last executing test programs: 7.57403866s ago: executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x0, 0x8b}, 0x0) sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10) ptrace(0x10, 0x1) r3 = inotify_init1(0x0) fcntl$setown(r3, 0x8, 0xffffffffffffffff) fcntl$getownex(r3, 0x10, &(0x7f0000000380)={0x0, 0x0}) ptrace$getenv(0x4207, r4, 0x0, 0x0) 6.679382288s ago: executing program 0: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000), 0xc, 0x0}, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x19, 0x4, 0x4, 0x9}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r0, &(0x7f00000000c0), &(0x7f0000000000)=""/8, 0x2}, 0x20) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r0, &(0x7f0000000200)='P', &(0x7f0000000000)=""/8, 0x2}, 0x20) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r0, &(0x7f0000000100), &(0x7f0000000000)=""/8, 0x2}, 0x20) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r0}, &(0x7f00000001c0), &(0x7f0000000340)}, 0x20) 6.134121333s ago: executing program 0: ptrace(0x10, 0x1) r0 = inotify_init1(0x0) fcntl$setown(r0, 0x8, 0xffffffffffffffff) fcntl$getownex(r0, 0x10, &(0x7f0000000380)={0x0, 0x0}) ptrace$cont(0x4202, r1, 0x0, 0x0) 6.030531699s ago: executing program 1: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x0, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000108500000075000000a50000002300000095"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x61}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10) prctl$PR_MCE_KILL(0x10, 0x0, 0x0) 5.799817602s ago: executing program 2: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0) sendfile(r0, r0, 0x0, 0x5) 5.644497102s ago: executing program 3: syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000400)='./bus\x00', 0x0, &(0x7f0000000840)=ANY=[@ANYRES8=0x0, @ANYRES16, @ANYRES64], 0x1, 0x36a, &(0x7f00000004c0)="$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") mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0) openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0) bind$tipc(0xffffffffffffffff, 0x0, 0x0) setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000180), 0x10) prlimit64(0x0, 0x0, 0x0, 0x0) 5.465654536s ago: executing program 0: r0 = socket$l2tp6(0xa, 0x2, 0x73) sendmmsg$inet6(r0, &(0x7f0000000940)=[{{&(0x7f0000000480)={0xa, 0x0, 0x0, @dev}, 0x1c, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0) 5.434004423s ago: executing program 1: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x84, &(0x7f00000000c0)={0x0, @in={{0x2, 0x0, @empty}}}, &(0x7f0000000180)=0x90) socket$inet(0x2, 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000040), 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0) unshare(0x62040200) r1 = socket$isdn(0x22, 0x2, 0x10) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) close(r1) 5.398670559s ago: executing program 4: openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) sched_setattr(0x0, 0x0, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$LOOP_GET_STATUS64(0xffffffffffffffff, 0x4c05, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000005c40)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000000)=@newtaction={0xa0, 0x30, 0x9, 0x0, 0x0, {}, [{0x8c, 0x1, [@m_bpf={0x88, 0x1, 0x0, 0x0, {{0x8}, {0x60, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x7}, @TCA_ACT_BPF_OPS={0x3c, 0x4, [{}, {}, {}, {}, {}, {}, {}]}, @TCA_ACT_BPF_PARMS={0x18}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa0}}, 0x0) 4.776432444s ago: executing program 0: mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x10, 0xffffffffffffffff, 0x0) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) gettid() openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0) read(0xffffffffffffffff, &(0x7f0000000200)=""/209, 0xd1) symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00') mkdirat(0xffffffffffffff9c, 0x0, 0x0) tkill(0x0, 0x7) socket$inet_udplite(0x2, 0x2, 0x88) setxattr$security_capability(&(0x7f0000000480)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x3) 4.74099121s ago: executing program 4: r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0) r1 = gettid() fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000100)) readv(r0, &(0x7f0000000640)=[{&(0x7f0000000580)=""/172, 0xac}], 0x1) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000001380)='\xf5\xfc\xd2\xec]\x95zx8*\xa2d\x11\xb5\xb1\xa4y\x9e>\xe49{\x8a{\x81s\xea$\xdfg\xb1\x03DY!\x97\xadM\xd7\xff\x8a\xcd[>\x12e\xc3]d8\xba\x8ec\x00\x00\x00\x00\x00\x00\x00\xa0\xe2\xd5y\xec\x90\x00\x98Y\x91\x19\x16\x89\xd0\x1a\x8dr\xd5\xcd\xf2P\r.\"\x03\xa9\xab\xfa#\x01\xcd\xd6\xd0\xc6\xb9\xeb\x95\xd3\x9cl\x9cu#\xb4\xee\xe5\x9d\t\fV\xd4\xda\xfc`2?\x15P\xba\x14b\x1c\xcc\xd5\xb9jA$s\xb9g3\x15M\xd9\xb9 \xca[\xc7\xec\xa9;\xee\x01\xc9\xc4\x1f\xc3\xe4\xfa\xd3fU\x0e\x86\xc8\xa7\xaf\xaf\x04p\xa3\x8bb\xbf\\\xdb\x83\x00\x96sy\x14\x1eo\xcc9&\x946\xf9\xf5v\xee\xb5m$;\x01\xb8\xeau\x00\xd1S=\x920H\xc2z\xb5\xbe\x95\xef\xeb\xd1\xc8\xa1\xba\xach\xbef\xa8\x86\xc2\x18\x9cC\x15\x9c^\xcf\xe9\xbcp\xb4Ff\x00\x9d>p\"\x19\xd8}|~\xae\xdb\a59f\xb8?\xba\xf2\x8e\xa5y\\\x1a\x80=\xa72)\xd2\x00'/276, &(0x7f0000000000)='\x00\x00\x88', 0x0) tkill(r1, 0xb) fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0) 4.736914204s ago: executing program 3: syz_mount_image$hfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x3200001, &(0x7f0000000880)=ANY=[@ANYBLOB='gid=', @ANYRESHEX=0x0, @ANYBLOB=',iocharset=cp869\x00\x00\x00\x00\x00\x00\x00\x00e=cp866,\x00'], 0x1, 0x32d, &(0x7f0000000a40)="$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") getdents64(0xffffffffffffffff, &(0x7f0000001280)=""/4089, 0xff9) 4.399092378s ago: executing program 2: socket$inet6_sctp(0xa, 0x1, 0x84) socket$inet(0x2, 0x2, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000040), 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'vxcan1\x00'}) unshare(0x62040200) r0 = socket$isdn(0x22, 0x2, 0x10) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) close(r0) 3.957423791s ago: executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000200)={@loopback, 0x0, r2}) 3.721144844s ago: executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) bind$bt_sco(0xffffffffffffffff, &(0x7f0000000040), 0x8) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x4, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="4c00000010000104000000000000000000000004", @ANYRES32=r2, @ANYBLOB="00002f04e3df02002c001280110001006272696467655f736c6176650000000014000580080022"], 0x4c}}, 0x0) 3.470840883s ago: executing program 4: socket(0x0, 0x0, 0x0) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000340)={0x6f0}, 0x8) sendto$inet6(r0, &(0x7f00000002c0)="03", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @loopback}, 0x1c) 3.313436382s ago: executing program 1: r0 = syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r2 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) socket$inet_dccp(0x2, 0x6, 0x0) ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000140)=0x0) bind$nfc_llcp(r2, &(0x7f00000000c0)={0x27, r3, 0x0, 0x0, 0x0, 0x0, "edd0961fcbe3a714699b769277aa362003e40900661e12bcca7f88cd6d07f3648c21a4b612af05000000a25b96f8fffffffffffffffe700a13056afd600927"}, 0x60) recvmsg(r2, &(0x7f0000000800)={0x0, 0x0, 0x0}, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 3.216908281s ago: executing program 2: socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0) fcntl$notify(r0, 0x402, 0x34) fcntl$setsig(r0, 0xa, 0x21) r1 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0) fcntl$notify(r1, 0x402, 0x34) r2 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0) fcntl$notify(r2, 0x402, 0x8000003d) fcntl$setsig(r2, 0xa, 0x21) fcntl$setsig(r1, 0xa, 0x21) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0x8}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000004000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) 2.759654726s ago: executing program 3: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r1, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000002c0)=[@in6={0xa, 0x0, 0x0, @private0}]}, &(0x7f0000000180)=0x10) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x71, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r0, 0x84, 0x78, &(0x7f00000000c0)=r2, 0x4) 2.504582274s ago: executing program 2: bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000002a40)=ANY=[@ANYRESDEC, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000820000009500000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) 2.450068521s ago: executing program 0: getresgid(&(0x7f0000000140), &(0x7f0000000580)=0x0, &(0x7f0000000180)=0x0) syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000200)='./file0\x00', 0x10814, &(0x7f0000000440)=ANY=[@ANYBLOB='umask=00000000000000000000000,flush,nodots,dots,gid=', @ANYRESHEX=r1, @ANYBLOB="00006b746769643d0092", @ANYRESOCT, @ANYRES32, @ANYRESOCT=r0], 0x1, 0x1fe, &(0x7f0000000240)="$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") munmap(&(0x7f0000002000/0x1000)=nil, 0x1000) r2 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) getdents(r2, &(0x7f0000000240)=""/107, 0x6b) getdents(r2, &(0x7f0000001fc0)=""/184, 0xb8) 2.299342713s ago: executing program 4: bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="6c000000020601000000000600000000000000000e0003006269746d61703a697000000005000400000000000900020073797a3000000000240007800c00028008000140000000000c0001800800014000000000080006400083000005000500020000000500010006"], 0x6c}}, 0x0) 2.228774495s ago: executing program 3: syz_mount_image$hfsplus(&(0x7f0000003000), &(0x7f0000000240)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x208000, &(0x7f0000003f80)=ANY=[@ANYBLOB="6e6c733d63703935302c6e6f626172726965722c666f7263652c756d61736b3d30303030303030303030303030303030303030313030302c00d01280f532b0f4cf3b36fd5c6ef64269a533fc6b052f92ffcac08ca18519d5b3711b97ec291e41355fa65d9c0d15e7c10c63ab0bba736f92ab9d30478ae1452a017be98c2a0507febf295db17e98d0fffc0d349264ce2acdedc0a61ae132d4024d39e11de2dc8679fac7efcb6137aa2e361c5f6cb851e3a60ba05f834666694667f27f0d632cf9a85fe247e27251acbd739ff85088cb201010900132000000000000000000002593d600000000"], 0xfd, 0x691, &(0x7f00000002c0)="$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") sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x5) 1.882930346s ago: executing program 1: bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r0, 0x0) ftruncate(r0, 0xc17a) r1 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000005c0)={'vxcan0\x00', 0x0}) bind$can_j1939(r1, &(0x7f0000001200)={0x1d, r2}, 0x18) connect$can_j1939(r1, &(0x7f0000000080)={0x1d, r2}, 0x18) writev(r1, &(0x7f0000000240)=[{&(0x7f0000000000)='h', 0xfdef}], 0x1) 1.746782982s ago: executing program 2: syz_mount_image$hfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x3200001, &(0x7f0000000880)=ANY=[@ANYBLOB='gid=', @ANYRESHEX=0x0, @ANYBLOB=',iocharset=cp869\x00\x00\x00\x00\x00\x00\x00\x00e=cp866,\x00'], 0x1, 0x32d, &(0x7f0000000a40)="$eJzs3U1P1E4cB/DvtLtL9w/hXwFD4smgJJ4I4EHjRWKIF9+AB0NEWBJCxUQxURIjejbGm4mJR2+ejb4FvRjfgJ44GE96IR6smel0d1pnug8sWwjfT+JS2nn4TafTzkCwIKJj68ri1zfnd+U/UQXgA7gEeAACoALgJCaD+5tbbQvym1sCSU7xT5qVzYYtawCdQwvldxWMmPvoYMRxHH9rm+rnQGKh8ghzBBs8YEiPTnU8GHhkB2MnadfxYvSw2MMeHmC0zHCIiKh8+vnv6afEiJ6/ex4wrefhR/35n5nf7JUXx6HQfP57yfexkOfnf3VIrvfWt6LGarKEk73vpatEW1nWayJune4akivLHzamXEYtdioWr762HjVmdlQBT3FZM5JNqM9VpA1RXNHWki9TlrVpgaK2FxtWbajKNsw74h8vqtG6AP7wHS/t1S196iAm8VF8FksixCusNud/lVjIk6POT5gbKkn8s+4SVSvDJFWmla3wT6hKTqU98P5tq5V113kN4MtYbGQpIj9/D9M4X9TcuTCG7I8VktbNuVunco0DFaFWDWau+Wai39ZcE/m66mvVqDGzcidyXfT9ZV3RiefiupjCD7zDojH/92TqabhHZmaUC5VSXxmF7amolI5+zFAD+HZXI5OUq9aOLvYMt3ARo/cebm8sR1Hjbvkb6VDpMfvpPseTXIj6cpR75FcjDQK5UQXQt0r/xHFsPVTBILqgqpp64XWrydsby0Lf8/ZXhbxz5g4tuBMDWACg96R3hF5qf9zMNdQqsKPsv2Rvqz32CzKNagADJK0qc8jHUEcjpd5DpdcebSxHPd2J6IhpdTomb5QdDJVBzrtEsv4z1iuz6q4jP8KC9U/crnCjxDnHCmhMff7X2QquWaxznjicbrRZc505B5zN1eghrfFJvthQx4nD+FvJ7n+VIRbxBTf5838iIiIiIiIiIiIiIiIiIiIiIiIioqOm279G6OXPCbI17h7D/3iDiIiIiIiIiIiIiIiIiIiIiIiIiIiIiGh/jPf/Ar56Y0zN9v7fojc1KX7yhpigH+//9Tt4/6/Y6aKVRGTzNwAA///ltF7V") getdents64(0xffffffffffffffff, &(0x7f0000001280)=""/4089, 0xff9) 1.575374999s ago: executing program 4: r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0) r1 = gettid() fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000100)) readv(r0, &(0x7f0000000640)=[{&(0x7f0000000580)=""/172, 0xac}], 0x1) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000001380)='\xf5\xfc\xd2\xec]\x95zx8*\xa2d\x11\xb5\xb1\xa4y\x9e>\xe49{\x8a{\x81s\xea$\xdfg\xb1\x03DY!\x97\xadM\xd7\xff\x8a\xcd[>\x12e\xc3]d8\xba\x8ec\x00\x00\x00\x00\x00\x00\x00\xa0\xe2\xd5y\xec\x90\x00\x98Y\x91\x19\x16\x89\xd0\x1a\x8dr\xd5\xcd\xf2P\r.\"\x03\xa9\xab\xfa#\x01\xcd\xd6\xd0\xc6\xb9\xeb\x95\xd3\x9cl\x9cu#\xb4\xee\xe5\x9d\t\fV\xd4\xda\xfc`2?\x15P\xba\x14b\x1c\xcc\xd5\xb9jA$s\xb9g3\x15M\xd9\xb9 \xca[\xc7\xec\xa9;\xee\x01\xc9\xc4\x1f\xc3\xe4\xfa\xd3fU\x0e\x86\xc8\xa7\xaf\xaf\x04p\xa3\x8bb\xbf\\\xdb\x83\x00\x96sy\x14\x1eo\xcc9&\x946\xf9\xf5v\xee\xb5m$;\x01\xb8\xeau\x00\xd1S=\x920H\xc2z\xb5\xbe\x95\xef\xeb\xd1\xc8\xa1\xba\xach\xbef\xa8\x86\xc2\x18\x9cC\x15\x9c^\xcf\xe9\xbcp\xb4Ff\x00\x9d>p\"\x19\xd8}|~\xae\xdb\a59f\xb8?\xba\xf2\x8e\xa5y\\\x1a\x80=\xa72)\xd2\x00'/276, &(0x7f0000000000)='\x00\x00\x88', 0x0) tkill(r1, 0xb) fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0) 1.157017605s ago: executing program 3: syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x10, &(0x7f0000000740), 0xfe, 0x499, &(0x7f0000001780)="$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") mkdir(&(0x7f0000000000)='./control\x00', 0x0) r0 = open(&(0x7f0000022ff6)='./control\x00', 0x0, 0x0) getdents64(r0, 0x0, 0x0) 528.704098ms ago: executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15) r2 = dup(r1) write$P9_RLERRORu(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="8b"], 0x53) write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f00000002c0)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @private2}}}, 0x30) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0x7c8) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2]) 524.93122ms ago: executing program 0: bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000003e7100000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000088500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000400)='locks_get_lock_context\x00', r1}, 0x10) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000001500)={0x11, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='locks_get_lock_context\x00', r4}, 0x10) fcntl$lock(r3, 0x26, &(0x7f0000000080)={0x2}) 0s ago: executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_encap(r0, 0x11, 0x66, &(0x7f0000000000), 0x4) kernel console output (not intermixed with test programs): ) entered disabled state [ 212.566599][ T5079] bridge_slave_1: entered allmulticast mode [ 212.575654][ T5079] bridge_slave_1: entered promiscuous mode [ 212.588501][ T5072] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 212.596085][ T5072] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 212.624052][ T5072] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 212.788262][ T5072] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 212.797018][ T5072] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 212.824734][ T5072] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 212.847230][ T5077] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 212.923024][ T5079] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 212.946451][ T5077] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 213.088592][ T5079] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 213.181856][ T4429] Bluetooth: hci0: command tx timeout [ 213.321011][ T5077] team0: Port device team_slave_0 added [ 213.341072][ T5072] hsr_slave_0: entered promiscuous mode [ 213.351160][ T5072] hsr_slave_1: entered promiscuous mode [ 213.420860][ T4429] Bluetooth: hci1: command tx timeout [ 213.436645][ T5079] team0: Port device team_slave_0 added [ 213.486016][ T5077] team0: Port device team_slave_1 added [ 213.568222][ T5079] team0: Port device team_slave_1 added [ 213.576554][ T5085] bridge0: port 1(bridge_slave_0) entered blocking state [ 213.584393][ T5085] bridge0: port 1(bridge_slave_0) entered disabled state [ 213.594399][ T5085] bridge_slave_0: entered allmulticast mode [ 213.603047][ T5085] bridge_slave_0: entered promiscuous mode [ 213.631370][ T5084] bridge0: port 1(bridge_slave_0) entered blocking state [ 213.638982][ T5084] bridge0: port 1(bridge_slave_0) entered disabled state [ 213.646791][ T5084] bridge_slave_0: entered allmulticast mode [ 213.656136][ T5084] bridge_slave_0: entered promiscuous mode [ 213.662074][ T4429] Bluetooth: hci2: command tx timeout [ 213.707314][ T5077] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 213.714815][ T5077] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 213.741239][ T5077] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 213.781594][ T5085] bridge0: port 2(bridge_slave_1) entered blocking state [ 213.789259][ T5085] bridge0: port 2(bridge_slave_1) entered disabled state [ 213.799518][ T5085] bridge_slave_1: entered allmulticast mode [ 213.808071][ T5085] bridge_slave_1: entered promiscuous mode [ 213.817406][ T5084] bridge0: port 2(bridge_slave_1) entered blocking state [ 213.825404][ T5084] bridge0: port 2(bridge_slave_1) entered disabled state [ 213.833331][ T5084] bridge_slave_1: entered allmulticast mode [ 213.839171][ T4429] Bluetooth: hci3: command tx timeout [ 213.842361][ T5084] bridge_slave_1: entered promiscuous mode [ 213.868675][ T5077] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 213.875924][ T5077] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 213.902441][ T5077] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 213.910794][ T4429] Bluetooth: hci4: command tx timeout [ 214.109596][ T5079] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 214.116929][ T5079] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 214.144806][ T5079] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 214.166950][ T5079] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 214.174236][ T5079] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 214.200750][ T5079] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 214.249029][ T5084] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 214.267713][ T5085] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 214.336035][ T5084] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 214.362169][ T5085] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 214.646252][ T5079] hsr_slave_0: entered promiscuous mode [ 214.657117][ T5079] hsr_slave_1: entered promiscuous mode [ 214.665970][ T5079] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 214.673851][ T5079] Cannot create hsr debugfs directory [ 214.722026][ T5077] hsr_slave_0: entered promiscuous mode [ 214.731272][ T5077] hsr_slave_1: entered promiscuous mode [ 214.739070][ T5077] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 214.746944][ T5077] Cannot create hsr debugfs directory [ 214.795975][ T5084] team0: Port device team_slave_0 added [ 214.808603][ T5085] team0: Port device team_slave_0 added [ 214.821852][ T5084] team0: Port device team_slave_1 added [ 214.835278][ T5085] team0: Port device team_slave_1 added [ 215.057756][ T5084] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 215.065100][ T5084] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 215.091460][ T5084] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 215.133974][ T5085] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 215.141419][ T5085] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 215.167720][ T5085] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 215.197166][ T5085] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 215.204514][ T5085] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 215.230854][ T5085] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 215.267457][ T4429] Bluetooth: hci0: command tx timeout [ 215.276027][ T5084] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 215.283362][ T5084] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 215.309724][ T5084] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 215.502226][ T4429] Bluetooth: hci1: command tx timeout [ 215.565333][ T5085] hsr_slave_0: entered promiscuous mode [ 215.574620][ T5085] hsr_slave_1: entered promiscuous mode [ 215.584084][ T5085] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 215.592135][ T5085] Cannot create hsr debugfs directory [ 215.727972][ T5084] hsr_slave_0: entered promiscuous mode [ 215.736876][ T5084] hsr_slave_1: entered promiscuous mode [ 215.746494][ T5084] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 215.750798][ T4429] Bluetooth: hci2: command tx timeout [ 215.756290][ T5084] Cannot create hsr debugfs directory [ 215.910595][ T4429] Bluetooth: hci3: command tx timeout [ 215.937369][ T5072] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 215.980588][ T4429] Bluetooth: hci4: command tx timeout [ 216.078296][ T5072] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 216.221686][ T5072] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 216.338573][ T5072] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 216.481730][ T5077] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 216.575175][ T5077] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 216.594154][ T5077] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 216.656492][ T5077] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 217.066994][ T5079] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 217.127078][ T5079] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 217.167718][ T5079] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 217.197297][ T5079] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 217.223776][ T5085] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 217.299816][ T5085] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 217.380135][ T4429] Bluetooth: hci0: command tx timeout [ 217.393086][ T5085] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 217.417170][ T5085] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 217.538501][ T5084] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 217.601054][ T4429] Bluetooth: hci1: command tx timeout [ 217.612620][ T5084] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 217.657892][ T5084] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 217.681112][ T5084] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 217.825865][ T4429] Bluetooth: hci2: command tx timeout [ 217.981097][ T4429] Bluetooth: hci3: command tx timeout [ 218.040031][ T5072] 8021q: adding VLAN 0 to HW filter on device bond0 [ 218.062500][ T4429] Bluetooth: hci4: command tx timeout [ 218.191039][ T5077] 8021q: adding VLAN 0 to HW filter on device bond0 [ 218.369029][ T5077] 8021q: adding VLAN 0 to HW filter on device team0 [ 218.391718][ T5072] 8021q: adding VLAN 0 to HW filter on device team0 [ 218.474349][ T780] bridge0: port 1(bridge_slave_0) entered blocking state [ 218.482256][ T780] bridge0: port 1(bridge_slave_0) entered forwarding state [ 218.566893][ T780] bridge0: port 1(bridge_slave_0) entered blocking state [ 218.574761][ T780] bridge0: port 1(bridge_slave_0) entered forwarding state [ 218.590055][ T780] bridge0: port 2(bridge_slave_1) entered blocking state [ 218.597722][ T780] bridge0: port 2(bridge_slave_1) entered forwarding state [ 218.771775][ T4726] bridge0: port 2(bridge_slave_1) entered blocking state [ 218.779466][ T4726] bridge0: port 2(bridge_slave_1) entered forwarding state [ 218.837523][ T5079] 8021q: adding VLAN 0 to HW filter on device bond0 [ 219.087199][ T5079] 8021q: adding VLAN 0 to HW filter on device team0 [ 219.125433][ T1223] ieee802154 phy0 wpan0: encryption failed: -22 [ 219.132941][ T1223] ieee802154 phy1 wpan1: encryption failed: -22 [ 219.274921][ T4726] bridge0: port 1(bridge_slave_0) entered blocking state [ 219.282700][ T4726] bridge0: port 1(bridge_slave_0) entered forwarding state [ 219.319935][ T5085] 8021q: adding VLAN 0 to HW filter on device bond0 [ 219.398327][ T5084] 8021q: adding VLAN 0 to HW filter on device bond0 [ 219.439457][ T4726] bridge0: port 2(bridge_slave_1) entered blocking state [ 219.447245][ T4726] bridge0: port 2(bridge_slave_1) entered forwarding state [ 219.582484][ T5085] 8021q: adding VLAN 0 to HW filter on device team0 [ 219.715033][ T5084] 8021q: adding VLAN 0 to HW filter on device team0 [ 219.764233][ T4726] bridge0: port 1(bridge_slave_0) entered blocking state [ 219.772005][ T4726] bridge0: port 1(bridge_slave_0) entered forwarding state [ 219.961719][ T4726] bridge0: port 1(bridge_slave_0) entered blocking state [ 219.969533][ T4726] bridge0: port 1(bridge_slave_0) entered forwarding state [ 219.991570][ T4726] bridge0: port 2(bridge_slave_1) entered blocking state [ 219.999268][ T4726] bridge0: port 2(bridge_slave_1) entered forwarding state [ 220.016283][ T4726] bridge0: port 2(bridge_slave_1) entered blocking state [ 220.024046][ T4726] bridge0: port 2(bridge_slave_1) entered forwarding state [ 220.557755][ T5085] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 221.025998][ T5077] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 221.714413][ T5077] veth0_vlan: entered promiscuous mode [ 221.846778][ T5072] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 221.879531][ T5077] veth1_vlan: entered promiscuous mode [ 221.906542][ T5079] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 222.348399][ T5077] veth0_macvtap: entered promiscuous mode [ 222.436476][ T5077] veth1_macvtap: entered promiscuous mode [ 222.485492][ T5085] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 222.539762][ T5072] veth0_vlan: entered promiscuous mode [ 222.662902][ T5077] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 222.712056][ T5072] veth1_vlan: entered promiscuous mode [ 222.732757][ T5084] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 222.776533][ T5077] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 222.918322][ T5077] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.929209][ T5077] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.941219][ T5077] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.950288][ T5077] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 223.255841][ T5085] veth0_vlan: entered promiscuous mode [ 223.308073][ T5072] veth0_macvtap: entered promiscuous mode [ 223.405481][ T5084] veth0_vlan: entered promiscuous mode [ 223.416412][ T5072] veth1_macvtap: entered promiscuous mode [ 223.468371][ T5085] veth1_vlan: entered promiscuous mode [ 223.564591][ T5084] veth1_vlan: entered promiscuous mode [ 223.697658][ T5072] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 223.708922][ T5072] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 223.724084][ T5072] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 223.900078][ T5072] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 223.911055][ T5072] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 223.926040][ T5072] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 223.958619][ T5085] veth0_macvtap: entered promiscuous mode [ 224.034404][ T5085] veth1_macvtap: entered promiscuous mode [ 224.092531][ T5084] veth0_macvtap: entered promiscuous mode [ 224.157329][ T5072] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 224.167907][ T5072] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 224.178572][ T5072] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 224.188783][ T5072] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 224.265274][ T5084] veth1_macvtap: entered promiscuous mode [ 224.282849][ T5085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 224.293727][ T5085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 224.305070][ T5085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 224.315908][ T5085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 224.331362][ T5085] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 224.427790][ T5084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 224.438819][ T5084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 224.449027][ T5084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 224.459918][ T5084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 224.470298][ T5084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 224.481212][ T5084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 224.496380][ T5084] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 224.569276][ T5085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 224.581137][ T5085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 224.591450][ T5085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 224.602200][ T5085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 224.617292][ T5085] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 224.700041][ T5084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 224.716363][ T5084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 224.728504][ T5084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 224.740715][ T5084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 224.753781][ T5084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 224.764981][ T5084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 224.780053][ T5084] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 224.869129][ T5085] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 224.878342][ T5085] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 224.887576][ T5085] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 224.896723][ T5085] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 224.989141][ T5084] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 224.999823][ T5084] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 225.009065][ T5084] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 225.018295][ T5084] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 225.193826][ T5079] veth0_vlan: entered promiscuous mode [ 225.315817][ T5079] veth1_vlan: entered promiscuous mode [ 225.726391][ T5079] veth0_macvtap: entered promiscuous mode [ 225.804632][ T5079] veth1_macvtap: entered promiscuous mode [ 226.047680][ T5079] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 226.058659][ T5079] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 226.072419][ T5079] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 226.084583][ T5079] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 226.094701][ T5079] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 226.105472][ T5079] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 226.117175][ T5079] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 226.128017][ T5079] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 226.151938][ T5079] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 226.403646][ T5079] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 226.414577][ T5079] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 226.424937][ T5079] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 226.435761][ T5079] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 226.445999][ T5079] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 226.456756][ T5079] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 226.466962][ T5079] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 226.477874][ T5079] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 226.493054][ T5079] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 226.563453][ T5079] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 226.573293][ T5079] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 226.582513][ T5079] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 226.591730][ T5079] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 229.679379][ T3287] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 229.688330][ T3287] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 229.925021][ T3287] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 229.933277][ T3287] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 231.246335][ T4188] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 231.254575][ T4188] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 231.640222][ T5124] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 231.648495][ T5124] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 232.001088][ T2889] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 232.009178][ T2889] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 232.141387][ T5129] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 232.149459][ T5129] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 232.354253][ T3186] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 232.362524][ T3186] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 232.403629][ T5261] pimreg: entered allmulticast mode [ 232.505594][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 232.513919][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 233.002458][ T5267] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 233.233581][ T5271] loop2: detected capacity change from 0 to 256 [ 233.404193][ T5271] ======================================================= [ 233.404193][ T5271] WARNING: The mand mount option has been deprecated and [ 233.404193][ T5271] and is ignored by this kernel. Remove the mand [ 233.404193][ T5271] option from the mount to silence this warning. [ 233.404193][ T5271] ======================================================= [ 233.977221][ T5275] loop1: detected capacity change from 0 to 1024 [ 234.027400][ T5270] loop3: detected capacity change from 0 to 32768 [ 234.200733][ T5275] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 234.232525][ T5270] bcachefs (loop3): mounting version 1.7: mi_btree_bitmap opts=ro,metadata_checksum=none,data_checksum=none,nojournal_transaction_names,read_only [ 234.248269][ T5270] bcachefs (loop3): recovering from clean shutdown, journal seq 10 [ 234.289403][ T780] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 234.297780][ T780] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 234.489032][ T780] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 234.497282][ T780] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 234.500035][ T5270] bcachefs (loop3): alloc_read... done [ 234.513158][ T5270] bcachefs (loop3): stripes_read... done [ 234.519200][ T5270] bcachefs (loop3): snapshots_read... done [ 234.537977][ T5270] bcachefs (loop3): journal_replay... done [ 234.544360][ T5270] bcachefs (loop3): resume_logged_ops... done [ 234.551552][ T5270] bcachefs (loop3): done starting filesystem [ 234.741135][ T5085] bcachefs (loop3): shutting down [ 234.921282][ T5085] bcachefs (loop3): shutdown complete [ 235.047483][ T5290] loop0: detected capacity change from 0 to 256 [ 235.227394][ T29] audit: type=1326 audit(1717774325.369:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5291 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0b8c07cf69 code=0x0 [ 235.311230][ T29] audit: type=1804 audit(1717774325.399:3): pid=5290 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir1728526068/syzkaller.p0iFMf/2/file1/bus" dev="loop0" ino=1048596 res=1 errno=0 [ 235.337604][ T29] audit: type=1804 audit(1717774325.409:4): pid=5290 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir1728526068/syzkaller.p0iFMf/2/file1/bus" dev="loop0" ino=1048596 res=1 errno=0 [ 235.607846][ T5288] warning: `syz-executor.1' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 236.769778][ T5302] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 237.353399][ T5301] loop0: detected capacity change from 0 to 4096 [ 237.499832][ T5301] NILFS (loop0): invalid segment: Checksum error in segment payload [ 237.508370][ T5301] NILFS (loop0): trying rollback from an earlier position [ 237.708672][ T5301] NILFS (loop0): recovery complete [ 237.764692][ T5316] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 237.958979][ T779] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 238.025105][ T5318] loop2: detected capacity change from 0 to 256 [ 238.224514][ T5318] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 238.322157][ T779] usb 5-1: Using ep0 maxpacket: 8 [ 238.620930][ T779] usb 5-1: config 1 interface 0 altsetting 128 bulk endpoint 0x1 has invalid maxpacket 16 [ 238.631412][ T779] usb 5-1: config 1 interface 0 altsetting 128 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 238.645037][ T779] usb 5-1: config 1 interface 0 has no altsetting 0 [ 238.831696][ T5315] loop1: detected capacity change from 0 to 40427 [ 238.849428][ T5315] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 238.857652][ T5315] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 238.955048][ T779] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 238.969996][ T779] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 238.978495][ T779] usb 5-1: Product: Ѕ [ 238.983918][ T779] usb 5-1: Manufacturer: 浚嘾ә뵸ﶈ쯭欻ᄁꨍᓃ宒ꇋଚ檃ﺯ朏஡읊ꩢ詎鱐봺ṽ㱅ꐊඦ㜌㇚賄瘬躬躇庉ꨙ銪뇭煴┖؇ [ 239.001189][ T779] usb 5-1: SerialNumber: syz [ 239.028516][ T5315] F2FS-fs (loop1): Found nat_bits in checkpoint [ 239.252371][ T5313] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 239.260185][ T5313] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 239.274004][ T5315] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 239.559352][ T5315] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 239.567174][ T5315] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 239.859188][ T5331] loop0: detected capacity change from 0 to 512 [ 239.958763][ T5331] ext4: Unknown parameter '' [ 240.254873][ T29] audit: type=1326 audit(1717774330.319:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5329 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bab27cf69 code=0x7fc00000 [ 240.446826][ T5323] loop3: detected capacity change from 0 to 4096 [ 240.540842][ T29] audit: type=1326 audit(1717774330.609:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5329 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bab27cf69 code=0x7fc00000 [ 240.564240][ T29] audit: type=1326 audit(1717774330.619:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5329 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bab27cf69 code=0x7fc00000 [ 240.774263][ T5323] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 240.896563][ T5339] loop2: detected capacity change from 0 to 256 [ 240.906912][ T779] usb 5-1: USB disconnect, device number 2 [ 240.971307][ T5248] udevd[5248]: setting owner of /dev/bus/usb/005/002 to uid=0, gid=7 failed: No such file or directory [ 241.177822][ T29] audit: type=1804 audit(1717774331.279:8): pid=5339 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir2372519876/syzkaller.tGdqdA/7/file1/bus" dev="loop2" ino=1048601 res=1 errno=0 [ 241.204750][ T29] audit: type=1804 audit(1717774331.299:9): pid=5339 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.2" name="/root/syzkaller-testdir2372519876/syzkaller.tGdqdA/7/file1/bus" dev="loop2" ino=1048601 res=1 errno=0 [ 241.283497][ T5323] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 241.568605][ T29] audit: type=1326 audit(1717774331.619:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5320 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe7f527cf69 code=0x0 [ 241.943693][ T5345] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 242.126415][ T5343] loop0: detected capacity change from 0 to 4096 [ 242.181192][ T5343] ntfs3: Unknown parameter 'd' [ 242.539009][ T5349] loop2: detected capacity change from 0 to 128 [ 242.637992][ T5349] EXT4-fs (loop2): VFS: Found ext4 filesystem with unknown checksum algorithm. [ 244.232511][ T5368] loop1: detected capacity change from 0 to 128 [ 244.481898][ T5365] loop3: detected capacity change from 0 to 32768 [ 244.521673][ T5372] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 244.649089][ T5365] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 244.678863][ T5372] loop0: detected capacity change from 0 to 512 [ 244.904366][ T5372] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 244.918106][ T5372] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 244.935246][ T5372] EXT4-fs (loop0): inodes count not valid: 131104 vs 32 [ 244.977531][ T5363] loop4: detected capacity change from 0 to 4096 [ 245.179999][ T5363] ntfs3: loop4: Different NTFS sector size (2048) and media sector size (512). [ 245.214930][ T5365] XFS (loop3): Ending clean mount [ 245.265814][ T5365] XFS (loop3): Quotacheck needed: Please wait. [ 245.395645][ T5365] XFS (loop3): Quotacheck: Done. [ 245.395740][ T5363] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 245.451080][ T5129] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 245.613525][ T5085] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 245.734993][ T5387] loop1: detected capacity change from 0 to 256 [ 245.881853][ T5129] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 245.893992][ T5129] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 245.904728][ T5129] usb 3-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00 [ 245.916224][ T5129] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 245.979051][ T29] audit: type=1804 audit(1717774336.019:11): pid=5387 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir2656543292/syzkaller.JigQIl/6/file1/bus" dev="loop1" ino=1048603 res=1 errno=0 [ 246.009083][ T29] audit: type=1804 audit(1717774336.019:12): pid=5387 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.1" name="/root/syzkaller-testdir2656543292/syzkaller.JigQIl/6/file1/bus" dev="loop1" ino=1048603 res=1 errno=0 [ 246.098715][ T5129] usb 3-1: config 0 descriptor?? [ 246.782830][ T5129] lg-g15 0003:046D:C222.0001: hidraw0: USB HID v0.00 Device [HID 046d:c222] on usb-dummy_hcd.2-1/input0 [ 247.809539][ T5398] loop4: detected capacity change from 0 to 40427 [ 247.835314][ T5129] usb 3-1: USB disconnect, device number 2 [ 247.847236][ T5398] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 247.855819][ T5398] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 248.028362][ T5398] F2FS-fs (loop4): Found nat_bits in checkpoint [ 248.420967][ T5397] loop0: detected capacity change from 0 to 2048 [ 248.471392][ T5398] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 248.478884][ T5398] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 248.563097][ T5397] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 249.003770][ T5397] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 249.157441][ T5417] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.3'. [ 249.935841][ T5416] loop1: detected capacity change from 0 to 32768 [ 250.027197][ T5415] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.2'. [ 250.034480][ T5417] loop3: detected capacity change from 0 to 32768 [ 250.057547][ T5417] jfs: Unrecognized mount option "gid=")?&/?^v?8C8#B|#aСaN" or missing value [ 250.252550][ T29] audit: type=1800 audit(1717774340.229:13): pid=5417 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1967 res=0 errno=0 [ 250.275694][ T29] audit: type=1800 audit(1717774340.269:14): pid=5416 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=7 res=0 errno=0 [ 251.048356][ T5421] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 251.973226][ T5433] loop2: detected capacity change from 0 to 256 [ 252.028788][ T5432] loop3: detected capacity change from 0 to 512 [ 252.129447][ T5432] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 252.220165][ T5432] EXT4-fs (loop3): warning: maximal mount count reached, running e2fsck is recommended [ 252.295488][ T5432] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz-executor.3: inode #15: comm syz-executor.3: iget: illegal inode # [ 252.448302][ T29] audit: type=1804 audit(1717774342.489:15): pid=5433 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir2372519876/syzkaller.tGdqdA/14/file1/bus" dev="loop2" ino=1048604 res=1 errno=0 [ 252.474957][ T29] audit: type=1804 audit(1717774342.519:16): pid=5433 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.2" name="/root/syzkaller-testdir2372519876/syzkaller.tGdqdA/14/file1/bus" dev="loop2" ino=1048604 res=1 errno=0 [ 252.551606][ T5432] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 252.622621][ T5432] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 252.903341][ T5432] overlayfs: missing 'lowerdir' [ 253.065281][ T5435] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 19: invalid block bitmap [ 253.508961][ T5450] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 253.658322][ T5085] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 3: comm syz-executor.3: path (unknown): bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1 [ 253.981223][ T5085] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 253.991992][ T779] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 254.431665][ T779] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 254.441223][ T779] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 254.512488][ T779] usb 2-1: config 0 descriptor?? [ 254.579994][ T779] cp210x 2-1:0.0: cp210x converter detected [ 254.637679][ T2889] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 254.794673][ T2889] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 254.817482][ T5466] loop2: detected capacity change from 0 to 64 [ 254.991472][ T2889] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 255.026585][ T5466] PM: Enabling pm_trace changes system date and time during resume. [ 255.026585][ T5466] PM: Correct system time has to be restored manually after resume. [ 255.044590][ T779] cp210x 2-1:0.0: failed to get vendor val 0x000e size 3: -32 [ 255.172013][ T2889] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 255.233158][ T5467] loop4: detected capacity change from 0 to 2048 [ 255.305572][ T5129] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 255.394551][ T779] usb 2-1: cp210x converter now attached to ttyUSB0 [ 255.400069][ T5467] UDF-fs: warning (device loop4): udf_load_logicalvol: Damaged or missing LVID, forcing readonly mount [ 255.671874][ T5129] usb 1-1: Using ep0 maxpacket: 16 [ 255.702546][ T2889] bridge_slave_1: left allmulticast mode [ 255.708455][ T2889] bridge_slave_1: left promiscuous mode [ 255.715483][ T2889] bridge0: port 2(bridge_slave_1) entered disabled state [ 255.739690][ T5453] loop1: detected capacity change from 0 to 256 [ 255.791281][ T2889] bridge_slave_0: left allmulticast mode [ 255.797309][ T2889] bridge_slave_0: left promiscuous mode [ 255.804444][ T2889] bridge0: port 1(bridge_slave_0) entered disabled state [ 255.822073][ T5129] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 255.832619][ T5129] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 255.844057][ T5129] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 255.854158][ T5129] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0 [ 255.864747][ T5129] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 255.987834][ T5129] usb 1-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 255.997514][ T5129] usb 1-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 256.005983][ T5129] usb 1-1: Manufacturer: syz [ 256.239574][ T5129] usb 1-1: config 0 descriptor?? [ 256.657759][ T5453] FAT-fs (loop1): IO charset cp not found [ 256.801916][ T2889] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 256.985135][ T2889] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 257.025292][ T8] usb 2-1: USB disconnect, device number 2 [ 257.048295][ T2889] bond0 (unregistering): Released all slaves [ 257.065537][ T8] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 257.072381][ T5129] rc_core: IR keymap rc-hauppauge not found [ 257.079732][ T5129] Registered IR keymap rc-empty [ 257.085470][ T5129] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 257.160074][ T5129] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 257.160835][ T8] cp210x 2-1:0.0: device disconnected [ 257.261762][ T5129] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0 [ 257.278166][ T5129] input: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0/input5 [ 257.430126][ T5129] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 257.527477][ T5129] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 257.603286][ T5129] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 257.681172][ T5129] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 257.759479][ T5129] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 257.855523][ T5129] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 257.951406][ T5129] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 258.006850][ T5129] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 258.060054][ T5129] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 258.125907][ T5129] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 258.142470][ T5478] loop4: detected capacity change from 0 to 4096 [ 258.184179][ T5478] ntfs3: loop4: Different NTFS sector size (2048) and media sector size (512). [ 258.222745][ T5485] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 258.294208][ T5129] mceusb 1-1:0.0: Registered with mce emulator interface version 1 [ 258.303009][ T5129] mceusb 1-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active) [ 258.408798][ T5478] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 258.441560][ T2889] hsr_slave_0: left promiscuous mode [ 258.472211][ T5129] usb 1-1: USB disconnect, device number 2 [ 258.481181][ T2889] hsr_slave_1: left promiscuous mode [ 258.541274][ T2889] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 258.549038][ T2889] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 258.635524][ T2889] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 258.644663][ T2889] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 258.771717][ T2889] veth1_macvtap: left promiscuous mode [ 258.777503][ T2889] veth0_macvtap: left promiscuous mode [ 258.786194][ T2889] veth1_vlan: left promiscuous mode [ 258.791969][ T2889] veth0_vlan: left promiscuous mode [ 259.442548][ T50] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 259.488913][ T50] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 259.505776][ T5499] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 259.513583][ T5499] vhci_hcd: invalid port number 23 [ 259.523214][ T50] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 259.570628][ T50] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 259.592611][ T50] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 259.611293][ T50] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 260.572177][ T2889] team0 (unregistering): Port device team_slave_1 removed [ 260.646058][ T2889] team0 (unregistering): Port device team_slave_0 removed [ 261.027555][ T5516] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0) [ 261.247455][ T5513] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 261.660900][ T4429] Bluetooth: hci4: command tx timeout [ 261.957322][ T5518] loop2: detected capacity change from 0 to 2048 [ 262.151054][ T5129] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 262.175656][ T5518] UDF-fs: warning (device loop2): udf_load_logicalvol: Damaged or missing LVID, forcing readonly mount [ 262.364499][ T5527] loop0: detected capacity change from 0 to 2048 [ 262.501368][ T5527] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 262.561200][ T5129] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 262.570693][ T5129] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 262.656341][ T5129] usb 5-1: config 0 descriptor?? [ 262.728982][ T5493] chnl_net:caif_netlink_parms(): no params data found [ 262.764046][ T5129] cp210x 5-1:0.0: cp210x converter detected [ 263.177194][ T5129] cp210x 5-1:0.0: failed to get vendor val 0x000e size 3: -32 [ 263.503599][ T5129] usb 5-1: cp210x converter now attached to ttyUSB0 [ 263.689863][ T5523] loop4: detected capacity change from 0 to 256 [ 263.748829][ T4429] Bluetooth: hci4: command tx timeout [ 263.942490][ T5540] loop0: detected capacity change from 0 to 1764 [ 264.225915][ T5523] FAT-fs (loop4): IO charset cp not found [ 264.262181][ T5551] kvm: emulating exchange as write [ 264.493344][ T8] usb 5-1: USB disconnect, device number 3 [ 264.592865][ T8] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 264.699746][ T8] cp210x 5-1:0.0: device disconnected [ 264.760714][ T779] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 265.052560][ T779] usb 3-1: Using ep0 maxpacket: 32 [ 265.076085][ T5493] bridge0: port 1(bridge_slave_0) entered blocking state [ 265.084306][ T5493] bridge0: port 1(bridge_slave_0) entered disabled state [ 265.092508][ T5493] bridge_slave_0: entered allmulticast mode [ 265.103153][ T5493] bridge_slave_0: entered promiscuous mode [ 265.244350][ T779] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 265.264065][ T5493] bridge0: port 2(bridge_slave_1) entered blocking state [ 265.271883][ T5493] bridge0: port 2(bridge_slave_1) entered disabled state [ 265.279644][ T5493] bridge_slave_1: entered allmulticast mode [ 265.289014][ T5493] bridge_slave_1: entered promiscuous mode [ 265.560899][ T779] usb 3-1: New USB device found, idVendor=05ac, idProduct=0263, bcdDevice= 0.40 [ 265.570243][ T779] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 265.579498][ T779] usb 3-1: Product: syz [ 265.584028][ T779] usb 3-1: Manufacturer: syz [ 265.588866][ T779] usb 3-1: SerialNumber: syz [ 265.821368][ T4429] Bluetooth: hci4: command tx timeout [ 265.852569][ T779] input: bcm5974 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/input/input7 [ 266.028378][ T5493] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 266.060953][ T5572] loop4: detected capacity change from 0 to 256 [ 266.199341][ T5493] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 266.209896][ T5572] FAT-fs (loop4): bogus sectors per cluster 0 [ 266.216537][ T5572] FAT-fs (loop4): This doesn't look like a DOS 1.x volume; no bootstrapping code [ 266.227859][ T5572] FAT-fs (loop4): Can't find a valid FAT filesystem [ 266.623627][ T5493] team0: Port device team_slave_0 added [ 266.733830][ T5493] team0: Port device team_slave_1 added [ 267.038332][ T5493] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 267.047947][ T5493] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 267.074597][ T5493] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 267.251913][ T5493] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 267.251989][ T5493] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 267.252122][ T5493] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 267.604047][ T5493] hsr_slave_0: entered promiscuous mode [ 267.611425][ T5588] block nbd4: shutting down sockets [ 267.662429][ T5493] hsr_slave_1: entered promiscuous mode [ 267.701755][ T5493] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 267.713441][ T5493] Cannot create hsr debugfs directory [ 267.714724][ T5586] netlink: 'syz-executor.0': attribute type 10 has an invalid length. [ 267.714807][ T5586] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.0'. [ 267.717492][ T4470] bcm5974 3-1:1.0: could not read from device [ 267.720050][ T5586] A link change request failed with some changes committed already. Interface macvtap0 may have been left with an inconsistent configuration, please check. [ 267.780200][ T4470] bcm5974 3-1:1.0: could not read from device [ 267.915674][ T4429] Bluetooth: hci4: command tx timeout [ 267.924594][ T5587] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 267.996728][ T779] usb 3-1: USB disconnect, device number 3 [ 268.006331][ T4470] bcm5974 3-1:1.0: could not read from device [ 268.700180][ T5597] loop1: detected capacity change from 0 to 256 [ 268.783457][ T5597] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0xff6f124c, utbl_chksum : 0xe619d30d) [ 268.819921][ T5597] exFAT-fs (loop1): error, invalid size(size(2) > aligned(0) [ 268.819921][ T5597] [ 268.830941][ T5597] exFAT-fs (loop1): Filesystem has been set read-only [ 269.997582][ T5603] loop0: detected capacity change from 0 to 40427 [ 270.047878][ T5603] F2FS-fs (loop0): invalid crc value [ 270.055066][ T5603] F2FS-fs (loop0): invalid crc value [ 270.061267][ T5603] F2FS-fs (loop0): Failed to get valid F2FS checkpoint [ 270.550429][ T779] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 270.653199][ T5613] loop2: detected capacity change from 0 to 512 [ 270.878543][ T5493] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 270.929111][ T5613] EXT4-fs (loop2): 1 truncate cleaned up [ 270.936505][ T5613] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 270.958927][ T5493] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 271.000493][ T779] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 271.009939][ T779] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 271.059997][ T5493] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 271.078939][ T779] usb 5-1: config 0 descriptor?? [ 271.172320][ T5493] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 271.195216][ T779] cp210x 5-1:0.0: cp210x converter detected [ 271.492379][ T5077] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 271.551258][ T779] cp210x 5-1:0.0: failed to get vendor val 0x000e size 3: -32 [ 271.588913][ T5624] loop1: detected capacity change from 0 to 256 [ 271.657438][ T5624] exfat: Bad value for 'uid' [ 271.982857][ T779] usb 5-1: cp210x converter now attached to ttyUSB0 [ 272.127600][ T5607] loop4: detected capacity change from 0 to 256 [ 272.134551][ T5297] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 272.888899][ T5607] FAT-fs (loop4): IO charset cp not found [ 272.898480][ T5630] loop1: detected capacity change from 0 to 2048 [ 272.992512][ T5630] udf: Unknown parameter '½LfR"6P3ҲQ' [ 273.173788][ T5129] usb 5-1: USB disconnect, device number 4 [ 273.293044][ T5129] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 273.317965][ T5493] 8021q: adding VLAN 0 to HW filter on device bond0 [ 273.512910][ T5129] cp210x 5-1:0.0: device disconnected [ 273.647890][ T5493] 8021q: adding VLAN 0 to HW filter on device team0 [ 273.907327][ T50] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 273.911663][ T50] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 273.917703][ T8] bridge0: port 1(bridge_slave_0) entered blocking state [ 273.936644][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state [ 273.952592][ T50] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 273.975457][ T50] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 273.984457][ T50] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 273.987699][ T50] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 274.092914][ T5129] bridge0: port 2(bridge_slave_1) entered blocking state [ 274.093400][ T5129] bridge0: port 2(bridge_slave_1) entered forwarding state [ 275.052833][ T3237] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 275.321530][ T10] usb 5-1: new full-speed USB device number 5 using dummy_hcd [ 275.329054][ T3237] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 275.462025][ T3237] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 275.639512][ T3237] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 275.877778][ T10] usb 5-1: not running at top speed; connect to a high speed hub [ 275.950677][ T8] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 276.061832][ T4429] Bluetooth: hci5: command tx timeout [ 276.231346][ T8] usb 2-1: device descriptor read/64, error -71 [ 276.273225][ T10] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 276.283073][ T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 276.292298][ T10] usb 5-1: Product: 纆ﲤ詇ȁᖐ旿榮㪀ሼ쟠끊ⶖ쩃浝猕퉙௨蟠Ɽ鋗훏隇䡺᳨純⌸豺킯깑╫뾖Ҍ셶戋᪸沂岷唹兤섴ᵪ妏眉廖椱涜셸唐揽ﱡ男킴泵₹ﹽ㲥嘘懷䮅翴禌텟빊ㇱ㊊㠲떋낼 [ 276.318534][ T10] usb 5-1: Manufacturer: Є [ 276.323467][ T10] usb 5-1: SerialNumber: syz [ 276.328311][ T5636] chnl_net:caif_netlink_parms(): no params data found [ 276.353114][ T3237] bridge_slave_1: left allmulticast mode [ 276.360858][ T3237] bridge_slave_1: left promiscuous mode [ 276.367394][ T3237] bridge0: port 2(bridge_slave_1) entered disabled state [ 276.451099][ T3237] bridge_slave_0: left allmulticast mode [ 276.456992][ T3237] bridge_slave_0: left promiscuous mode [ 276.465881][ T3237] bridge0: port 1(bridge_slave_0) entered disabled state [ 276.580663][ T8] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 276.836017][ T8] usb 2-1: device descriptor read/64, error -71 [ 276.901747][ T5653] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 276.911937][ T5653] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 277.030090][ T8] usb usb2-port1: attempt power cycle [ 277.113332][ T10] cdc_ncm 5-1:1.0: bind() failure [ 277.115111][ T3237] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 277.130598][ T10] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found [ 277.137718][ T10] cdc_ncm 5-1:1.1: bind() failure [ 277.265457][ T3237] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 277.297838][ T10] usb 5-1: USB disconnect, device number 5 [ 277.332437][ T3237] bond0 (unregistering): Released all slaves [ 277.513899][ T8] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 277.680205][ T8] usb 2-1: device descriptor read/8, error -71 [ 278.078134][ T8] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 278.141919][ T4429] Bluetooth: hci5: command tx timeout [ 278.184856][ T5675] loop2: detected capacity change from 0 to 32768 [ 278.242277][ T8] usb 2-1: device descriptor read/8, error -71 [ 278.339807][ T5675] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 278.381189][ T8] usb usb2-port1: unable to enumerate USB device [ 278.493464][ T5686] netlink: 'syz-executor.4': attribute type 1 has an invalid length. [ 278.800606][ T5493] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 278.974585][ T5675] XFS (loop2): Ending clean mount [ 278.988555][ T5675] XFS (loop2): Quotacheck needed: Please wait. [ 279.062605][ T3237] hsr_slave_0: left promiscuous mode [ 279.095475][ T3237] hsr_slave_1: left promiscuous mode [ 279.131528][ T3237] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 279.139286][ T3237] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 279.152037][ T5675] XFS (loop2): Quotacheck: Done. [ 279.203851][ T3237] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 279.204388][ T4429] Bluetooth: hci0: SCO packet for unknown connection handle 4 [ 279.213092][ T3237] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 279.318658][ T3237] veth1_macvtap: left promiscuous mode [ 279.324861][ T3237] veth0_macvtap: left promiscuous mode [ 279.333071][ T3237] veth1_vlan: left promiscuous mode [ 279.338685][ T3237] veth0_vlan: left promiscuous mode [ 279.939468][ T5077] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 280.165666][ T29] audit: type=1326 audit(1717774370.269:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5699 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff69f47cf69 code=0x7ffc0000 [ 280.190696][ T29] audit: type=1326 audit(1717774370.269:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5699 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff69f47cf69 code=0x7ffc0000 [ 280.215129][ T29] audit: type=1326 audit(1717774370.319:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5699 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7ff69f47cf69 code=0x7ffc0000 [ 280.239129][ T29] audit: type=1326 audit(1717774370.319:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5699 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ff69f47cfa3 code=0x7ffc0000 [ 280.292540][ T4429] Bluetooth: hci5: command tx timeout [ 280.300190][ T5701] loop1: detected capacity change from 0 to 128 [ 280.311775][ T29] audit: type=1326 audit(1717774370.419:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5699 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7ff69f47bcaf code=0x7ffc0000 [ 280.335625][ T29] audit: type=1326 audit(1717774370.439:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5699 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7ff69f47cff7 code=0x7ffc0000 [ 280.359641][ T29] audit: type=1326 audit(1717774370.439:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5699 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff69f47bb60 code=0x7ffc0000 [ 280.383442][ T29] audit: type=1326 audit(1717774370.439:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5699 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff69f47cccb code=0x7ffc0000 [ 280.406631][ T29] audit: type=1326 audit(1717774370.449:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5699 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7ff69f47be5a code=0x7ffc0000 [ 280.429733][ T29] audit: type=1326 audit(1717774370.459:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5699 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7ff69f47be5a code=0x7ffc0000 [ 280.579361][ T1223] ieee802154 phy0 wpan0: encryption failed: -22 [ 280.587121][ T1223] ieee802154 phy1 wpan1: encryption failed: -22 [ 280.752961][ T3237] team0 (unregistering): Port device team_slave_1 removed [ 280.835738][ T3237] team0 (unregistering): Port device team_slave_0 removed [ 280.913287][ T5701] syz-executor.1: attempt to access beyond end of device [ 280.913287][ T5701] loop1: rw=2049, sector=153, nr_sectors = 3 limit=128 [ 281.909637][ T5493] veth0_vlan: entered promiscuous mode [ 282.053002][ T5493] veth1_vlan: entered promiscuous mode [ 282.301210][ T4429] Bluetooth: hci5: command tx timeout [ 282.443330][ T5636] bridge0: port 1(bridge_slave_0) entered blocking state [ 282.452511][ T5636] bridge0: port 1(bridge_slave_0) entered disabled state [ 282.464283][ T5636] bridge_slave_0: entered allmulticast mode [ 282.476930][ T5636] bridge_slave_0: entered promiscuous mode [ 282.893802][ T5636] bridge0: port 2(bridge_slave_1) entered blocking state [ 282.894317][ T5636] bridge0: port 2(bridge_slave_1) entered disabled state [ 282.894908][ T5636] bridge_slave_1: entered allmulticast mode [ 282.897838][ T5636] bridge_slave_1: entered promiscuous mode [ 283.173763][ T5636] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 283.200992][ T5493] veth0_macvtap: entered promiscuous mode [ 283.255285][ T5636] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 283.487834][ T5493] veth1_macvtap: entered promiscuous mode [ 283.529294][ T5636] team0: Port device team_slave_0 added [ 283.579379][ T5636] team0: Port device team_slave_1 added [ 283.868276][ T5636] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 283.875632][ T5636] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 283.903142][ T5636] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 283.968744][ T5493] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 283.980892][ T5493] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 283.992599][ T5493] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 284.003486][ T5493] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 284.013613][ T5493] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 284.024423][ T5493] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 284.045979][ T5493] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 284.121143][ T5636] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 284.128326][ T5636] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 284.155830][ T5636] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 284.243680][ T5493] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 284.254473][ T5493] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 284.264683][ T5493] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 284.275600][ T5493] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 284.285775][ T5493] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 284.296604][ T5493] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 284.311798][ T5493] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 284.581426][ T5493] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 284.590621][ T5493] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 284.599658][ T5493] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 284.608886][ T5493] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 284.795075][ T5636] hsr_slave_0: entered promiscuous mode [ 284.847388][ T5636] hsr_slave_1: entered promiscuous mode [ 284.909955][ T5636] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 284.918217][ T5636] Cannot create hsr debugfs directory [ 285.231991][ T5739] loop4: detected capacity change from 0 to 256 [ 285.258818][ T5740] loop1: detected capacity change from 0 to 256 [ 285.297478][ T5739] FAT-fs (loop4): Unrecognized mount option "shortname=loXi| wer" or missing value [ 285.505105][ T5740] exFAT-fs (loop1): error, invalid access to FAT bad cluster (entry 0x00000005) [ 285.514868][ T5740] exFAT-fs (loop1): failed to load alloc-bitmap [ 285.521546][ T5740] exFAT-fs (loop1): failed to recognize exfat type [ 286.072508][ T5747] overlayfs: statfs failed on './file0' [ 286.732426][ T5754] loop4: detected capacity change from 0 to 64 [ 286.788854][ T5754] hfs: unable to change codepage [ 286.794307][ T5754] hfs: unable to parse mount options [ 287.155544][ T5121] psmouse serio2: Failed to reset mouse on : -5 [ 287.258232][ T5636] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 287.381903][ T5636] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 287.472265][ T5636] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 287.616522][ T5636] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 288.185658][ T5761] loop1: detected capacity change from 0 to 4096 [ 288.232863][ T5761] ntfs3: Unknown parameter '' [ 288.955990][ T5636] 8021q: adding VLAN 0 to HW filter on device bond0 [ 289.212261][ T5636] 8021q: adding VLAN 0 to HW filter on device team0 [ 289.301517][ T43] bridge0: port 1(bridge_slave_0) entered blocking state [ 289.309217][ T43] bridge0: port 1(bridge_slave_0) entered forwarding state [ 289.541804][ T43] bridge0: port 2(bridge_slave_1) entered blocking state [ 289.549504][ T43] bridge0: port 2(bridge_slave_1) entered forwarding state [ 289.605996][ T5786] usb usb1: usbfs: process 5786 (syz-executor.2) did not claim interface 0 before use [ 290.099253][ T5636] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 290.350370][ C0] sched: RT throttling activated [ 290.761327][ T5121] misc userio: Buffer overflowed, userio client isn't keeping up [ 290.857934][ T5783] loop1: detected capacity change from 0 to 65536 [ 290.949131][ T5783] XFS (loop1): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 291.249994][ T5783] XFS (loop1): Ending clean mount [ 291.363592][ T5783] XFS (loop1): Quotacheck needed: Please wait. [ 291.515087][ T5129] XFS (loop1): Metadata CRC error detected at xfs_allocbt_read_verify+0xae/0x2f0, xfs_bnobt block 0x4 [ 291.515368][ T5129] XFS (loop1): Unmount and run xfs_repair [ 291.515455][ T5129] XFS (loop1): First 128 bytes of corrupted metadata buffer: [ 291.515572][ T5129] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff AB3B............ [ 291.515671][ T5129] 00000010: 00 00 00 00 00 00 00 04 00 00 00 01 00 00 00 10 ................ [ 291.515765][ T5129] 00000020: d6 f6 9d bd 8c 5d 46 be b8 8e 92 c0 ae 88 ce b2 .....]F......... [ 291.515856][ T5129] 00000030: 00 00 00 00 27 32 e3 f9 03 00 00 00 00 00 00 0a ....'2.......... [ 291.515947][ T5129] 00000040: 00 00 00 40 00 00 3f c0 00 00 00 00 00 00 00 00 ...@..?......... [ 291.516040][ T5129] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 291.516139][ T5129] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 291.516235][ T5129] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 291.516758][ T3237] XFS (loop1): metadata I/O error in "xfs_btree_read_buf_block+0x354/0x5c0" at daddr 0x4 len 2 error 74 [ 291.520564][ T5783] XFS (loop1): Quotacheck: Unsuccessful (Error -117): Disabling quotas. [ 291.580937][ T8] XFS (loop1): Metadata CRC error detected at xfs_allocbt_read_verify+0xae/0x2f0, xfs_bnobt block 0x4 [ 291.581197][ T8] XFS (loop1): Unmount and run xfs_repair [ 291.581280][ T8] XFS (loop1): First 128 bytes of corrupted metadata buffer: [ 291.581395][ T8] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff AB3B............ [ 291.581495][ T8] 00000010: 00 00 00 00 00 00 00 04 00 00 00 01 00 00 00 10 ................ [ 291.581590][ T8] 00000020: d6 f6 9d bd 8c 5d 46 be b8 8e 92 c0 ae 88 ce b2 .....]F......... [ 291.581686][ T8] 00000030: 00 00 00 00 27 32 e3 f9 03 00 00 00 00 00 00 0a ....'2.......... [ 291.581875][ T8] 00000040: 00 00 00 40 00 00 3f c0 00 00 00 00 00 00 00 00 ...@..?......... [ 291.581976][ T8] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 291.582074][ T8] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 291.582172][ T8] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 291.582362][ T5783] XFS (loop1): metadata I/O error in "xfs_btree_read_buf_block+0x354/0x5c0" at daddr 0x4 len 2 error 74 [ 291.612449][ T5783] XFS (loop1): Metadata I/O Error (0x1) detected at xfs_trans_read_buf_map+0x766/0xf20 (fs/xfs/xfs_trans_buf.c:296). Shutting down filesystem. [ 291.612726][ T5783] XFS (loop1): Please unmount the filesystem and rectify the problem(s) [ 291.826776][ T5072] XFS (loop1): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 292.053387][ T5121] input: PS/2 Generic Mouse as /devices/serio2/input/input8 [ 292.284598][ T5121] psmouse serio2: Failed to enable mouse on [ 292.347048][ T5636] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 292.886042][ T5636] veth0_vlan: entered promiscuous mode [ 292.973438][ T5813] netlink: 'syz-executor.4': attribute type 1 has an invalid length. [ 293.004705][ T5636] veth1_vlan: entered promiscuous mode [ 293.232973][ T5636] veth0_macvtap: entered promiscuous mode [ 293.282529][ T5636] veth1_macvtap: entered promiscuous mode [ 293.541113][ T5636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 293.551989][ T5636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 293.564633][ T5636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 293.576029][ T5636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 293.586197][ T5636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 293.597083][ T5636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 293.607913][ T5636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 293.618761][ T5636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 293.634233][ T5636] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 293.720748][ T5636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 293.732867][ T5636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 293.745200][ T5636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 293.756098][ T5636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 293.768548][ T5636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 293.779958][ T5636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 293.790132][ T5636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 293.800934][ T5636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 293.816049][ T5636] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 293.851512][ T5636] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 293.860697][ T5636] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 293.872287][ T5636] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 293.882130][ T5636] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 293.958507][ T4188] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 293.967512][ T4188] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 294.202141][ T10] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 294.210219][ T10] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 294.763024][ T5824] loop3: detected capacity change from 0 to 128 [ 294.862482][ T5826] process 'syz-executor.2' launched './file0' with NULL argv: empty string added [ 295.038053][ T10] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 295.345819][ T10] usb 5-1: Using ep0 maxpacket: 8 [ 295.655757][ T10] usb 5-1: New USB device found, idVendor=05ac, idProduct=5b13, bcdDevice=92.39 [ 295.665310][ T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 295.673805][ T10] usb 5-1: Product: syz [ 295.678206][ T10] usb 5-1: Manufacturer: syz [ 295.683257][ T10] usb 5-1: SerialNumber: syz [ 295.754655][ T5838] loop3: detected capacity change from 0 to 256 [ 295.762388][ T10] usb 5-1: config 0 descriptor?? [ 295.848436][ T10] ipheth 5-1:0.0: Unable to find alternate settings interface [ 295.848447][ T5838] FAT-fs (loop3): Unrecognized mount option "check=stmacceltic" or missing value [ 295.893373][ T5839] loop1: detected capacity change from 0 to 128 [ 295.955823][ T5298] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 296.024608][ T5839] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100) [ 296.032834][ T5839] FAT-fs (loop1): Filesystem has been set read-only [ 296.039651][ T5839] syz-executor.1: attempt to access beyond end of device [ 296.039651][ T5839] loop1: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 296.054215][ T5839] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100) [ 296.062446][ T5839] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100) [ 296.236293][ T5839] syz-executor.1: attempt to access beyond end of device [ 296.236293][ T5839] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 296.252337][ T29] kauditd_printk_skb: 35 callbacks suppressed [ 296.252410][ T29] audit: type=1800 audit(1717774386.399:62): pid=5839 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.1" name="file2" dev="loop1" ino=1048614 res=0 errno=0 [ 296.308525][ T10] usb 5-1: USB disconnect, device number 6 [ 296.607470][ T5839] syz-executor.1 (5839) used greatest stack depth: 3784 bytes left [ 298.542288][ T5864] loop1: detected capacity change from 0 to 2048 [ 298.656767][ T5864] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 298.852567][ T5869] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 299.135119][ T5864] syz-executor.1: attempt to access beyond end of device [ 299.135119][ T5864] loop1: rw=0, sector=3120, nr_sectors = 2 limit=2048 [ 299.266226][ T29] audit: type=1800 audit(1717774389.219:63): pid=5864 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file2" dev="loop1" ino=16 res=0 errno=0 [ 300.032086][ T10] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 300.351397][ T10] usb 5-1: Using ep0 maxpacket: 16 [ 300.672728][ T10] usb 5-1: New USB device found, idVendor=0413, idProduct=6026, bcdDevice=18.aa [ 300.682359][ T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 300.691094][ T10] usb 5-1: Product: syz [ 300.695500][ T10] usb 5-1: Manufacturer: syz [ 300.700524][ T10] usb 5-1: SerialNumber: syz [ 300.961477][ T10] usb 5-1: config 0 descriptor?? [ 301.078459][ T10] dvb-usb: found a 'Leadtek - USB2.0 Winfast DTV dongle' in warm state. [ 301.087338][ T10] dvb-usb: bulk message failed: -22 (3/0) [ 301.267860][ T3186] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 301.287699][ T10] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 301.534475][ T5130] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 301.556955][ T10] dvbdev: DVB: registering new adapter (Leadtek - USB2.0 Winfast DTV dongle) [ 301.566175][ T10] usb 5-1: media controller created [ 301.719375][ T10] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 301.864489][ T3186] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 301.928988][ T10] dvb-usb: bulk message failed: -22 (6/0) [ 301.935870][ T10] dvb-usb: bulk message failed: -22 (6/0) [ 301.942496][ T10] dvb-usb: no frontend was attached by 'Leadtek - USB2.0 Winfast DTV dongle' [ 302.029329][ T10] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.4/usb5/5-1/input/input9 [ 302.064755][ T10] dvb-usb: schedule remote query interval to 150 msecs. [ 302.073658][ T10] dvb-usb: Leadtek - USB2.0 Winfast DTV dongle successfully initialized and connected. [ 302.111082][ T5130] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 302.122603][ T5130] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 302.127472][ T3186] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 302.132808][ T5130] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17 [ 302.133040][ T5130] usb 4-1: New USB device found, idVendor=056a, idProduct=0317, bcdDevice= 0.00 [ 302.171337][ T5130] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 302.240723][ T5127] dvb-usb: bulk message failed: -22 (1/0) [ 302.246845][ T5127] dvb-usb: error while querying for an remote control event. [ 302.314132][ T5130] usb 4-1: config 0 descriptor?? [ 302.346246][ T3186] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 302.384813][ T10] usb 5-1: USB disconnect, device number 7 [ 302.838162][ T10] dvb-usb: Leadtek - USB2.0 Winfast DTV dongle successfully deinitialized and disconnected. [ 303.080210][ T3186] bridge_slave_1: left allmulticast mode [ 303.089722][ T3186] bridge_slave_1: left promiscuous mode [ 303.096550][ T3186] bridge0: port 2(bridge_slave_1) entered disabled state [ 303.221343][ T3186] bridge_slave_0: left allmulticast mode [ 303.227245][ T3186] bridge_slave_0: left promiscuous mode [ 303.234006][ T3186] bridge0: port 1(bridge_slave_0) entered disabled state [ 303.321284][ T5130] wacom 0003:056A:0317.0002: unknown main item tag 0x0 [ 303.374093][ T5130] wacom 0003:056A:0317.0002: Unknown device_type for 'HID 056a:0317'. Assuming pen. [ 303.643366][ T5130] wacom 0003:056A:0317.0002: hidraw0: USB HID v0.00 Device [HID 056a:0317] on usb-dummy_hcd.3-1/input0 [ 303.664487][ T5130] input: Wacom Intuos Pro L Pen as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:056A:0317.0002/input/input10 [ 304.403910][ T3186] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 304.524331][ T3186] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 304.581711][ T3186] bond0 (unregistering): Released all slaves [ 304.712356][ T5129] usb 4-1: USB disconnect, device number 2 [ 305.844821][ T3186] hsr_slave_0: left promiscuous mode [ 305.890933][ T3186] hsr_slave_1: left promiscuous mode [ 305.914994][ T3186] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 305.923050][ T3186] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 305.977696][ T5898] loop2: detected capacity change from 0 to 512 [ 306.007668][ T3186] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 306.007802][ T3186] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 306.046483][ T3186] veth1_macvtap: left promiscuous mode [ 306.046622][ T3186] veth0_macvtap: left promiscuous mode [ 306.046906][ T3186] veth1_vlan: left promiscuous mode [ 306.047219][ T3186] veth0_vlan: left promiscuous mode [ 306.052679][ T8] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 306.062435][ T50] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 306.064527][ T50] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 306.066558][ T50] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 306.074484][ T5898] EXT4-fs: Ignoring removed nomblk_io_submit option [ 306.077041][ T50] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 306.086257][ T50] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 306.088577][ T50] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 306.302405][ T8] usb 5-1: Using ep0 maxpacket: 8 [ 306.329326][ T5898] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -13 [ 306.491825][ T8] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 255, using maximum allowed: 30 [ 306.492015][ T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 306.492187][ T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 306.492329][ T8] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 255 [ 306.492555][ T8] usb 5-1: New USB device found, idVendor=0458, idProduct=5010, bcdDevice= 0.00 [ 306.492707][ T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 306.498622][ T8] usb 5-1: config 0 descriptor?? [ 306.558127][ T3186] pimreg (unregistering): left allmulticast mode [ 306.593745][ T5898] EXT4-fs error (device loop2): ext4_clear_blocks:883: inode #13: comm syz-executor.2: attempt to clear invalid blocks 2 len 1 [ 306.598012][ T5898] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1216: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 306.598493][ T5898] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz-executor.2: invalid indirect mapped block 1819239214 (level 0) [ 306.605503][ T5898] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz-executor.2: invalid indirect mapped block 1819239214 (level 1) [ 306.613261][ T5898] EXT4-fs (loop2): 1 truncate cleaned up [ 306.613385][ T5898] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 306.671843][ T5898] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.2'. [ 306.671963][ T5898] netlink: 64 bytes leftover after parsing attributes in process `syz-executor.2'. [ 307.190029][ T3186] team0 (unregistering): Port device team_slave_1 removed [ 307.242021][ T3186] team0 (unregistering): Port device team_slave_0 removed [ 307.314121][ T8] usbhid 5-1:0.0: can't add hid device: -71 [ 307.314717][ T8] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 307.351487][ T8] usb 5-1: USB disconnect, device number 8 [ 308.119764][ T2889] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 308.128104][ T2889] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 308.300982][ T50] Bluetooth: hci0: command tx timeout [ 308.320031][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 308.328287][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 308.352773][ T5077] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 308.782793][ T5917] loop4: detected capacity change from 0 to 1024 [ 308.946529][ T5917] hfsplus: failed to load root directory [ 309.036278][ T5924] fuse: Bad value for 'fd' [ 309.102260][ T5923] loop3: detected capacity change from 0 to 64 [ 309.180034][ T5923] hfs: unable to parse mount options [ 309.337531][ T5900] chnl_net:caif_netlink_parms(): no params data found [ 310.381355][ T50] Bluetooth: hci0: command tx timeout [ 311.611258][ T5129] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 311.776190][ T5900] bridge0: port 1(bridge_slave_0) entered blocking state [ 311.776715][ T5900] bridge0: port 1(bridge_slave_0) entered disabled state [ 311.777344][ T5900] bridge_slave_0: entered allmulticast mode [ 311.786041][ T5900] bridge_slave_0: entered promiscuous mode [ 311.843533][ T5900] bridge0: port 2(bridge_slave_1) entered blocking state [ 311.844048][ T5900] bridge0: port 2(bridge_slave_1) entered disabled state [ 311.844725][ T5900] bridge_slave_1: entered allmulticast mode [ 311.847900][ T5900] bridge_slave_1: entered promiscuous mode [ 311.850605][ T5129] usb 4-1: Using ep0 maxpacket: 8 [ 311.971040][ T5129] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 255, using maximum allowed: 30 [ 311.971229][ T5129] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 311.971399][ T5129] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 311.971545][ T5129] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 255 [ 311.971772][ T5129] usb 4-1: New USB device found, idVendor=0458, idProduct=5010, bcdDevice= 0.00 [ 311.971929][ T5129] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 311.996655][ T5129] usb 4-1: config 0 descriptor?? [ 312.147313][ T5900] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 312.184083][ T5900] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 312.442257][ T5900] team0: Port device team_slave_0 added [ 312.461500][ T50] Bluetooth: hci0: command tx timeout [ 312.693679][ T5900] team0: Port device team_slave_1 added [ 313.022080][ T5974] tmpfs: Unknown parameter 'f;d' [ 313.311077][ T5900] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 313.318285][ T5900] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 313.348784][ T5900] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 313.499627][ T5971] loop0: detected capacity change from 0 to 40427 [ 313.524635][ T5900] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 313.534615][ T5900] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 313.561754][ T5900] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 313.574814][ T5971] F2FS-fs (loop0): Invalid log blocks per segment (5) [ 313.582091][ T5971] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 313.627938][ T5129] usbhid 4-1:0.0: can't add hid device: -71 [ 313.637980][ T5129] usbhid 4-1:0.0: probe with driver usbhid failed with error -71 [ 313.674614][ T5129] usb 4-1: USB disconnect, device number 3 [ 313.691970][ T5971] F2FS-fs (loop0): Found nat_bits in checkpoint [ 313.705253][ T5979] loop2: detected capacity change from 0 to 64 [ 314.060876][ T5971] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 314.068207][ T5971] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 314.244128][ T5900] hsr_slave_0: entered promiscuous mode [ 314.312018][ T5900] hsr_slave_1: entered promiscuous mode [ 314.596775][ T50] Bluetooth: hci0: command tx timeout [ 314.645911][ T2889] kworker/u8:7: attempt to access beyond end of device [ 314.645911][ T2889] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 316.466278][ T3186] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 316.619484][ T3186] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 316.796457][ T3186] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 316.966612][ T3186] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 317.635636][ T3186] bridge_slave_1: left allmulticast mode [ 317.635742][ T3186] bridge_slave_1: left promiscuous mode [ 317.636650][ T3186] bridge0: port 2(bridge_slave_1) entered disabled state [ 317.653570][ T3186] bridge_slave_0: left allmulticast mode [ 317.653674][ T3186] bridge_slave_0: left promiscuous mode [ 317.654597][ T3186] bridge0: port 1(bridge_slave_0) entered disabled state [ 318.437766][ T3186] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 318.626019][ T6020] loop3: detected capacity change from 0 to 164 [ 318.694405][ T3186] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 318.738989][ T3186] bond0 (unregistering): Released all slaves [ 318.781497][ T6020] isofs_fill_super: get root inode failed [ 319.574849][ T780] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 319.665819][ T5900] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 320.000961][ T780] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 320.010495][ T780] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 320.049165][ T4429] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 320.059735][ T4429] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 320.077039][ T4429] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 320.116285][ T4429] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 320.128652][ T4429] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 320.140274][ T4429] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 320.154121][ T780] usb 3-1: config 0 descriptor?? [ 320.314013][ T780] cp210x 3-1:0.0: cp210x converter detected [ 320.664767][ T780] cp210x 3-1:0.0: failed to get vendor val 0x000e size 3: -32 [ 320.806044][ T6030] loop3: detected capacity change from 0 to 40427 [ 320.822026][ T6030] F2FS-fs (loop3): Invalid log blocks per segment (5) [ 320.829082][ T6030] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 320.871378][ T3186] hsr_slave_0: left promiscuous mode [ 320.899522][ T3186] hsr_slave_1: left promiscuous mode [ 320.913646][ T6030] F2FS-fs (loop3): Found nat_bits in checkpoint [ 321.045022][ T780] usb 3-1: cp210x converter now attached to ttyUSB0 [ 321.187976][ T3186] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 321.188442][ T6030] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 321.195873][ T3186] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 321.202834][ T6030] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 321.265745][ T6027] loop2: detected capacity change from 0 to 256 [ 321.272674][ T3186] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 321.281914][ T3186] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 321.514309][ T3186] veth1_macvtap: left promiscuous mode [ 321.526107][ T3186] veth0_macvtap: left promiscuous mode [ 321.533767][ T3186] veth1_vlan: left promiscuous mode [ 321.539326][ T3186] veth0_vlan: left promiscuous mode [ 321.725700][ T6027] FAT-fs (loop2): IO charset cp not found [ 321.951576][ T4188] kworker/u8:24: attempt to access beyond end of device [ 321.951576][ T4188] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 322.300723][ T4429] Bluetooth: hci2: command tx timeout [ 322.577639][ T3186] team0 (unregistering): Port device team_slave_1 removed [ 322.677089][ T3186] team0 (unregistering): Port device team_slave_0 removed [ 323.321279][ T5900] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 323.383482][ T5900] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 323.425728][ T6027] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 323.437766][ T5900] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 323.806553][ T5129] usb 3-1: USB disconnect, device number 4 [ 323.889043][ T5129] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 323.982923][ T6055] binder: 6054:6055 ioctl c0306201 0 returned -14 [ 324.136729][ T29] audit: type=1326 audit(1717774414.179:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6054 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f22c047cf69 code=0x0 [ 324.162827][ T5129] cp210x 3-1:0.0: device disconnected [ 324.389135][ T4429] Bluetooth: hci2: command tx timeout [ 324.919529][ T4429] Bluetooth: hci1: ACL packet for unknown connection handle 0 [ 325.331614][ T5900] 8021q: adding VLAN 0 to HW filter on device bond0 [ 325.446229][ T6031] chnl_net:caif_netlink_parms(): no params data found [ 325.596738][ T5900] 8021q: adding VLAN 0 to HW filter on device team0 [ 325.653190][ T6074] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.0'. [ 325.691094][ T5130] bridge0: port 1(bridge_slave_0) entered blocking state [ 325.698822][ T5130] bridge0: port 1(bridge_slave_0) entered forwarding state [ 325.870202][ T5130] bridge0: port 2(bridge_slave_1) entered blocking state [ 325.878013][ T5130] bridge0: port 2(bridge_slave_1) entered forwarding state [ 326.347214][ T5900] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 326.460662][ T4429] Bluetooth: hci2: command tx timeout [ 326.796808][ T6077] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 327.375173][ T6031] bridge0: port 1(bridge_slave_0) entered blocking state [ 327.384208][ T6031] bridge0: port 1(bridge_slave_0) entered disabled state [ 327.392200][ T6031] bridge_slave_0: entered allmulticast mode [ 327.401285][ T6031] bridge_slave_0: entered promiscuous mode [ 327.589388][ T6031] bridge0: port 2(bridge_slave_1) entered blocking state [ 327.598016][ T6031] bridge0: port 2(bridge_slave_1) entered disabled state [ 327.606169][ T6031] bridge_slave_1: entered allmulticast mode [ 327.615801][ T6031] bridge_slave_1: entered promiscuous mode [ 328.159523][ T6031] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 328.312376][ T6031] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 328.400947][ T6119] mkiss: ax0: crc mode is auto. [ 328.541940][ T4429] Bluetooth: hci2: command tx timeout [ 328.810195][ T6031] team0: Port device team_slave_0 added [ 328.895837][ T6031] team0: Port device team_slave_1 added [ 329.158308][ T780] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 329.189456][ T5900] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 329.248107][ T6031] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 329.255545][ T6031] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 329.283143][ T6031] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 329.466020][ T6031] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 329.474986][ T6031] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 329.501979][ T6031] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 329.582624][ T780] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 329.592376][ T780] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 329.694962][ T780] usb 1-1: config 0 descriptor?? [ 329.780784][ T780] cp210x 1-1:0.0: cp210x converter detected [ 329.848458][ T5900] veth0_vlan: entered promiscuous mode [ 330.063326][ T6031] hsr_slave_0: entered promiscuous mode [ 330.090035][ T6031] hsr_slave_1: entered promiscuous mode [ 330.136487][ T6031] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 330.144676][ T6031] Cannot create hsr debugfs directory [ 330.181289][ T780] cp210x 1-1:0.0: failed to get vendor val 0x000e size 3: -32 [ 330.193841][ T5900] veth1_vlan: entered promiscuous mode [ 330.504456][ T780] usb 1-1: cp210x converter now attached to ttyUSB0 [ 330.805824][ T6127] loop0: detected capacity change from 0 to 256 [ 330.873980][ T6136] loop3: detected capacity change from 0 to 1024 [ 330.912300][ T5900] veth0_macvtap: entered promiscuous mode [ 331.230856][ T5900] veth1_macvtap: entered promiscuous mode [ 331.277973][ T6127] FAT-fs (loop0): IO charset cp not found [ 331.622693][ T6127] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 331.716539][ T5900] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 331.727499][ T5900] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 331.737741][ T5900] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 331.749724][ T5900] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 331.762048][ T5900] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 331.773658][ T5900] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 331.788978][ T5900] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 331.868485][ T5129] usb 1-1: USB disconnect, device number 3 [ 331.889547][ T5129] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 332.022661][ T5900] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 332.033619][ T5900] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 332.043819][ T5900] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 332.054681][ T5900] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 332.067010][ T5900] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 332.078655][ T5900] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 332.093882][ T5900] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 332.162698][ T5129] cp210x 1-1:0.0: device disconnected [ 332.434998][ T5900] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 332.444345][ T5900] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 332.453787][ T5900] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 332.463006][ T5900] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 332.586769][ T6143] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.3'. [ 332.811623][ T6145] loop2: detected capacity change from 0 to 256 [ 332.878433][ T6031] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 333.052025][ T6031] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 333.142242][ T6031] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 333.202857][ T6031] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 333.826798][ T50] Bluetooth: hci1: command 0x0406 tx timeout [ 334.787926][ T6031] 8021q: adding VLAN 0 to HW filter on device bond0 [ 334.994282][ T6031] 8021q: adding VLAN 0 to HW filter on device team0 [ 335.063672][ T5129] bridge0: port 1(bridge_slave_0) entered blocking state [ 335.071620][ T5129] bridge0: port 1(bridge_slave_0) entered forwarding state [ 335.174988][ T5129] bridge0: port 2(bridge_slave_1) entered blocking state [ 335.182899][ T5129] bridge0: port 2(bridge_slave_1) entered forwarding state [ 335.241574][ T5130] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 335.671712][ T5130] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 335.686151][ T5130] usb 4-1: New USB device found, idVendor=046d, idProduct=c20a, bcdDevice= 0.00 [ 335.695666][ T5130] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 335.789334][ T5130] usb 4-1: config 0 descriptor?? [ 336.342374][ T6194] loop3: detected capacity change from 0 to 512 [ 336.599879][ T6194] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 336.846231][ T6194] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c856e12c, mo2=0002] [ 336.884508][ T6194] EXT4-fs (loop3): orphan cleanup on readonly fs [ 336.945199][ T6194] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz-executor.3: bg 0: block 361: padding at end of block bitmap is not set [ 337.086840][ T6194] EXT4-fs (loop3): Remounting filesystem read-only [ 337.181197][ T6194] EXT4-fs (loop3): 1 truncate cleaned up [ 337.189654][ T6194] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: writeback. [ 337.542618][ T5130] usb 4-1: string descriptor 0 read error: -71 [ 337.560200][ T5130] usbhid 4-1:0.0: couldn't find an input interrupt endpoint [ 337.804672][ T6031] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 337.865671][ T5130] usb 4-1: USB disconnect, device number 4 [ 338.024371][ T6211] loop0: detected capacity change from 0 to 32768 [ 338.421496][ T5493] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 338.525329][ T8] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 338.971933][ T8] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 338.981409][ T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 339.032472][ T6222] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.3'. [ 339.074192][ T8] usb 3-1: config 0 descriptor?? [ 339.141608][ T8] cp210x 3-1:0.0: cp210x converter detected [ 339.551686][ T8] cp210x 3-1:0.0: failed to get vendor val 0x000e size 3: -32 [ 339.889483][ T8] usb 3-1: cp210x converter now attached to ttyUSB0 [ 340.164030][ T6214] loop2: detected capacity change from 0 to 256 [ 340.822701][ T6214] FAT-fs (loop2): IO charset cp not found [ 341.084033][ T5127] usb 3-1: USB disconnect, device number 5 [ 341.147944][ T5127] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 341.492062][ T5127] cp210x 3-1:0.0: device disconnected [ 341.602674][ T6031] veth0_vlan: entered promiscuous mode [ 341.730051][ T6031] veth1_vlan: entered promiscuous mode [ 342.065300][ T1223] ieee802154 phy0 wpan0: encryption failed: -22 [ 342.072189][ T1223] ieee802154 phy1 wpan1: encryption failed: -22 [ 342.163390][ T2889] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 342.172641][ T2889] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 342.455288][ T6031] veth0_macvtap: entered promiscuous mode [ 342.583160][ T4423] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 342.591519][ T4423] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 342.645240][ T6031] veth1_macvtap: entered promiscuous mode [ 342.870139][ T6031] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 342.882320][ T6031] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 342.892602][ T6031] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 342.903458][ T6031] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 342.913699][ T6031] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 342.928512][ T6031] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 342.940142][ T6031] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 342.951047][ T6031] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 342.966249][ T6031] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 343.164014][ T6254] loop0: detected capacity change from 0 to 512 [ 343.466930][ T6254] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.0: corrupted in-inode xattr: invalid ea_ino [ 343.556081][ T6254] EXT4-fs error (device loop0): ext4_orphan_get:1399: comm syz-executor.0: couldn't read orphan inode 15 (err -117) [ 343.571861][ T6254] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 343.584057][ T6031] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 343.584154][ T6031] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 343.584217][ T6031] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 343.584296][ T6031] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 343.584357][ T6031] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 343.584434][ T6031] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 343.584497][ T6031] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 343.584578][ T6031] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 343.589007][ T6031] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 343.786783][ T6031] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 343.797010][ T6031] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 343.807022][ T6031] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 343.816239][ T6031] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 344.132438][ T5636] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 344.795063][ T6274] loop0: detected capacity change from 0 to 64 [ 345.064048][ T6274] MINIX-fs: bad superblock or unable to read bitmaps [ 345.369454][ T6288] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'. [ 345.769363][ T6288] loop0: detected capacity change from 0 to 512 [ 346.136244][ T6297] loop3: detected capacity change from 0 to 4096 [ 346.193325][ T6288] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.0: corrupted in-inode xattr: invalid ea_ino [ 346.315292][ T6288] EXT4-fs error (device loop0): ext4_orphan_get:1399: comm syz-executor.0: couldn't read orphan inode 15 (err -117) [ 346.370830][ T6288] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 346.837886][ T5636] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 347.166829][ T5129] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 347.561335][ T5129] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 347.570916][ T5129] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 347.655037][ T5129] usb 2-1: config 0 descriptor?? [ 347.761503][ T5129] cp210x 2-1:0.0: cp210x converter detected [ 348.163219][ T5129] cp210x 2-1:0.0: failed to get vendor val 0x000e size 3: -32 [ 348.519359][ T5129] usb 2-1: cp210x converter now attached to ttyUSB0 [ 348.687468][ T6309] loop1: detected capacity change from 0 to 256 [ 348.902947][ T6331] loop3: detected capacity change from 0 to 2048 [ 348.972993][ T5129] usb 2-1: USB disconnect, device number 7 [ 349.004608][ T6335] loop0: detected capacity change from 0 to 256 [ 349.038948][ T5129] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 349.187209][ T5129] cp210x 2-1:0.0: device disconnected [ 349.620914][ T43] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 349.952528][ T43] usb 1-1: too many configurations: 195, using maximum allowed: 8 [ 350.121261][ T43] usb 1-1: unable to read config index 0 descriptor/start: -61 [ 350.121466][ T43] usb 1-1: can't read configurations, error -61 [ 350.261620][ T6350] loop1: detected capacity change from 0 to 128 [ 350.284844][ T43] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 350.443211][ T6350] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 350.574119][ T6350] ext4 filesystem being mounted at /root/syzkaller-testdir3078989223/syzkaller.vEzcOk/4/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 350.691253][ T43] usb 1-1: too many configurations: 195, using maximum allowed: 8 [ 350.863100][ T43] usb 1-1: unable to read config index 0 descriptor/start: -61 [ 350.871159][ T43] usb 1-1: can't read configurations, error -61 [ 350.971208][ T43] usb usb1-port1: attempt power cycle [ 351.242131][ T5900] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 351.288566][ T6358] capability: warning: `syz-executor.3' uses deprecated v2 capabilities in a way that may be insecure [ 351.374026][ T6358] program syz-executor.3 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 351.466545][ T43] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 351.625595][ T43] usb 1-1: too many configurations: 195, using maximum allowed: 8 [ 351.972157][ T43] usb 1-1: unable to read config index 0 descriptor/start: -71 [ 351.980187][ T43] usb 1-1: can't read configurations, error -71 [ 352.342014][ T0] NOHZ tick-stop error: local softirq work is pending, handler #242!!! [ 352.418805][ T3186] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 352.427197][ T3186] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 352.496386][ T6370] loop1: detected capacity change from 0 to 64 [ 352.718186][ T6372] loop0: detected capacity change from 0 to 512 [ 352.773038][ T4423] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 352.781429][ T4423] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 352.818213][ T6370] MINIX-fs: bad superblock or unable to read bitmaps [ 352.892363][ T6372] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz-executor.0: bg 0: block 393: padding at end of block bitmap is not set [ 353.037336][ T6372] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6537: Corrupt filesystem [ 353.099354][ T6370] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'. [ 353.125100][ T6372] EXT4-fs (loop0): 2 truncates cleaned up [ 353.131662][ T6372] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 353.180704][ T6375] loop3: detected capacity change from 0 to 4096 [ 353.315589][ T6372] EXT4-fs error (device loop0): ext4_inlinedir_to_tree:1403: inode #12: block 7: comm syz-executor.0: path /root/syzkaller-testdir1964055622/syzkaller.4vkqju/25/file0/file0: bad entry in directory: rec_len % 4 != 0 - offset=259, inode=4278190093, rec_len=255, size=60 fake=0 [ 353.377292][ T6370] loop1: detected capacity change from 0 to 512 [ 353.649166][ T6370] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.1: corrupted in-inode xattr: invalid ea_ino [ 353.720907][ T6370] EXT4-fs error (device loop1): ext4_orphan_get:1399: comm syz-executor.1: couldn't read orphan inode 15 (err -117) [ 353.760516][ T6370] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 353.821559][ T5636] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 353.932003][ T8] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 354.231310][ T8] usb 5-1: Using ep0 maxpacket: 8 [ 354.395574][ T8] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 255, using maximum allowed: 30 [ 354.408035][ T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 354.419944][ T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 354.430127][ T8] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 255 [ 354.443827][ T8] usb 5-1: New USB device found, idVendor=0458, idProduct=5010, bcdDevice= 0.00 [ 354.458456][ T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 354.504063][ T5900] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 354.643183][ T8] usb 5-1: config 0 descriptor?? [ 355.273016][ T6405] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 355.381508][ T43] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 355.581479][ T8] usbhid 5-1:0.0: can't add hid device: -71 [ 355.588238][ T8] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 355.726102][ T8] usb 5-1: USB disconnect, device number 9 [ 355.849527][ T43] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 355.849694][ T43] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 355.871423][ T43] usb 1-1: config 0 descriptor?? [ 355.958627][ T43] cp210x 1-1:0.0: cp210x converter detected [ 356.371107][ T43] cp210x 1-1:0.0: failed to get vendor val 0x000e size 3: -32 [ 356.762910][ T43] usb 1-1: cp210x converter now attached to ttyUSB0 [ 356.911823][ T6403] loop0: detected capacity change from 0 to 256 [ 357.148555][ T6431] Zero length message leads to an empty skb [ 357.605452][ T6403] FAT-fs (loop0): IO charset cp not found [ 358.049333][ T43] usb 1-1: USB disconnect, device number 8 [ 358.129275][ T43] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 358.165863][ T6436] loop2: detected capacity change from 0 to 1024 [ 358.245824][ T6436] hfsplus: unable to parse mount options [ 358.372651][ T6433] loop3: detected capacity change from 0 to 1764 [ 358.383731][ T0] NOHZ tick-stop error: local softirq work is pending, handler #242!!! [ 358.429475][ T43] cp210x 1-1:0.0: device disconnected [ 358.740907][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 358.794155][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 359.173004][ T6433] netlink: 'syz-executor.3': attribute type 10 has an invalid length. [ 359.262596][ T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!! [ 359.322514][ T6433] bond0: (slave macvlan1): Enslaving as an active interface with an up link [ 360.372964][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 360.384632][ T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!! [ 360.777478][ T6448] loop0: detected capacity change from 0 to 4096 [ 360.971227][ T6448] NILFS (loop0): invalid segment: Checksum error in segment payload [ 360.979578][ T6448] NILFS (loop0): trying rollback from an earlier position [ 361.264924][ T6448] NILFS (loop0): recovery complete [ 361.310582][ T6458] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 361.675825][ T6462] loop2: detected capacity change from 0 to 128 [ 361.847736][ T6462] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 361.911332][ T6462] ext4 filesystem being mounted at /root/syzkaller-testdir2372519876/syzkaller.tGdqdA/71/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 362.443279][ T5077] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 363.015931][ T5129] libceph: connect (1)[c::]:6789 error -101 [ 363.023567][ T5129] libceph: mon0 (1)[c::]:6789 connect error [ 363.245121][ T6478] ceph: No mds server is up or the cluster is laggy [ 363.332139][ T5129] libceph: connect (1)[c::]:6789 error -101 [ 363.338533][ T5129] libceph: mon0 (1)[c::]:6789 connect error [ 363.896990][ T6491] loop4: detected capacity change from 0 to 2048 [ 363.957768][ T6497] loop3: detected capacity change from 0 to 1024 [ 364.018244][ T6491] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 364.191007][ T6495] loop0: detected capacity change from 0 to 2048 [ 364.226730][ T6492] loop2: detected capacity change from 0 to 4096 [ 364.416464][ T6495] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 364.832911][ T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!! [ 364.846504][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 365.182648][ T4429] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 365.191812][ T4429] Bluetooth: hci2: Injecting HCI hardware error event [ 365.199639][ T4429] Bluetooth: hci2: hardware error 0x00 [ 365.881341][ T6516] loop0: detected capacity change from 0 to 1024 [ 366.064766][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 366.475304][ T6516] hfsplus: failed to load root directory [ 367.375025][ T4429] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 369.597382][ T6547] loop2: detected capacity change from 0 to 1024 [ 372.845861][ T6569] loop2: detected capacity change from 0 to 8 [ 372.958284][ T6569] SQUASHFS error: Failed to read block 0x4e8: -5 [ 373.022170][ T29] audit: type=1800 audit(1717774463.119:65): pid=6569 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.2" name="file1" dev="loop2" ino=5 res=0 errno=0 [ 373.810734][ T6575] SQUASHFS error: Failed to read block 0xed04f1: -5 [ 374.324943][ T5130] libceph: connect (1)[c::]:6789 error -101 [ 374.331534][ T5130] libceph: mon0 (1)[c::]:6789 connect error [ 374.524399][ T6578] ceph: No mds server is up or the cluster is laggy [ 377.569118][ T10] libceph: connect (1)[c::]:6789 error -101 [ 377.576538][ T10] libceph: mon0 (1)[c::]:6789 connect error [ 377.602014][ T10] libceph: connect (1)[c::]:6789 error -101 [ 377.608353][ T10] libceph: mon0 (1)[c::]:6789 connect error [ 378.068888][ T6595] loop3: detected capacity change from 0 to 136 [ 378.536043][ T6599] loop4: detected capacity change from 0 to 1024 [ 381.902514][ T6634] loop0: detected capacity change from 0 to 256 [ 382.481426][ T5129] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 382.791490][ T5129] usb 1-1: Using ep0 maxpacket: 8 [ 382.921296][ T5129] usb 1-1: config 135 has an invalid interface number: 230 but max is 0 [ 382.930035][ T5129] usb 1-1: config 135 has an invalid descriptor of length 0, skipping remainder of the config [ 382.941804][ T5129] usb 1-1: config 135 has no interface number 0 [ 382.948290][ T5129] usb 1-1: config 135 interface 230 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3 [ 383.142491][ T5129] usb 1-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=3f.3a [ 383.152238][ T5129] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 383.165725][ T5129] usb 1-1: Product: syz [ 383.170127][ T5129] usb 1-1: Manufacturer: syz [ 383.176886][ T5129] usb 1-1: SerialNumber: syz [ 383.310086][ T5129] usb 1-1: Found UVC 0.00 device syz (18ec:3288) [ 383.316952][ T5129] usb 1-1: No valid video chain found. [ 383.492246][ T5129] usb 1-1: USB disconnect, device number 9 [ 385.022204][ T5088] Bluetooth: hci4: command 0x0406 tx timeout [ 385.155823][ T5129] libceph: connect (1)[c::]:6789 error -101 [ 385.162484][ T5129] libceph: mon0 (1)[c::]:6789 connect error [ 385.172125][ T29] audit: type=1804 audit(1717774475.259:66): pid=6665 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2230209731/syzkaller.Jv0AC9/48/file1" dev="sda1" ino=1956 res=1 errno=0 [ 385.466752][ T6664] ceph: No mds server is up or the cluster is laggy [ 385.475158][ T5129] libceph: connect (1)[c::]:6789 error -101 [ 385.481885][ T5129] libceph: mon0 (1)[c::]:6789 connect error [ 386.187764][ T6680] overlayfs: missing 'lowerdir' [ 386.402435][ T29] audit: type=1326 audit(1717774476.449:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6684 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22c047cf69 code=0x7ffc0000 [ 386.425646][ T29] audit: type=1326 audit(1717774476.459:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6684 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f22c047cf69 code=0x7ffc0000 [ 386.451074][ T29] audit: type=1326 audit(1717774476.479:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6684 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22c047cf69 code=0x7ffc0000 [ 386.475468][ T29] audit: type=1326 audit(1717774476.479:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6684 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22c047cf69 code=0x7ffc0000 [ 386.498598][ T29] audit: type=1326 audit(1717774476.499:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6684 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f22c047cf69 code=0x7ffc0000 [ 386.521810][ T29] audit: type=1326 audit(1717774476.499:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6684 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22c047cf69 code=0x7ffc0000 [ 386.546943][ T29] audit: type=1326 audit(1717774476.509:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6684 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f22c047cf69 code=0x7ffc0000 [ 386.570696][ T29] audit: type=1326 audit(1717774476.539:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6684 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22c047cf69 code=0x7ffc0000 [ 386.593734][ T29] audit: type=1326 audit(1717774476.549:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6684 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f22c047cf69 code=0x7ffc0000 [ 386.921926][ T5129] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 387.654078][ T6695] ptrace attach of "/root/syz-executor.1 exec"[5900] was attempted by "/root/syz-executor.1 exec"[6695] [ 388.860991][ T5129] usb 5-1: Using ep0 maxpacket: 16 [ 389.004656][ T5129] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 389.016116][ T5129] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 389.026342][ T5129] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 389.039608][ T5129] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 389.049300][ T5129] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 389.161115][ T5129] usb 5-1: config 0 descriptor?? [ 389.841773][ T5129] usbhid 5-1:0.0: can't add hid device: -71 [ 389.848631][ T5129] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 390.000041][ T5129] usb 5-1: USB disconnect, device number 10 [ 390.920570][ T5130] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 391.226582][ T5129] libceph: connect (1)[c::]:6789 error -101 [ 391.233183][ T5129] libceph: mon0 (1)[c::]:6789 connect error [ 391.345521][ T6724] ptrace attach of "/root/syz-executor.1 exec"[5900] was attempted by "/root/syz-executor.1 exec"[6724] [ 391.419476][ T6716] ceph: No mds server is up or the cluster is laggy [ 391.498815][ T5130] usb 1-1: unable to read config index 0 descriptor/all [ 391.506354][ T5130] usb 1-1: can't read configurations, error -71 [ 391.665987][ T6730] loop4: detected capacity change from 0 to 64 [ 391.692217][ T6729] loop3: detected capacity change from 0 to 256 [ 391.890695][ T6729] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x421408f7, utbl_chksum : 0xe619d30d) [ 391.904014][ T6729] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 392.219290][ T29] kauditd_printk_skb: 15 callbacks suppressed [ 392.219362][ T29] audit: type=1800 audit(1717774482.359:91): pid=6735 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="loop3" ino=1048624 res=0 errno=0 [ 392.357899][ T6739] ptrace attach of "/root/syz-executor.0 exec"[5636] was attempted by "/root/syz-executor.0 exec"[6739] [ 392.512915][ T6742] ptrace attach of "/root/syz-executor.4 exec"[6031] was attempted by "/root/syz-executor.4 exec"[6742] [ 393.047366][ T6751] loop3: detected capacity change from 0 to 128 [ 393.488048][ T6759] delete_channel: no stack [ 393.972910][ T6768] loop3: detected capacity change from 0 to 64 [ 394.236637][ T6775] delete_channel: no stack [ 394.244227][ T10] libceph: connect (1)[c::]:6789 error -101 [ 394.250757][ T10] libceph: mon0 (1)[c::]:6789 connect error [ 394.354378][ T6767] ceph: No mds server is up or the cluster is laggy [ 394.972998][ T6783] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 396.015003][ T6789] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0 [ 396.537247][ T6806] loop3: detected capacity change from 0 to 1024 [ 396.538982][ T6804] loop0: detected capacity change from 0 to 256 [ 396.997395][ T6810] loop2: detected capacity change from 0 to 64 [ 397.084987][ T6804] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 397.373531][ T5129] libceph: connect (1)[c::]:6789 error -101 [ 397.379910][ T5129] libceph: mon0 (1)[c::]:6789 connect error [ 397.487891][ T6812] ceph: No mds server is up or the cluster is laggy [ 397.722637][ T5129] libceph: connect (1)[c::]:6789 error -101 [ 397.729012][ T5129] libceph: mon0 (1)[c::]:6789 connect error [ 398.029269][ T6819] loop3: detected capacity change from 0 to 512 [ 398.179347][ T6819] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.3: corrupted in-inode xattr: invalid ea_ino [ 398.279369][ T6819] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 398.392160][ T6819] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 398.545984][ T6819] EXT4-fs warning (device loop3): __ext4fs_dirhash:270: inode #18: comm syz-executor.3: Siphash requires key [ 398.558161][ T6819] ===================================================== [ 398.565591][ T6819] BUG: KMSAN: uninit-value in ext4_inlinedir_to_tree+0xde2/0x15a0 [ 398.573765][ T6819] ext4_inlinedir_to_tree+0xde2/0x15a0 [ 398.579439][ T6819] ext4_htree_fill_tree+0x1941/0x1cd0 [ 398.585166][ T6819] ext4_readdir+0x4bbf/0x5b00 [ 398.590025][ T6819] iterate_dir+0x688/0x870 [ 398.594769][ T6819] __se_sys_getdents64+0x169/0x530 [ 398.600189][ T6819] __x64_sys_getdents64+0x96/0xe0 [ 398.605709][ T6819] x64_sys_call+0x343d/0x3b50 [ 398.610730][ T6819] do_syscall_64+0xcf/0x1e0 [ 398.615536][ T6819] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 398.621833][ T6819] [ 398.629574][ T6819] Local variable hinfo created at: [ 398.636761][ T6819] ext4_htree_fill_tree+0x52/0x1cd0 [ 398.642341][ T6819] ext4_readdir+0x4bbf/0x5b00 [ 398.647198][ T6819] [ 398.649622][ T6819] CPU: 1 PID: 6819 Comm: syz-executor.3 Not tainted 6.9.0-syzkaller-02707-g614da38e2f7a #0 [ 398.659989][ T6819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 398.670552][ T6819] ===================================================== [ 398.677592][ T6819] Disabling lock debugging due to kernel taint [ 398.683970][ T6819] Kernel panic - not syncing: kmsan.panic set ... [ 398.690499][ T6819] CPU: 1 PID: 6819 Comm: syz-executor.3 Tainted: G B 6.9.0-syzkaller-02707-g614da38e2f7a #0 [ 398.702149][ T6819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 398.712346][ T6819] Call Trace: [ 398.715736][ T6819] [ 398.718770][ T6819] dump_stack_lvl+0x216/0x2d0 [ 398.723660][ T6819] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 398.729665][ T6819] dump_stack+0x1e/0x30 [ 398.734019][ T6819] panic+0x4e2/0xcd0 [ 398.738165][ T6819] ? kmsan_get_metadata+0xf1/0x1d0 [ 398.743482][ T6819] kmsan_report+0x2d5/0x2e0 [ 398.748180][ T6819] ? __msan_warning+0x95/0x120 [ 398.753122][ T6819] ? ext4_inlinedir_to_tree+0xde2/0x15a0 [ 398.758974][ T6819] ? ext4_htree_fill_tree+0x1941/0x1cd0 [ 398.764728][ T6819] ? ext4_readdir+0x4bbf/0x5b00 [ 398.769762][ T6819] ? iterate_dir+0x688/0x870 [ 398.774555][ T6819] ? __se_sys_getdents64+0x169/0x530 [ 398.780056][ T6819] ? __x64_sys_getdents64+0x96/0xe0 [ 398.785466][ T6819] ? x64_sys_call+0x343d/0x3b50 [ 398.790522][ T6819] ? do_syscall_64+0xcf/0x1e0 [ 398.795406][ T6819] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 398.801704][ T6819] ? filter_irq_stacks+0x60/0x1a0 [ 398.806965][ T6819] ? stack_depot_save_flags+0x2c/0x6e0 [ 398.812655][ T6819] ? kmsan_get_metadata+0x146/0x1d0 [ 398.818044][ T6819] ? kmsan_internal_set_shadow_origin+0x66/0xe0 [ 398.824522][ T6819] ? kmsan_get_metadata+0x146/0x1d0 [ 398.829910][ T6819] ? kmsan_get_metadata+0x146/0x1d0 [ 398.835288][ T6819] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 398.841287][ T6819] __msan_warning+0x95/0x120 [ 398.846050][ T6819] ext4_inlinedir_to_tree+0xde2/0x15a0 [ 398.851752][ T6819] ? kmsan_get_metadata+0x146/0x1d0 [ 398.857138][ T6819] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 398.863180][ T6819] ext4_htree_fill_tree+0x1941/0x1cd0 [ 398.868754][ T6819] ? kmsan_get_metadata+0x146/0x1d0 [ 398.874129][ T6819] ? kmsan_get_metadata+0x146/0x1d0 [ 398.879508][ T6819] ? kmsan_get_metadata+0x146/0x1d0 [ 398.884886][ T6819] ? kmsan_get_metadata+0x146/0x1d0 [ 398.890269][ T6819] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 398.896561][ T6819] ? kmsan_get_metadata+0x146/0x1d0 [ 398.901955][ T6819] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 398.907959][ T6819] ext4_readdir+0x4bbf/0x5b00 [ 398.912826][ T6819] ? aa_file_perm+0x3e4/0x17a0 [ 398.917837][ T6819] ? kmsan_get_metadata+0x146/0x1d0 [ 398.923218][ T6819] ? kmsan_get_metadata+0x146/0x1d0 [ 398.928589][ T6819] ? kmsan_get_metadata+0x146/0x1d0 [ 398.933958][ T6819] ? kmsan_get_metadata+0x146/0x1d0 [ 398.939339][ T6819] ? kmsan_internal_set_shadow_origin+0x66/0xe0 [ 398.945810][ T6819] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 398.951834][ T6819] ? __pfx_ext4_readdir+0x10/0x10 [ 398.957052][ T6819] iterate_dir+0x688/0x870 [ 398.961683][ T6819] __se_sys_getdents64+0x169/0x530 [ 398.967024][ T6819] ? __pfx_filldir64+0x10/0x10 [ 398.972002][ T6819] __x64_sys_getdents64+0x96/0xe0 [ 398.977250][ T6819] x64_sys_call+0x343d/0x3b50 [ 398.982135][ T6819] do_syscall_64+0xcf/0x1e0 [ 398.986843][ T6819] ? clear_bhb_loop+0x25/0x80 [ 398.991731][ T6819] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 398.997845][ T6819] RIP: 0033:0x7fbda287cf69 [ 399.002399][ T6819] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 399.022199][ T6819] RSP: 002b:00007fbda36470c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9 [ 399.030875][ T6819] RAX: ffffffffffffffda RBX: 00007fbda29b3f80 RCX: 00007fbda287cf69 [ 399.039001][ T6819] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 399.047109][ T6819] RBP: 00007fbda28da6fe R08: 0000000000000000 R09: 0000000000000000 [ 399.055217][ T6819] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 399.063321][ T6819] R13: 000000000000000b R14: 00007fbda29b3f80 R15: 00007ffd8a0936f8 [ 399.071457][ T6819] [ 399.074801][ T6819] Kernel Offset: disabled [ 399.079184][ T6819] Rebooting in 86400 seconds..