5, ino 4 [ 460.398042][ T4285] bridge_slave_1: left allmulticast mode [ 460.405213][ T4285] bridge_slave_1: left promiscuous mode [ 460.412019][ T4285] bridge0: port 2(bridge_slave_1) entered disabled state [ 460.474126][ T4285] bridge_slave_0: left allmulticast mode [ 460.481094][ T4285] bridge_slave_0: left promiscuous mode [ 460.495991][ T4285] bridge0: port 1(bridge_slave_0) entered disabled state [ 461.157210][ T4285] gretap0 (unregistering): left promiscuous mode [ 461.460349][ T4285] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 461.518480][ T4285] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 461.541586][ T4285] bond0 (unregistering): Released all slaves [ 461.746801][ T8366] IPVS: set_ctl: invalid protocol: 0 224.0.0.1:0 [ 461.962501][ T8371] dccp_invalid_packet: P.type (REQUEST) not Data || [Data]Ack, while P.X == 0 [ 462.969820][ T5075] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 462.973484][ T5075] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 462.989382][ T5075] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 463.015610][ T5075] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 463.026015][ T5075] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 463.027897][ T5075] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 463.040323][ T4285] hsr_slave_0: left promiscuous mode [ 463.084501][ T4285] hsr_slave_1: left promiscuous mode [ 463.135182][ T4285] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 463.160992][ T4285] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 463.232345][ T4285] veth1_macvtap: left promiscuous mode [ 463.232482][ T4285] veth0_macvtap: left promiscuous mode [ 463.232867][ T4285] veth1_vlan: left promiscuous mode [ 463.233154][ T4285] veth0_vlan: left promiscuous mode [ 464.391788][ T4285] team0 (unregistering): Port device team_slave_1 removed [ 464.430231][ T4285] team0 (unregistering): Port device team_slave_0 removed [ 464.768737][ T8392] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 464.969397][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 464.969660][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 465.080805][ T5075] Bluetooth: hci0: command tx timeout [ 465.621565][ T8383] chnl_net:caif_netlink_parms(): no params data found [ 466.625948][ T8383] bridge0: port 1(bridge_slave_0) entered blocking state [ 466.626465][ T8383] bridge0: port 1(bridge_slave_0) entered disabled state [ 466.627004][ T8383] bridge_slave_0: entered allmulticast mode [ 466.637647][ T8383] bridge_slave_0: entered promiscuous mode [ 466.686109][ T8383] bridge0: port 2(bridge_slave_1) entered blocking state [ 466.686610][ T8383] bridge0: port 2(bridge_slave_1) entered disabled state [ 466.687254][ T8383] bridge_slave_1: entered allmulticast mode [ 466.690505][ T8383] bridge_slave_1: entered promiscuous mode [ 466.923419][ T8383] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 466.944578][ T8383] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 467.111214][ T8383] team0: Port device team_slave_0 added [ 467.134118][ T8383] team0: Port device team_slave_1 added [ 467.181517][ T5075] Bluetooth: hci0: command tx timeout [ 467.386837][ T8383] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 467.386911][ T8383] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 467.387047][ T8383] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 467.411751][ T8383] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 467.411824][ T8383] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 467.411961][ T8383] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 467.602055][ T8383] hsr_slave_0: entered promiscuous mode [ 467.611266][ T8383] hsr_slave_1: entered promiscuous mode [ 468.505426][ T8430] loop2: detected capacity change from 0 to 1024 [ 468.580775][ T8430] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 468.627266][ T29] audit: type=1800 audit(1716934742.127:79): pid=8430 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="file1" dev="loop2" ino=839 res=0 errno=0 [ 468.937714][ T4285] IPVS: stop unused estimator thread 0... [ 469.056425][ T8383] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 469.144111][ T8383] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 469.181966][ T8383] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 469.228435][ T8383] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 469.249047][ T5075] Bluetooth: hci0: command tx timeout [ 470.019833][ T8447] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 470.179166][ T8449] loop3: detected capacity change from 0 to 256 [ 470.328078][ T8383] 8021q: adding VLAN 0 to HW filter on device bond0 [ 470.475715][ T8383] 8021q: adding VLAN 0 to HW filter on device team0 [ 470.560516][ T5400] bridge0: port 1(bridge_slave_0) entered blocking state [ 470.561000][ T5400] bridge0: port 1(bridge_slave_0) entered forwarding state [ 470.655638][ T5400] bridge0: port 2(bridge_slave_1) entered blocking state [ 470.656132][ T5400] bridge0: port 2(bridge_slave_1) entered forwarding state [ 470.976701][ T8383] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 470.976818][ T8383] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 471.320533][ T5089] Bluetooth: hci0: command tx timeout [ 472.040732][ T5089] Bluetooth: hci3: command 0x0406 tx timeout [ 472.893294][ T8383] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 473.869415][ T8499] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 475.860854][ T8383] veth0_vlan: entered promiscuous mode [ 475.946934][ T8383] veth1_vlan: entered promiscuous mode [ 476.247670][ T8383] veth0_macvtap: entered promiscuous mode [ 476.314803][ T8383] veth1_macvtap: entered promiscuous mode [ 476.540230][ T8383] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 476.552343][ T8383] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 476.567003][ T8383] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 476.578312][ T8383] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 476.588537][ T8383] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 476.599279][ T8383] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 476.609499][ T8383] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 476.620783][ T8383] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 476.635334][ T8383] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 476.936813][ T8383] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 476.948914][ T8383] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 476.959472][ T8383] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 476.971869][ T8383] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 476.984451][ T8383] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 476.995810][ T8383] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 477.007258][ T8383] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 477.019191][ T8383] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 477.023957][ T8383] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 477.096355][ T8542] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 477.107228][ T8383] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 477.107440][ T8383] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 477.107643][ T8383] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 477.107851][ T8383] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 481.014644][ T8572] syz-executor.0[8572] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 481.036345][ T8572] syz-executor.0[8572] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 483.120692][ T5132] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 483.361982][ T5132] usb 2-1: Using ep0 maxpacket: 16 [ 483.490583][ T5132] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 483.490765][ T5132] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 483.490911][ T5132] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 483.491142][ T5132] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 483.491303][ T5132] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 483.497882][ T5132] usb 2-1: config 0 descriptor?? [ 483.632243][ T8602] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 483.994383][ T5132] microsoft 0003:045E:07DA.0008: unknown main item tag 0x0 [ 483.994550][ T5132] microsoft 0003:045E:07DA.0008: unknown main item tag 0x0 [ 483.994707][ T5132] microsoft 0003:045E:07DA.0008: unknown main item tag 0x0 [ 483.994857][ T5132] microsoft 0003:045E:07DA.0008: unknown main item tag 0x0 [ 483.995008][ T5132] microsoft 0003:045E:07DA.0008: unknown main item tag 0x0 [ 483.995155][ T5132] microsoft 0003:045E:07DA.0008: unknown main item tag 0x0 [ 483.995305][ T5132] microsoft 0003:045E:07DA.0008: unknown main item tag 0x0 [ 483.995455][ T5132] microsoft 0003:045E:07DA.0008: unknown main item tag 0x0 [ 483.995606][ T5132] microsoft 0003:045E:07DA.0008: unknown main item tag 0x0 [ 483.995759][ T5132] microsoft 0003:045E:07DA.0008: unknown main item tag 0x0 [ 484.089188][ T5132] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.0008/input/input6 [ 484.128376][ T5132] microsoft 0003:045E:07DA.0008: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0 [ 484.190699][ T5132] usb 2-1: USB disconnect, device number 3 [ 485.128795][ T8610] team0: Device ipvlan2 failed to register rx_handler [ 486.045029][ T3012] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 486.045126][ T3012] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 486.298503][ T3081] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 486.298599][ T3081] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 486.373331][ T8627] loop3: detected capacity change from 0 to 2048 [ 486.418890][ T8627] UDF-fs: error (device loop3): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 486.420153][ T8627] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 486.420244][ T8627] UDF-fs: Scanning with blocksize 512 failed [ 486.474076][ T8627] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 486.517766][ T29] audit: type=1800 audit(1716934760.047:80): pid=8627 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="loop3" ino=851 res=0 errno=0 [ 486.524464][ T29] audit: type=1800 audit(1716934760.057:81): pid=8627 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="loop3" ino=851 res=0 errno=0 [ 487.370740][ T8643] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 487.719769][ T8648] loop1: detected capacity change from 0 to 1024 [ 488.126256][ T8652] loop3: detected capacity change from 0 to 256 [ 488.144916][ T8652] exfat: Deprecated parameter 'utf8' [ 488.351232][ T8652] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xc61f63e4, utbl_chksum : 0xe619d30d) [ 488.412912][ T8654] team0: Device ipvlan2 failed to register rx_handler [ 488.782760][ T8658] loop4: detected capacity change from 0 to 24 [ 490.253835][ T8677] loop2: detected capacity change from 0 to 64 [ 490.492368][ T8686] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 491.257821][ T8691] loop2: detected capacity change from 0 to 1024 [ 491.348872][ T8692] team0: Device ipvlan2 failed to register rx_handler [ 493.908308][ T8711] loop1: detected capacity change from 0 to 512 [ 494.130261][ T8711] loop1: detected capacity change from 0 to 128 [ 494.814161][ T8721] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 495.284800][ T8724] team0: Device ipvlan2 failed to register rx_handler [ 495.547712][ T8727] loop3: detected capacity change from 0 to 1764 [ 496.804345][ T8742] loop4: detected capacity change from 0 to 24 [ 497.085553][ T8745] loop1: detected capacity change from 0 to 256 [ 497.635280][ T8753] team0: Device ipvlan2 failed to register rx_handler [ 497.772671][ T8757] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 498.574198][ T8763] loop2: detected capacity change from 0 to 1764 [ 498.637554][ T8763] iso9660: Corrupted directory entry in block 0 of inode 1792 [ 498.806965][ T8767] loop4: detected capacity change from 0 to 512 [ 498.936517][ T8767] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 499.034718][ T8767] EXT4-fs (loop4): warning: maximal mount count reached, running e2fsck is recommended [ 499.088308][ T8767] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz-executor.4: inode #15: comm syz-executor.4: iget: illegal inode # [ 499.126182][ T8767] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 499.180213][ T8767] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 499.532526][ T8383] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 3: comm syz-executor.4: path (unknown): bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1 [ 499.742053][ T8383] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 500.361251][ T3467] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 500.493469][ T3467] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 500.693012][ T3467] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 500.895403][ T3467] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 501.248140][ T3467] bridge_slave_1: left allmulticast mode [ 501.256216][ T3467] bridge_slave_1: left promiscuous mode [ 501.262979][ T3467] bridge0: port 2(bridge_slave_1) entered disabled state [ 501.316360][ T3467] bridge_slave_0: left allmulticast mode [ 501.324309][ T3467] bridge_slave_0: left promiscuous mode [ 501.331104][ T3467] bridge0: port 1(bridge_slave_0) entered disabled state [ 502.174074][ T3467] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 502.247847][ T3467] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 502.326882][ T3467] bond0 (unregistering): Released all slaves [ 503.545640][ T3467] hsr_slave_0: left promiscuous mode [ 503.572696][ T3467] hsr_slave_1: left promiscuous mode [ 503.603433][ T3467] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 503.611254][ T3467] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 503.638084][ T3467] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 503.646283][ T3467] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 503.751265][ T3467] veth1_macvtap: left promiscuous mode [ 503.757138][ T3467] veth0_macvtap: left promiscuous mode [ 503.763266][ T3467] veth1_vlan: left promiscuous mode [ 503.768820][ T3467] veth0_vlan: left promiscuous mode [ 504.391422][ T5089] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 504.407376][ T5089] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 504.426243][ T5089] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 504.441225][ T5089] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 504.452436][ T5089] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 504.461815][ T5089] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 504.949290][ T3467] team0 (unregistering): Port device team_slave_1 removed [ 505.061036][ T3467] team0 (unregistering): Port device team_slave_0 removed [ 505.350761][ T8780] team0: Device ipvlan2 failed to register rx_handler [ 505.994351][ T8789] loop1: detected capacity change from 0 to 64 [ 506.603072][ T5089] Bluetooth: hci0: command tx timeout [ 506.889750][ T8782] chnl_net:caif_netlink_parms(): no params data found [ 507.046084][ T8794] loop0: detected capacity change from 0 to 4096 [ 508.448953][ T8782] bridge0: port 1(bridge_slave_0) entered blocking state [ 508.457966][ T8782] bridge0: port 1(bridge_slave_0) entered disabled state [ 508.465881][ T8782] bridge_slave_0: entered allmulticast mode [ 508.475238][ T8782] bridge_slave_0: entered promiscuous mode [ 508.574043][ T8782] bridge0: port 2(bridge_slave_1) entered blocking state [ 508.581960][ T8782] bridge0: port 2(bridge_slave_1) entered disabled state [ 508.589721][ T8782] bridge_slave_1: entered allmulticast mode [ 508.598983][ T8782] bridge_slave_1: entered promiscuous mode [ 508.686174][ T5089] Bluetooth: hci0: command tx timeout [ 508.874357][ T8782] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 508.946404][ T8782] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 509.141807][ T8782] team0: Port device team_slave_0 added [ 509.189166][ T8782] team0: Port device team_slave_1 added [ 509.388537][ T8782] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 509.395994][ T8782] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 509.423142][ T8782] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 509.614582][ T8782] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 509.622020][ T8782] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 509.652434][ T8782] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 510.011501][ T8782] hsr_slave_0: entered promiscuous mode [ 510.082104][ T8782] hsr_slave_1: entered promiscuous mode [ 510.782764][ T5089] Bluetooth: hci0: command tx timeout [ 511.471761][ T8818] team0: Device ipvlan2 failed to register rx_handler [ 511.651140][ T8782] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 511.724394][ T8782] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 511.797956][ T8782] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 511.863678][ T8782] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 512.848296][ T5081] Bluetooth: hci0: command tx timeout [ 512.893046][ T8782] 8021q: adding VLAN 0 to HW filter on device bond0 [ 512.935743][ T8825] loop1: detected capacity change from 0 to 4096 [ 513.003997][ T5089] Bluetooth: hci4: command 0x0406 tx timeout [ 513.132117][ T8782] 8021q: adding VLAN 0 to HW filter on device team0 [ 513.251591][ T6218] bridge0: port 1(bridge_slave_0) entered blocking state [ 513.259302][ T6218] bridge0: port 1(bridge_slave_0) entered forwarding state [ 513.371825][ T6218] bridge0: port 2(bridge_slave_1) entered blocking state [ 513.379522][ T6218] bridge0: port 2(bridge_slave_1) entered forwarding state [ 515.272193][ T8782] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 515.392765][ T8854] team0: Device ipvlan2 failed to register rx_handler [ 516.590999][ T29] audit: type=1326 audit(1716934790.117:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8864 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd40ea7cee9 code=0x0 [ 517.152027][ T8869] loop1: detected capacity change from 0 to 4096 [ 517.415642][ T8782] veth0_vlan: entered promiscuous mode [ 517.519707][ T8782] veth1_vlan: entered promiscuous mode [ 517.801265][ T8782] veth0_macvtap: entered promiscuous mode [ 517.891017][ T8782] veth1_macvtap: entered promiscuous mode [ 518.026723][ T8782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 518.040668][ T8782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 518.051780][ T8782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 518.062553][ T8782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 518.075442][ T8782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 518.086262][ T8782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 518.096403][ T8782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 518.107163][ T8782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 518.122252][ T8782] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 518.242036][ T8782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 518.255336][ T8782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 518.265786][ T8782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 518.276574][ T8782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 518.286733][ T8782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 518.297591][ T8782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 518.307711][ T8782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 518.318480][ T8782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 518.333429][ T8782] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 518.527444][ T8782] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 518.536976][ T8782] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 518.548348][ T8782] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 518.558180][ T8782] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 518.604682][ T8874] netlink: 65055 bytes leftover after parsing attributes in process `syz-executor.1'. [ 520.850977][ T8891] team0: Device ipvlan2 failed to register rx_handler [ 523.068072][ T8912] loop0: detected capacity change from 0 to 4096 [ 523.424572][ T3012] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 523.538614][ T3012] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 523.793321][ T3012] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 524.010588][ T8920] netlink: 65055 bytes leftover after parsing attributes in process `syz-executor.1'. [ 524.081907][ T3012] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 524.517860][ T3012] bridge_slave_1: left allmulticast mode [ 524.524138][ T3012] bridge_slave_1: left promiscuous mode [ 524.530933][ T3012] bridge0: port 2(bridge_slave_1) entered disabled state [ 524.584282][ T3012] bridge_slave_0: left allmulticast mode [ 524.597638][ T3012] bridge_slave_0: left promiscuous mode [ 524.604706][ T3012] bridge0: port 1(bridge_slave_0) entered disabled state [ 524.780271][ T5081] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 524.797103][ T5081] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 524.807161][ T5081] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 524.820636][ T5081] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 524.832799][ T5081] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 524.915762][ T5081] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 525.275439][ T3012] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 525.358056][ T3012] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 525.410792][ T3012] bond0 (unregistering): Released all slaves [ 525.869895][ T4285] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 525.878588][ T4285] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 526.152827][ T8938] team0: Device ipvlan2 failed to register rx_handler [ 526.352213][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 526.358891][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 526.603197][ T3515] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 526.612812][ T3515] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 526.727180][ T3012] hsr_slave_0: left promiscuous mode [ 526.803475][ T3012] hsr_slave_1: left promiscuous mode [ 526.837765][ T3012] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 526.848487][ T3012] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 526.918616][ T3012] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 526.929428][ T3012] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 527.010560][ T3012] veth1_macvtap: left promiscuous mode [ 527.016311][ T3012] veth0_macvtap: left promiscuous mode [ 527.022824][ T3012] veth1_vlan: left promiscuous mode [ 527.028381][ T3012] veth0_vlan: left promiscuous mode [ 527.297790][ T5089] Bluetooth: hci2: command tx timeout [ 527.982743][ T3012] team0 (unregistering): Port device team_slave_1 removed [ 528.010797][ T3012] team0 (unregistering): Port device team_slave_0 removed [ 528.123797][ T5081] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 528.207594][ T5081] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 528.217976][ T5081] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 528.292105][ T8954] netlink: 65055 bytes leftover after parsing attributes in process `syz-executor.1'. [ 528.345134][ T5081] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 528.356847][ T5081] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 528.382503][ T5081] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 528.565747][ T8928] chnl_net:caif_netlink_parms(): no params data found [ 528.841480][ T8958] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 528.873835][ T8955] loop0: detected capacity change from 0 to 4096 [ 529.322807][ T5081] Bluetooth: hci2: command tx timeout [ 529.752598][ T8968] veth0_vlan: entered allmulticast mode [ 530.184690][ T8951] chnl_net:caif_netlink_parms(): no params data found [ 530.223364][ T8928] bridge0: port 1(bridge_slave_0) entered blocking state [ 530.232293][ T8928] bridge0: port 1(bridge_slave_0) entered disabled state [ 530.240325][ T8928] bridge_slave_0: entered allmulticast mode [ 530.249322][ T8928] bridge_slave_0: entered promiscuous mode [ 530.493409][ T8928] bridge0: port 2(bridge_slave_1) entered blocking state [ 530.501412][ T8928] bridge0: port 2(bridge_slave_1) entered disabled state [ 530.509213][ T8928] bridge_slave_1: entered allmulticast mode [ 530.518671][ T8928] bridge_slave_1: entered promiscuous mode [ 530.525441][ T5081] Bluetooth: hci3: command tx timeout [ 530.884292][ T8928] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 530.993466][ T8928] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 531.253035][ T8928] team0: Port device team_slave_0 added [ 531.324494][ T8928] team0: Port device team_slave_1 added [ 531.403475][ T5081] Bluetooth: hci2: command tx timeout [ 531.591222][ T8985] team0: Device ipvlan2 failed to register rx_handler [ 531.829785][ T8928] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 531.837261][ T8928] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 531.865799][ T8928] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 532.047615][ T8928] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 532.055037][ T8928] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 532.088401][ T8928] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 532.105012][ T8951] bridge0: port 1(bridge_slave_0) entered blocking state [ 532.113018][ T8951] bridge0: port 1(bridge_slave_0) entered disabled state [ 532.121094][ T8951] bridge_slave_0: entered allmulticast mode [ 532.133937][ T8951] bridge_slave_0: entered promiscuous mode [ 532.249295][ T8996] validate_nla: 3 callbacks suppressed [ 532.249369][ T8996] netlink: 'syz-executor.4': attribute type 13 has an invalid length. [ 532.264098][ T8996] netlink: 24859 bytes leftover after parsing attributes in process `syz-executor.4'. [ 532.292657][ T8951] bridge0: port 2(bridge_slave_1) entered blocking state [ 532.300534][ T8951] bridge0: port 2(bridge_slave_1) entered disabled state [ 532.308357][ T8951] bridge_slave_1: entered allmulticast mode [ 532.317843][ T8951] bridge_slave_1: entered promiscuous mode [ 532.600398][ T5081] Bluetooth: hci3: command tx timeout [ 532.713369][ T8928] hsr_slave_0: entered promiscuous mode [ 532.787097][ T8928] hsr_slave_1: entered promiscuous mode [ 532.803565][ T8928] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 532.811422][ T8928] Cannot create hsr debugfs directory [ 532.840425][ T8951] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 532.876046][ T3012] IPVS: stop unused estimator thread 0... [ 532.963013][ T8951] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 533.176975][ T9006] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 533.323455][ T8951] team0: Port device team_slave_0 added [ 533.439582][ T8951] team0: Port device team_slave_1 added [ 533.499658][ T5081] Bluetooth: hci2: command tx timeout [ 533.779225][ T8951] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 533.786573][ T8951] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 533.815132][ T8951] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 533.874334][ T9007] loop0: detected capacity change from 0 to 4096 [ 533.974524][ T8951] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 533.981899][ T8951] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 534.014364][ T8951] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 534.082894][ T3012] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 534.198163][ T3012] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 534.422227][ T3012] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 534.572666][ T3012] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 534.680365][ T5081] Bluetooth: hci3: command tx timeout [ 534.684871][ T8951] hsr_slave_0: entered promiscuous mode [ 534.711867][ T8951] hsr_slave_1: entered promiscuous mode [ 534.767827][ T8951] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 534.775730][ T8951] Cannot create hsr debugfs directory [ 535.230798][ T3012] bridge_slave_1: left allmulticast mode [ 535.239523][ T3012] bridge_slave_1: left promiscuous mode [ 535.246382][ T3012] bridge0: port 2(bridge_slave_1) entered disabled state [ 535.293947][ T3012] bridge_slave_0: left allmulticast mode [ 535.301402][ T3012] bridge_slave_0: left promiscuous mode [ 535.308151][ T3012] bridge0: port 1(bridge_slave_0) entered disabled state [ 535.837317][ T3012] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 535.879136][ T3012] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 535.897137][ T3012] bond0 (unregistering): Released all slaves [ 535.953040][ T9031] netlink: 'syz-executor.1': attribute type 13 has an invalid length. [ 535.964323][ T9031] netlink: 24859 bytes leftover after parsing attributes in process `syz-executor.1'. [ 535.997073][ T9032] team0: Device ipvlan2 failed to register rx_handler [ 536.095491][ T3012] tipc: Disabling bearer [ 536.134299][ T3012] tipc: Left network mode [ 536.654195][ T9046] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 536.800830][ T5081] Bluetooth: hci3: command tx timeout [ 536.871208][ T3012] hsr_slave_0: left promiscuous mode [ 536.930083][ T3012] hsr_slave_1: left promiscuous mode [ 536.990182][ T3012] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 536.998012][ T3012] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 537.059874][ T3012] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 537.067754][ T3012] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 537.181827][ T3012] veth1_macvtap: left promiscuous mode [ 537.191956][ T3012] veth0_macvtap: left promiscuous mode [ 537.197865][ T3012] veth1_vlan: left promiscuous mode [ 537.204024][ T3012] veth0_vlan: left promiscuous mode [ 538.069719][ T9057] loop4: detected capacity change from 0 to 4096 [ 538.151441][ T3012] team0 (unregistering): Port device team_slave_1 removed [ 538.220927][ T3012] team0 (unregistering): Port device team_slave_0 removed [ 538.623169][ T8928] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 538.780068][ T8928] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 538.943948][ T8928] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 539.035094][ T8928] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 539.108879][ T9071] team0: Device ipvlan2 failed to register rx_handler [ 539.378002][ T9075] loop0: detected capacity change from 0 to 128 [ 539.421709][ T9075] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 539.764309][ T8951] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 539.842450][ T8951] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 539.916993][ T8951] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 539.985640][ T8951] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 540.441541][ T9089] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 540.472481][ T8928] 8021q: adding VLAN 0 to HW filter on device bond0 [ 540.801191][ T8928] 8021q: adding VLAN 0 to HW filter on device team0 [ 540.909272][ T5126] bridge0: port 1(bridge_slave_0) entered blocking state [ 540.917120][ T5126] bridge0: port 1(bridge_slave_0) entered forwarding state [ 541.073478][ T5126] bridge0: port 2(bridge_slave_1) entered blocking state [ 541.081347][ T5126] bridge0: port 2(bridge_slave_1) entered forwarding state [ 541.762498][ T8951] 8021q: adding VLAN 0 to HW filter on device bond0 [ 542.005535][ T8951] 8021q: adding VLAN 0 to HW filter on device team0 [ 542.137457][ T8970] bridge0: port 1(bridge_slave_0) entered blocking state [ 542.145287][ T8970] bridge0: port 1(bridge_slave_0) entered forwarding state [ 542.305863][ T8970] bridge0: port 2(bridge_slave_1) entered blocking state [ 542.313658][ T8970] bridge0: port 2(bridge_slave_1) entered forwarding state [ 543.302983][ T9119] loop1: detected capacity change from 0 to 128 [ 543.400210][ T9115] team0: Device ipvlan2 failed to register rx_handler [ 543.411242][ T9119] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 543.754213][ T8928] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 543.800765][ T8951] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 543.908767][ T3012] IPVS: stop unused estimator thread 0... [ 544.402631][ T8928] veth0_vlan: entered promiscuous mode [ 544.411763][ T8951] veth0_vlan: entered promiscuous mode [ 544.531859][ T8951] veth1_vlan: entered promiscuous mode [ 544.560369][ T8928] veth1_vlan: entered promiscuous mode [ 544.832203][ T8951] veth0_macvtap: entered promiscuous mode [ 544.947710][ T8951] veth1_macvtap: entered promiscuous mode [ 544.984015][ T9133] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 544.998117][ T8928] veth0_macvtap: entered promiscuous mode [ 545.078780][ T8928] veth1_macvtap: entered promiscuous mode [ 545.169418][ T8951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 545.183376][ T8951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 545.194314][ T8951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 545.205163][ T8951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 545.215370][ T8951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 545.226185][ T8951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 545.241538][ T8951] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 545.302115][ T8928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 545.313593][ T8928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 545.324890][ T8928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 545.335674][ T8928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 545.345904][ T8928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 545.356752][ T8928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 545.366972][ T8928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 545.379763][ T8928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 545.395499][ T8928] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 545.470859][ T8951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 545.486325][ T8951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 545.497124][ T8951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 545.507999][ T8951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 545.518141][ T8951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 545.528970][ T8951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 545.544199][ T8951] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 545.638182][ T8928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 545.649082][ T8928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 545.660370][ T8928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 545.671280][ T8928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 545.681440][ T8928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 545.695030][ T8928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 545.705242][ T8928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 545.716008][ T8928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 545.732401][ T8928] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 545.777506][ T8928] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 545.789237][ T8928] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 545.799061][ T8928] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 545.810517][ T8928] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 545.861038][ T8951] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 545.870297][ T8951] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 545.879312][ T8951] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 545.893099][ T8951] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 546.696086][ T9159] loop1: detected capacity change from 0 to 128 [ 546.830845][ T9159] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 546.979003][ T9164] team0: Device ipvlan2 failed to register rx_handler [ 548.286319][ T9197] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 550.184836][ T9233] team0: Device ipvlan2 failed to register rx_handler [ 550.736491][ T3272] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 550.744688][ T3272] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 550.753040][ T6038] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 550.761337][ T6038] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 550.908880][ T6038] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 550.917945][ T6038] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 551.005144][ T6038] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 551.018572][ T6038] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 551.564274][ T9261] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 553.563274][ T9295] team0: Device ipvlan2 failed to register rx_handler [ 554.330113][ T9313] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.2'. [ 554.413847][ T9305] syz-executor.1 (9305) used greatest stack depth: 3720 bytes left [ 554.433775][ T9317] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 556.117756][ T9350] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.2'. [ 556.184064][ T9349] team0: Device ipvlan2 failed to register rx_handler [ 558.291347][ T9359] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 559.919817][ T9383] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.1'. [ 560.560766][ T9394] team0: Device ipvlan2 failed to register rx_handler [ 560.683109][ C1] vxcan0: j1939_tp_rxtimer: 0xffff888023cd4200: rx timeout, send abort [ 561.191891][ C1] vxcan0: j1939_tp_rxtimer: 0xffff888023cd4200: abort rx timeout. Force session deactivation [ 561.700386][ T6218] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 561.741992][ T9424] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 561.824162][ T9427] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.4'. [ 562.111689][ T6218] usb 4-1: config 0 has no interfaces? [ 562.117507][ T6218] usb 4-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00 [ 562.129637][ T6218] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 562.158947][ T6218] usb 4-1: config 0 descriptor?? [ 562.238413][ T9432] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 562.472955][ T5126] usb 4-1: USB disconnect, device number 3 [ 563.199760][ T9447] team0: Device ipvlan2 failed to register rx_handler [ 563.941887][ T9460] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.4'. [ 564.765768][ T9469] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 565.466743][ T9480] syz-executor.0[9480] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 565.467307][ T9480] syz-executor.0[9480] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 565.531976][ T9480] syz-executor.0[9480] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 565.614919][ T9480] syz-executor.0[9480] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 565.987317][ T9492] team0: Device ipvlan2 failed to register rx_handler [ 567.342529][ T9519] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 568.673838][ T9544] team0: Device ipvlan2 failed to register rx_handler [ 570.336408][ T9575] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 572.234394][ T9598] team0: Device ipvlan2 failed to register rx_handler [ 573.965839][ T9627] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 575.402915][ T9648] team0: Device ipvlan2 failed to register rx_handler [ 576.462423][ T9671] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 578.729668][ T9700] team0: Device ipvlan2 failed to register rx_handler [ 580.240798][ T9715] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 580.311270][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 581.221669][ T0] NOHZ tick-stop error: local softirq work is pending, handler #242!!! [ 583.126185][ T9742] team0: Device ipvlan2 failed to register rx_handler [ 583.362207][ T9747] loop1: detected capacity change from 0 to 128 [ 583.599387][ T29] audit: type=1326 audit(1716934857.107:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9748 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f626fa7cee9 code=0x0 [ 583.774073][ T9757] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 585.650910][ T9789] team0: Device ipvlan2 failed to register rx_handler [ 586.168209][ T29] audit: type=1326 audit(1716934859.687:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9800 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f626fa7cee9 code=0x0 [ 586.382161][ T9808] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 587.654759][ T9830] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.1'. [ 587.752705][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 587.759467][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 587.970784][ T9836] team0: Device ipvlan2 failed to register rx_handler [ 588.116707][ T9837] loop0: detected capacity change from 0 to 128 [ 588.845873][ T29] audit: type=1326 audit(1716934862.307:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9851 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4eaf67cee9 code=0x0 [ 589.096865][ T9863] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 589.312529][ T9865] sctp: [Deprecated]: syz-executor.4 (pid 9865) Use of int in maxseg socket option. [ 589.312529][ T9865] Use struct sctp_assoc_value instead [ 590.110714][ T9878] bridge0: port 3(macsec1) entered blocking state [ 590.117875][ T9878] bridge0: port 3(macsec1) entered disabled state [ 590.137417][ T9878] macsec1: entered allmulticast mode [ 590.210400][ T6038] IPVS: starting estimator thread 0... [ 590.222017][ T9878] macsec1: left allmulticast mode [ 590.336100][ T9885] IPVS: using max 240 ests per chain, 12000 per kthread [ 590.366809][ T9880] team0: Device ipvlan2 failed to register rx_handler [ 590.585830][ T9884] loop1: detected capacity change from 0 to 2048 [ 591.087572][ T9893] loop0: detected capacity change from 0 to 128 [ 591.135406][ T9893] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 591.386305][ T9897] sctp: [Deprecated]: syz-executor.2 (pid 9897) Use of int in maxseg socket option. [ 591.386305][ T9897] Use struct sctp_assoc_value instead [ 591.782810][ T9913] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 591.821467][ T9912] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.0'. [ 592.505057][ T9924] team0: Device ipvlan2 failed to register rx_handler [ 592.796860][ T9925] loop0: detected capacity change from 0 to 2048 [ 592.798117][ T9926] bridge0: port 3(macsec1) entered blocking state [ 592.810719][ T9926] bridge0: port 3(macsec1) entered disabled state [ 592.817883][ T9926] macsec1: entered allmulticast mode [ 592.878721][ T9926] macsec1: left allmulticast mode [ 593.796817][ T9941] sctp: [Deprecated]: syz-executor.1 (pid 9941) Use of int in maxseg socket option. [ 593.796817][ T9941] Use struct sctp_assoc_value instead [ 594.754212][ T9958] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 595.222642][ T9961] team0: Device ipvlan2 failed to register rx_handler [ 595.606005][ T9965] loop4: detected capacity change from 0 to 2048 [ 596.010887][ T9971] bridge0: port 3(macsec1) entered blocking state [ 596.018044][ T9971] bridge0: port 3(macsec1) entered disabled state [ 596.025393][ T9971] macsec1: entered allmulticast mode [ 596.056463][ T9971] macsec1: left allmulticast mode [ 596.855136][ T9985] sctp: [Deprecated]: syz-executor.4 (pid 9985) Use of int in maxseg socket option. [ 596.855136][ T9985] Use struct sctp_assoc_value instead [ 597.838544][ T9994] team0: Device ipvlan2 failed to register rx_handler [ 598.096225][T10000] overlayfs: missing 'lowerdir' [ 598.227302][ T29] audit: type=1800 audit(1716934871.657:86): pid=10000 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1964 res=0 errno=0 [ 599.286147][T10006] loop2: detected capacity change from 0 to 2048 [ 599.617176][T10013] bridge0: port 3(macsec1) entered blocking state [ 599.624731][T10013] bridge0: port 3(macsec1) entered disabled state [ 599.631982][T10013] macsec1: entered allmulticast mode [ 610.232488][T10013] macsec1: left allmulticast mode [ 611.113762][T10019] sctp: [Deprecated]: syz-executor.0 (pid 10019) Use of int in maxseg socket option. [ 611.113762][T10019] Use struct sctp_assoc_value instead [ 611.749562][T10029] team0: Device ipvlan2 failed to register rx_handler [ 613.046168][T10044] loop4: detected capacity change from 0 to 2048 [ 613.645990][T10053] bridge0: port 3(macsec1) entered blocking state [ 613.653236][T10053] bridge0: port 3(macsec1) entered disabled state [ 613.655250][ T29] audit: type=1800 audit(1716934887.137:87): pid=10044 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=851 res=0 errno=0 [ 613.660424][T10053] macsec1: entered allmulticast mode [ 613.728414][T10057] sctp: [Deprecated]: syz-executor.1 (pid 10057) Use of int in maxseg socket option. [ 613.728414][T10057] Use struct sctp_assoc_value instead [ 613.773962][T10053] macsec1: left allmulticast mode [ 614.506791][T10065] team0: Device ipvlan2 failed to register rx_handler [ 615.017317][T10071] loop2: detected capacity change from 0 to 128 [ 615.063789][T10071] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 615.136965][T10071] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 616.364093][T10083] loop2: detected capacity change from 0 to 128 [ 616.402194][T10083] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 616.427560][T10083] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 616.603527][T10083] UDF-fs: error (device loop2): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40) [ 616.618460][ T29] audit: type=1800 audit(1716934890.067:88): pid=10083 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=118 res=0 errno=0 [ 616.918555][T10085] loop1: detected capacity change from 0 to 2048 [ 617.306730][ T29] audit: type=1800 audit(1716934890.777:89): pid=10085 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1965 res=0 errno=0 [ 617.642800][T10091] bridge0: port 3(macsec1) entered blocking state [ 617.650034][T10091] bridge0: port 3(macsec1) entered disabled state [ 617.657188][T10091] macsec1: entered allmulticast mode [ 617.761740][T10091] macsec1: left allmulticast mode [ 617.797151][T10090] loop0: detected capacity change from 0 to 2048 [ 618.001904][T10094] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 618.746987][T10101] loop4: detected capacity change from 0 to 256 [ 618.786631][T10101] exfat: Deprecated parameter 'utf8' [ 618.893843][T10101] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d) [ 619.125164][T10109] team0: Device ipvlan2 failed to register rx_handler [ 620.102543][T10122] loop2: detected capacity change from 0 to 2048 [ 620.283638][T10126] loop0: detected capacity change from 0 to 2048 [ 620.372945][T10131] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 620.437005][ T29] audit: type=1800 audit(1716934893.897:90): pid=10122 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=851 res=0 errno=0 [ 621.295672][T10141] loop4: detected capacity change from 0 to 256 [ 621.334729][T10141] exfat: Deprecated parameter 'utf8' [ 621.493395][T10141] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d) [ 622.078817][T10147] team0: Device ipvlan2 failed to register rx_handler [ 623.019651][T10160] loop1: detected capacity change from 0 to 2048 [ 623.249818][ T29] audit: type=1800 audit(1716934896.747:91): pid=10160 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1952 res=0 errno=0 [ 625.324932][T10189] team0: Device ipvlan2 failed to register rx_handler [ 626.446857][T10201] loop4: detected capacity change from 0 to 2048 [ 626.910690][ T29] audit: type=1800 audit(1716934900.387:92): pid=10201 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=851 res=0 errno=0 [ 627.949758][T10220] loop3: detected capacity change from 0 to 512 [ 628.038454][T10220] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 628.047039][T10220] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 628.091347][T10220] System zones: 0-1, 15-15, 18-18, 34-34 [ 628.100090][T10220] EXT4-fs (loop3): orphan cleanup on readonly fs [ 628.106892][T10220] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=0 [ 628.124463][T10220] EXT4-fs warning (device loop3): ext4_enable_quotas:7100: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 628.141680][T10220] EXT4-fs (loop3): Cannot turn on quotas: error -22 [ 628.262562][T10220] EXT4-fs error (device loop3): ext4_orphan_get:1420: comm syz-executor.3: bad orphan inode 16 [ 628.337746][T10220] ext4_test_bit(bit=15, block=18) = 1 [ 628.344467][T10220] is_bad_inode(inode)=0 [ 628.348811][T10220] NEXT_ORPHAN(inode)=0 [ 628.353282][T10220] max_ino=32 [ 628.356676][T10220] i_nlink=2 [ 628.360173][T10220] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 628.488387][T10220] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback. [ 628.576159][T10220] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 628.585640][T10220] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 628.840685][T10240] loop4: detected capacity change from 0 to 2048 [ 628.869760][ T8928] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 629.191494][ T29] audit: type=1800 audit(1716934902.677:93): pid=10240 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=851 res=0 errno=0 [ 630.381607][T10272] loop3: detected capacity change from 0 to 512 [ 630.552608][T10272] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 630.561020][T10272] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 630.601616][T10272] System zones: 0-1, 15-15, 18-18, 34-34 [ 630.653035][T10272] EXT4-fs (loop3): orphan cleanup on readonly fs [ 630.659766][T10272] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=0 [ 630.670263][T10272] EXT4-fs warning (device loop3): ext4_enable_quotas:7100: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 630.692698][T10272] EXT4-fs (loop3): Cannot turn on quotas: error -22 [ 630.766048][T10272] EXT4-fs error (device loop3): ext4_orphan_get:1420: comm syz-executor.3: bad orphan inode 16 [ 630.778583][T10287] loop0: detected capacity change from 0 to 2048 [ 630.801649][ T5089] Bluetooth: hci0: command 0x0406 tx timeout [ 630.808126][T10272] ext4_test_bit(bit=15, block=18) = 1 [ 630.814000][T10272] is_bad_inode(inode)=0 [ 630.818337][T10272] NEXT_ORPHAN(inode)=0 [ 630.823731][T10272] max_ino=32 [ 630.827098][T10272] i_nlink=2 [ 630.830974][T10272] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 630.901193][T10272] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback. [ 630.915085][T10272] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 630.923828][T10272] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 631.077327][ T29] audit: type=1800 audit(1716934904.557:94): pid=10287 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=851 res=0 errno=0 [ 631.300933][ T8928] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 633.064452][T10330] loop2: detected capacity change from 0 to 2048 [ 633.415792][ T29] audit: type=1800 audit(1716934906.887:95): pid=10330 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=851 res=0 errno=0 [ 635.383409][T10379] loop0: detected capacity change from 0 to 2048 [ 635.643601][T10388] Driver unsupported XDP return value 0 on prog (id 426) dev N/A, expect packet loss! [ 635.865251][ T29] audit: type=1800 audit(1716934909.347:96): pid=10379 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=851 res=0 errno=0 [ 636.188427][T10400] netlink: 'syz-executor.3': attribute type 1 has an invalid length. [ 636.198266][T10400] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.3'. [ 637.780902][T10426] loop1: detected capacity change from 0 to 2048 [ 637.855796][T10433] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 638.160507][ T29] audit: type=1800 audit(1716934911.647:97): pid=10426 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1940 res=0 errno=0 [ 639.380709][T10462] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 639.411110][T10458] A link change request failed with some changes committed already. Interface veth0_to_batadv may have been left with an inconsistent configuration, please check. [ 639.935883][T10468] loop4: detected capacity change from 0 to 2048 [ 640.287316][ T29] audit: type=1800 audit(1716934913.777:98): pid=10468 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=851 res=0 errno=0 [ 641.442907][T10500] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 643.663044][T10537] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 644.591039][T10555] loop3: detected capacity change from 0 to 764 [ 644.676247][T10555] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 644.764086][T10555] 9pnet_virtio: no channels available for device [ 645.114129][T10561] loop1: detected capacity change from 0 to 1024 [ 645.202735][T10561] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 645.213029][T10561] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 645.261560][T10563] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.0'. [ 645.267442][T10561] JBD2: no valid journal superblock found [ 645.277327][T10561] EXT4-fs (loop1): Could not load journal inode [ 647.084428][T10600] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.3'. [ 647.357618][T10606] fuse: Bad value for 'fd' [ 647.502506][T10607] syzkaller0: entered promiscuous mode [ 647.508220][T10607] syzkaller0: entered allmulticast mode [ 648.601771][T10628] overlayfs: missing 'lowerdir' [ 649.195546][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 649.203742][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 649.364436][T10637] loop0: detected capacity change from 0 to 2048 [ 649.418368][T10637] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 649.594635][T10634] loop2: detected capacity change from 0 to 4096 [ 649.649135][T10634] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities [ 650.453806][T10660] loop1: detected capacity change from 0 to 512 [ 650.502775][T10660] EXT4-fs: Ignoring removed bh option [ 651.244392][ T5089] Bluetooth: hci2: command 0x0406 tx timeout [ 651.250927][ T5089] Bluetooth: hci3: command 0x0406 tx timeout [ 651.302849][T10666] loop0: detected capacity change from 0 to 4096 [ 651.562735][T10674] loop1: detected capacity change from 0 to 2048 [ 652.453892][ T29] audit: type=1326 audit(1716934925.937:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10689 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f978167cee9 code=0x0 [ 653.091303][T10700] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.3'. [ 653.987613][T10713] loop2: detected capacity change from 0 to 2048 [ 654.010125][T10717] loop3: detected capacity change from 0 to 1024 [ 654.059574][T10713] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 654.077275][T10717] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 654.088910][T10719] syz-executor.0[10719] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 654.089456][T10719] syz-executor.0[10719] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 654.176609][T10717] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 654.228801][T10714] loop4: detected capacity change from 0 to 4096 [ 654.560132][ T8928] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 655.220924][T10734] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.2'. [ 656.109334][T10752] syz-executor.1[10752] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 656.109890][T10752] syz-executor.1[10752] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 656.197585][T10750] loop4: detected capacity change from 0 to 1024 [ 656.298366][T10750] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 656.331803][T10751] loop0: detected capacity change from 0 to 2048 [ 656.375632][T10750] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 656.466689][T10751] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 656.784031][T10763] syz-executor.3[10763] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 656.784693][T10763] syz-executor.3[10763] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 656.981195][ T8782] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 657.314160][T10766] loop2: detected capacity change from 0 to 4096 [ 658.577648][T10789] loop4: detected capacity change from 0 to 2048 [ 658.727595][T10793] loop0: detected capacity change from 0 to 1024 [ 658.751489][T10789] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 658.818927][T10793] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 658.961934][T10793] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 659.360398][T10803] loop1: detected capacity change from 0 to 128 [ 659.438452][ T6079] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 659.569595][T10808] syz-executor.4[10808] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 659.571200][T10808] syz-executor.4[10808] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 659.709327][ T781] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 659.865881][T10812] loop3: detected capacity change from 0 to 512 [ 659.970358][T10812] EXT4-fs error (device loop3): ext4_orphan_get:1420: comm syz-executor.3: bad orphan inode 15 [ 660.002827][ T781] usb 3-1: Using ep0 maxpacket: 8 [ 660.015819][T10812] ext4_test_bit(bit=14, block=5) = 0 [ 660.021906][T10812] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 660.227064][T10812] EXT4-fs error (device loop3): __ext4_new_inode:1070: comm syz-executor.3: reserved inode found cleared - inode=1 [ 660.395738][ T781] usb 3-1: New USB device found, idVendor=2040, idProduct=d300, bcdDevice=32.a3 [ 660.405352][ T781] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 660.413972][ T781] usb 3-1: Product: syz [ 660.418369][ T781] usb 3-1: Manufacturer: syz [ 660.423298][ T781] usb 3-1: SerialNumber: syz [ 660.462185][ T781] usb 3-1: config 0 descriptor?? [ 660.489840][ T8928] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 660.602980][T10815] loop1: detected capacity change from 0 to 4096 [ 660.936754][ T781] msi2500 3-1:0.0: Registered as swradio16 [ 660.943231][ T781] msi2500 3-1:0.0: SDR API is still slightly experimental and functionality changes may follow [ 661.014900][ T781] usb 3-1: USB disconnect, device number 7 [ 662.038159][T10842] loop4: detected capacity change from 0 to 1024 [ 662.102213][T10842] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 662.254469][T10842] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 662.446760][T10845] dccp_invalid_packet: P.type (REQUEST) not Data || [Data]Ack, while P.X == 0 [ 662.631784][T10847] loop1: detected capacity change from 0 to 128 [ 662.848094][ T8782] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 663.418208][T10856] syz-executor.1[10856] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 663.418763][T10856] syz-executor.1[10856] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 664.733560][T10863] loop3: detected capacity change from 0 to 4096 [ 666.252286][T10886] tipc: Started in network mode [ 666.257479][T10886] tipc: Node identity 3a20300a74797065, cluster identity 4711 [ 666.265782][T10886] tipc: Enabling of bearer rejected, failed to enable media [ 666.353674][T10888] loop3: detected capacity change from 0 to 512 [ 666.401268][T10888] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 666.589151][T10888] EXT4-fs (loop3): 1 orphan inode deleted [ 666.595276][T10888] EXT4-fs (loop3): 1 truncate cleaned up [ 666.604483][T10888] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 666.717088][T10894] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1216: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 666.747362][T10894] EXT4-fs (loop3): Remounting filesystem read-only [ 666.818371][T10901] bridge0: port 3(ip6gretap0) entered blocking state [ 666.836216][T10901] bridge0: port 3(ip6gretap0) entered disabled state [ 666.843778][T10901] ip6gretap0: entered allmulticast mode [ 666.852525][T10901] ip6gretap0: entered promiscuous mode [ 666.861219][T10901] bridge0: port 3(ip6gretap0) entered blocking state [ 666.868622][T10901] bridge0: port 3(ip6gretap0) entered forwarding state [ 667.036278][ T8928] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 667.516076][T10915] loop1: detected capacity change from 0 to 256 [ 667.800191][ T5081] Bluetooth: hci5: command 0x0406 tx timeout [ 667.994299][T10907] loop4: detected capacity change from 0 to 4096 [ 669.837716][T10941] loop2: detected capacity change from 0 to 4096 [ 670.970252][T10963] loop4: detected capacity change from 0 to 4096 [ 671.408239][T10969] loop2: detected capacity change from 0 to 1024 [ 671.607748][ T29] audit: type=1800 audit(1716934945.097:100): pid=10969 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="file0" dev="loop2" ino=4 res=0 errno=0 [ 671.621925][T10974] loop3: detected capacity change from 0 to 512 [ 671.804698][ T3515] hfsplus: b-tree write err: -5, ino 3 [ 671.846514][T10974] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 671.859726][T10974] ext4 filesystem being mounted at /root/syzkaller-testdir4026332984/syzkaller.oWlD2s/119/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 672.423710][ T8928] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 672.990765][T10992] loop1: detected capacity change from 0 to 128 [ 673.061948][ T6038] IPVS: starting estimator thread 0... [ 673.179583][T10994] IPVS: using max 240 ests per chain, 12000 per kthread [ 673.357564][T10999] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 674.745284][T11016] loop1: detected capacity change from 0 to 4096 [ 674.759808][T11014] loop0: detected capacity change from 0 to 4096 [ 675.512776][ T8970] IPVS: starting estimator thread 0... [ 675.600580][T11029] IPVS: using max 240 ests per chain, 12000 per kthread [ 675.768255][T11033] loop1: detected capacity change from 0 to 128 [ 676.808911][T11050] vlan2: entered promiscuous mode [ 676.814342][T11050] vlan2: entered allmulticast mode [ 678.144615][T11071] loop2: detected capacity change from 0 to 128 [ 678.212411][T11071] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 678.248036][T11071] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 679.226320][T11086] loop0: detected capacity change from 0 to 512 [ 679.455953][T11086] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 679.469344][T11086] ext4 filesystem being mounted at /root/syzkaller-testdir1117831310/syzkaller.YlXbR8/319/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 679.863149][ T6079] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 680.832767][T11106] loop0: detected capacity change from 0 to 128 [ 680.873941][T11106] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 680.933614][T11106] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 681.878985][T11121] loop4: detected capacity change from 0 to 256 [ 681.933440][T11123] loop1: detected capacity change from 0 to 64 [ 682.993321][ T3272] ===================================================== [ 683.007144][ T3272] BUG: KMSAN: uninit-value in nci_rx_work+0x35a/0x5d0 [ 683.016166][ T3272] nci_rx_work+0x35a/0x5d0 [ 683.020938][ T3272] process_scheduled_works+0xa81/0x1bd0 [ 683.026690][ T3272] worker_thread+0xea5/0x1560 [ 683.031783][ T3272] kthread+0x3e2/0x540 [ 683.036056][ T3272] ret_from_fork+0x6d/0x90 2024/05/28 22:22:36 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF [ 683.040726][ T3272] ret_from_fork_asm+0x1a/0x30 [ 683.045707][ T3272] [ 683.048123][ T3272] Uninit was created at: [ 683.052691][ T3272] kmem_cache_alloc_node+0x622/0xc90 [ 683.058144][ T3272] kmalloc_reserve+0x13d/0x4a0 [ 683.063228][ T3272] __alloc_skb+0x35b/0x7a0 [ 683.067823][ T3272] virtual_ncidev_write+0x6d/0x290 [ 683.073213][ T3272] vfs_write+0x497/0x14d0 [ 683.077754][ T3272] ksys_write+0x20f/0x4c0 [ 683.082655][ T3272] __x64_sys_write+0x93/0xe0 [ 683.087471][ T3272] x64_sys_call+0x3062/0x3b50 [ 683.093113][ T3272] do_syscall_64+0xcf/0x1e0 [ 683.097829][ T3272] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 683.110667][ T3272] [ 683.113108][ T3272] CPU: 1 PID: 3272 Comm: kworker/u8:20 Not tainted 6.9.0-syzkaller-02707-g614da38e2f7a #0 [ 683.125246][ T3272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 683.135548][ T3272] Workqueue: nfc2_nci_rx_wq nci_rx_work [ 683.142495][ T3272] ===================================================== [ 683.149539][ T3272] Disabling lock debugging due to kernel taint [ 683.155898][ T3272] Kernel panic - not syncing: kmsan.panic set ... [ 683.162439][ T3272] CPU: 1 PID: 3272 Comm: kworker/u8:20 Tainted: G B 6.9.0-syzkaller-02707-g614da38e2f7a #0 [ 683.174005][ T3272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 683.184223][ T3272] Workqueue: nfc2_nci_rx_wq nci_rx_work [ 683.189973][ T3272] Call Trace: [ 683.193378][ T3272] [ 683.196414][ T3272] dump_stack_lvl+0x216/0x2d0 [ 683.201312][ T3272] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 683.207353][ T3272] dump_stack+0x1e/0x30 [ 683.211713][ T3272] panic+0x4e2/0xcd0 [ 683.215819][ T3272] ? kmsan_get_metadata+0xf1/0x1d0 [ 683.221139][ T3272] kmsan_report+0x2d5/0x2e0 [ 683.225813][ T3272] ? kmsan_get_metadata+0x146/0x1d0 [ 683.231181][ T3272] ? __msan_warning+0x95/0x120 [ 683.236094][ T3272] ? nci_rx_work+0x35a/0x5d0 [ 683.240844][ T3272] ? process_scheduled_works+0xa81/0x1bd0 [ 683.246757][ T3272] ? worker_thread+0xea5/0x1560 [ 683.251781][ T3272] ? kthread+0x3e2/0x540 [ 683.256200][ T3272] ? ret_from_fork+0x6d/0x90 [ 683.260951][ T3272] ? ret_from_fork_asm+0x1a/0x30 [ 683.266079][ T3272] ? filter_irq_stacks+0x60/0x1a0 [ 683.271315][ T3272] ? stack_depot_save_flags+0x2c/0x6e0 [ 683.276941][ T3272] ? kmsan_get_metadata+0x146/0x1d0 [ 683.282307][ T3272] ? kmsan_get_metadata+0x146/0x1d0 [ 683.287669][ T3272] ? kmsan_get_metadata+0x146/0x1d0 [ 683.293027][ T3272] ? kmsan_internal_set_shadow_origin+0x66/0xe0 [ 683.299485][ T3272] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 683.305757][ T3272] ? kfree_skb_reason+0x197/0x4f0 [ 683.310979][ T3272] ? nfc_send_to_raw_sock+0x504/0x530 [ 683.316537][ T3272] ? kmsan_get_metadata+0x146/0x1d0 [ 683.321898][ T3272] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 683.327886][ T3272] __msan_warning+0x95/0x120 [ 683.332642][ T3272] nci_rx_work+0x35a/0x5d0 [ 683.337223][ T3272] ? __pfx_nci_rx_work+0x10/0x10 [ 683.342317][ T3272] process_scheduled_works+0xa81/0x1bd0 [ 683.348080][ T3272] worker_thread+0xea5/0x1560 [ 683.352954][ T3272] kthread+0x3e2/0x540 [ 683.357205][ T3272] ? __pfx_worker_thread+0x10/0x10 [ 683.362494][ T3272] ? __pfx_kthread+0x10/0x10 [ 683.367351][ T3272] ret_from_fork+0x6d/0x90 [ 683.372008][ T3272] ? __pfx_kthread+0x10/0x10 [ 683.376779][ T3272] ret_from_fork_asm+0x1a/0x30 [ 683.381751][ T3272] [ 683.385086][ T3272] Kernel Offset: disabled [ 683.389466][ T3272] Rebooting in 86400 seconds..