last executing test programs: 1.296602525s ago: executing program 2 (id=1369): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4) sendmmsg$inet(r0, &(0x7f00000002c0)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000800)="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", 0x177}, {&(0x7f0000000180)="8209bca041c10503f6f9859a626cf690e30e662dde5b425d85e9f42c0533b6c0ab66ff1b86acc84c305fdf3a1810a0568b6f96e503f73beec59879d4d49432ddab8d2b9bb2170b65f24de0d46f5599d38caf89d40a567cfff552b8eac0364ba5e6bc8d078e227970bda57df3db94bde7fb73272fee171fa97d9bc83eced556028040b79d730c9de41f1c3b07f5415811610caa614b60d9d7ddd28a929c2f4977e3ab1c", 0xa3}, {&(0x7f0000000740)="e96d9fca86f114e0", 0x8}], 0x3}}, {{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000640)="13a8892019f1989dcb3695d96b609322d26e29fc35fee071c96d80bd46d6966cbe6b7a2cae610580a28150f9f09c86ff97e05d454faac2546a34871e68f5cbd68fd4b71e2aac0dc7620672a5d97f2b82603a6f9c25d5b78524ab47fb3c477a39625e82d11bae649b50912c5c3749d587d40f3b177c88c8e1a95a9580e76e4915e7a4d9d1bac139a4c4b3ea19d86435997790", 0x92}], 0x1}}, {{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000012c0)}], 0x1}}], 0x3, 0x4) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4) sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0) 1.186452144s ago: executing program 2 (id=1375): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, 0x0, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001e00)=@newtfilter={0x48, 0x2c, 0xd27, 0x70bd28, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, {0xf, 0x9}, {}, {0xb, 0xe}}, [@filter_kind_options=@f_route={{0xa}, {0x18, 0x2, [@TCA_ROUTE4_TO={0x8, 0x2, 0x14}, @TCA_ROUTE4_IIF={0x8, 0x4, r2}, @TCA_ROUTE4_ACT={0x4}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x80}, 0x20000040) 1.049763115s ago: executing program 2 (id=1384): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001e00)=@newtfilter={0x24, 0x2c, 0xd27, 0x70bd28, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xf, 0x9}, {}, {0xb, 0xe}}}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x20000040) 907.368536ms ago: executing program 2 (id=1388): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe) listen(r0, 0x3) accept4$bt_l2cap(r0, 0x0, 0x0, 0x800) syz_emit_vhci(&(0x7f0000000540)=ANY=[@ANYBLOB=' '], 0x16) 636.656199ms ago: executing program 0 (id=1408): syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x2000019, 0x0, 0xfc, 0x0, 0x0) write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15) r0 = dup(0xffffffffffffffff) write$FUSE_BMAP(r0, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000480)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[], [], 0x6b}}) fchownat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0xee01, 0x0, 0x1000) 608.86261ms ago: executing program 0 (id=1410): prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1) ioctl$VHOST_SET_OWNER(0xffffffffffffffff, 0xaf01, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000240)='net/udp6\x00') ioctl$VHOST_NET_SET_BACKEND(0xffffffffffffffff, 0x4008af30, &(0x7f00000000c0)={0x0, r0}) 557.681125ms ago: executing program 0 (id=1411): syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x2000019, 0x0, 0xfc, 0x0, 0x0) pipe2$9p(&(0x7f0000001900)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, 0x0, 0x15) r2 = dup(r1) write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}}) 556.845504ms ago: executing program 0 (id=1412): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10) sendmmsg$inet(r0, &(0x7f00000002c0)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000800)="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", 0x177}, {&(0x7f0000000180)="8209bca041c10503f6f9859a626cf690e30e662dde5b425d85e9f42c0533b6c0ab66ff1b86acc84c305fdf3a1810a0568b6f96e503f73beec59879d4d49432ddab8d2b9bb2170b65f24de0d46f5599d38caf89d40a567cfff552b8eac0364ba5e6bc8d078e227970bda57df3db94bde7fb73272fee171fa97d9bc83eced556028040b79d730c9de41f1c3b07f5415811610caa614b60d9d7ddd28a929c2f4977e3ab1c", 0xa3}, {&(0x7f0000000740)="e96d9fca86f114e0", 0x8}], 0x3}}, {{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000640)="13a8892019f1989dcb3695d96b609322d26e29fc35fee071c96d80bd46d6966cbe6b7a2cae610580a28150f9f09c86ff97e05d454faac2546a34871e68f5cbd68fd4b71e2aac0dc7620672a5d97f2b82603a6f9c25d5b78524ab47fb3c477a39625e82d11bae649b50912c5c3749d587d40f3b177c88c8e1a95a9580e76e4915e7a4d9d1bac139a4c4b3ea19d86435997790", 0x92}], 0x1}}, {{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000012c0)="52348bf9812fc081678b5760a4c4967393fd8939aaf12a894c5424df616c4eea14fbac2dad114a75c405d89fafa5715b56abba4bbceca456d8225e3f6eb57a03287e74c7bd74e40e3fda3150f92d181e7c82cb2f8ea0416fc4c0f111161cdb9a52911925644e25f871d02f403c83214f830f93b30b874e75cab53f1ed7871f21c0d654a47fab0637868517d7e8d9915e99b4dc2dcafdcb2ef2a012ec95418a544c32181fb969e01318e00a12fd1b2a0eb57bcf7de086e320f2d4be4e1453010be849e4d7dba41558329699aacd3d1c7d97b9bf74caf8b7946647309d209558b1965ef7ea4576ec0e289b73c2089310271d0a67d88a312f4cb0194c4f28ec3c2fe269311d0cec1fe0efef17d376d183b08e392b6cb58e930e1f959dd4528ec95350fc86e5297e6d59af036b132df17833881238ba8692842a8da4d5b4a37c94915331143d9128a197495433c2f550b4455a9ae03b937305e192e861ca3a60f9b3a14288e3daeb6936593485388a4aaab39b3843ee2960d9c8728eafb904333e7b78a270480e8dd89bc4cf0b791013cff43bf314e11a44d5f9c4fdad8a2fcdb04f76de29a50a0428148f4bc3eff1e84d25ea95dabd", 0x1b4}], 0x1}}], 0x3, 0x4) sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0) 520.777697ms ago: executing program 0 (id=1415): r0 = socket(0x1000000000000010, 0x80802, 0x0) sendmsg(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000140)="5500000018007fd500fe01b2a4a280930a06000000a843089100fe800c00080008001100080000002d000f009b2c136ef75afb83de448daa72540d8102d2c55327c43ab82286ef1fdd20642383656d4d", 0x50}], 0x1}, 0x0) 486.88043ms ago: executing program 0 (id=1418): syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) mremap(&(0x7f00005ab000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f0000290000/0x4000)=nil) munlockall() madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8) 334.477492ms ago: executing program 3 (id=1424): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001e00)=@newtfilter={0x48, 0x2c, 0xd27, 0x70bd28, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, {0xf, 0x9}, {}, {0xb, 0xe}}, [@filter_kind_options=@f_route={{0xa}, {0x18, 0x2, [@TCA_ROUTE4_IIF={0x8, 0x4, r2}, @TCA_ROUTE4_ACT={0x4}, @TCA_ROUTE4_FROM={0x8, 0x3, 0x47}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x80}, 0x20000040) 334.013883ms ago: executing program 1 (id=1425): syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x2000019, 0x0, 0xfc, 0x0, 0x0) write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15) r0 = dup(0xffffffffffffffff) write$FUSE_BMAP(r0, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000480)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[], [], 0x6b}}) fchownat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0xee01, 0x0, 0x1000) 293.703526ms ago: executing program 1 (id=1427): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@delchain={0x24}, 0x24}}, 0x0) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000", 0x11, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x598}, {&(0x7f00000007c0)=""/154, 0x4c}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 273.837847ms ago: executing program 1 (id=1429): ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) r0 = socket$kcm(0x1e, 0x4, 0x0) setsockopt$sock_attach_bpf(r0, 0x10f, 0x87, &(0x7f00000008c0), 0x43) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x10f, 0x87, &(0x7f00000008c0), 0x43) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_NODE_ADDR(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r2, 0x201, 0x400000, 0x0, {{}, {}, {0x8, 0x11, 0xc}}}, 0x24}, 0x1, 0x0, 0x0, 0x40800}, 0x0) 269.309408ms ago: executing program 3 (id=1430): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, 0x0, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001e00)=@newtfilter={0x48, 0x2c, 0xd27, 0x70bd28, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, {0xf, 0x9}, {}, {0xb, 0xe}}, [@filter_kind_options=@f_route={{0xa}, {0x18, 0x2, [@TCA_ROUTE4_TO={0x8, 0x2, 0x14}, @TCA_ROUTE4_ACT={0x4}, @TCA_ROUTE4_FROM={0x8, 0x3, 0x47}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x80}, 0x20000040) 249.847899ms ago: executing program 4 (id=1431): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000700000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x2, 0x1, 0x1}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000002, 0xe, 0xfffffffffffffda9, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 225.946301ms ago: executing program 1 (id=1432): move_pages(0x0, 0x1, &(0x7f0000000040)=[&(0x7f0000ff9000/0x2000)=nil], 0x0, &(0x7f0000000000), 0x0) 209.447243ms ago: executing program 1 (id=1433): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0xa0b41, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) close(0xffffffffffffffff) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) write$cgroup_subtree(r0, &(0x7f0000000440)=ANY=[@ANYBLOB="8fedcb5d07081175f37538e486dd6372"], 0xfdef) 187.807514ms ago: executing program 4 (id=1434): sigaltstack(&(0x7f0000000000)={0xffffffffffffffff, 0x1, 0xfffffffffffffe3d}, &(0x7f0000000080)={&(0x7f0000000040)}) waitid(0x0, 0x0, 0x0, 0xc, 0x0) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0xfffffffffffffe1d) r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0) ioctl$sock_rose_SIOCADDRT(r0, 0x890b, &(0x7f0000000380)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6, @null, @bpq0, 0x0, [@bcast, @bcast, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}) 187.000125ms ago: executing program 3 (id=1444): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000700000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x2, 0x1, 0x1}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000002, 0xe, 0xfffffffffffffda9, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 185.809574ms ago: executing program 4 (id=1435): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4) sendmmsg$inet(r0, &(0x7f00000002c0), 0x0, 0x4) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4) sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0) 130.629909ms ago: executing program 3 (id=1436): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, 0x0}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001e00)=@newtfilter={0x48, 0x2c, 0xd27, 0x70bd28, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, {0xf, 0x9}, {}, {0xb, 0xe}}, [@filter_kind_options=@f_route={{0xa}, {0x18, 0x2, [@TCA_ROUTE4_TO={0x8, 0x2, 0x14}, @TCA_ROUTE4_IIF={0x8, 0x4, r2}, @TCA_ROUTE4_ACT={0x4}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x80}, 0x20000040) 130.136589ms ago: executing program 1 (id=1437): r0 = socket$can_bcm(0x1d, 0x2, 0x2) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, 0x0) connect$can_bcm(r0, &(0x7f0000000300), 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f00000000c0)={'vxcan1\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r3}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0) 108.185851ms ago: executing program 4 (id=1438): pipe2$9p(&(0x7f0000001900)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}}) fchownat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0xee01, 0x0, 0x1000) 81.642523ms ago: executing program 4 (id=1439): r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000240)='net/udp6\x00') ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f00000000c0)={0x0, r1}) 69.214694ms ago: executing program 3 (id=1440): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@delchain={0x24}, 0x24}}, 0x0) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, 0x0, 0x0, 0x0, &(0x7f0000003700)={0x77359400}) 64.671415ms ago: executing program 2 (id=1441): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001e00)=@newtfilter={0x48, 0x2c, 0xd27, 0x70bd28, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, {0xf, 0x9}, {}, {0xb, 0xe}}, [@filter_kind_options=@f_route={{0xa}, {0x18, 0x2, [@TCA_ROUTE4_IIF={0x8, 0x4, r2}, @TCA_ROUTE4_ACT={0x4}, @TCA_ROUTE4_FROM={0x8, 0x3, 0x47}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x80}, 0x20000040) 25.529238ms ago: executing program 3 (id=1442): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800010009000000000000000a00000000000000080001000200000004000b"], 0x24}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x1c, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {}, [@NHA_BLACKHOLE={0x4}]}, 0x1c}}, 0x0) 20.033958ms ago: executing program 4 (id=1443): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) sendmmsg$inet(r0, &(0x7f00000002c0)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000800)="e13650d9817e676ace6e3cec562d7a97bea9209657a104d4221cd217163a0b401c37406907a67e54bcd5f478a326ec692ffcf847478bb1c2bd65fc571e8b31f2de93a2219657967b65a0d7a2ef93dd8e577225c6b32260406f437117a0c9509babbe97a1b27fe399c7de49b92ae5dfc9934f06b120b1692ba618304d0de4d2f9338e514cb2bc6eeb5d0bf749d69b4f9969b13e48a16f5d69a796688cf23c1c13cb442c17c15bc7c79073a7300555ed77712e1fbc672208600d058eca1a8431844f1fb1f2f7f920824572ef2be2db707f82e11000a8d0d8926250000000000a03508fb28fac3efb01bc73cab3112da31d04f396e5c0d5a382bd8803549dfb7a892a7a17eb55964e947d1ab8521320c2d3de0d49db390e10eae2ec94dc993d6c9736b12f9c9fd69814046fed10af21c3b8340d6dc7b2008eb428bca261d00b71fddeed654c1249a33aae2bb6fe47b2d4871cd3fccaf5ab60ee86b6c6b1031281db01a381899690968d4a7dab5892a85a7db507fffd3737e7", 0x177}, {&(0x7f0000000180)="8209bca041c10503f6f9859a626cf690e30e662dde5b425d85e9f42c0533b6c0ab66ff1b86acc84c305fdf3a1810a0568b6f96e503f73beec59879d4d49432ddab8d2b9bb2170b65f24de0d46f5599d38caf89d40a567cfff552b8eac0364ba5e6bc8d078e227970bda57df3db94bde7fb73272fee171fa97d9bc83eced556028040b79d730c9de41f1c3b07f5415811610caa614b60d9d7ddd28a929c2f4977e3ab1c", 0xa3}, {&(0x7f0000000740)="e96d9fca86f114e0", 0x8}], 0x3}}, {{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000640)="13a8892019f1989dcb3695d96b609322d26e29fc35fee071c96d80bd46d6966cbe6b7a2cae610580a28150f9f09c86ff97e05d454faac2546a34871e68f5cbd68fd4b71e2aac0dc7620672a5d97f2b82603a6f9c25d5b78524ab47fb3c477a39625e82d11bae649b50912c5c3749d587d40f3b177c88c8e1a95a9580e76e4915e7a4d9d1bac139a4c4b3ea19d86435997790", 0x92}], 0x1}}, {{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000012c0)="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", 0x1b4}], 0x1}}], 0x3, 0x4) sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0) 0s ago: executing program 2 (id=1445): move_pages(0x0, 0x1, &(0x7f0000000040)=[&(0x7f0000ff9000/0x2000)=nil], &(0x7f0000001180), 0x0, 0x0) kernel console output (not intermixed with test programs): v6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 36.167349][ T4050] 8021q: adding VLAN 0 to HW filter on device team0 [ 36.170806][ T456] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 36.172578][ T456] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 36.174049][ T456] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 36.175464][ T456] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 36.176834][ T456] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 36.178324][ T456] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 36.180484][ T4054] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 36.188335][ T4044] 8021q: adding VLAN 0 to HW filter on device bond0 [ 36.192005][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 36.193572][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 36.195053][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 36.196509][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 36.197849][ T136] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.198929][ T136] bridge0: port 1(bridge_slave_0) entered forwarding state [ 36.205808][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 36.207167][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 36.208681][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 36.210170][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 36.211533][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 36.221450][ T4050] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 36.223947][ T4050] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 36.226881][ T4043] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 36.229924][ T4044] 8021q: adding VLAN 0 to HW filter on device team0 [ 36.231492][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 36.233094][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 36.234493][ T136] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.235561][ T136] bridge0: port 2(bridge_slave_1) entered forwarding state [ 36.236897][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 36.238463][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 36.240042][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 36.241581][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 36.243929][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 36.245974][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 36.247500][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 36.248940][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 36.250451][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 36.251946][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 36.255855][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 36.257401][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 36.259365][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 36.260827][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 36.267524][ T4049] device veth0_vlan entered promiscuous mode [ 36.270758][ T4049] device veth1_vlan entered promiscuous mode [ 36.273492][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 36.274983][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 36.276368][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 36.277799][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 36.279353][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 36.280773][ T136] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.281880][ T136] bridge0: port 1(bridge_slave_0) entered forwarding state [ 36.288143][ T4054] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 36.292017][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 36.294188][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 36.295392][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 36.296496][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 36.301026][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 36.302760][ T136] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.303931][ T136] bridge0: port 2(bridge_slave_1) entered forwarding state [ 36.316085][ T4054] device veth0_vlan entered promiscuous mode [ 36.319823][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 36.321180][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 36.325039][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 36.326639][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 36.328097][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 36.329513][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 36.330960][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 36.337949][ T4043] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 36.340552][ T4049] device veth0_macvtap entered promiscuous mode [ 36.346581][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 36.347778][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 36.348925][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 36.350674][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 36.352206][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 36.354866][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 36.357085][ T4049] device veth1_macvtap entered promiscuous mode [ 36.358935][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 36.360597][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 36.370585][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 36.373223][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 36.374790][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 36.376329][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 36.377838][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 36.379308][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 36.381206][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 36.383699][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 36.385279][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 36.387613][ T4044] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 36.394039][ T4054] device veth1_vlan entered promiscuous mode [ 36.396180][ T4050] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 36.399290][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 36.400640][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 36.402203][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 36.404405][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 36.405564][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 36.415165][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 36.416740][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 36.418214][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 36.420134][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 36.421642][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 36.430722][ T4043] device veth0_vlan entered promiscuous mode [ 36.434407][ T4049] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 36.437753][ T4054] device veth0_macvtap entered promiscuous mode [ 36.440291][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 36.441846][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 36.447002][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 36.448535][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 36.451669][ T4049] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 36.455560][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 36.457063][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 36.458622][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 36.462887][ T4054] device veth1_macvtap entered promiscuous mode [ 36.471484][ T4043] device veth1_vlan entered promiscuous mode [ 36.475181][ T4049] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.476497][ T4049] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.477909][ T4049] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.479253][ T4049] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.500294][ T4054] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 36.502040][ T4054] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.505014][ T4054] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 36.510638][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 36.512019][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 36.514172][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 36.515687][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 36.517144][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 36.518628][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 36.519857][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 36.524045][ T4054] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 36.525642][ T4054] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.527735][ T4054] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 36.530440][ T4054] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.531832][ T4054] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.533789][ T4054] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.535174][ T4054] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.545397][ T4044] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 36.546673][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 36.548178][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 36.549611][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 36.551152][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 36.553107][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 36.554594][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 36.557459][ T4043] device veth0_macvtap entered promiscuous mode [ 36.563623][ T4043] device veth1_macvtap entered promiscuous mode [ 36.567604][ T136] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 36.568946][ T136] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 36.574512][ T4050] device veth0_vlan entered promiscuous mode [ 36.576597][ T358] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 36.578042][ T358] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 36.579492][ T358] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 36.580927][ T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 36.582231][ T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 36.585523][ T358] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 36.586862][ T358] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 36.597143][ T136] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 36.598410][ T136] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 36.599861][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 36.605217][ T4050] device veth1_vlan entered promiscuous mode [ 36.611793][ T4043] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 36.614353][ T4043] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.615967][ T4043] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 36.617578][ T4043] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.619616][ T4043] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 36.626507][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 36.628036][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 36.629681][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 36.659327][ T358] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 36.660753][ T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 36.662250][ T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 36.683078][ T4050] device veth0_macvtap entered promiscuous mode [ 36.697154][ T358] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 36.698397][ T358] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 36.699668][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 36.701310][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 36.704434][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 36.705838][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 36.707549][ T4043] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 36.709206][ T4043] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.710835][ T4043] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 36.713943][ T4043] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.716049][ T4043] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 36.718331][ T4043] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.719688][ T4043] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.721126][ T4043] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.726760][ T4043] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.732002][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 36.733562][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 36.735139][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 36.736661][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 36.738157][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 36.739467][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 36.746436][ T4044] device veth0_vlan entered promiscuous mode [ 36.749533][ T4044] device veth1_vlan entered promiscuous mode [ 36.762072][ T4050] device veth1_macvtap entered promiscuous mode [ 36.775297][ T148] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 36.776737][ T148] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 36.781081][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 36.782967][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 36.785930][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 36.788735][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 36.791953][ T4050] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 36.796727][ T4050] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.798449][ T4050] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 36.799905][ T4050] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.801266][ T4050] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 36.803066][ T4050] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.805118][ T4050] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 36.807905][ T4050] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 36.809513][ T4050] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.810904][ T4050] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 36.815484][ T4050] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.817003][ T4050] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 36.818592][ T4050] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.821012][ T4050] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 36.827167][ T4044] device veth0_macvtap entered promiscuous mode [ 36.830583][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 36.832115][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 36.837222][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 36.838784][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 36.840348][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 36.841986][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 36.845084][ T4050] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.846397][ T4050] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.847706][ T4050] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.848977][ T4050] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.852283][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 36.856456][ T4157] loop0: detected capacity change from 0 to 40427 [ 36.858571][ T4044] device veth1_macvtap entered promiscuous mode [ 36.865595][ T4044] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 36.867317][ T4044] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.869110][ T4044] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 36.870884][ T4044] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.876857][ T4044] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 36.878489][ T4044] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.880134][ T4044] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 36.881863][ T4044] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.884576][ T4044] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 36.890454][ T456] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 36.891768][ T456] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 36.900261][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 36.901873][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 36.905599][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 36.907219][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 36.918349][ T4157] F2FS-fs (loop0): invalid crc value [ 36.935987][ T4157] F2FS-fs (loop0): Found nat_bits in checkpoint [ 36.962819][ T4044] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 36.964452][ T4044] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.966240][ T4044] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 36.967983][ T4044] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.969557][ T4044] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 36.971238][ T4044] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.978645][ T4157] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 36.991223][ T4044] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 36.993447][ T4044] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.996455][ T4044] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 37.001815][ T358] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 37.003226][ T358] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 37.013266][ T456] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 37.014807][ T456] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 37.016303][ T456] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 37.023594][ T4044] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.024912][ T4044] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.026234][ T4044] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.027639][ T4044] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.085826][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 37.087109][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 37.089461][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 37.114098][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 37.115327][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 37.116672][ T358] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 37.117420][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 37.118006][ T358] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 37.120506][ T456] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 37.144600][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 37.145883][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 37.148326][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 37.187527][ T4183] netlink: 8 bytes leftover after parsing attributes in process `syz.0.11'. [ 37.863980][ T13] Bluetooth: hci3: command 0x041b tx timeout [ 37.865053][ T13] Bluetooth: hci2: command 0x041b tx timeout [ 37.896875][ T4127] Bluetooth: hci1: command 0x041b tx timeout [ 37.897968][ T4127] Bluetooth: hci4: command 0x041b tx timeout [ 37.898920][ T4127] Bluetooth: hci0: command 0x041b tx timeout [ 38.164663][ T4267] netlink: 464 bytes leftover after parsing attributes in process `syz.4.52'. [ 38.445996][ T4307] Zero length message leads to an empty skb [ 38.825180][ T4380] loop0: detected capacity change from 0 to 4096 [ 38.877015][ T4380] ntfs3: loop0: This driver is compiled without CONFIG_NTFS3_64BIT_CLUSTER (like windows driver). [ 38.877015][ T4380] Volume contains 64 bits run: vcn 0, lcn ffffffffff000000, len 7ff. [ 38.877015][ T4380] Activate CONFIG_NTFS3_64BIT_CLUSTER to process this case [ 38.882770][ T4380] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 38.886235][ T4380] ntfs3: loop0: Failed to load $BadClus. [ 39.142405][ T4406] loop0: detected capacity change from 0 to 64 [ 39.227307][ T4406] hfs: unable to parse mount options [ 39.606459][ T4426] loop3: detected capacity change from 0 to 32768 [ 39.663407][ T4426] jfs: Unrecognized mount option "0x0000000000000007" or missing value [ 39.724472][ T4442] netlink: 464 bytes leftover after parsing attributes in process `syz.0.136'. [ 39.943157][ T4137] Bluetooth: hci0: command 0x040f tx timeout [ 39.944169][ T4137] Bluetooth: hci4: command 0x040f tx timeout [ 39.945083][ T4137] Bluetooth: hci1: command 0x040f tx timeout [ 39.945954][ T4137] Bluetooth: hci2: command 0x040f tx timeout [ 39.946870][ T4137] Bluetooth: hci3: command 0x040f tx timeout [ 40.098074][ T4464] loop0: detected capacity change from 0 to 4096 [ 40.168873][ T4464] ntfs3: loop0: This driver is compiled without CONFIG_NTFS3_64BIT_CLUSTER (like windows driver). [ 40.168873][ T4464] Volume contains 64 bits run: vcn 0, lcn ffffffffff000000, len 7ff. [ 40.168873][ T4464] Activate CONFIG_NTFS3_64BIT_CLUSTER to process this case [ 40.186770][ T4464] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 40.188437][ T4464] ntfs3: loop0: Failed to load $BadClus. [ 40.263194][ T4470] netlink: 8 bytes leftover after parsing attributes in process `syz.3.147'. [ 41.063011][ T4472] loop0: detected capacity change from 0 to 64 [ 41.133516][ T4472] hfs: unable to parse mount options [ 41.574198][ T4497] loop2: detected capacity change from 0 to 40427 [ 41.736863][ T4497] F2FS-fs (loop2): build fault injection attr: rate: 771, type: 0x1ffff [ 41.742737][ T4497] F2FS-fs (loop2): invalid crc value [ 41.797788][ T4497] F2FS-fs (loop2): Found nat_bits in checkpoint [ 41.930020][ T4497] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 42.083954][ T4497] process 'syz.2.155' launched './file1' with NULL argv: empty string added [ 42.085053][ T13] Bluetooth: hci3: command 0x0419 tx timeout [ 42.212610][ T4054] attempt to access beyond end of device [ 42.212610][ T4054] loop2: rw=2049, want=45112, limit=40427 [ 42.230810][ T13] Bluetooth: hci2: command 0x0419 tx timeout [ 42.231816][ T13] Bluetooth: hci1: command 0x0419 tx timeout [ 42.232996][ T13] Bluetooth: hci4: command 0x0419 tx timeout [ 42.234074][ T13] Bluetooth: hci0: command 0x0419 tx timeout [ 42.240498][ T4510] loop4: detected capacity change from 0 to 32768 [ 42.242045][ T4506] loop1: detected capacity change from 0 to 512 [ 42.259390][ T4513] loop3: detected capacity change from 0 to 64 [ 42.278906][ T4516] loop0: detected capacity change from 0 to 512 [ 42.294366][ T4506] EXT4-fs (loop1): Ignoring removed nobh option [ 42.295335][ T4506] EXT4-fs (loop1): Journaled quota options ignored when QUOTA feature is enabled [ 42.301133][ T4510] jfs: Unrecognized mount option "0x0000000000000006" or missing value [ 42.312704][ T4516] EXT4-fs (loop0): Ignoring removed nobh option [ 42.314341][ T4516] EXT4-fs (loop0): Journaled quota options ignored when QUOTA feature is enabled [ 42.327578][ T4506] EXT4-fs (loop1): 1 orphan inode deleted [ 42.328462][ T4506] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,resuid=0x0000000000000000,errors=remount-ro,nobh,sysvgroups,delalloc,usrjquota=./file1,. Quota mode: writeback. [ 42.349740][ T4516] EXT4-fs (loop0): 1 orphan inode deleted [ 42.350714][ T4516] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,resuid=0x0000000000000000,errors=remount-ro,nobh,sysvgroups,delalloc,usrjquota=./file1,. Quota mode: writeback. [ 42.355610][ T4506] EXT4-fs error (device loop1): ext4_lookup:1858: inode #15: comm syz.1.159: iget: bad i_size value: 360287970189639690 [ 42.357990][ T4506] EXT4-fs (loop1): Remounting filesystem read-only [ 42.361958][ T4523] loop2: detected capacity change from 0 to 64 [ 42.367318][ T4516] EXT4-fs error (device loop0): ext4_lookup:1858: inode #15: comm syz.0.164: iget: bad i_size value: 360287970189639690 [ 42.369479][ T4516] EXT4-fs (loop0): Remounting filesystem read-only [ 42.409791][ T4525] loop3: detected capacity change from 0 to 512 [ 42.444491][ T4525] EXT4-fs (loop3): Ignoring removed nobh option [ 42.445456][ T4525] EXT4-fs (loop3): Journaled quota options ignored when QUOTA feature is enabled [ 42.477683][ T4525] EXT4-fs (loop3): 1 orphan inode deleted [ 42.478604][ T4525] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,resuid=0x0000000000000000,errors=remount-ro,nobh,sysvgroups,delalloc,usrjquota=./file1,. Quota mode: writeback. [ 42.578087][ T4525] EXT4-fs error (device loop3): ext4_lookup:1858: inode #15: comm syz.3.165: iget: bad i_size value: 360287970189639690 [ 42.580366][ T4525] EXT4-fs (loop3): Remounting filesystem read-only [ 42.606399][ T4535] tipc: Started in network mode [ 42.607302][ T4535] tipc: Node identity aaaaaaaaaa32, cluster identity 4711 [ 42.608550][ T4535] tipc: Enabled bearer , priority 10 [ 42.610468][ T4535] netlink: 240 bytes leftover after parsing attributes in process `syz.2.168'. [ 42.696323][ T4539] loop0: detected capacity change from 0 to 4096 [ 42.829074][ T4539] ntfs3: loop0: This driver is compiled without CONFIG_NTFS3_64BIT_CLUSTER (like windows driver). [ 42.829074][ T4539] Volume contains 64 bits run: vcn 0, lcn ffffffffff000000, len 7ff. [ 42.829074][ T4539] Activate CONFIG_NTFS3_64BIT_CLUSTER to process this case [ 42.849217][ T4539] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 42.852218][ T4539] ntfs3: loop0: Failed to load $BadClus. [ 43.372707][ T4573] netlink: 8 bytes leftover after parsing attributes in process `syz.3.181'. [ 43.735930][ T4572] tipc: Node number set to 10005162 [ 43.915872][ T4583] loop1: detected capacity change from 0 to 32768 [ 43.969791][ T4596] tipc: Enabling of bearer rejected, already enabled [ 43.971786][ T4596] netlink: 240 bytes leftover after parsing attributes in process `syz.2.190'. [ 44.113933][ T4583] jfs: Unrecognized mount option "0x0000000000000005" or missing value [ 44.213205][ T4608] loop0: detected capacity change from 0 to 4096 [ 44.415118][ T4632] netlink: 8 bytes leftover after parsing attributes in process `syz.2.200'. [ 44.790672][ T4635] tipc: Started in network mode [ 44.791518][ T4635] tipc: Node identity aaaaaaaaaa32, cluster identity 4711 [ 44.792803][ T4635] tipc: Enabled bearer , priority 10 [ 44.794629][ T4635] netlink: 240 bytes leftover after parsing attributes in process `syz.1.211'. [ 44.956358][ T4608] ntfs3: loop0: This driver is compiled without CONFIG_NTFS3_64BIT_CLUSTER (like windows driver). [ 44.956358][ T4608] Volume contains 64 bits run: vcn 0, lcn ffffffffff000000, len 7ff. [ 44.956358][ T4608] Activate CONFIG_NTFS3_64BIT_CLUSTER to process this case [ 44.962023][ T4608] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 44.986881][ T4641] loop4: detected capacity change from 0 to 32768 [ 45.001843][ T4608] ntfs3: loop0: Failed to load $BadClus. [ 45.004234][ T4641] jfs: Unrecognized mount option "0x0000000000000005" or missing value [ 45.274001][ T4657] loop2: detected capacity change from 0 to 40427 [ 45.682743][ T4661] loop0: detected capacity change from 0 to 64 [ 45.702200][ T4657] F2FS-fs (loop2): build fault injection attr: rate: 771, type: 0x1ffff [ 45.705616][ T4657] F2FS-fs (loop2): invalid crc value [ 45.743609][ T4661] hfs: unable to parse mount options [ 45.752773][ T4657] F2FS-fs (loop2): Found nat_bits in checkpoint [ 45.780678][ T4657] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 45.936880][ T4098] tipc: Node number set to 10005162 [ 46.084258][ T4054] attempt to access beyond end of device [ 46.084258][ T4054] loop2: rw=2049, want=45112, limit=40427 [ 46.608177][ T4683] tipc: Enabling of bearer rejected, already enabled [ 46.610575][ T4683] netlink: 240 bytes leftover after parsing attributes in process `syz.2.228'. [ 46.613054][ T4687] netlink: 8 bytes leftover after parsing attributes in process `syz.0.230'. [ 47.105971][ T4702] loop2: detected capacity change from 0 to 4096 [ 47.294017][ T4714] loop4: detected capacity change from 0 to 40427 [ 47.599339][ T4709] loop1: detected capacity change from 0 to 32768 [ 47.907682][ T4718] tipc: Started in network mode [ 47.908495][ T4718] tipc: Node identity aaaaaaaaaa32, cluster identity 4711 [ 47.909793][ T4718] tipc: Enabled bearer , priority 10 [ 47.911588][ T4718] netlink: 240 bytes leftover after parsing attributes in process `syz.0.246'. [ 47.927297][ T4709] jfs: Unrecognized mount option "0x0000000000000005" or missing value [ 47.929115][ T4714] F2FS-fs (loop4): build fault injection attr: rate: 771, type: 0x1ffff [ 47.931960][ T4714] F2FS-fs (loop4): invalid crc value [ 47.991956][ T4714] F2FS-fs (loop4): Found nat_bits in checkpoint [ 48.005665][ T4714] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 48.310586][ T4050] attempt to access beyond end of device [ 48.310586][ T4050] loop4: rw=2049, want=45112, limit=40427 [ 48.323300][ T4702] ntfs3: loop2: This driver is compiled without CONFIG_NTFS3_64BIT_CLUSTER (like windows driver). [ 48.323300][ T4702] Volume contains 64 bits run: vcn 0, lcn ffffffffff000000, len 7ff. [ 48.323300][ T4702] Activate CONFIG_NTFS3_64BIT_CLUSTER to process this case [ 48.335370][ T4702] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 48.336727][ T4702] ntfs3: loop2: Failed to load $BadClus. [ 48.421046][ T4732] netlink: 8 bytes leftover after parsing attributes in process `syz.0.248'. [ 49.140252][ T4473] tipc: Node number set to 10005162 [ 49.159170][ T4742] loop2: detected capacity change from 0 to 64 [ 49.183040][ T4742] hfs: unable to parse mount options [ 49.395786][ T4767] tipc: Enabling of bearer rejected, already enabled [ 49.397895][ T4767] netlink: 240 bytes leftover after parsing attributes in process `syz.0.264'. [ 49.602471][ T4775] netlink: 8 bytes leftover after parsing attributes in process `syz.3.265'. [ 49.966024][ T4783] Injecting memory failure for pfn 0x12dae6 at process virtual address 0x20ffb000 [ 49.987255][ T4786] Injecting memory failure for pfn 0x121f75 at process virtual address 0x20ffb000 [ 50.002543][ T4783] Memory failure: 0x12dae6: recovery action for clean LRU page: Recovered [ 50.003933][ T4783] Injecting memory failure for pfn 0x12dae7 at process virtual address 0x20ffc000 [ 50.005643][ T4786] Memory failure: 0x121f75: recovery action for clean LRU page: Recovered [ 50.007097][ T4786] Injecting memory failure for pfn 0x12fe6d at process virtual address 0x20ffc000 [ 50.010199][ T4783] Memory failure: 0x12dae7: recovery action for clean LRU page: Recovered [ 50.019284][ T4786] Memory failure: 0x12fe6d: recovery action for clean LRU page: Recovered [ 50.149110][ T4793] loop0: detected capacity change from 0 to 4096 [ 50.196390][ T4793] ntfs3: loop0: This driver is compiled without CONFIG_NTFS3_64BIT_CLUSTER (like windows driver). [ 50.196390][ T4793] Volume contains 64 bits run: vcn 0, lcn ffffffffff000000, len 7ff. [ 50.196390][ T4793] Activate CONFIG_NTFS3_64BIT_CLUSTER to process this case [ 50.202829][ T4793] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 50.213408][ T4793] ntfs3: loop0: Failed to load $BadClus. [ 50.288171][ T4763] loop1: detected capacity change from 0 to 40427 [ 50.377662][ T4805] tipc: Enabling of bearer rejected, already enabled [ 50.379726][ T4805] netlink: 240 bytes leftover after parsing attributes in process `syz.2.280'. [ 50.764788][ T4809] loop0: detected capacity change from 0 to 64 [ 50.795275][ T4763] F2FS-fs (loop1): build fault injection attr: rate: 771, type: 0x1ffff [ 50.798301][ T4763] F2FS-fs (loop1): invalid crc value [ 50.803830][ T4809] hfs: unable to parse mount options [ 50.825527][ T4763] F2FS-fs (loop1): Found nat_bits in checkpoint [ 50.918671][ T4763] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 51.179802][ T4832] loop3: detected capacity change from 0 to 32768 [ 51.347377][ T4831] loop4: detected capacity change from 0 to 32768 [ 51.363280][ T4832] jfs: Unrecognized mount option "0x0000000000000007" or missing value [ 51.383109][ T4831] jfs: Unrecognized mount option "0x0000000000000005" or missing value [ 51.635213][ T4044] attempt to access beyond end of device [ 51.635213][ T4044] loop1: rw=2049, want=45112, limit=40427 [ 51.845543][ T4853] Injecting memory failure for pfn 0x11ec13 at process virtual address 0x20ffb000 [ 51.858430][ T4847] tipc: Started in network mode [ 51.859227][ T4847] tipc: Node identity aaaaaaaaaa32, cluster identity 4711 [ 51.860640][ T4847] tipc: Enabled bearer , priority 10 [ 51.862553][ T4847] netlink: 240 bytes leftover after parsing attributes in process `syz.4.296'. [ 52.044469][ T4853] Memory failure: 0x11ec13: recovery action for clean LRU page: Recovered [ 52.045981][ T4853] Injecting memory failure for pfn 0x12d50a at process virtual address 0x20ffc000 [ 52.051866][ T4853] Memory failure: 0x12d50a: recovery action for clean LRU page: Recovered [ 52.238483][ T4876] binder: 4875:4876 ioctl c0306201 0 returned -14 [ 52.301279][ T4874] loop1: detected capacity change from 0 to 32768 [ 52.307756][ C1] dccp_invalid_packet: P.type (REQUEST) not Data || [Data]Ack, while P.X == 0 [ 52.321767][ C1] dccp_invalid_packet: P.type (REQUEST) not Data || [Data]Ack, while P.X == 0 [ 52.325774][ C1] dccp_invalid_packet: P.type (REQUEST) not Data || [Data]Ack, while P.X == 0 [ 52.327509][ C1] dccp_invalid_packet: P.type (REQUEST) not Data || [Data]Ack, while P.X == 0 [ 52.329102][ C1] dccp_invalid_packet: P.type (REQUEST) not Data || [Data]Ack, while P.X == 0 [ 52.330737][ C1] dccp_invalid_packet: P.type (REQUEST) not Data || [Data]Ack, while P.X == 0 [ 52.332326][ C1] dccp_invalid_packet: P.type (REQUEST) not Data || [Data]Ack, while P.X == 0 [ 52.334994][ C1] dccp_invalid_packet: P.type (REQUEST) not Data || [Data]Ack, while P.X == 0 [ 52.336525][ C1] dccp_invalid_packet: P.type (REQUEST) not Data || [Data]Ack, while P.X == 0 [ 52.338278][ C1] dccp_invalid_packet: P.type (REQUEST) not Data || [Data]Ack, while P.X == 0 [ 52.441440][ T4889] tipc: Enabling of bearer rejected, already enabled [ 52.444323][ T4889] netlink: 240 bytes leftover after parsing attributes in process `syz.4.315'. [ 52.594869][ T4874] jfs: Unrecognized mount option "0x0000000000000007" or missing value [ 52.721142][ T4901] fuse: Bad value for 'fd' [ 52.910855][ T3625] tipc: Node number set to 10005162 [ 53.062266][ T4906] binder: 4903:4906 ioctl c0306201 0 returned -14 [ 53.299943][ T4927] tipc: Enabling of bearer rejected, already enabled [ 53.302126][ T4927] netlink: 240 bytes leftover after parsing attributes in process `syz.0.332'. [ 53.447070][ T4930] loop4: detected capacity change from 0 to 32768 [ 53.523140][ T4930] jfs: Unrecognized mount option "0x0000000000000007" or missing value [ 53.604331][ T4936] tipc: Enabling of bearer rejected, already enabled [ 53.606396][ T4936] netlink: 240 bytes leftover after parsing attributes in process `syz.0.345'. [ 53.797439][ T4944] binder: 4941:4944 ioctl c0306201 0 returned -14 [ 54.190017][ T4968] loop0: detected capacity change from 0 to 40427 [ 55.042414][ T4969] fuse: Bad value for 'fd' [ 55.574299][ T4975] tipc: Enabling of bearer rejected, already enabled [ 55.576448][ T4975] netlink: 240 bytes leftover after parsing attributes in process `syz.4.352'. [ 55.627973][ T4979] binder: 4976:4979 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 55.630759][ T4979] binder: 4979 RLIMIT_NICE not set [ 57.199108][ T5007] syz.3.369 uses obsolete (PF_INET,SOCK_PACKET) [ 57.208461][ T5004] loop0: detected capacity change from 0 to 512 [ 57.232655][ T5009] 9pnet: Insufficient options for proto=fd [ 57.288425][ T5004] EXT2-fs (loop0): warning: mounting ext3 filesystem as ext2 [ 57.489651][ T5017] loop3: detected capacity change from 0 to 40427 [ 58.322426][ T5018] fuse: Bad value for 'fd' [ 58.392878][ T5014] sched: RT throttling activated [ 58.553921][ T5017] F2FS-fs (loop3): build fault injection attr: rate: 771, type: 0x1ffff [ 58.556204][ T5017] F2FS-fs (loop3): invalid crc value [ 58.586594][ T5017] F2FS-fs (loop3): Found nat_bits in checkpoint [ 58.883421][ T5024] tipc: Enabling of bearer rejected, already enabled [ 58.885473][ T5024] netlink: 240 bytes leftover after parsing attributes in process `syz.0.374'. [ 58.935401][ T5017] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 59.171988][ T4043] attempt to access beyond end of device [ 59.171988][ T4043] loop3: rw=2049, want=45112, limit=40427 [ 59.182456][ T5034] binder: 5033:5034 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 59.184412][ T5034] binder: 5034 RLIMIT_NICE not set [ 59.241400][ T5042] loop1: detected capacity change from 0 to 512 [ 59.277747][ T5048] loop2: detected capacity change from 0 to 512 [ 59.324870][ T5042] EXT2-fs (loop1): warning: mounting ext3 filesystem as ext2 [ 59.355925][ T5048] EXT4-fs (loop2): 1 truncate cleaned up [ 59.356855][ T5048] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 59.471415][ T5049] loop0: detected capacity change from 0 to 32768 [ 59.512858][ T5049] jfs: Unrecognized mount option "0x0000000000000007" or missing value [ 59.549209][ T5070] binder: 5069:5070 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 59.551517][ T5070] binder: 5070 RLIMIT_NICE not set [ 59.684360][ T5073] loop1: detected capacity change from 0 to 40427 [ 59.974732][ T5074] tipc: Enabling of bearer rejected, already enabled [ 59.976914][ T5074] netlink: 240 bytes leftover after parsing attributes in process `syz.2.389'. [ 59.986899][ T5073] F2FS-fs (loop1): build fault injection attr: rate: 771, type: 0x1ffff [ 59.989424][ T5073] F2FS-fs (loop1): invalid crc value [ 59.999991][ T5073] F2FS-fs (loop1): Found nat_bits in checkpoint [ 60.066623][ T5073] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 60.337529][ T5086] loop4: detected capacity change from 0 to 512 [ 60.354777][ T4044] attempt to access beyond end of device [ 60.354777][ T4044] loop1: rw=2049, want=45112, limit=40427 [ 60.414264][ T5086] EXT4-fs (loop4): 1 truncate cleaned up [ 60.415173][ T5086] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 60.549129][ T5087] loop2: detected capacity change from 0 to 32768 [ 60.550865][ T5097] netlink: 28 bytes leftover after parsing attributes in process `syz.4.404'. [ 60.924350][ T5087] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.400 (5087) [ 60.930397][ T5087] BTRFS info (device loop2): using sha256 (sha256-ce) checksum algorithm [ 60.934118][ T5087] BTRFS info (device loop2): using free space tree [ 60.936329][ T5087] BTRFS info (device loop2): has skinny extents [ 60.994997][ T5111] binder: 5109:5111 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 61.001854][ T5111] binder: 5111 RLIMIT_NICE not set [ 61.031249][ T5094] loop1: detected capacity change from 0 to 40427 [ 61.039561][ T5121] loop4: detected capacity change from 0 to 512 [ 61.047744][ T5087] BTRFS info (device loop2): enabling ssd optimizations [ 61.067612][ T5094] F2FS-fs (loop1): invalid crc value [ 61.074378][ T5094] F2FS-fs (loop1): Found nat_bits in checkpoint [ 61.077167][ T5121] EXT2-fs (loop4): warning: mounting ext3 filesystem as ext2 [ 61.124582][ T5094] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 61.156647][ T4044] attempt to access beyond end of device [ 61.156647][ T4044] loop1: rw=2049, want=45104, limit=40427 [ 61.409740][ T5144] tipc: Enabling of bearer rejected, already enabled [ 61.411821][ T5144] netlink: 240 bytes leftover after parsing attributes in process `syz.2.409'. [ 61.746872][ T5151] loop0: detected capacity change from 0 to 128 [ 61.879784][ T5152] loop4: detected capacity change from 0 to 40427 [ 61.926129][ T5158] binder: 5157:5158 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 61.928290][ T5158] binder: 5158 RLIMIT_NICE not set [ 62.951699][ T5166] loop3: detected capacity change from 0 to 40427 [ 64.530957][ T5151] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 64.538522][ T5166] F2FS-fs (loop3): invalid crc value [ 64.545323][ T5166] F2FS-fs (loop3): Found nat_bits in checkpoint [ 64.549069][ T5151] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 64.591081][ T5166] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 64.644640][ T4043] attempt to access beyond end of device [ 64.644640][ T4043] loop3: rw=2049, want=45104, limit=40427 [ 64.781948][ T5188] loop0: detected capacity change from 0 to 16 [ 64.829918][ T5188] erofs: (device loop0): mounted with root inode @ nid 36. [ 65.231542][ T5195] tipc: Enabling of bearer rejected, already enabled [ 65.234072][ T5195] netlink: 240 bytes leftover after parsing attributes in process `syz.1.436'. [ 65.740847][ T5201] loop2: detected capacity change from 0 to 40427 [ 65.741707][ T5188] overlayfs: unrecognized mount option "/" or missing value [ 65.868019][ T5201] F2FS-fs (loop2): build fault injection attr: rate: 771, type: 0x1ffff [ 65.873259][ T5201] F2FS-fs (loop2): invalid crc value [ 66.296891][ T5211] loop1: detected capacity change from 0 to 32768 [ 66.330801][ T5201] F2FS-fs (loop2): Found nat_bits in checkpoint [ 66.348435][ T5201] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 66.353518][ T5211] jfs: Unrecognized mount option "0x0000000000000007" or missing value [ 66.626485][ T4054] attempt to access beyond end of device [ 66.626485][ T4054] loop2: rw=2049, want=45112, limit=40427 [ 66.666217][ T5220] loop0: detected capacity change from 0 to 512 [ 66.711882][ T5220] EXT4-fs (loop0): 1 truncate cleaned up [ 66.713068][ T5220] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 66.809636][ T5221] loop4: detected capacity change from 0 to 40427 [ 66.858711][ T5221] F2FS-fs (loop4): invalid crc value [ 66.869238][ T5221] F2FS-fs (loop4): Found nat_bits in checkpoint [ 66.892612][ T5221] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 67.020199][ T5237] loop2: detected capacity change from 0 to 32768 [ 67.070405][ T4237] loop2: p1 p3 < > [ 67.085921][ T5237] loop2: p1 p3 < > [ 67.125445][ T5253] Injecting memory failure for pfn 0x12db5b at process virtual address 0x20000000 [ 67.127332][ T5253] Memory failure: 0x12db5b: recovery action for dirty LRU page: Recovered [ 67.128744][ T5253] Injecting memory failure for pfn 0x213dac at process virtual address 0x20001000 [ 67.142234][ T5253] Memory failure: 0x213dac: recovery action for reserved kernel page: Ignored [ 67.282485][ T4035] udevd[4035]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory [ 67.289435][ T5130] udevd[5130]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 67.301322][ T5130] udevd[5130]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 67.301997][ T4035] udevd[4035]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory [ 67.457119][ T5267] loop4: detected capacity change from 0 to 32768 [ 67.593105][ T5267] jfs: Unrecognized mount option "0x0000000000000007" or missing value [ 67.629548][ T5271] loop1: detected capacity change from 0 to 512 [ 67.681719][ T5271] EXT4-fs (loop1): 1 truncate cleaned up [ 67.683926][ T5271] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 67.731354][ T5269] loop3: detected capacity change from 0 to 40427 [ 67.767992][ T5269] F2FS-fs (loop3): invalid crc value [ 67.774556][ T5269] F2FS-fs (loop3): Found nat_bits in checkpoint [ 67.788740][ T5269] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 67.869790][ T5280] fuse: Unknown parameter 'f' [ 68.492316][ T5298] loop1: detected capacity change from 0 to 40427 [ 68.585445][ T5298] F2FS-fs (loop1): build fault injection attr: rate: 771, type: 0x1ffff [ 68.588323][ T5298] F2FS-fs (loop1): invalid crc value [ 68.653546][ T5298] F2FS-fs (loop1): Found nat_bits in checkpoint [ 68.680033][ T5298] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 69.146454][ T4044] attempt to access beyond end of device [ 69.146454][ T4044] loop1: rw=2049, want=45112, limit=40427 [ 69.158695][ T5291] loop4: detected capacity change from 0 to 32768 [ 69.238501][ T5291] loop4: p1 p3 < > [ 69.658109][ T1969] cfg80211: failed to load regulatory.db [ 69.718291][ T5313] loop2: detected capacity change from 0 to 32768 [ 69.722612][ T2064] ieee802154 phy0 wpan0: encryption failed: -22 [ 69.723742][ T2064] ieee802154 phy1 wpan1: encryption failed: -22 [ 69.812884][ T5313] jfs: Unrecognized mount option "0x0000000000000007" or missing value [ 69.867360][ T5318] tipc: Enabling of bearer rejected, already enabled [ 69.869290][ T5318] netlink: 240 bytes leftover after parsing attributes in process `syz.0.481'. [ 70.103009][ T5326] device syzkaller1 entered promiscuous mode [ 70.182807][ T5328] device syzkaller1 entered promiscuous mode [ 70.286084][ T5332] fuse: Unknown parameter 'f' [ 70.653541][ T5337] device syzkaller1 entered promiscuous mode [ 70.689346][ T5341] loop3: detected capacity change from 0 to 512 [ 70.729409][ T5322] loop1: detected capacity change from 0 to 40427 [ 70.740698][ T5341] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpid,grpquota,,errors=continue. Quota mode: writeback. [ 70.757594][ T5322] F2FS-fs (loop1): invalid crc value [ 70.782431][ T5322] F2FS-fs (loop1): Found nat_bits in checkpoint [ 70.800064][ T5346] loop0: detected capacity change from 0 to 512 [ 70.827214][ T5322] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 70.903888][ T5346] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpid,grpquota,,errors=continue. Quota mode: writeback. [ 70.964383][ T5351] device syzkaller1 entered promiscuous mode [ 71.092801][ T5360] device syzkaller1 entered promiscuous mode [ 71.215229][ T5365] fuse: Unknown parameter 'f' [ 71.616682][ T5130] udevd[5130]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 71.643573][ T5372] netlink: 240 bytes leftover after parsing attributes in process `syz.2.498'. [ 71.652829][ T4237] udevd[4237]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory [ 71.681897][ T5374] netlink: 8 bytes leftover after parsing attributes in process `syz.3.502'. [ 71.691031][ T5368] loop1: detected capacity change from 0 to 4096 [ 71.776202][ T5368] ntfs3: loop1: This driver is compiled without CONFIG_NTFS3_64BIT_CLUSTER (like windows driver). [ 71.776202][ T5368] Volume contains 64 bits run: vcn 0, lcn ffffffffff000000, len 7ff. [ 71.776202][ T5368] Activate CONFIG_NTFS3_64BIT_CLUSTER to process this case [ 71.832908][ T5368] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 71.834680][ T5368] ntfs3: loop1: Failed to load $BadClus. [ 72.356114][ T5389] loop4: detected capacity change from 0 to 32768 [ 72.365321][ T5368] loop1: detected capacity change from 0 to 64 [ 72.375699][ T5394] device syzkaller1 entered promiscuous mode [ 72.402851][ T5368] hfs: unable to parse mount options [ 72.402873][ T5389] jfs: Unrecognized mount option "0x0000000000000005" or missing value [ 72.404720][ T5130] udevd[5130]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 72.409228][ T4035] udevd[4035]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory [ 72.479154][ T5399] device syzkaller1 entered promiscuous mode [ 72.719109][ T5405] loop0: detected capacity change from 0 to 40427 [ 73.294827][ T5415] netlink: 240 bytes leftover after parsing attributes in process `syz.2.515'. [ 73.297997][ T5405] F2FS-fs (loop0): build fault injection attr: rate: 771, type: 0x1ffff [ 73.300668][ T5405] F2FS-fs (loop0): invalid crc value [ 73.313084][ T5411] tipc: Enabling of bearer rejected, already enabled [ 73.460897][ T5405] F2FS-fs (loop0): Found nat_bits in checkpoint [ 73.496166][ T5405] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 73.771213][ T4049] attempt to access beyond end of device [ 73.771213][ T4049] loop0: rw=2049, want=45112, limit=40427 [ 73.868879][ T5435] loop1: detected capacity change from 0 to 4096 [ 73.925209][ T5435] ntfs3: loop1: This driver is compiled without CONFIG_NTFS3_64BIT_CLUSTER (like windows driver). [ 73.925209][ T5435] Volume contains 64 bits run: vcn 0, lcn ffffffffff000000, len 7ff. [ 73.925209][ T5435] Activate CONFIG_NTFS3_64BIT_CLUSTER to process this case [ 73.938408][ T5435] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 73.944410][ T5435] ntfs3: loop1: Failed to load $BadClus. [ 73.950282][ T5445] loop2: detected capacity change from 0 to 512 [ 73.960295][ T5447] loop4: detected capacity change from 0 to 2048 [ 74.377924][ T5448] loop3: detected capacity change from 0 to 32768 [ 74.396758][ T5447] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 74.442923][ T5448] jfs: Unrecognized mount option "0x0000000000000005" or missing value [ 74.454624][ T5453] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 74.473812][ T5457] tipc: Enabling of bearer rejected, already enabled [ 74.500016][ T5445] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpid,grpquota,,errors=continue. Quota mode: writeback. [ 74.633328][ T5455] loop1: detected capacity change from 0 to 64 [ 74.692010][ T5465] device syzkaller1 entered promiscuous mode [ 74.694156][ T5455] hfs: unable to parse mount options [ 74.972337][ T5488] tipc: Enabling of bearer rejected, already enabled [ 75.290121][ T5496] loop2: detected capacity change from 0 to 40427 [ 75.297817][ T5496] F2FS-fs (loop2): build fault injection attr: rate: 771, type: 0x1ffff [ 75.300069][ T5496] F2FS-fs (loop2): invalid crc value [ 75.307827][ T5496] F2FS-fs (loop2): Found nat_bits in checkpoint [ 75.317882][ T5496] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 75.541269][ T5506] netlink: 28 bytes leftover after parsing attributes in process `syz.1.550'. [ 75.628223][ T5512] loop0: detected capacity change from 0 to 512 [ 75.655799][ T5513] loop1: detected capacity change from 0 to 2048 [ 75.713960][ T5513] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 75.810352][ T5512] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpid,grpquota,,errors=continue. Quota mode: writeback. [ 75.824629][ T5517] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 75.931658][ T5520] fuse: Bad value for 'fd' [ 76.230784][ T4054] attempt to access beyond end of device [ 76.230784][ T4054] loop2: rw=2049, want=45112, limit=40427 [ 76.369460][ T5490] loop3: detected capacity change from 0 to 40427 [ 76.811748][ T5528] loop1: detected capacity change from 0 to 32768 [ 76.845802][ T5490] F2FS-fs (loop3): invalid crc value [ 76.904563][ T5490] F2FS-fs (loop3): Found nat_bits in checkpoint [ 76.924612][ T5534] tipc: Enabling of bearer rejected, already enabled [ 76.943689][ T5490] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 77.012178][ T5539] loop2: detected capacity change from 0 to 64 [ 77.063501][ T5528] jfs: Unrecognized mount option "0x0000000000000005" or missing value [ 77.083974][ T5539] hfs: unable to parse mount options [ 77.204236][ T5546] loop0: detected capacity change from 0 to 256 [ 77.434998][ T5553] loop3: detected capacity change from 0 to 40427 [ 77.478124][ T5555] loop1: detected capacity change from 0 to 2048 [ 77.489910][ T5546] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 77.496075][ T5553] F2FS-fs (loop3): build fault injection attr: rate: 771, type: 0x1ffff [ 77.498195][ T5553] F2FS-fs (loop3): invalid crc value [ 77.526603][ T5555] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 77.530583][ T5553] F2FS-fs (loop3): Found nat_bits in checkpoint [ 77.565451][ T5553] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 77.689814][ T5561] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 77.785967][ T5565] loop0: detected capacity change from 0 to 64 [ 78.257207][ T5573] tipc: Enabling of bearer rejected, already enabled [ 78.290484][ T4043] attempt to access beyond end of device [ 78.290484][ T4043] loop3: rw=2049, want=45112, limit=40427 [ 78.874067][ T5587] loop4: detected capacity change from 0 to 256 [ 78.896774][ T5586] loop1: detected capacity change from 0 to 32768 [ 78.908771][ T5587] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 78.920356][ T5586] jfs: Unrecognized mount option "0x0000000000000005" or missing value [ 78.939927][ T5571] loop0: detected capacity change from 0 to 40427 [ 78.984519][ T5571] F2FS-fs (loop0): invalid crc value [ 78.999511][ T5571] F2FS-fs (loop0): Found nat_bits in checkpoint [ 79.015909][ T5571] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 79.182812][ T5600] loop4: detected capacity change from 0 to 40427 [ 79.510228][ T5602] tipc: Enabling of bearer rejected, already enabled [ 79.550352][ T5600] F2FS-fs (loop4): build fault injection attr: rate: 771, type: 0x1ffff [ 79.552693][ T5600] F2FS-fs (loop4): invalid crc value [ 79.600277][ T5600] F2FS-fs (loop4): Found nat_bits in checkpoint [ 79.635975][ T5600] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 79.809414][ T5617] loop1: detected capacity change from 0 to 64 [ 79.867029][ T5615] loop3: detected capacity change from 0 to 4096 [ 79.868685][ T4050] attempt to access beyond end of device [ 79.868685][ T4050] loop4: rw=2049, want=45112, limit=40427 [ 79.910215][ T5615] ntfs3: loop3: This driver is compiled without CONFIG_NTFS3_64BIT_CLUSTER (like windows driver). [ 79.910215][ T5615] Volume contains 64 bits run: vcn 0, lcn ffffffffff000000, len 7ff. [ 79.910215][ T5615] Activate CONFIG_NTFS3_64BIT_CLUSTER to process this case [ 79.962125][ T5623] loop2: detected capacity change from 0 to 2048 [ 79.969066][ T5615] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 79.971397][ T5615] ntfs3: loop3: Failed to load $BadClus. [ 80.027640][ T5623] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 80.038176][ T5631] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 80.502947][ T5634] loop0: detected capacity change from 0 to 32768 [ 80.509658][ T5636] netlink: 28 bytes leftover after parsing attributes in process `syz.4.603'. [ 80.533650][ T5634] jfs: Unrecognized mount option "0x0000000000000005" or missing value [ 80.788358][ T5652] loop4: detected capacity change from 0 to 40427 [ 80.836397][ T5652] F2FS-fs (loop4): build fault injection attr: rate: 771, type: 0x1ffff [ 80.839425][ T5652] F2FS-fs (loop4): invalid crc value [ 80.898442][ T5653] loop3: detected capacity change from 0 to 64 [ 80.953382][ T5653] hfs: unable to parse mount options [ 81.034708][ T5652] F2FS-fs (loop4): Found nat_bits in checkpoint [ 81.065488][ T5652] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 81.420258][ T4050] attempt to access beyond end of device [ 81.420258][ T4050] loop4: rw=2049, want=45112, limit=40427 [ 81.580721][ T5670] tipc: Enabling of bearer rejected, already enabled [ 81.729331][ T5672] fuse: Bad value for 'fd' [ 82.083869][ T5677] netlink: 28 bytes leftover after parsing attributes in process `syz.4.615'. [ 82.108233][ T5683] netlink: 88 bytes leftover after parsing attributes in process `syz.4.620'. [ 82.703283][ T5700] loop2: detected capacity change from 0 to 32768 [ 82.704847][ T5700] jfs: Unrecognized mount option "0x0000000000000005" or missing value [ 83.174931][ T5738] loop0: detected capacity change from 0 to 40427 [ 84.092411][ T5739] fuse: Bad value for 'fd' [ 84.203578][ T5741] loop4: detected capacity change from 0 to 64 [ 84.255104][ T5738] F2FS-fs (loop0): build fault injection attr: rate: 771, type: 0x1ffff [ 84.257393][ T5738] F2FS-fs (loop0): invalid crc value [ 84.350999][ T5738] F2FS-fs (loop0): Found nat_bits in checkpoint [ 84.376698][ T5738] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 84.569802][ T5717] loop1: detected capacity change from 0 to 40427 [ 84.609840][ T4049] attempt to access beyond end of device [ 84.609840][ T4049] loop0: rw=2049, want=45112, limit=40427 [ 84.624521][ T5717] F2FS-fs (loop1): invalid crc value [ 84.640672][ T5717] F2FS-fs (loop1): Found nat_bits in checkpoint [ 84.720058][ T5717] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 85.146492][ T5773] loop3: detected capacity change from 0 to 64 [ 85.160326][ T4044] attempt to access beyond end of device [ 85.160326][ T4044] loop1: rw=2049, want=45104, limit=40427 [ 85.200243][ T5774] loop2: detected capacity change from 0 to 32768 [ 85.268557][ T5777] fuse: Bad value for 'fd' [ 85.533482][ T5774] jfs: Unrecognized mount option "0x0000000000000005" or missing value [ 85.910061][ T5791] loop4: detected capacity change from 0 to 40427 [ 86.680927][ T5796] tipc: Enabling of bearer rejected, already enabled [ 86.777707][ T5791] F2FS-fs (loop4): build fault injection attr: rate: 771, type: 0x1ffff [ 86.780721][ T5791] F2FS-fs (loop4): invalid crc value [ 86.836535][ T5803] netlink: 28 bytes leftover after parsing attributes in process `syz.1.670'. [ 86.839406][ T5791] F2FS-fs (loop4): Found nat_bits in checkpoint [ 86.868086][ T5791] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 87.143339][ T4050] attempt to access beyond end of device [ 87.143339][ T4050] loop4: rw=2049, want=45112, limit=40427 [ 87.202988][ T5818] netlink: 28 bytes leftover after parsing attributes in process `syz.0.677'. [ 87.773577][ T5806] loop2: detected capacity change from 0 to 40427 [ 87.809937][ T5834] loop1: detected capacity change from 0 to 32768 [ 87.816188][ T5836] netlink: 28 bytes leftover after parsing attributes in process `syz.4.683'. [ 87.843003][ T5834] jfs: Unrecognized mount option "0x0000000000000005" or missing value [ 88.065232][ T5844] loop0: detected capacity change from 0 to 40427 [ 88.074815][ T5806] F2FS-fs (loop2): invalid crc value [ 88.094439][ T5806] F2FS-fs (loop2): Found nat_bits in checkpoint [ 88.139033][ T5844] F2FS-fs (loop0): build fault injection attr: rate: 771, type: 0x1ffff [ 88.141830][ T5844] F2FS-fs (loop0): invalid crc value [ 88.196692][ T5806] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 88.234208][ T5844] F2FS-fs (loop0): Found nat_bits in checkpoint [ 88.297565][ T5844] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 88.538709][ T4054] attempt to access beyond end of device [ 88.538709][ T4054] loop2: rw=2049, want=45104, limit=40427 [ 88.743401][ T4049] attempt to access beyond end of device [ 88.743401][ T4049] loop0: rw=2049, want=45112, limit=40427 [ 88.782227][ T5869] netlink: 28 bytes leftover after parsing attributes in process `syz.4.696'. [ 88.897350][ T5881] tipc: Enabling of bearer rejected, already enabled [ 89.138705][ T5910] loop1: detected capacity change from 0 to 512 [ 89.145064][ T5896] loop0: detected capacity change from 0 to 512 [ 89.371636][ T5917] loop4: detected capacity change from 0 to 40427 [ 89.406508][ T5917] F2FS-fs (loop4): build fault injection attr: rate: 771, type: 0x1ffff [ 89.409374][ T5917] F2FS-fs (loop4): invalid crc value [ 89.494859][ T5896] EXT4-fs (loop0): 1 truncate cleaned up [ 89.502011][ T5896] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 89.507310][ T5917] F2FS-fs (loop4): Found nat_bits in checkpoint [ 89.525277][ T5910] EXT4-fs (loop1): 1 truncate cleaned up [ 89.526151][ T5910] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 89.628599][ T5917] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 90.057868][ T4050] attempt to access beyond end of device [ 90.057868][ T4050] loop4: rw=2049, want=45112, limit=40427 [ 90.111347][ T5940] tipc: Enabling of bearer rejected, already enabled [ 90.494070][ T5983] loop4: detected capacity change from 0 to 512 [ 90.941762][ T5988] loop3: detected capacity change from 0 to 32768 [ 91.003018][ T5988] jfs: Unrecognized mount option "0x0000000000000005" or missing value [ 91.039247][ T5983] EXT4-fs (loop4): 1 truncate cleaned up [ 91.040276][ T5983] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 91.057492][ T5995] tipc: Enabling of bearer rejected, already enabled [ 91.260345][ T6011] loop2: detected capacity change from 0 to 512 [ 91.286593][ T6013] netlink: 28 bytes leftover after parsing attributes in process `syz.4.744'. [ 91.348816][ T6011] EXT4-fs (loop2): 1 truncate cleaned up [ 91.349867][ T6011] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 91.375488][ T6014] tipc: Enabling of bearer rejected, already enabled [ 91.520456][ T6025] loop1: detected capacity change from 0 to 512 [ 91.602676][ T6025] EXT4-fs (loop1): 1 truncate cleaned up [ 91.603587][ T6025] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 91.667860][ T6043] netlink: 28 bytes leftover after parsing attributes in process `syz.0.764'. [ 92.255535][ T6065] loop2: detected capacity change from 0 to 32768 [ 92.278714][ T6068] loop4: detected capacity change from 0 to 512 [ 92.302864][ T6065] jfs: Unrecognized mount option "0x0000000000000005" or missing value [ 92.310328][ T6068] EXT4-fs (loop4): 1 truncate cleaned up [ 92.311392][ T6068] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 92.604521][ T6095] loop4: detected capacity change from 0 to 40427 [ 92.697274][ T6095] F2FS-fs (loop4): build fault injection attr: rate: 771, type: 0x1ffff [ 92.700593][ T6095] F2FS-fs (loop4): invalid crc value [ 92.738739][ T6095] F2FS-fs (loop4): Found nat_bits in checkpoint [ 92.768610][ T6095] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 93.142898][ T6114] loop1: detected capacity change from 0 to 512 [ 93.203536][ T6114] EXT4-fs (loop1): 1 truncate cleaned up [ 93.204633][ T6114] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 93.227523][ T4050] attempt to access beyond end of device [ 93.227523][ T4050] loop4: rw=2049, want=45112, limit=40427 [ 93.841648][ T6147] loop0: detected capacity change from 0 to 32768 [ 93.877959][ T6152] loop4: detected capacity change from 0 to 2048 [ 93.890460][ T6152] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 93.897570][ T6156] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 93.913065][ T6147] jfs: Unrecognized mount option "0x0000000000000006" or missing value [ 94.049654][ T6160] loop3: detected capacity change from 0 to 40427 [ 94.091489][ T6160] F2FS-fs (loop3): build fault injection attr: rate: 771, type: 0x1ffff [ 94.096812][ T6160] F2FS-fs (loop3): invalid crc value [ 94.147061][ T6160] F2FS-fs (loop3): Found nat_bits in checkpoint [ 94.181594][ T6160] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 94.354443][ T6173] netlink: 16 bytes leftover after parsing attributes in process `syz.1.812'. [ 94.567490][ T6194] loop4: detected capacity change from 0 to 2048 [ 94.804684][ T6203] fuse: Bad value for 'fd' [ 95.058776][ T4043] attempt to access beyond end of device [ 95.058776][ T4043] loop3: rw=2049, want=45112, limit=40427 [ 95.065996][ T6194] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 95.094999][ T6205] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 95.281899][ T6223] netlink: 12 bytes leftover after parsing attributes in process `syz.1.831'. [ 95.771310][ T6228] loop4: detected capacity change from 0 to 32768 [ 96.000983][ T6239] loop2: detected capacity change from 0 to 40427 [ 96.023440][ T6228] jfs: Unrecognized mount option "0x0000000000000005" or missing value [ 96.036857][ T6241] netlink: 16 bytes leftover after parsing attributes in process `syz.3.838'. [ 96.057812][ T6238] loop1: detected capacity change from 0 to 2048 [ 96.066546][ T6239] F2FS-fs (loop2): build fault injection attr: rate: 771, type: 0x1ffff [ 96.069117][ T6239] F2FS-fs (loop2): invalid crc value [ 96.089321][ T6244] loop0: detected capacity change from 0 to 512 [ 96.092116][ T6239] F2FS-fs (loop2): Found nat_bits in checkpoint [ 96.116392][ T6238] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 96.122194][ T6239] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 96.347378][ T6244] EXT4-fs (loop0): 1 truncate cleaned up [ 96.348230][ T6249] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 96.415973][ T6244] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 96.642712][ T4054] attempt to access beyond end of device [ 96.642712][ T4054] loop2: rw=2049, want=45112, limit=40427 [ 96.694026][ T6265] netlink: 60 bytes leftover after parsing attributes in process `syz.0.844'. [ 97.184565][ T6269] loop3: detected capacity change from 0 to 32768 [ 97.189465][ T6270] fuse: Bad value for 'fd' [ 97.541260][ T6272] loop4: detected capacity change from 0 to 512 [ 97.592849][ T6269] jfs: Unrecognized mount option "0x0000000000000006" or missing value [ 97.596597][ T6272] EXT4-fs (loop4): Ignoring removed oldalloc option [ 97.597781][ T6272] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 97.599610][ T6272] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 97.603592][ T6272] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2825: Unable to expand inode 11. Delete some EAs or run e2fsck. [ 97.605622][ T6272] EXT4-fs (loop4): 1 truncate cleaned up [ 97.606645][ T6272] EXT4-fs (loop4): mounted filesystem without journal. Opts: bsddf,oldalloc,resuid=0x0000000000000000,debug_want_extra_isize=0x0000000000000080,block_validity,jqfmt=vfsv1,,errors=continue. Quota mode: none. [ 97.667498][ T6285] loop0: detected capacity change from 0 to 512 [ 97.691209][ T6287] loop1: detected capacity change from 0 to 2048 [ 97.721177][ T6285] EXT4-fs (loop0): 1 truncate cleaned up [ 97.723430][ T6286] tipc: Enabling of bearer rejected, already enabled [ 97.725494][ T6286] netlink: 252 bytes leftover after parsing attributes in process `syz.2.847'. [ 97.730027][ T6285] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 97.897128][ T6287] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 97.915622][ T6296] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 97.985875][ T6295] loop3: detected capacity change from 0 to 32768 [ 98.101286][ T6315] loop0: detected capacity change from 0 to 512 [ 98.201452][ T6316] fuse: Bad value for 'fd' [ 98.459250][ T6315] EXT4-fs (loop0): 1 truncate cleaned up [ 98.460203][ T6315] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 99.056434][ T6323] loop0: detected capacity change from 0 to 32768 [ 99.079638][ T6328] loop3: detected capacity change from 0 to 2048 [ 99.092922][ T6323] jfs: Unrecognized mount option "0x0000000000000007" or missing value [ 99.104324][ T6328] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 99.129596][ T6337] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 99.205123][ T6341] loop2: detected capacity change from 0 to 512 [ 99.213482][ T6339] tipc: Enabling of bearer rejected, already enabled [ 99.215612][ T6339] netlink: 252 bytes leftover after parsing attributes in process `syz.1.872'. [ 99.266065][ T6341] EXT4-fs (loop2): Ignoring removed oldalloc option [ 99.267348][ T6341] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 99.288573][ T6341] EXT4-fs (loop2): 1 truncate cleaned up [ 99.289795][ T6341] EXT4-fs (loop2): mounted filesystem without journal. Opts: bsddf,oldalloc,resuid=0x0000000000000000,debug_want_extra_isize=0x0000000000000080,block_validity,jqfmt=vfsv1,,errors=continue. Quota mode: none. [ 99.297610][ T6346] loop3: detected capacity change from 0 to 512 [ 99.378220][ T6346] EXT4-fs (loop3): Ignoring removed oldalloc option [ 99.379320][ T6346] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 99.410633][ T6346] EXT4-fs (loop3): 1 truncate cleaned up [ 99.411524][ T6346] EXT4-fs (loop3): mounted filesystem without journal. Opts: bsddf,oldalloc,resuid=0x0000000000000000,debug_want_extra_isize=0x0000000000000080,block_validity,jqfmt=vfsv1,,errors=continue. Quota mode: none. [ 100.062396][ T6357] loop1: detected capacity change from 0 to 32768 [ 100.064616][ T6357] jfs: Unrecognized mount option "0x0000000000000005" or missing value [ 100.074959][ T6358] fuse: Bad value for 'fd' [ 100.407701][ T6369] loop1: detected capacity change from 0 to 2048 [ 100.446100][ T6369] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 100.457050][ T6379] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 100.623799][ T6381] loop0: detected capacity change from 0 to 40427 [ 100.724938][ T6381] F2FS-fs (loop0): build fault injection attr: rate: 771, type: 0x1ffff [ 100.727333][ T6381] F2FS-fs (loop0): invalid crc value [ 100.750876][ T6381] F2FS-fs (loop0): Found nat_bits in checkpoint [ 100.768255][ T6381] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 101.019727][ T6377] loop3: detected capacity change from 0 to 32768 [ 101.290252][ T6398] fuse: Bad value for 'fd' [ 101.584567][ T4049] attempt to access beyond end of device [ 101.584567][ T4049] loop0: rw=2049, want=45112, limit=40427 [ 101.618357][ T6400] device syzkaller1 entered promiscuous mode [ 101.994872][ T6425] loop2: detected capacity change from 0 to 40427 [ 102.069286][ T6427] netlink: 40 bytes leftover after parsing attributes in process `syz.1.911'. [ 102.096011][ T6425] F2FS-fs (loop2): build fault injection attr: rate: 771, type: 0x1ffff [ 102.099166][ T6425] F2FS-fs (loop2): invalid crc value [ 102.107212][ T6425] F2FS-fs (loop2): Found nat_bits in checkpoint [ 102.121273][ T6425] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 102.624035][ T4054] attempt to access beyond end of device [ 102.624035][ T4054] loop2: rw=2049, want=45112, limit=40427 [ 102.626685][ T6439] device syzkaller1 entered promiscuous mode [ 102.748163][ T6453] netlink: 20 bytes leftover after parsing attributes in process `syz.0.923'. [ 102.825882][ T6434] loop1: detected capacity change from 0 to 32768 [ 102.895712][ T6468] loop2: detected capacity change from 0 to 4096 [ 102.921853][ T6468] ntfs3: loop2: This driver is compiled without CONFIG_NTFS3_64BIT_CLUSTER (like windows driver). [ 102.921853][ T6468] Volume contains 64 bits run: vcn 0, lcn ffffffffff000000, len 7ff. [ 102.921853][ T6468] Activate CONFIG_NTFS3_64BIT_CLUSTER to process this case [ 102.928375][ T6468] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 102.932882][ T6468] ntfs3: loop2: Failed to load $BadClus. [ 103.082411][ T6466] loop0: detected capacity change from 0 to 40427 [ 103.128323][ T6472] loop2: detected capacity change from 0 to 64 [ 103.136467][ T6466] F2FS-fs (loop0): Small segment_count (9 < 1 * 24) [ 103.137691][ T6466] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 103.158691][ T6466] F2FS-fs (loop0): Found nat_bits in checkpoint [ 103.162848][ T6472] hfs: unable to parse mount options [ 103.173258][ T6466] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 103.174455][ T6466] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 103.250421][ T4049] attempt to access beyond end of device [ 103.250421][ T4049] loop0: rw=2049, want=45104, limit=40427 [ 103.320904][ T6482] device syzkaller1 entered promiscuous mode [ 103.391398][ T6480] loop1: detected capacity change from 0 to 40427 [ 103.413777][ T6480] F2FS-fs (loop1): Small segment_count (9 < 1 * 24) [ 103.414837][ T6480] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 103.430314][ T6480] F2FS-fs (loop1): Found nat_bits in checkpoint [ 103.442875][ T6480] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 103.445241][ T6480] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 103.558347][ T4044] attempt to access beyond end of device [ 103.558347][ T4044] loop1: rw=2049, want=45104, limit=40427 [ 103.669874][ T6499] loop0: detected capacity change from 0 to 512 [ 103.724787][ T6499] EXT4-fs (loop0): Ignoring removed oldalloc option [ 103.725882][ T6499] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 103.731104][ T6503] netlink: 20 bytes leftover after parsing attributes in process `syz.1.937'. [ 103.743275][ T6499] EXT4-fs (loop0): 1 truncate cleaned up [ 103.744166][ T6499] EXT4-fs (loop0): mounted filesystem without journal. Opts: bsddf,oldalloc,resuid=0x0000000000000000,debug_want_extra_isize=0x0000000000000080,block_validity,jqfmt=vfsv1,,errors=continue. Quota mode: none. [ 103.912732][ T1969] net_ratelimit: 250 callbacks suppressed [ 103.912742][ T1969] ip6_tunnel: ip6gretap0: Local routing loop detected! [ 104.081324][ T6519] fuse: Bad value for 'fd' [ 104.353054][ T6505] loop4: detected capacity change from 0 to 40427 [ 104.375848][ T6505] F2FS-fs (loop4): Small segment_count (9 < 1 * 24) [ 104.377900][ T6505] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 104.398219][ T6505] F2FS-fs (loop4): Found nat_bits in checkpoint [ 104.411121][ T6505] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 104.412374][ T6505] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 104.435372][ T4050] attempt to access beyond end of device [ 104.435372][ T4050] loop4: rw=2049, want=45104, limit=40427 [ 104.468080][ T6532] loop2: detected capacity change from 0 to 512 [ 104.533999][ T6532] EXT4-fs (loop2): Ignoring removed oldalloc option [ 104.535080][ T6532] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 104.547588][ T6532] EXT4-fs (loop2): 1 truncate cleaned up [ 104.548559][ T6532] EXT4-fs (loop2): mounted filesystem without journal. Opts: bsddf,oldalloc,resuid=0x0000000000000000,debug_want_extra_isize=0x0000000000000080,block_validity,jqfmt=vfsv1,,errors=continue. Quota mode: none. [ 104.561247][ T6539] netlink: 20 bytes leftover after parsing attributes in process `syz.4.957'. [ 104.671720][ T6547] loop4: detected capacity change from 0 to 4096 [ 104.699481][ T4473] ip6_tunnel: ip6gretap0: Local routing loop detected! [ 104.740780][ T6555] device syzkaller1 entered promiscuous mode [ 105.141482][ T6547] ntfs3: loop4: This driver is compiled without CONFIG_NTFS3_64BIT_CLUSTER (like windows driver). [ 105.141482][ T6547] Volume contains 64 bits run: vcn 0, lcn ffffffffff000000, len 7ff. [ 105.141482][ T6547] Activate CONFIG_NTFS3_64BIT_CLUSTER to process this case [ 105.172154][ T6547] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 105.174828][ T6547] ntfs3: loop4: Failed to load $BadClus. [ 105.196333][ T6556] loop2: detected capacity change from 0 to 32768 [ 105.272890][ T6556] jfs: Unrecognized mount option "0x0000000000000007" or missing value [ 105.284757][ T6567] loop1: detected capacity change from 0 to 512 [ 105.324048][ T6567] EXT4-fs (loop1): Ignoring removed oldalloc option [ 105.325142][ T6567] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 105.346791][ T6567] EXT4-fs (loop1): 1 truncate cleaned up [ 105.348968][ T6567] EXT4-fs (loop1): mounted filesystem without journal. Opts: bsddf,oldalloc,resuid=0x0000000000000000,debug_want_extra_isize=0x0000000000000080,block_validity,jqfmt=vfsv1,,errors=continue. Quota mode: none. [ 105.381288][ T6577] loop4: detected capacity change from 0 to 64 [ 105.403329][ T6577] hfs: unable to parse mount options [ 105.594191][ T6581] fuse: Bad value for 'fd' [ 105.868213][ T6583] netlink: 20 bytes leftover after parsing attributes in process `syz.2.975'. [ 105.936984][ T6583] netlink: 20 bytes leftover after parsing attributes in process `syz.2.975'. [ 106.011042][ T6583] netlink: 20 bytes leftover after parsing attributes in process `syz.2.975'. [ 106.018291][ T6598] device syzkaller1 entered promiscuous mode [ 106.127046][ T6604] loop2: detected capacity change from 0 to 4096 [ 106.254367][ T6607] tipc: Started in network mode [ 106.255204][ T6607] tipc: Node identity aaaaaaaaaa32, cluster identity 4711 [ 106.256384][ T6607] tipc: Enabled bearer , priority 10 [ 106.258161][ T6607] netlink: 252 bytes leftover after parsing attributes in process `syz.3.985'. [ 106.417423][ T6604] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 106.418958][ T6604] ntfs3: loop2: Failed to load $Extend. [ 106.869129][ T6612] loop0: detected capacity change from 0 to 32768 [ 106.881424][ T6616] loop1: detected capacity change from 0 to 512 [ 106.902962][ T6612] jfs: Unrecognized mount option "0x0000000000000007" or missing value [ 106.950599][ T6616] EXT4-fs (loop1): Ignoring removed oldalloc option [ 106.951840][ T6616] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 106.968779][ T6628] loop3: detected capacity change from 0 to 4096 [ 106.978809][ T6625] loop4: detected capacity change from 0 to 4096 [ 106.986544][ T6616] EXT4-fs (loop1): 1 truncate cleaned up [ 106.987508][ T6616] EXT4-fs (loop1): mounted filesystem without journal. Opts: bsddf,oldalloc,resuid=0x0000000000000000,debug_want_extra_isize=0x0000000000000080,block_validity,jqfmt=vfsv1,,errors=continue. Quota mode: none. [ 107.037495][ T6628] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 107.039281][ T6628] ntfs3: loop3: Failed to load $Extend. [ 107.222336][ T6635] loop2: detected capacity change from 0 to 40427 [ 107.312723][ T1969] tipc: Node number set to 10005162 [ 107.319207][ T6635] F2FS-fs (loop2): build fault injection attr: rate: 771, type: 0x1ffff [ 107.322333][ T6635] F2FS-fs (loop2): invalid crc value [ 107.337174][ T6625] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 107.340754][ T6625] ntfs3: loop4: Failed to load $Extend. [ 107.367840][ T6635] F2FS-fs (loop2): Found nat_bits in checkpoint [ 107.406076][ T6635] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 107.861729][ T4054] attempt to access beyond end of device [ 107.861729][ T4054] loop2: rw=2049, want=45112, limit=40427 [ 107.968615][ T6656] loop1: detected capacity change from 0 to 4096 [ 107.982423][ T6659] tipc: Enabling of bearer rejected, already enabled [ 107.984425][ T6659] netlink: 252 bytes leftover after parsing attributes in process `syz.3.1003'. [ 108.172157][ T6656] ntfs3: loop1: This driver is compiled without CONFIG_NTFS3_64BIT_CLUSTER (like windows driver). [ 108.172157][ T6656] Volume contains 64 bits run: vcn 0, lcn ffffffffff000000, len 7ff. [ 108.172157][ T6656] Activate CONFIG_NTFS3_64BIT_CLUSTER to process this case [ 108.176351][ T6656] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 108.178612][ T6656] ntfs3: loop1: Failed to load $BadClus. [ 108.249498][ T6665] syz.4.1008 (6665): drop_caches: 1 [ 108.267612][ T6669] syz.3.1009 (6669): drop_caches: 1 [ 108.358964][ T6665] syz.4.1008 (6665): drop_caches: 1 [ 108.359525][ T6675] loop1: detected capacity change from 0 to 64 [ 108.383182][ T6675] hfs: unable to parse mount options [ 108.610527][ T6680] loop3: detected capacity change from 0 to 40427 [ 108.686580][ T6680] F2FS-fs (loop3): build fault injection attr: rate: 771, type: 0x1ffff [ 108.690387][ T6680] F2FS-fs (loop3): invalid crc value [ 108.717306][ T6680] F2FS-fs (loop3): Found nat_bits in checkpoint [ 108.745803][ T6680] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 109.042362][ T4056] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:201' [ 109.044711][ T4056] CPU: 0 PID: 4056 Comm: kworker/u5:4 Not tainted 5.15.189-syzkaller #0 [ 109.045869][ T4056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 109.047197][ T4056] Workqueue: hci4 hci_rx_work [ 109.047838][ T4056] Call trace: [ 109.048271][ T4056] dump_backtrace+0x0/0x43c [ 109.048885][ T4056] show_stack+0x2c/0x3c [ 109.049460][ T4056] __dump_stack+0x30/0x40 [ 109.050054][ T4056] dump_stack_lvl+0xf8/0x160 [ 109.050678][ T4056] dump_stack+0x1c/0x5c [ 109.051265][ T4056] sysfs_create_dir_ns+0x22c/0x24c [ 109.051976][ T4056] kobject_add_internal+0x590/0xc54 [ 109.052730][ T4056] kobject_add+0x134/0x1f8 [ 109.053439][ T4056] device_add+0x3f0/0xf94 [ 109.054049][ T4056] hci_conn_add_sysfs+0xbc/0x1cc [ 109.054732][ T4056] le_conn_complete_evt+0x9a4/0x11bc [ 109.055489][ T4056] hci_le_meta_evt+0x85c/0x3010 [ 109.056176][ T4056] hci_event_packet+0xd10/0x11bc [ 109.056846][ T4056] hci_rx_work+0x1cc/0x880 [ 109.057455][ T4056] process_one_work+0x79c/0x1140 [ 109.058280][ T4056] worker_thread+0x8f4/0x101c [ 109.059049][ T4056] kthread+0x374/0x454 [ 109.059740][ T4056] ret_from_fork+0x10/0x20 [ 109.062485][ T4056] kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 109.065363][ T4056] Bluetooth: hci4: failed to register connection device [ 109.072758][ T4056] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201' [ 109.074265][ T4056] CPU: 1 PID: 4056 Comm: kworker/u5:4 Not tainted 5.15.189-syzkaller #0 [ 109.075524][ T4056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 109.077013][ T4056] Workqueue: hci2 hci_rx_work [ 109.077678][ T4056] Call trace: [ 109.078132][ T4056] dump_backtrace+0x0/0x43c [ 109.078772][ T4056] show_stack+0x2c/0x3c [ 109.079373][ T4056] __dump_stack+0x30/0x40 [ 109.079992][ T4056] dump_stack_lvl+0xf8/0x160 [ 109.080704][ T4056] dump_stack+0x1c/0x5c [ 109.081307][ T4056] sysfs_create_dir_ns+0x22c/0x24c [ 109.082084][ T4056] kobject_add_internal+0x590/0xc54 [ 109.082848][ T4056] kobject_add+0x134/0x1f8 [ 109.083541][ T4056] device_add+0x3f0/0xf94 [ 109.084236][ T4056] hci_conn_add_sysfs+0xbc/0x1cc [ 109.084987][ T4056] le_conn_complete_evt+0x9a4/0x11bc [ 109.085916][ T4056] hci_le_meta_evt+0x85c/0x3010 [ 109.086780][ T4056] hci_event_packet+0xd10/0x11bc [ 109.087686][ T4056] hci_rx_work+0x1cc/0x880 [ 109.088442][ T4056] process_one_work+0x79c/0x1140 [ 109.089305][ T4056] worker_thread+0x8f4/0x101c [ 109.090146][ T4056] kthread+0x374/0x454 [ 109.090869][ T4056] ret_from_fork+0x10/0x20 [ 109.094647][ T4056] kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 109.096797][ T4056] Bluetooth: hci2: failed to register connection device [ 109.239276][ T4043] attempt to access beyond end of device [ 109.239276][ T4043] loop3: rw=2049, want=45112, limit=40427 [ 109.367873][ T4056] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201' [ 109.369548][ T4056] CPU: 1 PID: 4056 Comm: kworker/u5:4 Not tainted 5.15.189-syzkaller #0 [ 109.370807][ T4056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 109.372443][ T4056] Workqueue: hci1 hci_rx_work [ 109.373187][ T4056] Call trace: [ 109.373679][ T4056] dump_backtrace+0x0/0x43c [ 109.374345][ T4056] show_stack+0x2c/0x3c [ 109.374949][ T4056] __dump_stack+0x30/0x40 [ 109.375621][ T4056] dump_stack_lvl+0xf8/0x160 [ 109.376308][ T4056] dump_stack+0x1c/0x5c [ 109.376904][ T4056] sysfs_create_dir_ns+0x22c/0x24c [ 109.377660][ T4056] kobject_add_internal+0x590/0xc54 [ 109.378545][ T4056] kobject_add+0x134/0x1f8 [ 109.379329][ T4056] device_add+0x3f0/0xf94 [ 109.380058][ T4056] hci_conn_add_sysfs+0xbc/0x1cc [ 109.380881][ T4056] le_conn_complete_evt+0x9a4/0x11bc [ 109.381683][ T4056] hci_le_meta_evt+0x85c/0x3010 [ 109.382395][ T4056] hci_event_packet+0xd10/0x11bc [ 109.383113][ T4056] hci_rx_work+0x1cc/0x880 [ 109.383780][ T4056] process_one_work+0x79c/0x1140 [ 109.384495][ T4056] worker_thread+0x8f4/0x101c [ 109.385176][ T4056] kthread+0x374/0x454 [ 109.385830][ T4056] ret_from_fork+0x10/0x20 [ 109.387964][ T4056] kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 109.391891][ T4056] Bluetooth: hci1: failed to register connection device [ 109.446412][ T6703] tipc: Enabling of bearer rejected, already enabled [ 109.448522][ T6703] netlink: 252 bytes leftover after parsing attributes in process `syz.0.1020'. [ 109.598906][ T6711] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1021'. [ 109.688410][ T6711] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1021'. [ 109.757679][ T6719] syz.0.1027 (6719): drop_caches: 1 [ 109.779367][ T6711] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1021'. [ 109.998745][ T6726] loop2: detected capacity change from 0 to 40427 [ 110.004054][ T6726] F2FS-fs (loop2): build fault injection attr: rate: 771, type: 0x1ffff [ 110.006618][ T6726] F2FS-fs (loop2): invalid crc value [ 110.031069][ T6726] F2FS-fs (loop2): Found nat_bits in checkpoint [ 110.042198][ T6726] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 110.218937][ T6719] syz.0.1027 (6719): drop_caches: 1 [ 110.343325][ T6733] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1031'. [ 110.484987][ T6731] loop4: detected capacity change from 0 to 4096 [ 110.555325][ T6731] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 110.562855][ T6731] ntfs3: loop4: Failed to load $Extend. [ 110.626560][ T4054] attempt to access beyond end of device [ 110.626560][ T4054] loop2: rw=2049, want=45112, limit=40427 [ 110.642092][ T6708] loop3: detected capacity change from 0 to 40427 [ 110.686124][ T6708] F2FS-fs (loop3): Small segment_count (9 < 1 * 24) [ 110.687192][ T6708] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 110.707732][ T6708] F2FS-fs (loop3): Found nat_bits in checkpoint [ 110.721137][ T6708] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 110.722554][ T6708] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 110.795670][ T4043] attempt to access beyond end of device [ 110.795670][ T4043] loop3: rw=2049, want=45104, limit=40427 [ 110.801501][ T6753] loop1: detected capacity change from 0 to 4096 [ 110.874594][ T6753] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512) [ 110.887948][ T6769] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1047'. [ 110.916073][ T6768] device syzkaller1 entered promiscuous mode [ 111.046529][ T6776] input: syz1 as /devices/virtual/input/input2 [ 111.102085][ T6785] loop4: detected capacity change from 0 to 64 [ 111.123723][ T6785] hfs: unable to parse mount options [ 111.223878][ T6788] loop2: detected capacity change from 0 to 4096 [ 111.273605][ T6788] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512) [ 111.302730][ T6790] loop0: detected capacity change from 0 to 4096 [ 111.343387][ T6790] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512) [ 111.451967][ T6780] loop3: detected capacity change from 0 to 40427 [ 111.458344][ T6800] loop1: detected capacity change from 0 to 4096 [ 111.512425][ T6800] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512) [ 111.513357][ T6780] F2FS-fs (loop3): Small segment_count (9 < 1 * 24) [ 111.514976][ T6780] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 111.529166][ T6780] F2FS-fs (loop3): Found nat_bits in checkpoint [ 111.566075][ T6780] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 111.567260][ T6780] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 111.591505][ T6799] loop2: detected capacity change from 0 to 32768 [ 111.636443][ T4043] attempt to access beyond end of device [ 111.636443][ T4043] loop3: rw=2049, want=45104, limit=40427 [ 111.689624][ T6799] XFS (loop2): Mounting V5 Filesystem [ 111.741597][ T6799] XFS (loop2): Ending clean mount [ 111.804161][ T6799] XFS (loop2): Metadata CRC error detected at xfs_rmapbt_read_verify+0x54/0x3e4, xfs_rmapbt block 0x14 [ 111.805973][ T6799] XFS (loop2): Unmount and run xfs_repair [ 111.806803][ T6799] XFS (loop2): First 128 bytes of corrupted metadata buffer: [ 111.807917][ T6799] 00000000: 52 4d 42 33 00 00 00 0c ff ff ff ff ff ff ff ff RMB3............ [ 111.836399][ T6814] device syzkaller1 entered promiscuous mode [ 111.851453][ T6799] 00000010: 00 a7 50 00 00 00 00 14 00 00 00 01 00 00 00 80 ..P............. [ 111.863375][ T6799] 00000020: bf dc 47 fc 10 d8 4e ed a5 62 11 a8 31 b3 f7 91 ..G...N..b..1... [ 111.864804][ T6799] 00000030: 00 00 00 00 5b af 3b 1d 00 00 00 00 00 00 00 01 ....[.;......... [ 111.866156][ T6799] 00000040: ff ff ff ff ff ff ff fd 00 00 00 00 00 00 00 00 ................ [ 111.879761][ T6799] 00000050: 00 00 00 01 00 00 00 02 ff ff ff ff ff ff ff fb ................ [ 111.881153][ T6799] 00000060: 00 00 00 00 00 00 00 00 00 00 00 03 00 00 00 02 ................ [ 111.888296][ T6799] 00000070: ff ff ff ff ff ff ff fa 00 00 00 00 00 00 00 00 ................ [ 111.889685][ T6799] XFS (loop2): metadata I/O error in "xfs_btree_read_buf_block+0x180/0x284" at daddr 0x14 len 4 error 74 [ 111.908692][ T6799] XFS (loop2): Corruption of in-memory data (0x8) detected at xfs_defer_finish_noroll+0x152c/0x1d58 (fs/xfs/libxfs/xfs_defer.c:504). Shutting down filesystem. [ 111.911116][ T6799] XFS (loop2): Please unmount the filesystem and rectify the problem(s) [ 111.919684][ T6818] loop0: detected capacity change from 0 to 4096 [ 111.956451][ T6818] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512) [ 111.978888][ T4054] XFS (loop2): Unmounting Filesystem [ 112.012589][ T6822] loop1: detected capacity change from 0 to 4096 [ 112.022228][ T6828] loop4: detected capacity change from 0 to 4096 [ 112.075613][ T6828] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 112.077074][ T6828] ntfs3: loop4: Failed to load $Extend. [ 112.081649][ T6822] ntfs3: loop1: This driver is compiled without CONFIG_NTFS3_64BIT_CLUSTER (like windows driver). [ 112.081649][ T6822] Volume contains 64 bits run: vcn 0, lcn ffffffffff000000, len 7ff. [ 112.081649][ T6822] Activate CONFIG_NTFS3_64BIT_CLUSTER to process this case [ 112.085174][ T6836] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1075'. [ 112.086267][ T6822] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 112.091770][ T6822] ntfs3: loop1: Failed to load $BadClus. [ 112.138893][ T6842] device syzkaller1 entered promiscuous mode [ 112.358198][ T6861] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1088'. [ 112.361911][ T6859] loop3: detected capacity change from 0 to 1024 [ 112.384714][ T6862] loop1: detected capacity change from 0 to 64 [ 112.387077][ T6859] ======================================================= [ 112.387077][ T6859] WARNING: The mand mount option has been deprecated and [ 112.387077][ T6859] and is ignored by this kernel. Remove the mand [ 112.387077][ T6859] option from the mount to silence this warning. [ 112.387077][ T6859] ======================================================= [ 112.412797][ T6862] hfs: unable to parse mount options [ 112.412874][ T6864] loop0: detected capacity change from 0 to 4096 [ 112.416117][ T6859] EXT4-fs (loop3): Ignoring removed oldalloc option [ 112.417168][ T6859] EXT4-fs (loop3): Ignoring removed bh option [ 112.418093][ T6859] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 112.441095][ T6866] loop2: detected capacity change from 0 to 4096 [ 112.460691][ T6864] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 112.464813][ T6864] ntfs3: loop0: Failed to load $Extend. [ 112.466493][ T6866] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512) [ 112.482936][ T6859] EXT4-fs (loop3): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000002,usrquota,data_err=ignore,mb_optimize_scan=0x0000000000000001,oldalloc,grpquota,noload,user_xattr,bh,dioread_nolock,,errors=continue. Quota mode: writeback. [ 112.646233][ T6881] device syzkaller1 entered promiscuous mode [ 112.726202][ T6895] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1099'. [ 112.841121][ T6913] IPv6: addrconf: prefix option has invalid lifetime [ 112.878075][ T6916] device syzkaller1 entered promiscuous mode [ 112.915757][ T6922] loop0: detected capacity change from 0 to 1024 [ 113.027475][ T6922] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 113.048230][ T6891] loop3: detected capacity change from 0 to 40427 [ 113.149133][ T6922] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,min_batch_time=0x0000000000000005,dioread_nolock,. Quota mode: none. [ 113.304795][ T6939] loop2: detected capacity change from 0 to 4096 [ 113.331321][ T6929] loop1: detected capacity change from 0 to 40427 [ 113.808950][ T6891] F2FS-fs (loop3): invalid crc value [ 113.818169][ T6942] IPv6: addrconf: prefix option has invalid lifetime [ 113.824020][ T6891] F2FS-fs (loop3): Found nat_bits in checkpoint [ 113.832715][ T6929] F2FS-fs (loop1): Small segment_count (9 < 1 * 24) [ 113.833841][ T6929] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 113.844781][ T6939] ntfs3: loop2: This driver is compiled without CONFIG_NTFS3_64BIT_CLUSTER (like windows driver). [ 113.844781][ T6939] Volume contains 64 bits run: vcn 0, lcn ffffffffff000000, len 7ff. [ 113.844781][ T6939] Activate CONFIG_NTFS3_64BIT_CLUSTER to process this case [ 113.847521][ T6891] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 113.857349][ T6939] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 113.862809][ T6939] ntfs3: loop2: Failed to load $BadClus. [ 113.868685][ T6929] F2FS-fs (loop1): Found nat_bits in checkpoint [ 113.876370][ T4043] attempt to access beyond end of device [ 113.876370][ T4043] loop3: rw=2049, want=45104, limit=40427 [ 113.981357][ T4047] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201' [ 113.983576][ T4047] CPU: 1 PID: 4047 Comm: kworker/u5:2 Not tainted 5.15.189-syzkaller #0 [ 113.984813][ T4047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 113.986197][ T4047] Workqueue: hci3 hci_rx_work [ 113.986892][ T4047] Call trace: [ 113.987348][ T4047] dump_backtrace+0x0/0x43c [ 113.987978][ T4047] show_stack+0x2c/0x3c [ 113.988557][ T4047] __dump_stack+0x30/0x40 [ 113.989209][ T4047] dump_stack_lvl+0xf8/0x160 [ 113.989892][ T4047] dump_stack+0x1c/0x5c [ 113.990504][ T4047] sysfs_create_dir_ns+0x22c/0x24c [ 113.991260][ T4047] kobject_add_internal+0x590/0xc54 [ 113.992015][ T4047] kobject_add+0x134/0x1f8 [ 113.992677][ T4047] device_add+0x3f0/0xf94 [ 113.993315][ T4047] hci_conn_add_sysfs+0xbc/0x1cc [ 113.994024][ T4047] le_conn_complete_evt+0x9a4/0x11bc [ 113.994760][ T4047] hci_le_meta_evt+0x85c/0x3010 [ 113.995445][ T4047] hci_event_packet+0xd10/0x11bc [ 113.996152][ T4047] hci_rx_work+0x1cc/0x880 [ 113.996781][ T4047] process_one_work+0x79c/0x1140 [ 113.997482][ T4047] worker_thread+0x8f4/0x101c [ 113.998172][ T4047] kthread+0x374/0x454 [ 113.998745][ T4047] ret_from_fork+0x10/0x20 [ 113.999486][ T4047] kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 114.001716][ T4047] Bluetooth: hci3: failed to register connection device [ 114.004645][ T6929] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 114.005763][ T6929] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 114.166400][ T4044] attempt to access beyond end of device [ 114.166400][ T4044] loop1: rw=2049, want=45104, limit=40427 [ 114.199370][ T6961] loop2: detected capacity change from 0 to 64 [ 114.262824][ T6961] hfs: unable to parse mount options [ 114.473652][ T6977] IPv6: addrconf: prefix option has invalid lifetime [ 114.580541][ T6983] loop0: detected capacity change from 0 to 4096 [ 114.611823][ T6984] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 114.678487][ T6986] __nla_validate_parse: 1 callbacks suppressed [ 114.678495][ T6986] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1141'. [ 114.685401][ T6986] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1141'. [ 114.868245][ T6970] loop1: detected capacity change from 0 to 65536 [ 114.928390][ T4047] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201' [ 114.930022][ T4047] CPU: 1 PID: 4047 Comm: kworker/u5:2 Not tainted 5.15.189-syzkaller #0 [ 114.931234][ T4047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 114.932652][ T4047] Workqueue: hci2 hci_rx_work [ 114.933343][ T4047] Call trace: [ 114.933826][ T4047] dump_backtrace+0x0/0x43c [ 114.934472][ T4047] show_stack+0x2c/0x3c [ 114.935061][ T4047] __dump_stack+0x30/0x40 [ 114.935685][ T4047] dump_stack_lvl+0xf8/0x160 [ 114.936328][ T4047] dump_stack+0x1c/0x5c [ 114.936918][ T4047] sysfs_create_dir_ns+0x22c/0x24c [ 114.937635][ T4047] kobject_add_internal+0x590/0xc54 [ 114.938376][ T4047] kobject_add+0x134/0x1f8 [ 114.939016][ T4047] device_add+0x3f0/0xf94 [ 114.939629][ T4047] hci_conn_add_sysfs+0xbc/0x1cc [ 114.940316][ T4047] le_conn_complete_evt+0x9a4/0x11bc [ 114.941056][ T4047] hci_le_meta_evt+0x85c/0x3010 [ 114.941724][ T4047] hci_event_packet+0xd10/0x11bc [ 114.942424][ T4047] hci_rx_work+0x1cc/0x880 [ 114.943032][ T4047] process_one_work+0x79c/0x1140 [ 114.943734][ T4047] worker_thread+0x8f4/0x101c [ 114.944477][ T4047] kthread+0x374/0x454 [ 114.945067][ T4047] ret_from_fork+0x10/0x20 [ 114.948243][ T7008] device syzkaller1 entered promiscuous mode [ 114.951520][ T4047] kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 114.953749][ T4047] Bluetooth: hci2: failed to register connection device [ 114.986981][ T6970] XFS (loop1): Mounting V5 Filesystem [ 115.030180][ T6970] XFS (loop1): Ending clean mount [ 115.034083][ T6970] XFS (loop1): Quotacheck needed: Please wait. [ 115.166213][ T7022] loop4: detected capacity change from 0 to 40427 [ 115.199387][ T6970] XFS (loop1): Quotacheck: Done. [ 115.227446][ T7025] input: syz1 as /devices/virtual/input/input3 [ 115.321632][ T4044] XFS (loop1): Unmounting Filesystem [ 115.534944][ T7028] loop3: detected capacity change from 0 to 4096 [ 115.769511][ T7030] loop2: detected capacity change from 0 to 512 [ 118.003885][ T5135] Bluetooth: hci1: command 0x0406 tx timeout [ 118.005260][ T5135] Bluetooth: hci2: command 0x0406 tx timeout [ 118.006207][ T5135] Bluetooth: hci4: command 0x0406 tx timeout [ 118.047496][ T7030] EXT2-fs (loop2): warning: mounting ext3 filesystem as ext2 [ 118.067543][ T7028] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 118.068950][ T7028] ntfs3: loop3: Failed to load $Extend. [ 118.205910][ T7046] loop3: detected capacity change from 0 to 512 [ 118.246277][ T7052] loop0: detected capacity change from 0 to 128 [ 118.269247][ T7046] EXT2-fs (loop3): warning: mounting ext3 filesystem as ext2 [ 118.299085][ T7052] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a80ec018, mo2=0002] [ 118.300390][ T7052] System zones: 1-3, 19-19, 35-36 [ 118.321785][ T7052] EXT4-fs (loop0): mounted filesystem without journal. Opts: quota,debug,,errors=continue. Quota mode: writeback. [ 118.344781][ T7052] EXT4-fs warning (device loop0): verify_group_input:147: Cannot add at group 25 (only 1 groups) [ 118.477625][ T7070] netlink: 'syz.2.1179': attribute type 15 has an invalid length. [ 118.516155][ T7074] loop3: detected capacity change from 0 to 512 [ 118.559748][ T7074] EXT2-fs (loop3): warning: mounting ext3 filesystem as ext2 [ 118.602980][ T7084] loop1: detected capacity change from 0 to 64 [ 118.606315][ T7083] netlink: 'syz.4.1184': attribute type 15 has an invalid length. [ 118.663775][ T7084] hfs: unable to parse mount options [ 118.702104][ T7090] loop3: detected capacity change from 0 to 512 [ 118.756579][ T7090] EXT2-fs (loop3): warning: mounting ext3 filesystem as ext2 [ 118.875839][ T7076] loop0: detected capacity change from 0 to 32768 [ 118.898605][ T7097] loop2: detected capacity change from 0 to 512 [ 118.903116][ T7076] XFS: ikeep mount option is deprecated. [ 118.925556][ T7097] EXT2-fs (loop2): warning: mounting ext3 filesystem as ext2 [ 118.950530][ T7106] loop3: detected capacity change from 0 to 512 [ 118.966208][ T7076] XFS (loop0): Mounting V5 Filesystem [ 118.977836][ T7106] EXT2-fs (loop3): warning: mounting ext3 filesystem as ext2 [ 119.180076][ T7076] XFS (loop0): Ending clean mount [ 119.185662][ T7076] XFS (loop0): Quotacheck needed: Please wait. [ 119.210048][ T26] audit: type=1326 audit(119.180:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7114 comm="syz.4.1195" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff844adf28 code=0x7ffc0000 [ 119.215317][ T26] audit: type=1326 audit(119.190:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7114 comm="syz.4.1195" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff844adf28 code=0x7ffc0000 [ 119.219091][ T26] audit: type=1326 audit(119.190:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7114 comm="syz.4.1195" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff844adf28 code=0x7ffc0000 [ 119.231007][ T26] audit: type=1326 audit(119.190:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7114 comm="syz.4.1195" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff844adf28 code=0x7ffc0000 [ 119.237777][ T7076] XFS (loop0): Quotacheck: Done. [ 119.270654][ T26] audit: type=1326 audit(119.190:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7114 comm="syz.4.1195" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=277 compat=0 ip=0xffff844adf28 code=0x7ffc0000 [ 119.276974][ T26] audit: type=1326 audit(119.190:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7114 comm="syz.4.1195" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff844adf28 code=0x7ffc0000 [ 119.280286][ T26] audit: type=1326 audit(119.190:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7114 comm="syz.4.1195" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff844adf28 code=0x7ffc0000 [ 119.298408][ T26] audit: type=1326 audit(119.200:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7114 comm="syz.4.1195" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff844adf28 code=0x7ffc0000 [ 119.307035][ T26] audit: type=1326 audit(119.200:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7114 comm="syz.4.1195" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=93 compat=0 ip=0xffff844adf28 code=0x7ffc0000 [ 119.329875][ T26] audit: type=1326 audit(119.200:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7114 comm="syz.4.1195" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff844adf28 code=0x7ffc0000 [ 119.355653][ T4049] XFS (loop0): Unmounting Filesystem [ 119.530475][ T7133] loop1: detected capacity change from 0 to 512 [ 119.556962][ T7133] EXT2-fs (loop1): warning: mounting ext3 filesystem as ext2 [ 119.690234][ T7144] netlink: 'syz.3.1209': attribute type 15 has an invalid length. [ 119.754085][ T7151] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1212'. [ 119.803414][ T7158] loop1: detected capacity change from 0 to 128 [ 119.852078][ T7158] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 119.876232][ T7158] fscrypt (loop1, inode 12): Can't use IV_INO_LBLK_32 policy on filesystem 'loop1' because it doesn't have stable inode numbers [ 119.985373][ T7171] netlink: 'syz.1.1221': attribute type 15 has an invalid length. [ 120.236335][ T7188] tipc: Enabling of bearer rejected, already enabled [ 120.238444][ T7188] netlink: 240 bytes leftover after parsing attributes in process `syz.3.1226'. [ 120.324939][ T7157] loop0: detected capacity change from 0 to 32768 [ 120.469173][ T7157] XFS (loop0): Mounting V5 Filesystem [ 120.478990][ T7198] udc-core: couldn't find an available UDC or it's busy [ 120.485253][ T7198] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 120.494524][ T7189] loop1: detected capacity change from 0 to 40427 [ 120.531751][ T7157] XFS (loop0): Ending clean mount [ 120.538968][ T7189] F2FS-fs (loop1): Small segment_count (9 < 1 * 24) [ 120.540061][ T7189] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 120.546396][ T7208] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1234'. [ 120.567538][ T21] XFS (loop0): Metadata CRC error detected at xfs_rmapbt_read_verify+0x54/0x3e4, xfs_rmapbt block 0x14 [ 120.569438][ T21] XFS (loop0): Unmount and run xfs_repair [ 120.570327][ T21] XFS (loop0): First 128 bytes of corrupted metadata buffer: [ 120.571499][ T21] 00000000: 52 4d 42 33 00 00 00 0c ff ff ff ff ff ff ff ff RMB3............ [ 120.576129][ T7189] F2FS-fs (loop1): Found nat_bits in checkpoint [ 120.583635][ T21] 00000010: 00 00 00 00 00 00 00 14 00 00 00 01 00 00 00 80 ................ [ 120.585000][ T21] 00000020: bf dc 47 fc 10 d8 4e ed a5 62 11 a8 31 b3 f7 91 ..G...N..b..1... [ 120.586476][ T21] 00000030: 00 00 00 00 5b af 3b 1d 00 00 00 00 00 00 00 01 ....[.;......... [ 120.587891][ T21] 00000040: ff ff ff ff ff ff ff fd 00 00 00 00 00 00 00 00 ................ [ 120.589297][ T21] 00000050: 00 00 00 01 00 00 00 02 ff ff ff ff ff ff ff fb ................ [ 120.597782][ T7189] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 120.598980][ T7189] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 120.601231][ T21] 00000060: 00 00 00 00 00 00 00 00 00 00 00 03 00 00 00 02 ................ [ 120.604769][ T21] 00000070: ff ff ff ff ff ff ff fa 00 00 00 04 00 00 00 00 ................ [ 120.606919][ T7157] XFS (loop0): metadata I/O error in "xfs_btree_read_buf_block+0x180/0x284" at daddr 0x14 len 4 error 74 [ 120.611022][ T7157] XFS (loop0): Corruption of in-memory data (0x8) detected at xfs_defer_finish_noroll+0x152c/0x1d58 (fs/xfs/libxfs/xfs_defer.c:504). Shutting down filesystem. [ 120.613764][ T7157] XFS (loop0): Please unmount the filesystem and rectify the problem(s) [ 120.636812][ T4049] XFS (loop0): Unmounting Filesystem [ 120.930849][ T7229] loop1: detected capacity change from 0 to 32768 [ 120.942196][ T7238] device team_slave_0 entered promiscuous mode [ 121.025715][ T7229] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop1 scanned by syz.1.1243 (7229) [ 121.035078][ T7229] BTRFS info (device loop1): using crc32c (crc32c-generic) checksum algorithm [ 121.036607][ T7229] BTRFS error (device loop1): superblock checksum mismatch [ 121.038792][ T7229] BTRFS error (device loop1): open_ctree failed: -22 [ 121.111138][ T5130] udevd[5130]: incorrect btrfs checksum on /dev/loop1 [ 121.143394][ T7266] loop2: detected capacity change from 0 to 64 [ 121.171184][ T7270] udc-core: couldn't find an available UDC or it's busy [ 121.181019][ T7270] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 121.192867][ T7266] hfs: unable to parse mount options [ 121.201335][ T7273] udc-core: couldn't find an available UDC or it's busy [ 121.206615][ T7273] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 121.212968][ T7275] udc-core: couldn't find an available UDC or it's busy [ 121.215247][ T7275] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 121.223335][ T7273] loop3: detected capacity change from 0 to 256 [ 121.269453][ T7270] loop4: detected capacity change from 0 to 256 [ 121.272809][ T7273] exfat: Bad value for 'uid' [ 121.274530][ T7275] loop1: detected capacity change from 0 to 256 [ 121.295339][ T7275] exfat: Bad value for 'uid' [ 121.296502][ T7270] exfat: Bad value for 'uid' [ 121.824094][ T7277] udc-core: couldn't find an available UDC or it's busy [ 121.825469][ T7277] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 121.838897][ T7279] loop2: detected capacity change from 0 to 2048 [ 121.889998][ T7282] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 121.897136][ T7284] autofs4:pid:7284:autofs_fill_super: called with bogus options [ 121.935080][ T7286] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1270'. [ 121.967393][ T7290] loop0: detected capacity change from 0 to 128 [ 121.998374][ T7290] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a80ec018, mo2=0002] [ 121.999698][ T7290] System zones: 1-3, 19-19, 35-36 [ 122.000950][ T7290] EXT4-fs (loop0): mounted filesystem without journal. Opts: quota,debug,,errors=continue. Quota mode: writeback. [ 122.013746][ T7290] EXT4-fs warning (device loop0): verify_group_input:147: Cannot add at group 25 (only 1 groups) [ 122.076091][ T7301] loop2: detected capacity change from 0 to 4096 [ 122.134969][ T7301] ntfs3: loop2: This driver is compiled without CONFIG_NTFS3_64BIT_CLUSTER (like windows driver). [ 122.134969][ T7301] Volume contains 64 bits run: vcn 0, lcn ffffffffff000000, len 7ff. [ 122.134969][ T7301] Activate CONFIG_NTFS3_64BIT_CLUSTER to process this case [ 122.152209][ T7301] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 122.152669][ T7301] ntfs3: loop2: Failed to load $BadClus. [ 122.251538][ T7314] udc-core: couldn't find an available UDC or it's busy [ 122.251553][ T7314] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 122.341172][ T7318] loop2: detected capacity change from 0 to 64 [ 122.341606][ T7318] hfs: unable to parse mount options [ 122.612413][ T1969] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 122.678374][ T7325] tipc: Enabling of bearer rejected, already enabled [ 122.679165][ T7325] netlink: 240 bytes leftover after parsing attributes in process `syz.3.1283'. [ 122.884613][ T7330] udc-core: couldn't find an available UDC or it's busy [ 122.885804][ T7330] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 122.891686][ T7330] loop1: detected capacity change from 0 to 256 [ 122.895143][ T7330] exfat: Bad value for 'uid' [ 122.960582][ T7336] loop3: detected capacity change from 0 to 512 [ 122.987127][ T7336] EXT2-fs (loop3): warning: mounting ext3 filesystem as ext2 [ 123.052396][ T1969] usb 1-1: Using ep0 maxpacket: 32 [ 123.192450][ T1969] usb 1-1: config 0 has an invalid interface number: 67 but max is 0 [ 123.193899][ T1969] usb 1-1: config 0 has no interface number 0 [ 123.208497][ T7344] loop4: detected capacity change from 0 to 40427 [ 123.216192][ T7344] F2FS-fs (loop4): Small segment_count (9 < 1 * 24) [ 123.217206][ T7344] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 123.221453][ T7344] F2FS-fs (loop4): Found nat_bits in checkpoint [ 123.229879][ T7344] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 123.231050][ T7344] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 123.241663][ T4050] attempt to access beyond end of device [ 123.241663][ T4050] loop4: rw=2049, want=45104, limit=40427 [ 123.316410][ T7355] loop4: detected capacity change from 0 to 128 [ 123.352504][ T1969] usb 1-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 123.354088][ T1969] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 123.355479][ T7355] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 123.355526][ T1969] usb 1-1: Product: syz [ 123.359147][ T1969] usb 1-1: Manufacturer: syz [ 123.359818][ T1969] usb 1-1: SerialNumber: syz [ 123.370720][ T1969] usb 1-1: config 0 descriptor?? [ 123.414193][ T1969] smsc95xx v2.0.0 [ 123.429541][ T7361] loop1: detected capacity change from 0 to 2048 [ 123.498864][ T7366] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 123.623906][ T7367] loop4: detected capacity change from 0 to 40427 [ 124.010765][ T7375] udc-core: couldn't find an available UDC or it's busy [ 124.011949][ T7375] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 124.016296][ T1969] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -71 [ 124.017979][ T1969] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 124.035528][ T1969] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71 [ 124.037528][ T1969] smsc95xx: probe of 1-1:0.67 failed with error -71 [ 124.044565][ T1969] usb 1-1: USB disconnect, device number 2 [ 124.079406][ T7375] loop2: detected capacity change from 0 to 256 [ 124.852391][ T1969] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 125.112381][ T1969] usb 1-1: Using ep0 maxpacket: 32 [ 125.253710][ T1969] usb 1-1: config 0 has an invalid interface number: 67 but max is 0 [ 125.255018][ T1969] usb 1-1: config 0 has no interface number 0 [ 125.442422][ T1969] usb 1-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 125.443775][ T1969] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 125.444959][ T1969] usb 1-1: Product: syz [ 125.445620][ T1969] usb 1-1: Manufacturer: syz [ 125.446269][ T1969] usb 1-1: SerialNumber: syz [ 125.448472][ T1969] usb 1-1: config 0 descriptor?? [ 125.484881][ T1969] smsc95xx v2.0.0 [ 125.485479][ T1969] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22 [ 125.487152][ T1969] smsc95xx: probe of 1-1:0.67 failed with error -22 [ 126.096209][ T7378] loop0: detected capacity change from 0 to 256 [ 126.496351][ T7378] exfat: Bad value for 'uid' [ 126.497870][ T7375] exfat: Bad value for 'uid' [ 126.502974][ T7380] udc-core: couldn't find an available UDC or it's busy [ 126.510582][ T7380] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 126.556025][ T7386] loop1: detected capacity change from 0 to 2048 [ 126.577647][ T7380] loop4: detected capacity change from 0 to 256 [ 126.612988][ T7389] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 126.617123][ T7388] loop3: detected capacity change from 0 to 256 [ 126.622966][ T7380] exfat: Bad value for 'uid' [ 126.663067][ T7388] exfat: Bad value for 'uid' [ 127.146866][ T7393] udc-core: couldn't find an available UDC or it's busy [ 127.148769][ T7393] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 127.238287][ T7395] udc-core: couldn't find an available UDC or it's busy [ 127.239719][ T7395] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 127.262629][ T7393] loop2: detected capacity change from 0 to 32768 [ 127.273535][ T7397] udc-core: couldn't find an available UDC or it's busy [ 127.278158][ T7397] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 127.289650][ T7395] loop4: detected capacity change from 0 to 256 [ 127.316783][ T7393] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop2 scanned by syz.2.1311 (7393) [ 127.334388][ T7395] exfat: Bad value for 'uid' [ 127.366568][ T7393] BTRFS info (device loop2): using crc32c (crc32c-generic) checksum algorithm [ 127.368119][ T7393] BTRFS error (device loop2): superblock checksum mismatch [ 127.370543][ T7393] BTRFS error (device loop2): open_ctree failed: -22 [ 127.389103][ T5130] udevd[5130]: incorrect btrfs checksum on /dev/loop2 [ 127.678380][ T7] usb 1-1: USB disconnect, device number 3 [ 127.744683][ T7412] loop0: detected capacity change from 0 to 256 [ 127.756302][ T7414] loop1: detected capacity change from 0 to 256 [ 127.791051][ T7412] exfat: Bad value for 'uid' [ 127.804930][ T7414] exfat: Bad value for 'uid' [ 127.896209][ T7416] IPv6: ADDRCONF(NETDEV_CHANGE): bpq0: link becomes ready [ 127.907910][ T7418] udc-core: couldn't find an available UDC or it's busy [ 127.909002][ T7418] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 127.952143][ T7425] loop3: detected capacity change from 0 to 64 [ 127.968794][ T7418] loop2: detected capacity change from 0 to 256 [ 128.005810][ T7418] exfat: Bad value for 'uid' [ 128.099502][ T7436] udc-core: couldn't find an available UDC or it's busy [ 128.100779][ T7436] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 128.152789][ T7438] loop4: detected capacity change from 0 to 256 [ 128.156619][ T7436] loop3: detected capacity change from 0 to 256 [ 128.183573][ T7438] exfat: Bad value for 'uid' [ 128.192803][ T7436] exfat: Bad value for 'uid' [ 128.499596][ T7446] loop1: detected capacity change from 0 to 32768 [ 128.517924][ T7446] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop1 scanned by syz.1.1336 (7446) [ 128.530788][ T7446] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm [ 128.552704][ T7446] BTRFS info (device loop1): using free space tree [ 128.553677][ T7446] BTRFS info (device loop1): has skinny extents [ 128.598854][ T7446] BTRFS info (device loop1): enabling ssd optimizations [ 128.629609][ T7472] udc-core: couldn't find an available UDC or it's busy [ 128.632935][ T7472] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 128.681564][ T7449] loop0: detected capacity change from 0 to 32768 [ 128.718919][ T7449] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop0 scanned by syz.0.1337 (7449) [ 128.723443][ T7472] loop2: detected capacity change from 0 to 256 [ 128.730553][ T7472] exfat: Bad value for 'uid' [ 128.735962][ T7449] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm [ 128.737391][ T7449] BTRFS info (device loop0): using free space tree [ 128.738420][ T7449] BTRFS info (device loop0): has skinny extents [ 128.761324][ T7484] udc-core: couldn't find an available UDC or it's busy [ 128.768253][ T7484] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 128.861161][ T7497] 9pnet: Insufficient options for proto=fd [ 128.901993][ T7501] loop4: detected capacity change from 0 to 256 [ 128.903415][ T7449] BTRFS info (device loop0): enabling ssd optimizations [ 128.952744][ T7501] exfat: Bad value for 'uid' [ 128.976583][ T7493] loop3: detected capacity change from 0 to 32768 [ 129.008046][ T7484] loop1: detected capacity change from 0 to 256 [ 129.032184][ T7493] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop3 scanned by syz.3.1342 (7493) [ 129.032735][ T7484] exfat: Bad value for 'uid' [ 129.037877][ T7493] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm [ 129.039340][ T7493] BTRFS info (device loop3): using free space tree [ 129.040488][ T7493] BTRFS info (device loop3): has skinny extents [ 129.144245][ T7493] BTRFS info (device loop3): enabling ssd optimizations [ 129.450308][ T7541] loop0: detected capacity change from 0 to 40427 [ 129.502819][ T7541] F2FS-fs (loop0): build fault injection attr: rate: 771, type: 0x1ffff [ 129.505288][ T7541] F2FS-fs (loop0): invalid crc value [ 129.569811][ T7541] F2FS-fs (loop0): Found nat_bits in checkpoint [ 129.598737][ T7541] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 130.083377][ T4049] attempt to access beyond end of device [ 130.083377][ T4049] loop0: rw=2049, want=45112, limit=40427 [ 130.210115][ T7573] loop2: detected capacity change from 0 to 512 [ 130.291208][ T7573] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 130.321625][ T7573] EXT4-fs (loop2): 1 truncate cleaned up [ 130.322633][ T7573] EXT4-fs (loop2): mounted filesystem without journal. Opts: debug_want_extra_isize=0x0000000000000032,min_batch_time=0x0000000000000fff,inode_readahead_blks=0x0000000000000080,stripe=0x0000000000000012,i_version,max_batch_time=0x0000000000000007,,errors=continue. Quota mode: none. [ 130.631826][ T7614] loop3: detected capacity change from 0 to 512 [ 130.658258][ T7614] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 130.672704][ T7565] loop1: detected capacity change from 0 to 65536 [ 130.678566][ T7614] EXT4-fs (loop3): 1 truncate cleaned up [ 130.679463][ T7614] EXT4-fs (loop3): mounted filesystem without journal. Opts: debug_want_extra_isize=0x0000000000000032,min_batch_time=0x0000000000000fff,inode_readahead_blks=0x0000000000000080,stripe=0x0000000000000012,i_version,max_batch_time=0x0000000000000007,,errors=continue. Quota mode: none. [ 130.692218][ T7614] EXT4-fs (loop3): Online resizing not supported with sparse_super2 [ 130.739357][ T7565] XFS (loop1): Mounting V5 Filesystem [ 130.798252][ T7565] XFS (loop1): Ending clean mount [ 130.814344][ T7565] XFS (loop1): Quotacheck needed: Please wait. [ 130.844850][ T7565] XFS (loop1): Quotacheck: Done. [ 130.851254][ T7565] XFS (loop1): User initiated shutdown received. [ 130.856636][ T7565] XFS (loop1): Metadata I/O Error (0x4) detected at xfs_fs_goingdown+0x80/0x15c (fs/xfs/xfs_fsops.c:487). Shutting down filesystem. [ 130.858621][ T7565] XFS (loop1): Please unmount the filesystem and rectify the problem(s) [ 130.869864][ T4044] XFS (loop1): Unmounting Filesystem [ 130.897408][ T7649] 9pnet: Insufficient options for proto=fd [ 131.021241][ T7671] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1407'. [ 131.051957][ T7673] 9pnet: Insufficient options for proto=fd [ 131.063239][ T2064] ieee802154 phy0 wpan0: encryption failed: -22 [ 131.064450][ T2064] ieee802154 phy1 wpan1: encryption failed: -22 [ 131.362263][ T7709] 9pnet: Insufficient options for proto=fd [ 131.577956][ T7735] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1437'. [ 131.686654][ T7749] Internal error: Oops - BTI: 0000000036000001 [#1] PREEMPT SMP [ 131.687878][ T7749] Modules linked in: [ 131.688507][ T7749] CPU: 1 PID: 7749 Comm: syz.2.1445 Not tainted 5.15.189-syzkaller #0 [ 131.689677][ T7749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 131.691269][ T7749] pstate: 42400405 (nZcv daif +PAN -UAO +TCO -DIT -SSBS BTYPE=jc) [ 131.692434][ T7749] pc : __arm64_sys_move_pages+0xf54/0x19d4 [ 131.693376][ T7749] lr : __arm64_sys_move_pages+0xf30/0x19d4 [ 131.694312][ T7749] sp : ffff8000200b7b20 [ 131.694999][ T7749] x29: ffff8000200b7d20 x28: 0000000000000000 x27: ffff700004016f78 [ 131.696201][ T7749] x26: 0000000000000000 x25: 0000000000000000 x24: 0000000000000000 [ 131.697321][ T7749] x23: 0000000000000000 x22: ffff0000d3462e00 x21: 00000000fffffff2 [ 131.698496][ T7749] x20: 00000000fffffff2 x19: dfff800000000000 x18: 1fffe0003421cd96 [ 131.699674][ T7749] x17: 1fffe0003421cd96 x16: ffff80000884b464 x15: ffff80001420eda0 [ 131.700793][ T7749] x14: ffff0001a10e6cc0 x13: 1ffff0000282e06b x12: 0000000000ff0100 [ 131.701985][ T7749] x11: 0000000000000000 x10: 0000ffffffffffff x9 : 0000000000000000 [ 131.703274][ T7749] x8 : 0000000000000000 x7 : ffff800008750ed4 x6 : 0000000000000000 [ 131.704509][ T7749] x5 : 0000000000000000 x4 : 0000000000000001 x3 : 0000000000000001 [ 131.705833][ T7749] x2 : 0000000000000008 x1 : 0000000000000001 x0 : 0000000000000000 [ 131.707148][ T7749] Call trace: [ 131.707678][ T7749] __arm64_sys_move_pages+0xf54/0x19d4 [ 131.708610][ T7749] invoke_syscall+0x98/0x2b8 [ 131.709418][ T7749] el0_svc_common+0x138/0x258 [ 131.710250][ T7749] do_el0_svc+0x58/0x14c [ 131.710909][ T7749] el0_svc+0x78/0x1e0 [ 131.711611][ T7749] el0t_64_sync_handler+0xcc/0xe4 [ 131.712448][ T7749] el0t_64_sync+0x1a0/0x1a4 [ 131.713204][ T7749] Code: d503229f 2a1903f4 2a1903e0 b8000935 (2a1403e1) [ 131.714295][ T7749] ---[ end trace a61f471bb24460d3 ]--- [ 131.976709][ T7749] Kernel panic - not syncing: Oops - BTI: Fatal exception [ 131.977786][ T7749] SMP: stopping secondary CPUs [ 131.978515][ T7749] Kernel Offset: disabled [ 131.979140][ T7749] CPU features: 0x8,000003c1,7d33ffd9 [ 131.979910][ T7749] Memory Limit: none [ 132.239339][ T7749] Rebooting in 86400 seconds..