last executing test programs: 7m55.615814399s ago: executing program 2: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) socket$unix(0x1, 0x2, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000300)='net/ip6_tables_targets\x00') rt_sigprocmask(0x0, &(0x7f000078b000)={[0xfffffffffffffffd]}, 0x0, 0x8) ftruncate(r1, 0x7fffffff) 7m53.93874786s ago: executing program 5: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="180000000000000000000000000000006112000000000000950000000000000051fa7824c74186dc02ec0696c37b64e3b24da3180100000005165c0f63cdc2e82818254950ee03568b8809a1ff4c7c4750eabfafcb9531b31e6a86827d1010c5a909ab98e00e19644a88e95ba26d1c9eecddb2d11c541418ceeb29b9b6829c6e433822bdb3cc85244aab60c1aae1314d7381fcfeb970bea672cf1e926f6a51479343144648a07a975bd89dc398712376610f6254f12495b4658319684387f6f3543205d4bc4ce05b8b961103673dff7f158052e62b20f05fd24108d8363d44fcd0f8f3647899762a17282a1914452d11f557c28f396eebdc858558db0276d14f9035f2b5f703e5be7e4acf8b78c2834ae5805fffee38a9a0033d520bcf6b08ede50899d4b9bdf85c71c5de2503dab358f42a2624c7daa9ed44039aab46419496362e54cfad05a0004ac71a003d7b85d07191bed4e5a890826300214146f7ed569985439baa355c2766dd056f5d79e454f3d873095e7a237bc06d035a8d601f21746d886419f38b34a495040000000071c2f0cce8c93cc17e9afa314fcb2ba15d646c66b0f65021829f87d988b4e2d71753b1549fa734f0b2e56dbd21ed2e09d0cddad721971637f384eed3034597c93e1c52f42cad0ed09c395dc6e9703660fefa1c80f467367c006f25caf0cbcefd13d68839893e39c588eb032905f91cafa4996dbf0c9be9654db05fb918086cc8228d02a3092c0830b8f587a5624515298b2d4eb2bde6f9a2eb83d53f717f13fa7552d92c51dbd32ea50c490ecd085d2811a7555c538cffffff7f00000000dd872244bfa64779e0f43a9c277e2910b7ccdc3d6726d34ad2101033a623ca2a49ad344884289130bc71cee2b7de62bf48129ae1af052a2d46a61625735a9eea7f793946b3229e861d8ea49806b3f7d4295f6b000000000000f337b1ceb2d8a65dcdcd895d7ba37098d2593fdaaef445af5bee02019c00000099b13ecda2a5b37de0519e974cba92ebaf0f701611a9b027ce04340bda4594cc9049c3f101629ab028145e004209ebe71a6fe84af50804000000000000004a27213354964e250a98fe357676f94b6947383e320fbb1118f586d5b9b1b977e1e1a4490ff67703a9b5900f8a6f8a805879dd91ec5ff435b219c53680c0ae04dcc4ef69b98fcb0d6b6a03a8b71a66b4e2876dc4b610444bf10000000000b046b6ae5d68156bcbd6d8793ade9a22ac8fc7857e5bbc14adc4e12b08f350c6789283b9990c72e64372a1f79769a8bdc632fc1a0b3417855d8b7d25ca4d404c23631ad3d2f55dcd385371c86170a4bca58c2b2b4eabc365f45bd10bb45b0c5bc354456a52be18d9b44014d20a3c51c8f013dade83562e73278662829e4f5a9ac00fd91178468c737f0872d97d38d11a176be5a0d7294c51eb161eddcfefa8837c7430721851ec2a107af0df6d43e732bbc01e76c66895eb85d36798d61622773591ee21ad9f6a1b73fa9cf3ffeb8a00b63af800a81d0fb8aa29df8b8ad6fbafefb5802a23cbdeeabceda5bfc5ff2fa5c1d61d04a1324794c6ed000696d9f04010c35474e690545c3d9bd836d4cef2585ba616e01c3d000000000000000000470ebc6f3453ecbf3047e4547d7632d3ad21798e730cb5d1da059b5bdb8107815dff995c0788906790406dfb4f8ee9f24ff94233e2e6e581e6e5de33a5f254c9a8b612547473c3001df3928dac9203b744619082421a8da7c00000000000000000000000000000018a73ef40cca690fb7595c6962984f8276677be6f66cbdbccf1896433808c9c84d74ac4a7c186a04a2250972f7acb156b21f9826b6acb7db32c4e3b3ec8b59fd972975edb1da872d81a35e4fda2f5cbde6b40bea20418c6e9dad30b791eea58f53e80fee4dd7fe08373ea2784fcd3a65261de71eb866458d2c22a"], &(0x7f0000000100)='GPL\x00'}, 0x70) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r0, r1, 0x2, 0x0, 0x0, @prog_id}, 0x20) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f0000000000)=@framed={{}, [@alu={0x8000000201a7f19, 0x0, 0x6, 0x2, 0x1}]}, &(0x7f0000000100)='GPL\x00'}, 0x70) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000040)={r3, r2, 0x2}, 0x10) 7m53.661430936s ago: executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) truncate(0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000140)) bind$can_j1939(r1, &(0x7f0000000080)={0x1d, 0x0, 0x2, {0x2, 0xff}, 0x2}, 0x18) syz_open_pts(0xffffffffffffffff, 0x0) read$FUSE(0xffffffffffffffff, &(0x7f0000000380)={0x2020}, 0x2020) r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f00000002c0)={0xc}) r3 = syz_open_procfs(0x0, &(0x7f0000001180)='net/dev_snmp6\x00') getdents(r3, &(0x7f0000000000)=""/47, 0x2f) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='stat\x00') write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b) r4 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) connect$llc(r4, &(0x7f00000001c0)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @dev}, 0x10) sendfile(r4, r0, 0x0, 0xffefffff) 7m11.151623223s ago: executing program 2: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) socket$unix(0x1, 0x2, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000300)='net/ip6_tables_targets\x00') rt_sigprocmask(0x0, &(0x7f000078b000)={[0xfffffffffffffffd]}, 0x0, 0x8) ftruncate(r1, 0x7fffffff) 7m11.151432644s ago: executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) truncate(0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000140)) bind$can_j1939(r1, &(0x7f0000000080)={0x1d, 0x0, 0x2, {0x2, 0xff}, 0x2}, 0x18) syz_open_pts(0xffffffffffffffff, 0x0) read$FUSE(0xffffffffffffffff, &(0x7f0000000380)={0x2020}, 0x2020) r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f00000002c0)={0xc}) r3 = syz_open_procfs(0x0, &(0x7f0000001180)='net/dev_snmp6\x00') getdents(r3, &(0x7f0000000000)=""/47, 0x2f) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='stat\x00') write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b) r4 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) connect$llc(r4, &(0x7f00000001c0)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @dev}, 0x10) sendfile(r4, r0, 0x0, 0xffefffff) 6m48.44474688s ago: executing program 2: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) socket$unix(0x1, 0x2, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000300)='net/ip6_tables_targets\x00') rt_sigprocmask(0x0, &(0x7f000078b000)={[0xfffffffffffffffd]}, 0x0, 0x8) ftruncate(r1, 0x7fffffff) 6m38.538924796s ago: executing program 2: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) socket$unix(0x1, 0x2, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000300)='net/ip6_tables_targets\x00') rt_sigprocmask(0x0, &(0x7f000078b000)={[0xfffffffffffffffd]}, 0x0, 0x8) ftruncate(r1, 0x7fffffff) 6m34.590647623s ago: executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) truncate(0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000140)) bind$can_j1939(r1, &(0x7f0000000080)={0x1d, 0x0, 0x2, {0x2, 0xff}, 0x2}, 0x18) syz_open_pts(0xffffffffffffffff, 0x0) read$FUSE(0xffffffffffffffff, &(0x7f0000000380)={0x2020}, 0x2020) r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f00000002c0)={0xc}) r3 = syz_open_procfs(0x0, &(0x7f0000001180)='net/dev_snmp6\x00') getdents(r3, &(0x7f0000000000)=""/47, 0x2f) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='stat\x00') write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b) r4 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) connect$llc(r4, &(0x7f00000001c0)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @dev}, 0x10) sendfile(r4, r0, 0x0, 0xffefffff) 5m47.454712869s ago: executing program 2: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) socket$unix(0x1, 0x2, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000300)='net/ip6_tables_targets\x00') rt_sigprocmask(0x0, &(0x7f000078b000)={[0xfffffffffffffffd]}, 0x0, 0x8) ftruncate(r1, 0x7fffffff) 4m32.704000873s ago: executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) truncate(0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000140)) bind$can_j1939(r1, &(0x7f0000000080)={0x1d, 0x0, 0x2, {0x2, 0xff}, 0x2}, 0x18) syz_open_pts(0xffffffffffffffff, 0x0) read$FUSE(0xffffffffffffffff, &(0x7f0000000380)={0x2020}, 0x2020) r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f00000002c0)={0xc}) r3 = syz_open_procfs(0x0, &(0x7f0000001180)='net/dev_snmp6\x00') getdents(r3, &(0x7f0000000000)=""/47, 0x2f) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='stat\x00') write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b) r4 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) connect$llc(r4, &(0x7f00000001c0)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @dev}, 0x10) sendfile(r4, r0, 0x0, 0xffefffff) 3m55.857815197s ago: executing program 2: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) socket$unix(0x1, 0x2, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000300)='net/ip6_tables_targets\x00') rt_sigprocmask(0x0, &(0x7f000078b000)={[0xfffffffffffffffd]}, 0x0, 0x8) ftruncate(r1, 0x7fffffff) 3m45.61134895s ago: executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) truncate(0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000140)) bind$can_j1939(r1, &(0x7f0000000080)={0x1d, 0x0, 0x2, {0x2, 0xff}, 0x2}, 0x18) syz_open_pts(0xffffffffffffffff, 0x0) read$FUSE(0xffffffffffffffff, &(0x7f0000000380)={0x2020}, 0x2020) r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f00000002c0)={0xc}) r3 = syz_open_procfs(0x0, &(0x7f0000001180)='net/dev_snmp6\x00') getdents(r3, &(0x7f0000000000)=""/47, 0x2f) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='stat\x00') write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b) r4 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) connect$llc(r4, &(0x7f00000001c0)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @dev}, 0x10) sendfile(r4, r0, 0x0, 0xffefffff) 1m41.295487451s ago: executing program 4: ioperm(0x0, 0x9, 0x20) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0) r1 = bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x18, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB], &(0x7f0000000240)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41000, 0x5, '\x00', 0x0, 0x0, r1}, 0x90) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r2, 0x89f1, 0x0) r3 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, 0x0) socket$packet(0x11, 0x0, 0x300) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) socket$nl_route(0x10, 0x3, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x5ad, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) syz_open_procfs$namespace(0x0, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r4, 0x0) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90) r6 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=@base={0x12, 0x4, 0x8, 0xb}, 0x48) bpf$BPF_PROG_DETACH(0x8, &(0x7f00000001c0)={@map=r6, r5, 0x7}, 0x10) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r6, &(0x7f0000000240), &(0x7f00000004c0)=@tcp6=r4}, 0x20) sendmmsg$inet(r4, &(0x7f0000000b40)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000280)="ee", 0x1}], 0x1}}], 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) 1m41.06052457s ago: executing program 4: r0 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c) setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000180)={'batadv_slave_1\x00', 0x0}) setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4) bind$xdp(r0, &(0x7f0000000300)={0x2c, 0x0, r2}, 0x10) r3 = syz_io_uring_setup(0x239, &(0x7f0000000200)={0x0, 0x0, 0x10100}, &(0x7f0000000180)=0x0, &(0x7f00000001c0)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}) io_uring_enter(r3, 0x2def, 0x0, 0x0, 0x0, 0x0) 1m39.884687069s ago: executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000240)={[{@noload}, {@mblk_io_submit}, {@stripe={'stripe', 0x3d, 0x3}}, {@usrjquota}, {@nobarrier}, {@quota}]}, 0x3, 0x43f, &(0x7f0000000980)="$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") creat(&(0x7f0000000300)='./bus\x00', 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0) mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0) r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x0, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef9cc093fce47d85272036dc78388e3dc177e9b496", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001"}) write$cgroup_int(r0, &(0x7f0000000080), 0x2c) ioctl$EXT4_IOC_MOVE_EXT(r0, 0x4030582b, &(0x7f00000010c0)={0x7, 0xffffffffffffffff, 0x0, 0x7}) 1m38.765671824s ago: executing program 4: bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48) r0 = syz_open_procfs(0x0, &(0x7f0000000140)='fdinfo/4\x00') read$char_usb(r0, &(0x7f0000000000)=""/178, 0xb2) 1m36.104664932s ago: executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'geneve1\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="4400000010000100"/20, @ANYRES32=r1, @ANYBLOB="0000010000000000240012800b00010067656e65766500001400028008000be85900e203060005"], 0x44}}, 0x0) 1m35.184826188s ago: executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b00000000001b000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000006ffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) move_pages(0x0, 0x2064, &(0x7f0000000040)=[&(0x7f0000ff9000/0x2000)=nil], &(0x7f0000001180), &(0x7f0000000000), 0x0) 5.24726312s ago: executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x40000000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x1, 0x40, 0x6, 0x208, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x48) 4.656015243s ago: executing program 1: syz_mount_image$reiserfs(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0xa0c003, &(0x7f0000000100)={[{@conv, 0x2b}, {@grpquota}, {@barrier_none}, {@acl}, {@data_writeback}, {@barrier_none}, {@usrquota}, {@noattrs}, {@noattrs}, {@jdev={'jdev', 0x3d, './file0'}}, {@jqfmt_vfsv0}, {@balloc_test4}, {@tails_off}, {@jdev={'jdev', 0x3d, './cgroup'}}, {@grpquota}, {@usrjquota_file}]}, 0xfd, 0x1131, &(0x7f0000000240)="$eJzs2DFrU10YB/D/uUnTt1NebvdQ0FGKJe7SQcGlg7OLlE46NZNS0I/gh3DyGwh+BNHFwa1+gHYoOAqRk+RKE4oKDQXh94ObnPPw3OecOz5PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoOpn56wk203SdrEmSUlGo08bdTvq4v9/7DUpeXz0aPLgePxwkqQ3Sy/1qW/V19Lu3WrbcTtu99p72/u328mLl8+evnt+dLwoUzLK6cXJYQ7O1/EF081fdet9fkznllKGWcqZ21rH6QAAAPAPmF7bcLVkbcdf9bvdIL0M6uJs+dzeus4HAAAA/uQGRgwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAf63tFk2SslhvvM7oquT/buxaAAAAwDWVNHky/HBwKTTN16sy7+TLsMzGAt144Pugru/m7dA0AAAAAH7nzWrg2/2VQDPrtcvnbt+f9d9Z9OA76Wd3d75f/OV8P+ll61KN97Pf04uTw+4pyWbNAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAfrIDBwIAAAAAgvytB7kAAAAAAAAAAAAAAAAAAAAAAAAAAICzAgAA///v9eTF") 3.714124623s ago: executing program 3: syz_mount_image$minix(&(0x7f0000000140), &(0x7f0000000040)='./file0\x00', 0x804008, &(0x7f0000000100)=ANY=[], 0x5a, 0x20d, &(0x7f0000000200)="$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") symlinkat(&(0x7f00000001c0)='./file2\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file6\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0) syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0xaca43a, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000)) pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0x8000c61) 3.156177141s ago: executing program 1: r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$IOMMU_HWPT_GET_DIRTY_BITMAP(r0, 0x3b8c, &(0x7f0000001280)={0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 2.961574789s ago: executing program 1: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x2, 0x4, &(0x7f00000001c0)=ANY=[@ANYRESHEX], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000000c0)={0x0, 0x20}, 0x8, 0x10, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1}, 0x10}, 0x90) r1 = open(&(0x7f0000000040)='./bus\x00', 0x1612c2, 0x0) fcntl$setlease(r0, 0x400, 0x1) openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/crypto\x00', 0x0, 0x0) getpid() fchdir(r1) sendfile(0xffffffffffffffff, r1, &(0x7f0000000200), 0x81) setns(r1, 0x2000000) r2 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0) r3 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r1, 0xffffffffffffffff}, &(0x7f0000000280), &(0x7f00000002c0)=r1}, 0x20) r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x6, 0x6, &(0x7f00000003c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x2}, [@map_idx={0x18, 0x9, 0x5, 0x0, 0x2}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffc}]}, &(0x7f0000000400)='GPL\x00', 0x4, 0x0, 0x0, 0x40f00, 0x38, '\x00', 0x0, 0x25, r1, 0x8, &(0x7f0000000440)={0x4, 0x2}, 0x8, 0x10, &(0x7f0000000480)={0x2, 0xa, 0x100, 0x8}, 0x10, 0x0, 0x0, 0x5, &(0x7f00000004c0)=[r1, r1, r1], &(0x7f0000000500)=[{0x1, 0x2, 0x8, 0xc}, {0x0, 0x1, 0x8, 0x7}, {0x3, 0x5, 0xb, 0x17ecc30c93bce512}, {0x3, 0x2, 0x2, 0x3}, {0x1, 0x1, 0x1, 0x2}], 0x10, 0x89}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000680)={{r4}, &(0x7f0000000380), &(0x7f0000000640)=r5}, 0x20) ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r3, 0x40045532, 0xfffffffffffffffe) bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000240)=0xffffffffffffffff, 0x4) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r3, 0xc0045516, &(0x7f0000000000)=0xf80) r6 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$BTRFS_IOC_RESIZE(r2, 0x50009403, &(0x7f00000006c0)={{r6}, {@val, @actul_num={@val=0x2b, 0x3, 0x5c}}}) r7 = getpgid(0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r2, 0xc1105517, &(0x7f0000000080)={{0x1009, 0x0, 0x4, 0xffffffff, 'syz0\x00', 0x1}, 0x5, 0x30, 0x1, r7, 0x0, 0x0, 'syz0\x00', 0x0}) 2.773276284s ago: executing program 3: syz_mount_image$udf(&(0x7f0000000140), &(0x7f0000000080)='./file0\x00', 0x1000800, &(0x7f0000000540)=ANY=[@ANYRES8=0x0, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRESDEC, @ANYRES32, @ANYRESDEC, @ANYBLOB="1cbb2cdd171d492deb19cb4b50f57fe03514acd1d4c838e2c6f896f71319f9927bb900ea7fd140c59552b18fd7fa112f3255fd02c04423cea65c50f3f1131a9644733abcb0218bbfab259417ec021df71f9bd9568e390396358819c94ed2351551a96eeff9b964e5f961027ae3a3a71b49c7364d5ebe1d6525c6437993d4082972d57be58928184da45cbf987f0a13f648dc9a6621c8392b2f1fedc71c85812425a68ba4edb0552df5b8e74af9249846923776c821deddd2f02d473b436ba514df04522dddad1cb5e75766d125d5eafcc652fbd3deaac0bf7eaf7ed8a586d36bffdb2f61bced8a3fd75f66c8eca0de326c41a8993c3ef39131"], 0x10, 0xc34, &(0x7f0000001080)="$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") fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffed3) r0 = socket(0x10, 0x3, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setregid(0xffffffffffffffff, r1) setgroups(0x0, 0x0) r2 = socket$alg(0x26, 0x5, 0x0) fstat(r2, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xee01, r3, 0x0) mknodat$null(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1408, 0x103) 2.701041609s ago: executing program 1: sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000480)={&(0x7f00000001c0)={0x70, 0x3, 0x8, 0x201, 0x0, 0x0, {0x0, 0x0, 0x2}, [@CTA_TIMEOUT_DATA={0x44, 0x4, 0x0, 0x1, @gre=[@CTA_TIMEOUT_GRE_UNREPLIED={0x8, 0x1, 0x1, 0x0, 0x20}, @CTA_TIMEOUT_GRE_UNREPLIED={0x8, 0x1, 0x1, 0x0, 0xfff}, @CTA_TIMEOUT_GRE_UNREPLIED={0x8, 0x1, 0x1, 0x0, 0x9}, @CTA_TIMEOUT_GRE_UNREPLIED={0x8, 0x1, 0x1, 0x0, 0x3f}, @CTA_TIMEOUT_GRE_UNREPLIED={0x8, 0x1, 0x1, 0x0, 0x1f}, @CTA_TIMEOUT_GRE_UNREPLIED={0x8, 0x1, 0x1, 0x0, 0x200}, @CTA_TIMEOUT_GRE_UNREPLIED={0x8, 0x1, 0x1, 0x0, 0x8}, @CTA_TIMEOUT_GRE_REPLIED={0x8, 0x2, 0x1, 0x0, 0x70}]}, @CTA_TIMEOUT_L4PROTO={0x5}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x11}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x805}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000851}, 0x4000) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000100)) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'ip6_vti0\x00'}) r2 = openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0) openat(r2, &(0x7f0000000280)='.\x00', 0x0, 0x0) ioctl$FAT_IOCTL_GET_ATTRIBUTES(0xffffffffffffffff, 0x40047211, &(0x7f0000000000)) open(&(0x7f00000005c0)='./bus\x00', 0x0, 0x0) r3 = open$dir(&(0x7f0000000200)='./bus\x00', 0x0, 0x0) r4 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x4, 0x4, 0x4, 0x2, 0x800}, 0x48) close(r6) setresuid(0x0, r5, 0x0) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r3, 0x800c6613, &(0x7f0000000140)=@v1={0x0, @aes256, 0x0, @desc3}) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0) r7 = inotify_init1(0x0) socket$nl_route(0x10, 0x3, 0x0) fcntl$setown(r7, 0x8, 0xffffffffffffffff) fcntl$getownex(r7, 0x10, &(0x7f0000000100)) get_robust_list(0x0, &(0x7f0000001580)=0x0, &(0x7f00000015c0)) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) 2.529222883s ago: executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x90) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246) ioctl$PPPIOCSFLAGS1(r1, 0x40047452, &(0x7f0000000000)=0x2000000) 2.257814833s ago: executing program 0: r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x4, 0xc, &(0x7f0000000000)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x2f}, @printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x9b}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0x14, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) 2.106503366s ago: executing program 3: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000001180), 0x0, 0x0) r2 = openat$mice(0xffffffffffffff9c, &(0x7f0000000140), 0x0) dup3(r1, r2, 0x0) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r2, 0xc400941d, &(0x7f0000000180)) 2.023625095s ago: executing program 0: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x4, 0x3}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000040)='jbd2_handle_stats\x00', r1}, 0x10) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0) 1.747077548s ago: executing program 0: syz_emit_ethernet(0x7e, &(0x7f0000000140)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @remote}, @dest_unreach={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @broadcast, @broadcast, {[@generic={0x0, 0x7, "d5ff000000"}, @end, @timestamp={0x44, 0x14, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0]}, @ra={0x94, 0x4}, @ra={0x94, 0x4}, @generic={0x0, 0xa, "62f3456d11279be7"}, @ssrr={0x89, 0xf, 0x0, [@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, @remote]}]}}}}}}}, 0x0) 1.565597265s ago: executing program 3: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6) write$binfmt_misc(r0, &(0x7f0000000200)=ANY=[@ANYBLOB="1300000007"], 0xd) 1.507526453s ago: executing program 1: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) socket$packet(0x11, 0x0, 0x300) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10) prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8) r3 = getpid() sched_setscheduler(r3, 0x1, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r6 = open(&(0x7f0000000080)='./file0\x00', 0x40c5, 0x0) r7 = inotify_init() inotify_add_watch(r7, &(0x7f00000001c0)='./file0\x00', 0x6000400) r8 = open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) write$9p(r6, &(0x7f0000001400)="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", 0x600) chown(0x0, 0x0, 0xee01) setuid(0x0) sendmsg$NL80211_CMD_SET_INTERFACE(r6, 0xfffffffffffffffd, 0x40) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000940)={0x0, &(0x7f0000000840)=""/222, 0x0, 0xde, 0x1}, 0x20) bpf$ITER_CREATE(0xb, &(0x7f00000000c0)={r6}, 0x8) sendfile(r6, r8, 0x0, 0xe065) 1.4302138s ago: executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000200)="ad00"/16, 0x10) syz_genetlink_get_family_id$team(&(0x7f0000000140), r1) 1.302212711s ago: executing program 3: r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000004000000000000000000190095"], &(0x7f00000001c0)='syzkaller\x00'}, 0x90) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', 0x0}) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r0, r2, 0x25, 0x0, @val=@netfilter}, 0x40) syz_emit_ethernet(0xd81, &(0x7f0000001540)={@empty, @link_local, @void, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0xd73, 0x0, 0x0, 0x0, 0x2f, 0x0, @broadcast, @multicast1}, {{}, {}, {}, {}, {}, {0x8, 0x6558, 0x0, "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"}}}}}}, 0x0) 102.566472ms ago: executing program 1: r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$IOMMU_HWPT_GET_DIRTY_BITMAP(r0, 0x3b8c, &(0x7f0000001280)={0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 0s ago: executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000001680)=0x7d) ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000000c0)=0x7e) kernel console output (not intermixed with test programs): aa:aa:aa:3f) already exists on: batadv_slave_1 [ 724.462259][T11742] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 724.513413][T11742] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 724.546475][T11742] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 724.587883][T11742] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 724.635494][T12099] bridge0: port 1(bridge_slave_0) entered blocking state [ 724.663418][T12099] bridge0: port 1(bridge_slave_0) entered disabled state [ 724.671513][T12099] bridge_slave_0: entered allmulticast mode [ 724.703406][T12099] bridge_slave_0: entered promiscuous mode [ 724.813098][T12099] bridge0: port 2(bridge_slave_1) entered blocking state [ 724.841696][T12099] bridge0: port 2(bridge_slave_1) entered disabled state [ 724.862029][T12099] bridge_slave_1: entered allmulticast mode [ 724.904042][T12099] bridge_slave_1: entered promiscuous mode [ 725.076461][T11742] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 725.152844][T11742] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 725.161627][T11742] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 725.202768][T11742] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 725.374887][T12099] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 725.401298][T12099] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 725.498119][ T5125] Bluetooth: hci3: command tx timeout [ 725.520088][ T29] audit: type=1326 audit(1719178233.566:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12267 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe08d47d0a9 code=0x0 [ 725.847228][T12099] team0: Port device team_slave_0 added [ 725.951559][T12099] team0: Port device team_slave_1 added [ 726.773898][T12099] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 726.780905][T12099] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 726.921996][T12099] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 726.966684][T12099] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 726.992727][T12099] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 727.053591][T12099] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 727.262514][ T186] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 727.566561][T12306] loop4: detected capacity change from 0 to 512 [ 727.596535][ T5125] Bluetooth: hci3: command tx timeout [ 728.504056][T12306] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 728.516817][T12306] ext4 filesystem being mounted at /root/syzkaller-testdir1251299337/syzkaller.4Iz17p/29/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 728.568512][T12305] EXT4-fs error (device loop4): ext4_do_update_inode:5075: inode #2: comm syz-executor.4: corrupted inode contents [ 728.584223][T12305] EXT4-fs error (device loop4): ext4_dirty_inode:5935: inode #2: comm syz-executor.4: mark_inode_dirty error [ 728.633459][T12305] EXT4-fs error (device loop4): ext4_do_update_inode:5075: inode #2: comm syz-executor.4: corrupted inode contents [ 728.646774][T12305] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #2: comm syz-executor.4: mark_inode_dirty error [ 728.902058][T11485] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 729.016445][ T186] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 729.432402][T12099] hsr_slave_0: entered promiscuous mode [ 729.478025][T12099] hsr_slave_1: entered promiscuous mode [ 729.500957][T12099] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 729.571889][T12099] Cannot create hsr debugfs directory [ 729.749022][ T186] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 729.992020][ T186] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 730.017578][T12314] loop1: detected capacity change from 0 to 32768 [ 730.241719][T12324] loop4: detected capacity change from 0 to 16 [ 730.244150][T12314] bcachefs (loop1): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=xxhash,compression=zstd,nojournal_transaction_names [ 730.264416][T12314] bcachefs (loop1): recovering from clean shutdown, journal seq 10 [ 730.315890][T12324] erofs: Unknown parameter '' [ 730.404807][T12314] bcachefs (loop1): alloc_read... done [ 730.411712][T12314] bcachefs (loop1): stripes_read... done [ 730.417858][T12314] bcachefs (loop1): snapshots_read... done [ 730.435536][T12314] bcachefs (loop1): journal_replay... done [ 730.441452][T12314] bcachefs (loop1): resume_logged_ops... done [ 730.470043][T12314] bcachefs (loop1): going read-write [ 730.495168][T12314] bcachefs (loop1): done starting filesystem [ 730.764432][ T51] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 730.772288][ T51] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 730.779907][T12197] chnl_net:caif_netlink_parms(): no params data found [ 731.649041][ T9660] bcachefs (loop1): shutting down [ 731.660310][ T9660] bcachefs (loop1): going read-only [ 731.668248][ T9660] bcachefs (loop1): finished waiting for writes to stop [ 731.733262][ T5319] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 731.742859][ T5319] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 731.755080][ T9660] bcachefs (loop1): flushing journal and stopping allocators, journal seq 12 [ 731.836604][ T9660] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 12 [ 731.914988][ T9660] bcachefs (loop1): shutdown complete, journal seq 13 [ 731.955754][ T9660] bcachefs (loop1): marking filesystem clean [ 732.152633][ T9660] bcachefs (loop1): shutdown complete [ 732.265854][ T186] bridge_slave_1: left allmulticast mode [ 732.287504][ T186] bridge_slave_1: left promiscuous mode [ 732.306254][ T186] bridge0: port 2(bridge_slave_1) entered disabled state [ 732.345543][ T186] bridge_slave_0: left allmulticast mode [ 732.351276][ T186] bridge_slave_0: left promiscuous mode [ 732.373404][ T186] bridge0: port 1(bridge_slave_0) entered disabled state [ 734.842469][T12361] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 736.768485][ T186] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 736.843548][ T186] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 736.889366][ T186] bond0 (unregistering): Released all slaves [ 736.981219][T12197] bridge0: port 1(bridge_slave_0) entered blocking state [ 736.995475][T12197] bridge0: port 1(bridge_slave_0) entered disabled state [ 737.018298][T12197] bridge_slave_0: entered allmulticast mode [ 737.050800][T12197] bridge_slave_0: entered promiscuous mode [ 737.075734][T12197] bridge0: port 2(bridge_slave_1) entered blocking state [ 737.088980][T12197] bridge0: port 2(bridge_slave_1) entered disabled state [ 737.097821][T12197] bridge_slave_1: entered allmulticast mode [ 737.107145][T12197] bridge_slave_1: entered promiscuous mode [ 737.430035][T12353] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.4'. [ 737.776001][T12379] loop4: detected capacity change from 0 to 512 [ 737.881104][T12379] Quota error (device loop4): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 737.918682][T12379] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 737.963759][T12379] EXT4-fs error (device loop4): ext4_acquire_dquot:6858: comm syz-executor.4: Failed to acquire dquot type 1 [ 738.030374][T12379] EXT4-fs (loop4): 1 truncate cleaned up [ 738.073891][T12379] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 738.145151][T12379] ext4 filesystem being mounted at /root/syzkaller-testdir1251299337/syzkaller.4Iz17p/38/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 738.281297][T12379] Quota error (device loop4): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 738.353500][T12379] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 738.405429][T12379] EXT4-fs error (device loop4): ext4_acquire_dquot:6858: comm syz-executor.4: Failed to acquire dquot type 1 [ 738.607024][T11485] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 738.816324][T12377] loop1: detected capacity change from 0 to 131072 [ 738.850592][T12377] F2FS-fs (loop1): Found nat_bits in checkpoint [ 738.952910][T12372] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 738.965380][T12377] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 738.977250][T12372] tipc: Enabling of bearer rejected, failed to enable media [ 739.299357][T12099] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 739.354944][T12099] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 739.491981][T12197] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 739.556210][T12099] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 739.624735][T12099] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 739.929590][T12197] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 740.890655][T12408] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 742.426625][T12197] team0: Port device team_slave_0 added [ 742.498783][T12197] team0: Port device team_slave_1 added [ 743.401635][T12197] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 743.461333][T12197] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 743.660097][T12197] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 743.822356][ T186] hsr_slave_0: left promiscuous mode [ 743.868513][ T186] hsr_slave_1: left promiscuous mode [ 743.938313][ T186] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 743.982907][ T186] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 744.053500][ T186] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 744.061043][ T186] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 744.582051][T12424] loop4: detected capacity change from 0 to 131072 [ 744.659521][ T186] veth1_macvtap: left promiscuous mode [ 744.678811][T12424] F2FS-fs (loop4): Found nat_bits in checkpoint [ 744.820933][ T186] veth0_macvtap: left promiscuous mode [ 744.928030][T12424] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 745.597406][ T186] veth1_vlan: left promiscuous mode [ 747.121463][ T186] veth0_vlan: left promiscuous mode [ 749.034482][T12447] netlink: 'syz-executor.1': attribute type 1 has an invalid length. [ 749.063057][T12447] netlink: 512 bytes leftover after parsing attributes in process `syz-executor.1'. [ 750.410042][T12451] loop0: detected capacity change from 0 to 32768 [ 750.427346][T12451] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (12451) [ 750.429322][ T186] team0 (unregistering): Port device team_slave_1 removed [ 750.476435][T12451] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 750.499609][T12451] BTRFS info (device loop0): using sha256 (sha256-ni) checksum algorithm [ 750.522916][T12451] BTRFS info (device loop0): using free-space-tree [ 750.616904][ T186] team0 (unregistering): Port device team_slave_0 removed [ 750.810970][T12451] BTRFS info (device loop0): checking UUID tree [ 750.892106][ T29] audit: type=1800 audit(1719178258.936:187): pid=12451 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=263 res=0 errno=0 [ 751.209649][T11742] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 752.672086][T12197] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 752.690767][T12197] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 752.719217][T12197] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 752.752293][T12437] netlink: 'syz-executor.3': attribute type 12 has an invalid length. [ 755.370027][T12491] loop4: detected capacity change from 0 to 131072 [ 755.481372][T12491] F2FS-fs (loop4): Found nat_bits in checkpoint [ 755.577019][T12491] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 755.633380][T12197] hsr_slave_0: entered promiscuous mode [ 755.656305][T12197] hsr_slave_1: entered promiscuous mode [ 755.675466][T12197] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 755.692762][T12197] Cannot create hsr debugfs directory [ 757.169898][T12099] 8021q: adding VLAN 0 to HW filter on device bond0 [ 757.249499][ T1246] ieee802154 phy0 wpan0: encryption failed: -22 [ 757.380358][ T1246] ieee802154 phy1 wpan1: encryption failed: -22 [ 758.066868][T12525] loop1: detected capacity change from 0 to 128 [ 758.116267][T12099] 8021q: adding VLAN 0 to HW filter on device team0 [ 758.200212][T12525] VFS: Found a Xenix FS (block size = 512) on device loop1 [ 758.337128][ T5177] bridge0: port 1(bridge_slave_0) entered blocking state [ 758.344517][ T5177] bridge0: port 1(bridge_slave_0) entered forwarding state [ 758.346603][T12525] sysv_free_block: trying to free block not in datazone [ 758.604921][ T5178] bridge0: port 2(bridge_slave_1) entered blocking state [ 758.612241][ T5178] bridge0: port 2(bridge_slave_1) entered forwarding state [ 761.247671][T12534] netlink: 'syz-executor.0': attribute type 12 has an invalid length. [ 761.272142][ T9660] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 761.786002][T12542] loop1: detected capacity change from 0 to 256 [ 761.883741][T12542] exfat: Deprecated parameter 'utf8' [ 761.903385][T12197] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 761.959708][T12542] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xba7df490, utbl_chksum : 0xe619d30d) [ 762.043158][T12197] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 762.135055][T12197] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 762.199548][T12197] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 762.706054][T12551] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 763.721294][ T29] audit: type=1800 audit(1719178271.766:188): pid=12565 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="memory.events" dev="sda1" ino=1962 res=0 errno=0 [ 763.784403][ T29] audit: type=1804 audit(1719178271.816:189): pid=12565 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.3" name="/root/syzkaller-testdir584704925/syzkaller.0LVUNF/642/memory.events" dev="sda1" ino=1962 res=1 errno=0 [ 763.841563][ T29] audit: type=1804 audit(1719178271.816:190): pid=12565 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.3" name="/root/syzkaller-testdir584704925/syzkaller.0LVUNF/642/memory.events" dev="sda1" ino=1962 res=1 errno=0 [ 763.873713][ T29] audit: type=1804 audit(1719178271.916:191): pid=12566 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.3" name="/root/syzkaller-testdir584704925/syzkaller.0LVUNF/642/memory.events" dev="sda1" ino=1962 res=1 errno=0 [ 764.353893][ T5327] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 764.695316][ T5327] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 764.947353][ T5327] bond0 (unregistering): Released all slaves [ 765.357445][ T5327] : left promiscuous mode [ 769.141092][T12585] netlink: 'syz-executor.4': attribute type 12 has an invalid length. [ 770.539922][T12197] 8021q: adding VLAN 0 to HW filter on device bond0 [ 770.625256][ T5125] Bluetooth: hci5: command 0x0406 tx timeout [ 770.704163][T12197] 8021q: adding VLAN 0 to HW filter on device team0 [ 770.733225][ T928] bridge0: port 1(bridge_slave_0) entered blocking state [ 770.740512][ T928] bridge0: port 1(bridge_slave_0) entered forwarding state [ 770.779073][ T928] bridge0: port 2(bridge_slave_1) entered blocking state [ 770.786589][ T928] bridge0: port 2(bridge_slave_1) entered forwarding state [ 771.854044][ T5327] hsr_slave_0: left promiscuous mode [ 771.952867][ T5327] hsr_slave_1: left promiscuous mode [ 773.272980][ T5327] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 773.280517][ T5327] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 773.374762][ T5327] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 773.382292][ T5327] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 773.671397][ T5327] veth1_macvtap: left promiscuous mode [ 773.696124][ T5327] veth0_macvtap: left promiscuous mode [ 773.714080][ T5327] veth1_vlan: left promiscuous mode [ 773.719725][ T5327] veth0_vlan: left promiscuous mode [ 773.735748][T12631] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 774.473799][T12643] loop0: detected capacity change from 0 to 8 [ 774.586351][T12643] squashfs image failed sanity check [ 774.861641][T12643] loop0: detected capacity change from 0 to 1024 [ 775.225834][ T5125] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 775.242237][ T5125] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 775.251629][ T5125] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 775.265573][ T5125] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 775.286818][ T5125] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 775.296890][ T5125] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 775.319745][T12657] loop0: detected capacity change from 0 to 64 [ 775.541158][T12657] loop0: detected capacity change from 0 to 128 [ 775.605169][T12664] [U] [ 775.607976][T12664] [U] [ 775.610728][T12664] [U] [ 775.613485][T12664] [U] [ 775.626731][T12664] [U] [ 775.629534][T12664] [U] [ 775.632286][T12664] [U] [ 775.635039][T12664] [U] [ 775.644441][T12664] [U] [ 775.647210][T12664] [U] [ 775.649962][T12664] [U] [ 775.674885][T12663] [U] [ 775.768526][T12643] loop0: detected capacity change from 0 to 1024 [ 777.334266][ T54] Bluetooth: hci0: command tx timeout [ 777.460305][ T5327] team0 (unregistering): Port device team_slave_1 removed [ 777.562222][ T5327] team0 (unregistering): Port device team_slave_0 removed [ 778.725793][T12695] Cannot find add_set index 0 as target [ 778.909427][ T29] audit: type=1326 audit(1719178286.956:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12692 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff5c907d0a9 code=0x0 [ 779.594956][ T54] Bluetooth: hci0: command tx timeout [ 779.666638][T12705] program syz-executor.0 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 780.157799][T12705] bond0: entered promiscuous mode [ 780.168991][T12705] bond_slave_0: entered promiscuous mode [ 780.197947][T12705] bond_slave_1: entered promiscuous mode [ 780.639947][T12715] loop4: detected capacity change from 0 to 64 [ 781.643157][ T54] Bluetooth: hci0: command tx timeout [ 781.954078][ T5327] IPVS: stop unused estimator thread 0... [ 782.301932][T12739] loop4: detected capacity change from 0 to 8 [ 782.598839][T12739] squashfs image failed sanity check [ 782.973912][T12739] loop4: detected capacity change from 0 to 1024 [ 783.275750][T12749] program syz-executor.3 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 783.316513][T12750] loop4: detected capacity change from 0 to 64 [ 783.480155][T12750] loop4: detected capacity change from 0 to 128 [ 783.707088][T12750] loop4: detected capacity change from 0 to 1024 [ 783.726461][ T54] Bluetooth: hci0: command tx timeout [ 783.855200][T12747] bond0: entered promiscuous mode [ 783.865874][T12747] bond_slave_0: entered promiscuous mode [ 783.896276][T12747] bond_slave_1: entered promiscuous mode [ 785.478530][ T5125] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 785.492612][ T5125] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 785.528692][ T5125] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 785.583496][ T5125] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 785.614921][ T5125] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 785.626245][ T5125] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 786.019374][T12653] chnl_net:caif_netlink_parms(): no params data found [ 786.934663][T12653] bridge0: port 1(bridge_slave_0) entered blocking state [ 786.941996][T12653] bridge0: port 1(bridge_slave_0) entered disabled state [ 786.980088][T12653] bridge_slave_0: entered allmulticast mode [ 787.014824][T12653] bridge_slave_0: entered promiscuous mode [ 787.053091][T12653] bridge0: port 2(bridge_slave_1) entered blocking state [ 787.084156][T12653] bridge0: port 2(bridge_slave_1) entered disabled state [ 787.091504][T12653] bridge_slave_1: entered allmulticast mode [ 787.121537][T12653] bridge_slave_1: entered promiscuous mode [ 787.734662][ T5125] Bluetooth: hci3: command tx timeout [ 787.884833][T12653] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 788.123959][T12653] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 788.429193][T12826] loop0: detected capacity change from 0 to 2048 [ 788.504395][T12826] EXT4-fs: Ignoring removed mblk_io_submit option [ 788.667144][T12826] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 788.818012][T12653] team0: Port device team_slave_0 added [ 788.912441][T12826] EXT4-fs error (device loop0): ext4_validate_block_bitmap:440: comm syz-executor.0: bg 0: block 234: padding at end of block bitmap is not set [ 788.941957][ T29] audit: type=1326 audit(1719178296.986:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12836 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe08d47d0a9 code=0x7fc00000 [ 788.986637][T12653] team0: Port device team_slave_1 added [ 789.011517][T12826] EXT4-fs (loop0): Remounting filesystem read-only [ 789.482612][T12653] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 789.507927][T12653] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 789.580375][T12653] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 789.627595][T12653] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 789.663027][T12653] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 789.689000][ C0] vkms_vblank_simulate: vblank timer overrun [ 789.746259][ T29] audit: type=1326 audit(1719178297.796:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12836 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7fe08d47d0a9 code=0x7fc00000 [ 789.769257][ C0] vkms_vblank_simulate: vblank timer overrun [ 789.808006][ T5125] Bluetooth: hci3: command tx timeout [ 789.877146][T11742] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 789.931364][T12653] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 790.097889][T12847] overlayfs: failed to resolve './file0': -2 [ 790.361225][T12858] netlink: 256 bytes leftover after parsing attributes in process `syz-executor.4'. [ 790.499859][T12859] sd 0:0:1:0: PR command failed: 1026 [ 790.511633][T12653] hsr_slave_0: entered promiscuous mode [ 790.524334][T12859] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 790.531197][T12859] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 790.561293][T12653] hsr_slave_1: entered promiscuous mode [ 790.613696][T12653] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 790.627733][T12653] Cannot create hsr debugfs directory [ 790.938028][ T5327] bridge_slave_1: left allmulticast mode [ 790.962772][ T5327] bridge_slave_1: left promiscuous mode [ 790.972096][ T5327] bridge0: port 2(bridge_slave_1) entered disabled state [ 791.015309][ T5327] bridge_slave_0: left allmulticast mode [ 791.021063][ T5327] bridge_slave_0: left promiscuous mode [ 791.040153][ T5327] bridge0: port 1(bridge_slave_0) entered disabled state [ 791.084793][ T5327] bridge_slave_1: left allmulticast mode [ 791.101850][ T5327] bridge_slave_1: left promiscuous mode [ 791.117745][ T5327] bridge0: port 2(bridge_slave_1) entered disabled state [ 791.198978][ T5327] bridge_slave_0: left allmulticast mode [ 791.218587][ T5327] bridge_slave_0: left promiscuous mode [ 791.236762][ T5327] bridge0: port 1(bridge_slave_0) entered disabled state [ 791.773182][ T29] audit: type=1326 audit(1719178299.826:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12878 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5c907d0a9 code=0x7fc00000 [ 791.804622][T12882] loop0: detected capacity change from 0 to 256 [ 791.858613][T12882] FAT-fs (loop0): Unrecognized mount option "0xffffffffffffffff" or missing value [ 791.883203][ T5125] Bluetooth: hci3: command tx timeout [ 792.513242][ T29] audit: type=1326 audit(1719178300.556:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12878 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7ff5c907d0a9 code=0x7fc00000 [ 792.579549][ T29] audit: type=1326 audit(1719178300.556:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12878 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5c907d0a9 code=0x7fc00000 [ 792.639568][ T29] audit: type=1326 audit(1719178300.556:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12878 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5c907d0a9 code=0x7fc00000 [ 792.686899][T12895] netlink: 'syz-executor.1': attribute type 1 has an invalid length. [ 792.711814][ T29] audit: type=1326 audit(1719178300.556:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12878 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5c907d0a9 code=0x7fc00000 [ 792.716332][T12895] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.1'. [ 792.748782][ T29] audit: type=1326 audit(1719178300.556:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12878 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5c907d0a9 code=0x7fc00000 [ 792.791338][ T29] audit: type=1326 audit(1719178300.556:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12878 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5c907d0a9 code=0x7fc00000 [ 792.821217][ T29] audit: type=1326 audit(1719178300.796:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12896 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff5c907d0a9 code=0x0 [ 793.317486][ T5327] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 793.339104][ T5327] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 793.355446][ T5327] bond0 (unregistering): Released all slaves [ 793.552544][ T5327] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 793.578269][ T5327] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 793.606040][ T5327] bond0 (unregistering): Released all slaves [ 793.642004][T12900] loop0: detected capacity change from 0 to 64 [ 793.963248][ T5125] Bluetooth: hci3: command tx timeout [ 795.730218][T12930] loop4: detected capacity change from 0 to 256 [ 795.738751][ T29] audit: type=1326 audit(1719178303.776:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12927 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc8aa7d0a9 code=0x7fc00000 [ 795.789130][T12930] FAT-fs (loop4): Unrecognized mount option "0xffffffffffffffff" or missing value [ 796.016947][ T5125] Bluetooth: hci5: unexpected event for opcode 0x1003 [ 796.510798][ T29] audit: type=1326 audit(1719178304.506:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12927 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7fbc8aa7d0a9 code=0x7fc00000 [ 796.534116][T12770] chnl_net:caif_netlink_parms(): no params data found [ 796.634514][ T29] audit: type=1326 audit(1719178304.506:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12927 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc8aa7d0a9 code=0x7fc00000 [ 796.798150][ T29] audit: type=1326 audit(1719178304.506:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12927 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc8aa7d0a9 code=0x7fc00000 [ 796.832928][ T29] audit: type=1326 audit(1719178304.506:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12927 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc8aa7d0a9 code=0x7fc00000 [ 797.020971][ T29] audit: type=1326 audit(1719178304.596:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12927 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc8aa7d0a9 code=0x7fc00000 [ 797.139528][ T29] audit: type=1326 audit(1719178304.596:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12927 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc8aa7d0a9 code=0x7fc00000 [ 797.268404][ T29] audit: type=1326 audit(1719178304.596:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12927 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc8aa7d0a9 code=0x7fc00000 [ 797.320978][T12942] loop1: detected capacity change from 0 to 2048 [ 797.359889][ T29] audit: type=1326 audit(1719178304.596:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12927 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc8aa7d0a9 code=0x7fc00000 [ 797.430897][T12942] EXT4-fs: Ignoring removed mblk_io_submit option [ 797.467017][ T29] audit: type=1326 audit(1719178304.616:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12927 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc8aa7d0a9 code=0x7fc00000 [ 797.507592][T12942] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 797.738196][ T5327] hsr_slave_0: left promiscuous mode [ 797.796247][T12945] EXT4-fs error (device loop1): ext4_validate_block_bitmap:440: comm syz-executor.1: bg 0: block 234: padding at end of block bitmap is not set [ 797.812047][ T5327] hsr_slave_1: left promiscuous mode [ 797.827390][T12945] EXT4-fs (loop1): Remounting filesystem read-only [ 797.886524][ T5327] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 797.945162][ T5327] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 798.044564][ T5327] hsr_slave_0: left promiscuous mode [ 798.118717][ T5327] hsr_slave_1: left promiscuous mode [ 798.149365][ T9660] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 798.191239][ T5327] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 798.212529][ T5327] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 798.426122][T12974] ALSA: mixer_oss: invalid OSS volume '%I' [ 798.432750][T12974] ALSA: mixer_oss: invalid OSS volume 'k~Ky(1kn`Y' [ 803.665480][T13011] loop0: detected capacity change from 0 to 512 [ 803.807393][T13011] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 803.837092][T13011] ext4 filesystem being mounted at /root/syzkaller-testdir2162797729/syzkaller.Dhp0Vw/68/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 804.016556][T13024] ALSA: mixer_oss: invalid OSS volume '%I' [ 804.023280][T13024] ALSA: mixer_oss: invalid OSS volume 'k~Ky(1kn`Y' [ 805.075841][T11742] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 805.094870][ T5327] team0 (unregistering): Port device team_slave_1 removed [ 805.152867][T13029] sd 0:0:1:0: PR command failed: 1026 [ 805.158368][T13029] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 805.241718][T13029] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 805.405763][ T5125] Bluetooth: hci2: command 0x0406 tx timeout [ 805.491754][ T5327] team0 (unregistering): Port device team_slave_0 removed [ 809.893359][T13069] ALSA: mixer_oss: invalid OSS volume '%I' [ 809.900220][T13069] ALSA: mixer_oss: invalid OSS volume 'k~Ky(1kn`Y' [ 811.315009][ T5177] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 811.825810][ T5177] usb 1-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33 [ 811.839350][ T5177] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 811.861575][ T5177] usb 1-1: config 0 descriptor?? [ 812.535618][T13106] netlink: 'syz-executor.3': attribute type 1 has an invalid length. [ 812.571759][T13106] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'. [ 813.106527][T13113] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 813.531382][ T5327] team0 (unregistering): Port device team_slave_1 removed [ 813.685440][ T5177] usb 1-1: Cannot set autoneg [ 813.691425][ T5177] MOSCHIP usb-ethernet driver 1-1:0.0: probe with driver MOSCHIP usb-ethernet driver failed with error -32 [ 813.766028][ T5327] team0 (unregistering): Port device team_slave_0 removed [ 815.321839][T13122] ALSA: mixer_oss: invalid OSS volume '%I' [ 815.328467][T13122] ALSA: mixer_oss: invalid OSS volume 'k~Ky(1kn`Y' [ 816.183411][ T45] usb 1-1: USB disconnect, device number 8 [ 816.659800][T13132] netlink: 'syz-executor.1': attribute type 1 has an invalid length. [ 816.750321][T13138] loop0: detected capacity change from 0 to 4096 [ 816.851282][T13136] 8021q: adding VLAN 0 to HW filter on device bond1 [ 816.972192][ T29] kauditd_printk_skb: 1 callbacks suppressed [ 816.972223][ T29] audit: type=1800 audit(1719178324.956:214): pid=13138 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=33 res=0 errno=0 [ 817.442281][T13149] loop1: detected capacity change from 0 to 512 [ 817.577574][T13149] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 817.595965][T12770] bridge0: port 1(bridge_slave_0) entered blocking state [ 817.629848][T13151] loop0: detected capacity change from 0 to 256 [ 817.638181][T13149] ext4 filesystem being mounted at /root/syzkaller-testdir3830291771/syzkaller.qvG2yk/315/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 817.673904][T12770] bridge0: port 1(bridge_slave_0) entered disabled state [ 817.713036][T12770] bridge_slave_0: entered allmulticast mode [ 817.737705][T12770] bridge_slave_0: entered promiscuous mode [ 817.774707][T12770] bridge0: port 2(bridge_slave_1) entered blocking state [ 817.844747][T12770] bridge0: port 2(bridge_slave_1) entered disabled state [ 817.898422][T12770] bridge_slave_1: entered allmulticast mode [ 817.923692][T12770] bridge_slave_1: entered promiscuous mode [ 818.764280][ T1246] ieee802154 phy1 wpan1: encryption failed: -22 [ 818.797700][ T29] audit: type=1800 audit(1719178326.436:215): pid=13161 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file2" dev="sda1" ino=1967 res=0 errno=0 [ 819.062695][ T29] audit: type=1804 audit(1719178326.506:216): pid=13161 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir584704925/syzkaller.0LVUNF/685/file2" dev="sda1" ino=1967 res=1 errno=0 [ 819.228789][ T9660] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 819.272902][T12770] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 819.327095][T12770] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 819.578897][T12770] team0: Port device team_slave_0 added [ 819.635094][T12770] team0: Port device team_slave_1 added [ 819.882973][T13181] loop0: detected capacity change from 0 to 512 [ 819.886966][T13179] loop1: detected capacity change from 0 to 64 [ 819.947163][T13179] BFS-fs: bfs_fill_super(): Superblock is corrupted on loop1 [ 820.011710][T13181] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 820.045418][T13181] ext4 filesystem being mounted at /root/syzkaller-testdir2162797729/syzkaller.Dhp0Vw/82/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 820.112987][T13181] EXT4-fs error (device loop0): ext4_xattr_block_get:596: inode #15: comm syz-executor.0: corrupted xattr block 32: bad e_name length [ 820.200597][T13181] EXT4-fs (loop0): Remounting filesystem read-only [ 820.217434][T12770] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 820.233269][ T29] audit: type=1800 audit(1719178328.276:217): pid=13181 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.0" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 820.259366][T12770] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 820.306101][T12770] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 820.327888][ T45] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 820.350453][T11742] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 820.368173][T12770] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 820.379551][T12770] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 820.413930][T12770] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 820.541017][ T45] usb 2-1: config 0 has an invalid interface number: 18 but max is 0 [ 820.550322][ T45] usb 2-1: config 0 has no interface number 0 [ 820.577402][ T45] usb 2-1: config 0 interface 18 altsetting 0 endpoint 0x81 has an invalid bInterval 231, changing to 11 [ 820.611298][ T45] usb 2-1: config 0 interface 18 altsetting 0 endpoint 0x81 has invalid maxpacket 24895, setting to 1024 [ 820.647795][ T45] usb 2-1: New USB device found, idVendor=054c, idProduct=03d5, bcdDevice= 0.10 [ 820.658122][ T45] usb 2-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0 [ 820.682832][ T45] usb 2-1: Manufacturer: syz [ 820.750269][ T45] usb 2-1: config 0 descriptor?? [ 820.761167][ T29] audit: type=1800 audit(1719178328.806:218): pid=13190 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1961 res=0 errno=0 [ 820.829040][T12653] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 821.027907][T12653] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 821.120855][T12770] hsr_slave_0: entered promiscuous mode [ 821.157889][T12770] hsr_slave_1: entered promiscuous mode [ 821.196624][T12770] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 821.212056][T12770] Cannot create hsr debugfs directory [ 821.340951][ T45] input: syz as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.18/0003:054C:03D5.0005/input/input17 [ 821.367222][T12653] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 821.514356][T12013] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 821.535307][ T45] sony 0003:054C:03D5.0005: input,hidraw0: USB HID v0.00 Joystick [syz] on usb-dummy_hcd.1-1/input18 [ 821.557693][T12653] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 821.757798][T12013] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 821.786537][T12013] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 821.812773][T12013] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 821.844026][T12013] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 821.887804][T12013] usb 1-1: config 0 descriptor?? [ 822.067907][T13177] block nbd1: shutting down sockets [ 822.887503][ T5177] usb 2-1: USB disconnect, device number 6 [ 823.051131][ T29] audit: type=1800 audit(1719178331.076:219): pid=13206 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file2" dev="sda1" ino=1965 res=0 errno=0 [ 823.084297][ T29] audit: type=1804 audit(1719178331.086:220): pid=13206 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir584704925/syzkaller.0LVUNF/691/file2" dev="sda1" ino=1965 res=1 errno=0 [ 823.833890][T12013] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving [ 823.913181][T12013] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 824.760711][T12013] usb 1-1: USB disconnect, device number 9 [ 825.034309][T12653] 8021q: adding VLAN 0 to HW filter on device bond0 [ 825.178645][T12653] 8021q: adding VLAN 0 to HW filter on device team0 [ 825.303483][ T8] bridge0: port 1(bridge_slave_0) entered blocking state [ 825.310846][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state [ 825.367033][ T8] bridge0: port 2(bridge_slave_1) entered blocking state [ 825.374427][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state [ 825.589657][T13234] loop0: detected capacity change from 0 to 512 [ 825.764220][T13234] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 825.815264][T13234] ext4 filesystem being mounted at /root/syzkaller-testdir2162797729/syzkaller.Dhp0Vw/85/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 826.088084][T12770] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 826.323355][T12770] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 826.398515][T12770] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 826.491466][T11742] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 826.506829][T12653] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 826.621775][T12770] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 826.853114][T13247] ieee802154 phy1 wpan1: encryption failed: -22 [ 827.237638][ T29] audit: type=1326 audit(1719178335.286:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13254 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe08d47d0a9 code=0x0 [ 827.407238][T13258] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 827.535410][T12770] 8021q: adding VLAN 0 to HW filter on device bond0 [ 827.669695][T12770] 8021q: adding VLAN 0 to HW filter on device team0 [ 827.737645][ T5179] bridge0: port 1(bridge_slave_0) entered blocking state [ 827.745067][ T5179] bridge0: port 1(bridge_slave_0) entered forwarding state [ 827.824701][ T5179] bridge0: port 2(bridge_slave_1) entered blocking state [ 827.832107][ T5179] bridge0: port 2(bridge_slave_1) entered forwarding state [ 827.932480][T13272] program syz-executor.0 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 828.171629][T12653] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 828.509405][ T29] audit: type=1326 audit(1719178336.556:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13281 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5c907d0a9 code=0x7ffc0000 [ 828.567682][T13283] loop0: detected capacity change from 0 to 256 [ 828.576763][ T29] audit: type=1326 audit(1719178336.596:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13281 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff5c907d0a9 code=0x7ffc0000 [ 828.635065][T12013] usb 4-1: new low-speed USB device number 9 using dummy_hcd [ 828.645610][ T29] audit: type=1326 audit(1719178336.596:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13281 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5c907d0a9 code=0x7ffc0000 [ 828.687890][T12653] veth0_vlan: entered promiscuous mode [ 828.729303][T13283] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 828.764261][ T29] audit: type=1326 audit(1719178336.596:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13281 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5c907d0a9 code=0x7ffc0000 [ 828.771528][T12653] veth1_vlan: entered promiscuous mode [ 828.792916][T13287] ieee802154 phy1 wpan1: encryption failed: -22 [ 828.864110][T12013] usb 4-1: config index 0 descriptor too short (expected 1307, got 27) [ 828.866792][ T29] audit: type=1326 audit(1719178336.606:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13281 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7ff5c907d0a9 code=0x7ffc0000 [ 828.882949][T12013] usb 4-1: config 0 has an invalid interface number: 0 but max is -1 [ 828.983051][T12013] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 0 [ 828.990501][ T29] audit: type=1326 audit(1719178336.606:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13281 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5c907d0a9 code=0x7ffc0000 [ 828.992167][T12013] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt [ 829.116639][ T29] audit: type=1326 audit(1719178336.606:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13281 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=113 compat=0 ip=0x7ff5c907d0a9 code=0x7ffc0000 [ 829.139583][ C0] vkms_vblank_simulate: vblank timer overrun [ 829.146271][T12013] usb 4-1: string descriptor 0 read error: -71 [ 829.190181][T12013] usb 4-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de [ 829.208087][ T29] audit: type=1326 audit(1719178336.606:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13281 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5c907d0a9 code=0x7ffc0000 [ 829.224366][T12013] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 829.269701][T12770] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 829.299298][T12653] veth0_macvtap: entered promiscuous mode [ 829.309301][ T29] audit: type=1326 audit(1719178336.606:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13281 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5c907d0a9 code=0x7ffc0000 [ 829.312819][T12013] usb 4-1: config 0 descriptor?? [ 829.379604][T12653] veth1_macvtap: entered promiscuous mode [ 829.397004][T12013] usb 4-1: can't set config #0, error -71 [ 829.401490][ T29] audit: type=1326 audit(1719178336.606:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13281 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7ff5c907d0a9 code=0x7ffc0000 [ 829.425831][ C0] vkms_vblank_simulate: vblank timer overrun [ 829.436567][T12013] usb 4-1: USB disconnect, device number 9 [ 829.630800][T12653] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 829.672895][T12653] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 829.698438][T12653] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 829.753040][T12653] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 829.822144][T12653] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 829.875475][T12653] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 829.943008][T12653] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 829.989091][T12653] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 830.004580][T12653] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 830.185651][T12653] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 830.221436][T12653] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 830.256664][T12653] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 830.269492][T12653] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 830.282800][T12653] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 830.308826][T12653] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 830.325622][T12653] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 830.341491][T12653] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 830.361562][T12653] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 830.401449][T12653] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 830.450082][T12653] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 830.466423][T12653] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 830.487551][T12653] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 830.951288][T13325] program syz-executor.0 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 831.000945][T13324] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 831.115764][T12770] veth0_vlan: entered promiscuous mode [ 831.355790][T12770] veth1_vlan: entered promiscuous mode [ 831.467718][T12118] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 831.544926][T12118] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 831.765886][T12118] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 831.813203][T12118] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 831.848924][T12770] veth0_macvtap: entered promiscuous mode [ 831.923488][T12770] veth1_macvtap: entered promiscuous mode [ 832.074447][T12770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 832.140399][T12770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 832.174937][T12770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 832.212429][T12770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 832.265012][T12770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 832.323518][T12770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 832.373806][T12770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 832.421736][T12770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 832.460961][T12770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 832.492287][T12770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 832.555839][T12770] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 832.968853][T12770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 832.997597][T12770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 833.021209][T12770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 833.052269][T13367] program syz-executor.3 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 833.081294][T12770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 833.123618][T12770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 833.152729][T12770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 833.181444][T12770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 833.211917][T12770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 833.240832][T12770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 833.284682][T12770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 833.340288][T12770] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 833.520759][T12588] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 834.556530][T12770] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 834.590805][T12770] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 834.619616][T12770] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 834.639052][T12770] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 834.701225][ T29] kauditd_printk_skb: 63 callbacks suppressed [ 834.701254][ T29] audit: type=1326 audit(1719178342.746:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13372 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f697407d0a9 code=0x0 [ 834.986280][T12588] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 835.311867][T13373] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 835.411438][ T5125] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 835.425736][ T5125] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 835.434736][ T5125] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 835.444596][ T5125] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 835.459239][ T5125] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 835.468406][ T5125] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 835.578844][T12588] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 835.948246][T12588] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 836.311105][T13401] loop1: detected capacity change from 0 to 256 [ 836.454934][T12118] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 836.512492][T12118] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 838.362903][ T5125] Bluetooth: hci0: command tx timeout [ 838.962895][ T29] audit: type=1326 audit(1719178346.976:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13404 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe08d47d0a9 code=0x7ffc0000 [ 839.069879][T12588] bridge_slave_1: left allmulticast mode [ 839.078190][T12588] bridge_slave_1: left promiscuous mode [ 839.082949][ T29] audit: type=1326 audit(1719178347.016:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13404 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe08d47d0a9 code=0x7ffc0000 [ 839.091286][T12588] bridge0: port 2(bridge_slave_1) entered disabled state [ 839.106547][ C0] vkms_vblank_simulate: vblank timer overrun [ 839.224638][T12588] bridge_slave_0: left allmulticast mode [ 839.254666][ T29] audit: type=1326 audit(1719178347.016:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13404 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe08d47d0a9 code=0x7ffc0000 [ 839.291084][T12588] bridge_slave_0: left promiscuous mode [ 839.323957][T12588] bridge0: port 1(bridge_slave_0) entered disabled state [ 839.347341][ T29] audit: type=1326 audit(1719178347.016:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13404 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe08d47d0a9 code=0x7ffc0000 [ 839.452844][ T29] audit: type=1326 audit(1719178347.016:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13404 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7fe08d47d0a9 code=0x7ffc0000 [ 839.573784][ T5177] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 839.584216][ T29] audit: type=1326 audit(1719178347.016:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13404 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe08d47d0a9 code=0x7ffc0000 [ 839.715352][ T29] audit: type=1326 audit(1719178347.016:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13404 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe08d47d0a9 code=0x7ffc0000 [ 839.825735][ T29] audit: type=1326 audit(1719178347.036:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13404 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=113 compat=0 ip=0x7fe08d47d0a9 code=0x7ffc0000 [ 839.953808][ T29] audit: type=1326 audit(1719178347.036:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13404 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe08d47d0a9 code=0x7ffc0000 [ 840.030531][ T29] audit: type=1326 audit(1719178347.046:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13404 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fe08d47d0a9 code=0x7ffc0000 [ 840.085715][ T29] audit: type=1326 audit(1719178347.046:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13404 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fe08d47d0e3 code=0x7ffc0000 [ 840.118167][ T29] audit: type=1326 audit(1719178347.046:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13404 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fe08d47bdef code=0x7ffc0000 [ 840.171421][ T29] audit: type=1326 audit(1719178347.076:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13404 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fe08d47d137 code=0x7ffc0000 [ 840.211490][ T29] audit: type=1326 audit(1719178347.076:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13404 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe08d47bca0 code=0x7ffc0000 [ 840.272740][ T29] audit: type=1326 audit(1719178347.076:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13404 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fe08d47bf9a code=0x7ffc0000 [ 840.362750][ T29] audit: type=1326 audit(1719178347.076:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13404 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe08d47d0a9 code=0x7ffc0000 [ 840.468683][ T5125] Bluetooth: hci0: command tx timeout [ 841.547395][T12588] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 841.574748][T12588] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 841.594865][T12588] bond0 (unregistering): Released all slaves [ 841.619018][T13446] netlink: 300 bytes leftover after parsing attributes in process `syz-executor.3'. [ 841.735164][T12118] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 841.783622][T12118] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 841.986391][T13451] loop4: detected capacity change from 0 to 512 [ 841.995723][T13451] EXT4-fs: Ignoring removed mblk_io_submit option [ 842.017156][T13451] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 842.156046][T13451] EXT4-fs (loop4): 1 truncate cleaned up [ 842.187798][T13451] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 842.380754][T13451] loop4: detected capacity change from 512 to 64 [ 842.527668][ T5125] Bluetooth: hci0: command tx timeout [ 843.011254][T11485] EXT4-fs warning (device loop4): ext4_empty_dir:3116: inode #11: lblock 5: comm syz-executor.4: error -12 reading directory block [ 843.097814][T11485] EXT4-fs warning (device loop4): ext4_empty_dir:3116: inode #11: lblock 5: comm syz-executor.4: error -12 reading directory block [ 843.193989][T11485] EXT4-fs warning (device loop4): ext4_empty_dir:3116: inode #11: lblock 5: comm syz-executor.4: error -12 reading directory block [ 843.232439][T11485] EXT4-fs warning (device loop4): ext4_empty_dir:3116: inode #11: lblock 5: comm syz-executor.4: error -12 reading directory block [ 843.287460][T11485] EXT4-fs warning (device loop4): ext4_empty_dir:3116: inode #11: lblock 5: comm syz-executor.4: error -12 reading directory block [ 843.325354][T11485] EXT4-fs warning (device loop4): ext4_empty_dir:3116: inode #11: lblock 5: comm syz-executor.4: error -12 reading directory block [ 843.376910][T11485] EXT4-fs warning (device loop4): ext4_empty_dir:3116: inode #11: lblock 5: comm syz-executor.4: error -12 reading directory block [ 843.393114][ T5177] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 843.475168][T11485] EXT4-fs warning (device loop4): ext4_empty_dir:3116: inode #11: lblock 5: comm syz-executor.4: error -12 reading directory block [ 843.616273][ T5177] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 843.636137][T11485] EXT4-fs warning (device loop4): ext4_empty_dir:3116: inode #11: lblock 5: comm syz-executor.4: error -12 reading directory block [ 843.642763][ T5177] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 843.716127][T11485] EXT4-fs warning (device loop4): ext4_empty_dir:3116: inode #11: lblock 5: comm syz-executor.4: error -12 reading directory block [ 843.731692][ T5177] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 843.763167][ T5177] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 843.901499][ T5177] usb 1-1: config 0 descriptor?? [ 844.064121][T13485] ALSA: mixer_oss: invalid OSS volume '%I' [ 844.071976][T13485] ALSA: mixer_oss: invalid OSS volume 'k~Ky(1kn`Y' [ 844.603141][ T5125] Bluetooth: hci0: command tx timeout [ 845.136269][ T5177] plantronics 0003:047F:FFFF.0007: No inputs registered, leaving [ 845.189554][ T5177] plantronics 0003:047F:FFFF.0007: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 845.447667][T12588] hsr_slave_0: left promiscuous mode [ 845.475334][T12588] hsr_slave_1: left promiscuous mode [ 845.508812][T11485] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 845.518563][T12588] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 845.543157][T12588] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 845.574708][T12588] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 845.598995][T12588] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 845.609500][T13493] netlink: 300 bytes leftover after parsing attributes in process `syz-executor.3'. [ 845.644225][T13495] sock: sock_timestamping_bind_phc: sock not bind to device [ 845.750863][T12588] veth1_macvtap: left promiscuous mode [ 845.762906][T12588] veth0_macvtap: left promiscuous mode [ 845.768793][T12588] veth1_vlan: left promiscuous mode [ 845.803414][T12588] veth0_vlan: left promiscuous mode [ 846.015562][ T5209] usb 1-1: USB disconnect, device number 11 [ 846.297170][ T54] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 846.312133][ T54] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 846.328826][ T54] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 846.340615][ T54] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 846.351579][ T54] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 846.360639][ T54] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 846.583560][T13507] loop3: detected capacity change from 1024 to 64 [ 847.177267][T13521] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 847.630335][T13528] sock: sock_timestamping_bind_phc: sock not bind to device [ 847.916648][ T5125] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 847.935201][ T5125] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 847.980704][ T5125] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 848.019195][ T5125] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 848.038339][ T5125] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 848.048061][ T5125] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 848.500224][ T54] Bluetooth: hci3: command tx timeout [ 849.327021][T12588] team0 (unregistering): Port device team_slave_1 removed [ 849.425260][T12588] team0 (unregistering): Port device team_slave_0 removed [ 850.124457][ T54] Bluetooth: hci5: command tx timeout [ 850.520843][T13381] chnl_net:caif_netlink_parms(): no params data found [ 850.606488][ T54] Bluetooth: hci3: command tx timeout [ 851.891808][T13565] sock: sock_timestamping_bind_phc: sock not bind to device [ 851.953433][T13381] bridge0: port 1(bridge_slave_0) entered blocking state [ 852.031061][T13381] bridge0: port 1(bridge_slave_0) entered disabled state [ 852.082805][T13381] bridge_slave_0: entered allmulticast mode [ 852.131085][T13381] bridge_slave_0: entered promiscuous mode [ 852.149719][T13381] bridge0: port 2(bridge_slave_1) entered blocking state [ 852.167856][T13381] bridge0: port 2(bridge_slave_1) entered disabled state [ 852.177619][T13381] bridge_slave_1: entered allmulticast mode [ 852.194670][T13381] bridge_slave_1: entered promiscuous mode [ 852.243414][ T54] Bluetooth: hci5: command tx timeout [ 852.583448][T13381] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 852.609743][ T29] kauditd_printk_skb: 55 callbacks suppressed [ 852.609765][ T29] audit: type=1326 audit(1719178360.656:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13573 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5c907d0a9 code=0x7ffc0000 [ 852.702753][ T54] Bluetooth: hci3: command tx timeout [ 852.795317][T13381] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 852.835564][T13578] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'. [ 852.886415][ T29] audit: type=1326 audit(1719178360.656:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13573 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff5c907d0a9 code=0x7ffc0000 [ 852.986285][ T29] audit: type=1326 audit(1719178360.656:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13573 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5c907d0a9 code=0x7ffc0000 [ 853.013547][ T29] audit: type=1326 audit(1719178360.656:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13573 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5c907d0a9 code=0x7ffc0000 [ 853.061162][ T29] audit: type=1326 audit(1719178360.666:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13573 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7ff5c907d0a9 code=0x7ffc0000 [ 853.859490][ T29] audit: type=1326 audit(1719178360.666:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13573 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5c907d0a9 code=0x7ffc0000 [ 854.022967][ T29] audit: type=1326 audit(1719178360.666:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13573 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5c907d0a9 code=0x7ffc0000 [ 854.163599][ T29] audit: type=1326 audit(1719178360.676:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13573 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=113 compat=0 ip=0x7ff5c907d0a9 code=0x7ffc0000 [ 854.245299][ T29] audit: type=1326 audit(1719178360.676:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13573 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5c907d0a9 code=0x7ffc0000 [ 854.276812][ T29] audit: type=1326 audit(1719178360.676:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13573 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5c907d0a9 code=0x7ffc0000 [ 854.300033][ T54] Bluetooth: hci5: command tx timeout [ 854.479875][T13381] team0: Port device team_slave_0 added [ 854.531996][T13381] team0: Port device team_slave_1 added [ 854.594204][T13593] loop1: detected capacity change from 0 to 4096 [ 854.736174][T12588] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 854.778792][ T54] Bluetooth: hci3: command tx timeout [ 856.012996][T12588] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 856.171819][T13381] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 856.180231][T13381] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 856.232834][T13381] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 856.258926][T13381] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 856.273269][T13381] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 856.310784][T13381] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 856.364312][ T54] Bluetooth: hci5: command tx timeout [ 856.386358][T13611] netlink: 300 bytes leftover after parsing attributes in process `syz-executor.1'. [ 856.422997][T13613] sock: sock_timestamping_bind_phc: sock not bind to device [ 856.507027][T12588] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 856.930710][T13620] loop1: detected capacity change from 0 to 256 [ 856.942497][T12588] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 857.119242][T13620] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 857.511506][T13381] hsr_slave_0: entered promiscuous mode [ 857.549671][T13381] hsr_slave_1: entered promiscuous mode [ 857.568508][T13381] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 857.576508][T13381] Cannot create hsr debugfs directory [ 857.585750][T13531] chnl_net:caif_netlink_parms(): no params data found [ 857.613749][ T29] kauditd_printk_skb: 209 callbacks suppressed [ 857.613773][ T29] audit: type=1326 audit(1719178365.656:586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13619 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f697407a827 code=0x7ffc0000 [ 857.700553][ T29] audit: type=1326 audit(1719178365.656:587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13619 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f69740404e9 code=0x7ffc0000 [ 857.742164][ T29] audit: type=1326 audit(1719178365.656:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13619 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f697407a827 code=0x7ffc0000 [ 857.790904][ T29] audit: type=1326 audit(1719178365.666:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13619 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f69740404e9 code=0x7ffc0000 [ 857.912360][ T29] audit: type=1326 audit(1719178365.666:590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13619 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f697407a827 code=0x7ffc0000 [ 858.022789][ T29] audit: type=1326 audit(1719178365.666:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13619 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f69740404e9 code=0x7ffc0000 [ 858.093794][ T29] audit: type=1326 audit(1719178365.666:592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13619 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f697407a827 code=0x7ffc0000 [ 858.135441][ T29] audit: type=1326 audit(1719178365.666:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13619 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f69740404e9 code=0x7ffc0000 [ 858.160086][ T29] audit: type=1326 audit(1719178365.666:594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13619 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f697407a827 code=0x7ffc0000 [ 858.187104][ T29] audit: type=1326 audit(1719178365.666:595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13619 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f69740404e9 code=0x7ffc0000 [ 858.330166][T13638] ALSA: mixer_oss: invalid OSS volume '%I' [ 858.336958][T13638] ALSA: mixer_oss: invalid OSS volume 'k~Ky(1kn`Y' [ 859.498029][T12588] bridge_slave_1: left allmulticast mode [ 859.532094][T12588] bridge_slave_1: left promiscuous mode [ 859.567084][T12588] bridge0: port 2(bridge_slave_1) entered disabled state [ 859.605919][T12588] bridge_slave_0: left allmulticast mode [ 859.611609][T12588] bridge_slave_0: left promiscuous mode [ 859.663659][T12588] bridge0: port 1(bridge_slave_0) entered disabled state [ 859.674718][ T5125] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 859.692774][ T5125] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 859.703430][ T5125] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 859.718903][ T5125] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 859.731890][ T5125] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 859.745185][ T5125] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 859.846982][T13648] loop1: detected capacity change from 0 to 4096 [ 860.756163][T13654] ip6t_srh: unknown srh match flags 7355 [ 861.215751][T12588] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 861.248139][T12588] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 861.282368][T12588] bond0 (unregistering): Released all slaves [ 861.811775][ T54] Bluetooth: hci2: command tx timeout [ 862.183288][T13531] bridge0: port 1(bridge_slave_0) entered blocking state [ 862.190618][T13531] bridge0: port 1(bridge_slave_0) entered disabled state [ 862.199898][T13531] bridge_slave_0: entered allmulticast mode [ 862.213855][T13531] bridge_slave_0: entered promiscuous mode [ 862.229512][T13531] bridge0: port 2(bridge_slave_1) entered blocking state [ 862.237711][T13531] bridge0: port 2(bridge_slave_1) entered disabled state [ 862.251142][T13531] bridge_slave_1: entered allmulticast mode [ 862.266203][T13531] bridge_slave_1: entered promiscuous mode [ 863.889249][ T54] Bluetooth: hci2: command tx timeout [ 864.076927][T13531] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 864.121038][T13531] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 864.240360][T13501] chnl_net:caif_netlink_parms(): no params data found [ 865.824925][T13531] team0: Port device team_slave_0 added [ 865.873971][T13531] team0: Port device team_slave_1 added [ 865.963549][ T54] Bluetooth: hci2: command tx timeout [ 866.435190][ T5125] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 866.449488][ T5125] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 866.459412][ T5125] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 866.468969][ T5125] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 866.481158][ T5125] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 866.518264][ T5125] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 866.608963][T13531] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 866.626688][T13531] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 866.659833][T13531] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 866.858855][ T29] kauditd_printk_skb: 34 callbacks suppressed [ 866.858884][ T29] audit: type=1800 audit(1719178374.906:630): pid=13680 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file1" dev="sda1" ino=1940 res=0 errno=0 [ 866.889850][T13531] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 866.897235][T13531] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 866.925569][T13531] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 867.205229][T12588] hsr_slave_0: left promiscuous mode [ 867.224140][T12588] hsr_slave_1: left promiscuous mode [ 867.235841][T12588] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 867.252971][T12588] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 867.264093][T12588] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 867.271785][T12588] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 867.334689][T12588] veth1_macvtap: left promiscuous mode [ 867.341005][T12588] veth0_macvtap: left promiscuous mode [ 867.349383][T12588] veth1_vlan: left promiscuous mode [ 867.355110][T12588] veth0_vlan: left promiscuous mode [ 868.056905][ T54] Bluetooth: hci2: command tx timeout [ 868.684476][ T54] Bluetooth: hci4: command tx timeout [ 868.789642][T12588] team0 (unregistering): Port device team_slave_1 removed [ 868.853131][T12588] team0 (unregistering): Port device team_slave_0 removed [ 869.746176][T13501] bridge0: port 1(bridge_slave_0) entered blocking state [ 869.754051][T13501] bridge0: port 1(bridge_slave_0) entered disabled state [ 869.761503][T13501] bridge_slave_0: entered allmulticast mode [ 869.786824][T13501] bridge_slave_0: entered promiscuous mode [ 869.819121][T13501] bridge0: port 2(bridge_slave_1) entered blocking state [ 869.835145][T13501] bridge0: port 2(bridge_slave_1) entered disabled state [ 869.842722][T13501] bridge_slave_1: entered allmulticast mode [ 869.851927][T13501] bridge_slave_1: entered promiscuous mode [ 869.907839][T13691] bridge0: port 2(bridge_slave_1) entered disabled state [ 869.915540][T13691] bridge0: port 1(bridge_slave_0) entered disabled state [ 869.996970][T13692] bridge_slave_1: left allmulticast mode [ 870.006341][T13692] bridge_slave_1: left promiscuous mode [ 870.013846][T13692] bridge0: port 2(bridge_slave_1) entered disabled state [ 870.049262][T13692] bridge_slave_0: left allmulticast mode [ 870.055626][T13692] bridge_slave_0: left promiscuous mode [ 870.061517][T13692] bridge0: port 1(bridge_slave_0) entered disabled state [ 870.476959][T13501] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 870.497686][T13501] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 870.581950][T13531] hsr_slave_0: entered promiscuous mode [ 870.618293][T13531] hsr_slave_1: entered promiscuous mode [ 870.643851][T13531] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 870.651543][T13531] Cannot create hsr debugfs directory [ 870.773754][ T54] Bluetooth: hci4: command tx timeout [ 870.920434][T13501] team0: Port device team_slave_0 added [ 871.088763][T13501] team0: Port device team_slave_1 added [ 872.907395][ T54] Bluetooth: hci4: command tx timeout [ 874.465536][T13501] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 874.482668][T13501] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 874.530260][T13501] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 874.547652][T13501] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 874.571042][T13501] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 874.628358][T13501] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 874.670106][T13707] loop1: detected capacity change from 0 to 64 [ 875.192199][T13501] hsr_slave_0: entered promiscuous mode [ 875.208148][T13501] hsr_slave_1: entered promiscuous mode [ 875.223939][T13501] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 875.233264][T13501] Cannot create hsr debugfs directory [ 875.387625][T12588] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 875.584930][ T29] audit: type=1800 audit(1719178383.626:631): pid=13714 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file1" dev="sda1" ino=1940 res=0 errno=0 [ 875.630494][T12588] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 875.749340][T13381] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 875.830674][T12588] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 875.920182][T13381] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 875.937679][T13381] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 876.000496][T13649] chnl_net:caif_netlink_parms(): no params data found [ 876.084984][T12588] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 876.293069][T13381] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 876.374173][ T5125] Bluetooth: hci4: command tx timeout [ 876.798219][T13531] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 876.850020][T13676] chnl_net:caif_netlink_parms(): no params data found [ 876.992404][T13531] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 877.298402][T13531] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 877.520265][ C0] TCP: request_sock_TCP: Possible SYN flooding on port [::]:2. Sending cookies. [ 877.610506][T13531] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 877.639381][T13649] bridge0: port 1(bridge_slave_0) entered blocking state [ 877.648508][T13649] bridge0: port 1(bridge_slave_0) entered disabled state [ 877.656948][T13649] bridge_slave_0: entered allmulticast mode [ 877.680760][T13649] bridge_slave_0: entered promiscuous mode [ 877.778509][T13649] bridge0: port 2(bridge_slave_1) entered blocking state [ 877.803813][T13649] bridge0: port 2(bridge_slave_1) entered disabled state [ 877.811252][T13649] bridge_slave_1: entered allmulticast mode [ 877.838950][T13649] bridge_slave_1: entered promiscuous mode [ 878.066820][T12588] bridge_slave_1: left allmulticast mode [ 878.084829][T12588] bridge_slave_1: left promiscuous mode [ 878.090826][T12588] bridge0: port 2(bridge_slave_1) entered disabled state [ 878.116942][T12588] bridge_slave_0: left allmulticast mode [ 878.134064][T12588] bridge_slave_0: left promiscuous mode [ 878.140050][T12588] bridge0: port 1(bridge_slave_0) entered disabled state [ 878.289538][T13752] loop1: detected capacity change from 0 to 256 [ 878.365022][T13752] FAT-fs (loop1): Directory bread(block 64) failed [ 878.371744][T13752] FAT-fs (loop1): Directory bread(block 65) failed [ 878.380134][T13752] FAT-fs (loop1): Directory bread(block 66) failed [ 878.411514][T13752] FAT-fs (loop1): Directory bread(block 67) failed [ 878.418500][T13752] FAT-fs (loop1): Directory bread(block 68) failed [ 878.427183][T13752] FAT-fs (loop1): Directory bread(block 69) failed [ 878.443111][T13752] FAT-fs (loop1): Directory bread(block 70) failed [ 878.449714][T13752] FAT-fs (loop1): Directory bread(block 71) failed [ 878.461209][T13752] FAT-fs (loop1): Directory bread(block 72) failed [ 878.467960][T13752] FAT-fs (loop1): Directory bread(block 73) failed [ 879.276180][T12588] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 879.285768][T12588] bond_slave_0: left promiscuous mode [ 879.303875][T12588] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 879.315219][T12588] bond_slave_1: left promiscuous mode [ 879.329442][T12588] bond0 (unregistering): Released all slaves [ 879.444390][T13649] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 879.477228][T13649] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 879.550972][T13676] bridge0: port 1(bridge_slave_0) entered blocking state [ 879.564033][T13676] bridge0: port 1(bridge_slave_0) entered disabled state [ 879.571535][T13676] bridge_slave_0: entered allmulticast mode [ 879.581079][T13676] bridge_slave_0: entered promiscuous mode [ 879.780376][T13676] bridge0: port 2(bridge_slave_1) entered blocking state [ 879.792898][T13676] bridge0: port 2(bridge_slave_1) entered disabled state [ 879.800150][T13676] bridge_slave_1: entered allmulticast mode [ 879.835864][T13676] bridge_slave_1: entered promiscuous mode [ 879.906907][T13649] team0: Port device team_slave_0 added [ 879.940374][T13649] team0: Port device team_slave_1 added [ 880.069551][T13760] loop1: detected capacity change from 0 to 4096 [ 880.154093][ T1246] ieee802154 phy1 wpan1: encryption failed: -22 [ 880.258905][T13676] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 880.290202][T13649] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 880.299880][T13649] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 880.330703][T13649] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 880.357093][T13649] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 880.365470][T13649] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 880.391900][T13649] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 880.568122][T13676] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 880.729492][T13676] team0: Port device team_slave_0 added [ 880.754808][T13531] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 880.795718][T13531] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 881.098874][T13676] team0: Port device team_slave_1 added [ 881.115831][T13531] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 881.203965][T13767] netlink: 'syz-executor.1': attribute type 24 has an invalid length. [ 881.417101][T13676] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 881.424219][T13676] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 881.467221][T13676] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 881.491085][T13531] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 881.630980][T12588] hsr_slave_0: left promiscuous mode [ 881.639390][T12588] hsr_slave_1: left promiscuous mode [ 881.650507][T12588] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 881.660435][T12588] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 881.672800][T12588] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 881.681156][T12588] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 881.723589][T12588] veth1_macvtap: left promiscuous mode [ 881.729279][T12588] veth0_macvtap: left promiscuous mode [ 881.737336][T12588] veth1_vlan: left promiscuous mode [ 881.743155][T12588] veth0_vlan: left promiscuous mode [ 882.929942][T12588] team0 (unregistering): Port device team_slave_1 removed [ 883.050514][T12588] team0 (unregistering): Port device team_slave_0 removed [ 884.292365][T13676] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 884.300118][T13676] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 884.334853][T13676] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 884.396098][T13649] hsr_slave_0: entered promiscuous mode [ 884.441958][T13649] hsr_slave_1: entered promiscuous mode [ 884.449211][T13649] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 884.461960][T13649] Cannot create hsr debugfs directory [ 884.985545][T13676] hsr_slave_0: entered promiscuous mode [ 885.010058][T13676] hsr_slave_1: entered promiscuous mode [ 885.029926][T13676] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 885.053311][T13676] Cannot create hsr debugfs directory [ 885.308767][T13381] 8021q: adding VLAN 0 to HW filter on device bond0 [ 885.554247][T13501] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 885.614319][T13501] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 885.716561][T13501] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 885.739527][T13501] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 886.072402][T13381] 8021q: adding VLAN 0 to HW filter on device team0 [ 886.248029][T13413] bridge0: port 1(bridge_slave_0) entered blocking state [ 886.255430][T13413] bridge0: port 1(bridge_slave_0) entered forwarding state [ 886.351278][T13782] syzkaller0: entered promiscuous mode [ 886.357720][T13782] syzkaller0: entered allmulticast mode [ 886.407053][T13413] bridge0: port 2(bridge_slave_1) entered blocking state [ 886.414384][T13413] bridge0: port 2(bridge_slave_1) entered forwarding state [ 890.310359][T13531] 8021q: adding VLAN 0 to HW filter on device bond0 [ 890.532054][T13531] 8021q: adding VLAN 0 to HW filter on device team0 [ 890.699221][ T45] bridge0: port 1(bridge_slave_0) entered blocking state [ 890.706784][ T45] bridge0: port 1(bridge_slave_0) entered forwarding state [ 890.757103][T13649] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 890.942396][T13676] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 890.989430][T13649] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 891.016216][ T5209] bridge0: port 2(bridge_slave_1) entered blocking state [ 891.023632][ T5209] bridge0: port 2(bridge_slave_1) entered forwarding state [ 891.053946][T13649] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 891.098766][T13649] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 891.219930][T13676] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 891.429472][T13676] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 891.540736][T13501] 8021q: adding VLAN 0 to HW filter on device bond0 [ 891.739498][T13676] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 892.011120][T13381] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 893.171086][T13501] 8021q: adding VLAN 0 to HW filter on device team0 [ 893.550381][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 893.557775][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 893.708608][ T4572] bridge0: port 2(bridge_slave_1) entered blocking state [ 893.716022][ T4572] bridge0: port 2(bridge_slave_1) entered forwarding state [ 894.095558][T13676] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 894.160464][ T29] audit: type=1326 audit(1719178402.206:632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13811 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f697407d0a9 code=0x0 [ 894.229285][T13676] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 894.403433][T13676] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 894.467683][T13676] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 894.587677][T13649] 8021q: adding VLAN 0 to HW filter on device bond0 [ 895.062415][T13649] 8021q: adding VLAN 0 to HW filter on device team0 [ 895.331594][T13531] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 895.383890][ T5209] bridge0: port 1(bridge_slave_0) entered blocking state [ 895.391299][ T5209] bridge0: port 1(bridge_slave_0) entered forwarding state [ 895.786520][ T54] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 895.801231][ T54] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 895.819009][ T54] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 895.831403][ T5178] bridge0: port 2(bridge_slave_1) entered blocking state [ 895.838876][ T5178] bridge0: port 2(bridge_slave_1) entered forwarding state [ 895.862930][ T54] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 895.916661][ T54] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 895.929972][ T54] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 896.543530][T13501] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 896.929893][T13676] 8021q: adding VLAN 0 to HW filter on device bond0 [ 897.078463][ T5319] bridge_slave_1: left allmulticast mode [ 897.102879][ T5319] bridge_slave_1: left promiscuous mode [ 897.108888][ T5319] bridge0: port 2(bridge_slave_1) entered disabled state [ 897.174357][ T5319] bridge_slave_0: left allmulticast mode [ 897.180104][ T5319] bridge_slave_0: left promiscuous mode [ 897.213174][ T5319] bridge0: port 1(bridge_slave_0) entered disabled state [ 898.123380][ T5125] Bluetooth: hci0: command tx timeout [ 898.669016][ T5319] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 898.687269][ T5319] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 898.700949][ T5319] bond0 (unregistering): Released all slaves [ 898.913798][T13676] 8021q: adding VLAN 0 to HW filter on device team0 [ 899.085746][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 899.093188][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 899.466177][ T4572] bridge0: port 2(bridge_slave_1) entered blocking state [ 899.473604][ T4572] bridge0: port 2(bridge_slave_1) entered forwarding state [ 899.554445][ T5319] hsr_slave_0: left promiscuous mode [ 899.564177][ T5319] hsr_slave_1: left promiscuous mode [ 899.576054][ T5319] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 899.600149][ T5319] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 900.213583][ T5125] Bluetooth: hci0: command tx timeout [ 900.352381][ T5319] team0 (unregistering): Port device team_slave_1 removed [ 900.479513][ T5319] team0 (unregistering): Port device team_slave_0 removed [ 902.119020][T13531] veth0_vlan: entered promiscuous mode [ 902.127199][T13876] loop1: detected capacity change from 0 to 2048 [ 902.140683][T13876] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 902.223430][T13877] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 902.283927][ T5125] Bluetooth: hci0: command tx timeout [ 902.335934][T13501] veth0_vlan: entered promiscuous mode [ 902.367235][T13531] veth1_vlan: entered promiscuous mode [ 902.497954][T13501] veth1_vlan: entered promiscuous mode [ 902.566894][ T29] audit: type=1326 audit(1719178410.616:633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13879 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f697407d0a9 code=0x0 [ 902.610119][T13649] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 902.715898][T13828] chnl_net:caif_netlink_parms(): no params data found [ 903.117588][T13828] bridge0: port 1(bridge_slave_0) entered blocking state [ 903.141747][T13828] bridge0: port 1(bridge_slave_0) entered disabled state [ 903.159294][T13828] bridge_slave_0: entered allmulticast mode [ 903.185715][T13828] bridge_slave_0: entered promiscuous mode [ 903.205428][T13828] bridge0: port 2(bridge_slave_1) entered blocking state [ 903.221668][T13828] bridge0: port 2(bridge_slave_1) entered disabled state [ 903.229144][T13828] bridge_slave_1: entered allmulticast mode [ 903.240596][T13828] bridge_slave_1: entered promiscuous mode [ 903.371120][T13828] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 903.407225][T13531] veth0_macvtap: entered promiscuous mode [ 903.464878][T13828] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 903.786605][T13501] veth0_macvtap: entered promiscuous mode [ 903.839743][T13531] veth1_macvtap: entered promiscuous mode [ 904.080202][T13828] team0: Port device team_slave_0 added [ 904.110044][T13676] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 904.167970][T13649] veth0_vlan: entered promiscuous mode [ 904.208956][T13828] team0: Port device team_slave_1 added [ 904.379225][ T5125] Bluetooth: hci0: command tx timeout [ 904.447070][T13531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 904.459104][T13531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 904.469130][T13531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 904.480326][T13531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 904.499762][T13531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 904.512364][T13531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 904.527852][T13531] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 904.574755][T13828] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 904.581948][T13828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 904.628817][T13828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 904.678323][T13531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 904.689389][T13531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 904.699543][T13531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 904.710797][T13531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 904.737578][T13531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 904.758858][T13531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 904.783400][T13531] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 904.924161][T13828] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 904.931202][T13828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 904.959883][T13828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 905.032898][T13649] veth1_vlan: entered promiscuous mode [ 905.094939][T13531] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 905.118513][T13531] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 905.129503][T13531] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 905.149970][T13531] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 905.831549][T13828] hsr_slave_0: entered promiscuous mode [ 905.862486][T13828] hsr_slave_1: entered promiscuous mode [ 905.878155][T13828] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 905.900614][T13828] Cannot create hsr debugfs directory [ 906.405282][ T54] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 906.437616][ T54] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 906.448865][ T54] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 906.460146][ T54] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 906.468767][ T54] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 906.476571][ T54] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 906.655962][T13676] veth0_vlan: entered promiscuous mode [ 906.697170][T13676] veth1_vlan: entered promiscuous mode [ 907.095180][T13649] veth0_macvtap: entered promiscuous mode [ 907.427887][T13649] veth1_macvtap: entered promiscuous mode [ 907.586311][T13911] loop1: detected capacity change from 0 to 512 [ 907.703565][T13649] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 907.729848][T13649] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 907.749275][T13649] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 907.760098][T13649] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 907.789311][T13649] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 907.813298][T13649] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 907.823491][T13649] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 907.842907][T13649] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 907.857727][T13649] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 907.868993][T13676] veth0_macvtap: entered promiscuous mode [ 908.192490][T13649] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 908.217362][T13649] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 908.227751][T13649] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 908.238555][T13649] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 908.248914][T13649] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 908.259539][T13649] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 908.312807][T13649] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 908.332846][T13649] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 908.377020][T13649] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 908.454405][T13676] veth1_macvtap: entered promiscuous mode [ 908.533456][ T5125] Bluetooth: hci3: command tx timeout [ 908.743424][T13649] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 908.752226][T13649] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 908.778280][T13649] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 908.808267][T13649] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 908.905953][ T4250] bridge_slave_1: left allmulticast mode [ 908.911683][ T4250] bridge_slave_1: left promiscuous mode [ 908.944336][ T4250] bridge0: port 2(bridge_slave_1) entered disabled state [ 908.965709][ T4250] bridge_slave_0: left allmulticast mode [ 908.971420][ T4250] bridge_slave_0: left promiscuous mode [ 908.983209][ T4250] bridge0: port 1(bridge_slave_0) entered disabled state [ 909.236625][ T54] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 909.258442][ T54] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 909.270560][ T54] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 909.320628][ T54] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 909.363548][ T54] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 909.384832][ T54] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 910.190394][ T4250] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 910.215748][ T4250] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 910.247428][ T4250] bond0 (unregistering): Released all slaves [ 910.622853][ T5125] Bluetooth: hci3: command tx timeout [ 911.010133][T13676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 911.033043][T13676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 911.045658][T13676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 911.068453][T13676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 911.079880][T13676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 911.092551][T13676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 911.104298][T13676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 911.115077][T13676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 911.135194][T13676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 911.158186][T13676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 911.201953][T13676] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 911.396990][ T4250] hsr_slave_0: left promiscuous mode [ 911.404815][ T4250] hsr_slave_1: left promiscuous mode [ 911.411880][ T4250] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 911.421922][ T4250] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 911.477889][ T4250] veth0_macvtap: left promiscuous mode [ 911.485560][ T4250] veth1_vlan: left promiscuous mode [ 911.486540][ T5125] Bluetooth: hci5: command tx timeout [ 911.491159][ T4250] veth0_vlan: left promiscuous mode [ 912.698863][ T5125] Bluetooth: hci3: command tx timeout [ 913.035778][ T4250] team0 (unregistering): Port device team_slave_1 removed [ 913.216066][ T4250] team0 (unregistering): Port device team_slave_0 removed [ 913.573866][ T5125] Bluetooth: hci5: command tx timeout [ 914.437185][ C0] vxcan0: j1939_tp_rxtimer: 0xffff8880205d8800: rx timeout, send abort [ 914.453230][ C0] vxcan0: j1939_tp_rxtimer: 0xffff88801d7d7000: rx timeout, send abort [ 914.463769][ C0] vxcan0: j1939_xtp_rx_abort_one: 0xffff8880205d8800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 914.478842][ C0] vxcan0: j1939_xtp_rx_abort_one: 0xffff88801d7d7000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 914.635843][T13676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 914.656977][T13676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 914.672292][T13676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 914.692747][T13676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 914.710545][T13676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 914.725009][T13676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 914.737837][T13676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 914.748476][T13676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 914.759422][T13676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 914.770551][T13676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 914.775422][ T5125] Bluetooth: hci3: command tx timeout [ 914.784123][T13676] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 914.820442][T13676] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 914.879017][T13676] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 914.888417][T13676] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 914.897409][T13676] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 915.643677][ T5125] Bluetooth: hci5: command tx timeout [ 915.864928][T13828] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 915.921361][ T5319] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 915.937565][ T5319] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 916.034298][T13828] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 916.062808][T13828] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 916.079281][T13828] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 916.225321][ T3897] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 916.225597][T13908] chnl_net:caif_netlink_parms(): no params data found [ 916.235446][ T3897] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 916.793485][T12588] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 916.802012][T12588] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 917.103080][ T3897] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 917.135277][ T3897] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 918.493664][ T5125] Bluetooth: hci5: command tx timeout [ 918.752490][T13908] bridge0: port 1(bridge_slave_0) entered blocking state [ 918.783188][T13908] bridge0: port 1(bridge_slave_0) entered disabled state [ 918.790618][T13908] bridge_slave_0: entered allmulticast mode [ 918.848948][T13908] bridge_slave_0: entered promiscuous mode [ 918.979204][T13992] loop1: detected capacity change from 0 to 2048 [ 919.003891][T13992] NILFS (loop1): invalid segment: Sequence number mismatch [ 919.011248][T13992] NILFS (loop1): trying rollback from an earlier position [ 919.039362][T13992] NILFS (loop1): recovery complete [ 919.055216][T13994] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 919.779242][ T29] audit: type=1326 audit(1719178427.656:634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13991 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f697407d0a9 code=0x7ffc0000 [ 920.401856][ T4250] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 920.420798][ T29] audit: type=1326 audit(1719178427.656:635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13991 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f697407d0a9 code=0x7ffc0000 [ 920.533299][T13908] bridge0: port 2(bridge_slave_1) entered blocking state [ 920.562961][ T29] audit: type=1326 audit(1719178427.666:636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13991 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f697407bca0 code=0x7ffc0000 [ 920.593106][T13908] bridge0: port 2(bridge_slave_1) entered disabled state [ 920.600565][T13908] bridge_slave_1: entered allmulticast mode [ 920.637593][T13908] bridge_slave_1: entered promiscuous mode [ 920.652943][ T29] audit: type=1326 audit(1719178427.676:637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13991 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f697407d0a9 code=0x7ffc0000 [ 920.779554][ T29] audit: type=1326 audit(1719178427.676:638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13991 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f697407d0a9 code=0x7ffc0000 [ 920.853499][ T29] audit: type=1326 audit(1719178427.686:639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13991 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f697407d0a9 code=0x7ffc0000 [ 920.912752][ T29] audit: type=1326 audit(1719178427.696:640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13991 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f697407d0a9 code=0x7ffc0000 [ 920.983022][ T29] audit: type=1326 audit(1719178427.696:641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13991 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f697407d0a9 code=0x7ffc0000 [ 921.046835][ T29] audit: type=1326 audit(1719178427.706:642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13991 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f697407d0a9 code=0x7ffc0000 [ 921.050644][ T4250] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 921.182950][ T29] audit: type=1326 audit(1719178427.706:643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13991 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f697407d0a9 code=0x7ffc0000 [ 921.205868][ C0] vkms_vblank_simulate: vblank timer overrun [ 921.378752][T13908] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 921.702528][ T4250] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 922.236668][T13908] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 922.462403][T14032] loop3: detected capacity change from 0 to 512 [ 922.639726][ T4250] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 923.887729][T13919] chnl_net:caif_netlink_parms(): no params data found [ 923.980535][T13908] team0: Port device team_slave_0 added [ 924.082552][T13908] team0: Port device team_slave_1 added [ 924.472209][T13908] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 924.491098][T13908] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 924.604020][T13908] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 924.882877][T13908] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 924.895292][T13908] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 924.928348][T14041] block nbd1: shutting down sockets [ 924.936010][T13908] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 925.356469][T13908] hsr_slave_0: entered promiscuous mode [ 925.372245][T13908] hsr_slave_1: entered promiscuous mode [ 925.396238][T13908] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 925.421866][T13908] Cannot create hsr debugfs directory [ 927.095419][T13919] bridge0: port 1(bridge_slave_0) entered blocking state [ 927.107819][T13919] bridge0: port 1(bridge_slave_0) entered disabled state [ 927.121952][T13919] bridge_slave_0: entered allmulticast mode [ 927.134794][T13919] bridge_slave_0: entered promiscuous mode [ 927.214395][ T4250] bridge_slave_1: left allmulticast mode [ 927.233779][ T4250] bridge_slave_1: left promiscuous mode [ 927.253937][ T4250] bridge0: port 2(bridge_slave_1) entered disabled state [ 927.266788][ T4250] bridge_slave_0: left allmulticast mode [ 927.280740][ T4250] bridge_slave_0: left promiscuous mode [ 927.289545][ T4250] bridge0: port 1(bridge_slave_0) entered disabled state [ 927.442217][ T29] kauditd_printk_skb: 13 callbacks suppressed [ 927.442248][ T29] audit: type=1326 audit(1719178435.486:657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14079 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f697407d0a9 code=0x0 [ 927.471424][ C0] vkms_vblank_simulate: vblank timer overrun [ 928.387134][ T4250] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 928.427814][ T4250] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 928.463581][ T4250] bond0 (unregistering): Released all slaves [ 928.523501][T13919] bridge0: port 2(bridge_slave_1) entered blocking state [ 928.530836][T13919] bridge0: port 2(bridge_slave_1) entered disabled state [ 928.562959][T13919] bridge_slave_1: entered allmulticast mode [ 928.601420][T13919] bridge_slave_1: entered promiscuous mode [ 928.861310][T13828] 8021q: adding VLAN 0 to HW filter on device bond0 [ 929.138041][T13919] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 929.359260][T13919] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 929.943558][T14106] Bluetooth: MGMT ver 1.22 [ 930.208207][T13919] team0: Port device team_slave_0 added [ 930.358964][ T4250] hsr_slave_0: left promiscuous mode [ 930.579163][ T4250] hsr_slave_1: left promiscuous mode [ 930.716863][ T4250] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 930.948847][ T4250] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 930.994319][ T4250] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 931.029611][ T4250] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 931.224370][ T29] audit: type=1326 audit(1719178439.256:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14112 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcbeca7d0a9 code=0x0 [ 931.268709][ T4250] veth1_macvtap: left promiscuous mode [ 931.282879][ T4250] veth0_macvtap: left promiscuous mode [ 931.301773][ T4250] veth1_vlan: left promiscuous mode [ 931.331827][ T4250] veth0_vlan: left promiscuous mode [ 932.201264][T14130] loop3: detected capacity change from 0 to 32768 [ 932.533667][T14130] bcachefs (loop3): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=xxhash,compression=zstd,nojournal_transaction_names [ 932.551467][T14130] bcachefs (loop3): recovering from clean shutdown, journal seq 10 [ 932.626780][T14130] bcachefs (loop3): alloc_read... done [ 932.632342][T14130] bcachefs (loop3): stripes_read... done [ 932.639188][T14130] bcachefs (loop3): snapshots_read... done [ 932.654400][T14130] bcachefs (loop3): journal_replay... done [ 932.660308][T14130] bcachefs (loop3): resume_logged_ops... done [ 932.677744][T14130] bcachefs (loop3): going read-write [ 932.704187][T14130] bcachefs (loop3): done starting filesystem [ 933.034917][T13676] bcachefs (loop3): shutting down [ 933.049983][T13676] bcachefs (loop3): going read-only [ 933.060736][T13676] bcachefs (loop3): finished waiting for writes to stop [ 933.078420][T13676] bcachefs (loop3): flushing journal and stopping allocators, journal seq 10 [ 933.097559][T13676] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 10 [ 933.139961][T13676] bcachefs (loop3): shutdown complete, journal seq 11 [ 933.168257][T13676] bcachefs (loop3): marking filesystem clean [ 933.255822][T13676] bcachefs (loop3): shutdown complete [ 934.171851][ T4250] team0 (unregistering): Port device team_slave_1 removed [ 934.340411][ T4250] team0 (unregistering): Port device team_slave_0 removed [ 935.732916][T13919] team0: Port device team_slave_1 added [ 935.761928][T13828] 8021q: adding VLAN 0 to HW filter on device team0 [ 936.279472][ T4572] bridge0: port 1(bridge_slave_0) entered blocking state [ 936.286871][ T4572] bridge0: port 1(bridge_slave_0) entered forwarding state [ 936.403489][T13919] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 936.410495][T13919] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 936.462050][T13919] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 936.500972][T13919] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 936.528053][T13919] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 936.807161][T13919] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 938.026668][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 938.034105][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 938.160456][T14179] loop1: detected capacity change from 0 to 8192 [ 938.175720][T14183] loop3: detected capacity change from 0 to 64 [ 938.217361][T13919] hsr_slave_0: entered promiscuous mode [ 938.224902][T14179] REISERFS warning (device loop1): super-6505 reiserfs_getopt: head of option "conv" is only correct [ 938.224902][T14179] [ 938.246099][T13919] hsr_slave_1: entered promiscuous mode [ 938.253369][T13919] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 938.264322][T13919] Cannot create hsr debugfs directory [ 938.665926][T14183] minix_free_block (loop3:2): bit already cleared [ 938.713452][T14183] minix_free_block (loop3:3): bit already cleared [ 938.729110][T14183] minix_free_block (loop3:4): bit already cleared [ 939.358739][T14197] loop3: detected capacity change from 0 to 2048 [ 939.415837][T14197] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 939.447206][T14197] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 940.038233][T13908] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 940.135156][T13908] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 940.351343][T13908] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 940.414172][T13908] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 940.745298][ T29] audit: type=1804 audit(1719178448.586:659): pid=14218 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir3830291771/syzkaller.qvG2yk/481/file0" dev="sda1" ino=1946 res=1 errno=0 [ 941.599670][ T1246] ieee802154 phy1 wpan1: encryption failed: -22 [ 941.754876][T14222] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN NOPTI [ 941.767728][T14222] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 941.776168][T14222] CPU: 0 PID: 14222 Comm: syz-executor.3 Not tainted 6.10.0-rc4-syzkaller-00330-g7c16f0a4ed1c #0 [ 941.786708][T14222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 941.796796][T14222] RIP: 0010:dev_map_generic_redirect+0xb9/0x5f0 [ 941.803104][T14222] Code: 48 c1 e8 03 42 0f b6 04 20 84 c0 74 08 3c 03 0f 8e 50 04 00 00 48 89 ea 44 8b 73 70 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 89 04 00 00 48 b8 00 00 00 00 00 fc ff df 4c 8b [ 941.822762][T14222] RSP: 0018:ffffc90004b2f878 EFLAGS: 00010256 [ 941.828872][T14222] RAX: dffffc0000000000 RBX: ffff88807b912500 RCX: ffffc9000db4b000 [ 941.836979][T14222] RDX: 0000000000000000 RSI: ffffffff81b46466 RDI: 0000000000000000 [ 941.844993][T14222] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 941.853001][T14222] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 941.861020][T14222] R13: 1ffff92000965f15 R14: 0000000000000d81 R15: 0000000000000000 [ 941.869028][T14222] FS: 00007fe6c3e8e6c0(0000) GS:ffff8880b9200000(0000) knlGS:0000000000000000 [ 941.878000][T14222] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 941.884618][T14222] CR2: 00007fca3a209440 CR3: 00000000606a4000 CR4: 0000000000350ef0 [ 941.892625][T14222] Call Trace: [ 941.895924][T14222] [ 941.898876][T14222] ? show_regs+0x8c/0xa0 [ 941.903183][T14222] ? die_addr+0x4f/0xd0 [ 941.907402][T14222] ? exc_general_protection+0x155/0x230 [ 941.913030][T14222] ? asm_exc_general_protection+0x26/0x30 [ 941.918829][T14222] ? dev_map_generic_redirect+0x86/0x5f0 [ 941.924513][T14222] ? dev_map_generic_redirect+0xb9/0x5f0 [ 941.930190][T14222] ? dev_map_generic_redirect+0x86/0x5f0 [ 941.935868][T14222] ? kfree+0x12a/0x3b0 [ 941.939974][T14222] ? __pfx_dev_map_generic_redirect+0x10/0x10 [ 941.946091][T14222] ? srso_alias_return_thunk+0x5/0xfbef5 [ 941.951777][T14222] ? __pfx___cant_migrate+0x10/0x10 [ 941.957037][T14222] ? srso_alias_return_thunk+0x5/0xfbef5 [ 941.962716][T14222] ? srso_alias_return_thunk+0x5/0xfbef5 [ 941.968399][T14222] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 941.974370][T14222] ? srso_alias_return_thunk+0x5/0xfbef5 [ 941.980042][T14222] ? bpf_prog_run_generic_xdp+0xcca/0x14e0 [ 941.985909][T14222] xdp_do_generic_redirect+0x309/0x720 [ 941.991416][T14222] do_xdp_generic+0x77f/0xc30 [ 941.996161][T14222] ? __pfx_do_xdp_generic+0x10/0x10 [ 942.001414][T14222] ? srso_alias_return_thunk+0x5/0xfbef5 [ 942.007096][T14222] tun_get_user+0x1d36/0x3c30 [ 942.011823][T14222] ? srso_alias_return_thunk+0x5/0xfbef5 [ 942.017490][T14222] ? __pfx_tun_get_user+0x10/0x10 [ 942.022600][T14222] ? find_held_lock+0x2d/0x110 [ 942.027429][T14222] ? srso_alias_return_thunk+0x5/0xfbef5 [ 942.033127][T14222] ? __pfx_lock_release+0x10/0x10 [ 942.038214][T14222] ? srso_alias_return_thunk+0x5/0xfbef5 [ 942.043889][T14222] tun_chr_write_iter+0xe8/0x210 [ 942.048892][T14222] vfs_write+0x6b9/0x1140 [ 942.053274][T14222] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 942.058866][T14222] ? __pfx___might_resched+0x10/0x10 [ 942.064300][T14222] ? __pfx_vfs_write+0x10/0x10 [ 942.069159][T14222] ? srso_alias_return_thunk+0x5/0xfbef5 [ 942.074825][T14222] ? __fget_files+0x256/0x400 [ 942.079555][T14222] ? srso_alias_return_thunk+0x5/0xfbef5 [ 942.085237][T14222] ? __fget_light+0x173/0x210 [ 942.089975][T14222] ksys_write+0x12f/0x260 [ 942.094360][T14222] ? __pfx_ksys_write+0x10/0x10 [ 942.099258][T14222] ? srso_alias_return_thunk+0x5/0xfbef5 [ 942.104949][T14222] do_syscall_64+0xcd/0x250 [ 942.109502][T14222] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 942.115466][T14222] RIP: 0033:0x7fe6c307bdef [ 942.119902][T14222] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 942.139631][T14222] RSP: 002b:00007fe6c3e8e090 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 942.148165][T14222] RAX: ffffffffffffffda RBX: 00007fe6c31b3f80 RCX: 00007fe6c307bdef [ 942.156178][T14222] RDX: 0000000000000d81 RSI: 0000000020001540 RDI: 00000000000000c8 [ 942.164165][T14222] RBP: 00007fe6c30ec074 R08: 0000000000000000 R09: 0000000000000000 [ 942.172154][T14222] R10: 0000000000000d81 R11: 0000000000000293 R12: 0000000000000000 [ 942.180143][T14222] R13: 000000000000000b R14: 00007fe6c31b3f80 R15: 00007ffdc57985d8 [ 942.188153][T14222] [ 942.191180][T14222] Modules linked in: [ 942.195211][T14222] ---[ end trace 0000000000000000 ]--- [ 942.200689][T14222] RIP: 0010:dev_map_generic_redirect+0xb9/0x5f0 [ 942.207018][T14222] Code: 48 c1 e8 03 42 0f b6 04 20 84 c0 74 08 3c 03 0f 8e 50 04 00 00 48 89 ea 44 8b 73 70 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 89 04 00 00 48 b8 00 00 00 00 00 fc ff df 4c 8b [ 942.226781][T14222] RSP: 0018:ffffc90004b2f878 EFLAGS: 00010256 [ 942.232937][T14222] RAX: dffffc0000000000 RBX: ffff88807b912500 RCX: ffffc9000db4b000 [ 942.240961][T14222] RDX: 0000000000000000 RSI: ffffffff81b46466 RDI: 0000000000000000 [ 942.249027][T14222] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 942.257069][T14222] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 942.265116][T14222] R13: 1ffff92000965f15 R14: 0000000000000d81 R15: 0000000000000000 [ 942.273165][T14222] FS: 00007fe6c3e8e6c0(0000) GS:ffff8880b9200000(0000) knlGS:0000000000000000 [ 942.282161][T14222] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 942.288885][T14222] CR2: 00007fca3a209440 CR3: 00000000606a4000 CR4: 0000000000350ef0 [ 942.296935][T14222] Kernel panic - not syncing: Fatal exception in interrupt [ 942.304383][T14222] Kernel Offset: disabled [ 942.308711][T14222] Rebooting in 86400 seconds..