last executing test programs: 6.436557658s ago: executing program 1: syz_mount_image$squashfs(&(0x7f0000000380), &(0x7f0000000200)='./file0\x00', 0x0, &(0x7f00000043c0)=ANY=[], 0x2, 0x1a0, &(0x7f0000000600)="$eJzs0L9rE2Ecx/H397knPypUiYpDBQ1YPC9Um7uqg1NwipADBxfBoCGNTTFR08tgSwtdpCDV/gs61VEdnEQUnIuD4KA3uUkzFAdxkMhdngb8F8rzGu7D9wt39+XTjnpRDvi7t9qkQsrhMJ8RNHBaRjulRvnWzD9Nbo2Cq2beNPnS5FS0vHKv0em0lopXihT+WwC/0t14Fb3mhGIgVJCve6vNhtwJGVboqvmQQo3SU5w6Pe8ZU3qS47dxGLqbXCPfE7cGR2b73Yez0fLK+cVuY6G10LofBHOXyxfL5UvmHhDviSies4YXklNMeGtk6jze0YeYEcRrq9hRpQHZOls7zrkzMwOUt8sQ4YM7IPddt4vqBmfJ30qOr3JMeIETMl1jQqG5u9hplavIdfVGfP1F/84o8uuOc6H5oDO/cVPJn+x2RXbz4v8g4/oEJZ+5pBqO8pGNmOmYasx2TCa5913yl/1e9XryfGWmk5yCLI8a/f6Sn4VPokMCNyQowGT6OZXeVYD35p39Ir6NG7Esy7Isy7Isy7IOvn8BAAD//1SjXvE=") 5.445924951s ago: executing program 0: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x11, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000ffffffff000000000000000085000000a8000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000000000000850000007500000095"], &(0x7f0000000b00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x11, &(0x7f0000000200)=ANY=[], &(0x7f0000000b00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) 5.361726174s ago: executing program 0: r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48b, &(0x7f0000002100)={0x1, 'ip6gre0\x00'}, 0x18) setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000000)={0x1, 'dummy0\x00'}, 0x18) 5.268404158s ago: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x1}, 0x0, 0x0, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) readv(r0, &(0x7f0000000080), 0x0) write$binfmt_script(0xffffffffffffffff, 0x0, 0x0) dup(0xffffffffffffffff) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x480000bce) syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f00000013c0), 0xffffffffffffffff) sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f00000014c0)={&(0x7f0000001380)={0x10, 0x0, 0x0, 0x800000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48054}, 0x44) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000f8) write$binfmt_script(0xffffffffffffffff, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x28011, 0xffffffffffffffff, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0) write$dsp(r1, &(0x7f00000001c0)="5cba91a4", 0xffffffd9) ioctl$SNDCTL_DSP_SYNC(r1, 0x5001, 0x0) ioctl$SNDCTL_DSP_RESET(r1, 0x5000, 0x0) 5.240710523s ago: executing program 1: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) mount$overlay(0x0, 0x0, 0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @local}}, 0x24) sendmmsg(r0, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000010010000"], 0x18, 0xe000}, 0x5}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000001880)=[{{0x0, 0x2, 0x0}}], 0xf000, 0x10002, 0x0) 5.106260913s ago: executing program 1: bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8}, 0x48) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000380)={[{@journal_dev={'journal_dev', 0x3d, 0x9}}, {@min_batch_time={'min_batch_time', 0x3d, 0x2}}, {@usrquota}, {@journal_dev={'journal_dev', 0x3d, 0x2}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x8}}, {@jqfmt_vfsold}, {@usrjquota, 0x5}, {@min_batch_time={'min_batch_time', 0x3d, 0xa9f}}, {@nodiscard}]}, 0xff, 0x451, &(0x7f0000000d00)="$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") sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f00000002c0)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) landlock_create_ruleset(0x0, 0x0, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r3, 0x8914, &(0x7f0000000340)={'batadv_slave_0\x00', 0x1}) syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000200)={[{@lazytime}, {@resuid={'resuid', 0x3d, 0xee01}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@nombcache}, {@quota}, {@quota}]}, 0xff, 0x443, &(0x7f0000000940)="$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") mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x0, 0x0) mount$bind(&(0x7f0000000280)='./file0\x00', &(0x7f0000000440)='./file0/../file0/file0\x00', 0x0, 0x2809c11, 0x0) mount$bind(&(0x7f00000006c0)='./file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0xadc51, 0x0) mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000400)='./file0/../file0/file0\x00', 0x0, 0x2885013, 0x0) r4 = syz_open_procfs(0x0, &(0x7f00000001c0)='mounts\x00') read$FUSE(r4, &(0x7f000000c1c0)={0x2020}, 0x2020) r5 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r5, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file0/../file0\x00', 0x0) open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) 5.069454709s ago: executing program 0: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4) sendmmsg$inet(r0, &(0x7f0000000ec0)=[{{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000180)}, {&(0x7f0000000d40)="316f825a3d29f96a2093a917017b4cd300000000bee70035ed313e19d6dd1fb41a20baf7f7343067fd40cdd4b16742e94b62f4eb1c5d9faab7f3028100ae8180db94b9de7456ae62b0e6fe7766a0842912179154a96fa88e161d4adf77a486e10d1d50e44155790748b7226fa4bb5d77e85729336ba6369a4c33", 0x7a}], 0x2}}, {{&(0x7f0000000040)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10, &(0x7f0000000840)=[{&(0x7f00000002c0)="b5960437b4d340f9fd6adcdd04ecf56c02abe178b7f13618a24db1d4fb0860319dbff2b5012bcba0f1106f85018477ac75b7780be3ca92da6b3a", 0x3a}, {&(0x7f0000000300)="0f58aaef1a4a46a6a6721b2419f513f461168c6886594d1caf46d961fad8f5a89f8210425725ee1f65743d444ff6d589cdf9cfc8b88945a912ce90bc0e63dd99aca2c86f", 0x44}, {0x0}, {0x0}], 0x4, &(0x7f00000005c0)}}, {{0x0, 0x0, &(0x7f0000000e00)=[{&(0x7f0000000940)="1a3aea00d80d146a8530d8fc515967214a680f76cc9c30ab50b02e2a2d91ef8a28edb7f523a5fc8c95c887da52531aff92f1e055c1c939ed106af67283d9b9830367a88ab26e844a8e53a4765546cacbd6d0de", 0x53}], 0x1, &(0x7f0000000e80)}}], 0x3, 0x0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000003c0)={@in={{0x2, 0x0, @local}}, 0x0, 0x0, 0x23, 0x0, "093f38050b94725997f7ff898a3f9ab16a8731bf2ce9e46bca4cef5a7c35015b7a97f697e89d86377518bf274943a186c89a051c531b5ad251ff1e26b7fe42b3eb4ddd4dc049ad87c56cd0c3628976cc"}, 0xd8) sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27) 3.95486863s ago: executing program 1: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10) r1 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue1\x00'}) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r1, 0x404c534a, &(0x7f0000000040)) r2 = socket$inet6_mptcp(0xa, 0x1, 0x106) setsockopt$inet6_int(r2, 0x29, 0x21, 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r1, 0x40605346, &(0x7f00000000c0)) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_FLUSH(r3, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000480)={0x28, 0x4, 0x6, 0x301, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x28}}, 0x0) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000040), r4) sendmsg$NLBL_CIPSOV4_C_ADD(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0100000000000000000001000000080001000000000004000480080002000100000018000c80149e2180080009000000000008000a000000000028000880240007800800050000000000080006"], 0x68}}, 0x0) sendmsg$IPSET_CMD_SWAP(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYBLOB="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"], 0x64}, 0x1, 0x0, 0x0, 0x800}, 0x4048000) r6 = socket$inet(0xa, 0x801, 0x84) listen(r6, 0x8) r7 = accept4(r6, 0x0, 0x0, 0x0) write$binfmt_elf64(r7, 0x0, 0x78) 3.935084883s ago: executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x0, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}]}], {0x14}}, 0xa0}}, 0x0) 3.883743311s ago: executing program 2: syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x800714, &(0x7f00000003c0)={[{@dioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0x7}}, {@quota}, {@noinit_itable}, {@errors_continue}, {@errors_continue}, {@errors_remount}, {@delalloc}, {@auto_da_alloc}, {@norecovery}, {@errors_continue}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}]}, 0xee, 0x442, &(0x7f0000000d00)="$eJzs281vG0UbAPBn10n6vv1KKKW0oYVAQUR8JE1aoAcuIJA4gIQEh3IMSVqFug1qgkSrCAJC5YgqcUcckfgLOMEFASckrnBHlSqIkFo4Ba29m9punObDrkP9+0nbznjHnnk8O97xTBxA1xrK/kkidkfErxHRX83WFxiq/ndjaWHy76WFySSWl9/4I6mUu760MFkULZ63K88MpxHpJ0leSb25i5fOTpTL0xfy/Oj8uXdH5y5eenrm3MSZ6TPT58dPnjxxfOy5Z8efaUmcWVzXBz+YPXzolbeuvDZ56srbP36dtffAker52jhaZSgL/M/lisZzj7W6sg7bU5NOejrYEDakFBFZd/VWxn9/lOJm5/XHyx93tHFAW2X3ph3NTy8uA3exJDrdAqAziht99v23OO7Q1GNbuPZC9QtQFveN/Kie6Yk0L9PbxvqHIuLU4j9fZEe0aR0CAKDWt9n856nV5n9pHKgptzffQxmIiHsiYl9E3BsR+yPivohK2fsj4uAG62/cGrp1/pNe3VRg65TN/57P97bq53/F7C8GSnluTyX+3uT0THn6WP6eDEfvjiw/tkYd3730y2fNztXO/7Ijq7+YC+btuNrTsEA3NTE/0apJ6bWPIgZ7Vos/WdkJSCLiUEQMbuyl9xaJmSe+Otys0O3jX0ML9pmWv4x4vNr/i9EQfyFZe39y9H9Rnj42WlwVt/rp58uvN6t/S/G3QNb/O+uv/4YS/X8ltfu1cxuv4/Jvnzb9TrPZ678vebOyZ92XP/b+xPz8hbGIvuTVSr7u8fGbzy3yRfks/uGjq4//fflzsvgfiIjsIj4SEQ9GxEN52x+OiEci4uga8f/w4qPvbD7+9srin1r182/l+h+o7/+NJ0pnv/+mWf3r6/8TldRw/kjl8+821tvArbx3AAAA8F+RRsTuSNKRlXSajoxU/4Z/f+xMy7Nz80+enn3v/FT1NwID0ZsWK139NeuhY8li/orV/Hi+VlycP56vG39e+n8lPzI5W57qcOzQ7XY1Gf+Z30udbh3Qdn6vBd2rcfynHWoHcOe5/0P3Mv6hexn/0L1WG/8fNuTtBcDdyf0fupfxD93L+IfuZfxDV9rK7/olujkR6bZoRrsScXBbNKNziU5/MgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALTGvwEAAP//KivtwQ==") r0 = creat(&(0x7f0000001d80)='./bus\x00', 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) pwritev(r1, &(0x7f00000008c0)=[{&(0x7f0000000180)="a7c0e1", 0x3}], 0x1, 0x0, 0x0) write$FUSE_ATTR(r0, &(0x7f0000000600)={0x78}, 0x78) 3.840476408s ago: executing program 3: openat$uinput(0xffffffffffffff9c, 0x0, 0x802, 0x0) openat$uinput(0xffffffffffffff9c, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) madvise(&(0x7f00003c1000/0x1000)=nil, 0xdfc3efff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) 3.735388994s ago: executing program 0: socket$nl_generic(0x10, 0x3, 0x10) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff018}, {0x6}]}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = socket$alg(0x26, 0x5, 0x0) r3 = inotify_init1(0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000003f40)=ANY=[@ANYBLOB="140000001000010000000000000000000900000a74000000060a0b0400000000000000000200000048000480200001800700010063740000140002800800024000000004080004400000000f24000180090001006d6173710000000014000280080002400000000808000344"], 0x9c}, 0x1, 0x0, 0x0, 0x4004011}, 0x44000) close_range(r3, 0xffffffffffffffff, 0x0) bind$alg(r2, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha384\x00'}, 0x58) r5 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r5, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8) setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r5, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xca}, 0x8) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x7c}}, 0x0) sendmsg$NFT_BATCH(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)={{0x14}, [@NFT_MSG_NEWRULE={0x38, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2, 0x0, 0xfffe}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x60}, 0x1, 0x0, 0x0, 0x880}, 0x10) r7 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r8 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301) ioctl$USBDEVFS_FREE_STREAMS(r8, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002303080003000000000002000020d3"]) openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x400000, 0x0) socket(0x0, 0x3, 0xfffffffe) syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r7) 3.655965397s ago: executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x11, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000ffffffff000000000000000085000000a8000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000000000000850000007500000095"], &(0x7f0000000b00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x11, &(0x7f0000000200)=ANY=[], &(0x7f0000000b00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) 3.200143267s ago: executing program 1: r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48b, &(0x7f0000002100)={0x1, 'ip6gre0\x00'}, 0x18) setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000000)={0x1, 'dummy0\x00'}, 0x18) 3.198761337s ago: executing program 3: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) mount$overlay(0x0, 0x0, 0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @local}}, 0x24) sendmmsg(r0, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18, 0xe000}, 0x5}], 0x1, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000001880)=[{{0x0, 0x2, 0x0}}], 0xf000, 0x10002, 0x0) 3.035475372s ago: executing program 3: r0 = socket(0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) syz_open_dev$MSR(0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0}, './bus\x00'}) socket$inet6(0xa, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) read$msr(0xffffffffffffffff, 0x0, 0x0) fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) open(&(0x7f0000000280)='.\x00', 0x0, 0x0) syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) add_key$user(&(0x7f0000000200), &(0x7f00000005c0), 0x0, 0x0, 0xfffffffffffffffd) keyctl$dh_compute(0x2, &(0x7f0000000100), 0x0, 0x0, 0x0) 3.018522995s ago: executing program 1: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000000f14010000000000000000000c0045"], 0x1c}}, 0x0) syz_io_uring_setup(0x0, 0x0, &(0x7f0000000140), 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54}) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f00000001c0)={@map=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0) bind$inet6(0xffffffffffffffff, 0x0, 0x0) 2.98549303s ago: executing program 2: bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8}, 0x48) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000380)={[{@journal_dev={'journal_dev', 0x3d, 0x9}}, {@min_batch_time={'min_batch_time', 0x3d, 0x2}}, {@usrquota}, {@journal_dev={'journal_dev', 0x3d, 0x2}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x8}}, {@jqfmt_vfsold}, {@usrjquota, 0x5}, {@min_batch_time={'min_batch_time', 0x3d, 0xa9f}}, {@nodiscard}]}, 0xff, 0x451, &(0x7f0000000d00)="$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") sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f00000002c0)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) landlock_create_ruleset(0x0, 0x0, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r3, 0x8914, &(0x7f0000000340)={'batadv_slave_0\x00', 0x1}) mount$bind(0x0, &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x0, 0x0) mount$bind(&(0x7f0000000280)='./file0\x00', &(0x7f0000000440)='./file0/../file0/file0\x00', 0x0, 0x2809c11, 0x0) mount$bind(&(0x7f00000006c0)='./file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0xadc51, 0x0) mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000400)='./file0/../file0/file0\x00', 0x0, 0x2885013, 0x0) r4 = syz_open_procfs(0x0, &(0x7f00000001c0)='mounts\x00') read$FUSE(r4, &(0x7f000000c1c0)={0x2020}, 0x2020) r5 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r5, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file0/../file0\x00', 0x0) open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) 2.257985492s ago: executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000900000000000000213f0000c50000000e800000850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f00000002c0)='contention_end\x00', r1}, 0x10) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0) mmap(&(0x7f0000002000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) write$cgroup_int(r0, &(0x7f0000000280), 0x12) sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, 0x0, 0x0) 1.837349017s ago: executing program 2: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x0, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}]}], {0x14}}, 0xa0}}, 0x0) 1.777922845s ago: executing program 2: openat$uinput(0xffffffffffffff9c, 0x0, 0x802, 0x0) openat$uinput(0xffffffffffffff9c, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) madvise(&(0x7f00003c1000/0x1000)=nil, 0xdfc3efff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) 1.760424418s ago: executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = socket(0x3c, 0x2, 0x400) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r1}, './bus\x00'}) r4 = socket$inet6(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x4c0, 0x320, 0x8, 0x7f02ae, 0x0, 0x200, 0x3f0, 0x2e8, 0x2e8, 0x3f0, 0x2e8, 0x3, 0x0, {[{{@uncond, 0x0, 0x300, 0x320, 0x0, {}, [@common=@unspec=@bpf1={{0x230}, @fd}, @common=@hl={{0x28}}]}, @unspec=@NOTRACK={0x20}}, {{@ipv6={@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, @private2, [], [], 'veth0_to_team\x00', 'netdevsim0\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE1={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x520) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r5 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000000)='source', &(0x7f0000000100)='c:::\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0) r6 = open(&(0x7f0000000280)='.\x00', 0x2402, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) syz_genetlink_get_family_id$tipc2(&(0x7f0000000300), 0xffffffffffffffff) r7 = add_key$user(&(0x7f0000000380), &(0x7f0000000000), &(0x7f00000003c0)='X', 0x1, 0xfffffffffffffffe) r8 = add_key$user(&(0x7f0000000200), 0x0, &(0x7f00000000c0), 0x0, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000100)={r7, r8, r8}, 0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={'crct10dif\x00\x00\x00 \x00\x00\x00+\xcc\xff%\xd2cTH,\x00'}}) fcntl$notify(r6, 0x402, 0x8000003d) fcntl$setsig(r6, 0xa, 0x21) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x4000010, 0xffffffffffffffff, 0x4000) pread64(r1, &(0x7f000001a240)=""/102400, 0x19000, 0x100008) setreuid(0x0, r2) 883.071063ms ago: executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10) r1 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue1\x00'}) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r1, 0x404c534a, &(0x7f0000000040)) r2 = socket$inet6_mptcp(0xa, 0x1, 0x106) setsockopt$inet6_int(r2, 0x29, 0x21, 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r1, 0x40605346, &(0x7f00000000c0)) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_FLUSH(r3, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000480)={0x28, 0x4, 0x6, 0x301, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x28}}, 0x0) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000040), r4) sendmsg$NLBL_CIPSOV4_C_ADD(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0100000000000000000001000000080001000000000004000480080002000100000018000c80149e2180080009000000000008000a000000000028000880240007800800050000000000080006"], 0x68}}, 0x0) sendmsg$IPSET_CMD_SWAP(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYBLOB="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"], 0x64}, 0x1, 0x0, 0x0, 0x800}, 0x4048000) r6 = socket$inet(0xa, 0x801, 0x84) listen(r6, 0x8) r7 = accept4(r6, 0x0, 0x0, 0x0) write$binfmt_elf64(r7, 0x0, 0x78) 860.744777ms ago: executing program 2: syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000340)=ANY=[], 0x2, 0x7bc, &(0x7f0000000a80)="$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") bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88, 0x8b}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x0, &(0x7f0000000200)=0x4) bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0xa) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) keyctl$clear(0x11, 0xfffffffffffffffd) writev(r1, &(0x7f00000000c0), 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@dev, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@private0, 0x0, 0x33}, 0x0, @in6=@empty, 0x0, 0x0, 0x0, 0x7}}, 0xe8) sendmmsg(0xffffffffffffffff, &(0x7f0000000480), 0x2e9, 0x0) keyctl$chown(0x4, 0x0, 0x0, 0x0) socket$key(0xf, 0x3, 0x2) 698.399812ms ago: executing program 4: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) mount$overlay(0x0, 0x0, 0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @local}}, 0x24) sendmmsg(r0, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18, 0xe000}, 0x5}], 0x1, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000001880)=[{{0x0, 0x2, 0x0}}], 0xf000, 0x10002, 0x0) 625.519373ms ago: executing program 4: r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48b, &(0x7f0000002100)={0x1, 'ip6gre0\x00'}, 0x18) setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000000)={0x1, 'dummy0\x00'}, 0x18) 128.922569ms ago: executing program 4: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x11, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000ffffffff000000000000000085000000a8000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000000000000850000007500000095"], &(0x7f0000000b00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x11, &(0x7f0000000200)=ANY=[], &(0x7f0000000b00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) 80.206007ms ago: executing program 2: syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x800714, &(0x7f00000003c0)={[{@dioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0x7}}, {@quota}, {@noinit_itable}, {@errors_continue}, {@errors_continue}, {@errors_remount}, {@delalloc}, {@auto_da_alloc}, {@norecovery}, {@errors_continue}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}]}, 0xee, 0x442, &(0x7f0000000d00)="$eJzs281vG0UbAPBn10n6vv1KKKW0oYVAQUR8JE1aoAcuIJA4gIQEh3IMSVqFug1qgkSrCAJC5YgqcUcckfgLOMEFASckrnBHlSqIkFo4Ba29m9punObDrkP9+0nbznjHnnk8O97xTBxA1xrK/kkidkfErxHRX83WFxiq/ndjaWHy76WFySSWl9/4I6mUu760MFkULZ63K88MpxHpJ0leSb25i5fOTpTL0xfy/Oj8uXdH5y5eenrm3MSZ6TPT58dPnjxxfOy5Z8efaUmcWVzXBz+YPXzolbeuvDZ56srbP36dtffAker52jhaZSgL/M/lisZzj7W6sg7bU5NOejrYEDakFBFZd/VWxn9/lOJm5/XHyx93tHFAW2X3ph3NTy8uA3exJDrdAqAziht99v23OO7Q1GNbuPZC9QtQFveN/Kie6Yk0L9PbxvqHIuLU4j9fZEe0aR0CAKDWt9n856nV5n9pHKgptzffQxmIiHsiYl9E3BsR+yPivohK2fsj4uAG62/cGrp1/pNe3VRg65TN/57P97bq53/F7C8GSnluTyX+3uT0THn6WP6eDEfvjiw/tkYd3730y2fNztXO/7Ijq7+YC+btuNrTsEA3NTE/0apJ6bWPIgZ7Vos/WdkJSCLiUEQMbuyl9xaJmSe+Otys0O3jX0ML9pmWv4x4vNr/i9EQfyFZe39y9H9Rnj42WlwVt/rp58uvN6t/S/G3QNb/O+uv/4YS/X8ltfu1cxuv4/Jvnzb9TrPZ678vebOyZ92XP/b+xPz8hbGIvuTVSr7u8fGbzy3yRfks/uGjq4//fflzsvgfiIjsIj4SEQ9GxEN52x+OiEci4uga8f/w4qPvbD7+9srin1r182/l+h+o7/+NJ0pnv/+mWf3r6/8TldRw/kjl8+821tvArbx3AAAA8F+RRsTuSNKRlXSajoxU/4Z/f+xMy7Nz80+enn3v/FT1NwID0ZsWK139NeuhY8li/orV/Hi+VlycP56vG39e+n8lPzI5W57qcOzQ7XY1Gf+Z30udbh3Qdn6vBd2rcfynHWoHcOe5/0P3Mv6hexn/0L1WG/8fNuTtBcDdyf0fupfxD93L+IfuZfxDV9rK7/olujkR6bZoRrsScXBbNKNziU5/MgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALTGvwEAAP//KivtwQ==") r0 = creat(&(0x7f0000001d80)='./bus\x00', 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) pwritev(r1, &(0x7f00000008c0)=[{&(0x7f0000000180)="a7c0e1", 0x3}], 0x1, 0x0, 0x0) write$FUSE_ATTR(r0, &(0x7f0000000600)={0x78}, 0x78) 58.17365ms ago: executing program 4: mkdir(&(0x7f0000000180)='./file0\x00', 0x0) r0 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', &(0x7f0000000080), 0x18) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000540)=@v2={0x2, @aes256, 0x0, '\x00', @c}) 0s ago: executing program 4: munlockall() r0 = socket(0x11, 0x3, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000005c0)={'gre0\x00', 0x0}) bind$packet(r0, &(0x7f0000000180)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @dev}, 0x14) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000240)=0xe9, 0x4) sendmsg$netlink(r0, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000340)=ANY=[@ANYBLOB="03011400012989290e358000ad0001140000002f0600ac141418e0000003808a8972bd0b72e410820c520f061fe4fdfe4b889430ebb52997e36e039b1c598825f80100e3c06376c33076a167d514fa570a440261a67a34a07605c93a194946bc6283f4"], 0xdd12}], 0x1}, 0x0) kernel console output (not intermixed with test programs): journal. Quota mode: writeback. [ 274.854986][ T7115] ext4 filesystem being mounted at /root/syzkaller-testdir4036145714/syzkaller.p9cM5q/180/bus supports timestamps until 2038 (0x7fffffff) [ 274.989133][ T3797] EXT4-fs (loop4): unmounting filesystem. [ 275.841031][ T7135] loop0: detected capacity change from 0 to 512 [ 275.893946][ T7138] netlink: 'syz-executor.1': attribute type 12 has an invalid length. [ 276.042514][ T26] audit: type=1326 audit(1718855410.936:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7136 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f86d767cf29 code=0x0 [ 276.073357][ T7135] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 276.090764][ T7135] EXT4-fs (loop0): 1 truncate cleaned up [ 276.106976][ T7109] device syz_tun entered promiscuous mode [ 276.108742][ T7144] loop4: detected capacity change from 0 to 16 [ 276.118253][ T7109] device vlan2 entered promiscuous mode [ 276.119203][ T7135] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 276.137307][ T7109] device syz_tun left promiscuous mode [ 276.161535][ T7144] erofs: (device loop4): mounted with root inode @ nid 36. [ 276.285012][ T7144] erofs: (device loop4): z_erofs_extent_lookback: bogus lookback distance @ nid 36 [ 277.122593][ T7144] erofs: (device loop4): z_erofs_lz4_decompress_mem: failed to decompress -18 in[46, 4050] out[1851] [ 277.201168][ T7144] erofs: (device loop4): z_erofs_read_folio: failed to read, err [-117] [ 277.231210][ T5615] EXT4-fs (loop0): unmounting filesystem. [ 277.326469][ T7152] rtc_cmos 00:00: Alarms can be up to one day in the future [ 277.754975][ T7162] loop1: detected capacity change from 0 to 256 [ 277.765151][ T7162] exfat: Deprecated parameter 'utf8' [ 278.002992][ T7162] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x987a2e96, utbl_chksum : 0xe619d30d) [ 278.948653][ T7143] loop3: detected capacity change from 0 to 32768 [ 280.748825][ T7193] loop2: detected capacity change from 0 to 512 [ 280.768827][ T7195] loop3: detected capacity change from 0 to 764 [ 280.791858][ T7195] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 281.246069][ T7193] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 281.255839][ T7193] ext4 filesystem being mounted at /root/syzkaller-testdir2591718394/syzkaller.YGXXNs/204/bus supports timestamps until 2038 (0x7fffffff) [ 281.499613][ T3567] EXT4-fs (loop2): unmounting filesystem. [ 281.586932][ T7204] netlink: 'syz-executor.1': attribute type 12 has an invalid length. [ 281.671456][ T26] audit: type=1326 audit(1718855416.566:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7203 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f86d767cf29 code=0x0 [ 283.288169][ T7217] loop4: detected capacity change from 0 to 256 [ 283.296793][ T7217] exfat: Deprecated parameter 'utf8' [ 283.908078][ T7219] loop0: detected capacity change from 0 to 256 [ 283.915369][ T7219] exfat: Unknown parameter 'discar.' [ 286.388462][ T7217] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x987a2e96, utbl_chksum : 0xe619d30d) [ 288.956730][ T7256] loop0: detected capacity change from 0 to 65536 [ 289.036085][ T4263] libceph: connect (1)[c::]:6789 error -101 [ 289.042278][ T4263] libceph: mon0 (1)[c::]:6789 connect error [ 289.064447][ T7256] XFS (loop0): Mounting V5 Filesystem [ 289.223065][ T7256] XFS (loop0): Ending clean mount [ 289.236522][ T7256] XFS (loop0): Quotacheck needed: Please wait. [ 289.311987][ T4000] libceph: connect (1)[c::]:6789 error -101 [ 289.329889][ T4000] libceph: mon0 (1)[c::]:6789 connect error [ 289.339231][ T7256] XFS (loop0): Quotacheck: Done. [ 289.393127][ T7234] loop2: detected capacity change from 0 to 32768 [ 289.517923][ T7258] ceph: No mds server is up or the cluster is laggy [ 290.011391][ T4264] libceph: connect (1)[c::]:6789 error -101 [ 290.153585][ T4264] libceph: mon0 (1)[c::]:6789 connect error [ 290.177093][ T7234] XFS (loop2): Mounting V5 Filesystem [ 290.373915][ T7234] XFS (loop2): Ending clean mount [ 290.451546][ T5615] XFS (loop0): Unmounting Filesystem [ 290.583823][ T7285] loop4: detected capacity change from 0 to 256 [ 290.595885][ T7285] exfat: Unknown parameter 'discar.' [ 290.616183][ T3567] XFS (loop2): Unmounting Filesystem [ 291.294799][ T7287] loop3: detected capacity change from 0 to 1024 [ 291.354215][ T7287] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 291.365617][ T7287] EXT4-fs (loop3): unmounting filesystem. [ 291.410727][ T7270] loop1: detected capacity change from 0 to 40427 [ 291.438046][ T7270] F2FS-fs (loop1): invalid crc value [ 291.439424][ T7296] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 291.615213][ T26] audit: type=1326 audit(1718855426.506:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7295 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f251507cf29 code=0x0 [ 291.645740][ T7270] F2FS-fs (loop1): Found nat_bits in checkpoint [ 293.476803][ T7319] loop4: detected capacity change from 0 to 256 [ 293.549974][ T7270] F2FS-fs (loop1): Cannot turn on quotas: -2 on 1 [ 293.688936][ T7323] loop3: detected capacity change from 0 to 512 [ 293.740879][ T7323] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 293.750476][ T7323] EXT4-fs (loop3): 1 truncate cleaned up [ 293.756146][ T7323] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 294.054967][ T7327] loop4: detected capacity change from 0 to 65536 [ 294.236509][ T7327] XFS (loop4): Mounting V5 Filesystem [ 294.284923][ T3997] libceph: connect (1)[c::]:6789 error -101 [ 294.291459][ T3997] libceph: mon0 (1)[c::]:6789 connect error [ 294.295206][ T7327] XFS (loop4): Ending clean mount [ 294.311350][ T7327] XFS (loop4): Quotacheck needed: Please wait. [ 295.187467][ T7327] XFS (loop4): Quotacheck: Done. [ 295.401134][ T3997] libceph: connect (1)[c::]:6789 error -101 [ 295.407237][ T3997] libceph: mon0 (1)[c::]:6789 connect error [ 295.419767][ T7329] ceph: No mds server is up or the cluster is laggy [ 295.942996][ T3566] EXT4-fs (loop3): unmounting filesystem. [ 296.041548][ T3797] XFS (loop4): Unmounting Filesystem [ 296.129271][ T7354] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 296.172640][ T7354] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.3'. [ 296.836687][ T7361] device syz_tun entered promiscuous mode [ 296.842882][ T7361] device vlan2 entered promiscuous mode [ 296.861262][ T7361] device syz_tun left promiscuous mode [ 299.152705][ T7369] 9pnet: Could not find request transport: fd0xffffffffffffffff [ 299.968941][ T7389] loop0: detected capacity change from 0 to 64 [ 304.948491][ T7390] loop2: detected capacity change from 0 to 64 [ 304.968648][ T7392] tmpfs: Unknown parameter 'file_umask' [ 305.100756][ T7390] hfs: unable to open extent tree [ 305.100756][ T7389] hfs: unable to open extent tree [ 305.106220][ T7390] hfs: can't find a HFS filesystem on dev loop2 [ 305.111296][ T7389] hfs: can't find a HFS filesystem on dev loop0 [ 305.607784][ T7405] loop4: detected capacity change from 0 to 65536 [ 305.662853][ T7] libceph: connect (1)[c::]:6789 error -101 [ 305.668916][ T7] libceph: mon0 (1)[c::]:6789 connect error [ 305.703189][ T7405] XFS (loop4): Mounting V5 Filesystem [ 305.711503][ T7] libceph: connect (1)[c::]:6789 error -101 [ 305.732806][ T7422] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 305.744696][ T7405] XFS (loop4): Ending clean mount [ 305.753596][ T7405] XFS (loop4): Quotacheck needed: Please wait. [ 305.821478][ T7422] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.1'. [ 305.875712][ T7] libceph: mon0 (1)[c::]:6789 connect error [ 305.909844][ T7405] XFS (loop4): Quotacheck: Done. [ 309.728248][ T7] libceph: connect (1)[c::]:6789 error -101 [ 309.749997][ T7] libceph: mon0 (1)[c::]:6789 connect error [ 309.759603][ T4082] libceph: connect (1)[c::]:6789 error -101 [ 309.803482][ T7431] loop2: detected capacity change from 0 to 256 [ 309.814678][ T7431] exfat: Deprecated parameter 'utf8' [ 309.898309][ T7427] 9pnet: Could not find request transport: fd0xffffffffffffffff [ 310.020798][ T7431] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x987a2e96, utbl_chksum : 0xe619d30d) [ 310.516996][ T7407] ceph: No mds server is up or the cluster is laggy [ 310.530441][ T4082] libceph: mon0 (1)[c::]:6789 connect error [ 310.752415][ T3797] XFS (loop4): Unmounting Filesystem [ 310.848000][ T4076] libceph: connect (1)[c::]:6789 error -101 [ 310.854528][ T4076] libceph: mon0 (1)[c::]:6789 connect error [ 311.301601][ T7444] syz-executor.3[7444] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 311.301700][ T7444] syz-executor.3[7444] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 311.800114][ T3583] Bluetooth: hci3: command 0x0406 tx timeout [ 312.228613][ T7449] device syz_tun entered promiscuous mode [ 312.234652][ T7449] device vlan0 entered promiscuous mode [ 312.262230][ T7449] device syz_tun left promiscuous mode [ 313.051852][ T7455] loop3: detected capacity change from 0 to 512 [ 313.129316][ T7455] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 313.180854][ T7455] EXT4-fs (loop3): 1 truncate cleaned up [ 313.186576][ T7455] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 313.209064][ T7463] netlink: 'syz-executor.0': attribute type 12 has an invalid length. [ 314.195300][ T7] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 314.282768][ T3566] EXT4-fs (loop3): unmounting filesystem. [ 314.569888][ T7] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 314.642697][ T7469] loop3: detected capacity change from 0 to 65536 [ 314.669825][ T7] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 314.689854][ T7] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 314.699572][ T7] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 314.712939][ T7] usb 2-1: config 0 descriptor?? [ 314.757218][ T7469] XFS (loop3): Mounting V5 Filesystem [ 314.822085][ T7469] XFS (loop3): Ending clean mount [ 314.832528][ T7469] XFS (loop3): Quotacheck needed: Please wait. [ 314.852707][ T7453] loop4: detected capacity change from 0 to 32768 [ 314.890830][ T7469] XFS (loop3): Quotacheck: Done. [ 314.927750][ T7453] XFS (loop4): Mounting V5 Filesystem [ 315.523191][ T7493] loop0: detected capacity change from 0 to 256 [ 315.530577][ T7493] exfat: Deprecated parameter 'utf8' [ 316.068197][ T7493] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x987a2e96, utbl_chksum : 0xe619d30d) [ 316.299582][ T3566] XFS (loop3): Unmounting Filesystem [ 316.312493][ T7453] XFS (loop4): Ending clean mount [ 316.411439][ T3797] XFS (loop4): Unmounting Filesystem [ 317.332158][ T1252] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.338972][ T1252] ieee802154 phy1 wpan1: encryption failed: -22 [ 318.309811][ T7] usb 2-1: string descriptor 0 read error: -71 [ 318.338266][ T7501] device bridge0 entered promiscuous mode [ 318.344573][ T7501] device vlan2 entered promiscuous mode [ 318.352836][ T7501] bridge0: port 3(vlan2) entered blocking state [ 318.359171][ T7501] bridge0: port 3(vlan2) entered disabled state [ 318.378056][ T7501] device bridge0 left promiscuous mode [ 318.381461][ T7] uclogic 0003:256C:006D.0001: failed retrieving string descriptor #200: -71 [ 318.394039][ T7] uclogic 0003:256C:006D.0001: failed retrieving pen parameters: -71 [ 318.402409][ T7] uclogic 0003:256C:006D.0001: failed probing pen v2 parameters: -71 [ 318.423451][ T7] uclogic 0003:256C:006D.0001: failed probing parameters: -71 [ 318.438636][ T7] uclogic: probe of 0003:256C:006D.0001 failed with error -71 [ 318.452318][ T7] usb 2-1: USB disconnect, device number 8 [ 319.953854][ T26] audit: type=1326 audit(1718855454.846:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7516 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c0627cf29 code=0x7ffc0000 [ 319.993745][ T7519] loop3: detected capacity change from 0 to 512 [ 320.017905][ T7521] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 320.130894][ T7519] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 320.179083][ T7519] EXT4-fs (loop3): 1 truncate cleaned up [ 320.199783][ T26] audit: type=1326 audit(1718855454.966:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7516 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3c0627cf29 code=0x7ffc0000 [ 320.259742][ T7519] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 320.468874][ T26] audit: type=1326 audit(1718855454.966:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7516 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c0627cf29 code=0x7ffc0000 [ 321.223962][ T26] audit: type=1326 audit(1718855454.966:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7516 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c0627cf29 code=0x7ffc0000 [ 321.330098][ T26] audit: type=1326 audit(1718855454.966:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7516 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3c0627cf29 code=0x7ffc0000 [ 321.387358][ T3566] EXT4-fs (loop3): unmounting filesystem. [ 321.479844][ T26] audit: type=1326 audit(1718855454.966:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7516 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c0627cf29 code=0x7ffc0000 [ 321.561018][ T26] audit: type=1326 audit(1718855454.966:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7516 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c0627cf29 code=0x7ffc0000 [ 321.689803][ T26] audit: type=1326 audit(1718855454.966:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7516 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3c0627cf29 code=0x7ffc0000 [ 321.789739][ T26] audit: type=1326 audit(1718855454.966:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7516 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c0627cf29 code=0x7ffc0000 [ 321.866315][ T26] audit: type=1326 audit(1718855454.966:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7516 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=141 compat=0 ip=0x7f3c0627cf29 code=0x7ffc0000 [ 321.982212][ T7531] loop4: detected capacity change from 0 to 32768 [ 322.062994][ T7531] XFS (loop4): Mounting V5 Filesystem [ 322.063396][ T7527] loop0: detected capacity change from 0 to 32768 [ 322.150709][ T7527] XFS (loop0): DAX unsupported by block device. Turning off DAX. [ 322.166336][ T7527] XFS (loop0): Mounting V5 Filesystem [ 322.178364][ T7531] XFS (loop4): Ending clean mount [ 322.277614][ T3797] XFS (loop4): Unmounting Filesystem [ 322.295406][ T7527] XFS (loop0): Ending clean mount [ 322.304966][ T7527] XFS (loop0): Quotacheck needed: Please wait. [ 322.400885][ T7527] XFS (loop0): Quotacheck: Done. [ 322.426289][ T7539] loop3: detected capacity change from 0 to 32768 [ 322.434500][ T7539] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 scanned by syz-executor.3 (7539) [ 322.456891][ T7539] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 322.504157][ T7539] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm [ 322.526053][ T7539] BTRFS info (device loop3): force zlib compression, level 3 [ 322.539412][ T7539] BTRFS info (device loop3): force clearing of disk cache [ 322.557088][ T7539] BTRFS info (device loop3): setting nodatasum [ 322.573771][ T7539] BTRFS info (device loop3): allowing degraded mounts [ 322.594048][ T7539] BTRFS info (device loop3): enabling disk space caching [ 322.614316][ T7539] BTRFS info (device loop3): disk space caching is enabled [ 322.915618][ T7539] BTRFS info (device loop3): rebuilding free space tree [ 322.943050][ T7539] BTRFS info (device loop3): disabling free space tree [ 322.971543][ T7539] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 323.148585][ T7539] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 325.788391][ T7592] device bridge0 entered promiscuous mode [ 325.794247][ T7592] device vlan2 entered promiscuous mode [ 325.801204][ T7592] bridge0: port 3(vlan2) entered blocking state [ 325.807524][ T7592] bridge0: port 3(vlan2) entered disabled state [ 325.838057][ T7539] BTRFS info (device loop3): balance: start -sprofiles=metadata|single|raid0|raid1|dup|raid10|raid5|raid6|raid1c3|raid1c4|0xfffefffffffff800 [ 325.861233][ T7592] device bridge0 left promiscuous mode [ 325.946626][ T7539] BTRFS info (device loop3): relocating block group 1048576 flags system [ 326.016199][ T7597] loop4: detected capacity change from 0 to 512 [ 326.074402][ T5615] XFS (loop0): Unmounting Filesystem [ 326.109780][ T7597] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 326.113929][ T7539] BTRFS info (device loop3): balance: ended with status: 0 [ 326.142786][ T7604] netlink: 104 bytes leftover after parsing attributes in process `syz-executor.1'. [ 326.171985][ T7597] EXT4-fs (loop4): 1 truncate cleaned up [ 326.177684][ T7597] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 326.198686][ T3566] BTRFS info (device loop3): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 327.501997][ T3797] EXT4-fs (loop4): unmounting filesystem. [ 327.604950][ T4610] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 327.867852][ T4610] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 328.876997][ T4610] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 329.004163][ T7631] device bridge0 entered promiscuous mode [ 329.010226][ T7631] device vlan2 entered promiscuous mode [ 329.020248][ T7631] bridge0: port 3(vlan2) entered blocking state [ 329.026812][ T7631] bridge0: port 3(vlan2) entered disabled state [ 329.046542][ T7631] device bridge0 left promiscuous mode [ 329.642933][ T4610] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 329.730387][ T3583] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 329.741675][ T3583] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 329.751048][ T3583] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 329.770560][ T3583] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 329.778345][ T3583] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 329.786311][ T3583] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 330.333553][ T7637] loop1: detected capacity change from 0 to 32768 [ 330.351095][ T7637] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop1 scanned by syz-executor.1 (7637) [ 330.381963][ T7637] BTRFS info (device loop1): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 330.386179][ T7635] chnl_net:caif_netlink_parms(): no params data found [ 330.399768][ T7637] BTRFS info (device loop1): using xxhash64 (xxhash64-generic) checksum algorithm [ 330.409027][ T7637] BTRFS info (device loop1): force zlib compression, level 3 [ 330.439015][ T7637] BTRFS info (device loop1): force clearing of disk cache [ 330.456968][ T7637] BTRFS info (device loop1): setting nodatasum [ 330.464472][ T7637] BTRFS info (device loop1): allowing degraded mounts [ 330.489710][ T7637] BTRFS info (device loop1): enabling disk space caching [ 330.496902][ T7637] BTRFS info (device loop1): disk space caching is enabled [ 330.567506][ T7639] loop2: detected capacity change from 0 to 32768 [ 330.594523][ T7635] bridge0: port 1(bridge_slave_0) entered blocking state [ 330.603745][ T7635] bridge0: port 1(bridge_slave_0) entered disabled state [ 330.614091][ T7635] device bridge_slave_0 entered promiscuous mode [ 330.627821][ T7639] XFS (loop2): Mounting V5 Filesystem [ 330.646073][ T7637] BTRFS info (device loop1): rebuilding free space tree [ 330.653505][ T7635] bridge0: port 2(bridge_slave_1) entered blocking state [ 330.666147][ T7635] bridge0: port 2(bridge_slave_1) entered disabled state [ 330.676451][ T7635] device bridge_slave_1 entered promiscuous mode [ 330.693881][ T7637] BTRFS info (device loop1): disabling free space tree [ 330.732561][ T7637] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 330.765887][ T7637] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 330.796154][ T7639] XFS (loop2): Ending clean mount [ 330.810111][ T7639] XFS (loop2): Unmounting Filesystem [ 330.818694][ T7635] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 330.858330][ T7635] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 330.934951][ T7635] team0: Port device team_slave_0 added [ 330.980444][ T7635] team0: Port device team_slave_1 added [ 331.011205][ T7637] BTRFS info (device loop1): balance: start -sprofiles=metadata|single|raid0|raid1|dup|raid10|raid5|raid6|raid1c3|raid1c4|0xfffefffffffff800 [ 331.035471][ T7637] BTRFS info (device loop1): relocating block group 1048576 flags system [ 331.069342][ T7635] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 331.078634][ T7635] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 331.139631][ T7637] BTRFS info (device loop1): balance: ended with status: 0 [ 331.152719][ T7635] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 331.217829][ T3705] BTRFS info (device loop1): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 331.217919][ T7635] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 331.269024][ T7635] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 331.299599][ T7635] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 331.502376][ T4610] device hsr_slave_0 left promiscuous mode [ 331.623732][ T4610] device hsr_slave_1 left promiscuous mode [ 331.650190][ T4610] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 331.701322][ T4610] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 331.748922][ T4610] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 331.769757][ T4610] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 331.779032][ T4610] device bridge_slave_1 left promiscuous mode [ 331.798079][ T4610] bridge0: port 2(bridge_slave_1) entered disabled state [ 331.809139][ T4610] device bridge_slave_0 left promiscuous mode [ 331.841408][ T4610] bridge0: port 1(bridge_slave_0) entered disabled state [ 331.879835][ T3583] Bluetooth: hci2: command tx timeout [ 331.888917][ T4610] device veth1_macvtap left promiscuous mode [ 331.939083][ T4610] device veth0_macvtap left promiscuous mode [ 331.945522][ T4610] device veth1_vlan left promiscuous mode [ 331.951484][ T4610] device veth0_vlan left promiscuous mode [ 332.679049][ T4610] team0 (unregistering): Port device team_slave_1 removed [ 332.720006][ T4610] team0 (unregistering): Port device team_slave_0 removed [ 332.742990][ T4610] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 332.814144][ T4610] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 333.048898][ T4610] bond0 (unregistering): Released all slaves [ 333.218445][ T7635] device hsr_slave_0 entered promiscuous mode [ 333.263781][ T7635] device hsr_slave_1 entered promiscuous mode [ 333.284255][ T7635] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 333.303321][ T7635] Cannot create hsr debugfs directory [ 333.969752][ T3583] Bluetooth: hci2: command tx timeout [ 334.010070][ T7635] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 334.029097][ T7635] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 334.053220][ T7635] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 334.072798][ T7635] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 334.306188][ T7635] 8021q: adding VLAN 0 to HW filter on device bond0 [ 334.343519][ T4002] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 334.361822][ T4002] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 334.382104][ T7635] 8021q: adding VLAN 0 to HW filter on device team0 [ 334.406146][ T4002] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 334.418526][ T4002] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 334.443389][ T4002] bridge0: port 1(bridge_slave_0) entered blocking state [ 334.450622][ T4002] bridge0: port 1(bridge_slave_0) entered forwarding state [ 334.512542][ T4002] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 334.552542][ T4002] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 334.583852][ T4002] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 334.615121][ T4002] bridge0: port 2(bridge_slave_1) entered blocking state [ 334.622314][ T4002] bridge0: port 2(bridge_slave_1) entered forwarding state [ 334.666980][ T4002] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 334.709787][ T4080] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 334.718580][ T4080] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 334.775390][ T4080] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 334.816068][ T4080] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 334.842280][ T4080] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 334.877296][ T7635] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 334.918309][ T7635] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 334.971035][ T4080] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 334.979547][ T4080] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 335.019482][ T4080] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 335.042140][ T4080] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 335.075444][ T4080] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 335.112251][ T4080] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 335.714861][ T4082] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 335.739961][ T4082] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 335.805572][ T7635] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 336.003959][ T7715] loop1: detected capacity change from 0 to 32768 [ 336.049997][ T3583] Bluetooth: hci2: command tx timeout [ 336.065477][ T7715] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop1 scanned by syz-executor.1 (7715) [ 336.165245][ T7715] BTRFS info (device loop1): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 336.175611][ T7715] BTRFS info (device loop1): using xxhash64 (xxhash64-generic) checksum algorithm [ 336.223108][ T7715] BTRFS info (device loop1): force zlib compression, level 3 [ 336.253467][ T7715] BTRFS info (device loop1): force clearing of disk cache [ 336.284567][ T7715] BTRFS info (device loop1): setting nodatasum [ 336.322709][ T7715] BTRFS info (device loop1): allowing degraded mounts [ 336.349099][ T7719] loop0: detected capacity change from 0 to 32768 [ 336.361498][ T7715] BTRFS info (device loop1): enabling disk space caching [ 336.376159][ T7715] BTRFS info (device loop1): disk space caching is enabled [ 336.389252][ T7729] netlink: 'syz-executor.3': attribute type 12 has an invalid length. [ 336.449393][ T7719] XFS (loop0): Mounting V5 Filesystem [ 336.592056][ T7719] XFS (loop0): Ending clean mount [ 336.597800][ T4002] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 336.607396][ T4002] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 336.630880][ T7719] XFS (loop0): Unmounting Filesystem [ 336.656808][ T4080] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 336.706876][ T4080] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 336.801363][ T7715] BTRFS info (device loop1): rebuilding free space tree [ 336.837806][ T7635] device veth0_vlan entered promiscuous mode [ 336.858706][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 336.873195][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 336.910687][ T7715] BTRFS info (device loop1): disabling free space tree [ 336.933155][ T7715] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 336.936481][ T7635] device veth1_vlan entered promiscuous mode [ 336.968123][ T7715] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 337.073487][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 337.097813][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 337.123298][ T7715] BTRFS info (device loop1): balance: start -sprofiles=metadata|single|raid0|raid1|dup|raid10|raid5|raid6|raid1c3|raid1c4|0xfffefffffffff800 [ 337.126302][ T7635] device veth0_macvtap entered promiscuous mode [ 337.170067][ T7635] device veth1_macvtap entered promiscuous mode [ 337.221784][ T7715] BTRFS info (device loop1): relocating block group 1048576 flags system [ 337.235058][ T7635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 337.278100][ T7635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 337.307813][ T7635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 337.329338][ T7635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 337.344422][ T7715] BTRFS info (device loop1): balance: ended with status: 0 [ 337.347802][ T7635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 337.373075][ T7635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 337.389140][ T7635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 337.419340][ T7635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 337.469583][ T7635] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 337.478324][ T3705] BTRFS info (device loop1): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 337.486733][ T7635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 337.549798][ T7635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 337.569947][ T7635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 337.588101][ T7635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 337.623719][ T7635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 337.659179][ T7635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 337.686559][ T7768] loop0: detected capacity change from 0 to 764 [ 337.698715][ T7635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 337.724957][ T7635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 337.744663][ T7768] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 337.776624][ T7635] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 337.844817][ T4080] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 338.049888][ T4080] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 338.121254][ T3583] Bluetooth: hci2: command tx timeout [ 338.121749][ T4080] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 338.307175][ T4080] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 338.400605][ T4080] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 338.419472][ T4080] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 338.465517][ T7635] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 338.487188][ T7635] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 338.534950][ T7635] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 338.574346][ T7635] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 338.728938][ T3816] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 338.746162][ T3816] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 338.796790][ T4610] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 338.817330][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 338.837471][ T4610] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 338.930350][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 339.144779][ C0] TCP: request_sock_TCP: Possible SYN flooding on port 2. Sending cookies. Check SNMP counters. [ 339.314254][ T7795] netlink: 'syz-executor.0': attribute type 12 has an invalid length. [ 340.527257][ T7806] loop4: detected capacity change from 0 to 32768 [ 340.540026][ T7806] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop4 scanned by syz-executor.4 (7806) [ 340.593974][ T7800] loop0: detected capacity change from 0 to 32768 [ 340.608966][ T7806] BTRFS info (device loop4): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 340.646503][ T7806] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm [ 340.659484][ T7800] XFS (loop0): Mounting V5 Filesystem [ 340.664805][ T7815] loop2: detected capacity change from 0 to 764 [ 340.665814][ T7806] BTRFS info (device loop4): force zlib compression, level 3 [ 340.678834][ T7806] BTRFS info (device loop4): force clearing of disk cache [ 340.687399][ T7806] BTRFS info (device loop4): setting nodatasum [ 340.694088][ T7806] BTRFS info (device loop4): allowing degraded mounts [ 340.701189][ T7806] BTRFS info (device loop4): enabling disk space caching [ 340.709077][ T7806] BTRFS info (device loop4): disk space caching is enabled [ 340.728855][ T7815] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 340.776683][ T7800] XFS (loop0): Ending clean mount [ 340.783927][ T7800] XFS (loop0): Unmounting Filesystem [ 341.389994][ T7806] BTRFS info (device loop4): rebuilding free space tree [ 341.419375][ T7806] BTRFS info (device loop4): disabling free space tree [ 341.482785][ T7806] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 341.499767][ T7806] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 341.561103][ T7806] BTRFS info (device loop4): balance: start -sprofiles=metadata|single|raid0|raid1|dup|raid10|raid5|raid6|raid1c3|raid1c4|0xfffefffffffff800 [ 341.587977][ T7806] BTRFS info (device loop4): relocating block group 1048576 flags system [ 341.637450][ T7806] BTRFS info (device loop4): balance: ended with status: 0 [ 341.692991][ T7850] netlink: 'syz-executor.0': attribute type 12 has an invalid length. [ 341.721622][ T7635] BTRFS info (device loop4): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 342.260484][ T7770] libceph: connect (1)[c::]:6789 error -101 [ 342.274410][ T7770] libceph: mon0 (1)[c::]:6789 connect error [ 342.580272][ T7770] libceph: connect (1)[c::]:6789 error -101 [ 342.589897][ T7770] libceph: mon0 (1)[c::]:6789 connect error [ 343.032739][ T7860] ceph: No mds server is up or the cluster is laggy [ 343.160349][ T4264] libceph: connect (1)[c::]:6789 error -101 [ 343.167752][ T4264] libceph: mon0 (1)[c::]:6789 connect error [ 343.904462][ T7876] loop3: detected capacity change from 0 to 764 [ 343.979955][ T7876] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 345.203174][ T7883] loop4: detected capacity change from 0 to 32768 [ 345.245305][ T7883] XFS (loop4): Mounting V5 Filesystem [ 345.333424][ T7883] XFS (loop4): Ending clean mount [ 345.343617][ T7883] XFS (loop4): Unmounting Filesystem [ 345.566231][ T7918] loop3: detected capacity change from 0 to 256 [ 345.576418][ T7918] exfat: Deprecated parameter 'utf8' [ 345.617093][ T7918] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x987a2e96, utbl_chksum : 0xe619d30d) [ 346.352150][ T4264] libceph: connect (1)[c::]:6789 error -101 [ 346.358141][ T4264] libceph: mon0 (1)[c::]:6789 connect error [ 346.368399][ T7923] loop3: detected capacity change from 0 to 764 [ 346.377110][ T7923] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 346.833302][ T7913] ceph: No mds server is up or the cluster is laggy [ 348.618673][ T7961] loop0: detected capacity change from 0 to 256 [ 348.628943][ T7961] exfat: Deprecated parameter 'utf8' [ 349.312776][ T7961] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x987a2e96, utbl_chksum : 0xe619d30d) [ 349.406129][ T7964] loop2: detected capacity change from 0 to 764 [ 349.416126][ T7964] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 349.883579][ T7965] loop1: detected capacity change from 0 to 512 [ 350.018080][ T7965] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2 [ 350.045178][ T7965] EXT4-fs (loop1): 1 truncate cleaned up [ 350.069758][ T7965] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 351.128003][ T3705] EXT4-fs (loop1): unmounting filesystem. [ 351.144512][ T3616] libceph: connect (1)[c::]:6789 error -101 [ 351.175325][ T3616] libceph: mon0 (1)[c::]:6789 connect error [ 351.239583][ T3616] libceph: connect (1)[c::]:6789 error -101 [ 351.289844][ T3616] libceph: mon0 (1)[c::]:6789 connect error [ 351.314640][ T3816] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 351.489246][ T3816] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 351.550294][ T3616] libceph: connect (1)[c::]:6789 error -101 [ 351.559932][ T3616] libceph: mon0 (1)[c::]:6789 connect error [ 351.632411][ T3816] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 351.738762][ T3816] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 351.916912][ T7991] ceph: No mds server is up or the cluster is laggy [ 352.011414][ T7988] syz-executor.3 (7988) used greatest stack depth: 19144 bytes left [ 352.090027][ T4188] libceph: connect (1)[c::]:6789 error -101 [ 352.106194][ T4188] libceph: mon0 (1)[c::]:6789 connect error [ 353.405199][ T8011] loop3: detected capacity change from 0 to 256 [ 353.415414][ T8011] exfat: Deprecated parameter 'utf8' [ 353.623649][ T8011] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x987a2e96, utbl_chksum : 0xe619d30d) [ 354.055700][ T8015] loop4: detected capacity change from 0 to 512 [ 354.077624][ T8015] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 354.087453][ T8015] EXT4-fs (loop4): 1 truncate cleaned up [ 354.095696][ T8015] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 354.301407][ T3574] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 354.321535][ T3574] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 354.331924][ T3574] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 354.341394][ T3574] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 354.352599][ T3574] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 354.360283][ T3574] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 354.966104][ T3816] device hsr_slave_0 left promiscuous mode [ 354.998659][ T3816] device hsr_slave_1 left promiscuous mode [ 355.014944][ T3816] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 355.086275][ T3816] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 355.111850][ T8036] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 355.118880][ T8036] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 355.130911][ T3816] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 355.138452][ T3816] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 355.150454][ T3816] device bridge_slave_1 left promiscuous mode [ 355.156838][ T3816] bridge0: port 2(bridge_slave_1) entered disabled state [ 355.165755][ T3816] device bridge_slave_0 left promiscuous mode [ 355.172157][ T3816] bridge0: port 1(bridge_slave_0) entered disabled state [ 355.186975][ T3816] device veth1_macvtap left promiscuous mode [ 355.202778][ T3816] device veth0_macvtap left promiscuous mode [ 355.320200][ T8043] Driver unsupported XDP return value 0 on prog (id 138) dev N/A, expect packet loss! [ 355.795450][ T3816] team0 (unregistering): Port device team_slave_1 removed [ 355.809906][ T3816] team0 (unregistering): Port device team_slave_0 removed [ 355.827131][ T3816] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 355.842794][ T3816] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 356.443024][ T3574] Bluetooth: hci4: command tx timeout [ 356.622013][ T8054] loop0: detected capacity change from 0 to 256 [ 356.632510][ T8054] exfat: Deprecated parameter 'utf8' [ 356.679633][ T3816] bond0 (unregistering): Released all slaves [ 356.749392][ T8054] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x987a2e96, utbl_chksum : 0xe619d30d) [ 357.095993][ T8036] device hsr_slave_0 left promiscuous mode [ 357.105239][ T8036] device hsr_slave_1 left promiscuous mode [ 357.343398][ T7635] EXT4-fs (loop4): unmounting filesystem. [ 357.411205][ T3613] libceph: connect (1)[c::]:6789 error -101 [ 357.417216][ T3613] libceph: mon0 (1)[c::]:6789 connect error [ 357.535790][ T8021] chnl_net:caif_netlink_parms(): no params data found [ 357.554457][ T4930] libceph: connect (1)[c::]:6789 error -101 [ 357.560930][ T4930] libceph: mon0 (1)[c::]:6789 connect error [ 357.571962][ T8072] input: syz0 as /devices/virtual/input/input49 [ 357.861025][ T4930] libceph: connect (1)[c::]:6789 error -101 [ 357.869950][ T4930] libceph: mon0 (1)[c::]:6789 connect error [ 357.999286][ T8021] bridge0: port 1(bridge_slave_0) entered blocking state [ 358.030553][ T8021] bridge0: port 1(bridge_slave_0) entered disabled state [ 358.030963][ T8059] ceph: No mds server is up or the cluster is laggy [ 358.058207][ T8021] device bridge_slave_0 entered promiscuous mode [ 358.247945][ T8021] bridge0: port 2(bridge_slave_1) entered blocking state [ 358.262749][ T8021] bridge0: port 2(bridge_slave_1) entered disabled state [ 358.308207][ T8021] device bridge_slave_1 entered promiscuous mode [ 358.433932][ T8021] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 358.453018][ T8021] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 358.515038][ T8021] team0: Port device team_slave_0 added [ 358.522311][ T3574] Bluetooth: hci4: command tx timeout [ 358.605454][ T8021] team0: Port device team_slave_1 added [ 358.644147][ T8021] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 358.656883][ T8021] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 358.689781][ T8021] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 358.710561][ T8021] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 358.717666][ T8021] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 358.750771][ T8021] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 358.942522][ T8094] loop0: detected capacity change from 0 to 256 [ 358.952824][ T8094] exfat: Deprecated parameter 'utf8' [ 359.106081][ T8094] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x987a2e96, utbl_chksum : 0xe619d30d) [ 359.595001][ T8021] device hsr_slave_0 entered promiscuous mode [ 359.635886][ T8021] device hsr_slave_1 entered promiscuous mode [ 359.647147][ T8021] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 359.676490][ T8098] loop0: detected capacity change from 0 to 256 [ 359.684473][ T3583] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 359.698665][ T3583] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 359.708670][ T8021] Cannot create hsr debugfs directory [ 359.715075][ T3583] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 359.731727][ T3583] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 359.743220][ T3583] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 359.751214][ T3583] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 359.870992][ T8098] FAT-fs (loop0): Directory bread(block 64) failed [ 359.877583][ T8098] FAT-fs (loop0): Directory bread(block 65) failed [ 359.946869][ T8098] FAT-fs (loop0): Directory bread(block 66) failed [ 359.985292][ T8098] FAT-fs (loop0): Directory bread(block 67) failed [ 360.030773][ T8098] FAT-fs (loop0): Directory bread(block 68) failed [ 360.050060][ T8098] FAT-fs (loop0): Directory bread(block 69) failed [ 360.059149][ T8098] FAT-fs (loop0): Directory bread(block 70) failed [ 360.096131][ T8098] FAT-fs (loop0): Directory bread(block 71) failed [ 360.125399][ T8098] FAT-fs (loop0): Directory bread(block 72) failed [ 360.179822][ T8098] FAT-fs (loop0): Directory bread(block 73) failed [ 360.304531][ T8103] loop2: detected capacity change from 0 to 2048 [ 360.315867][ T8103] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 360.330979][ T8106] netlink: 'syz-executor.0': attribute type 12 has an invalid length. [ 360.385339][ T8096] chnl_net:caif_netlink_parms(): no params data found [ 360.599976][ T3583] Bluetooth: hci4: command tx timeout [ 360.773302][ T8096] bridge0: port 1(bridge_slave_0) entered blocking state [ 360.809566][ T8096] bridge0: port 1(bridge_slave_0) entered disabled state [ 360.831968][ T8096] device bridge_slave_0 entered promiscuous mode [ 360.843278][ T8096] bridge0: port 2(bridge_slave_1) entered blocking state [ 360.857625][ T8096] bridge0: port 2(bridge_slave_1) entered disabled state [ 360.890328][ T8096] device bridge_slave_1 entered promiscuous mode [ 360.921006][ T8120] input: syz0 as /devices/virtual/input/input50 [ 360.982842][ T8096] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 361.054642][ T8096] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 361.175864][ T8096] team0: Port device team_slave_0 added [ 361.215725][ T8096] team0: Port device team_slave_1 added [ 361.266761][ T8021] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 361.310140][ T8021] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 361.337276][ T8096] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 361.354734][ T8096] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 361.426064][ T8096] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 361.459846][ T8021] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 361.472024][ T8021] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 361.491580][ T8096] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 361.567710][ T8096] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 361.596317][ T8096] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 361.752522][ T8136] loop2: detected capacity change from 0 to 256 [ 361.762839][ T8136] exfat: Deprecated parameter 'utf8' [ 361.790735][ T8136] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x987a2e96, utbl_chksum : 0xe619d30d) [ 361.834421][ T3583] Bluetooth: hci2: command tx timeout [ 362.282032][ T3816] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 362.439337][ T3816] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 362.459021][ T8096] device hsr_slave_0 entered promiscuous mode [ 362.467681][ T8096] device hsr_slave_1 entered promiscuous mode [ 362.484188][ T8096] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 362.512634][ T8096] Cannot create hsr debugfs directory [ 362.533427][ T3816] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 362.564198][ T8144] loop3: detected capacity change from 0 to 512 [ 362.627416][ T8144] EXT4-fs (loop3): Test dummy encryption mode enabled [ 362.644464][ T3816] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 362.648236][ T8144] EXT4-fs error (device loop3): ext4_find_inline_data_nolock:164: inode #12: comm syz-executor.3: inline data xattr refers to an external xattr inode [ 362.676984][ T8144] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz-executor.3: couldn't read orphan inode 12 (err -117) [ 362.689875][ T3574] Bluetooth: hci4: command tx timeout [ 362.697993][ T8144] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 362.717766][ T8021] 8021q: adding VLAN 0 to HW filter on device bond0 [ 362.783426][ T7770] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 362.805258][ T7770] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 362.821692][ T8021] 8021q: adding VLAN 0 to HW filter on device team0 [ 362.832248][ T3566] EXT4-fs (loop3): unmounting filesystem. [ 362.880619][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 362.890923][ T4263] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 362.896035][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 362.914623][ T4188] bridge0: port 1(bridge_slave_0) entered blocking state [ 362.921863][ T4188] bridge0: port 1(bridge_slave_0) entered forwarding state [ 362.982603][ T4930] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 362.993090][ T4930] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 363.003418][ T4930] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 363.013166][ T4930] bridge0: port 2(bridge_slave_1) entered blocking state [ 363.020349][ T4930] bridge0: port 2(bridge_slave_1) entered forwarding state [ 363.031263][ T4930] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 363.043996][ T4930] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 363.076570][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 363.095675][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 363.112600][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 363.121853][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 363.155365][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 363.165662][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 363.175957][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 363.185316][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 363.197494][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 363.209024][ T8021] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 363.280081][ T4263] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 363.302624][ T4263] usb 3-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 363.317099][ T4263] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 363.373226][ T4263] usb 3-1: config 0 descriptor?? [ 363.730445][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 363.750205][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 363.779521][ T8021] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 363.818882][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 363.840765][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 363.871143][ T4263] keytouch 0003:0926:3333.0002: fixing up Keytouch IEC report descriptor [ 363.879969][ T3583] Bluetooth: hci2: command tx timeout [ 363.909630][ T4930] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 363.916977][ T4263] input: HID 0926:3333 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:0926:3333.0002/input/input51 [ 363.919549][ T4930] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 363.952464][ T8158] input: syz0 as /devices/virtual/input/input52 [ 363.970390][ T8021] device veth0_vlan entered promiscuous mode [ 363.984024][ T8021] device veth1_vlan entered promiscuous mode [ 363.999132][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 364.022147][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 364.032280][ T4263] keytouch 0003:0926:3333.0002: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.2-1/input0 [ 364.036332][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 364.165407][ T4263] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 364.189612][ T4263] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 364.203824][ T4263] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 364.226813][ T8021] device veth0_macvtap entered promiscuous mode [ 364.286056][ T8163] sctp: [Deprecated]: syz-executor.0 (pid 8163) Use of int in max_burst socket option deprecated. [ 364.286056][ T8163] Use struct sctp_assoc_value instead [ 364.288403][ T8021] device veth1_macvtap entered promiscuous mode [ 364.388552][ T3816] device hsr_slave_0 left promiscuous mode [ 364.411990][ T3816] device hsr_slave_1 left promiscuous mode [ 364.425199][ T3816] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 364.433036][ T3816] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 364.447301][ T3816] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 364.457489][ T3816] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 364.468422][ T3816] device bridge_slave_1 left promiscuous mode [ 364.476113][ T3816] bridge0: port 2(bridge_slave_1) entered disabled state [ 364.485312][ T3816] device bridge_slave_0 left promiscuous mode [ 364.492088][ T3816] bridge0: port 1(bridge_slave_0) entered disabled state [ 364.506142][ T3816] device veth1_macvtap left promiscuous mode [ 364.512549][ T3816] device veth0_macvtap left promiscuous mode [ 364.518806][ T3816] device veth1_vlan left promiscuous mode [ 364.525912][ T3816] device veth0_vlan left promiscuous mode [ 364.553695][ T4930] usb 3-1: USB disconnect, device number 4 [ 364.926380][ T8177] loop0: detected capacity change from 0 to 256 [ 364.936673][ T8177] exfat: Deprecated parameter 'utf8' [ 365.013895][ T8177] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x987a2e96, utbl_chksum : 0xe619d30d) [ 365.502768][ T3816] team0 (unregistering): Port device team_slave_1 removed [ 365.527238][ T3816] team0 (unregistering): Port device team_slave_0 removed [ 365.549491][ T3816] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 365.576334][ T3816] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 365.698926][ T3816] bond0 (unregistering): Released all slaves [ 365.926852][ T8021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 365.958252][ T8021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 365.990043][ T3583] Bluetooth: hci2: command tx timeout [ 366.025206][ T8021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 366.077485][ T8021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 366.130138][ T8021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 366.179266][ T8021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 366.291802][ T8021] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 366.396491][ T7770] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 366.410461][ T7770] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 366.418480][ T7770] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 366.433441][ T7770] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 366.451054][ T8096] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 366.469858][ T41] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 366.541599][ T8021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 366.560680][ T8021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 366.578325][ T8021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 366.591691][ T8021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 366.602195][ T8021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 366.613788][ T8021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 366.635536][ T8021] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 366.647346][ T8096] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 366.668009][ T8187] kvm: emulating exchange as write [ 366.676156][ T4930] libceph: connect (1)[c::]:6789 error -101 [ 366.685503][ T4263] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 366.694951][ T4263] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 366.696290][ T4930] libceph: mon0 (1)[c::]:6789 connect error [ 366.713708][ T3616] libceph: connect (1)[c::]:6789 error -101 [ 366.723128][ T3616] libceph: mon0 (1)[c::]:6789 connect error [ 366.745438][ T8096] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 366.778174][ T8021] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 366.789021][ T8021] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 366.798381][ T8021] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 366.812590][ T8021] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 366.844042][ T8096] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 366.890409][ T41] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 366.947816][ T41] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 366.987891][ T41] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 366.990595][ T4930] libceph: connect (1)[c::]:6789 error -101 [ 367.033589][ T41] usb 3-1: New USB device found, idVendor=1a34, idProduct=0800, bcdDevice= 0.00 [ 367.048629][ T4930] libceph: mon0 (1)[c::]:6789 connect error [ 367.051695][ T41] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 367.097139][ T41] usb 3-1: config 0 descriptor?? [ 367.115824][ T5140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 367.137037][ T5140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 367.188866][ T7771] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 367.236397][ T5140] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 367.258788][ T5140] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 367.309097][ T8096] 8021q: adding VLAN 0 to HW filter on device bond0 [ 367.328076][ T7771] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 367.367622][ T4930] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 367.380676][ T4930] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 367.419859][ T41] usb 3-1: string descriptor 0 read error: -71 [ 367.431765][ T8096] 8021q: adding VLAN 0 to HW filter on device team0 [ 367.445023][ T8192] ceph: No mds server is up or the cluster is laggy [ 367.478999][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 367.518293][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 367.539875][ T41] usbhid 3-1:0.0: can't add hid device: -71 [ 367.547068][ T41] usbhid: probe of 3-1:0.0 failed with error -71 [ 367.586952][ T4264] bridge0: port 1(bridge_slave_0) entered blocking state [ 367.594129][ T4264] bridge0: port 1(bridge_slave_0) entered forwarding state [ 367.611884][ T41] usb 3-1: USB disconnect, device number 5 [ 367.661578][ T3997] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 367.670564][ T8206] input: syz0 as /devices/virtual/input/input53 [ 367.685021][ T3997] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 367.733621][ T3997] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 367.773085][ T3997] bridge0: port 2(bridge_slave_1) entered blocking state [ 367.780237][ T3997] bridge0: port 2(bridge_slave_1) entered forwarding state [ 367.829377][ T3997] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 367.861414][ T3997] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 367.885794][ T4930] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 367.926316][ T4930] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 367.984850][ T4930] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 368.005219][ T4930] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 368.038822][ T4930] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 368.047090][ T3583] Bluetooth: hci2: command tx timeout [ 368.053485][ T4930] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 368.062264][ T4930] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 368.082688][ T8096] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 368.095864][ T8096] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 368.105628][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 368.117357][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 368.376808][ T8216] loop2: detected capacity change from 0 to 512 [ 368.435457][ T8216] EXT4-fs: Invalid want_extra_isize 1048622 [ 368.679328][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 368.696630][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 368.745277][ T8096] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 369.014605][ T8210] loop3: detected capacity change from 0 to 32768 [ 369.413369][ T8210] XFS (loop3): Mounting V5 Filesystem [ 369.813264][ T8210] XFS (loop3): Ending clean mount [ 369.891331][ T8210] XFS (loop3): Quotacheck needed: Please wait. [ 369.995469][ T8254] input: syz0 as /devices/virtual/input/input54 [ 370.002412][ T8210] XFS (loop3): Quotacheck: Done. [ 370.277050][ T3566] XFS (loop3): Unmounting Filesystem [ 370.366287][ T8264] loop0: detected capacity change from 0 to 512 [ 370.396601][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 370.418135][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 370.428667][ T8264] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 370.455675][ T8096] device veth0_vlan entered promiscuous mode [ 370.464746][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 370.474059][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 370.477276][ T8264] EXT4-fs (loop0): 1 truncate cleaned up [ 370.487996][ T8096] device veth1_vlan entered promiscuous mode [ 370.496897][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 370.506315][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 370.514834][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 370.539862][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 370.548867][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 370.558489][ T8264] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 370.558869][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 370.579021][ T8096] device veth0_macvtap entered promiscuous mode [ 370.599409][ T8096] device veth1_macvtap entered promiscuous mode [ 370.636099][ T8096] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 370.647548][ T8096] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 370.663403][ T8096] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 371.793308][ T8275] loop1: detected capacity change from 0 to 512 [ 372.530063][ T8096] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 372.581908][ T8096] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 372.624085][ T8096] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 372.637051][ T8096] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 372.647930][ T8096] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 372.680847][ T8096] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 372.715887][ T7770] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 372.724951][ T7770] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 372.778192][ T5615] EXT4-fs (loop0): unmounting filesystem. [ 372.904384][ T7770] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 372.914211][ T7770] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 372.930401][ T8096] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 372.955791][ T8096] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 372.966484][ T8096] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 372.977064][ T8096] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 373.129311][ T8096] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 373.328748][ T8096] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 373.538667][ T8096] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 373.686508][ T8096] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 373.710880][ T8096] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 373.775053][ T7770] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 373.816746][ T7770] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 373.854657][ T8096] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 373.895402][ T8096] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 373.907730][ T8302] input: syz0 as /devices/virtual/input/input55 [ 373.937774][ T8096] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 373.968612][ T8096] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 374.147804][ T3686] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 374.179945][ T3686] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 374.225866][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 374.268768][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 374.268847][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 374.272760][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 374.323802][ T8310] loop1: detected capacity change from 0 to 256 [ 374.357062][ T8313] loop0: detected capacity change from 0 to 256 [ 374.357997][ T8313] exfat: Unknown parameter '01777777777777777777777ÿÿÿÿÿÿÿÿÿÿÿÿÿ' [ 374.376698][ T8310] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0xff6f124c, utbl_chksum : 0xe619d30d) [ 374.635670][ T8321] loop4: detected capacity change from 0 to 512 [ 374.675824][ T8321] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 374.706130][ T8308] loop0: detected capacity change from 0 to 512 [ 374.722521][ T8308] ext4: Unknown parameter 'nouser_xattr' [ 374.729361][ T8321] EXT4-fs (loop4): 1 truncate cleaned up [ 374.756730][ T8321] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 374.790431][ T8301] loop3: detected capacity change from 0 to 32768 [ 374.805050][ T8301] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop3 scanned by syz-executor.3 (8301) [ 374.961631][ T8301] BTRFS info (device loop3): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 374.983325][ T8308] loop0: detected capacity change from 0 to 4096 [ 374.984140][ T8301] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 375.794754][ T8308] NILFS (loop0): unrecognized mount option "00000000000000000000010ÿÿ" [ 375.802973][ T8301] BTRFS info (device loop3): force clearing of disk cache [ 375.820868][ T8301] BTRFS info (device loop3): use zlib compression, level 3 [ 375.828197][ T8301] BTRFS info (device loop3): using free space tree [ 375.893694][ T8096] EXT4-fs (loop4): unmounting filesystem. [ 376.284685][ T8367] loop4: detected capacity change from 0 to 256 [ 376.295155][ T8367] exfat: Deprecated parameter 'utf8' [ 376.354525][ T8367] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x987a2e96, utbl_chksum : 0xe619d30d) [ 377.083737][ T8377] loop4: detected capacity change from 0 to 256 [ 377.137610][ T8377] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0xff6f124c, utbl_chksum : 0xe619d30d) [ 377.266584][ T8301] BTRFS error (device loop3): open_ctree failed [ 377.339593][ T8386] loop4: detected capacity change from 0 to 512 [ 377.360319][ T8386] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 377.375759][ T8386] EXT4-fs (loop4): 1 truncate cleaned up [ 377.386278][ T8386] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 377.549871][ T4081] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 378.457724][ T8096] EXT4-fs (loop4): unmounting filesystem. [ 378.463886][ T4081] usb 3-1: Using ep0 maxpacket: 32 [ 378.579868][ T4081] usb 3-1: config 0 has no interfaces? [ 378.601977][ T1252] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.608521][ T1252] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.650017][ T4040] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 378.740024][ T4081] usb 3-1: New USB device found, idVendor=06f8, idProduct=b000, bcdDevice=cb.c8 [ 378.749397][ T4081] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 378.759245][ T4081] usb 3-1: Product: syz [ 378.764384][ T4081] usb 3-1: Manufacturer: syz [ 378.769006][ T4081] usb 3-1: SerialNumber: syz [ 378.785260][ T4081] usb 3-1: config 0 descriptor?? [ 378.921089][ T8416] loop1: detected capacity change from 0 to 256 [ 378.941021][ T8416] exfat: Deprecated parameter 'utf8' [ 379.001618][ T8416] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x987a2e96, utbl_chksum : 0xe619d30d) [ 379.019962][ T4040] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 379.035194][ T4040] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 379.051324][ T4081] usb 3-1: USB disconnect, device number 6 [ 379.119837][ T4040] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 379.129088][ T4040] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 379.137218][ T4040] usb 4-1: SerialNumber: syz [ 379.398901][ T8421] loop0: detected capacity change from 0 to 256 [ 379.415060][ T4040] usb 4-1: 0:2 : does not exist [ 379.429232][ T8421] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0xff6f124c, utbl_chksum : 0xe619d30d) [ 379.763530][ T8431] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 379.883807][ T4040] usb 4-1: USB disconnect, device number 6 [ 379.959128][ T8436] loop2: detected capacity change from 0 to 512 [ 380.009983][ T8436] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 380.021079][ T8436] EXT4-fs (loop2): 1 truncate cleaned up [ 380.027149][ T8436] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 380.993292][ T3567] EXT4-fs (loop2): unmounting filesystem. [ 381.320480][ T8467] loop4: detected capacity change from 0 to 256 [ 381.351647][ T8467] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0xff6f124c, utbl_chksum : 0xe619d30d) [ 381.384981][ T8471] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 381.592927][ T8482] loop4: detected capacity change from 0 to 512 [ 381.638321][ T8482] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 381.668498][ T8482] EXT4-fs (loop4): 1 truncate cleaned up [ 381.680805][ T8482] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 384.172133][ T8096] EXT4-fs (loop4): unmounting filesystem. [ 384.174787][ T8494] loop2: detected capacity change from 0 to 512 [ 384.185483][ T8494] EXT4-fs: Ignoring removed oldalloc option [ 384.193121][ T8494] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 384.206522][ T8494] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 384.246007][ T8494] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2810: Unable to expand inode 11. Delete some EAs or run e2fsck. [ 384.295595][ T8494] EXT4-fs (loop2): 1 truncate cleaned up [ 384.356540][ T8494] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 384.439745][ T8494] EXT4-fs error (device loop2): mb_free_blocks:1815: group 0, inode 16: block 35:freeing already freed block (bit 34); block bitmap corrupt. [ 384.446677][ T8510] netlink: 'syz-executor.1': attribute type 12 has an invalid length. [ 384.535196][ T3567] EXT4-fs (loop2): unmounting filesystem. [ 384.584969][ T8512] loop3: detected capacity change from 0 to 256 [ 384.638615][ T8512] exfat: Deprecated parameter 'utf8' [ 384.684129][ T8512] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x987a2e96, utbl_chksum : 0xe619d30d) [ 384.712627][ T4040] libceph: connect (1)[c::]:6789 error -101 [ 384.749468][ T4040] libceph: mon0 (1)[c::]:6789 connect error [ 385.060126][ T4040] libceph: connect (1)[c::]:6789 error -101 [ 385.786659][ T4040] libceph: mon0 (1)[c::]:6789 connect error [ 385.807192][ T8535] loop2: detected capacity change from 0 to 512 [ 385.874962][ T8535] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 385.942096][ T8535] EXT4-fs (loop2): 1 truncate cleaned up [ 385.974143][ T8535] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 386.027570][ T8521] ceph: No mds server is up or the cluster is laggy [ 386.389769][ T4040] libceph: connect (1)[c::]:6789 error -101 [ 386.402096][ T4040] libceph: mon0 (1)[c::]:6789 connect error [ 386.718887][ T3567] EXT4-fs (loop2): unmounting filesystem. [ 386.984945][ T8524] loop4: detected capacity change from 0 to 32768 [ 387.037297][ T8524] XFS (loop4): Mounting V5 Filesystem [ 387.156492][ T8524] XFS (loop4): Ending clean mount [ 387.171031][ T8524] XFS (loop4): Unmounting Filesystem [ 387.414665][ T8564] loop3: detected capacity change from 0 to 512 [ 387.422536][ T8564] EXT4-fs: Ignoring removed oldalloc option [ 387.430715][ T8564] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 387.473385][ T8564] EXT4-fs (loop3): 1 truncate cleaned up [ 387.484041][ T8564] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 387.504949][ T8568] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 387.508198][ T8564] EXT4-fs error (device loop3): mb_free_blocks:1815: group 0, inode 16: block 35:freeing already freed block (bit 34); block bitmap corrupt. [ 387.616366][ T3566] EXT4-fs (loop3): unmounting filesystem. [ 387.794406][ T8578] loop2: detected capacity change from 0 to 512 [ 387.900805][ T8581] loop3: detected capacity change from 0 to 764 [ 387.902480][ T8578] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 387.910421][ T8584] netlink: 104 bytes leftover after parsing attributes in process `syz-executor.1'. [ 387.923196][ T8578] EXT4-fs (loop2): 1 truncate cleaned up [ 387.938040][ T8578] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 388.180896][ T8581] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 394.163208][ T3567] EXT4-fs (loop2): unmounting filesystem. [ 394.351809][ T8609] loop4: detected capacity change from 0 to 512 [ 394.368330][ T4040] libceph: connect (1)[c::]:6789 error -101 [ 394.378218][ T4040] libceph: mon0 (1)[c::]:6789 connect error [ 394.387938][ T8615] netlink: 'syz-executor.1': attribute type 12 has an invalid length. [ 394.415920][ T4040] libceph: connect (1)[c::]:6789 error -101 [ 394.421022][ T8609] EXT4-fs: Ignoring removed oldalloc option [ 394.434808][ T4040] libceph: mon0 (1)[c::]:6789 connect error [ 394.441152][ T8609] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 394.581532][ T8609] EXT4-fs (loop4): 1 truncate cleaned up [ 394.604299][ T8609] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 394.699287][ T8609] EXT4-fs error (device loop4): mb_free_blocks:1815: group 0, inode 16: block 35:freeing already freed block (bit 34); block bitmap corrupt. [ 394.741833][ T4040] libceph: connect (1)[c::]:6789 error -101 [ 394.760476][ T4040] libceph: mon0 (1)[c::]:6789 connect error [ 394.832208][ T8096] EXT4-fs (loop4): unmounting filesystem. [ 394.928944][ T8629] loop0: detected capacity change from 0 to 256 [ 395.050587][ T8634] input: syz0 as /devices/virtual/input/input57 [ 395.070914][ T8629] exfat: Deprecated parameter 'utf8' [ 395.112679][ T8606] ceph: No mds server is up or the cluster is laggy [ 395.215767][ T8629] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x987a2e96, utbl_chksum : 0xe619d30d) [ 395.251404][ T8636] loop4: detected capacity change from 0 to 512 [ 395.326745][ T8636] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 395.340088][ T8636] EXT4-fs (loop4): 1 truncate cleaned up [ 395.346019][ T8636] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 396.213905][ T8096] EXT4-fs (loop4): unmounting filesystem. [ 396.503158][ T8623] loop1: detected capacity change from 0 to 32768 [ 396.541062][ T8659] netlink: 'syz-executor.3': attribute type 12 has an invalid length. [ 396.566089][ T8623] XFS (loop1): Mounting V5 Filesystem [ 396.672445][ T8669] loop3: detected capacity change from 0 to 512 [ 396.712401][ T8669] EXT4-fs: Ignoring removed oldalloc option [ 396.749905][ T8669] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 396.761509][ T8623] XFS (loop1): Ending clean mount [ 396.782708][ T8623] XFS (loop1): Unmounting Filesystem [ 396.862872][ T8669] EXT4-fs (loop3): 1 truncate cleaned up [ 396.877586][ T8669] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 396.919073][ T8669] EXT4-fs error (device loop3): mb_free_blocks:1815: group 0, inode 16: block 35:freeing already freed block (bit 34); block bitmap corrupt. [ 397.011578][ T3566] EXT4-fs (loop3): unmounting filesystem. [ 397.030661][ T8680] input: syz0 as /devices/virtual/input/input58 [ 397.277608][ T8684] loop3: detected capacity change from 0 to 512 [ 397.308220][ T8684] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 397.322943][ T8684] EXT4-fs (loop3): 1 truncate cleaned up [ 397.337858][ T8684] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 397.533791][ T7] libceph: connect (1)[c::]:6789 error -101 [ 397.540958][ T7] libceph: mon0 (1)[c::]:6789 connect error [ 398.263010][ T7] libceph: connect (1)[c::]:6789 error -101 [ 398.319541][ T7] libceph: mon0 (1)[c::]:6789 connect error [ 398.379818][ T8676] syz-executor.4 (8676) used greatest stack depth: 18848 bytes left [ 398.456951][ T8694] ceph: No mds server is up or the cluster is laggy [ 398.598452][ T3566] EXT4-fs (loop3): unmounting filesystem. [ 398.723357][ T3845] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 398.891405][ T3845] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 399.052288][ T3845] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 399.199889][ T3845] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 399.304438][ T8728] loop4: detected capacity change from 0 to 256 [ 399.362540][ T8728] exfat: Deprecated parameter 'utf8' [ 399.529887][ T8728] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x987a2e96, utbl_chksum : 0xe619d30d) [ 399.824696][ T3574] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 399.849252][ T3574] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 399.863185][ T3574] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 399.873904][ T3574] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 399.886029][ T3574] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 399.894845][ T3574] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 400.351069][ T8740] chnl_net:caif_netlink_parms(): no params data found [ 400.403131][ T3845] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 400.419264][ T8754] loop1: detected capacity change from 0 to 764 [ 400.420505][ T3845] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 400.433551][ T8754] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 400.445353][ T3845] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 400.456209][ T3845] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 400.793566][ T3845] device bridge_slave_1 left promiscuous mode [ 400.878981][ T3845] bridge0: port 2(bridge_slave_1) entered disabled state [ 400.980238][ T3845] device bridge_slave_0 left promiscuous mode [ 400.986528][ T3845] bridge0: port 1(bridge_slave_0) entered disabled state [ 401.011826][ T3845] device veth1_macvtap left promiscuous mode [ 401.018085][ T3845] device veth0_macvtap left promiscuous mode [ 401.243642][ T3845] team0 (unregistering): Port device team_slave_1 removed [ 401.272494][ T3845] team0 (unregistering): Port device team_slave_0 removed [ 401.297607][ T3845] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 401.345463][ T3845] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 401.412671][ T41] libceph: connect (1)[c::]:6789 error -101 [ 401.436229][ T41] libceph: mon0 (1)[c::]:6789 connect error [ 401.538209][ T3845] bond0 (unregistering): Released all slaves [ 401.606420][ T8759] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 401.720271][ T7770] libceph: connect (1)[c::]:6789 error -101 [ 401.727549][ T7770] libceph: mon0 (1)[c::]:6789 connect error [ 401.842484][ T8740] bridge0: port 1(bridge_slave_0) entered blocking state [ 401.850510][ T8740] bridge0: port 1(bridge_slave_0) entered disabled state [ 401.865591][ T8740] device bridge_slave_0 entered promiscuous mode [ 401.890814][ T8740] bridge0: port 2(bridge_slave_1) entered blocking state [ 401.927200][ T8740] bridge0: port 2(bridge_slave_1) entered disabled state [ 401.959817][ T3583] Bluetooth: hci0: command tx timeout [ 401.978551][ T8740] device bridge_slave_1 entered promiscuous mode [ 402.128290][ T8776] ceph: No mds server is up or the cluster is laggy [ 402.168806][ T8740] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 402.170620][ T8793] loop2: detected capacity change from 0 to 4096 [ 402.193909][ T8740] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 402.240096][ T8793] ntfs3: loop2: ino=3, Correct links count -> 2. [ 402.331652][ T8740] team0: Port device team_slave_0 added [ 402.394989][ T8740] team0: Port device team_slave_1 added [ 402.489773][ T8740] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 402.507460][ T8796] loop1: detected capacity change from 0 to 764 [ 402.527704][ T8740] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 402.566292][ T8796] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 403.038152][ T8740] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 403.133631][ T8740] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 403.288938][ T8740] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 403.421349][ T8808] futex_wake_op: syz-executor.1 tries to shift op by 144; fix this program [ 404.068729][ T8740] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 404.204320][ T8813] loop1: detected capacity change from 0 to 256 [ 404.232619][ T8813] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xcd43d30d, utbl_chksum : 0xe619d30d) [ 404.286642][ T8740] device hsr_slave_0 entered promiscuous mode [ 404.318562][ T8740] device hsr_slave_1 entered promiscuous mode [ 404.354008][ T8740] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 404.390907][ T8740] Cannot create hsr debugfs directory [ 404.400249][ T8817] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 404.815333][ T8831] loop2: detected capacity change from 0 to 764 [ 404.885761][ T8831] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 405.464334][ T8836] loop2: detected capacity change from 0 to 1024 [ 405.496781][ T8836] hfsplus: unable to parse mount options [ 405.501509][ T8811] loop4: detected capacity change from 0 to 32768 [ 405.632335][ T8811] XFS (loop4): Mounting V5 Filesystem [ 405.724138][ T8811] XFS (loop4): Ending clean mount [ 405.753750][ T8811] XFS (loop4): Quotacheck needed: Please wait. [ 405.878636][ T8811] XFS (loop4): Quotacheck: Done. [ 406.036506][ T8096] XFS (loop4): Unmounting Filesystem [ 406.069055][ T8740] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 406.100584][ T8740] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 406.158923][ T8740] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 406.198994][ T8740] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 406.267843][ T8853] loop1: detected capacity change from 0 to 64 [ 406.397125][ T8855] loop2: detected capacity change from 0 to 16 [ 406.410379][ T8740] 8021q: adding VLAN 0 to HW filter on device bond0 [ 406.455162][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 406.466090][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 406.490460][ T8856] futex_wake_op: syz-executor.0 tries to shift op by 144; fix this program [ 406.503229][ T8740] 8021q: adding VLAN 0 to HW filter on device team0 [ 406.508159][ T8855] erofs: (device loop2): mounted with root inode @ nid 36. [ 406.532114][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 406.546136][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 406.575449][ T41] bridge0: port 1(bridge_slave_0) entered blocking state [ 406.582937][ T41] bridge0: port 1(bridge_slave_0) entered forwarding state [ 406.638363][ T4263] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 406.647944][ T4263] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 406.676058][ T4263] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 406.696366][ T4263] bridge0: port 2(bridge_slave_1) entered blocking state [ 406.703548][ T4263] bridge0: port 2(bridge_slave_1) entered forwarding state [ 406.751375][ T4263] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 406.801514][ T4264] libceph: connect (1)[c::]:6789 error -101 [ 406.807602][ T4264] libceph: mon0 (1)[c::]:6789 connect error [ 406.865631][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 406.897979][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 406.929533][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 406.967956][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 406.999630][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 407.063730][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 407.082699][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 407.102427][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 407.121943][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 407.145643][ T8740] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 407.175480][ T4263] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 407.420376][ T4263] libceph: connect (1)[c::]:6789 error -101 [ 407.436670][ T4263] libceph: mon0 (1)[c::]:6789 connect error [ 407.447925][ T8864] ceph: No mds server is up or the cluster is laggy [ 407.877310][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 407.905210][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 407.938810][ T8740] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 408.038437][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 408.053315][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 408.101208][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 408.120494][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 408.132026][ T8740] device veth0_vlan entered promiscuous mode [ 408.140787][ T4263] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 408.155787][ T4263] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 408.184158][ T8740] device veth1_vlan entered promiscuous mode [ 408.268673][ T4263] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 408.280593][ T4263] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 408.298912][ T4263] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 408.311120][ T4263] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 408.330855][ T8740] device veth0_macvtap entered promiscuous mode [ 408.353455][ T8740] device veth1_macvtap entered promiscuous mode [ 408.427018][ T8875] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'. [ 408.469739][ T8875] tipc: Started in network mode [ 408.474657][ T8875] tipc: Node identity cgroup.pn, cluster identity 8 [ 408.497179][ T8740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 408.525868][ T8740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 408.553250][ T8740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 408.560515][ T8872] loop4: detected capacity change from 0 to 32768 [ 408.589875][ T8740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 408.610575][ T8740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 408.669753][ T8740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 408.730309][ T8740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 408.749977][ T8740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 408.773005][ T8740] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 408.796347][ T8872] XFS (loop4): Mounting V5 Filesystem [ 408.931309][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 408.968358][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 408.988279][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 409.014960][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 409.039526][ T8740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 409.057095][ T8740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 409.067963][ T8740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 409.079212][ T8740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 409.089932][ T8740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 409.096618][ T8872] XFS (loop4): Ending clean mount [ 409.107415][ T8740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 409.119791][ T8740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 409.131973][ T8740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 409.145344][ T8740] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 409.151206][ T8872] XFS (loop4): Unmounting Filesystem [ 409.153894][ T8888] netlink: 'syz-executor.2': attribute type 1 has an invalid length. [ 409.208893][ T8888] device bond1 entered promiscuous mode [ 409.277485][ T8892] bond1: (slave ip6gretap1): making interface the new active one [ 409.286425][ T8892] device ip6gretap1 entered promiscuous mode [ 409.342084][ T8892] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link [ 409.357661][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 409.371232][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 409.405281][ T8740] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 409.449724][ T8740] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 409.468753][ T8740] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 409.485559][ T8740] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 409.712435][ T4610] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 409.743820][ T4610] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 409.773836][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 409.838281][ T102] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 409.866762][ T102] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 409.912080][ T4691] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 409.996668][ T8915] netlink: 'syz-executor.0': attribute type 12 has an invalid length. [ 410.021095][ T8919] loop3: detected capacity change from 0 to 512 [ 410.036494][ T8918] netlink: 256 bytes leftover after parsing attributes in process `syz-executor.4'. [ 410.063301][ T8919] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 410.080569][ T8919] EXT4-fs (loop3): 1 truncate cleaned up [ 410.096018][ T8919] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 410.264085][ T4691] libceph: connect (1)[c::]:6789 error -101 [ 410.273493][ T4691] libceph: mon0 (1)[c::]:6789 connect error [ 411.133019][ T8740] EXT4-fs (loop3): unmounting filesystem. [ 411.175206][ T8938] IPVS: stopping master sync thread 8937 ... [ 411.185187][ T8937] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 0, id = 0 [ 411.227920][ T8924] ceph: No mds server is up or the cluster is laggy [ 411.300140][ T7] libceph: connect (1)[c::]:6789 error -101 [ 411.306176][ T7] libceph: mon0 (1)[c::]:6789 connect error [ 414.940768][ T8945] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'. [ 414.947376][ T8948] usb usb8: usbfs: process 8948 (syz-executor.1) did not claim interface 0 before use [ 416.016898][ T8964] loop3: detected capacity change from 0 to 256 [ 416.211356][ T8970] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'. [ 416.233585][ T8970] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'. [ 416.404509][ T8976] netlink: 'syz-executor.0': attribute type 12 has an invalid length. [ 416.972580][ T8955] loop4: detected capacity change from 0 to 32768 [ 417.018140][ T8986] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'. [ 417.046677][ T8986] device bridge_slave_1 left promiscuous mode [ 417.059348][ T8986] bridge0: port 2(bridge_slave_1) entered disabled state [ 417.072419][ T8955] XFS (loop4): Mounting V5 Filesystem [ 417.089426][ T8986] bridge1: port 1(bridge_slave_1) entered blocking state [ 417.098284][ T8986] bridge1: port 1(bridge_slave_1) entered disabled state [ 417.110327][ T8986] device bridge_slave_1 entered promiscuous mode [ 417.196888][ T8998] loop1: detected capacity change from 0 to 256 [ 417.202066][ T8955] XFS (loop4): Ending clean mount [ 417.212392][ T8955] XFS (loop4): Unmounting Filesystem [ 417.246061][ T8998] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0xff6f124c, utbl_chksum : 0xe619d30d) [ 417.259326][ T9001] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. [ 417.288892][ T9001] tipc: Started in network mode [ 417.299531][ T9001] tipc: Node identity cgroup.pn, cluster identity 8 [ 417.692465][ T7770] libceph: connect (1)[c::]:6789 error -101 [ 417.698457][ T7770] libceph: mon0 (1)[c::]:6789 connect error [ 417.712834][ T9023] netlink: 'syz-executor.3': attribute type 12 has an invalid length. [ 417.904334][ T9036] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'. [ 418.012925][ T26] kauditd_printk_skb: 5 callbacks suppressed [ 418.012941][ T26] audit: type=1326 audit(1718855552.906:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9029 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f251507cf29 code=0x0 [ 418.030829][ T7770] libceph: connect (1)[c::]:6789 error -101 [ 418.119256][ T7770] libceph: mon0 (1)[c::]:6789 connect error [ 418.144564][ T9038] loop4: detected capacity change from 0 to 256 [ 418.201337][ T9015] ceph: No mds server is up or the cluster is laggy [ 418.216059][ T9038] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0xff6f124c, utbl_chksum : 0xe619d30d) [ 419.620103][ T7770] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 419.666723][ T9072] loop0: detected capacity change from 0 to 256 [ 419.701401][ T9074] netlink: 'syz-executor.3': attribute type 12 has an invalid length. [ 419.740246][ T9072] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0xff6f124c, utbl_chksum : 0xe619d30d) [ 419.899995][ T7770] usb 2-1: Using ep0 maxpacket: 32 [ 419.985827][ T9065] loop2: detected capacity change from 0 to 32768 [ 420.030641][ T7770] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid maxpacket 1023, setting to 64 [ 420.083908][ T9065] XFS (loop2): Mounting V5 Filesystem [ 420.117938][ T9089] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'. [ 420.165902][ T26] audit: type=1800 audit(1718855555.056:123): pid=9092 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1966 res=0 errno=0 [ 420.222403][ T26] audit: type=1326 audit(1718855555.106:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9078 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f490467cf29 code=0x0 [ 420.227224][ T9065] XFS (loop2): Ending clean mount [ 420.260118][ T7770] usb 2-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=33.82 [ 420.300323][ T7770] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 420.332477][ T7770] usb 2-1: Product: syz [ 420.351258][ T7770] usb 2-1: Manufacturer: syz [ 420.369831][ T7770] usb 2-1: SerialNumber: syz [ 420.384191][ T9065] XFS (loop2): Unmounting Filesystem [ 420.392230][ T7770] usb 2-1: config 0 descriptor?? [ 420.601010][ T7770] usb 2-1: Warning: ath10k USB support is incomplete, don't expect anything to work! [ 420.663695][ T3845] usb 2-1: Failed to submit usb control message: -71 [ 420.673366][ T7770] usb 2-1: USB disconnect, device number 9 [ 420.684006][ T3845] usb 2-1: unable to send the bmi data to the device: -71 [ 420.706467][ T3845] usb 2-1: unable to get target info from device [ 420.713132][ T3845] usb 2-1: could not get target info (-71) [ 420.724078][ T3845] usb 2-1: could not probe fw (-71) [ 421.043194][ T9104] loop4: detected capacity change from 0 to 764 [ 421.063350][ T9104] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 421.116745][ T9110] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.3'. [ 422.083697][ T9123] loop4: detected capacity change from 0 to 256 [ 422.096457][ T9123] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0xff6f124c, utbl_chksum : 0xe619d30d) [ 422.409766][ T4040] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 422.636212][ T9135] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. [ 422.659740][ T4040] usb 1-1: Using ep0 maxpacket: 32 [ 422.731665][ T26] audit: type=1326 audit(1718855557.626:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9132 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f980a67cf29 code=0x0 [ 422.949999][ T4040] usb 1-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed [ 422.966955][ T4040] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 422.987729][ T4040] usb 1-1: Product: syz [ 422.997865][ T4040] usb 1-1: Manufacturer: syz [ 423.015397][ T4040] usb 1-1: SerialNumber: syz [ 423.029093][ T4040] usb 1-1: config 0 descriptor?? [ 423.088321][ T9129] loop4: detected capacity change from 0 to 40427 [ 423.096717][ T9129] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 423.104576][ T9129] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 423.122809][ T9129] F2FS-fs (loop4): Found nat_bits in checkpoint [ 423.192719][ T9129] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 423.200081][ T154] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 423.200090][ T9129] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 423.979870][ T154] usb 2-1: Using ep0 maxpacket: 32 [ 424.151947][ T4040] rtl8150 1-1:0.0: eth1: rtl8150 is detected [ 424.260247][ T154] usb 2-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed [ 424.277093][ T154] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 424.289575][ T154] usb 2-1: Product: syz [ 424.299513][ T154] usb 2-1: Manufacturer: syz [ 424.304320][ T154] usb 2-1: SerialNumber: syz [ 424.326443][ T154] usb 2-1: config 0 descriptor?? [ 424.339754][ T3997] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 424.344619][ T7] usb 1-1: USB disconnect, device number 5 [ 424.609892][ T3997] usb 4-1: Using ep0 maxpacket: 32 [ 424.639959][ T7770] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 424.760519][ T3997] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid maxpacket 1023, setting to 64 [ 424.931181][ T3997] usb 4-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=33.82 [ 424.951824][ T3997] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 424.962136][ T3997] usb 4-1: Product: syz [ 424.967592][ T3997] usb 4-1: Manufacturer: syz [ 424.975073][ T3997] usb 4-1: SerialNumber: syz [ 424.994141][ T3997] usb 4-1: config 0 descriptor?? [ 425.039920][ T154] (unnamed net_device) (uninitialized): Assigned a random MAC address: 1e:fc:3e:dc:3a:03 [ 425.039938][ T7770] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 425.074139][ T154] rtl8150 2-1:0.0: eth1: rtl8150 is detected [ 425.088340][ T154] usb 2-1: USB disconnect, device number 10 [ 425.098070][ T3997] usb 4-1: Warning: ath10k USB support is incomplete, don't expect anything to work! [ 425.156648][ T9168] loop4: detected capacity change from 0 to 256 [ 425.202529][ T9168] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0xff6f124c, utbl_chksum : 0xe619d30d) [ 425.219852][ T7770] usb 3-1: New USB device found, idVendor=468c, idProduct=90ea, bcdDevice=99.6d [ 425.234598][ T7770] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 425.259810][ T3845] usb 4-1: Failed to submit usb control message: -71 [ 425.269324][ T3845] usb 4-1: unable to send the bmi data to the device: -71 [ 425.282458][ T7770] usb 3-1: Product: syz [ 425.286735][ T7770] usb 3-1: Manufacturer: syz [ 425.299255][ T3845] usb 4-1: unable to get target info from device [ 425.308266][ T7770] usb 3-1: SerialNumber: syz [ 425.313010][ T3845] usb 4-1: could not get target info (-71) [ 425.322270][ T3997] usb 4-1: USB disconnect, device number 7 [ 425.329445][ T3845] usb 4-1: could not probe fw (-71) [ 425.344736][ T7770] usb 3-1: config 0 descriptor?? [ 425.405770][ T7770] usb 3-1: Found UVC 0.00 device syz (468c:90ea) [ 425.414292][ T7770] usb 3-1: No valid video chain found. [ 425.632453][ T9176] IPVS: stopping master sync thread 9177 ... [ 425.638618][ T9177] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 0, id = 0 [ 426.511635][ T9197] loop3: detected capacity change from 0 to 256 [ 426.515229][ T3997] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 426.549136][ T9197] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0xff6f124c, utbl_chksum : 0xe619d30d) [ 426.585006][ T9183] loop0: detected capacity change from 0 to 40427 [ 426.598412][ T9183] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 426.610240][ T9183] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 426.655710][ T9183] F2FS-fs (loop0): Found nat_bits in checkpoint [ 426.765481][ T9183] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 426.778123][ T9183] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 427.050229][ T3997] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 427.590160][ T3997] usb 2-1: New USB device found, idVendor=468c, idProduct=90ea, bcdDevice=99.6d [ 427.616069][ T3997] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 427.658041][ T3997] usb 2-1: Product: syz [ 427.684181][ T3997] usb 2-1: Manufacturer: syz [ 427.710639][ T3997] usb 2-1: SerialNumber: syz [ 427.735948][ T41] usb 3-1: USB disconnect, device number 7 [ 427.757076][ T3997] usb 2-1: config 0 descriptor?? [ 427.827087][ T3997] usb 2-1: Found UVC 0.00 device syz (468c:90ea) [ 427.844032][ T3997] usb 2-1: No valid video chain found. [ 427.859882][ T7] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 428.030244][ T41] usb 2-1: USB disconnect, device number 11 [ 428.099753][ T7] usb 5-1: Using ep0 maxpacket: 32 [ 428.390308][ T7] usb 5-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed [ 428.399892][ T3997] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 428.411825][ T7] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 428.423862][ T7] usb 5-1: Product: syz [ 428.428062][ T7] usb 5-1: Manufacturer: syz [ 428.435022][ T7] usb 5-1: SerialNumber: syz [ 428.444631][ T7] usb 5-1: config 0 descriptor?? [ 428.490080][ T154] bridge0: port 2(bridge_slave_1) entered disabled state [ 428.526021][ T9233] loop3: detected capacity change from 0 to 256 [ 428.541634][ T9233] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0xff6f124c, utbl_chksum : 0xe619d30d) [ 428.669891][ T3997] usb 1-1: Using ep0 maxpacket: 32 [ 428.790658][ T3997] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid maxpacket 1023, setting to 64 [ 429.060069][ T3997] usb 1-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=33.82 [ 429.072761][ T3997] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 429.098655][ T3997] usb 1-1: Product: syz [ 429.113286][ T3997] usb 1-1: Manufacturer: syz [ 429.130640][ T3997] usb 1-1: SerialNumber: syz [ 429.151108][ T3997] usb 1-1: config 0 descriptor?? [ 429.189938][ T7] (unnamed net_device) (uninitialized): Assigned a random MAC address: ee:62:6a:7b:2f:cc [ 429.227627][ T3997] usb 1-1: Warning: ath10k USB support is incomplete, don't expect anything to work! [ 429.253781][ T7] rtl8150 5-1:0.0: eth1: rtl8150 is detected [ 429.294572][ T7] usb 5-1: USB disconnect, device number 3 [ 429.425147][ T3997] usb 1-1: USB disconnect, device number 6 [ 429.439890][ T5140] usb 1-1: Failed to submit usb control message: -71 [ 429.449778][ T5140] usb 1-1: unable to send the bmi data to the device: -71 [ 429.475636][ T9238] loop3: detected capacity change from 0 to 40427 [ 429.492526][ T5140] usb 1-1: unable to get target info from device [ 429.500540][ T9238] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 429.508757][ T9238] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 429.510170][ T5140] usb 1-1: could not get target info (-71) [ 429.540928][ T9238] F2FS-fs (loop3): Found nat_bits in checkpoint [ 429.557247][ T5140] usb 1-1: could not probe fw (-71) [ 429.579864][ T4691] usb 2-1: new high-speed USB device number 12 using dummy_hcd [ 429.714851][ T9253] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 429.758847][ T9238] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 429.766438][ T9238] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 430.040103][ T4691] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 430.799828][ T4691] usb 2-1: New USB device found, idVendor=468c, idProduct=90ea, bcdDevice=99.6d [ 430.839045][ T4691] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 430.880376][ T4691] usb 2-1: Product: syz [ 430.898048][ T4691] usb 2-1: Manufacturer: syz [ 430.938361][ T4691] usb 2-1: SerialNumber: syz [ 430.974724][ T4691] usb 2-1: config 0 descriptor?? [ 431.041674][ T4691] usb 2-1: Found UVC 0.00 device syz (468c:90ea) [ 431.075429][ T4691] usb 2-1: No valid video chain found. [ 431.113816][ T9273] loop3: detected capacity change from 0 to 256 [ 431.163026][ T9273] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0xff6f124c, utbl_chksum : 0xe619d30d) [ 431.274201][ T9277] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'. [ 431.366682][ T26] audit: type=1326 audit(1718855566.256:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9268 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f251507cf29 code=0x0 [ 432.600406][ T9303] loop2: detected capacity change from 0 to 256 [ 432.635297][ T9303] exfat: Deprecated parameter 'utf8' [ 432.669607][ T4691] usb 2-1: USB disconnect, device number 12 [ 432.698632][ T9303] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x987a2e96, utbl_chksum : 0xe619d30d) [ 432.874020][ T9310] loop1: detected capacity change from 0 to 256 [ 432.895929][ T9310] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0xff6f124c, utbl_chksum : 0xe619d30d) [ 433.135081][ T9326] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.1'. [ 433.180886][ T9326] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'. [ 434.051252][ T9340] loop0: detected capacity change from 0 to 65536 [ 434.065294][ T9340] XFS (loop0): Mounting V5 Filesystem [ 434.087573][ T9340] XFS (loop0): Ending clean mount [ 434.111918][ T9340] XFS (loop0): Quotacheck needed: Please wait. [ 434.205364][ T9340] XFS (loop0): Quotacheck: Done. [ 434.232984][ T4263] XFS (loop0): Metadata CRC error detected at xfs_agf_read_verify+0x1df/0x2a0, xfs_agf block 0x8001 [ 434.269980][ T4263] XFS (loop0): Unmount and run xfs_repair [ 434.275751][ T4263] XFS (loop0): First 128 bytes of corrupted metadata buffer: [ 434.309889][ T4263] 00000000: 58 41 47 46 00 00 00 01 00 00 00 01 00 00 40 00 XAGF..........@. [ 434.318821][ T4263] 00000010: 00 00 00 02 00 00 00 03 00 00 00 00 00 00 00 01 ................ [ 434.369729][ T4263] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 00 00 00 04 ................ [ 434.378674][ T4263] 00000030: 00 00 00 04 00 00 3b 5f 00 00 3b 5c 00 00 00 00 ......;_..;\.... [ 434.417183][ T4263] 00000040: d6 f6 9d bd 8c 5d 46 be b8 8e 92 c0 ae 88 ce b2 .....]F......... [ 434.439601][ T4263] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 434.613930][ T4263] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 434.622945][ T4263] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 434.632290][ T9340] XFS (loop0): metadata I/O error in "xfs_read_agf+0x2e2/0x680" at daddr 0x8001 len 1 error 74 [ 434.747306][ T5615] XFS (loop0): Unmounting Filesystem [ 435.129844][ T7770] usb 2-1: new high-speed USB device number 13 using dummy_hcd [ 435.166255][ T9366] loop4: detected capacity change from 0 to 256 [ 435.215670][ T9366] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0xff6f124c, utbl_chksum : 0xe619d30d) [ 435.497048][ T9376] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'. [ 435.555922][ T9376] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.3'. [ 435.939764][ T4264] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 436.191706][ T4264] usb 5-1: Using ep0 maxpacket: 32 [ 436.208653][ T9389] loop3: detected capacity change from 0 to 32768 [ 436.305780][ T9389] ERROR: (device loop3): diAllocAG: numfree > numinos [ 436.305780][ T9389] [ 436.318743][ T9389] ialloc: diAlloc returned -5! [ 436.499954][ T4264] usb 5-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed [ 436.509038][ T4264] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 436.527065][ T9398] loop0: detected capacity change from 0 to 764 [ 436.548998][ T4264] usb 5-1: Product: syz [ 436.563120][ T4264] usb 5-1: Manufacturer: syz [ 436.567764][ T4264] usb 5-1: SerialNumber: syz [ 436.587862][ T9398] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 436.601224][ T4264] usb 5-1: config 0 descriptor?? [ 437.187437][ T9404] loop3: detected capacity change from 0 to 256 [ 437.215252][ T9404] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0xff6f124c, utbl_chksum : 0xe619d30d) [ 437.313162][ T9406] netlink: 'syz-executor.3': attribute type 12 has an invalid length. [ 437.443867][ T4264] (unnamed net_device) (uninitialized): Assigned a random MAC address: c2:c8:df:f1:e5:d7 [ 437.471206][ T4264] rtl8150 5-1:0.0: eth1: rtl8150 is detected [ 437.494976][ T4264] usb 5-1: USB disconnect, device number 4 [ 437.555411][ T9416] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.2'. [ 437.568275][ T9416] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'. [ 437.940089][ T7770] usb 2-1: unable to read config index 0 descriptor/all [ 437.947139][ T7770] usb 2-1: can't read configurations, error -71 [ 438.363510][ T9447] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.2'. [ 438.390093][ T9447] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'. [ 438.475167][ T9432] loop0: detected capacity change from 0 to 32768 [ 438.487492][ T9452] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 438.532827][ T9432] ERROR: (device loop0): diAllocAG: numfree > numinos [ 438.532827][ T9432] [ 438.545436][ T9432] ialloc: diAlloc returned -5! [ 438.840290][ C0] TCP: request_sock_TCP: Possible SYN flooding on port 2. Sending cookies. Check SNMP counters. [ 439.227161][ T9482] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'. [ 439.249926][ T9482] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'. [ 439.339866][ T4040] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 439.700090][ T4040] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 439.880518][ T4040] usb 4-1: New USB device found, idVendor=468c, idProduct=90ea, bcdDevice=99.6d [ 439.908195][ T4040] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 439.957891][ T4040] usb 4-1: Product: syz [ 439.977223][ T4040] usb 4-1: Manufacturer: syz [ 439.999050][ T4040] usb 4-1: SerialNumber: syz [ 440.032332][ T4040] usb 4-1: config 0 descriptor?? [ 440.052486][ T1252] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.058880][ T1252] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.095516][ T4040] usb 4-1: Found UVC 0.00 device syz (468c:90ea) [ 440.140820][ T4040] usb 4-1: No valid video chain found. [ 441.004280][ T9518] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.1'. [ 441.061506][ T9518] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'. [ 442.235858][ T3997] usb 4-1: USB disconnect, device number 8 [ 444.067653][ T9619] loop1: detected capacity change from 0 to 512 [ 444.081131][ T9621] loop4: detected capacity change from 0 to 512 [ 444.089216][ T9621] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 444.132785][ T9626] loop2: detected capacity change from 0 to 764 [ 444.140412][ T9619] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2 [ 444.154788][ T9621] EXT4-fs error (device loop4): ext4_orphan_get:1396: inode #15: comm syz-executor.4: casefold flag without casefold feature [ 444.168427][ T9619] EXT4-fs (loop1): 1 truncate cleaned up [ 444.177122][ T9619] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 444.195296][ T9621] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: inode #12: comm syz-executor.4: missing EA_INODE flag [ 444.213609][ T9626] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 444.217458][ T9621] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz-executor.4: error while reading EA inode 12 err=-117 [ 444.338000][ T9621] EXT4-fs (loop4): 1 orphan inode deleted [ 444.344917][ T9621] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 445.692020][ T8021] EXT4-fs (loop1): unmounting filesystem. [ 446.490382][ T8096] EXT4-fs (loop4): unmounting filesystem. [ 446.534413][ T9644] loop1: detected capacity change from 0 to 8 [ 446.664987][ T9650] loop4: detected capacity change from 0 to 4096 [ 446.699366][ T9644] SQUASHFS error: lzo decompression failed, data probably corrupt [ 446.708608][ T9644] SQUASHFS error: Failed to read block 0x91: -5 [ 446.721046][ T9644] SQUASHFS error: Unable to read metadata cache entry [8f] [ 446.774751][ T9644] SQUASHFS error: Unable to read inode 0x11f [ 446.806741][ T9660] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 0, id = 0 [ 447.136479][ T9675] loop1: detected capacity change from 0 to 512 [ 447.173585][ T9675] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2 [ 447.197636][ T9675] EXT4-fs (loop1): 1 truncate cleaned up [ 447.205173][ T9675] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 448.166533][ T8021] EXT4-fs (loop1): unmounting filesystem. [ 448.296741][ T9690] loop2: detected capacity change from 0 to 512 [ 448.307871][ T9687] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.1'. [ 448.318316][ T9688] loop4: detected capacity change from 0 to 764 [ 448.368033][ T9687] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'. [ 448.391188][ T9690] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 448.411339][ T9688] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 448.567179][ T9690] EXT4-fs error (device loop2): ext4_orphan_get:1396: inode #15: comm syz-executor.2: casefold flag without casefold feature [ 448.900698][ T9690] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: inode #12: comm syz-executor.2: missing EA_INODE flag [ 448.938870][ T9701] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. [ 448.990635][ T9690] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz-executor.2: error while reading EA inode 12 err=-117 [ 449.007396][ T9705] loop4: detected capacity change from 0 to 64 [ 449.034127][ T9690] EXT4-fs (loop2): 1 orphan inode deleted [ 449.046362][ T9710] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 0, id = 0 [ 449.056364][ T9690] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 449.132904][ T9705] hfs: inconsistency in B*Tree (1,0,2,2,3) [ 449.143488][ T3567] EXT4-fs (loop2): unmounting filesystem. [ 449.178078][ T9705] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 449.235628][ T9715] netlink: 'syz-executor.4': attribute type 10 has an invalid length. [ 449.303275][ T9724] loop2: detected capacity change from 0 to 512 [ 449.462507][ T9724] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 449.498574][ T9724] EXT4-fs (loop2): 1 truncate cleaned up [ 449.544577][ T9724] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 449.553035][ T9715] team0: Port device wlan1 added [ 450.283508][ T3567] EXT4-fs (loop2): unmounting filesystem. [ 451.313389][ T9746] loop2: detected capacity change from 0 to 764 [ 451.332389][ T9745] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.4'. [ 451.345533][ T9745] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'. [ 451.356488][ T9746] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 451.437419][ T4040] libceph: connect (1)[c::]:6789 error -101 [ 451.453290][ T4040] libceph: mon0 (1)[c::]:6789 connect error [ 451.499042][ T4040] libceph: connect (1)[c::]:6789 error -101 [ 451.506077][ T4040] libceph: mon0 (1)[c::]:6789 connect error [ 451.784560][ T4040] libceph: connect (1)[c::]:6789 error -101 [ 451.879519][ T4040] libceph: mon0 (1)[c::]:6789 connect error [ 451.907960][ T9755] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 0, id = 0 [ 452.106836][ T9747] ceph: No mds server is up or the cluster is laggy [ 452.172882][ T9764] skb len=10633 headroom=168 headlen=10633 tailroom=5263 [ 452.172882][ T9764] mac=(168,0) net=(168,20) trans=188 [ 452.172882][ T9764] shinfo(txflags=0 nr_frags=0 gso(size=0 type=0 segs=0)) [ 452.172882][ T9764] csum(0x350e2a31 ip_summed=3 complete_sw=0 valid=0 level=0) [ 452.172882][ T9764] hash(0x0 sw=0 l4=0) proto=0x0800 pkttype=0 iif=0 [ 452.206027][ T9764] dev name=veth0 feat=0x000061164fdd19e9 [ 452.211805][ T9764] skb linear: 00000000: 45 02 29 89 31 9b 00 00 0f 2f b0 79 ac 14 14 18 [ 452.221426][ T9764] skb linear: 00000010: e0 00 00 03 00 00 08 00 bd 0b 29 71 10 82 0c 52 [ 452.230086][ T9764] skb linear: 00000020: 0f 06 ea a4 fd fe 4b 88 94 30 eb b5 29 97 e3 6e [ 452.238667][ T9764] skb linear: 00000030: 03 9b 1c 59 88 25 f8 01 00 e3 c0 63 76 c3 30 76 [ 452.247195][ T9764] skb linear: 00000040: a1 67 d5 14 fa 57 0a 44 02 61 a6 7a 34 a0 76 05 [ 452.255711][ T9764] skb linear: 00000050: c9 3a 19 49 46 bc 62 83 f4 00 00 00 4c 80 00 00 [ 452.264229][ T9764] skb linear: 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 452.272766][ T9764] skb linear: 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 452.281283][ T9764] skb linear: 00000080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 452.289815][ T9764] skb linear: 00000090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 452.298318][ T9764] skb linear: 000000a0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 452.306840][ T9764] skb linear: 000000b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 452.315360][ T9764] skb linear: 000000c0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 452.323936][ T9764] skb linear: 000000d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 452.332452][ T9764] skb linear: 000000e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 452.340961][ T9764] skb linear: 000000f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 452.349450][ T9764] skb linear: 00000100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 452.357956][ T9764] skb linear: 00000110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 452.366484][ T9764] skb linear: 00000120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 452.374992][ T9764] ------------[ cut here ]------------ [ 452.380556][ T9764] offset (10633) >= skb_headlen() (10633) [ 452.386596][ T9764] WARNING: CPU: 0 PID: 9764 at net/core/dev.c:3305 skb_checksum_help+0x626/0x740 [ 452.395803][ T9764] Modules linked in: [ 452.399752][ T9764] CPU: 0 PID: 9764 Comm: syz-executor.4 Not tainted 6.1.94-syzkaller #0 [ 452.408086][ T9764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 452.418177][ T9764] RIP: 0010:skb_checksum_help+0x626/0x740 [ 452.423941][ T9764] Code: ff df 48 8b 4c 24 18 0f b6 04 01 84 c0 0f 85 cd 00 00 00 48 8b 04 24 2b 18 48 c7 c7 a0 1a e1 8b 44 89 fe 89 da e8 ea f1 d1 f8 <0f> 0b bb ea ff ff ff e9 59 fd ff ff e8 99 f4 09 f9 c6 05 dd f3 de [ 452.443599][ T9764] RSP: 0018:ffffc90005d8eee8 EFLAGS: 00010246 [ 452.449783][ T9764] RAX: 621d659f0516e200 RBX: 0000000000002989 RCX: 0000000000040000 [ 452.457853][ T9764] RDX: ffffc90010e6c000 RSI: 000000000003ffff RDI: 0000000000040000 [ 452.465941][ T9764] RBP: 0000000000002989 R08: ffffffff8152931e R09: fffff52000bb1d3d [ 452.474194][ T9764] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000002a31 [ 452.482262][ T9764] R13: ffff88807f062930 R14: ffff88807f0628c0 R15: 0000000000002989 [ 452.490247][ T9764] FS: 00007f49053c86c0(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 452.499164][ T9764] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 452.505766][ T9764] CR2: 000000002000e000 CR3: 000000005d5ea000 CR4: 00000000003506f0 [ 452.513757][ T9764] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 452.521745][ T9764] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 452.529764][ T9764] Call Trace: [ 452.533047][ T9764] [ 452.535972][ T9764] ? __warn+0x15a/0x520 [ 452.540242][ T9764] ? skb_checksum_help+0x626/0x740 [ 452.545369][ T9764] ? report_bug+0x2af/0x500 [ 452.549905][ T9764] ? skb_checksum_help+0x626/0x740 [ 452.555009][ T9764] ? handle_bug+0x3d/0x70 [ 452.559316][ T9764] ? exc_invalid_op+0x16/0x40 [ 452.564005][ T9764] ? asm_exc_invalid_op+0x16/0x20 [ 452.569020][ T9764] ? __warn_printk+0x28e/0x350 [ 452.573795][ T9764] ? skb_checksum_help+0x626/0x740 [ 452.578892][ T9764] ? skb_checksum_help+0x626/0x740 [ 452.584019][ T9764] ip_do_fragment+0x209/0x1b20 [ 452.588775][ T9764] ? print_irqtrace_events+0x210/0x210 [ 452.594251][ T9764] ? ip_fragment+0x220/0x220 [ 452.598848][ T9764] ? ip_frag_next+0xb10/0xb10 [ 452.603563][ T9764] ? kmem_cache_free+0x292/0x510 [ 452.608487][ T9764] ? ip_fragment+0x9a/0x220 [ 452.613046][ T9764] __ip_finish_output+0x2bd/0x4b0 [ 452.618106][ T9764] iptunnel_xmit+0x513/0x920 [ 452.622840][ T9764] ip_tunnel_xmit+0x22e4/0x2cc0 [ 452.627708][ T9764] ? tnl_update_pmtu+0x10b0/0x10b0 [ 452.632942][ T9764] ? skb_mac_gso_segment+0x4eb/0x710 [ 452.638224][ T9764] ? validate_xmit_xfrm+0xb4/0x10b0 [ 452.643803][ T9764] ? gre_build_header+0x25b/0x9a0 [ 452.649097][ T9764] ipgre_xmit+0x866/0xc40 [ 452.654406][ T9764] dev_hard_start_xmit+0x261/0x8c0 [ 452.659583][ T9764] __dev_queue_xmit+0x1bb1/0x3cf0 [ 452.664876][ T9764] ? __dev_queue_xmit+0x2d6/0x3cf0 [ 452.670006][ T9764] ? netdev_core_pick_tx+0x320/0x320 [ 452.675290][ T9764] ? virtio_net_hdr_to_skb+0x6db/0x1220 [ 452.680897][ T9764] packet_sendmsg+0x4775/0x61a0 [ 452.685744][ T9764] ? aa_sk_perm+0xa60/0xa60 [ 452.690269][ T9764] ? aa_sk_perm+0x92d/0xa60 [ 452.694786][ T9764] ? tomoyo_socket_bind_permission+0x330/0x330 [ 452.700946][ T9764] ? packet_getsockopt+0xed0/0xed0 [ 452.706047][ T9764] ? __import_iovec+0x316/0x4c0 [ 452.710919][ T9764] ? aa_sock_msg_perm+0x91/0x150 [ 452.715843][ T9764] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 452.721137][ T9764] ? security_socket_sendmsg+0x7d/0xa0 [ 452.726581][ T9764] ? packet_getsockopt+0xed0/0xed0 [ 452.731889][ T9764] ____sys_sendmsg+0x5a5/0x8f0 [ 452.736683][ T9764] ? __sys_sendmsg_sock+0x30/0x30 [ 452.741831][ T9764] __sys_sendmsg+0x2a9/0x390 [ 452.746436][ T9764] ? ____sys_sendmsg+0x8f0/0x8f0 [ 452.751448][ T9764] ? rcu_is_watching+0x11/0xb0 [ 452.756214][ T9764] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 452.762227][ T9764] ? syscall_enter_from_user_mode+0x2e/0x230 [ 452.768368][ T9764] ? lockdep_hardirqs_on+0x94/0x130 [ 452.773580][ T9764] ? syscall_enter_from_user_mode+0x2e/0x230 [ 452.779550][ T9764] do_syscall_64+0x3b/0xb0 [ 452.784122][ T9764] ? clear_bhb_loop+0x45/0xa0 [ 452.788806][ T9764] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 452.794747][ T9764] RIP: 0033:0x7f490467cf29 [ 452.799159][ T9764] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 452.818808][ T9764] RSP: 002b:00007f49053c80c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 452.827239][ T9764] RAX: ffffffffffffffda RBX: 00007f49047b3f80 RCX: 00007f490467cf29 [ 452.835227][ T9764] RDX: 0000000000000000 RSI: 0000000020002ac0 RDI: 0000000000000003 [ 452.843211][ T9764] RBP: 00007f49046ec074 R08: 0000000000000000 R09: 0000000000000000 [ 452.851214][ T9764] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 452.859183][ T9764] R13: 000000000000000b R14: 00007f49047b3f80 R15: 00007ffea4a0e118 [ 452.867256][ T9764] [ 452.870315][ T9764] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 452.877595][ T9764] CPU: 0 PID: 9764 Comm: syz-executor.4 Not tainted 6.1.94-syzkaller #0 [ 452.885907][ T9764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 452.895962][ T9764] Call Trace: [ 452.899222][ T9764] [ 452.902147][ T9764] dump_stack_lvl+0x1e3/0x2cb [ 452.906836][ T9764] ? nf_tcp_handle_invalid+0x642/0x642 [ 452.912281][ T9764] ? panic+0x764/0x764 [ 452.916344][ T9764] ? 0xffffffffa00038c0 [ 452.920480][ T9764] ? vscnprintf+0x59/0x80 [ 452.924791][ T9764] panic+0x318/0x764 [ 452.928681][ T9764] ? __warn+0x169/0x520 [ 452.932820][ T9764] ? memcpy_page_flushcache+0xfc/0xfc [ 452.938192][ T9764] __warn+0x348/0x520 [ 452.942157][ T9764] ? skb_checksum_help+0x626/0x740 [ 452.947337][ T9764] report_bug+0x2af/0x500 [ 452.951645][ T9764] ? skb_checksum_help+0x626/0x740 [ 452.956737][ T9764] handle_bug+0x3d/0x70 [ 452.960871][ T9764] exc_invalid_op+0x16/0x40 [ 452.965353][ T9764] asm_exc_invalid_op+0x16/0x20 [ 452.970188][ T9764] RIP: 0010:skb_checksum_help+0x626/0x740 [ 452.975902][ T9764] Code: ff df 48 8b 4c 24 18 0f b6 04 01 84 c0 0f 85 cd 00 00 00 48 8b 04 24 2b 18 48 c7 c7 a0 1a e1 8b 44 89 fe 89 da e8 ea f1 d1 f8 <0f> 0b bb ea ff ff ff e9 59 fd ff ff e8 99 f4 09 f9 c6 05 dd f3 de [ 452.995515][ T9764] RSP: 0018:ffffc90005d8eee8 EFLAGS: 00010246 [ 453.001588][ T9764] RAX: 621d659f0516e200 RBX: 0000000000002989 RCX: 0000000000040000 [ 453.009556][ T9764] RDX: ffffc90010e6c000 RSI: 000000000003ffff RDI: 0000000000040000 [ 453.017511][ T9764] RBP: 0000000000002989 R08: ffffffff8152931e R09: fffff52000bb1d3d [ 453.025460][ T9764] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000002a31 [ 453.033418][ T9764] R13: ffff88807f062930 R14: ffff88807f0628c0 R15: 0000000000002989 [ 453.041380][ T9764] ? __warn_printk+0x28e/0x350 [ 453.046129][ T9764] ? skb_checksum_help+0x626/0x740 [ 453.051228][ T9764] ip_do_fragment+0x209/0x1b20 [ 453.055981][ T9764] ? print_irqtrace_events+0x210/0x210 [ 453.061420][ T9764] ? ip_fragment+0x220/0x220 [ 453.065991][ T9764] ? ip_frag_next+0xb10/0xb10 [ 453.070738][ T9764] ? kmem_cache_free+0x292/0x510 [ 453.075675][ T9764] ? ip_fragment+0x9a/0x220 [ 453.080174][ T9764] __ip_finish_output+0x2bd/0x4b0 [ 453.085193][ T9764] iptunnel_xmit+0x513/0x920 [ 453.089771][ T9764] ip_tunnel_xmit+0x22e4/0x2cc0 [ 453.094619][ T9764] ? tnl_update_pmtu+0x10b0/0x10b0 [ 453.099713][ T9764] ? skb_mac_gso_segment+0x4eb/0x710 [ 453.104992][ T9764] ? validate_xmit_xfrm+0xb4/0x10b0 [ 453.110172][ T9764] ? gre_build_header+0x25b/0x9a0 [ 453.115177][ T9764] ipgre_xmit+0x866/0xc40 [ 453.119488][ T9764] dev_hard_start_xmit+0x261/0x8c0 [ 453.124671][ T9764] __dev_queue_xmit+0x1bb1/0x3cf0 [ 453.129689][ T9764] ? __dev_queue_xmit+0x2d6/0x3cf0 [ 453.134801][ T9764] ? netdev_core_pick_tx+0x320/0x320 [ 453.140102][ T9764] ? virtio_net_hdr_to_skb+0x6db/0x1220 [ 453.145647][ T9764] packet_sendmsg+0x4775/0x61a0 [ 453.150501][ T9764] ? aa_sk_perm+0xa60/0xa60 [ 453.155001][ T9764] ? aa_sk_perm+0x92d/0xa60 [ 453.159566][ T9764] ? tomoyo_socket_bind_permission+0x330/0x330 [ 453.165703][ T9764] ? packet_getsockopt+0xed0/0xed0 [ 453.170798][ T9764] ? __import_iovec+0x316/0x4c0 [ 453.175631][ T9764] ? aa_sock_msg_perm+0x91/0x150 [ 453.180553][ T9764] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 453.185991][ T9764] ? security_socket_sendmsg+0x7d/0xa0 [ 453.191429][ T9764] ? packet_getsockopt+0xed0/0xed0 [ 453.196542][ T9764] ____sys_sendmsg+0x5a5/0x8f0 [ 453.201303][ T9764] ? __sys_sendmsg_sock+0x30/0x30 [ 453.206326][ T9764] __sys_sendmsg+0x2a9/0x390 [ 453.210894][ T9764] ? ____sys_sendmsg+0x8f0/0x8f0 [ 453.215818][ T9764] ? rcu_is_watching+0x11/0xb0 [ 453.220581][ T9764] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 453.226573][ T9764] ? syscall_enter_from_user_mode+0x2e/0x230 [ 453.232547][ T9764] ? lockdep_hardirqs_on+0x94/0x130 [ 453.237738][ T9764] ? syscall_enter_from_user_mode+0x2e/0x230 [ 453.243711][ T9764] do_syscall_64+0x3b/0xb0 [ 453.248191][ T9764] ? clear_bhb_loop+0x45/0xa0 [ 453.252875][ T9764] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 453.258760][ T9764] RIP: 0033:0x7f490467cf29 [ 453.263188][ T9764] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 453.282785][ T9764] RSP: 002b:00007f49053c80c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 453.291292][ T9764] RAX: ffffffffffffffda RBX: 00007f49047b3f80 RCX: 00007f490467cf29 [ 453.299255][ T9764] RDX: 0000000000000000 RSI: 0000000020002ac0 RDI: 0000000000000003 [ 453.307218][ T9764] RBP: 00007f49046ec074 R08: 0000000000000000 R09: 0000000000000000 [ 453.315193][ T9764] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 453.323167][ T9764] R13: 000000000000000b R14: 00007f49047b3f80 R15: 00007ffea4a0e118 [ 453.331131][ T9764] [ 453.334385][ T9764] Kernel Offset: disabled [ 453.338733][ T9764] Rebooting in 86400 seconds..