last executing test programs: 1m4.605450645s ago: executing program 3: r0 = gettid() timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff}) write$binfmt_script(r1, &(0x7f0000000340), 0xffffff46) rt_sigreturn() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0) mlockall(0x1) mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil) statx(0xffffffffffffff9c, 0x0, 0x2000, 0x400, 0x0) 1m3.912005723s ago: executing program 3: ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) 1m2.967499873s ago: executing program 3: setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = dup(r1) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000}) ioctl$KVM_NMI(r3, 0xae9a) ioctl$KVM_RUN(r3, 0xae80, 0x0) 58.533030483s ago: executing program 3: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) close(r3) close(r2) 58.213352217s ago: executing program 3: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0x203, 0x8401) connect$bt_l2cap(r0, &(0x7f00000014c0)={0x1f, 0xe42a, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x5, 0x2}, 0xe) ioctl$USBDEVFS_SUBMITURB(r1, 0x802c550a, &(0x7f0000000080)=@urb_type_interrupt={0x1, {0x1, 0x1}, 0x0, 0x60, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=@allocspi={0xf8, 0x16, 0x1, 0x0, 0x0, {{{@in=@multicast2, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa0}, {@in=@broadcast, 0x0, 0x33}, @in6=@private0, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x0, 0x34000}}, 0xf8}}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r2 = getpid() r3 = socket(0x10, 0x2, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000140)=@framed={{}, [@printk={@lli, {0x3, 0x3, 0x3, 0xa, 0x1, 0xfe00}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0xc7}}]}, &(0x7f0000000040)='syzkaller\x00', 0x6, 0xfe9, &(0x7f00000004c0)=""/4073}, 0x90) getrlimit(0x9, &(0x7f0000000540)) r4 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00'}) sendmsg$nl_route_sched(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000800)=@newqdisc={0x24, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff}}}, 0x24}}, 0x0) sched_setscheduler(r2, 0x0, &(0x7f00000003c0)=0x7) ioprio_set$pid(0x2, 0x0, 0x0) ioprio_get$pid(0x2, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) r5 = socket$xdp(0x2c, 0x3, 0x0) r6 = socket$netlink(0x10, 0x3, 0x400000000000004) setsockopt$XDP_RX_RING(r5, 0x11b, 0x2, &(0x7f0000000040)=0x1000000, 0x4) writev(r6, &(0x7f0000000100)=[{&(0x7f0000000200)="480000001400190d7ebdeb75fd0d8c562c84d8c033ed7a80ffe0090f000000000000a2bc5603ca00000f7f89000000200000004a2471083ec6991778581acb6c0101ff0000000309", 0x48}], 0x1) 24.88133881s ago: executing program 3: r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) rt_sigprocmask(0x0, &(0x7f0000000200)={[0xfffffbfd]}, 0x0, 0x8) prlimit64(0x0, 0x1, &(0x7f00000000c0), 0x0) r1 = eventfd(0x0) r2 = fcntl$dupfd(r1, 0x0, r1) write$P9_RSTATFS(r2, &(0x7f00000000c0)={0x43}, 0x43) write$FUSE_ATTR(r2, &(0x7f0000000000)={0x78, 0xfffffffffffffffe}, 0x78) close(r2) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{}, {0x0, 0x3938700}}, 0x0) pipe2(&(0x7f0000000140)={0xffffffffffffffff}, 0x0) read$char_usb(r3, &(0x7f0000000840)=""/160, 0xa0) rt_sigreturn() futex(&(0x7f0000000700)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) 19.942803954s ago: executing program 0: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000380)={0xa, 0x0, 0x0, @remote}, 0x1c) sendmmsg$inet(r0, &(0x7f0000001500), 0x28daedf781f05c19, 0x0) 17.426769129s ago: executing program 0: syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000300)='./bus\x00', 0x1008002, &(0x7f0000000280)={[{@grpquota}, {@delalloc}, {@noblock_validity}, {@debug}, {@test_dummy_encryption}, {@jqfmt_vfsold}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$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") syz_mount_image$msdos(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x400000, &(0x7f0000000500)=ANY=[@ANYBLOB="666c7573682c6e6f646f74732c646973636172642c646d61736b3d30303030303030303030303030303030303030303030322c646d61736b3d30303030303030303030303030303030303030303137372c646f74732c6e6f646f74732c71756965742c646f74732c0023c3cb4d2e3cbf18508098ee0de2af38db67d42d1bc4ab714d52f019082433fc9ca2d7174b2c4e5531c9f4c7a4d53914e100"/167], 0x1, 0x140, &(0x7f0000000000)="$eJzs27Fq21AUBuDj2m3ddvFcOgi6dDJtn6CluFAqaEnwkEwJOFnsYIgXJZMfJS8YCJ683ZAo2Imxhwy2IPq+RT/8CO4dpMMV6OjT2XAwnpyO/8+i3WhE60dkMW9EJ15FM0rTAABeknlKcZNSSm+n8e4qUkpVrwgA2DbzHwDqx/wHgPox/wGgfvYPDv/+zPPeXpa1I66nRb/ol9ey//0n733N7nWWd82Kot9c9N/KPnvav473D/33tf2b+PK57O+6X//ylf5DDLa/fQAAAKiFbraw9nzf7W7qy/To+8DK+b0VH1s72wYA8AyTi8vh8Wh0ci4IgrAIVb+ZgG1bPvRVrwQAAAAAAAAAAAAAANhkF78TVb1HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAWHUbAAD//0DvUik=") syz_mount_image$exfat(0x0, &(0x7f00000018c0)='./bus\x00', 0x805, 0x0, 0xfd, 0x0, &(0x7f00000001c0)) chdir(&(0x7f00000003c0)='./bus\x00') syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x10000, &(0x7f0000000180)=ANY=[@ANYBLOB="73686f72746e616d653d6c6f7765722c696f636861727365743d69736f383835392d312c646d61736b3d30303030303030303030303030303030303030303033332c757466383d302c756e695f786c6174653d312c646d61736b3d30303030303030303030303030303030303337363334302c73686f72746e616d653d6c6f7765722c756e695f786c6174653d302c696f636861727365743d63703835352c616c6c6f775f7574696d653d30303030303030303030303030303030303030303030312c757466383d302c757466383d302c757466383d302c73686f77657865632c757466383d312c6572726f72733d72656d6f756e742d726f2c6572726f72733d636f6e74696e75652c00a38995e5a91dfe67f441d57148f407b13d9bed804a57ec446ce22203cd3935c8f37536625d0f08c3f337dd636f0f493c9bf7d2e82fc0cadd34e4aea09f3f8b71f818b2713817546e50c9698385719df30f9d463630888b40fd20f83edc2fd9944a7f6a59e0a97244154f81"], 0x6, 0x2dc, &(0x7f0000000700)="$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") r0 = openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0) getdents(0xffffffffffffffff, 0x0, 0x0) mkdir(0x0, 0x0) write$binfmt_script(0xffffffffffffffff, &(0x7f0000000c40)={'#! ', './bus'}, 0x9) copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x700000000000000) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, 0x0) unlinkat(0xffffffffffffffff, 0x0, 0x200) getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000) r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) unlinkat(r1, &(0x7f0000000280)='./file0\x00', 0x200) 16.43023531s ago: executing program 4: mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) mount$cgroup(0x20000000, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000440)={[{@subsystem='devices'}]}) chdir(&(0x7f0000000000)='./file0\x00') rmdir(&(0x7f00000001c0)='./file0\x00') 15.495617931s ago: executing program 4: socket$inet6_udp(0x1c, 0x2, 0x0) socket$inet6_sctp(0x1c, 0x0, 0x84) socket$inet6_udplite(0x1c, 0x2, 0x88) r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) connect$inet6(r0, &(0x7f0000000180)={0x1c, 0x1c, 0x2}, 0x1c) 15.443804384s ago: executing program 1: r0 = open(&(0x7f0000000480)='./file0\x00', 0x80000000000206, 0x0) ftruncate(r0, 0x3862) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2, 0x10, 0xffffffffffffffff, 0x0) rename(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0/file0\x00') r1 = socket$inet_sctp(0x2, 0x5, 0x84) connect$inet(r1, &(0x7f0000000140)={0x10, 0x2}, 0x10) 15.136094719s ago: executing program 0: open(&(0x7f0000000480)='./file0\x00', 0x80000000000206, 0x0) ftruncate(0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2, 0x10, 0xffffffffffffffff, 0x0) rename(&(0x7f0000000040)='./file0\x00', 0x0) 15.012246817s ago: executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() syz_mount_image$nilfs2(&(0x7f0000000000), &(0x7f0000001640)='./file0\x00', 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="00f1b4fc851faf8228c2eb860e73d800000000fc8f28daf7b92d399638f3725b771bae16409426ba68f49ea9bc3f00000009000000af03f86e3850000000000000000000006fb7eb6e741aefc8dcea14cf372aa94362bb72d286ef49ca7100a2ab5ee798265a3fdbfc1304f534906c81748f507aee574b8a29d8c6d2ee"], 0x1, 0xa12, &(0x7f00000020c0)="$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") sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) bpf$PROG_LOAD(0x5, 0x0, 0x0) openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) ioctl$TIOCL_SELLOADLUT(0xffffffffffffffff, 0x541c, &(0x7f0000000180)={0x5, 0x401, 0x7f, 0x0, 0x9}) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) getpid() bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000380)=ANY=[@ANYBLOB='iocharset=maccroatian,utf8,utf8,dmask=00000000000000000001777,errors=continue,uid=', @ANYRESHEX=0x0, @ANYBLOB=',uid=', @ANYRESHEX=0x0, @ANYBLOB="2c0189cdc72788006572726f72733d72656d6f756e742d766f2c757466382c6572726f72733d636f6e74696e75652c00"], 0x1, 0x1528, &(0x7f0000001f80)="$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") r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) getdents64(r1, &(0x7f0000001280)=""/4089, 0xff9) process_madvise(0xffffffffffffffff, &(0x7f0000002880)=[{0x0}], 0x1, 0x0, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0) syz_usb_connect$hid(0x7, 0xffffff4e, 0x0, 0x0) prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001600)=ANY=[@ANYBLOB="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"], 0x0}, 0x90) r3 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r3, 0xc05064a7, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000002c0)=[0x0, 0x0, 0x0], &(0x7f00000007c0), 0x0, 0x3}) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f00000000c0), 0x0, 0x739d, 0x0, 0x0, 0x0, 0x0}, 0x50) 11.712433092s ago: executing program 1: bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x0, 0x7, &(0x7f0000000000)=@framed={{}, [@map_val, @map_val]}, 0x0}, 0x90) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r0, 0x89f1, &(0x7f0000000900)={'ip6gre0\x00', @random="0600002000"}) 11.678014775s ago: executing program 4: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b704000000000000850000000500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r1}, 0x10) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8}, 0x48) bpf$MAP_CREATE(0x0, 0x0, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r3}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x0, 0x8, &(0x7f0000000000)=@framed={{}, [@map_val, @map_val={0x18, 0x0, 0x2, 0x0, r2}, @alu={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}]}, 0x0}, 0x90) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r4, 0x89f1, &(0x7f0000000900)={'ip6gre0\x00', @random="0600002000"}) 11.530381274s ago: executing program 0: prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10) keyctl$chown(0x18, 0x0, 0xffffffffffffffff, 0x0) 11.097002638s ago: executing program 0: prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x0, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='rcu_utilization\x00', r0}, 0x10) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x5f, 0x0, &(0x7f0000000100)="b9ff03006044238cb89e14f088a81bffffff00004000632f77fbac14140be934a0a662079f4b4d2f87e5feca6aab845013f288a81a3901050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa007", 0x0, 0xfe, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r6}, 0x10) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0) 10.112038153s ago: executing program 2: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000580)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'bridge_slave_0\x00'}) 9.509521407s ago: executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount$tmpfs(0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10) symlinkat(&(0x7f0000000140)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', r0, &(0x7f0000000000)='./file0\x00') chdir(&(0x7f0000000140)='./bus\x00') link(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)='./bus\x00') syz_open_dev$tty20(0xc, 0x4, 0x1) 9.359664027s ago: executing program 4: syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000300)='./bus\x00', 0x1008002, &(0x7f0000000280)={[{@grpquota}, {@delalloc}, {@noblock_validity}, {@debug}, {@test_dummy_encryption}, {@jqfmt_vfsold}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$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") syz_mount_image$msdos(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x400000, &(0x7f0000000500)=ANY=[@ANYBLOB="666c7573682c6e6f646f74732c646973636172642c646d61736b3d30303030303030303030303030303030303030303030322c646d61736b3d30303030303030303030303030303030303030303137372c646f74732c6e6f646f74732c71756965742c646f74732c0023c3cb4d2e3cbf18508098ee0de2af38db67d42d1bc4ab714d52f019082433fc9ca2d7174b2c4e5531c9f4c7a4d53914e100"/167], 0x1, 0x140, &(0x7f0000000000)="$eJzs27Fq21AUBuDj2m3ddvFcOgi6dDJtn6CluFAqaEnwkEwJOFnsYIgXJZMfJS8YCJ683ZAo2Imxhwy2IPq+RT/8CO4dpMMV6OjT2XAwnpyO/8+i3WhE60dkMW9EJ15FM0rTAABeknlKcZNSSm+n8e4qUkpVrwgA2DbzHwDqx/wHgPox/wGgfvYPDv/+zPPeXpa1I66nRb/ol9ey//0n733N7nWWd82Kot9c9N/KPnvav473D/33tf2b+PK57O+6X//ylf5DDLa/fQAAAKiFbraw9nzf7W7qy/To+8DK+b0VH1s72wYA8AyTi8vh8Wh0ci4IgrAIVb+ZgG1bPvRVrwQAAAAAAAAAAAAAANhkF78TVb1HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAWHUbAAD//0DvUik=") syz_mount_image$exfat(0x0, &(0x7f00000018c0)='./bus\x00', 0x805, 0x0, 0xfd, 0x0, &(0x7f00000001c0)) chdir(&(0x7f00000003c0)='./bus\x00') syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x10000, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x6, 0x2dc, &(0x7f0000000700)="$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") r0 = openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0) getdents(0xffffffffffffffff, 0x0, 0x0) mkdir(0x0, 0x0) write$binfmt_script(0xffffffffffffffff, &(0x7f0000000c40)={'#! ', './bus'}, 0x9) copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x700000000000000) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, 0x0) unlinkat(0xffffffffffffffff, 0x0, 0x200) getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000) r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) unlinkat(r1, &(0x7f0000000280)='./file0\x00', 0x200) 9.31236699s ago: executing program 2: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x26e1, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000017b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='ext4_es_insert_delayed_block\x00', r1}, 0x10) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0) write$cgroup_pid(r2, &(0x7f0000000980), 0x12) 8.031423464s ago: executing program 2: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0xfff, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000000)=0x800, 0x4) bind$inet(r4, &(0x7f0000000380)={0x2, 0x200000000004e23, @local}, 0x10) sendto$inet(r4, 0x0, 0x0, 0x200007fd, &(0x7f00000008c0)={0x2, 0x4e23, @local}, 0x10) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000001c0)={'ip6gre0\x00', 0x0}) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000a40)=@bpf_lsm={0x1d, 0x22, &(0x7f00000005c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@map_idx={0x18, 0x1, 0x5, 0x0, 0xd}, @ringbuf_query, @map_fd={0x18, 0x4, 0x1, 0x0, r0}, @printk={@lx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x2}}, @map_idx={0x18, 0xb, 0x5, 0x0, 0x6}, @alu={0x7, 0x0, 0x0, 0x9, 0x4, 0x20}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f00000003c0)='GPL\x00', 0x0, 0xf9, &(0x7f0000000700)=""/249, 0x41100, 0x14, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000400)={0x2, 0x4}, 0x8, 0x10, &(0x7f00000004c0)={0x5, 0x5, 0xfffffaff, 0x1}, 0x10, 0x0, 0x0, 0x8, 0x0, &(0x7f0000000800)=[{0x2, 0x5, 0x1}, {0x5, 0x4, 0x3, 0x3}, {0x0, 0x2, 0xe, 0x2}, {0x2, 0x1}, {0x1, 0x3, 0x6, 0x8}, {0x5, 0x2, 0x3, 0x2}, {0x4, 0x5, 0x7, 0x4}, {0x4, 0x2, 0x3, 0x7}], 0x10, 0x6}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x45, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x208}, 0x90) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10) r6 = syz_open_dev$usbfs(&(0x7f0000000100), 0x206, 0x8401) ioctl$USBDEVFS_ALLOW_SUSPEND(r6, 0x5522) recvmsg(r4, &(0x7f0000000240)={&(0x7f0000000040)=@nfc, 0xf012, &(0x7f0000000180)=[{&(0x7f0000003ac0)=""/4096, 0x200116c0}], 0x1, &(0x7f0000000200)=""/20, 0x14}, 0x100) write$binfmt_elf64(r4, &(0x7f0000000580)=ANY=[@ANYRES32, @ANYRES64], 0x100000530) 5.739836765s ago: executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() syz_mount_image$nilfs2(&(0x7f0000000000), &(0x7f0000001640)='./file0\x00', 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="00f1b4fc851faf8228c2eb860e73d800000000fc8f28daf7b92d399638f3725b771bae16409426ba68f49ea9bc3f00000009000000af03f86e3850000000000000000000006fb7eb6e741aefc8dcea14cf372aa94362bb72d286ef49ca7100a2ab5ee798265a3fdbfc1304f534906c81748f507aee574b8a29d8c6d2ee"], 0x1, 0xa12, &(0x7f00000020c0)="$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") sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) bpf$PROG_LOAD(0x5, 0x0, 0x0) openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) ioctl$TIOCL_SELLOADLUT(0xffffffffffffffff, 0x541c, &(0x7f0000000180)={0x5, 0x401, 0x7f, 0x0, 0x9}) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) getpid() bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000380)=ANY=[@ANYBLOB='iocharset=maccroatian,utf8,utf8,dmask=00000000000000000001777,errors=continue,uid=', @ANYRESHEX=0x0, @ANYBLOB=',uid=', @ANYRESHEX=0x0, @ANYBLOB="2c0189cdc72788006572726f72733d72656d6f756e742d766f2c757466382c6572726f72733d636f6e74696e75652c00"], 0x1, 0x1528, &(0x7f0000001f80)="$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") r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) getdents64(r1, &(0x7f0000001280)=""/4089, 0xff9) process_madvise(0xffffffffffffffff, &(0x7f0000002880)=[{0x0}], 0x1, 0x0, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0) syz_usb_connect$hid(0x7, 0xffffff4e, 0x0, 0x0) prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001600)=ANY=[@ANYBLOB="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"], 0x0}, 0x90) r3 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r3, 0xc05064a7, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000002c0)=[0x0, 0x0, 0x0], &(0x7f00000007c0), 0x0, 0x3}) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f00000000c0), 0x0, 0x739d, 0x0, 0x0, 0x0, 0x0}, 0x50) 5.659558577s ago: executing program 4: bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) syz_open_procfs(0x0, &(0x7f0000000000)='net/vlan/vlan0\x00') syz_open_procfs(0x0, &(0x7f00000001c0)='net/vlan/vlan0\x00') socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff}) ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r2, 0x8982, &(0x7f0000002800)={0x1, 'vlan0\x00'}) 4.134366938s ago: executing program 2: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x12, 0x4, 0x8, 0x10000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000e40)={&(0x7f0000000600)='ext4_free_blocks\x00', r1}, 0x10) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0) write$cgroup_int(r2, &(0x7f0000000100), 0x1001) ioctl$SIOCSIFHWADDR(r2, 0x4030582b, &(0x7f0000000280)={'lo\x00', @link_local={0x1, 0x80, 0xc2, 0xc}}) 2.067562319s ago: executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x1000, 0x0) r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000187b8af8ff00000000bfa200000000000007020000d8ffffffb703000008000000b70400000000925e8500000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000980), 0x12) bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x7, 0x17, &(0x7f00000007c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x6, 0x0, 0xb}, {0x6d}}, [@printk={@lld, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x4, 0x1, 0xa, 0x1, 0x9}, {0x7, 0x0, 0x3}, {}, {}, {0x15}}], {{0x6, 0x1, 0xc, 0x3}, {0x5, 0x0, 0xb, 0x3}, {0x85, 0x0, 0x0, 0x76}}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ppoll(&(0x7f0000000040)=[{r6, 0x40}, {}, {r6, 0x600}, {r6, 0x1}, {r7, 0x180}, {r7, 0x208}, {r7, 0x4}, {r7, 0x342c}], 0x8, &(0x7f0000000080), &(0x7f0000000140)={[0x1]}, 0x8) bind$bt_hci(r6, &(0x7f0000000100)={0x1f, 0xffff}, 0x6) 1.452006705s ago: executing program 2: prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10) keyctl$chown(0x18, 0x0, 0xffffffffffffffff, 0x0) 1.120808525s ago: executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r1, &(0x7f00000bd000), 0x492492492492846, 0x0) fcntl$setstatus(r1, 0x4, 0x2400) unshare(0x60600) ppoll(&(0x7f0000000040)=[{r1, 0x700}], 0x1, 0x0, 0x0, 0x0) connect$unix(r0, &(0x7f00000002c0)=@file={0x0, './file0\x00'}, 0x6e) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0}, 0x90) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x9e}]}, 0x0}, 0x90) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r3}, 0x4) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[], 0x48}}, 0x0) syz_mount_image$exfat(&(0x7f0000000180), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000001780)=ANY=[@ANYBLOB='errors=continue,namecase=1,iocharset=none,errors=continue,fmask=00000000000000000000011,iocharset=cp950,gid=', @ANYRESHEX=0x0, @ANYBLOB="0002440000e55c55afe3461fa77fcb64aabc35b21ddae7ecc2", @ANYRESHEX=0x0, @ANYBLOB=',umask=00000000000000000127435,gid=', @ANYRES64, @ANYBLOB=',\x00'], 0x5, 0x1510, &(0x7f0000000240)="$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") r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) getdents64(r5, &(0x7f0000000f80)=""/4096, 0x1000) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r4}, 0x10) mkdir(&(0x7f0000000400)='./file0\x00', 0x0) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000001f80)={0x80000001, 0x0}, 0x8) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x54, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0xc000, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, 0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)) pipe2$watch_queue(0x0, 0x80) 539.978905ms ago: executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x1000, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="2598ccde00000000b70800004e9d00007b8af8ff00000000bfa20000fbff000007020000f8fffffdb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000187b8af8ff00000000bfa200000000000007020000d8ffffffb703000008000000b70400000000925e85000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r5, &(0x7f0000000000), 0x400000) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0) write$cgroup_pid(r6, &(0x7f0000000980), 0x12) bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x7, 0x17, &(0x7f00000007c0)=@ringbuf={{}, {{}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x6, 0x0, 0xb}, {0x6d}}, [@printk={@lld, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x4, 0x1, 0xa, 0x1, 0x9}, {0x7, 0x0, 0x3}, {}, {}, {0x15}}], {{0x6, 0x1, 0xc, 0x3}, {0x5, 0x0, 0xb, 0x3}, {0x85, 0x0, 0x0, 0x76}}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) 0s ago: executing program 2: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x6}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r2}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x0, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0xfffffffd}, 0x48) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x4000}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) r6 = socket$inet6(0xa, 0x2, 0x0) sendto$inet6(r6, &(0x7f0000000800)="51e251578820a7080000000000e8faff", 0x10, 0x0, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c) syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) kernel console output (not intermixed with test programs): n conform CAN skbuff: dev type 65534, len 65487 [ 840.197807][T10179] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 840.479077][ T7945] usb 2-1: new low-speed USB device number 15 using dummy_hcd [ 840.803389][T10850] loop4: detected capacity change from 0 to 2048 [ 840.816510][ T7945] usb 2-1: Invalid ep0 maxpacket: 64 [ 840.991929][ T7945] usb 2-1: new low-speed USB device number 16 using dummy_hcd [ 841.084612][T10850] loop4: detected capacity change from 0 to 128 [ 841.107720][T10850] ufs: You didn't specify the type of your ufs filesystem [ 841.107720][T10850] [ 841.107720][T10850] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 841.107720][T10850] [ 841.107720][T10850] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 841.139840][T10850] ufs: ufstype=old is supported read-only [ 841.224473][T10850] ufs: ufs_fill_super(): fragment size 3263967611 is not a power of 2 [ 841.302736][ T7945] usb 2-1: Invalid ep0 maxpacket: 64 [ 841.337023][ T7945] usb usb2-port1: attempt power cycle [ 841.818692][ T7945] usb 2-1: new low-speed USB device number 17 using dummy_hcd [ 841.919389][T10864] loop0: detected capacity change from 0 to 1024 [ 841.938516][ T7945] usb 2-1: Invalid ep0 maxpacket: 64 [ 842.012591][T10864] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 842.022974][T10864] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (29254!=20869) [ 842.073600][T10864] EXT4-fs (loop0): journal inode is deleted [ 842.154735][ T7945] usb 2-1: new low-speed USB device number 18 using dummy_hcd [ 842.284995][ T7945] usb 2-1: Invalid ep0 maxpacket: 64 [ 842.326584][ T7945] usb usb2-port1: unable to enumerate USB device [ 842.698566][T10874] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.3'. [ 842.740752][T10874] x_tables: ip6_tables: udplite match: only valid for protocol 136 [ 842.810706][T10873] loop0: detected capacity change from 0 to 2048 [ 842.812906][T10874] loop3: detected capacity change from 0 to 512 [ 842.831236][T10876] netlink: 104 bytes leftover after parsing attributes in process `syz-executor.4'. [ 842.862117][T10873] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 842.864946][T10874] ext4: Unknown parameter 'measure' [ 842.917862][T10873] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 842.925231][T10878] netlink: 104 bytes leftover after parsing attributes in process `syz-executor.2'. [ 843.036945][T10873] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a002e01c, mo2=0002] [ 843.138125][T10873] System zones: 0-19 [ 843.189892][T10873] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 843.196308][T10874] loop3: detected capacity change from 0 to 512 [ 843.343631][T10874] EXT4-fs error (device loop3): ext4_orphan_get:1394: inode #15: comm syz-executor.3: casefold flag without casefold feature [ 843.367463][T10874] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 843.418080][T10883] netlink: 104 bytes leftover after parsing attributes in process `syz-executor.2'. [ 843.446438][T10874] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 843.562607][T10885] loop4: detected capacity change from 0 to 4096 [ 843.631659][T10885] NILFS (loop4): invalid segment: Checksum error in segment payload [ 843.640232][T10885] NILFS (loop4): trying rollback from an earlier position [ 843.783950][T10142] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 843.877238][T10885] NILFS (loop4): recovery complete [ 843.892106][T10890] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 844.410156][T10466] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 844.564435][T10897] netlink: 104 bytes leftover after parsing attributes in process `syz-executor.0'. [ 845.247806][T10907] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check. [ 845.618087][T10910] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.1'. [ 845.709580][ T779] usb 5-1: new high-speed USB device number 22 using dummy_hcd [ 845.926503][ T779] usb 5-1: device descriptor read/64, error -71 [ 846.257291][ T779] usb 5-1: new high-speed USB device number 23 using dummy_hcd [ 846.358877][T10920] netlink: 'syz-executor.3': attribute type 10 has an invalid length. [ 846.367727][T10920] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.3'. [ 846.371541][T10919] loop0: detected capacity change from 0 to 2048 [ 846.385759][T10920] macvtap0: entered allmulticast mode [ 846.392090][T10920] veth0_macvtap: entered allmulticast mode [ 846.402689][T10920] bridge0: port 3(macvtap0) entered blocking state [ 846.410314][T10920] bridge0: port 3(macvtap0) entered disabled state [ 846.422655][T10920] A link change request failed with some changes committed already. Interface macvtap0 may have been left with an inconsistent configuration, please check. [ 846.461857][T10919] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 846.509930][T10919] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 846.526185][ T779] usb 5-1: device descriptor read/64, error -71 [ 846.571630][T10919] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a002e01c, mo2=0002] [ 846.602700][T10919] System zones: 0-19 [ 846.614127][T10919] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 846.668164][ T779] usb usb5-port1: attempt power cycle [ 847.100577][ T779] usb 5-1: new high-speed USB device number 24 using dummy_hcd [ 847.229562][T10142] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 847.250292][ T779] usb 5-1: device descriptor read/8, error -71 [ 847.470602][T10934] loop2: detected capacity change from 0 to 512 [ 847.474904][T10940] loop1: detected capacity change from 0 to 256 [ 847.550409][T10940] FAT-fs (loop1): Unrecognized mount option "18446744073709551615" or missing value [ 847.582724][ T779] usb 5-1: new high-speed USB device number 25 using dummy_hcd [ 847.716311][ T779] usb 5-1: device descriptor read/8, error -71 [ 847.758560][T10940] netlink: 'syz-executor.1': attribute type 1 has an invalid length. [ 847.768416][T10940] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 847.937783][ T779] usb usb5-port1: unable to enumerate USB device [ 849.026260][T10966] netlink: 'syz-executor.0': attribute type 21 has an invalid length. [ 849.034752][T10966] IPv6: NLM_F_CREATE should be specified when creating new route [ 849.124302][T10960] hugetlbfs: Bad value '%' for mount option 'nr_inodes' [ 849.124302][T10960] [ 849.459750][T10970] loop3: detected capacity change from 0 to 2048 [ 849.541231][T10970] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 849.606694][T10970] EXT4-fs (loop3): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 849.642315][T10973] EXT4-fs warning (device sda1): verify_group_input:137: Cannot add at group 99999999 (only 8 groups) [ 849.699932][T10974] loop1: detected capacity change from 0 to 512 [ 849.717061][T10970] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a002e01c, mo2=0002] [ 849.739586][T10970] System zones: 0-19 [ 849.768186][T10960] loop4: detected capacity change from 0 to 4096 [ 849.788436][T10960] ntfs3: Unknown parameter 'BAT' [ 849.813018][T10970] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 850.498284][T10466] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 851.596484][T11005] binder: BINDER_SET_CONTEXT_MGR already set [ 851.608436][T11005] binder: 11000:11005 ioctl 4018620d 20000000 returned -16 [ 851.672022][T11006] binder: 11000:11006 unknown command 0 [ 851.678691][T11006] binder: 11000:11006 ioctl c0306201 20000880 returned -22 [ 851.935070][T11009] loop3: detected capacity change from 0 to 512 [ 851.973622][T11009] EXT4-fs: Ignoring removed i_version option [ 852.027654][T11009] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 852.097663][T11013] EXT4-fs warning (device sda1): verify_group_input:137: Cannot add at group 99999999 (only 8 groups) [ 852.162599][T11009] EXT4-fs (loop3): 1 truncate cleaned up [ 852.169474][T11009] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 852.248263][T11010] loop4: detected capacity change from 0 to 512 [ 852.257773][ T29] audit: type=1800 audit(1718122148.046:116): pid=11009 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="control" dev="loop3" ino=18 res=0 errno=0 [ 852.472471][T10466] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 852.685086][T11016] loop0: detected capacity change from 0 to 2048 [ 852.837139][T11016] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 852.906627][T11016] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 852.981710][T11016] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a002e01c, mo2=0002] [ 853.018174][T11016] System zones: 0-19 [ 853.082756][T11016] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 853.803686][T10142] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 854.418682][T11045] netlink: 104 bytes leftover after parsing attributes in process `syz-executor.3'. [ 854.884252][T11053] loop0: detected capacity change from 0 to 1024 [ 855.013244][T11053] EXT4-fs: Ignoring removed nobh option [ 855.066450][T11053] EXT4-fs: test_dummy_encryption requires encrypt feature [ 855.320876][T11053] loop0: detected capacity change from 0 to 64 [ 855.561158][ T7945] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 855.737556][ T29] audit: type=1326 audit(1718122151.556:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11060 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbc7827cea9 code=0x0 [ 855.874780][T11063] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 855.928163][ T7945] usb 4-1: Using ep0 maxpacket: 8 [ 856.048582][ T7945] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 856.058732][ T7945] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 856.129288][T11067] loop0: detected capacity change from 0 to 2048 [ 856.153518][ T7945] usb 4-1: config 0 descriptor?? [ 856.195337][T11067] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 856.235545][T11067] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 856.261521][T11067] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a002e01c, mo2=0002] [ 856.279528][T11067] System zones: 0-19 [ 856.296452][T11067] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 856.961611][T10142] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 857.154149][T11084] loop4: detected capacity change from 0 to 512 [ 857.266822][T11084] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 857.280910][T11084] ext4 filesystem being mounted at /root/syzkaller-testdir1984203382/syzkaller.upsGrd/41/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 857.568687][T11058] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 857.613538][T11058] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 857.621143][T11058] IPv6: NLM_F_CREATE should be set when creating new route [ 857.680046][T11058] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 857.687656][T11058] IPv6: NLM_F_CREATE should be set when creating new route [ 857.798454][T11058] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 857.915238][T11096] loop3: detected capacity change from 0 to 256 [ 857.959258][T11096] FAT-fs (loop3): Unrecognized mount option "noÄq¯êIìØnodots" or missing value [ 858.164198][T10179] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 858.246627][ T7945] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 858.260003][ T7945] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9 [ 858.271823][ T7945] asix 4-1:0.0: probe with driver asix failed with error -71 [ 858.384884][ T7945] usb 4-1: USB disconnect, device number 8 [ 858.576450][ T779] usb 1-1: new full-speed USB device number 10 using dummy_hcd [ 858.819888][ T29] audit: type=1326 audit(1718122154.626:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11104 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb15e27cea9 code=0x0 [ 858.876946][T11108] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 858.956676][ T779] usb 1-1: config 0 has an invalid interface number: 52 but max is 0 [ 858.965363][ T779] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 858.981742][ T779] usb 1-1: config 0 has no interface number 0 [ 858.990203][ T779] usb 1-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 0, changing to 10 [ 859.001805][ T779] usb 1-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid wMaxPacketSize 0 [ 859.012209][ T779] usb 1-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 859.025656][ T779] usb 1-1: config 0 interface 52 has no altsetting 0 [ 859.228688][ T779] usb 1-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice= 0.00 [ 859.238430][ T779] usb 1-1: New USB device strings: Mfr=0, Product=149, SerialNumber=35 [ 859.247248][ T779] usb 1-1: Product: syz [ 859.251751][ T779] usb 1-1: SerialNumber: syz [ 859.254476][T11112] loop1: detected capacity change from 0 to 2048 [ 859.317230][T11112] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 859.331269][ T779] usb 1-1: config 0 descriptor?? [ 859.344324][T11112] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 859.405027][T11112] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a002e01c, mo2=0002] [ 859.430752][T11112] System zones: 0-19 [ 859.464517][T11112] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 859.815634][ T779] input: syz (Stick) as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.52/input/input25 [ 859.833876][ T4470] synaptics_usb 1-1:0.52: synusb_open - usb_submit_urb failed, error: -90 [ 859.879291][ T4470] synaptics_usb 1-1:0.52: synusb_open - usb_submit_urb failed, error: -90 [ 859.906835][ T4470] synaptics_usb 1-1:0.52: synusb_open - usb_submit_urb failed, error: -90 [ 859.950807][ T4470] synaptics_usb 1-1:0.52: synusb_open - usb_submit_urb failed, error: -90 [ 860.110752][T10217] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 860.391014][T11127] loop2: detected capacity change from 0 to 512 [ 860.551005][T11127] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 860.564648][T11127] ext4 filesystem being mounted at /root/syzkaller-testdir2270791140/syzkaller.CX30TM/333/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 861.257950][ T7083] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 861.635389][ T7945] usb 1-1: USB disconnect, device number 10 [ 861.850817][T11149] netlink: 'syz-executor.1': attribute type 4 has an invalid length. [ 862.018382][T11151] xt_hashlimit: max too large, truncated to 1048576 [ 862.173979][T11155] loop0: detected capacity change from 0 to 2048 [ 862.222557][T11155] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 862.226505][ T779] usb 2-1: new high-speed USB device number 19 using dummy_hcd [ 862.273164][T11155] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 862.327368][T11155] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a002e01c, mo2=0002] [ 862.343653][T11155] System zones: 0-19 [ 862.361895][T11155] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 862.380031][T11161] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 862.617290][ T779] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 862.628806][ T779] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 862.642321][ T779] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 862.652066][ T779] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 862.693056][ T779] usb 2-1: config 0 descriptor?? [ 862.843731][T11164] loop3: detected capacity change from 0 to 64 [ 862.939606][T11164] hfs: invalid btree extent records (0 size) [ 862.946310][T11164] hfs: unable to open catalog tree [ 862.970912][T11164] hfs: can't find a HFS filesystem on dev loop3 [ 863.075605][T10142] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 863.182914][ T779] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0 [ 863.242026][ T779] plantronics 0003:047F:FFFF.000F: No inputs registered, leaving [ 863.313525][ T779] plantronics 0003:047F:FFFF.000F: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 863.652003][ T5139] usb 2-1: USB disconnect, device number 19 [ 864.016156][T11181] loop0: detected capacity change from 0 to 512 [ 864.073025][T11181] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 864.177190][T11181] EXT4-fs (loop0): 1 truncate cleaned up [ 864.183269][T11181] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 864.390207][T11187] xt_hashlimit: max too large, truncated to 1048576 [ 864.842229][T11195] sctp: [Deprecated]: syz-executor.1 (pid 11195) Use of struct sctp_assoc_value in delayed_ack socket option. [ 864.842229][T11195] Use struct sctp_sack_info instead [ 864.850306][T11193] loop4: detected capacity change from 0 to 2048 [ 864.997335][T11193] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 865.035390][T11181] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 865.048980][T11193] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 865.111172][T11193] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a002e01c, mo2=0002] [ 865.128283][T11193] System zones: 0-19 [ 865.196245][T11193] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 865.197797][T11202] sctp: [Deprecated]: syz-executor.3 (pid 11202) Use of struct sctp_assoc_value in delayed_ack socket option. [ 865.197797][T11202] Use struct sctp_sack_info instead [ 865.404959][T10142] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 865.423907][T11205] sctp: [Deprecated]: syz-executor.2 (pid 11205) Use of struct sctp_assoc_value in delayed_ack socket option. [ 865.423907][T11205] Use struct sctp_sack_info instead [ 865.764077][T10179] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 865.794537][T11210] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.1'. [ 865.804475][T11210] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'. [ 865.814255][T11210] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'. [ 865.871199][T11211] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.1'. [ 865.881744][T11211] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'. [ 865.891478][T11211] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'. [ 866.094816][T11211] sctp: [Deprecated]: syz-executor.1 (pid 11211) Use of struct sctp_assoc_value in delayed_ack socket option. [ 866.094816][T11211] Use struct sctp_sack_info instead [ 866.345170][T11218] sctp: [Deprecated]: syz-executor.3 (pid 11218) Use of struct sctp_assoc_value in delayed_ack socket option. [ 866.345170][T11218] Use struct sctp_sack_info instead [ 866.381139][T11219] sctp: [Deprecated]: syz-executor.0 (pid 11219) Use of struct sctp_assoc_value in delayed_ack socket option. [ 866.381139][T11219] Use struct sctp_sack_info instead [ 866.455600][T11220] sctp: [Deprecated]: syz-executor.4 (pid 11220) Use of struct sctp_assoc_value in delayed_ack socket option. [ 866.455600][T11220] Use struct sctp_sack_info instead [ 866.519069][T11222] netlink: 'syz-executor.2': attribute type 4 has an invalid length. [ 866.866354][ T5139] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 867.127062][T11226] xt_hashlimit: max too large, truncated to 1048576 [ 867.328279][ T5139] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 867.339868][ T5139] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 867.353834][ T5139] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 867.363316][ T5139] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 867.453638][ T5139] usb 3-1: config 0 descriptor?? [ 867.799738][T11233] loop4: detected capacity change from 0 to 512 [ 867.957403][ T5139] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 867.987145][ T5139] plantronics 0003:047F:FFFF.0010: No inputs registered, leaving [ 868.030936][ T5139] plantronics 0003:047F:FFFF.0010: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 868.100466][T11233] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 868.113835][T11233] ext4 filesystem being mounted at /root/syzkaller-testdir1984203382/syzkaller.upsGrd/53/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 868.241386][T11236] loop0: detected capacity change from 0 to 2048 [ 868.260863][T11241] loop1: detected capacity change from 0 to 1024 [ 868.322225][T11236] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 868.329860][T11241] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 868.362507][T11236] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 868.417365][T11236] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a002e01c, mo2=0002] [ 868.460258][T11241] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 868.492704][T11236] System zones: 0-19 [ 868.565766][T11236] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 868.664781][ T7945] usb 3-1: USB disconnect, device number 12 [ 868.878681][T10179] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 869.500371][ T5139] usb 2-1: new high-speed USB device number 20 using dummy_hcd [ 869.578998][T10142] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 869.582583][T11249] loop3: detected capacity change from 0 to 32768 [ 869.608710][T11249] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (11249) [ 869.648318][T11249] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 869.659191][T11249] BTRFS info (device loop3): using sha256 (sha256-generic) checksum algorithm [ 869.674461][T11249] BTRFS info (device loop3): using free-space-tree [ 869.830095][ T5139] usb 2-1: Using ep0 maxpacket: 32 [ 869.956840][ T5139] usb 2-1: New USB device found, idVendor=cdc9, idProduct=0b7e, bcdDevice=cb.6e [ 869.968804][ T5139] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 870.040327][ T5139] usb 2-1: config 0 descriptor?? [ 870.137417][ T5139] usb-storage 2-1:0.0: USB Mass Storage device detected [ 870.332128][T10466] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 870.484762][ T5139] usb 2-1: USB disconnect, device number 20 [ 870.579741][ T7945] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 870.980654][ T7945] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 870.992409][ T7945] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 871.002842][ T7945] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 871.016309][ T7945] usb 1-1: New USB device found, idVendor=28bd, idProduct=0071, bcdDevice= 0.00 [ 871.025804][ T7945] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 871.062981][ T7945] usb 1-1: config 0 descriptor?? [ 871.207258][T10217] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 871.347356][T11278] loop0: detected capacity change from 0 to 256 [ 871.492361][T11278] FAT-fs (loop0): Directory bread(block 64) failed [ 871.500284][T11278] FAT-fs (loop0): Directory bread(block 65) failed [ 871.507423][T11278] FAT-fs (loop0): Directory bread(block 66) failed [ 871.514239][T11278] FAT-fs (loop0): Directory bread(block 67) failed [ 871.521331][T11278] FAT-fs (loop0): Directory bread(block 68) failed [ 871.528266][T11278] FAT-fs (loop0): Directory bread(block 69) failed [ 871.535233][T11278] FAT-fs (loop0): Directory bread(block 70) failed [ 871.542183][T11278] FAT-fs (loop0): Directory bread(block 71) failed [ 871.549321][T11278] FAT-fs (loop0): Directory bread(block 72) failed [ 871.556395][T11278] FAT-fs (loop0): Directory bread(block 73) failed [ 871.927688][ T7945] uclogic 0003:28BD:0071.0011: interface is invalid, ignoring [ 872.156105][ T10] usb 1-1: USB disconnect, device number 11 [ 872.403179][T11297] loop1: detected capacity change from 0 to 512 [ 872.500564][T11297] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 872.514322][T11297] ext4 filesystem being mounted at /root/syzkaller-testdir1215762737/syzkaller.gSMdJH/68/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 872.958902][T11302] syz-executor.4 (11302): attempted to duplicate a private mapping with mremap. This is not supported. [ 873.249223][T11303] loop2: detected capacity change from 0 to 2048 [ 873.382764][T11303] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 873.385701][T10217] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 873.417861][T11303] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 873.479103][T11303] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a002e01c, mo2=0002] [ 873.510482][T11303] System zones: 0-19 [ 873.530526][T11303] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 874.453432][ T7083] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 874.685177][T11313] loop3: detected capacity change from 0 to 40427 [ 874.761861][T11317] loop1: detected capacity change from 0 to 4096 [ 874.769334][T11313] F2FS-fs (loop3): invalid crc value [ 874.814818][T11313] F2FS-fs (loop3): Found nat_bits in checkpoint [ 875.004488][T11321] veth0_virt_wifi: entered promiscuous mode [ 875.011247][T11321] vlan2: entered promiscuous mode [ 875.123977][T11321] veth0_virt_wifi: left promiscuous mode [ 875.184038][T11313] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 875.226400][T11313] sctp: [Deprecated]: syz-executor.3 (pid 11313) Use of struct sctp_assoc_value in delayed_ack socket option. [ 875.226400][T11313] Use struct sctp_sack_info instead [ 875.341883][T11325] pimreg: entered allmulticast mode [ 875.374225][T11325] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.4'. [ 875.384084][T11325] tipc: Started in network mode [ 875.389487][T11325] tipc: Node identity acbb8606, cluster identity 4711 [ 875.396689][T11325] tipc: Node number set to 2897970694 [ 875.428219][T11325] pimreg: left allmulticast mode [ 875.930231][T11334] sctp: [Deprecated]: syz-executor.0 (pid 11334) Use of struct sctp_assoc_value in delayed_ack socket option. [ 875.930231][T11334] Use struct sctp_sack_info instead [ 875.996990][T11329] loop4: detected capacity change from 0 to 4096 [ 876.600493][T11338] loop1: detected capacity change from 0 to 512 [ 876.749618][T11338] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 876.763393][T11338] ext4 filesystem being mounted at /root/syzkaller-testdir1215762737/syzkaller.gSMdJH/70/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 876.887026][T11343] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 876.903335][T11343] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'. [ 877.179762][T10217] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 877.409755][T10466] syz-executor.3: attempt to access beyond end of device [ 877.409755][T10466] loop3: rw=524288, sector=45064, nr_sectors = 8 limit=40427 [ 877.427018][T10466] syz-executor.3: attempt to access beyond end of device [ 877.427018][T10466] loop3: rw=0, sector=45064, nr_sectors = 8 limit=40427 [ 877.571815][T11349] loop4: detected capacity change from 0 to 8 [ 877.624571][T10466] syz-executor.3: attempt to access beyond end of device [ 877.624571][T10466] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 877.999037][T11351] loop2: detected capacity change from 0 to 2048 [ 878.047282][T11355] loop0: detected capacity change from 0 to 512 [ 878.084162][T11355] EXT4-fs: Ignoring removed mblk_io_submit option [ 878.092005][T11355] EXT4-fs: Ignoring removed bh option [ 878.113755][T11351] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 878.155008][T11355] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 878.180013][T11355] EXT4-fs (loop0): orphan cleanup on readonly fs [ 878.187034][T11355] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -13 [ 878.246706][T11351] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 878.267356][T11355] EXT4-fs error (device loop0): ext4_clear_blocks:883: inode #13: comm syz-executor.0: attempt to clear invalid blocks 2 len 1 [ 878.343440][T11355] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1216: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 878.359541][T11355] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz-executor.0: invalid indirect mapped block 1819239214 (level 0) [ 878.404351][T11351] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a002e01c, mo2=0002] [ 878.434240][T11351] System zones: 0-19 [ 878.449104][T11351] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 878.578382][T11355] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz-executor.0: invalid indirect mapped block 1819239214 (level 1) [ 878.616764][T11355] EXT4-fs (loop0): 1 truncate cleaned up [ 878.622824][T11355] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 878.732748][T11355] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 878.949756][ T10] usb 2-1: new high-speed USB device number 21 using dummy_hcd [ 879.026837][ T7083] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 879.032879][ T4300] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 879.225310][ T4300] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 879.323037][T11367] sctp: [Deprecated]: syz-executor.4 (pid 11367) Use of struct sctp_assoc_value in delayed_ack socket option. [ 879.323037][T11367] Use struct sctp_sack_info instead [ 879.406652][ T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 879.415054][ T4300] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 879.418066][ T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 879.439081][ T10] usb 2-1: New USB device found, idVendor=056a, idProduct=0035, bcdDevice= 0.00 [ 879.449089][ T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 879.518139][ T10] usb 2-1: config 0 descriptor?? [ 879.607877][ T4300] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 879.893578][T11370] loop0: detected capacity change from 0 to 512 [ 880.005779][ T4300] bridge_slave_1: left allmulticast mode [ 880.011927][ T4300] bridge_slave_1: left promiscuous mode [ 880.019351][ T4300] bridge0: port 2(bridge_slave_1) entered disabled state [ 880.083365][ T4300] bridge_slave_0: left allmulticast mode [ 880.090597][ T4300] bridge_slave_0: left promiscuous mode [ 880.097558][ T4300] bridge0: port 1(bridge_slave_0) entered disabled state [ 880.163148][T11370] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 880.184180][T11370] ext4 filesystem being mounted at /root/syzkaller-testdir2887856335/syzkaller.DISyoH/68/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 880.855362][ T4300] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 880.881450][ T4300] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 880.890945][T10142] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 880.934300][ T4300] bond0 (unregistering): Released all slaves [ 882.334859][T11392] loop4: detected capacity change from 0 to 8 [ 882.417565][T11384] loop2: detected capacity change from 0 to 40427 [ 882.456564][ T10] usbhid 2-1:0.0: can't add hid device: -71 [ 882.463464][ T10] usbhid 2-1:0.0: probe with driver usbhid failed with error -71 [ 882.482918][T11384] F2FS-fs (loop2): invalid crc value [ 882.484956][ T779] IPVS: starting estimator thread 0... [ 882.517617][T11384] F2FS-fs (loop2): Found nat_bits in checkpoint [ 882.556974][ T10] usb 2-1: USB disconnect, device number 21 [ 882.586984][T11394] IPVS: using max 192 ests per chain, 9600 per kthread [ 882.796329][T11391] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.0'. [ 882.851470][T11384] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 883.017087][ T5087] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 883.054566][T11400] sctp: [Deprecated]: syz-executor.2 (pid 11400) Use of struct sctp_assoc_value in delayed_ack socket option. [ 883.054566][T11400] Use struct sctp_sack_info instead [ 883.100006][ T5087] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 883.124973][ T5087] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 883.250459][ T5087] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 883.277223][ T5087] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 883.296220][ T5087] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 883.452691][ T4300] hsr_slave_0: left promiscuous mode [ 883.472294][ T4300] hsr_slave_1: left promiscuous mode [ 883.485671][ T4300] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 883.494024][ T4300] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 883.520426][ T4300] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 883.528865][ T4300] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 883.602756][ T4300] veth1_macvtap: left promiscuous mode [ 883.609337][ T4300] veth0_macvtap: left allmulticast mode [ 883.615195][ T4300] veth0_macvtap: left promiscuous mode [ 883.621285][ T4300] veth1_vlan: left promiscuous mode [ 883.627060][ T4300] veth0_vlan: left promiscuous mode [ 884.503825][T11408] loop0: detected capacity change from 0 to 2048 [ 884.593077][T11408] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 884.688073][T11408] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 884.749771][ T4300] team0 (unregistering): Port device team_slave_1 removed [ 884.765400][T11408] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a002e01c, mo2=0002] [ 884.785662][ T4300] team0 (unregistering): Port device team_slave_0 removed [ 884.815357][T11408] System zones: 0-19 [ 884.920746][T11408] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 884.989063][ T10] usb 2-1: new high-speed USB device number 22 using dummy_hcd [ 885.165402][T11415] loop4: detected capacity change from 0 to 512 [ 885.277851][T10142] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 885.292111][ T10] usb 2-1: Using ep0 maxpacket: 32 [ 885.456181][ T51] Bluetooth: hci1: command tx timeout [ 885.573477][ T7083] syz-executor.2: attempt to access beyond end of device [ 885.573477][ T7083] loop2: rw=524288, sector=45064, nr_sectors = 8 limit=40427 [ 885.574179][T11415] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 885.590050][ T7083] syz-executor.2: attempt to access beyond end of device [ 885.590050][ T7083] loop2: rw=0, sector=45064, nr_sectors = 8 limit=40427 [ 885.603637][T11415] ext4 filesystem being mounted at /root/syzkaller-testdir1984203382/syzkaller.upsGrd/68/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 885.680259][ T10] usb 2-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7 [ 885.689966][ T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 885.707762][ T10] usb 2-1: config 0 descriptor?? [ 885.766508][ T10] gspca_main: sunplus-2.14.0 probing 041e:400b [ 885.838211][ T7083] syz-executor.2: attempt to access beyond end of device [ 885.838211][ T7083] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 886.247212][T10179] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 887.095103][T11398] chnl_net:caif_netlink_parms(): no params data found [ 887.492552][ T51] Bluetooth: hci1: command tx timeout [ 887.967861][T11411] loop1: detected capacity change from 0 to 32768 [ 887.991373][T11411] bcachefs (/dev/loop1): error validating superblock: Invalid superblock section replicas_v0: invalid device 2 in entry user: 1/1 [2] [ 887.991373][T11411] replicas_v0 (size 24): [ 887.991373][T11411] btree: 1 [0] journal: 1 [0] user: 1 [2] [ 887.991373][T11411] [ 888.020561][ T10] gspca_sunplus: reg_w_riv err -110 [ 888.026488][ T10] sunplus 2-1:0.0: probe with driver sunplus failed with error -110 [ 888.631563][ T4677] usb 2-1: USB disconnect, device number 22 [ 889.597638][ T51] Bluetooth: hci1: command tx timeout [ 889.821397][T11398] bridge0: port 1(bridge_slave_0) entered blocking state [ 889.829566][T11398] bridge0: port 1(bridge_slave_0) entered disabled state [ 889.839045][T11398] bridge_slave_0: entered allmulticast mode [ 889.848743][T11398] bridge_slave_0: entered promiscuous mode [ 889.868222][T11398] bridge0: port 2(bridge_slave_1) entered blocking state [ 889.876272][T11398] bridge0: port 2(bridge_slave_1) entered disabled state [ 889.884237][T11398] bridge_slave_1: entered allmulticast mode [ 889.899917][T11398] bridge_slave_1: entered promiscuous mode [ 889.917182][T11430] binder_alloc: 11429: binder_alloc_buf, no vma [ 890.365006][T11398] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 890.549298][T11398] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 890.740602][T11433] loop0: detected capacity change from 0 to 8 [ 890.886696][T11398] team0: Port device team_slave_0 added [ 890.951691][T11398] team0: Port device team_slave_1 added [ 891.219571][T11398] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 891.231589][T11398] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 891.262432][T11398] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 891.402172][T11398] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 891.410502][T11398] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 891.443027][T11398] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 891.647460][ T51] Bluetooth: hci1: command tx timeout [ 892.451143][T11441] binder_alloc: 11436: binder_alloc_buf, no vma [ 892.537344][T11398] hsr_slave_0: entered promiscuous mode [ 892.588287][T11398] hsr_slave_1: entered promiscuous mode [ 892.632892][T11398] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 892.642324][T11398] Cannot create hsr debugfs directory [ 893.238244][ T5087] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 893.248189][ T5087] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 893.257894][ T5087] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 893.271971][ T5087] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 893.286414][ T5087] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 893.296323][ T5087] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 893.526865][T11447] loop1: detected capacity change from 0 to 2048 [ 893.618856][T11447] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 893.672346][T11447] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 893.757311][ T5087] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 893.777212][ T5087] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 893.801769][ T5087] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 893.822427][ T5087] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 893.834328][T11447] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a002e01c, mo2=0002] [ 893.870217][ T5087] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 893.872667][T11447] System zones: 0-19 [ 893.897473][ T5087] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 893.974059][T11447] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 895.097802][ T4300] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 895.211867][T10217] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 895.266377][T11455] loop0: detected capacity change from 0 to 40427 [ 895.320166][T11455] F2FS-fs (loop0): invalid crc value [ 895.342823][ T4300] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 895.369066][T11455] F2FS-fs (loop0): Found nat_bits in checkpoint [ 895.376153][T11398] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 895.409303][ T51] Bluetooth: hci3: command tx timeout [ 895.657883][T11398] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 895.700305][T11398] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 895.709603][T11455] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 895.773172][ T4300] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 895.850013][T11463] sctp: [Deprecated]: syz-executor.0 (pid 11463) Use of struct sctp_assoc_value in delayed_ack socket option. [ 895.850013][T11463] Use struct sctp_sack_info instead [ 895.884766][T11398] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 895.917425][T11442] chnl_net:caif_netlink_parms(): no params data found [ 895.985041][ T4300] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 896.034443][T11464] loop1: detected capacity change from 0 to 512 [ 896.066436][ T51] Bluetooth: hci4: command tx timeout [ 896.293822][T11464] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 896.307599][T11464] ext4 filesystem being mounted at /root/syzkaller-testdir1215762737/syzkaller.gSMdJH/79/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 896.501932][ T4300] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 896.601476][ T4300] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 896.631630][T11450] chnl_net:caif_netlink_parms(): no params data found [ 896.718204][ T4300] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 896.824815][T10217] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 896.833081][ T4300] bridge0: port 3(netdevsim0) entered disabled state [ 896.878452][ T4300] netdevsim netdevsim2 netdevsim0 (unregistering): left allmulticast mode [ 896.887450][ T4300] netdevsim netdevsim2 netdevsim0 (unregistering): left promiscuous mode [ 896.896626][ T4300] bridge0: port 3(netdevsim0) entered disabled state [ 896.916610][ T4300] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 897.353885][ T4300] bridge_slave_1: left allmulticast mode [ 897.361296][ T4300] bridge_slave_1: left promiscuous mode [ 897.368196][ T4300] bridge0: port 2(bridge_slave_1) entered disabled state [ 897.423573][ T4300] bridge_slave_0: left allmulticast mode [ 897.429979][ T4300] bridge_slave_0: left promiscuous mode [ 897.437879][ T4300] bridge0: port 1(bridge_slave_0) entered disabled state [ 897.462743][ T4300] bridge_slave_1: left allmulticast mode [ 897.470840][ T4300] bridge_slave_1: left promiscuous mode [ 897.482095][ T4300] bridge0: port 2(bridge_slave_1) entered disabled state [ 897.494045][ T51] Bluetooth: hci3: command tx timeout [ 897.505506][ T4300] bridge_slave_0: left allmulticast mode [ 897.512501][ T4300] bridge_slave_0: left promiscuous mode [ 897.519435][ T4300] bridge0: port 1(bridge_slave_0) entered disabled state [ 898.083369][T10142] syz-executor.0: attempt to access beyond end of device [ 898.083369][T10142] loop0: rw=524288, sector=45064, nr_sectors = 8 limit=40427 [ 898.100742][T10142] syz-executor.0: attempt to access beyond end of device [ 898.100742][T10142] loop0: rw=0, sector=45064, nr_sectors = 8 limit=40427 [ 898.135718][ T51] Bluetooth: hci4: command tx timeout [ 898.388902][T10142] syz-executor.0: attempt to access beyond end of device [ 898.388902][T10142] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 899.129416][ T4300] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 899.157553][ T4300] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 899.178304][ T4300] bond0 (unregistering): Released all slaves [ 899.205490][ T4300] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 899.235622][ T4300] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 899.263107][ T4300] bond0 (unregistering): Released all slaves [ 899.297363][T11482] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'. [ 899.584354][ T51] Bluetooth: hci3: command tx timeout [ 899.860987][ T4300] tipc: Left network mode [ 899.883782][T11442] bridge0: port 1(bridge_slave_0) entered blocking state [ 899.894192][T11442] bridge0: port 1(bridge_slave_0) entered disabled state [ 899.902274][T11442] bridge_slave_0: entered allmulticast mode [ 899.912161][T11442] bridge_slave_0: entered promiscuous mode [ 899.982449][T11442] bridge0: port 2(bridge_slave_1) entered blocking state [ 899.990652][T11442] bridge0: port 2(bridge_slave_1) entered disabled state [ 899.998746][T11442] bridge_slave_1: entered allmulticast mode [ 900.008604][T11442] bridge_slave_1: entered promiscuous mode [ 900.053370][T11398] 8021q: adding VLAN 0 to HW filter on device bond0 [ 900.080474][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 900.088138][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 900.179672][ T43] usb 2-1: new high-speed USB device number 23 using dummy_hcd [ 900.206510][ T51] Bluetooth: hci4: command tx timeout [ 900.511022][T11442] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 900.608075][ T43] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 900.619592][ T43] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 900.631126][ T43] usb 2-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.00 [ 900.641018][ T43] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 900.668090][ T43] usb 2-1: config 0 descriptor?? [ 900.740172][T11442] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 900.770816][T11450] bridge0: port 1(bridge_slave_0) entered blocking state [ 900.778754][T11450] bridge0: port 1(bridge_slave_0) entered disabled state [ 900.786987][T11450] bridge_slave_0: entered allmulticast mode [ 900.796631][T11450] bridge_slave_0: entered promiscuous mode [ 900.885042][T11450] bridge0: port 2(bridge_slave_1) entered blocking state [ 900.896164][T11450] bridge0: port 2(bridge_slave_1) entered disabled state [ 900.908419][T11450] bridge_slave_1: entered allmulticast mode [ 900.918334][T11450] bridge_slave_1: entered promiscuous mode [ 901.122999][T11442] team0: Port device team_slave_0 added [ 901.202231][T11442] team0: Port device team_slave_1 added [ 901.231486][T11490] loop1: detected capacity change from 0 to 512 [ 901.257461][T11398] 8021q: adding VLAN 0 to HW filter on device team0 [ 901.403792][T11490] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 901.413006][T11490] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 901.422655][T11490] EXT4-fs (loop1): blocks per group (39) and clusters per group (32768) inconsistent [ 901.541401][ T8] bridge0: port 1(bridge_slave_0) entered blocking state [ 901.549375][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state [ 901.661560][T11450] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 901.698410][ T51] Bluetooth: hci3: command tx timeout [ 901.801240][T11450] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 901.830494][T11490] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 901.839882][T11490] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 901.898906][ T4300] hsr_slave_0: left promiscuous mode [ 901.924258][ T4300] hsr_slave_1: left promiscuous mode [ 901.948360][ T4300] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 901.956445][ T4300] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 901.968704][ T4300] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 901.976589][ T4300] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 902.029864][ T4300] hsr_slave_0: left promiscuous mode [ 902.065631][ T4300] hsr_slave_1: left promiscuous mode [ 902.070258][ T5087] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 902.087092][ T5087] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 902.096740][ T4300] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 902.099001][ T5087] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 902.104467][ T4300] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 902.119043][ T5087] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 902.134839][ T43] petalynx 0003:18B1:0037.0012: ignoring exceeding usage max [ 902.137089][ T4300] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 902.150435][ T4300] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 902.154091][ T43] petalynx 0003:18B1:0037.0012: item fetching failed at offset 3/5 [ 902.173270][ T5087] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 902.190447][ T5087] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 902.207947][ T4300] veth1_macvtap: left promiscuous mode [ 902.213732][ T4300] veth0_macvtap: left promiscuous mode [ 902.219865][ T43] petalynx 0003:18B1:0037.0012: parse failed [ 902.220240][ T4300] veth0_vlan: left promiscuous mode [ 902.226543][ T43] petalynx 0003:18B1:0037.0012: probe with driver petalynx failed with error -22 [ 902.245758][ T4300] veth1_macvtap: left promiscuous mode [ 902.251781][ T4300] veth0_macvtap: left promiscuous mode [ 902.258546][ T4300] veth1_vlan: left promiscuous mode [ 902.264128][ T4300] veth0_vlan: left promiscuous mode [ 902.289882][ T51] Bluetooth: hci4: command tx timeout [ 903.247461][ T4300] team0 (unregistering): Port device team_slave_1 removed [ 903.274712][ T4300] team0 (unregistering): Port device team_slave_0 removed [ 903.518798][ T10] usb 2-1: USB disconnect, device number 23 [ 903.802412][T11495] loop1: detected capacity change from 0 to 8 [ 904.195284][ T4300] team0 (unregistering): Port device team_slave_1 removed [ 904.282837][ T4300] team0 (unregistering): Port device team_slave_0 removed [ 904.307485][ T51] Bluetooth: hci2: command tx timeout [ 904.599545][T11442] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 904.607050][T11442] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 904.633572][T11442] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 904.670461][T11442] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 904.679414][T11442] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 904.707865][T11442] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 904.773710][ T8] bridge0: port 2(bridge_slave_1) entered blocking state [ 904.781573][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state [ 905.225028][T11450] team0: Port device team_slave_0 added [ 905.245629][T11450] team0: Port device team_slave_1 added [ 905.419915][T11497] loop1: detected capacity change from 0 to 256 [ 905.537925][T11497] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 905.590911][T11450] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 905.598406][T11450] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 905.624979][T11450] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 905.683055][T11442] hsr_slave_0: entered promiscuous mode [ 905.701939][T11442] hsr_slave_1: entered promiscuous mode [ 905.793813][T11450] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 905.801122][T11450] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 905.830063][T11450] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 906.368688][ T51] Bluetooth: hci2: command tx timeout [ 906.554632][T11450] hsr_slave_0: entered promiscuous mode [ 906.600703][T11450] hsr_slave_1: entered promiscuous mode [ 906.622446][T11450] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 906.630507][T11450] Cannot create hsr debugfs directory [ 907.232329][T11491] chnl_net:caif_netlink_parms(): no params data found [ 907.440541][T11506] loop1: detected capacity change from 0 to 2048 [ 907.549485][T11506] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 907.569214][T11506] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 907.654817][T11506] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a002e01c, mo2=0002] [ 907.712250][T11506] System zones: 0-19 [ 907.786661][T11506] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 908.427057][T11442] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 908.451701][ T51] Bluetooth: hci2: command tx timeout [ 908.542847][T11442] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 908.593099][T10217] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 908.671801][T11442] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 908.800087][T11442] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 908.893405][T11398] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 909.097524][T11518] loop1: detected capacity change from 0 to 512 [ 909.288460][T11518] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 909.302717][T11518] ext4 filesystem being mounted at /root/syzkaller-testdir1215762737/syzkaller.gSMdJH/87/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 909.307882][T11491] bridge0: port 1(bridge_slave_0) entered blocking state [ 909.325767][T11491] bridge0: port 1(bridge_slave_0) entered disabled state [ 909.334376][T11491] bridge_slave_0: entered allmulticast mode [ 909.344255][T11491] bridge_slave_0: entered promiscuous mode [ 909.408643][T11491] bridge0: port 2(bridge_slave_1) entered blocking state [ 909.416605][T11491] bridge0: port 2(bridge_slave_1) entered disabled state [ 909.424603][T11491] bridge_slave_1: entered allmulticast mode [ 909.434532][T11491] bridge_slave_1: entered promiscuous mode [ 909.618864][T11450] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 909.655214][T10217] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 909.655945][T11450] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 909.754308][T11491] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 909.812486][T11450] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 909.879773][T11491] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 909.916171][ T4300] bond0: (slave netdevsim3): Releasing backup interface [ 909.932987][ T4300] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 909.987168][T11450] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 910.085785][ T4300] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 910.309482][ T4300] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 910.342423][T11491] team0: Port device team_slave_0 added [ 910.465262][ T4300] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 910.525266][T11491] team0: Port device team_slave_1 added [ 910.541043][ T51] Bluetooth: hci2: command tx timeout [ 911.038867][T11398] veth0_vlan: entered promiscuous mode [ 911.062046][T11491] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 911.070868][T11491] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 911.100821][T11491] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 911.120084][ T4300] bridge_slave_1: left allmulticast mode [ 911.129322][ T4300] bridge_slave_1: left promiscuous mode [ 911.136734][ T4300] bridge0: port 2(bridge_slave_1) entered disabled state [ 911.199910][ T4300] bridge_slave_0: left allmulticast mode [ 911.207453][ T4300] bridge_slave_0: left promiscuous mode [ 911.214665][ T4300] bridge0: port 1(bridge_slave_0) entered disabled state [ 911.579323][T11526] loop1: detected capacity change from 0 to 40427 [ 911.789380][T11526] F2FS-fs (loop1): invalid crc value [ 911.877698][ T4300] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 911.890220][T11526] F2FS-fs (loop1): Found nat_bits in checkpoint [ 912.113962][ T4300] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 912.158784][ T4300] bond0 (unregistering): Released all slaves [ 912.178620][T11526] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 912.259242][T11491] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 912.266806][T11491] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 912.295426][T11491] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 912.357100][T11526] sctp: [Deprecated]: syz-executor.1 (pid 11526) Use of struct sctp_assoc_value in delayed_ack socket option. [ 912.357100][T11526] Use struct sctp_sack_info instead [ 912.644563][T11398] veth1_vlan: entered promiscuous mode [ 912.718415][T11491] hsr_slave_0: entered promiscuous mode [ 912.735802][T11491] hsr_slave_1: entered promiscuous mode [ 912.746660][T11491] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 912.754588][T11491] Cannot create hsr debugfs directory [ 912.778251][T11442] 8021q: adding VLAN 0 to HW filter on device bond0 [ 912.992620][ T4300] hsr_slave_0: left promiscuous mode [ 913.001110][ T4300] hsr_slave_1: left promiscuous mode [ 913.012637][ T4300] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 913.021492][ T4300] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 913.041543][ T4300] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 913.049533][ T4300] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 913.072251][ T4300] veth1_macvtap: left promiscuous mode [ 913.078243][ T4300] veth0_macvtap: left promiscuous mode [ 913.084301][ T4300] veth1_vlan: left promiscuous mode [ 913.090062][ T4300] veth0_vlan: left promiscuous mode [ 913.713392][ T4300] team0 (unregistering): Port device team_slave_1 removed [ 913.742398][ T4300] team0 (unregistering): Port device team_slave_0 removed [ 914.161619][T10217] syz-executor.1: attempt to access beyond end of device [ 914.161619][T10217] loop1: rw=524288, sector=45064, nr_sectors = 8 limit=40427 [ 914.177815][T10217] syz-executor.1: attempt to access beyond end of device [ 914.177815][T10217] loop1: rw=0, sector=45064, nr_sectors = 8 limit=40427 [ 914.359608][T10217] syz-executor.1: attempt to access beyond end of device [ 914.359608][T10217] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 914.501806][T11442] 8021q: adding VLAN 0 to HW filter on device team0 [ 914.781233][ T5124] bridge0: port 1(bridge_slave_0) entered blocking state [ 914.789198][ T5124] bridge0: port 1(bridge_slave_0) entered forwarding state [ 914.831899][ T5124] bridge0: port 2(bridge_slave_1) entered blocking state [ 914.839889][ T5124] bridge0: port 2(bridge_slave_1) entered forwarding state [ 914.878971][T11398] veth0_macvtap: entered promiscuous mode [ 915.058820][T11398] veth1_macvtap: entered promiscuous mode [ 915.593770][T11398] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 915.606392][T11398] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 915.616631][T11398] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 915.627556][T11398] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 915.643534][T11398] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 916.084724][T11398] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 916.097828][T11398] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 916.108196][T11398] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 916.120206][T11398] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 916.137862][T11398] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 916.263108][T11450] 8021q: adding VLAN 0 to HW filter on device bond0 [ 916.390199][T11398] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 916.399878][T11398] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 916.409242][T11398] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 916.419706][T11398] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 916.591622][T11450] 8021q: adding VLAN 0 to HW filter on device team0 [ 916.734053][ T4677] bridge0: port 1(bridge_slave_0) entered blocking state [ 916.742053][ T4677] bridge0: port 1(bridge_slave_0) entered forwarding state [ 916.886932][ T4677] bridge0: port 2(bridge_slave_1) entered blocking state [ 916.894734][ T4677] bridge0: port 2(bridge_slave_1) entered forwarding state [ 916.911541][T11491] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 917.106908][T11491] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 917.269988][T11491] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 917.344962][T11491] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 918.531499][T11442] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 919.010246][T11491] 8021q: adding VLAN 0 to HW filter on device bond0 [ 919.441690][T11491] 8021q: adding VLAN 0 to HW filter on device team0 [ 919.552260][ T10] bridge0: port 1(bridge_slave_0) entered blocking state [ 919.560242][ T10] bridge0: port 1(bridge_slave_0) entered forwarding state [ 919.697459][ T10] bridge0: port 2(bridge_slave_1) entered blocking state [ 919.705250][ T10] bridge0: port 2(bridge_slave_1) entered forwarding state [ 920.155193][T11450] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 920.192697][T11491] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 920.205334][T11491] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 920.868287][ T5087] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 920.875685][ T4300] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 920.878248][ T5087] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 920.916238][ T5087] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 920.963504][ T5087] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 921.007843][ T5087] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 921.031438][ T5087] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 921.060993][ T4300] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 921.295106][ T4300] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 921.367542][T11450] veth0_vlan: entered promiscuous mode [ 921.439800][ T4300] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 921.711926][T11450] veth1_vlan: entered promiscuous mode [ 922.119379][ T4300] bridge_slave_1: left allmulticast mode [ 922.125349][ T4300] bridge_slave_1: left promiscuous mode [ 922.139826][ T4300] bridge0: port 2(bridge_slave_1) entered disabled state [ 922.170587][ T4300] bridge_slave_0: left allmulticast mode [ 922.176642][ T4300] bridge_slave_0: left promiscuous mode [ 922.183409][ T4300] bridge0: port 1(bridge_slave_0) entered disabled state [ 922.782320][ T4300] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 922.804640][ T4300] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 922.836339][ T4300] bond0 (unregistering): Released all slaves [ 923.177230][ T5087] Bluetooth: hci0: command tx timeout [ 923.328265][T11450] veth0_macvtap: entered promiscuous mode [ 923.453629][T11450] veth1_macvtap: entered promiscuous mode [ 923.573880][T11491] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 923.755193][T11442] veth0_vlan: entered promiscuous mode [ 923.854741][ T4300] hsr_slave_0: left promiscuous mode [ 923.866795][ T4300] hsr_slave_1: left promiscuous mode [ 923.882486][ T4300] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 923.890592][ T4300] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 923.903513][ T4300] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 923.913140][ T4300] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 923.935794][ T4300] veth1_macvtap: left promiscuous mode [ 923.941735][ T4300] veth0_macvtap: left promiscuous mode [ 923.948533][ T4300] veth1_vlan: left promiscuous mode [ 923.954151][ T4300] veth0_vlan: left promiscuous mode [ 924.552858][ T4300] team0 (unregistering): Port device team_slave_1 removed [ 924.593286][ T4300] team0 (unregistering): Port device team_slave_0 removed [ 924.945644][T11555] chnl_net:caif_netlink_parms(): no params data found [ 925.033735][T11450] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 925.044885][T11450] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 925.055139][T11450] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 925.066062][T11450] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 925.081871][T11450] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 925.155051][T11442] veth1_vlan: entered promiscuous mode [ 925.251033][ T5087] Bluetooth: hci0: command tx timeout [ 925.346267][T11450] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 925.357193][T11450] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 925.367478][T11450] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 925.378307][T11450] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 925.393886][T11450] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 925.509571][T11450] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 925.520463][T11450] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 925.532162][T11450] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 925.541380][T11450] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 925.824943][T11442] veth0_macvtap: entered promiscuous mode [ 926.004555][T11442] veth1_macvtap: entered promiscuous mode [ 926.017308][T11491] veth0_vlan: entered promiscuous mode [ 926.135257][T11491] veth1_vlan: entered promiscuous mode [ 926.239491][ T3401] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 926.249240][ T3401] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 926.327938][T11442] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 926.338865][T11442] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 926.349113][T11442] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 926.359924][T11442] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 926.370156][T11442] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 926.380960][T11442] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 926.396878][T11442] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 926.491049][ T2848] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 926.499340][ T2848] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 926.535278][T11442] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 926.547689][T11442] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 926.558832][T11442] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 926.570403][T11442] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 926.581508][T11442] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 926.593372][T11442] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 926.611975][T11442] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 926.756027][T11491] veth0_macvtap: entered promiscuous mode [ 926.822552][T11491] veth1_macvtap: entered promiscuous mode [ 926.857693][T11442] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 926.867026][T11442] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 926.876266][T11442] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 926.885345][T11442] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 927.204686][T11555] bridge0: port 1(bridge_slave_0) entered blocking state [ 927.214606][T11555] bridge0: port 1(bridge_slave_0) entered disabled state [ 927.222741][T11555] bridge_slave_0: entered allmulticast mode [ 927.232435][T11555] bridge_slave_0: entered promiscuous mode [ 927.327732][ T5087] Bluetooth: hci0: command tx timeout [ 927.373275][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 927.384652][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 927.394900][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 927.406146][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 927.416416][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 927.427311][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 927.439064][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 927.450895][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 927.466805][T11491] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 927.479019][T11555] bridge0: port 2(bridge_slave_1) entered blocking state [ 927.490173][T11555] bridge0: port 2(bridge_slave_1) entered disabled state [ 927.498278][T11555] bridge_slave_1: entered allmulticast mode [ 927.508033][T11555] bridge_slave_1: entered promiscuous mode [ 927.795318][T11555] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 927.836590][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 927.847615][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 927.857894][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 927.868821][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 927.879979][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 927.893253][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 927.904171][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 927.915122][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 927.931075][T11491] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 927.958376][T11555] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 928.354186][T11555] team0: Port device team_slave_0 added [ 928.375360][T11491] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 928.386240][T11491] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 928.395497][T11491] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 928.407314][T11491] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 928.477138][T11555] team0: Port device team_slave_1 added [ 928.835306][T11555] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 928.843706][T11555] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 928.874916][T11555] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 929.019449][T11555] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 929.028369][T11555] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 929.055987][T11555] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 929.406654][ T5087] Bluetooth: hci0: command tx timeout [ 929.671814][T11555] hsr_slave_0: entered promiscuous mode [ 929.757220][T11555] hsr_slave_1: entered promiscuous mode [ 929.794498][T11555] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 929.802529][T11555] Cannot create hsr debugfs directory [ 930.685654][ T4300] IPVS: stop unused estimator thread 0... [ 931.249512][T11603] loop3: detected capacity change from 0 to 4096 [ 931.280257][T11603] ntfs3: Unknown parameter '' [ 931.695403][T11555] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 931.782921][T11555] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 931.836358][T11555] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 931.960009][T11555] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 933.396194][T11555] 8021q: adding VLAN 0 to HW filter on device bond0 [ 933.563389][ T2848] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 933.571823][ T2848] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 933.793199][T11555] 8021q: adding VLAN 0 to HW filter on device team0 [ 933.912342][ T5124] bridge0: port 1(bridge_slave_0) entered blocking state [ 933.920427][ T5124] bridge0: port 1(bridge_slave_0) entered forwarding state [ 934.070284][ T4677] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 934.078603][ T4677] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 934.683283][T11555] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 934.694173][T11555] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 936.450474][ T5124] bridge0: port 2(bridge_slave_1) entered blocking state [ 936.458419][ T5124] bridge0: port 2(bridge_slave_1) entered forwarding state [ 937.096337][ T2848] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 937.108209][ T2848] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 937.398998][ T2848] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 937.407522][ T2848] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 937.565629][T11555] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 938.278317][ T5124] IPVS: starting estimator thread 0... [ 938.326330][ T5124] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 938.340283][ T5124] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 938.378607][T11658] IPVS: using max 192 ests per chain, 9600 per kthread [ 938.473683][T11555] veth0_vlan: entered promiscuous mode [ 938.682236][T11660] binder_alloc: 11652: binder_alloc_buf, no vma [ 938.710370][T11555] veth1_vlan: entered promiscuous mode [ 938.881227][ T3364] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 938.889595][ T3364] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 939.037688][T11555] veth0_macvtap: entered promiscuous mode [ 939.191825][T11555] veth1_macvtap: entered promiscuous mode [ 939.557772][T11555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 939.570575][T11555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 939.581192][T11555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 939.592031][T11555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 939.602215][T11555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 939.613147][T11555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 939.623300][T11555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 939.634217][T11555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 939.644422][T11555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 939.655281][T11555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 939.672874][T11555] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 939.803786][T11555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 939.814784][T11555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 939.826457][T11555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 939.837600][T11555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 939.847800][T11555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 939.858583][T11555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 939.869979][T11555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 939.881171][T11555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 939.891424][T11555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 939.902198][T11555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 939.919260][T11555] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 940.048236][T11555] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 940.057560][T11555] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 940.066785][T11555] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 940.077461][T11555] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 942.039099][ T29] audit: type=1326 audit(1718122749.803:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11683 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62d967cea9 code=0x7fc00000 [ 942.702580][ T29] audit: type=1326 audit(1718122750.463:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11683 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f62d967cea9 code=0x7fc00000 [ 943.845596][ C0] TCP: request_sock_TCP: Possible SYN flooding on port [::]:2. Sending cookies. [ 946.264064][T11733] fuse: Unknown parameter 'fd0x000000000000000c' [ 949.175084][ T3696] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 949.184206][ T3696] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 949.324478][T11760] syz-executor.3 (pid 11760) is setting deprecated v1 encryption policy; recommend upgrading to v2. [ 949.582238][T11760] fscrypt (sda1, inode 1948): Missing crypto API support for Adiantum (API name: "adiantum(xchacha12,aes)") [ 950.254286][ T3696] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 950.263221][ T3696] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 950.346237][ T7945] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 950.856678][ T7945] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 950.868257][ T7945] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 950.878786][ T7945] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 950.888283][ T7945] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 951.039928][ T7945] usb 1-1: config 0 descriptor?? [ 951.464701][T11770] loop2: detected capacity change from 0 to 2048 [ 951.618096][ T7945] hid (null): bogus close delimiter [ 951.729363][T11770] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 951.872957][ T7945] usb 1-1: language id specifier not provided by device, defaulting to English [ 952.541954][ T7945] uclogic 0003:256C:006D.0013: failed retrieving string descriptor #100: -71 [ 952.551804][ T7945] uclogic 0003:256C:006D.0013: failed retrieving pen parameters: -71 [ 952.560413][ T7945] uclogic 0003:256C:006D.0013: failed probing pen v1 parameters: -71 [ 952.572430][ T7945] uclogic 0003:256C:006D.0013: failed probing parameters: -71 [ 952.581562][ T7945] uclogic 0003:256C:006D.0013: probe with driver uclogic failed with error -71 [ 952.669608][ T7945] usb 1-1: USB disconnect, device number 12 [ 952.910522][T11782] veth0_vlan: entered allmulticast mode [ 953.724463][T11794] loop0: detected capacity change from 0 to 512 [ 953.867126][T11794] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz-executor.0: bg 0: block 393: padding at end of block bitmap is not set [ 953.979660][T11794] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6537: Corrupt filesystem [ 954.020047][T11794] EXT4-fs (loop0): 2 truncates cleaned up [ 954.026646][T11794] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 954.130876][T11794] netlink: 'syz-executor.0': attribute type 10 has an invalid length. [ 954.139663][T11794] net veth1_virt_wifi virt_wifi0: entered promiscuous mode [ 954.148221][T11794] bond0: (slave virt_wifi0): The slave device specified does not support setting the MAC address [ 954.159804][T11794] bond0: (slave virt_wifi0): Error -95 calling set_mac_address [ 954.543282][T11491] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 955.368323][T11810] loop1: detected capacity change from 0 to 2048 [ 955.371672][T11808] loop0: detected capacity change from 0 to 2048 [ 955.384286][T11450] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 955.388813][T11810] NILFS (loop1): invalid segment: Sequence number mismatch [ 955.402263][T11810] NILFS (loop1): trying rollback from an earlier position [ 955.470613][T11810] NILFS (loop1): recovery complete [ 955.483140][T11811] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 955.504639][T11808] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 956.834981][T11808] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz-executor.0: bg 0: block 234: padding at end of block bitmap is not set [ 956.924601][T11808] EXT4-fs (loop0): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 16 with error 117 [ 956.938035][T11808] EXT4-fs (loop0): This should not happen!! Data will be lost [ 956.938035][T11808] [ 958.433919][T11491] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 959.336934][T11834] syz-executor.3[11834] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 959.337578][T11834] syz-executor.3[11834] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 959.912316][ T29] audit: type=1326 audit(1718122767.683:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11837 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 959.955329][ T29] audit: type=1326 audit(1718122767.683:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11837 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 959.981381][ T29] audit: type=1326 audit(1718122767.723:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11837 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=97 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 960.004399][ C0] vkms_vblank_simulate: vblank timer overrun [ 960.013726][ T29] audit: type=1326 audit(1718122767.723:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11837 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 960.036902][ C0] vkms_vblank_simulate: vblank timer overrun [ 960.050561][ T29] audit: type=1326 audit(1718122767.723:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11837 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 960.716933][T11848] loop3: detected capacity change from 0 to 2048 [ 960.749324][T11848] NILFS (loop3): invalid segment: Sequence number mismatch [ 960.759991][T11848] NILFS (loop3): trying rollback from an earlier position [ 960.812704][T11848] NILFS (loop3): recovery complete [ 960.831891][T11850] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 961.517738][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 961.524441][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 963.733531][T11854] loop2: detected capacity change from 0 to 2048 [ 963.900474][T11854] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 964.233990][T11854] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz-executor.2: bg 0: block 234: padding at end of block bitmap is not set [ 964.279423][T11854] EXT4-fs (loop2): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 16 with error 117 [ 964.292622][T11854] EXT4-fs (loop2): This should not happen!! Data will be lost [ 964.292622][T11854] [ 964.702109][T11450] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 967.636665][T11894] loop2: detected capacity change from 0 to 2048 [ 967.672861][T11894] NILFS (loop2): invalid segment: Sequence number mismatch [ 967.680827][T11894] NILFS (loop2): trying rollback from an earlier position [ 967.765637][T11894] NILFS (loop2): recovery complete [ 967.829813][T11895] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 971.298988][T11912] usb usb5: usbfs: process 11912 (syz-executor.3) did not claim interface 0 before use [ 971.332646][T11906] loop4: detected capacity change from 0 to 2048 [ 971.578829][T11906] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 971.824672][T11923] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 972.009518][T11442] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 973.672732][ T29] audit: type=1326 audit(1718122781.423:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11940 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 973.696264][ T29] audit: type=1326 audit(1718122781.423:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11940 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 973.721119][ T29] audit: type=1326 audit(1718122781.443:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11940 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 973.744741][ T29] audit: type=1326 audit(1718122781.443:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11940 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 973.769879][ T29] audit: type=1326 audit(1718122781.463:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11940 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 973.886231][ T29] audit: type=1326 audit(1718122781.643:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11940 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 973.909790][ T29] audit: type=1326 audit(1718122781.653:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11940 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 973.933342][ T29] audit: type=1326 audit(1718122781.653:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11940 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 974.396888][T11947] loop2: detected capacity change from 0 to 1024 [ 974.423690][T11947] EXT4-fs: Ignoring removed nomblk_io_submit option [ 974.460827][T11947] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 974.470150][T11947] EXT4-fs (loop2): Test dummy encryption mode enabled [ 975.356099][T11947] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c855c01c, mo2=0003] [ 975.516819][T11947] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 975.753780][T11960] loop4: detected capacity change from 0 to 2048 [ 975.777377][T11960] NILFS (loop4): invalid segment: Sequence number mismatch [ 975.785061][T11960] NILFS (loop4): trying rollback from an earlier position [ 975.824533][T11960] NILFS (loop4): recovery complete [ 975.854885][T11962] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 977.236437][T11947] fscrypt (loop2): Missing crypto API support for AES-256-CBC-CTS (API name: "cts(cbc(aes))") [ 979.058509][T11450] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 980.363872][ T29] audit: type=1326 audit(1718122788.123:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11984 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe18067cea9 code=0x7ffc0000 [ 980.387080][ C0] vkms_vblank_simulate: vblank timer overrun [ 980.394537][ T29] audit: type=1326 audit(1718122788.123:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11984 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe18067cea9 code=0x7ffc0000 [ 980.417803][ C0] vkms_vblank_simulate: vblank timer overrun [ 980.433987][ T29] audit: type=1326 audit(1718122788.153:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11984 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe18067cea9 code=0x7ffc0000 [ 980.457612][ T29] audit: type=1326 audit(1718122788.163:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11984 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe18067cea9 code=0x7ffc0000 [ 980.481285][ T29] audit: type=1326 audit(1718122788.173:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11984 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe18067cea9 code=0x7ffc0000 [ 980.504360][ C0] vkms_vblank_simulate: vblank timer overrun [ 980.511174][ T29] audit: type=1326 audit(1718122788.173:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11984 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe18067cea9 code=0x7ffc0000 [ 980.534332][ C0] vkms_vblank_simulate: vblank timer overrun [ 980.554138][ T29] audit: type=1326 audit(1718122788.183:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11984 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe18067cea9 code=0x7ffc0000 [ 980.577887][ T29] audit: type=1326 audit(1718122788.183:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11984 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7fe18067cea9 code=0x7ffc0000 [ 980.600962][ C0] vkms_vblank_simulate: vblank timer overrun [ 980.609629][ T29] audit: type=1326 audit(1718122788.183:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11984 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe18067cea9 code=0x7ffc0000 [ 980.632809][ C0] vkms_vblank_simulate: vblank timer overrun [ 980.974928][T11990] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 981.652474][T11999] loop1: detected capacity change from 0 to 2048 [ 981.742713][T11999] NILFS (loop1): invalid segment: Sequence number mismatch [ 981.753048][T11999] NILFS (loop1): trying rollback from an earlier position [ 981.886574][T11999] NILFS (loop1): recovery complete [ 981.919604][T12001] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 983.462815][T12005] loop2: detected capacity change from 0 to 1024 [ 983.494959][T12005] EXT4-fs: Ignoring removed nomblk_io_submit option [ 983.516644][T12005] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 983.526101][T12005] EXT4-fs (loop2): Test dummy encryption mode enabled [ 983.621089][T12005] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c855c01c, mo2=0003] [ 983.716826][T12005] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 984.572827][T12005] fscrypt: AES-256-CBC-CTS using implementation "cts(cbc(ecb(aes-fixed-time)))" [ 985.065311][T11450] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 987.236465][ T29] audit: type=1326 audit(1718122795.013:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12026 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e68c7cea9 code=0x7ffc0000 [ 987.261978][ T29] audit: type=1326 audit(1718122795.023:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12026 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5e68c7cea9 code=0x7ffc0000 [ 987.285773][ T29] audit: type=1326 audit(1718122795.023:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12026 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e68c7cea9 code=0x7ffc0000 [ 987.312042][ T29] audit: type=1326 audit(1718122795.033:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12026 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e68c7cea9 code=0x7ffc0000 [ 987.335581][ T29] audit: type=1326 audit(1718122795.033:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12026 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5e68c7cea9 code=0x7ffc0000 [ 987.358755][ C1] vkms_vblank_simulate: vblank timer overrun [ 987.365716][ T29] audit: type=1326 audit(1718122795.053:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12026 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e68c7cea9 code=0x7ffc0000 [ 987.388921][ C1] vkms_vblank_simulate: vblank timer overrun [ 987.398042][ T29] audit: type=1326 audit(1718122795.063:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12026 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7f5e68c7cea9 code=0x7ffc0000 [ 987.421301][ C1] vkms_vblank_simulate: vblank timer overrun [ 987.428015][ T29] audit: type=1326 audit(1718122795.063:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12026 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e68c7cea9 code=0x7ffc0000 [ 988.220565][T12038] input: syz0 as /devices/virtual/input/input28 [ 988.956928][T12042] loop2: detected capacity change from 0 to 2048 [ 988.989559][T12042] NILFS (loop2): invalid segment: Sequence number mismatch [ 988.997761][T12042] NILFS (loop2): trying rollback from an earlier position [ 989.052486][T12042] NILFS (loop2): recovery complete [ 989.098874][T12043] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 992.061209][T12048] loop1: detected capacity change from 0 to 1024 [ 992.108073][T12048] EXT4-fs: Ignoring removed nomblk_io_submit option [ 992.158405][T12048] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 992.167881][T12048] EXT4-fs (loop1): Test dummy encryption mode enabled [ 992.353420][T12048] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c855c01c, mo2=0003] [ 992.460569][T12048] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 992.579158][T12055] loop4: detected capacity change from 0 to 512 [ 992.741700][T12055] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 992.752119][T12055] EXT4-fs (loop4): Number of reserved GDT blocks insanely large: 45824 [ 993.198015][T11555] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 993.408047][ T29] audit: type=1326 audit(1718122801.193:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12061 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 993.439105][ T29] audit: type=1326 audit(1718122801.203:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12061 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 993.465134][ T29] audit: type=1326 audit(1718122801.203:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12061 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 993.493258][ T29] audit: type=1326 audit(1718122801.213:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12061 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 993.516491][ C0] vkms_vblank_simulate: vblank timer overrun [ 993.532596][ T29] audit: type=1326 audit(1718122801.213:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12061 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 993.558798][ T29] audit: type=1326 audit(1718122801.213:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12061 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 993.581885][ C0] vkms_vblank_simulate: vblank timer overrun [ 993.589042][ T29] audit: type=1326 audit(1718122801.223:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12061 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 993.612673][ T29] audit: type=1326 audit(1718122801.223:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12061 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 993.635746][ C0] vkms_vblank_simulate: vblank timer overrun [ 993.651637][ T29] audit: type=1326 audit(1718122801.223:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12061 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 994.141705][T12073] loop4: detected capacity change from 0 to 128 [ 994.194822][T12073] ufs: You didn't specify the type of your ufs filesystem [ 994.194822][T12073] [ 994.194822][T12073] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 994.194822][T12073] [ 994.194822][T12073] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 994.226322][T12073] ufs: ufstype=old is supported read-only [ 994.299261][T12075] loop2: detected capacity change from 0 to 2048 [ 994.317016][T12073] ufs: ufs_fill_super(): fragment size 3263967611 is not a power of 2 [ 994.321996][T12075] NILFS (loop2): invalid segment: Sequence number mismatch [ 994.333192][T12075] NILFS (loop2): trying rollback from an earlier position [ 994.408033][T12075] NILFS (loop2): recovery complete [ 994.436536][T12076] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 999.853220][T12091] loop1: detected capacity change from 0 to 1024 [ 999.903509][T12091] EXT4-fs: Ignoring removed nomblk_io_submit option [ 999.986243][T12091] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 999.995372][T12091] EXT4-fs (loop1): Test dummy encryption mode enabled [ 1000.313614][T12091] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c855c01c, mo2=0003] [ 1000.336106][ T29] audit: type=1326 audit(1718122808.113:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12097 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 1000.360549][ T29] audit: type=1326 audit(1718122808.113:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12097 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 1000.384079][ T29] audit: type=1326 audit(1718122808.133:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12097 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 1000.418551][ T29] audit: type=1326 audit(1718122808.133:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12097 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 1000.442329][ T29] audit: type=1326 audit(1718122808.133:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12097 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 1000.500357][T12091] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1000.536722][ T29] audit: type=1326 audit(1718122808.303:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12097 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 1000.560282][ T29] audit: type=1326 audit(1718122808.303:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12097 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 1000.584216][ T29] audit: type=1326 audit(1718122808.303:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12097 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 1000.614703][ T29] audit: type=1326 audit(1718122808.303:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12097 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 1000.640380][ T29] audit: type=1326 audit(1718122808.303:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12097 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62d967cea9 code=0x7ffc0000 [ 1001.014195][T11555] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1001.624114][T12119] loop4: detected capacity change from 0 to 2048 [ 1001.645635][T12119] NILFS (loop4): invalid segment: Sequence number mismatch [ 1001.653405][T12119] NILFS (loop4): trying rollback from an earlier position [ 1001.683563][T12119] NILFS (loop4): recovery complete [ 1001.700888][T12122] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1004.700813][ C0] TCP: request_sock_TCP: Possible SYN flooding on port [::]:2. Sending cookies. [ 1005.545004][ T29] audit: type=1326 audit(1718122813.293:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12135 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 1005.570625][ T29] audit: type=1326 audit(1718122813.293:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12135 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 1005.594115][ C0] vkms_vblank_simulate: vblank timer overrun [ 1005.602851][ T29] audit: type=1326 audit(1718122813.303:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12135 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 1005.625925][ C0] vkms_vblank_simulate: vblank timer overrun [ 1005.641883][ T29] audit: type=1326 audit(1718122813.303:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12135 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 1005.665576][ T29] audit: type=1326 audit(1718122813.303:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12135 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 1005.688830][ C0] vkms_vblank_simulate: vblank timer overrun [ 1005.696567][ T29] audit: type=1326 audit(1718122813.303:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12135 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 1005.727370][ T29] audit: type=1326 audit(1718122813.303:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12135 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 1005.752992][ T29] audit: type=1326 audit(1718122813.303:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12135 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 1005.776342][ C0] vkms_vblank_simulate: vblank timer overrun [ 1005.783244][ T29] audit: type=1326 audit(1718122813.303:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12135 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 1005.806518][ C0] vkms_vblank_simulate: vblank timer overrun [ 1005.935623][T12138] loop2: detected capacity change from 0 to 1024 [ 1006.033087][T12138] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1006.086796][T12138] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 1006.096067][T12138] EXT4-fs (loop2): Test dummy encryption mode enabled [ 1006.219943][T12138] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c855c01c, mo2=0003] [ 1006.312278][T12138] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1006.472867][T12148] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 1006.488148][T12148] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 1006.498193][T12148] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 1006.547350][T12148] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 1006.592518][T12148] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 1006.608302][T12148] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 1007.099939][T11450] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1008.147148][T12147] chnl_net:caif_netlink_parms(): no params data found [ 1008.224081][T12170] loop4: detected capacity change from 0 to 512 [ 1008.437570][T12172] loop2: detected capacity change from 0 to 2048 [ 1008.519928][T12172] NILFS (loop2): invalid segment: Sequence number mismatch [ 1008.527730][T12172] NILFS (loop2): trying rollback from an earlier position [ 1008.592162][T12172] NILFS (loop2): recovery complete [ 1008.649144][T12175] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1009.006538][ T5087] Bluetooth: hci6: command tx timeout [ 1009.647263][T12177] Bluetooth: hci1: command 0x0406 tx timeout [ 1011.075016][ T4064] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1011.107858][T12148] Bluetooth: hci6: command tx timeout [ 1011.511377][ T4064] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1011.838046][ T4064] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1012.094347][ T4064] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1012.790930][ T4064] bridge_slave_1: left allmulticast mode [ 1012.798367][ T4064] bridge_slave_1: left promiscuous mode [ 1012.805282][ T4064] bridge0: port 2(bridge_slave_1) entered disabled state [ 1012.838896][T12191] loop0: detected capacity change from 0 to 1024 [ 1012.856624][ T29] audit: type=1326 audit(1718122820.633:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12192 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 1012.883131][ T29] audit: type=1326 audit(1718122820.633:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12192 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 1012.907343][ T29] audit: type=1326 audit(1718122820.683:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12192 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 1012.930901][ T29] audit: type=1326 audit(1718122820.693:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12192 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 1012.954365][ T29] audit: type=1326 audit(1718122820.723:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12192 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 1012.977860][ T29] audit: type=1326 audit(1718122820.723:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12192 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 1013.009833][ T4064] bridge_slave_0: left allmulticast mode [ 1013.016185][ T4064] bridge_slave_0: left promiscuous mode [ 1013.022890][ T4064] bridge0: port 1(bridge_slave_0) entered disabled state [ 1013.028500][T12191] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1013.086668][T12191] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 1013.095711][T12191] EXT4-fs (loop0): Test dummy encryption mode enabled [ 1013.157369][T12191] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c855c01c, mo2=0003] [ 1013.167445][T12148] Bluetooth: hci6: command tx timeout [ 1013.465732][T12191] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1013.780227][ T4064] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1013.885446][ T4064] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1013.951592][ T4064] bond0 (unregistering): Released all slaves [ 1014.162613][T11491] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1014.580907][T12147] bridge0: port 1(bridge_slave_0) entered blocking state [ 1014.589068][T12147] bridge0: port 1(bridge_slave_0) entered disabled state [ 1014.597214][T12147] bridge_slave_0: entered allmulticast mode [ 1014.607083][T12147] bridge_slave_0: entered promiscuous mode [ 1014.656213][T12220] loop1: detected capacity change from 0 to 2048 [ 1014.704906][T12220] NILFS (loop1): invalid segment: Sequence number mismatch [ 1014.712738][T12220] NILFS (loop1): trying rollback from an earlier position [ 1014.809523][T12220] NILFS (loop1): recovery complete [ 1014.820340][T12224] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1014.915180][T12147] bridge0: port 2(bridge_slave_1) entered blocking state [ 1014.923930][T12147] bridge0: port 2(bridge_slave_1) entered disabled state [ 1014.936995][T12147] bridge_slave_1: entered allmulticast mode [ 1014.949066][T12147] bridge_slave_1: entered promiscuous mode [ 1015.248428][T12148] Bluetooth: hci6: command tx timeout [ 1015.800274][T12147] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1016.854583][T12147] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1017.504502][ T4064] hsr_slave_0: left promiscuous mode [ 1017.554979][ T4064] hsr_slave_1: left promiscuous mode [ 1017.599525][ T4064] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1017.607971][ T4064] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1017.627208][ T4064] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1017.635005][ T4064] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1017.701421][ T4064] veth1_macvtap: left promiscuous mode [ 1017.707445][ T4064] veth0_macvtap: left promiscuous mode [ 1017.713454][ T4064] veth1_vlan: left promiscuous mode [ 1017.719250][ T4064] veth0_vlan: left promiscuous mode [ 1017.982088][ T29] audit: type=1326 audit(1718122825.753:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12228 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e68c7cea9 code=0x7ffc0000 [ 1018.008826][ T29] audit: type=1326 audit(1718122825.753:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12228 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e68c7cea9 code=0x7ffc0000 [ 1018.031914][ C1] vkms_vblank_simulate: vblank timer overrun [ 1018.051586][T12231] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1018.675726][ T4064] team0 (unregistering): Port device team_slave_1 removed [ 1018.786497][ T4064] team0 (unregistering): Port device team_slave_0 removed [ 1019.459850][T12147] team0: Port device team_slave_0 added [ 1019.541690][T12147] team0: Port device team_slave_1 added [ 1019.565168][T12244] bridge0: port 1(bridge_slave_0) entered disabled state [ 1019.886379][ T5087] Bluetooth: hci3: command 0x0406 tx timeout [ 1019.892715][ T5087] Bluetooth: hci4: command 0x0406 tx timeout [ 1019.962355][T12147] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1019.969714][T12147] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1019.995932][ C1] vkms_vblank_simulate: vblank timer overrun [ 1020.003835][T12147] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1020.141443][T12147] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1020.151353][T12147] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1020.177645][ C1] vkms_vblank_simulate: vblank timer overrun [ 1020.184951][T12147] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1020.426852][T12249] loop4: detected capacity change from 0 to 1024 [ 1020.536048][T12249] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1020.596652][T12249] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 1020.606151][T12249] EXT4-fs (loop4): Test dummy encryption mode enabled [ 1020.744839][T12249] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c855c01c, mo2=0003] [ 1020.790586][T12147] hsr_slave_0: entered promiscuous mode [ 1020.844149][T12147] hsr_slave_1: entered promiscuous mode [ 1020.878782][T12249] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1020.927150][T12147] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1020.935012][T12147] Cannot create hsr debugfs directory [ 1020.949958][T12247] syz-executor.1[12247] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1020.950592][T12247] syz-executor.1[12247] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1022.652990][T12259] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1023.477029][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 1023.483894][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 1023.632990][T11442] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1024.164577][T12262] loop1: detected capacity change from 0 to 2048 [ 1024.220410][T12262] NILFS (loop1): invalid segment: Sequence number mismatch [ 1024.228381][T12262] NILFS (loop1): trying rollback from an earlier position [ 1024.276965][T12262] NILFS (loop1): recovery complete [ 1024.326574][T12263] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1025.492554][T12148] Bluetooth: hci2: command 0x0406 tx timeout [ 1027.080106][T12147] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 1027.157959][T12147] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 1027.277812][T12147] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 1027.378016][T12147] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 1028.468595][ T29] audit: type=1326 audit(1718122836.173:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12272 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 1028.493383][ T29] audit: type=1326 audit(1718122836.173:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12272 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 1028.516849][ T29] audit: type=1326 audit(1718122836.223:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12272 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 1028.540486][ T29] audit: type=1326 audit(1718122836.263:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12272 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 1028.569329][ T29] audit: type=1326 audit(1718122836.273:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12272 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 1028.594617][ T29] audit: type=1326 audit(1718122836.283:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12272 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 1028.618189][ T29] audit: type=1326 audit(1718122836.283:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12272 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 1028.763343][ T29] audit: type=1326 audit(1718122836.473:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12272 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 1028.786632][ C1] vkms_vblank_simulate: vblank timer overrun [ 1028.793604][ T29] audit: type=1326 audit(1718122836.473:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12272 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 1028.817307][ T29] audit: type=1326 audit(1718122836.483:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12272 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1eb27cea9 code=0x7ffc0000 [ 1028.840403][ C1] vkms_vblank_simulate: vblank timer overrun [ 1031.135640][T12282] ===================================================== [ 1031.142906][T12282] BUG: KMSAN: uninit-value in dev_map_hash_lookup_elem+0x116/0x2e0 [ 1031.151015][T12282] dev_map_hash_lookup_elem+0x116/0x2e0 [ 1031.156769][T12282] bpf_map_lookup_elem+0x5c/0x80 [ 1031.161921][T12282] ___bpf_prog_run+0x13fe/0xe0f0 [ 1031.167059][T12282] __bpf_prog_run64+0xb5/0xe0 [ 1031.171943][T12282] bpf_trace_run4+0x150/0x340 [ 1031.176805][T12282] __bpf_trace_sched_switch+0x37/0x50 [ 1031.182441][T12282] __traceiter_sched_switch+0xb7/0x150 [ 1031.188134][T12282] __schedule+0x2eca/0x6bc0 [ 1031.192844][T12282] __cond_resched+0x49/0xc0 [ 1031.197529][T12282] do_recvmmsg+0x9fc/0xfd0 [ 1031.202214][T12282] __x64_sys_recvmmsg+0x397/0x490 [ 1031.207496][T12282] x64_sys_call+0xf6c/0x3b50 [ 1031.212321][T12282] do_syscall_64+0xcf/0x1e0 [ 1031.217066][T12282] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1031.223195][T12282] [ 1031.225621][T12282] Local variable stack created at: [ 1031.230840][T12282] __bpf_prog_run64+0x45/0xe0 [ 1031.235713][T12282] bpf_trace_run4+0x150/0x340 [ 1031.240584][T12282] [ 1031.243027][T12282] CPU: 1 PID: 12282 Comm: syz-executor.0 Not tainted 6.9.0-syzkaller-02707-g614da38e2f7a #0 [ 1031.253290][T12282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 1031.263501][T12282] ===================================================== [ 1031.270546][T12282] Disabling lock debugging due to kernel taint [ 1031.276821][T12282] Kernel panic - not syncing: kmsan.panic set ... [ 1031.283527][T12282] CPU: 1 PID: 12282 Comm: syz-executor.0 Tainted: G B 6.9.0-syzkaller-02707-g614da38e2f7a #0 [ 1031.295228][T12282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 1031.305398][T12282] Call Trace: [ 1031.308787][T12282] [ 1031.311831][T12282] dump_stack_lvl+0x216/0x2d0 [ 1031.316695][T12282] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1031.322669][T12282] dump_stack+0x1e/0x30 [ 1031.326992][T12282] panic+0x4e2/0xcd0 [ 1031.331062][T12282] ? kmsan_get_metadata+0xf1/0x1d0 [ 1031.336347][T12282] kmsan_report+0x2d5/0x2e0 [ 1031.341006][T12282] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 1031.347278][T12282] ? __msan_warning+0x95/0x120 [ 1031.352181][T12282] ? dev_map_hash_lookup_elem+0x116/0x2e0 [ 1031.358087][T12282] ? bpf_map_lookup_elem+0x5c/0x80 [ 1031.363464][T12282] ? ___bpf_prog_run+0x13fe/0xe0f0 [ 1031.368739][T12282] ? __bpf_prog_run64+0xb5/0xe0 [ 1031.373750][T12282] ? bpf_trace_run4+0x150/0x340 [ 1031.378752][T12282] ? __bpf_trace_sched_switch+0x37/0x50 [ 1031.384500][T12282] ? __traceiter_sched_switch+0xb7/0x150 [ 1031.390318][T12282] ? __schedule+0x2eca/0x6bc0 [ 1031.395159][T12282] ? __cond_resched+0x49/0xc0 [ 1031.400002][T12282] ? do_recvmmsg+0x9fc/0xfd0 [ 1031.404764][T12282] ? __x64_sys_recvmmsg+0x397/0x490 [ 1031.410252][T12282] ? x64_sys_call+0xf6c/0x3b50 [ 1031.415309][T12282] ? do_syscall_64+0xcf/0x1e0 [ 1031.420288][T12282] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1031.426606][T12282] ? kmsan_get_metadata+0x146/0x1d0 [ 1031.432087][T12282] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1031.438075][T12282] ? kmsan_get_metadata+0x146/0x1d0 [ 1031.443448][T12282] ? kmsan_get_metadata+0x146/0x1d0 [ 1031.448872][T12282] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1031.454843][T12282] ? try_to_wake_up+0xa27/0x1920 [ 1031.459962][T12282] ? kmsan_get_metadata+0x146/0x1d0 [ 1031.465314][T12282] ? kmsan_get_metadata+0x146/0x1d0 [ 1031.470665][T12282] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1031.476636][T12282] __msan_warning+0x95/0x120 [ 1031.481367][T12282] dev_map_hash_lookup_elem+0x116/0x2e0 [ 1031.487087][T12282] ? __pfx_dev_map_hash_lookup_elem+0x10/0x10 [ 1031.493323][T12282] bpf_map_lookup_elem+0x5c/0x80 [ 1031.498461][T12282] ___bpf_prog_run+0x13fe/0xe0f0 [ 1031.503566][T12282] ? kmsan_get_metadata+0x146/0x1d0 [ 1031.508961][T12282] __bpf_prog_run64+0xb5/0xe0 [ 1031.513814][T12282] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1031.519792][T12282] ? __pfx___bpf_prog_run64+0x10/0x10 [ 1031.525422][T12282] ? __pfx___bpf_prog_run64+0x10/0x10 [ 1031.530959][T12282] bpf_trace_run4+0x150/0x340 [ 1031.535792][T12282] ? kmsan_get_metadata+0x146/0x1d0 [ 1031.541161][T12282] __bpf_trace_sched_switch+0x37/0x50 [ 1031.546715][T12282] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 1031.552969][T12282] __traceiter_sched_switch+0xb7/0x150 [ 1031.558625][T12282] __schedule+0x2eca/0x6bc0 [ 1031.563287][T12282] ? kmsan_get_metadata+0x146/0x1d0 [ 1031.568636][T12282] ? ___sys_recvmsg+0x255/0x840 [ 1031.573669][T12282] ? kmsan_get_metadata+0x146/0x1d0 [ 1031.579038][T12282] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1031.585014][T12282] ? filter_irq_stacks+0x60/0x1a0 [ 1031.590238][T12282] ? kmsan_internal_check_memory+0x98/0x560 [ 1031.596343][T12282] __cond_resched+0x49/0xc0 [ 1031.601003][T12282] do_recvmmsg+0x9fc/0xfd0 [ 1031.605609][T12282] ? stack_depot_save_flags+0x2c/0x6e0 [ 1031.611224][T12282] ? kmsan_internal_set_shadow_origin+0x66/0xe0 [ 1031.617679][T12282] __x64_sys_recvmmsg+0x397/0x490 [ 1031.622894][T12282] ? kmsan_get_metadata+0x146/0x1d0 [ 1031.628252][T12282] x64_sys_call+0xf6c/0x3b50 [ 1031.633018][T12282] do_syscall_64+0xcf/0x1e0 [ 1031.637786][T12282] ? clear_bhb_loop+0x25/0x80 [ 1031.642649][T12282] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1031.648734][T12282] RIP: 0033:0x7f5e68c7cea9 [ 1031.653358][T12282] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 1031.673140][T12282] RSP: 002b:00007f5e699420c8 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1031.681707][T12282] RAX: ffffffffffffffda RBX: 00007f5e68db4050 RCX: 00007f5e68c7cea9 [ 1031.689809][T12282] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1031.697922][T12282] RBP: 00007f5e68cebff4 R08: 0000000000000000 R09: 0000000000000000 [ 1031.706021][T12282] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000 [ 1031.714130][T12282] R13: 000000000000006e R14: 00007f5e68db4050 R15: 00007ffc715f2ac8 [ 1031.722247][T12282] [ 1033.186010][T12282] Shutting down cpus with NMI [ 1033.191118][T12282] Kernel Offset: disabled [ 1033.195525][T12282] Rebooting in 86400 seconds..