last executing test programs: 10.677606498s ago: executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000000d08000640ffffff000800034000000008680000000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000003c0003803800008008000340000000022c0002802800028008000180fffffffb"], 0xfc}}, 0x0) 10.390810175s ago: executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001240)=ANY=[@ANYBLOB="340000001300290a000000000000000007000000", @ANYRES32=r1, @ANYBLOB="000000000000000014001a8010000580"], 0x34}}, 0x0) 9.205292088s ago: executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x1c, 0x30, 0x107, 0x0, 0x0, {0x7}, [@nested={0x6, 0x1, 0x0, 0x1, [@generic="9892"]}]}, 0x1c}}, 0x0) 9.028727085s ago: executing program 1: r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2}) ioctl$TUNSETLINK(r1, 0x400454cd, 0x339) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @link_local}) close_range(r0, 0xffffffffffffffff, 0x0) 8.63222715s ago: executing program 1: r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000002000000000000000000082295"], &(0x7f0000000040)='syzkaller\x00'}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x1f4, 0xe, 0x0, &(0x7f0000000000)="ff412f66b0833efc8864968708ff", 0x0, 0x0, 0x300, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe}, 0x50) 8.528510001s ago: executing program 1: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r0, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8) setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000080)=ANY=[@ANYRES32=0x0, @ANYBLOB="05f3"], 0x9) setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000180)={0x0, 0x5}, 0x8) 2.93022457s ago: executing program 4: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0) write$smackfs_netlabel(r1, &(0x7f000001fd40)=ANY=[], 0xfffffdef) ioctl$SNAPSHOT_AVAIL_SWAP_SIZE(r0, 0x400c330d, 0x0) 2.777280043s ago: executing program 2: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x4, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180200000000000000000000000000008500000061000000850000000e00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0xe, 0x0, &(0x7f00000009c0)="e02742e8680d85ff9782762f88a8", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 2.688328082s ago: executing program 2: r0 = syz_io_uring_setup(0x516b, &(0x7f0000000340)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f00000000c0)=0x0) syz_io_uring_setup(0x890, &(0x7f0000000280), &(0x7f0000000300)=0x0, &(0x7f0000000180)) syz_io_uring_submit(r2, r1, &(0x7f00000001c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index, 0x0, &(0x7f0000000140), 0x1000000000000221}) io_uring_enter(r0, 0xb15, 0x0, 0x0, 0x0, 0x0) 2.394639388s ago: executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000008c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000d80)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_SET_SEC_PARAMS(r0, &(0x7f0000000ec0)={0x0, 0x0, &(0x7f0000000e80)={&(0x7f0000000140)={0x2c, r1, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_SEC_OUT_KEY_ID={0x10, 0x2b, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x4}]}]}, 0x2c}}, 0x0) 2.377754372s ago: executing program 3: r0 = syz_open_dev$vim2m(&(0x7f00000000c0), 0x8000, 0x2) ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000000)={0x3d, 0x2, 0x0, "8baadc68379dd10200e6fff749686b10ff85a510ec01000000419d6bc2cb00"}) 2.347804551s ago: executing program 4: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) sendmmsg$inet6(r0, &(0x7f0000003c40)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)="03", 0x1}], 0x1}}], 0x1, 0x0) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r0, 0x84, 0xd, &(0x7f0000000100), 0x4) 2.237853211s ago: executing program 3: syz_mount_image$nilfs2(&(0x7f0000000180), &(0x7f0000000a80)='./file1\x00', 0x41c, &(0x7f00000001c0)={[{@nodiscard}, {@order_strict}, {@nobarrier}, {@norecovery}, {@discard}, {@discard}, {@nobarrier}, {@nodiscard}, {@nobarrier}]}, 0x1, 0xa75, &(0x7f0000000ac0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) fsync(r0) 2.188968586s ago: executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a5c000000060a0904000000000000000002000000300004802c0001800e000100696d6d656469617465000000180002800c00028005000100c400000008000140000000090900010073797a30000000000900020073797a320000000014000000110001"], 0x84}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000080aff0f0000000000000000020000000900010073797a300000000014000000110001"], 0x48}}, 0x0) 2.15084639s ago: executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000080)={'wpan1\x00', 0x0}) r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000380), 0xffffffffffffffff) sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000200)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000002100000008000300", @ANYRES32=r1, @ANYBLOB="24002d80080002000300000005000100000000000500040000000000080003"], 0x40}}, 0x0) 2.047327234s ago: executing program 0: syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200800, &(0x7f0000000680)={[{@nodiscard}, {}, {@acl}, {@nomblk_io_submit}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@jqfmt_vfsv1}, {@nodelalloc}, {@auto_da_alloc}, {@norecovery}]}, 0x5, 0x591, &(0x7f0000000f80)="$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") chdir(&(0x7f0000000380)='./file0\x00') rename(&(0x7f0000000400)='./file0\x00', &(0x7f0000000f00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 1.887272128s ago: executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100000500001900000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000440)={'ip6tnl0\x00', 0x0}) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000400)={0x30, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0x10, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x30}}, 0x0) 1.780202584s ago: executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)={0x20, r1, 0x1, 0x0, 0x0, {0x2b}, [@ETHTOOL_A_LINKMODES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x20}}, 0x0) 436.048422ms ago: executing program 3: r0 = socket$inet(0x2, 0x6, 0x0) connect$inet(r0, &(0x7f0000000180)={0x2, 0x0, @multicast2}, 0x5) 417.248421ms ago: executing program 2: r0 = openat$smackfs_netlabel(0xffffffffffffff9c, &(0x7f0000001280), 0x2, 0x0) capset(&(0x7f0000000000)={0x20071026}, &(0x7f0000000140)) write$smackfs_netlabel(r0, 0x0, 0x5a) 416.710406ms ago: executing program 0: syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0]) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='autofs\x00', 0x0, &(0x7f0000000100)) r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x0, 0x0) symlinkat(&(0x7f0000000a00)='./file0\x00', r0, &(0x7f0000000a40)='./file0\x00') readlinkat(r0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000240)=""/60, 0x3c) r1 = open$dir(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) readlinkat(r1, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)=""/171, 0xab) 405.679836ms ago: executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x11, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000008000000000000000000000095"], &(0x7f0000000440)='GPL\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='contention_end\x00', r0}, 0x10) r1 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) r2 = fsmount(r1, 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f00000000c0)={@cgroup=r2, 0x2b, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) 381.358635ms ago: executing program 3: set_mempolicy(0x2, &(0x7f0000000040)=0x471, 0x6) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0) shmget$private(0x0, 0x7000, 0x800, &(0x7f000021c000/0x7000)=nil) 265.655604ms ago: executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x2) r1 = dup(r0) write$UHID_INPUT(r1, &(0x7f0000000000)={0x8, {"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", 0x1000}}, 0x12b) 263.078557ms ago: executing program 0: r0 = openat$smackfs_change_rule(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0) write$binfmt_script(r0, &(0x7f0000000400)={'#! ', './file1', [{0x20, 'bLB\xab^|\xd2F\xce\xe8\xdf\xe7\xb8\xc39*8m\xcc<\xdeb\xff\xed\xe0\x80\x98\xf3\xc0\xef\xd0lcG!\xa8\x7f\xee\x0e\xad{\x1c\x82\b\"\x03\xcc\xd1\x1ao\xba\x19\xdeS2\x94\xd7Y\xad\x9c\x9e\x1a\xda\x875\xf3\xb8\xac0\xb0S\xd9\r\x1d\x82\xcaav\x15h\x1dm\xa6\xa8\xbc\xb2J\xb0\x82\\\x98\x02p\xae\x9eD=\x9do\x9d\xcb\x85\xed\x15|\x9e\x8f\x9c\x94\xf0\xb4\xc5,Q\xf6\xd3\f\xd35\xe3?a\xc0*\xe6\x96\x9b:V\"\xe0(%G\xf1\x02\xdf-\x88\xa5\xf5#W\xcc\x8aq\x9e\xa3\x9a\xac\x95\xba\xc4c\a\x02\xc4'}]}, 0xa9) 202.197852ms ago: executing program 3: syz_mount_image$hfs(&(0x7f0000000140), &(0x7f0000000040)='./bus\x00', 0x2810880, &(0x7f0000000100)=ANY=[], 0x8a, 0x28e, &(0x7f0000000680)="$eJzs3U1r1EAcx/HfJNt1a2tNbUUQD1IteJK2XsRLQYqvwZOo3RWKSwWtoF4snsUX4N2LL8AX4UkEz3ry5AvoLTKzSXeiedi2dsel3w/sGpN5+E+STeYfKBGAE+v2xvcPN37aj5FixZJuSZHddFktSed1ofN8e2drp9/r1jUUSx25j5FcTfNXmc3tXllVW8/VyCT2fy3N+utwPNI0TX+EDgIhdbJ/47KNkXQq+3XGfuFJtxs6gMDMnvb0QnOh4wAAhGUG9/cou8/PZvP3KJKWs9u+f///diZwvEe1FzqAwLz7v8uyUmOP71m3aZjvuRTObo/yLPGg/djJY1uDM6swwTRNWaWLJZp+tNXvXd980u9GeqP1jFdsUdK6ulnOmmmIdqkkNy1qa/TWasy4MUzZMaxVxL9Q1unhe2xmPpsv5p5J9F7d/flfKzW2exdBsn+k7kwN41+pbtGNMhmUqhjlvOvkYnHH1o4yrspIlO+peRUfECTFONultdr6o9ZgdKvVo3PtLJTWWmuotWhrffRqDc/m6prHzbwzd82SfumTNrz5f2T39rJG+WXaMq5kdmbk4ynNDVuuZOKv2r1U2mZ0uPHgUN7qoW5q7tnLV48f9Pu9pyycoIX8JPhf4vl3C63x9NU+8q7r6ECFpboy+aVzhAbzi3Rjp2EuSxiv4UGvLvN6nAFh3OzFwwzyPy9fWXEpkv1KaubpadO0zWtxtSI3OOe+T3stmez5fHUGNFOdwY2ac125Jl31VjbkXImNc7p2rJPEbOir7vP8HwAAAAAAAAAAAAAAAAAAYNKM428zQo8RAAAAAAAAAAAAAAAAAAAAAIBJV/3+346O8f2/hZfp8P5fIIzfAQAA///stXSM") r0 = openat(0xffffffffffffff9c, &(0x7f0000000640)='.\x00', 0x0, 0x0) renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000200)='./bus\x00', 0x0) chdir(&(0x7f0000000080)='./bus\x00') mkdirat(0xffffffffffffff9c, &(0x7f0000000600)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) r1 = open(&(0x7f0000000200)='./bus\x00', 0x141042, 0x0) write$UHID_INPUT(r1, &(0x7f0000000980)={0x8, {"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000220000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005d85269e832fcdea000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000", 0xfffe}}, 0x1006) 151.788529ms ago: executing program 4: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f00000001c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x1, 0x0, 0x13, 0x0, 0x2, [{0xfffffffd}]}]}}, &(0x7f0000000080)=""/233, 0x32, 0xe9, 0x1}, 0x20) 123.292725ms ago: executing program 0: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) ioprio_set$pid(0x0, 0xffffffffffffffff, 0x0) 8.344207ms ago: executing program 2: r0 = socket$packet(0x11, 0x3, 0x300) getsockopt$sock_buf(r0, 0x1, 0x37, 0x0, &(0x7f0000001000)=0x29) 0s ago: executing program 4: r0 = memfd_create(&(0x7f0000000100)=';e\x00\x00\xa4\xd8\xe0\x9c\x7f9\x8aZ]3N\xbb\xe1^\x9c\xe1\x9b6s$0Y\xf8\x90\x00\x00\x00\x00\xd2~l\xf6\x12\xde\xdd\xd5\x1d\x96\xb0a\xad\xcd\x16\xd8G\xae\xd9DZm\xabO\xad\x11%\x7f`@\x16c\xc0\xb6\x1f\xe3\x00\x1a_\xc7\xbf\xa7T\xbe\x13\x8b\xb3r\x8fL\xe6\xba\xe7\x18\xb4$BIj\xa3\xc9\xc6|\x9b\x88\xddPx\x02I\xde\xe8\xcd\x02\xc1\xedc2\x06\xcbM\xfb\x13jZ\x96\xeej\x9b\xe4XjN\xb9>\xdf3U\r \x8dh8T/h)\x90\xff\x8d\xd9\x89\xab\xf8P\xacYtk\xa3\xed\xfa*8\x13\b\xce\xf8z\xed\xadnz\x96\xa3\x9a9R\xd9]\xe11We\xfe3\xe06\x1a^\x04^\xef\xa3\x0fU\x9b1\xc6J\x83\x9d[\\a\xfd\xdc\xa1\xcd\xbe\x9b\xc5z7\xe8VP\x89\x16MK`\xe5\x137\b\x00\x00\x00\xd5\x01\xea\x98\xe6Z\x95j\xe3\x0ek>\x14\x80\rXS\xce\xf9\x0e\x89\xc4\xc6\x1bOm4Lla\r\xce\x17\xb5r&\xf3\x96\xbc\xc39\xa7\x95\xd9F\x17', 0x0) r1 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, 0x0, 0x0) r2 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r2, 0x29, 0x2e, &(0x7f0000000340)={0x1, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108) setsockopt$inet6_group_source_req(r2, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108) setsockopt$inet6_group_source_req(r2, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, 0x108) close_range(r0, 0xffffffffffffffff, 0x0) r3 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r3, 0x29, 0x2a, &(0x7f0000000080)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x108) kernel console output (not intermixed with test programs): 9][ T8145] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 248.389024][ T8145] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 248.399791][ T8145] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 248.421030][ T8145] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 248.432286][ T8145] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 248.473623][ T8145] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 248.504108][ T8145] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 248.551690][ T8145] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 248.585606][ T8145] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 248.620105][ T8145] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 248.638510][ T8294] loop2: detected capacity change from 0 to 1024 [ 248.666797][ T8145] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 248.689543][ T8145] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 248.731631][ T8145] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 248.752304][ T8145] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 248.782808][ T8145] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 248.810408][ T8145] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 248.822359][ T8145] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 248.840834][ T8145] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 248.862019][ T8145] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 248.946805][ T29] audit: type=1800 audit(1718296880.807:5200): pid=8281 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz-executor.3" name="file2" dev="loop3" ino=16 res=0 errno=0 [ 248.996669][ T8145] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 249.025581][ T8145] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 249.039770][ T8145] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 249.052926][ T8145] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 249.102029][ T8295] netlink: 'syz-executor.2': attribute type 4 has an invalid length. [ 249.170813][ T8296] netlink: 'syz-executor.2': attribute type 4 has an invalid length. [ 249.262491][ T8279] loop0: detected capacity change from 0 to 32768 [ 249.296973][ T7828] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 249.373868][ T8279] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 249.597009][ T8307] sp0: Synchronizing with TNC [ 249.673089][ T29] audit: type=1326 audit(1718296881.537:5201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8311 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2754e7cea9 code=0x7ffc0000 [ 249.677313][ T8279] XFS (loop0): Ending clean mount [ 249.717392][ T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 249.722191][ T5115] Bluetooth: hci6: command tx timeout [ 249.727747][ T29] audit: type=1326 audit(1718296881.567:5202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8311 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2754e7cea9 code=0x7ffc0000 [ 249.770556][ T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 249.807313][ T29] audit: type=1326 audit(1718296881.567:5203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8311 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2754e7cea9 code=0x7ffc0000 [ 249.837805][ T29] audit: type=1326 audit(1718296881.567:5204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8311 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2754e7cea9 code=0x7ffc0000 [ 249.837877][ T8279] XFS (loop0): Quotacheck needed: Please wait. [ 249.886226][ T1051] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 249.903712][ T29] audit: type=1326 audit(1718296881.567:5205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8311 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2754e7cea9 code=0x7ffc0000 [ 249.921109][ T1051] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 249.986492][ T8279] XFS (loop0): Quotacheck: Done. [ 249.993758][ T29] audit: type=1326 audit(1718296881.567:5206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8311 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2754e7cea9 code=0x7ffc0000 [ 250.017490][ T29] audit: type=1326 audit(1718296881.567:5207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8311 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2754e7cea9 code=0x7ffc0000 [ 250.039841][ T29] audit: type=1326 audit(1718296881.567:5208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8311 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2754e7a627 code=0x7ffc0000 [ 250.097381][ T29] audit: type=1326 audit(1718296881.567:5209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8311 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2754e40309 code=0x7ffc0000 [ 250.132522][ T29] audit: type=1326 audit(1718296881.567:5210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8311 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2754e7a627 code=0x7ffc0000 [ 250.175103][ T8320] loop3: detected capacity change from 0 to 1024 [ 250.194348][ T6307] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 250.282353][ T8320] hfsplus: keylen 65060 too large [ 250.312319][ T8320] hfsplus: xattr searching failed [ 250.317593][ T8320] hfsplus: keylen 65060 too large [ 250.356640][ T8320] hfsplus: xattr searching failed [ 250.375614][ T8320] hfsplus: keylen 65060 too large [ 250.402075][ T8320] hfsplus: xattr searching failed [ 250.501369][ T8334] overlayfs: failed to create directory ./file0/work (errno: 13); mounting read-only [ 250.525816][ T8334] overlayfs: fs on './file1' does not support file handles, falling back to index=off,nfs_export=off. [ 250.547447][ T8334] overlayfs: fs on './file1' does not support file handles, falling back to xino=off. [ 250.725938][ T8339] sp0: Synchronizing with TNC [ 251.375951][ T8370] loop0: detected capacity change from 0 to 512 [ 251.407615][ T8370] EXT4-fs: Ignoring removed nomblk_io_submit option [ 251.416617][ T8375] sp0: Synchronizing with TNC [ 251.448655][ T8370] EXT4-fs: old and new quota format mixing [ 251.680110][ T8370] loop0: detected capacity change from 0 to 4096 [ 251.692363][ T8389] netlink: 'syz-executor.3': attribute type 5 has an invalid length. [ 251.719628][ T8392] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 251.801174][ T5125] Bluetooth: hci6: command tx timeout [ 253.340015][ T5125] Bluetooth: hci2: command 0x0406 tx timeout [ 253.537768][ T8433] ptrace attach of "/root/syz-executor.2 exec"[6317] was attempted by ""[8433] [ 253.555155][ T8406] loop3: detected capacity change from 0 to 32768 [ 253.587585][ T8406] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (8406) [ 253.665522][ T8406] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 253.775763][ T8406] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 253.810652][ T8406] BTRFS info (device loop3): using free-space-tree [ 254.683536][ T8446] loop1: detected capacity change from 0 to 131072 [ 254.717971][ T8446] F2FS-fs (loop1): invalid crc value [ 254.774362][ T8446] F2FS-fs (loop1): Found nat_bits in checkpoint [ 254.904789][ T8446] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4 [ 255.414367][ T7828] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 255.446440][ T8489] ptrace attach of "/root/syz-executor.4 exec"[7967] was attempted by ""[8489] [ 255.739669][ T8488] loop0: detected capacity change from 0 to 256 [ 255.894944][ T8488] exfat: Bad value for 'uid' [ 255.931178][ T8491] loop2: detected capacity change from 0 to 8192 [ 256.088486][ T8491] loop2: p1 p2[DM] p4 [ 256.104242][ T8491] loop2: p1 size 196608 extends beyond EOD, truncated [ 256.160511][ T8491] loop2: p2 start 4292936063 is beyond EOD, truncated [ 256.213624][ T8491] loop2: p4 size 50331648 extends beyond EOD, truncated [ 256.377711][ T1249] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.384182][ T1249] ieee802154 phy1 wpan1: encryption failed: -22 [ 258.575426][ T1051] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 258.696178][ T8554] smc: adding net device pimreg with user defined pnetid SYZ1 [ 258.763729][ T8554] pimreg: entered allmulticast mode [ 258.794831][ T8560] pimreg: left allmulticast mode [ 258.908228][ T8560] smc: removing net device pimreg with user defined pnetid SYZ1 [ 259.155414][ T1051] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 259.385759][ T1051] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 259.481161][ T8576] netlink: 210596 bytes leftover after parsing attributes in process `syz-executor.3'. [ 259.617046][ T1051] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 259.844411][ T5125] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 259.857583][ T5125] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 259.867838][ T5125] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 259.880227][ T5125] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 259.904064][ T5125] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 259.915214][ T5125] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 259.927024][ T1051] bridge_slave_1: left allmulticast mode [ 259.962792][ T5125] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0 [ 259.972047][ T5125] Bluetooth: hci4: Injecting HCI hardware error event [ 259.978279][ T1051] bridge_slave_1: left promiscuous mode [ 259.983587][ T5115] Bluetooth: hci4: hardware error 0x00 [ 260.032273][ T1051] bridge0: port 2(bridge_slave_1) entered disabled state [ 260.065509][ T1051] bridge_slave_0: left allmulticast mode [ 260.091088][ T1051] bridge_slave_0: left promiscuous mode [ 260.107976][ T1051] bridge0: port 1(bridge_slave_0) entered disabled state [ 260.201063][ T8566] loop0: detected capacity change from 0 to 40427 [ 260.256072][ T8566] F2FS-fs (loop0): invalid crc value [ 260.295782][ T8566] F2FS-fs (loop0): Found nat_bits in checkpoint [ 260.575559][ T8566] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 260.657833][ T29] kauditd_printk_skb: 38 callbacks suppressed [ 260.657853][ T29] audit: type=1804 audit(1718296892.517:5249): pid=8566 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3221051300/syzkaller.XaMyHz/206/file0/file0" dev="loop0" ino=10 res=1 errno=0 [ 261.207909][ T8607] syz-executor.0: attempt to access beyond end of device [ 261.207909][ T8607] loop0: rw=10241, sector=45096, nr_sectors = 8 limit=40427 [ 261.253699][ T8607] syz-executor.0: attempt to access beyond end of device [ 261.253699][ T8607] loop0: rw=2049, sector=45104, nr_sectors = 8 limit=40427 [ 261.274822][ T8607] syz-executor.0: attempt to access beyond end of device [ 261.274822][ T8607] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 261.293623][ T8607] syz-executor.0: attempt to access beyond end of device [ 261.293623][ T8607] loop0: rw=2049, sector=45104, nr_sectors = 8 limit=40427 [ 261.309951][ T8607] syz-executor.0: attempt to access beyond end of device [ 261.309951][ T8607] loop0: rw=2049, sector=45104, nr_sectors = 8 limit=40427 [ 261.329991][ T8607] syz-executor.0: attempt to access beyond end of device [ 261.329991][ T8607] loop0: rw=2049, sector=45112, nr_sectors = 8 limit=40427 [ 261.380017][ T8607] syz-executor.0: attempt to access beyond end of device [ 261.380017][ T8607] loop0: rw=2049, sector=45104, nr_sectors = 8 limit=40427 [ 261.398425][ T8607] syz-executor.0: attempt to access beyond end of device [ 261.398425][ T8607] loop0: rw=2049, sector=45112, nr_sectors = 8 limit=40427 [ 261.414724][ T8607] syz-executor.0: attempt to access beyond end of device [ 261.414724][ T8607] loop0: rw=2049, sector=45112, nr_sectors = 8 limit=40427 [ 261.433788][ T8607] syz-executor.0: attempt to access beyond end of device [ 261.433788][ T8607] loop0: rw=2049, sector=45120, nr_sectors = 8 limit=40427 [ 261.581433][ T8604] overlay: ./file0 is not a directory [ 261.869101][ T6307] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 261.890527][ T6307] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 261.960420][ T5125] Bluetooth: hci5: command tx timeout [ 262.040363][ T5115] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 262.189219][ T1051] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 262.207832][ T1051] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 262.221559][ T1051] bond0 (unregistering): Released all slaves [ 262.247887][ T8603] netlink: 'syz-executor.3': attribute type 5 has an invalid length. [ 262.265235][ T8612] macvlan0: entered promiscuous mode [ 262.273643][ T8612] ipvlan0: entered promiscuous mode [ 262.282835][ T8612] ipvlan0: left promiscuous mode [ 262.335732][ T8623] cgroup2: Unexpected value for 'nsdelegate' [ 262.341783][ T8612] macvlan0: left promiscuous mode [ 262.419766][ T8620] mkiss: ax0: crc mode is auto. [ 263.655959][ T1051] hsr_slave_0: left promiscuous mode [ 263.743195][ T1051] hsr_slave_1: left promiscuous mode [ 263.775447][ T8640] binder: 8638:8640 ioctl 9361 0 returned -22 [ 263.798911][ T1051] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 263.830066][ T1051] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 263.862873][ T1051] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 263.871906][ T1051] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 263.945788][ T1051] veth1_macvtap: left promiscuous mode [ 263.978705][ T1051] veth0_macvtap: left promiscuous mode [ 263.984660][ T1051] veth1_vlan: left promiscuous mode [ 264.006139][ T1051] veth0_vlan: left promiscuous mode [ 264.041527][ T5115] Bluetooth: hci5: command tx timeout [ 264.156485][ T29] audit: type=1326 audit(1718296896.017:5250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8653 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2754e7cea9 code=0x0 [ 264.239059][ T29] audit: type=1326 audit(1718296896.067:5251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8653 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=436 compat=0 ip=0x7f2754e7cea9 code=0x0 [ 264.260664][ C1] vkms_vblank_simulate: vblank timer overrun [ 264.399754][ T8652] loop1: detected capacity change from 0 to 4096 [ 264.458893][ T8633] loop0: detected capacity change from 0 to 32768 [ 264.459967][ T8652] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 264.535788][ T8633] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 264.690291][ T8652] ntfs3: loop1: Failed to initialize $Extend/$ObjId. [ 264.819023][ T8633] XFS (loop0): Ending clean mount [ 264.858995][ T8633] XFS (loop0): Quotacheck needed: Please wait. [ 264.943916][ T8633] XFS (loop0): Quotacheck: Done. [ 265.296659][ T1051] smc: removing net device vlan0 with user defined pnetid SYZ1 [ 265.399362][ T8669] loop1: detected capacity change from 0 to 2048 [ 265.442281][ T8669] UDF-fs: error (device loop1): udf_process_sequence: Primary Volume Descriptor not found! [ 265.468113][ T6307] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 265.512865][ T8669] UDF-fs: warning (device loop1): udf_fill_super: No fileset found [ 265.689553][ T8669] loop1: detected capacity change from 0 to 256 [ 265.697140][ T8669] FAT-fs (loop1): Unrecognized mount option "sTkrtname=winnt" or missing value [ 265.733986][ T8666] loop2: detected capacity change from 0 to 32768 [ 265.794659][ T8666] gfs2: fsid=.: Trying to join cluster "lock_nolock", "." [ 265.812239][ T8666] gfs2: fsid=.: Now mounting FS (format 0)... [ 265.850007][ T8666] gfs2: not a GFS2 filesystem [ 265.854740][ T8666] gfs2: fsid=.: can't read superblock [ 265.860412][ T8666] gfs2: fsid=.: can't read superblock: -22 [ 266.120232][ T5115] Bluetooth: hci5: command tx timeout [ 266.420420][ T1051] team0 (unregistering): Port device team_slave_1 removed [ 266.548577][ T1051] team0 (unregistering): Port device team_slave_0 removed [ 267.245866][ T8689] loop2: detected capacity change from 0 to 4096 [ 267.263477][ T8689] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 267.298723][ T8689] ntfs3: loop2: Failed to initialize $Extend/$ObjId. [ 267.332060][ T1051] smc: removing net device wg0 with user defined pnetid SYZ0 [ 267.777877][ T8695] loop2: detected capacity change from 0 to 64 [ 267.830326][ T8672] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.0'. [ 267.845010][ T8674] bridge0: port 3(hsr0) entered blocking state [ 267.870539][ T8674] bridge0: port 3(hsr0) entered disabled state [ 267.903674][ T8674] hsr0: entered allmulticast mode [ 267.915712][ T8674] hsr_slave_0: entered allmulticast mode [ 267.924766][ T29] audit: type=1326 audit(1718296899.787:5252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8694 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f518427cea9 code=0x0 [ 267.946335][ C1] vkms_vblank_simulate: vblank timer overrun [ 267.947598][ T8674] hsr_slave_1: entered allmulticast mode [ 267.987515][ T8674] hsr0: entered promiscuous mode [ 267.988679][ T8698] binder: 8697:8698 ioctl 9361 0 returned -22 [ 267.997031][ T8674] bridge0: port 3(hsr0) entered blocking state [ 268.005501][ T8674] bridge0: port 3(hsr0) entered forwarding state [ 268.052363][ T8693] netlink: 47 bytes leftover after parsing attributes in process `syz-executor.3'. [ 268.200317][ T5115] Bluetooth: hci5: command tx timeout [ 268.447939][ T8583] chnl_net:caif_netlink_parms(): no params data found [ 268.686219][ T5115] Bluetooth: hci0: command 0x0406 tx timeout [ 268.767388][ T8583] bridge0: port 1(bridge_slave_0) entered blocking state [ 268.810165][ T8583] bridge0: port 1(bridge_slave_0) entered disabled state [ 268.817504][ T8583] bridge_slave_0: entered allmulticast mode [ 268.864182][ T8583] bridge_slave_0: entered promiscuous mode [ 268.891520][ T8583] bridge0: port 2(bridge_slave_1) entered blocking state [ 268.919119][ T8583] bridge0: port 2(bridge_slave_1) entered disabled state [ 268.939463][ T8583] bridge_slave_1: entered allmulticast mode [ 268.969991][ T8583] bridge_slave_1: entered promiscuous mode [ 269.069082][ T8706] loop3: detected capacity change from 0 to 32768 [ 269.073173][ T8583] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 269.093545][ T8583] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 269.214710][ T8583] team0: Port device team_slave_0 added [ 269.235144][ T8583] team0: Port device team_slave_1 added [ 269.285111][ T8706] bcachefs (loop3): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 269.299088][ T8706] bcachefs (loop3): recovering from clean shutdown, journal seq 8 [ 269.332379][ T8583] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 269.339455][ T8583] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 269.352263][ T8706] bcachefs (loop3): alloc_read... [ 269.365404][ C1] vkms_vblank_simulate: vblank timer overrun [ 269.379031][ T8583] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 269.401639][ T8583] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 269.408860][ T8583] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 269.414548][ T8731] loop0: detected capacity change from 0 to 1024 [ 269.441528][ T8706] done [ 269.444331][ T8706] bcachefs (loop3): stripes_read... done [ 269.451217][ T8583] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 269.460055][ T8706] bcachefs (loop3): snapshots_read... done [ 269.473278][ T8706] bcachefs (loop3): journal_replay... done [ 269.479188][ T8706] bcachefs (loop3): resume_logged_ops... done [ 269.497170][ T8731] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 269.500032][ T8706] bcachefs (loop3): going read-write [ 269.526185][ T8731] System zones: 0-1, 3-36 [ 269.534642][ T8706] bcachefs (loop3): done starting filesystem [ 269.547643][ T8731] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 269.643524][ T8583] hsr_slave_0: entered promiscuous mode [ 269.692485][ T8583] hsr_slave_1: entered promiscuous mode [ 269.717403][ T6307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 269.767461][ T8583] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 269.776418][ T8583] Cannot create hsr debugfs directory [ 269.838160][ T7828] bcachefs (loop3): shutting down [ 269.854464][ T7828] bcachefs (loop3): going read-only [ 269.859754][ T7828] bcachefs (loop3): finished waiting for writes to stop [ 269.966513][ T7828] bcachefs (loop3): flushing journal and stopping allocators, journal seq 10 [ 270.019598][ T7828] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 10 [ 270.057016][ T7828] bcachefs (loop3): shutdown complete, journal seq 11 [ 270.092653][ T7828] bcachefs (loop3): marking filesystem clean [ 271.441154][ T7828] bcachefs (loop3): shutdown complete [ 272.040079][ T5162] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 272.270162][ T5162] usb 1-1: Using ep0 maxpacket: 32 [ 272.277804][ T5162] usb 1-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7 [ 272.289573][ T5162] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 272.349680][ T5162] usb 1-1: config 0 descriptor?? [ 272.374216][ T5162] gspca_main: sunplus-2.14.0 probing 041e:400b [ 272.448088][ T8583] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 272.499696][ T8583] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 272.570486][ T8583] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 272.651067][ T8583] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 272.988995][ T8757] loop1: detected capacity change from 0 to 32768 [ 273.013113][ T8757] XFS: attr2 mount option is deprecated. [ 273.019253][ T8757] XFS: ikeep mount option is deprecated. [ 273.066520][ T8583] 8021q: adding VLAN 0 to HW filter on device bond0 [ 273.071922][ T8757] XFS: noikeep mount option is deprecated. [ 273.129714][ T8583] 8021q: adding VLAN 0 to HW filter on device team0 [ 273.142575][ T8757] XFS (loop1): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 273.163263][ T6448] bridge0: port 1(bridge_slave_0) entered blocking state [ 273.170667][ T6448] bridge0: port 1(bridge_slave_0) entered forwarding state [ 273.212325][ T6448] bridge0: port 2(bridge_slave_1) entered blocking state [ 273.219616][ T6448] bridge0: port 2(bridge_slave_1) entered forwarding state [ 273.282197][ T8757] XFS (loop1): Ending clean mount [ 273.302810][ T8757] XFS (loop1): Quotacheck needed: Please wait. [ 273.405690][ T8757] XFS (loop1): Quotacheck: Done. [ 273.467273][ T8778] loop3: detected capacity change from 0 to 1024 [ 273.510201][ T8145] XFS (loop1): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 273.557987][ T8778] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 273.618072][ T8778] System zones: 0-1, 3-36 [ 273.658078][ T8778] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 273.811856][ T5115] Bluetooth: hci3: command 0x1407 tx timeout [ 273.816034][ T5162] gspca_sunplus: reg_w_riv err -71 [ 273.826129][ T5162] sunplus 1-1:0.0: probe with driver sunplus failed with error -71 [ 273.871915][ T5162] usb 1-1: USB disconnect, device number 4 [ 273.879460][ T7828] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 274.023682][ T8583] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 274.152484][ T8780] loop2: detected capacity change from 0 to 32768 [ 274.342175][ T8780] bcachefs (loop2): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 274.386102][ T8780] bcachefs (loop2): recovering from clean shutdown, journal seq 8 [ 274.441902][ T8780] bcachefs (loop2): alloc_read... done [ 274.447491][ T8780] bcachefs (loop2): stripes_read... done [ 274.451150][ T8806] loop1: detected capacity change from 0 to 2048 [ 274.453520][ T8780] bcachefs (loop2): snapshots_read... done [ 274.475036][ T8583] veth0_vlan: entered promiscuous mode [ 274.488692][ T8780] bcachefs (loop2): journal_replay... done [ 274.504876][ T8780] bcachefs (loop2): resume_logged_ops... done [ 274.512878][ T8780] bcachefs (loop2): going read-write [ 274.514830][ T8806] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 274.516668][ T8583] veth1_vlan: entered promiscuous mode [ 274.576052][ T8583] veth0_macvtap: entered promiscuous mode [ 274.587953][ T8583] veth1_macvtap: entered promiscuous mode [ 274.601667][ T8780] bcachefs (loop2): done starting filesystem [ 274.640850][ T8583] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 274.645482][ T8145] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 274.651539][ T8583] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 274.670476][ T8583] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 274.685179][ T8583] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 274.695452][ T8583] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 274.706108][ T8583] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 274.726470][ T8583] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 274.737253][ T8583] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 274.747381][ T8583] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 274.759236][ T8583] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 274.770631][ T8583] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 274.786582][ T8583] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 274.801347][ T8583] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 274.818950][ T8583] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 274.831569][ T8583] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 274.841928][ T8583] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 274.852636][ T8583] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 274.863728][ T8583] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 274.873166][ T8780] syz-executor.2 (8780) used greatest stack depth: 14232 bytes left [ 274.874966][ T8583] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 274.893589][ T8583] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 274.905624][ T8583] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 274.916152][ T8583] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 274.940498][ T8583] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 274.966078][ T8583] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 274.994272][ T8583] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 275.023606][ T8583] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 275.041919][ T6317] bcachefs (loop2): shutting down [ 275.046992][ T6317] bcachefs (loop2): going read-only [ 275.075123][ T6317] bcachefs (loop2): finished waiting for writes to stop [ 275.093095][ T8583] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 275.098226][ T8816] loop1: detected capacity change from 0 to 8192 [ 275.101913][ T8583] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 275.117072][ T8583] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 275.126096][ T8583] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 275.169537][ T6317] bcachefs (loop2): flushing journal and stopping allocators, journal seq 11 [ 275.278170][ T6317] bcachefs (loop2): flushing journal and stopping allocators complete, journal seq 14 [ 275.301245][ T6317] bcachefs (loop2): shutdown complete, journal seq 15 [ 275.309270][ T6317] bcachefs (loop2): marking filesystem clean [ 275.319194][ T8816] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 275.330770][ T8816] FAT-fs (loop1): Filesystem has been set read-only [ 275.341438][ T1033] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 275.349341][ T1033] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 275.418346][ T6317] bcachefs (loop2): shutdown complete [ 275.457538][ T1033] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 275.485062][ T1033] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 275.820351][ T8837] sctp: [Deprecated]: syz-executor.4 (pid 8837) Use of struct sctp_assoc_value in delayed_ack socket option. [ 275.820351][ T8837] Use struct sctp_sack_info instead [ 275.853103][ T8830] loop1: detected capacity change from 0 to 4096 [ 275.872582][ T8830] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 275.993561][ T8830] ntfs3: loop1: Failed to initialize $Extend/$Reparse. [ 276.162000][ T8830] ntfs3: loop1: ino=1b, "file0" attr_set_size [ 276.551453][ T29] audit: type=1800 audit(1718296908.397:5253): pid=8853 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1966 res=0 errno=0 [ 276.625741][ T29] audit: type=1800 audit(1718296908.407:5254): pid=8853 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1966 res=0 errno=0 [ 276.764151][ T8870] sctp: [Deprecated]: syz-executor.1 (pid 8870) Use of struct sctp_assoc_value in delayed_ack socket option. [ 276.764151][ T8870] Use struct sctp_sack_info instead [ 276.939548][ T8875] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 276.948094][ T8875] netlink: 64 bytes leftover after parsing attributes in process `syz-executor.1'. [ 277.074052][ T8880] loop2: detected capacity change from 0 to 256 [ 277.139407][ T8880] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 277.394197][ T8895] loop1: detected capacity change from 0 to 256 [ 277.411512][ T8897] loop3: detected capacity change from 0 to 128 [ 277.477758][ T8897] ufs: ufs_fill_super(): fragment size 2066844866 is not a power of 2 [ 277.520878][ T29] audit: type=1326 audit(1718296909.387:5255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8900 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f551607cea9 code=0x7ffc0000 [ 277.543084][ C1] vkms_vblank_simulate: vblank timer overrun [ 277.554362][ T29] audit: type=1326 audit(1718296909.387:5256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8900 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f551607cea9 code=0x7ffc0000 [ 277.576449][ C1] vkms_vblank_simulate: vblank timer overrun [ 277.595508][ T29] audit: type=1326 audit(1718296909.387:5257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8900 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f551607cea9 code=0x7ffc0000 [ 277.625970][ T29] audit: type=1326 audit(1718296909.387:5258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8900 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f551607cea9 code=0x7ffc0000 [ 277.671119][ T29] audit: type=1326 audit(1718296909.387:5259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8900 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7f551607cea9 code=0x7ffc0000 [ 277.695761][ C1] vkms_vblank_simulate: vblank timer overrun [ 277.696728][ T8902] loop3: detected capacity change from 0 to 1024 [ 277.758831][ T29] audit: type=1326 audit(1718296909.407:5260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8900 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f551607cea9 code=0x7ffc0000 [ 277.793891][ T8904] program syz-executor.0 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 277.834033][ T29] audit: type=1326 audit(1718296909.437:5261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8900 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=432 compat=0 ip=0x7f551607cea9 code=0x7ffc0000 [ 277.922603][ T29] audit: type=1326 audit(1718296909.437:5262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8900 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f551607cea9 code=0x7ffc0000 [ 277.944902][ C1] vkms_vblank_simulate: vblank timer overrun [ 278.234112][ T8917] loop2: detected capacity change from 0 to 64 [ 278.602821][ T8926] sctp: [Deprecated]: syz-executor.2 (pid 8926) Use of struct sctp_assoc_value in delayed_ack socket option. [ 278.602821][ T8926] Use struct sctp_sack_info instead [ 278.620683][ T8927] loop0: detected capacity change from 0 to 256 [ 279.427600][ T8945] loop0: detected capacity change from 0 to 1024 [ 279.647945][ T1051] hfsplus: b-tree write err: -5, ino 8 [ 279.666199][ T8953] loop1: detected capacity change from 0 to 256 [ 280.229204][ T8969] loop3: detected capacity change from 0 to 4096 [ 280.256421][ T8969] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 280.377007][ T8979] loop1: detected capacity change from 0 to 1024 [ 280.551476][ T8976] loop0: detected capacity change from 0 to 4096 [ 280.571147][ T8976] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 280.593175][ T8984] loop2: detected capacity change from 0 to 1024 [ 280.599646][ T11] hfsplus: b-tree write err: -5, ino 8 [ 280.658339][ T8976] ntfs3: loop0: Failed to initialize $Extend/$ObjId. [ 280.740206][ T2910] hfsplus: b-tree write err: -5, ino 4 [ 281.019541][ T9000] sctp: [Deprecated]: syz-executor.3 (pid 9000) Use of struct sctp_assoc_value in delayed_ack socket option. [ 281.019541][ T9000] Use struct sctp_sack_info instead [ 281.383280][ T9014] ebt_among: src integrity fail: 100 [ 281.510024][ T45] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 281.544930][ T9021] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 281.560626][ T9021] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 281.710140][ T45] usb 5-1: Using ep0 maxpacket: 8 [ 281.731899][ T45] usb 5-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 281.753119][ T9029] loop2: detected capacity change from 0 to 256 [ 281.774550][ T45] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 281.799096][ T45] usb 5-1: config 0 descriptor?? [ 281.800445][ T9031] sctp: [Deprecated]: syz-executor.1 (pid 9031) Use of struct sctp_assoc_value in delayed_ack socket option. [ 281.800445][ T9031] Use struct sctp_sack_info instead [ 281.969696][ T9010] loop3: detected capacity change from 0 to 32768 [ 282.027956][ T9010] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (9010) [ 282.056203][ T9010] BTRFS info (device loop3): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 282.079194][ T9010] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 282.098264][ T9010] BTRFS info (device loop3): disk space caching is enabled [ 282.248376][ T9010] BTRFS info (device loop3): rebuilding free space tree [ 282.451209][ T9010] BTRFS info (device loop3): disabling free space tree [ 282.500445][ T9010] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 282.511047][ T9010] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 282.707600][ T9010] program syz-executor.3 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 283.306114][ T7828] BTRFS info (device loop3): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 283.435055][ T9037] loop0: detected capacity change from 0 to 32768 [ 283.472136][ T45] asix 5-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 283.514492][ T45] asix 5-1:0.0 (unnamed net_device) (uninitialized): Failed to write GPIO value 0x0080: ffffffb9 [ 283.531642][ T9037] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 283.571928][ T45] asix 5-1:0.0: probe with driver asix failed with error -71 [ 283.655581][ T45] usb 5-1: USB disconnect, device number 8 [ 283.850559][ T9084] loop2: detected capacity change from 0 to 128 [ 283.983735][ T9037] XFS (loop0): Ending clean mount [ 284.080241][ T9037] XFS (loop0): Metadata corruption detected at xfs_dinode_verify+0x333/0x1190, inode 0x2443 dinode [ 284.113140][ T9037] XFS (loop0): Unmount and run xfs_repair [ 284.143866][ T9037] XFS (loop0): First 128 bytes of corrupted metadata buffer: [ 284.159722][ T29] kauditd_printk_skb: 1 callbacks suppressed [ 284.159742][ T29] audit: type=1800 audit(1718296916.017:5264): pid=9096 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1942 res=0 errno=0 [ 284.183281][ T9037] 00000000: 49 4e 41 ed 03 01 00 00 00 00 00 00 00 00 00 00 INA............. [ 284.214492][ T9037] 00000010: 00 00 00 02 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 284.253880][ T9037] 00000020: 34 f7 58 68 a5 e2 bf 3d 34 f7 58 68 a5 e2 bf 3d 4.Xh...=4.Xh...= [ 284.258819][ T29] audit: type=1800 audit(1718296916.027:5265): pid=9096 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1942 res=0 errno=0 [ 284.274177][ T9037] 00000030: 34 f7 58 68 a5 e2 bf 3d 00 00 00 00 00 00 00 20 4.Xh...=....... [ 284.316476][ T9037] 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 284.327104][ T9037] 00000050: 00 00 00 02 00 00 00 00 00 00 00 00 54 01 7a fc ............T.z. [ 284.379289][ T9037] 00000060: ff ff ff ff 4c 7b c2 21 00 00 00 00 00 00 00 04 ....L{.!........ [ 284.393799][ T9037] 00000070: 00 00 00 01 00 00 00 80 18 00 00 00 00 00 00 08 ................ [ 284.551356][ T6307] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 284.559980][ T9106] dccp_invalid_packet: invalid packet type [ 285.689484][ T9122] loop1: detected capacity change from 0 to 128 [ 285.729305][ T9122] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 285.747678][ T9122] ext4 filesystem being mounted at /root/syzkaller-testdir2395591254/syzkaller.NTV5mi/72/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 285.783926][ C1] vkms_vblank_simulate: vblank timer overrun [ 285.822022][ T9128] loop0: detected capacity change from 0 to 128 [ 285.832479][ T9128] journal_path: Lookup failure for './file1' [ 285.841509][ T9128] EXT4-fs: error: could not find journal device path [ 285.879370][ T8145] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 286.252966][ T9150] loop1: detected capacity change from 0 to 512 [ 286.287169][ T9151] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 286.328923][ T9150] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 286.343694][ T9150] ext4 filesystem being mounted at /root/syzkaller-testdir2395591254/syzkaller.NTV5mi/74/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 286.885532][ T8145] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 287.132032][ T9175] block nbd1: NBD_DISCONNECT [ 287.181940][ T9175] block nbd1: Disconnected due to user request. [ 287.220317][ T9175] block nbd1: shutting down sockets [ 287.344539][ T29] audit: type=1800 audit(1718296919.207:5266): pid=9180 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1964 res=0 errno=0 [ 287.564409][ T5213] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 287.575380][ T9186] dccp_invalid_packet: invalid packet type [ 287.780970][ T5213] usb 1-1: Using ep0 maxpacket: 32 [ 287.795256][ T5213] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 287.821300][ T5213] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 287.846614][ T5213] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 287.887423][ T9195] loop2: detected capacity change from 0 to 2048 [ 287.905211][ T9195] NILFS (loop2): invalid segment: Sequence number mismatch [ 287.912653][ T9195] NILFS (loop2): trying rollback from an earlier position [ 287.925088][ T5213] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 287.941608][ T9195] NILFS (loop2): recovery complete [ 287.954711][ T9198] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 288.023116][ T9200] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 288.046784][ T9200] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 288.202019][ T5213] hub 1-1:4.0: USB hub found [ 288.609841][ T5213] hub 1-1:4.0: 2 ports detected [ 288.890161][ T29] audit: type=1800 audit(1718296920.747:5267): pid=9205 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1947 res=0 errno=0 [ 288.935614][ T9205] No such timeout policy "syz1" [ 289.298790][ T9209] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 289.883167][ T5213] hub 1-1:4.0: hub_hub_status failed (err = -32) [ 289.889586][ T5213] hub 1-1:4.0: config failed, can't get hub status (err -32) [ 289.931409][ T29] audit: type=1800 audit(1718296921.787:5268): pid=9197 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.4" name="file2" dev="sda1" ino=1955 res=0 errno=0 [ 290.183682][ T9226] loop3: detected capacity change from 0 to 2048 [ 290.279156][ T9229] dccp_invalid_packet: invalid packet type [ 290.394591][ T9219] loop2: detected capacity change from 0 to 32768 [ 290.441858][ T9219] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 290.501569][ T9247] netlink: 'syz-executor.3': attribute type 2 has an invalid length. [ 290.516889][ T9246] loop1: detected capacity change from 0 to 128 [ 290.584183][ T9219] XFS (loop2): Ending clean mount [ 290.633498][ T9219] XFS (loop2): Metadata corruption detected at xfs_dinode_verify+0x333/0x1190, inode 0x2443 dinode [ 290.633553][ T9219] XFS (loop2): Unmount and run xfs_repair [ 290.633569][ T9219] XFS (loop2): First 128 bytes of corrupted metadata buffer: [ 290.633591][ T9219] 00000000: 49 4e 41 ed 03 01 00 00 00 00 00 00 00 00 00 00 INA............. [ 290.633611][ T9219] 00000010: 00 00 00 02 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 290.633630][ T9219] 00000020: 34 f7 58 68 a5 e2 bf 3d 34 f7 58 68 a5 e2 bf 3d 4.Xh...=4.Xh...= [ 290.633647][ T9219] 00000030: 34 f7 58 68 a5 e2 bf 3d 00 00 00 00 00 00 00 20 4.Xh...=....... [ 290.633665][ T9219] 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 290.633683][ T9219] 00000050: 00 00 00 02 00 00 00 00 00 00 00 00 54 01 7a fc ............T.z. [ 290.633717][ T9219] 00000060: ff ff ff ff 4c 7b c2 21 00 00 00 00 00 00 00 04 ....L{.!........ [ 290.633734][ T9219] 00000070: 00 00 00 01 00 00 00 80 18 00 00 00 00 00 00 08 ................ [ 290.691842][ T6317] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 290.834084][ T9251] netlink: 209840 bytes leftover after parsing attributes in process `syz-executor.1'. [ 290.927341][ T9226] loop3: unable to read partition table [ 290.928843][ T9226] loop3: partition table beyond EOD, truncated [ 290.928868][ T9226] loop_reread_partitions: partition scan of loop3 () failed (rc=-5) [ 291.167714][ T25] usb 1-1: USB disconnect, device number 5 [ 291.543689][ T9275] loop3: detected capacity change from 0 to 512 [ 291.551766][ T9276] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 291.581449][ T9276] netlink: 7 bytes leftover after parsing attributes in process `syz-executor.4'. [ 291.595872][ T9275] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2234: inode #15: comm syz-executor.3: corrupted in-inode xattr: invalid ea_ino [ 291.610334][ T5108] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 291.642142][ T9275] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 291.673944][ T9275] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 291.727787][ T29] audit: type=1800 audit(1718296923.587:5269): pid=9275 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="loop3" ino=13 res=0 errno=0 [ 291.765857][ T9260] loop0: detected capacity change from 0 to 32768 [ 291.780593][ T9260] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (9260) [ 291.793958][ T29] audit: type=1804 audit(1718296923.627:5270): pid=9275 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir1037310598/syzkaller.zPj5qU/93/bus/file0/file0" dev="loop3" ino=13 res=1 errno=0 [ 291.823036][ T5108] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 291.837323][ T9260] BTRFS info (device loop0): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 291.842713][ T7828] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 291.851194][ T9260] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm [ 291.870811][ T5108] usb 2-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 18 [ 291.896350][ T9260] BTRFS info (device loop0): using free-space-tree [ 291.912210][ T5108] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 291.921842][ T5108] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 291.930079][ T5108] usb 2-1: SerialNumber: syz [ 291.954717][ T5108] cdc_ether 2-1:1.0: probe with driver cdc_ether failed with error -22 [ 291.983995][ T29] audit: type=1326 audit(1718296923.837:5271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9291 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2754e7cea9 code=0x7ffc0000 [ 292.058783][ T29] audit: type=1326 audit(1718296923.837:5272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9291 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2754e7cea9 code=0x7ffc0000 [ 292.147807][ T29] audit: type=1326 audit(1718296923.837:5273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9291 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2754e7cea9 code=0x7ffc0000 [ 292.190408][ T29] audit: type=1326 audit(1718296923.837:5274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9291 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2754e7cea9 code=0x7ffc0000 [ 292.212503][ C1] vkms_vblank_simulate: vblank timer overrun [ 292.267965][ T29] audit: type=1326 audit(1718296923.847:5275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9291 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2754e7cea9 code=0x7ffc0000 [ 292.285543][ T6307] BTRFS info (device loop0): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 292.335635][ T9303] loop1: detected capacity change from 0 to 1764 [ 292.349312][ T29] audit: type=1326 audit(1718296923.847:5276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9291 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2754e7cea9 code=0x7ffc0000 [ 292.373680][ T9303] iso9660: Bad value for 'gid' [ 292.387982][ T29] audit: type=1326 audit(1718296923.847:5277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9291 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2754e7a627 code=0x7ffc0000 [ 292.409996][ C1] vkms_vblank_simulate: vblank timer overrun [ 292.452598][ T9310] loop2: detected capacity change from 0 to 2048 [ 292.482846][ T9312] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 292.695922][ T5164] usb 2-1: USB disconnect, device number 4 [ 292.910471][ T9317] loop3: detected capacity change from 0 to 4096 [ 292.919567][ T9317] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 294.205419][ T9343] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x2 [ 294.277132][ T9347] loop3: detected capacity change from 0 to 1024 [ 294.319954][ T9347] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 294.332543][ T9345] loop2: detected capacity change from 0 to 2048 [ 294.341855][ T25] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 294.392082][ T9352] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 294.552078][ T25] usb 1-1: Using ep0 maxpacket: 16 [ 294.580241][ T25] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 294.613793][ T25] usb 1-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00 [ 294.650529][ T25] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 294.680168][ T25] usb 1-1: config 0 descriptor?? [ 294.704106][ T25] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input12 [ 294.773145][ T9363] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies. [ 294.965749][ T4520] bcm5974 1-1:0.0: could not read from device [ 295.078021][ T9333] bcm5974 1-1:0.0: could not read from device [ 295.176252][ T25] usb 1-1: USB disconnect, device number 6 [ 295.182743][ T4520] bcm5974 1-1:0.0: could not read from device [ 295.221888][ T9372] loop2: detected capacity change from 0 to 2048 [ 295.240343][ T9372] NILFS (loop2): invalid segment: Sequence number mismatch [ 295.247607][ T9372] NILFS (loop2): trying rollback from an earlier position [ 295.276569][ T9372] NILFS (loop2): recovery complete [ 295.284183][ T9374] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 295.492484][ T9376] loop3: detected capacity change from 0 to 1024 [ 296.343006][ T2839] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 296.355812][ T9376] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 296.444708][ T5125] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 296.457095][ T5125] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 296.477932][ T5125] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 296.503986][ T5125] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 296.535989][ T9385] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x2 [ 296.542397][ T5125] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 296.549771][ T5125] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 296.735678][ T2839] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 296.882513][ T7828] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 296.938610][ T2839] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 297.049540][ T9404] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem [ 297.093666][ T2839] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 297.134890][ T9407] loop2: detected capacity change from 0 to 2048 [ 297.198433][ T9407] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 297.346933][ T9407] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz-executor.2: bg 0: block 234: padding at end of block bitmap is not set [ 297.406600][ T9407] EXT4-fs (loop2): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 16 with error 117 [ 297.459131][ T9407] EXT4-fs (loop2): This should not happen!! Data will be lost [ 297.459131][ T9407] [ 297.516364][ T2839] hsr0: left allmulticast mode [ 297.527165][ T2839] hsr_slave_0: left allmulticast mode [ 297.532915][ T2839] hsr_slave_1: left allmulticast mode [ 297.539197][ T2839] hsr0: left promiscuous mode [ 297.545172][ T2839] bridge0: port 3(hsr0) entered disabled state [ 297.556251][ T2839] bridge_slave_1: left allmulticast mode [ 297.581322][ T2839] bridge_slave_1: left promiscuous mode [ 297.584206][ T6317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 297.597417][ T2839] bridge0: port 2(bridge_slave_1) entered disabled state [ 297.635231][ T2839] bridge_slave_0: left allmulticast mode [ 297.652346][ T2839] bridge_slave_0: left promiscuous mode [ 297.668347][ T2839] bridge0: port 1(bridge_slave_0) entered disabled state [ 297.720170][ T6448] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 297.766562][ C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 297.932787][ T6448] usb 4-1: Using ep0 maxpacket: 16 [ 297.941529][ T6448] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 297.970924][ T6448] usb 4-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00 [ 297.981746][ T6448] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 298.001195][ T6448] usb 4-1: config 0 descriptor?? [ 298.016514][ T6448] input: bcm5974 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input13 [ 298.269163][ T2839] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 298.278844][ T4520] bcm5974 4-1:0.0: could not read from device [ 298.288443][ T2839] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 298.298897][ T4520] bcm5974 4-1:0.0: could not read from device [ 298.308865][ T2839] bond0 (unregistering): Released all slaves [ 298.334511][ T9381] chnl_net:caif_netlink_parms(): no params data found [ 298.488946][ T9436] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies. [ 298.681055][ T5125] Bluetooth: hci6: command tx timeout [ 299.418855][ T9448] loop0: detected capacity change from 0 to 256 [ 299.498667][ T9448] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 299.724229][ T9381] bridge0: port 1(bridge_slave_0) entered blocking state [ 299.743588][ T9381] bridge0: port 1(bridge_slave_0) entered disabled state [ 299.759795][ T9381] bridge_slave_0: entered allmulticast mode [ 299.779811][ T9381] bridge_slave_0: entered promiscuous mode [ 299.811156][ T9381] bridge0: port 2(bridge_slave_1) entered blocking state [ 299.832912][ T9381] bridge0: port 2(bridge_slave_1) entered disabled state [ 299.851654][ T9381] bridge_slave_1: entered allmulticast mode [ 299.871153][ T9381] bridge_slave_1: entered promiscuous mode [ 299.938136][ T2839] hsr_slave_0: left promiscuous mode [ 299.961538][ T2839] hsr_slave_1: left promiscuous mode [ 299.996934][ T2839] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 300.004656][ T2839] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 300.029722][ T2839] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 300.045736][ T2839] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 300.109145][ T9465] netlink: 'syz-executor.2': attribute type 2 has an invalid length. [ 300.112239][ T2839] veth1_macvtap: left promiscuous mode [ 300.150067][ T2839] veth0_macvtap: left promiscuous mode [ 300.162909][ T2839] veth1_vlan: left promiscuous mode [ 300.180146][ T2839] veth0_vlan: left promiscuous mode [ 300.458183][ T4520] bcm5974 4-1:0.0: could not read from device [ 300.466328][ T25] usb 4-1: USB disconnect, device number 3 [ 300.760225][ T5125] Bluetooth: hci6: command tx timeout [ 301.346072][ T9475] loop3: detected capacity change from 0 to 32768 [ 301.350683][ T9473] loop2: detected capacity change from 0 to 32768 [ 301.382266][ T9473] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz-executor.2 (9473) [ 301.429914][ T9473] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 301.451327][ T9473] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 301.460291][ T9473] BTRFS info (device loop2): using free-space-tree [ 301.498534][ T9475] XFS (loop3): Mounting V5 Filesystem ca7e2101-b8f1-4838-8e2d-7637b90620e6 [ 301.579587][ T9475] XFS (loop3): Ending clean mount [ 301.731502][ T7828] XFS (loop3): Unmounting Filesystem ca7e2101-b8f1-4838-8e2d-7637b90620e6 [ 301.834065][ T9473] BTRFS info (device loop2): setting incompat feature flag for SIMPLE_QUOTA (0x10000) [ 301.988658][ T2839] team0 (unregistering): Port device team_slave_1 removed [ 302.098180][ T6317] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 302.161580][ T2839] team0 (unregistering): Port device team_slave_0 removed [ 302.207526][ T9503] loop3: detected capacity change from 0 to 2048 [ 302.287375][ T9503] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 302.416721][ T9503] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz-executor.3: bg 0: block 234: padding at end of block bitmap is not set [ 302.498464][ T9503] EXT4-fs (loop3): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 16 with error 117 [ 302.558708][ T9503] EXT4-fs (loop3): This should not happen!! Data will be lost [ 302.558708][ T9503] [ 302.642648][ T7828] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 302.840049][ T5125] Bluetooth: hci6: command tx timeout [ 302.905715][ T9516] loop3: detected capacity change from 0 to 4096 [ 302.918162][ T9516] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 302.974505][ T9516] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 302.982196][ T9516] ntfs3: loop3: Failed to load $Extend (-22). [ 302.988332][ T9516] ntfs3: loop3: Failed to initialize $Extend. [ 303.383277][ T9381] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 303.418792][ T9381] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 303.439714][ T29] kauditd_printk_skb: 36 callbacks suppressed [ 303.439730][ T29] audit: type=1326 audit(1718296935.287:5314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9521 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f551607cea9 code=0x0 [ 303.573611][ T9381] team0: Port device team_slave_0 added [ 303.602667][ T9381] team0: Port device team_slave_1 added [ 303.736807][ T9381] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 303.749971][ T9381] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 303.788529][ T9381] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 303.840795][ T9381] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 303.847791][ T9381] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 303.902094][ T9381] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 304.044077][ T9381] hsr_slave_0: entered promiscuous mode [ 304.064210][ T9381] hsr_slave_1: entered promiscuous mode [ 304.078075][ T9381] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 304.096029][ T9381] Cannot create hsr debugfs directory [ 304.225200][ T2839] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 304.591527][ T9545] openvswitch: netlink: IP tunnel dst address not specified [ 304.608563][ T2839] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 304.753374][ T9543] loop0: detected capacity change from 0 to 4096 [ 304.767909][ T9543] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 304.923540][ T5125] Bluetooth: hci6: command tx timeout [ 304.964209][ T2839] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 304.988413][ T9543] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 304.995270][ T5109] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 305.004961][ T9543] ntfs3: loop0: Failed to load $Extend (-22). [ 305.015294][ T5109] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 305.024029][ T5109] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 305.033159][ T5109] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 305.040042][ T9543] ntfs3: loop0: Failed to initialize $Extend. [ 305.056907][ T9551] loop2: detected capacity change from 0 to 512 [ 305.068012][ T5109] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 305.078225][ T5109] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 305.096069][ T9551] EXT4-fs (loop2): failed to initialize system zone (-117) [ 305.128492][ T9551] EXT4-fs (loop2): mount failed [ 305.176637][ T2839] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 305.876365][ T9573] syz-executor.3[9573] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 305.876540][ T9573] syz-executor.3[9573] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 306.991820][ T2839] bridge_slave_1: left allmulticast mode [ 307.012156][ T2839] bridge_slave_1: left promiscuous mode [ 307.031238][ T2839] bridge0: port 2(bridge_slave_1) entered disabled state [ 307.067268][ T2839] bridge_slave_0: left allmulticast mode [ 307.087042][ T2839] bridge_slave_0: left promiscuous mode [ 307.100196][ T2839] bridge0: port 1(bridge_slave_0) entered disabled state [ 307.160095][ T5109] Bluetooth: hci5: command tx timeout [ 307.313314][ T9584] loop2: detected capacity change from 0 to 4096 [ 307.324673][ T9584] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 307.407741][ T9584] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 307.415417][ T9584] ntfs3: loop2: Failed to load $Extend (-22). [ 307.422160][ T9584] ntfs3: loop2: Failed to initialize $Extend. [ 307.840899][ T9590] loop2: detected capacity change from 0 to 2048 [ 307.883288][ T9590] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 308.184185][ T2839] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 308.216878][ T2839] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 308.253292][ T2839] bond0 (unregistering): Released all slaves [ 308.312936][ T9590] Bluetooth: MGMT ver 1.22 [ 308.447952][ T6317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 308.522481][ T9599] loop3: detected capacity change from 0 to 8192 [ 308.572865][ T9604] openvswitch: netlink: IP tunnel dst address not specified [ 308.576366][ T9599] loop3: RDSK (0) [ 308.576366][ T9599] AHDI p2 p3 [ 309.239960][ T5109] Bluetooth: hci5: command tx timeout [ 309.375185][ T9546] chnl_net:caif_netlink_parms(): no params data found [ 309.529682][ T2839] hsr_slave_0: left promiscuous mode [ 309.547387][ T2839] hsr_slave_1: left promiscuous mode [ 309.561507][ T2839] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 309.569454][ T2839] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 309.589184][ T2839] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 309.597503][ T2839] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 309.646105][ T9624] loop2: detected capacity change from 0 to 128 [ 309.657239][ T2839] veth1_macvtap: left promiscuous mode [ 309.668188][ T9624] ufs: You didn't specify the type of your ufs filesystem [ 309.668188][ T9624] [ 309.668188][ T9624] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 309.668188][ T9624] [ 309.668188][ T9624] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 309.700158][ T2839] veth0_macvtap: left promiscuous mode [ 309.705896][ T2839] veth1_vlan: left promiscuous mode [ 309.711414][ T2839] veth0_vlan: left promiscuous mode [ 309.728008][ T9624] ufs: ufs_fill_super(): fragment size 2066844866 is not a power of 2 [ 309.831224][ T9624] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 309.936753][ T9624] 9pnet_virtio: no channels available for device @ [ 309.952637][ T9627] loop3: detected capacity change from 0 to 2048 [ 310.007155][ T9627] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 310.365237][ T7828] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 310.377875][ T9636] ALSA: seq fatal error: cannot create timer (-22) [ 310.738084][ T9647] loop3: detected capacity change from 0 to 512 [ 310.769482][ T9647] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 310.782861][ T9647] EXT4-fs (loop3): orphan cleanup on readonly fs [ 310.800517][ T9647] EXT4-fs warning (device loop3): ext4_enable_quotas:7078: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 310.882740][ T9647] EXT4-fs (loop3): Cannot turn on quotas: error -22 [ 310.900211][ T9647] EXT4-fs error (device loop3): ext4_orphan_get:1394: inode #16: comm syz-executor.3: casefold flag without casefold feature [ 310.938546][ T9647] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 16 (err -117) [ 310.953587][ T9647] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 310.975773][ T2839] team0 (unregistering): Port device team_slave_1 removed [ 311.022168][ T9647] EXT4-fs error (device loop3): ext4_lookup:1854: inode #16: comm syz-executor.3: casefold flag without casefold feature [ 311.068469][ T2839] team0 (unregistering): Port device team_slave_0 removed [ 311.107860][ T7828] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 311.329354][ T5109] Bluetooth: hci5: command tx timeout [ 311.413639][ T9661] ALSA: seq fatal error: cannot create timer (-22) [ 311.943941][ T9634] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.2'. [ 311.955151][ T9634] netlink: 'syz-executor.2': attribute type 3 has an invalid length. [ 311.963963][ T9634] netlink: 1 bytes leftover after parsing attributes in process `syz-executor.2'. [ 312.178386][ T9381] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 312.201710][ T9381] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 312.343943][ T9546] bridge0: port 1(bridge_slave_0) entered blocking state [ 312.364726][ T9546] bridge0: port 1(bridge_slave_0) entered disabled state [ 312.380552][ T9546] bridge_slave_0: entered allmulticast mode [ 312.396793][ T9546] bridge_slave_0: entered promiscuous mode [ 312.415100][ T9381] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 312.442498][ T9546] bridge0: port 2(bridge_slave_1) entered blocking state [ 312.449674][ T9546] bridge0: port 2(bridge_slave_1) entered disabled state [ 312.490362][ T9546] bridge_slave_1: entered allmulticast mode [ 312.525452][ T9546] bridge_slave_1: entered promiscuous mode [ 312.538008][ T9381] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 312.633257][ T9680] netlink: 'syz-executor.2': attribute type 4 has an invalid length. [ 312.746528][ T9546] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 312.803728][ T9546] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 312.914902][ T9674] loop0: detected capacity change from 0 to 32768 [ 312.936213][ T9674] BTRFS: device fsid d552757d-9c39-40e3-95f0-16d819589928 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (9674) [ 312.958762][ T9546] team0: Port device team_slave_0 added [ 312.979977][ T9674] BTRFS info (device loop0): first mount of filesystem d552757d-9c39-40e3-95f0-16d819589928 [ 312.993505][ T9546] team0: Port device team_slave_1 added [ 313.002754][ T9674] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 313.012319][ T9674] BTRFS info (device loop0): using free-space-tree [ 313.162345][ T9546] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 313.169355][ T9546] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 313.232198][ T9546] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 313.237096][ T9674] BTRFS info (device loop0): checking UUID tree [ 313.247058][ T5125] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 313.260904][ T5125] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 313.269164][ T5125] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 313.279816][ T5125] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 313.290464][ T5125] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 313.297887][ T5125] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 313.305208][ T9546] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 313.305227][ T9546] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 313.305256][ T9546] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 313.400321][ T5109] Bluetooth: hci5: command tx timeout [ 313.457243][ T6307] BTRFS info (device loop0): last unmount of filesystem d552757d-9c39-40e3-95f0-16d819589928 [ 313.533587][ T9546] hsr_slave_0: entered promiscuous mode [ 313.555503][ T9546] hsr_slave_1: entered promiscuous mode [ 313.575744][ T9546] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 313.599940][ T9546] Cannot create hsr debugfs directory [ 313.621495][ T9711] loop2: detected capacity change from 0 to 2048 [ 313.652412][ T9711] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 313.724833][ T9712] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 313.988311][ T9717] ALSA: seq fatal error: cannot create timer (-22) [ 314.219060][ T9381] 8021q: adding VLAN 0 to HW filter on device bond0 [ 315.362783][ T9381] 8021q: adding VLAN 0 to HW filter on device team0 [ 315.378383][ T9737] netlink: 'syz-executor.0': attribute type 5 has an invalid length. [ 315.410673][ T5109] Bluetooth: hci1: command tx timeout [ 315.463228][ T9739] loop2: detected capacity change from 0 to 2048 [ 315.479166][ T5164] bridge0: port 1(bridge_slave_0) entered blocking state [ 315.486396][ T5164] bridge0: port 1(bridge_slave_0) entered forwarding state [ 315.494462][ T9739] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 315.516842][ T9705] chnl_net:caif_netlink_parms(): no params data found [ 315.530968][ T9740] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 315.594065][ T5164] bridge0: port 2(bridge_slave_1) entered blocking state [ 315.601286][ T5164] bridge0: port 2(bridge_slave_1) entered forwarding state [ 315.639709][ T9737] loop0: detected capacity change from 0 to 8192 [ 315.938704][ T9752] loop0: detected capacity change from 0 to 128 [ 315.971969][ T9752] VFS: Found a Xenix FS (block size = 512) on device loop0 [ 315.989038][ T9705] bridge0: port 1(bridge_slave_0) entered blocking state [ 316.007304][ T9752] sysv_free_block: trying to free block not in datazone [ 316.010189][ T9705] bridge0: port 1(bridge_slave_0) entered disabled state [ 316.030783][ T9705] bridge_slave_0: entered allmulticast mode [ 316.038520][ T9705] bridge_slave_0: entered promiscuous mode [ 316.086171][ T6307] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 316.099608][ T9546] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 316.133019][ T9705] bridge0: port 2(bridge_slave_1) entered blocking state [ 316.140901][ T9705] bridge0: port 2(bridge_slave_1) entered disabled state [ 316.149243][ T9705] bridge_slave_1: entered allmulticast mode [ 316.157920][ T9705] bridge_slave_1: entered promiscuous mode [ 316.226770][ T9546] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 316.252878][ T9546] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 316.276478][ T9705] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 316.304943][ T9705] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 316.341628][ T9546] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 316.372093][ T9763] loop2: detected capacity change from 0 to 2048 [ 316.388300][ T9763] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 316.425397][ T9765] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 316.430578][ T9766] netlink: 13 bytes leftover after parsing attributes in process `syz-executor.0'. [ 316.457022][ T9766] netlink: 13 bytes leftover after parsing attributes in process `syz-executor.0'. [ 316.504603][ T9705] team0: Port device team_slave_0 added [ 316.525870][ T9705] team0: Port device team_slave_1 added [ 316.658099][ T9705] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 316.679038][ T9705] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 316.716829][ T9705] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 316.751937][ T9705] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 316.758959][ T9705] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 316.822402][ T9705] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 316.911465][ T9774] netlink: 'syz-executor.2': attribute type 5 has an invalid length. [ 316.985182][ T9705] hsr_slave_0: entered promiscuous mode [ 317.005807][ T9705] hsr_slave_1: entered promiscuous mode [ 317.019572][ T9705] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 317.037604][ T9705] Cannot create hsr debugfs directory [ 317.155840][ T9381] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 317.188916][ T9774] loop2: detected capacity change from 0 to 8192 [ 317.481773][ T5109] Bluetooth: hci1: command tx timeout [ 317.596100][ T9546] 8021q: adding VLAN 0 to HW filter on device bond0 [ 317.666361][ T9783] loop2: detected capacity change from 0 to 128 [ 317.708537][ T9783] VFS: Found a Xenix FS (block size = 512) on device loop2 [ 317.751603][ T9705] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 317.758459][ T9783] sysv_free_block: trying to free block not in datazone [ 317.813644][ T1249] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.820211][ T1249] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.855544][ T6317] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 317.868296][ T9546] 8021q: adding VLAN 0 to HW filter on device team0 [ 317.947779][ T9705] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 317.991930][ T9381] veth0_vlan: entered promiscuous mode [ 318.032178][ T6448] bridge0: port 1(bridge_slave_0) entered blocking state [ 318.039509][ T6448] bridge0: port 1(bridge_slave_0) entered forwarding state [ 318.071151][ T6448] bridge0: port 2(bridge_slave_1) entered blocking state [ 318.078480][ T6448] bridge0: port 2(bridge_slave_1) entered forwarding state [ 318.173166][ T9705] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 318.238773][ T9381] veth1_vlan: entered promiscuous mode [ 318.268755][ T9789] sch_fq: defrate 0 ignored. [ 318.378752][ T9705] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 318.517029][ T9381] veth0_macvtap: entered promiscuous mode [ 318.544212][ T9381] veth1_macvtap: entered promiscuous mode [ 318.602988][ T9800] Bluetooth: MGMT ver 1.22 [ 318.641642][ T9381] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 318.669789][ T9381] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 318.680753][ T9381] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 318.691701][ T9381] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 318.701653][ T9381] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 318.714939][ T9381] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 318.727432][ T9381] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 318.748466][ T9381] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 318.761027][ T9381] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 318.764261][ T9805] loop0: detected capacity change from 0 to 128 [ 318.771777][ T9381] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 318.790685][ T9381] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 318.807041][ T9805] VFS: Found a Xenix FS (block size = 512) on device loop0 [ 318.827396][ T9805] sysv_free_block: trying to free block not in datazone [ 318.851564][ T9381] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 318.878281][ T9381] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 318.888581][ T9381] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 318.899334][ T9381] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 318.909587][ T9381] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 318.928482][ T9381] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 318.951744][ T9381] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 318.962517][ T9381] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 318.972485][ T9381] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 318.982959][ T9381] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 318.994389][ T6307] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 318.995559][ T9381] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 319.072365][ T9381] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 319.090255][ T9381] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 319.099081][ T9381] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 319.116320][ T9381] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 319.172826][ T9705] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 319.204808][ T9705] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 319.231143][ T9705] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 319.341666][ T9546] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 319.349072][ T9705] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 319.561874][ T5109] Bluetooth: hci1: command tx timeout [ 319.568222][ T1056] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 319.590704][ T1056] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 319.613981][ T9829] loop2: detected capacity change from 0 to 128 [ 319.664248][ T9829] VFS: Found a Xenix FS (block size = 512) on device loop2 [ 319.714109][ T9829] UBIFS error (pid: 9829): cannot open "./file0", error -22 [ 319.768776][ T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 319.820322][ T6317] sysv_free_block: trying to free block not in datazone [ 319.828309][ T6317] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 319.837697][ T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 319.970397][ T9705] 8021q: adding VLAN 0 to HW filter on device bond0 [ 320.018821][ T9840] loop2: detected capacity change from 0 to 128 [ 320.039365][ T9705] 8021q: adding VLAN 0 to HW filter on device team0 [ 320.062319][ T9840] VFS: Found a Xenix FS (block size = 512) on device loop2 [ 320.094415][ T9840] sysv_free_block: trying to free block not in datazone [ 320.115257][ T9843] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 320.122233][ T5213] bridge0: port 1(bridge_slave_0) entered blocking state [ 320.129913][ T5213] bridge0: port 1(bridge_slave_0) entered forwarding state [ 320.134205][ T9843] overlayfs: failed to set xattr on upper [ 320.152615][ T5213] bridge0: port 2(bridge_slave_1) entered blocking state [ 320.156791][ T9843] overlayfs: ...falling back to redirect_dir=nofollow. [ 320.159817][ T5213] bridge0: port 2(bridge_slave_1) entered forwarding state [ 320.174660][ T9843] overlayfs: ...falling back to index=off. [ 320.183520][ T6317] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 320.225438][ T9843] overlayfs: ...falling back to uuid=null. [ 320.259042][ T9546] veth0_vlan: entered promiscuous mode [ 320.296424][ T9705] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 320.312626][ T9705] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 320.362336][ T29] audit: type=1326 audit(1718296952.207:5315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9848 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f518427cea9 code=0x0 [ 320.396708][ T9546] veth1_vlan: entered promiscuous mode [ 320.474168][ T9546] veth0_macvtap: entered promiscuous mode [ 320.502102][ T9546] veth1_macvtap: entered promiscuous mode [ 320.566877][ T9546] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 320.596621][ T9546] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 320.629285][ T9546] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 320.651226][ T9546] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 320.679411][ T9546] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 320.703780][ T9546] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 320.718687][ T9546] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 320.746414][ T9546] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 320.757952][ T9546] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 320.772036][ T9546] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 320.782620][ T9546] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 320.793536][ T9546] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 320.812905][ T9546] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 320.857803][ T9546] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 320.899355][ T9546] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 320.919812][ T9546] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 320.947565][ T9546] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 320.972394][ T9546] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 321.001012][ T9546] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 321.020654][ T9546] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 321.040052][ T9546] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 321.059989][ T9546] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 321.082651][ T9546] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 321.087754][ T9845] loop1: detected capacity change from 0 to 32768 [ 321.102947][ T9546] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 321.114093][ T9845] jfs: Unrecognized mount option "ÿÿÿÿÿÿÿÿÿÿÿÿ" or missing value [ 321.130210][ T9546] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 321.162831][ T9546] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 321.179200][ T9546] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 321.199605][ T9546] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 321.224910][ T9546] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 321.245701][ T9546] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 321.261161][ T9863] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.2'. [ 321.294366][ T9863] openvswitch: netlink: IP tunnel attribute has 3040 unknown bytes. [ 321.387451][ T9705] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 321.524013][ T9865] loop2: detected capacity change from 0 to 128 [ 321.602152][ T2910] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 321.630249][ T2910] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 321.640622][ T5109] Bluetooth: hci1: command tx timeout [ 321.711819][ T9861] loop0: detected capacity change from 0 to 32768 [ 321.721244][ T9861] BTRFS: device fsid d552757d-9c39-40e3-95f0-16d819589928 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (9861) [ 321.767654][ T9705] veth0_vlan: entered promiscuous mode [ 321.770038][ T2874] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 321.784487][ T9861] BTRFS info (device loop0): first mount of filesystem d552757d-9c39-40e3-95f0-16d819589928 [ 321.814678][ T9861] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 321.823679][ T2874] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 321.841293][ T9705] veth1_vlan: entered promiscuous mode [ 321.848553][ T9861] BTRFS info (device loop0): using free-space-tree [ 321.975170][ T9861] BTRFS info (device loop0): checking UUID tree [ 321.982777][ T9705] veth0_macvtap: entered promiscuous mode [ 322.035076][ T9705] veth1_macvtap: entered promiscuous mode [ 322.112639][ T6307] BTRFS info (device loop0): last unmount of filesystem d552757d-9c39-40e3-95f0-16d819589928 [ 322.125811][ T9705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 322.143776][ T9705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 322.154939][ T9705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 322.171547][ T9705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 322.182945][ T9705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 322.196691][ T9705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 322.207842][ T9705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 322.218443][ T9705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 322.229572][ T9705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 322.241673][ T9705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 322.254796][ T9705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 322.265639][ T9705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 322.275645][ T9705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 322.287850][ T9705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 322.336041][ T9900] binder: 9898:9900 ioctl c0306201 200001c0 returned -14 [ 322.351155][ T9705] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 322.404151][ T9705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 322.438824][ T9705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 322.463382][ T9705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 322.477368][ T9705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 322.489453][ T9705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 322.503232][ T9705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 322.515494][ T9705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 322.527360][ T9705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 322.538608][ T9705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 322.549462][ T9705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 322.562731][ T9705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 322.573399][ T9705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 322.586607][ T9705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 322.619473][ T9705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 322.688793][ T9705] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 322.727041][ T9705] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 322.757561][ T9705] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 322.775150][ T9705] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 322.794305][ T9705] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 323.160794][ T2910] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 323.168666][ T2910] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 323.309681][ T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 323.332804][ T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 323.600030][ T5161] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 323.813237][ T5161] usb 5-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47 [ 323.823994][ T9956] loop1: detected capacity change from 0 to 16 [ 323.840776][ T5161] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 323.858880][ T9956] erofs: (device loop1): mounted with root inode @ nid 36. [ 323.871977][ T5161] usb 5-1: config 0 descriptor?? [ 323.901751][ T5161] gspca_main: STV06xx-2.14.0 probing 046d:0870 [ 324.082834][ T9962] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'. [ 324.105306][ T9962] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'. [ 324.217995][ T9962] gretap1: entered promiscuous mode [ 324.245152][ T9962] gretap1: entered allmulticast mode [ 324.299569][ T9966] loop1: detected capacity change from 0 to 2048 [ 324.349937][ T9966] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 324.390018][ T9966] NILFS (loop1): mounting unchecked fs [ 324.430115][ T9966] NILFS (loop1): recovery complete [ 324.462123][ T9972] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 324.711215][ T5161] gspca_stv06xx: I2C: Read error writing address: -71 [ 324.740381][ T5161] usb 5-1: USB disconnect, device number 9 [ 324.874606][ T9993] loop3: detected capacity change from 0 to 16 [ 324.900327][ T9993] erofs: (device loop3): mounted with root inode @ nid 36. [ 324.984768][ T9990] loop0: detected capacity change from 0 to 8192 [ 325.000062][ T9990] REISERFS warning (device loop0): super-6509 reiserfs_parse_options: nolargeio option is no longer supported [ 325.407444][ T29] audit: type=1326 audit(1718296957.267:5316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10006 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f518427cea9 code=0x0 [ 325.920198][ T29] audit: type=1326 audit(1718296957.777:5317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10016 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f423867cea9 code=0x0 [ 325.941865][ C1] vkms_vblank_simulate: vblank timer overrun [ 326.215672][T10024] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.0'. [ 326.247566][T10024] openvswitch: netlink: IP tunnel attribute has 3040 unknown bytes. [ 326.441619][T10027] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 326.448955][T10027] IPv6: NLM_F_CREATE should be set when creating new route [ 326.815823][T10045] loop2: detected capacity change from 0 to 64 [ 327.772450][T10048] geneve2: entered promiscuous mode [ 327.777715][T10048] geneve2: entered allmulticast mode [ 328.077222][T10058] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.4'. [ 328.100964][T10061] loop0: detected capacity change from 0 to 256 [ 328.117789][T10058] openvswitch: netlink: IP tunnel attribute has 3040 unknown bytes. [ 328.214836][T10063] futex_wake_op: syz-executor.2 tries to shift op by -1; fix this program [ 328.257931][T10067] loop3: detected capacity change from 0 to 64 [ 329.295871][T10085] loop1: detected capacity change from 0 to 1024 [ 329.587383][T10088] loop0: detected capacity change from 0 to 2048 [ 329.655326][T10088] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 329.720639][T10088] NILFS (loop0): mounting unchecked fs [ 329.731937][T10088] NILFS (loop0): recovery complete [ 329.746641][T10093] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 330.535144][T10111] netlink: 'syz-executor.0': attribute type 1 has an invalid length. [ 330.581121][T10112] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6) [ 330.588263][T10112] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 330.671858][T10112] vhci_hcd vhci_hcd.0: Device attached [ 330.732864][T10114] vhci_hcd: connection closed [ 330.740780][ T2910] vhci_hcd: stop threads [ 330.753103][ T2910] vhci_hcd: release socket [ 330.757949][ T2910] vhci_hcd: disconnect device [ 331.175407][T10124] loop2: detected capacity change from 0 to 256 [ 331.216509][T10124] exfat: Deprecated parameter 'namecase' [ 331.264082][T10124] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 331.400782][T10124] bio_check_eod: 38 callbacks suppressed [ 331.400806][T10124] syz-executor.2: attempt to access beyond end of device [ 331.400806][T10124] loop2: rw=524288, sector=34359738488, nr_sectors = 1 limit=256 [ 331.434538][T10124] syz-executor.2: attempt to access beyond end of device [ 331.434538][T10124] loop2: rw=0, sector=34359738488, nr_sectors = 1 limit=256 [ 331.500250][ T29] audit: type=1800 audit(1718296963.357:5318): pid=10124 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz-executor.2" name="file1" dev="loop2" ino=1048741 res=0 errno=0 [ 331.644057][T10137] loop3: detected capacity change from 0 to 256 [ 331.690767][T10124] exFAT-fs (loop2): error, invalid size(size(4096) > aligned(512) [ 331.690767][T10124] [ 331.888482][ T29] audit: type=1800 audit(1718296963.727:5319): pid=10130 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1945 res=0 errno=0 [ 333.000177][ T5162] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 333.877593][ T12] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 334.122048][ T5162] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 334.136321][ T5162] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 334.145703][ T5162] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 334.153893][ T5162] usb 1-1: Product: syz [ 334.158270][ T5162] usb 1-1: Manufacturer: syz [ 334.164312][ T5162] usb 1-1: SerialNumber: syz [ 334.255405][T10168] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 334.368630][ T12] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 334.424952][T10168] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 334.470230][T10172] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 334.742319][ T12] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 335.003095][ T12] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 335.085738][ T5125] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 335.103387][ T5125] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 335.111986][ T5125] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 335.138047][ T5125] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 335.152397][ T5125] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 335.167349][ T5125] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 335.209243][T10196] loop2: detected capacity change from 0 to 1024 [ 335.293652][ T5162] cdc_ncm 1-1:1.0: failed to get mac address [ 335.340369][ T5162] cdc_ncm 1-1:1.0: bind() failure [ 335.343885][T10196] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 335.372181][ T5162] cdc_ncm 1-1:1.1: probe with driver cdc_ncm failed with error -71 [ 335.430659][ T5162] cdc_mbim 1-1:1.1: probe with driver cdc_mbim failed with error -71 [ 335.433887][T10196] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 335.449990][ T5162] usbtest 1-1:1.1: probe with driver usbtest failed with error -71 [ 335.529059][ T5162] usb 1-1: USB disconnect, device number 7 [ 335.595407][ T6317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 335.720302][ T12] bridge_slave_1: left allmulticast mode [ 335.750436][ T12] bridge_slave_1: left promiscuous mode [ 335.756284][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 335.816585][ T12] bridge_slave_0: left allmulticast mode [ 335.838896][ T12] bridge_slave_0: left promiscuous mode [ 335.865814][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 335.887022][T10218] overlayfs: missing 'lowerdir' [ 336.231720][T10224] loop1: detected capacity change from 0 to 4096 [ 336.511535][T10231] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 337.104608][ T29] audit: type=1800 audit(1718296968.967:5320): pid=10234 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=18 res=0 errno=0 [ 337.244987][ T5125] Bluetooth: hci1: command tx timeout [ 338.696236][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 338.709054][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 338.738822][ T12] bond0 (unregistering): Released all slaves [ 338.831700][T10243] loop1: detected capacity change from 0 to 32768 [ 338.840835][T10243] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (10243) [ 338.894174][T10243] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 338.905420][T10243] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 338.914353][T10243] BTRFS info (device loop1): using free-space-tree [ 338.959367][ T5161] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 339.155010][T10273] overlayfs: missing 'lowerdir' [ 339.165637][ T5161] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 339.195084][ T5161] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 339.209946][T10275] netlink: 'syz-executor.0': attribute type 2 has an invalid length. [ 339.218076][T10275] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 339.227775][ T5161] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 339.238901][ T5161] usb 3-1: Product: syz [ 339.243139][ T5161] usb 3-1: Manufacturer: syz [ 339.247751][ T5161] usb 3-1: SerialNumber: syz [ 339.260067][ T9381] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 339.322768][ T5125] Bluetooth: hci1: command tx timeout [ 339.636191][ T12] hsr_slave_0: left promiscuous mode [ 339.649135][ T12] hsr_slave_1: left promiscuous mode [ 339.668721][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 339.676585][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 339.706991][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 339.725248][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 339.778933][ T12] veth1_macvtap: left promiscuous mode [ 339.795204][ T12] veth0_macvtap: left promiscuous mode [ 339.801902][ T12] veth1_vlan: left promiscuous mode [ 339.824834][ T12] veth0_vlan: left promiscuous mode [ 340.345797][ T5161] cdc_ncm 3-1:1.0: failed to get mac address [ 340.354988][ T5161] cdc_ncm 3-1:1.0: bind() failure [ 340.365070][ T5161] cdc_ncm 3-1:1.1: probe with driver cdc_ncm failed with error -71 [ 340.382786][ T5161] cdc_mbim 3-1:1.1: probe with driver cdc_mbim failed with error -71 [ 340.402803][ T5161] usbtest 3-1:1.1: probe with driver usbtest failed with error -71 [ 340.428808][ T5161] usb 3-1: USB disconnect, device number 4 [ 340.559232][ T12] team0 (unregistering): Port device team_slave_1 removed [ 340.629381][ T12] team0 (unregistering): Port device team_slave_0 removed [ 341.241835][T10193] chnl_net:caif_netlink_parms(): no params data found [ 341.373910][T10193] bridge0: port 1(bridge_slave_0) entered blocking state [ 341.381584][T10193] bridge0: port 1(bridge_slave_0) entered disabled state [ 341.388837][T10193] bridge_slave_0: entered allmulticast mode [ 341.397788][T10193] bridge_slave_0: entered promiscuous mode [ 341.400209][ T5125] Bluetooth: hci1: command tx timeout [ 341.407893][T10193] bridge0: port 2(bridge_slave_1) entered blocking state [ 341.417550][T10193] bridge0: port 2(bridge_slave_1) entered disabled state [ 341.424979][T10193] bridge_slave_1: entered allmulticast mode [ 341.432671][T10193] bridge_slave_1: entered promiscuous mode [ 341.490896][T10193] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 341.514574][T10193] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 341.563356][T10193] team0: Port device team_slave_0 added [ 341.583689][T10193] team0: Port device team_slave_1 added [ 341.667726][T10193] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 341.683003][T10193] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 341.708909][ C1] vkms_vblank_simulate: vblank timer overrun [ 341.715421][T10193] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 341.728508][T10193] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 341.735589][T10193] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 341.761557][ C1] vkms_vblank_simulate: vblank timer overrun [ 341.772941][T10193] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 341.827459][T10193] hsr_slave_0: entered promiscuous mode [ 341.834586][T10193] hsr_slave_1: entered promiscuous mode [ 341.841812][T10193] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 341.852271][T10193] Cannot create hsr debugfs directory [ 342.270140][T10193] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 342.296316][T10193] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 342.307143][T10193] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 342.317096][T10193] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 342.415792][T10193] 8021q: adding VLAN 0 to HW filter on device bond0 [ 342.441470][T10193] 8021q: adding VLAN 0 to HW filter on device team0 [ 342.465700][ T5164] bridge0: port 1(bridge_slave_0) entered blocking state [ 342.472959][ T5164] bridge0: port 1(bridge_slave_0) entered forwarding state [ 342.485132][ T5164] bridge0: port 2(bridge_slave_1) entered blocking state [ 342.492343][ T5164] bridge0: port 2(bridge_slave_1) entered forwarding state [ 342.721265][T10193] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 342.769565][T10193] veth0_vlan: entered promiscuous mode [ 342.788519][T10193] veth1_vlan: entered promiscuous mode [ 342.827499][T10193] veth0_macvtap: entered promiscuous mode [ 342.837189][T10193] veth1_macvtap: entered promiscuous mode [ 342.858406][T10193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 342.869383][T10193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 342.882148][T10193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 342.894037][T10193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 342.904245][T10193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 342.914869][T10193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 342.926944][T10193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 342.937436][T10193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 342.947402][T10193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 342.957847][T10193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 342.967727][T10193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 342.980928][T10193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 342.990848][T10193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 343.002603][T10193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 343.015783][T10193] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 343.032822][T10193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 343.043817][T10193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 343.054133][T10193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 343.065007][T10193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 343.075985][T10193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 343.087470][T10193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 343.097456][T10193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 343.108309][T10193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 343.118993][T10193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 343.129586][T10193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 343.139780][T10193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 343.151251][T10193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 343.161553][T10193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 343.172272][T10193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 343.188344][T10193] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 343.207019][T10193] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 343.216498][T10193] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 343.226356][T10193] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 343.235266][T10193] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 343.339975][ T1056] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 343.347850][ T1056] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 343.378239][ T2910] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 343.388262][ T2910] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 343.480161][ T5125] Bluetooth: hci1: command tx timeout [ 343.807728][T10292] loop3: detected capacity change from 0 to 40427 [ 343.826072][T10292] F2FS-fs (loop3): Found nat_bits in checkpoint [ 343.879379][T10292] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 345.010420][T10311] Bluetooth: hci3: invalid length 0, exp 2 for type 20 [ 345.334833][T10314] loop3: detected capacity change from 0 to 1024 [ 345.406322][T10314] hfsplus: failed to load root directory [ 345.502995][T10316] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7) [ 345.509576][T10316] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 345.612328][T10316] vhci_hcd vhci_hcd.0: Device attached [ 345.620064][ T29] audit: type=1800 audit(1718296977.457:5321): pid=10323 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz-executor.0" name="SYSV00000000" dev="hugetlbfs" ino=3 res=0 errno=0 [ 345.640224][ C1] vkms_vblank_simulate: vblank timer overrun [ 345.693670][T10319] vhci_hcd: connection closed [ 345.694135][ T2910] vhci_hcd: stop threads [ 345.732492][ T2910] vhci_hcd: release socket [ 345.760037][ T2910] vhci_hcd: disconnect device [ 346.195546][T10333] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 346.205386][T10333] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 347.341774][T10346] loop2: detected capacity change from 0 to 64 [ 347.482937][ T2529] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 347.724666][ T2529] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 347.782493][ T2529] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 347.808972][ T2529] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 347.840090][ T2529] usb 2-1: Product: syz [ 347.847948][ T2529] usb 2-1: Manufacturer: syz [ 347.858961][ T2529] usb 2-1: SerialNumber: syz [ 349.882684][T10370] netlink: 'syz-executor.0': attribute type 2 has an invalid length. [ 349.906525][T10372] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'. [ 349.934174][T10370] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 349.974161][T10372] usb usb9: usbfs: process 10372 (syz-executor.3) did not claim interface 0 before use [ 349.987474][ T2529] cdc_ncm 2-1:1.0: failed to get mac address [ 350.022644][ T2529] cdc_ncm 2-1:1.0: bind() failure [ 350.074132][ T2529] cdc_ncm 2-1:1.1: probe with driver cdc_ncm failed with error -71 [ 350.106035][ T2529] cdc_mbim 2-1:1.1: probe with driver cdc_mbim failed with error -71 [ 350.124338][ T5125] Bluetooth: hci3: Unknown advertising packet type: 0x40 [ 350.124467][ T5125] Bluetooth: hci3: Malformed LE Event: 0x0d [ 350.130285][T10375] pimreg: entered allmulticast mode [ 350.146914][ T2529] usbtest 2-1:1.1: probe with driver usbtest failed with error -71 [ 350.167799][ T2529] usb 2-1: USB disconnect, device number 5 [ 350.218093][T10372] pimreg: left allmulticast mode [ 350.390715][T10383] input: syz0 as /devices/virtual/input/input15 [ 350.679660][T10392] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.1'. [ 350.852149][T10395] loop0: detected capacity change from 0 to 512 [ 350.940727][T10395] EXT4-fs (loop0): blocks per group (71) and clusters per group (20800) inconsistent [ 351.930269][T10409] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'. [ 352.098989][T10411] loop3: detected capacity change from 0 to 2048 [ 352.153652][T10411] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 352.169260][T10411] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 352.238597][T10419] input: syz0 as /devices/virtual/input/input16 [ 352.400694][T10425] loop0: detected capacity change from 0 to 2048 [ 352.431845][T10427] loop2: detected capacity change from 0 to 128 [ 352.451644][T10427] VFS: Found a Xenix FS (block size = 512) on device loop2 [ 352.462748][T10427] sysv_count_free_blocks: free block count was -2041545935, correcting to 3 [ 352.489452][T10425] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 352.691204][T10427] sysv_count_free_inodes: unable to read inode table [ 352.698772][T10433] sysv_count_free_inodes: unable to read inode table [ 352.829362][ T6317] sysv_free_block: trying to free block not in datazone [ 352.846346][T10442] loop0: detected capacity change from 0 to 512 [ 352.850900][ T6317] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 352.896761][T10442] EXT4-fs (loop0): blocks per group (71) and clusters per group (20800) inconsistent [ 353.438428][T10459] loop0: detected capacity change from 0 to 4096 [ 353.492214][T10459] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 353.553757][ T25] libceph: connect (1)[c::]:6789 error -101 [ 353.579231][ T25] libceph: mon0 (1)[c::]:6789 connect error [ 353.658540][T10459] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 353.829292][ T5109] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 353.850468][ T5109] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 353.860868][ T5109] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 353.870506][ T5109] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 353.879397][ T5109] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 353.890343][ T5109] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 353.903657][ T6448] libceph: connect (1)[c::]:6789 error -101 [ 353.931673][ T6448] libceph: mon0 (1)[c::]:6789 connect error [ 354.023797][ T12] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 354.228576][ T12] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 354.328731][T10466] ceph: No mds server is up or the cluster is laggy [ 354.424864][T10491] sctp: [Deprecated]: syz-executor.4 (pid 10491) Use of int in maxseg socket option. [ 354.424864][T10491] Use struct sctp_assoc_value instead [ 354.572698][ T12] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 354.725624][T10498] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 354.766330][ T12] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 354.923503][ T6448] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 355.109956][ T6448] usb 4-1: Using ep0 maxpacket: 32 [ 355.130337][ T6448] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 355.179579][ T6448] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 355.200812][ T6448] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 355.212899][ T6448] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 355.251559][ T6448] usb 4-1: config 0 descriptor?? [ 355.287308][ T6448] hub 4-1:0.0: USB hub found [ 355.340133][T10510] loop0: detected capacity change from 0 to 1024 [ 355.360880][T10510] hfsplus: failed to load root directory [ 355.461833][ T6448] hub 4-1:0.0: 1 port detected [ 355.506558][T10514] loop2: detected capacity change from 0 to 2048 [ 355.546676][T10514] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 355.591898][ T12] bridge_slave_1: left allmulticast mode [ 355.606132][ T12] bridge_slave_1: left promiscuous mode [ 355.619088][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 355.634204][T10514] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 355.649549][ T12] bridge_slave_0: left allmulticast mode [ 355.679997][ T12] bridge_slave_0: left promiscuous mode [ 355.695147][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 355.960130][ T5125] Bluetooth: hci6: command tx timeout [ 356.078215][ T6448] hub 4-1:0.0: activate --> -90 [ 356.313755][ T6448] hub 4-1:0.0: hub_ext_port_status failed (err = -71) [ 356.337802][ T6448] usb 4-1: USB disconnect, device number 4 [ 356.741082][T10535] xt_TPROXY: Can be used only with -p tcp or -p udp [ 357.393156][T10516] loop0: detected capacity change from 0 to 32768 [ 357.422817][T10516] [ 357.422817][T10516] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 357.422817][T10516] [ 357.424861][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 357.501098][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 357.531628][ T12] bond0 (unregistering): Released all slaves [ 357.595491][T10475] chnl_net:caif_netlink_parms(): no params data found [ 357.684580][T10516] [ 357.684580][T10516] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 357.684580][T10516] [ 357.696055][T10516] [ 357.696055][T10516] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 357.696055][T10516] [ 357.735501][T10516] [ 357.735501][T10516] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 357.735501][T10516] [ 357.765533][T10516] [ 357.765533][T10516] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 357.765533][T10516] [ 357.778189][T10516] [ 357.778189][T10516] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 357.778189][T10516] [ 357.798409][T10516] [ 357.798409][T10516] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 357.798409][T10516] [ 357.850608][T10516] [ 357.850608][T10516] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 357.850608][T10516] [ 357.907689][ T113] [ 357.907689][ T113] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 357.907689][ T113] [ 358.039987][ T5125] Bluetooth: hci6: command tx timeout [ 358.164552][ T6307] [ 358.164552][ T6307] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 358.164552][ T6307] [ 358.251002][ T6307] [ 358.251002][ T6307] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 358.251002][ T6307] [ 358.360646][T10563] xt_TPROXY: Can be used only with -p tcp or -p udp [ 358.659265][T10475] bridge0: port 1(bridge_slave_0) entered blocking state [ 358.673924][T10475] bridge0: port 1(bridge_slave_0) entered disabled state [ 358.699016][T10475] bridge_slave_0: entered allmulticast mode [ 358.716887][T10475] bridge_slave_0: entered promiscuous mode [ 358.733739][T10475] bridge0: port 2(bridge_slave_1) entered blocking state [ 358.762569][T10475] bridge0: port 2(bridge_slave_1) entered disabled state [ 358.782144][T10475] bridge_slave_1: entered allmulticast mode [ 358.803557][T10475] bridge_slave_1: entered promiscuous mode [ 358.900834][ T12] hsr_slave_0: left promiscuous mode [ 358.908502][ T12] hsr_slave_1: left promiscuous mode [ 358.931536][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 358.963344][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 358.991329][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 358.998884][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 359.026754][T10594] sctp: [Deprecated]: syz-executor.4 (pid 10594) Use of int in maxseg socket option. [ 359.026754][T10594] Use struct sctp_assoc_value instead [ 359.103385][ T12] veth0_macvtap: left promiscuous mode [ 359.109056][ T12] veth1_vlan: left promiscuous mode [ 359.151915][ T12] veth0_vlan: left promiscuous mode [ 359.163238][T10598] loop3: detected capacity change from 0 to 2048 [ 359.191307][T10598] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 359.271238][T10604] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 359.273714][T10598] syz-executor.3: attempt to access beyond end of device [ 359.273714][T10598] loop3: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 359.289510][T10605] loop0: detected capacity change from 0 to 1024 [ 359.308807][T10605] EXT4-fs: Ignoring removed nomblk_io_submit option [ 359.339135][T10605] EXT4-fs (loop0): mounted filesystem 00000000-0500-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 359.413865][T10605] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2856: Unable to expand inode 12. Delete some EAs or run e2fsck. [ 359.501783][ T6307] EXT4-fs (loop0): unmounting filesystem 00000000-0500-0000-0000-000000000000. [ 360.064043][ T12] team0 (unregistering): Port device team_slave_1 removed [ 360.121368][ T5125] Bluetooth: hci6: command tx timeout [ 360.128794][ T12] team0 (unregistering): Port device team_slave_0 removed [ 360.901469][T10475] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 360.937527][T10475] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 361.138304][T10631] loop3: detected capacity change from 0 to 64 [ 361.233485][T10475] team0: Port device team_slave_0 added [ 361.270496][T10631] hfs: request for non-existent node 1291 in B*Tree [ 361.283852][T10475] team0: Port device team_slave_1 added [ 361.300058][T10631] hfs: request for non-existent node 1291 in B*Tree [ 361.322023][ T30] INFO: task syz-executor.1:7517 blocked for more than 143 seconds. 1970/01/01 00:06:01 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF [ 361.358861][ T30] Not tainted 6.10.0-rc3-syzkaller-00044-g2ccbdf43d5e7 #0 [ 361.409738][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 361.457793][ T30] task:syz-executor.1 state:D stack:23800 pid:7517 tgid:7515 ppid:6054 flags:0x00000006 [ 361.480051][ T30] Call Trace: [ 361.483396][ T30] [ 361.486358][ T30] __schedule+0x1796/0x49d0 [ 361.510648][ T30] ? __pfx___schedule+0x10/0x10 [ 361.515585][ T30] ? __pfx_lock_release+0x10/0x10 [ 361.525761][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 361.532408][ T30] ? schedule+0x90/0x320 [ 361.536696][ T30] schedule+0x14b/0x320 [ 361.541041][ T30] schedule_preempt_disabled+0x13/0x30 [ 361.546599][ T30] __mutex_lock+0x6a4/0xd70 [ 361.551359][ T30] ? __mutex_lock+0x527/0xd70 [ 361.556100][ T30] ? nfsd_nl_rpc_status_get_start+0x8d/0xe0 [ 361.562356][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 361.567444][ T30] ? net_generic+0x1f/0x240 [ 361.572192][ T30] nfsd_nl_rpc_status_get_start+0x8d/0xe0 [ 361.578058][ T30] genl_start+0x4d6/0x6d0 [ 361.582542][ T30] __netlink_dump_start+0x45c/0x780 [ 361.587784][ T30] genl_rcv_msg+0x88c/0xec0 [ 361.592488][ T30] ? mark_lock+0x9a/0x350 [ 361.596861][ T30] ? __pfx_genl_rcv_msg+0x10/0x10 [ 361.602045][ T30] ? __pfx_genl_start+0x10/0x10 [ 361.606959][ T30] ? __pfx_genl_dumpit+0x10/0x10 [ 361.615025][ T30] ? __pfx_genl_done+0x10/0x10 [ 361.622429][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 361.627494][ T30] ? __pfx_nfsd_nl_rpc_status_get_start+0x10/0x10 [ 361.634035][ T30] ? __pfx_nfsd_nl_rpc_status_get_dumpit+0x10/0x10 [ 361.640953][ T30] ? __pfx_nfsd_nl_rpc_status_get_done+0x10/0x10 [ 361.647368][ T30] ? __pfx___might_resched+0x10/0x10 [ 361.659972][ T30] netlink_rcv_skb+0x1e3/0x430 [ 361.664796][ T30] ? __pfx_genl_rcv_msg+0x10/0x10 [ 361.681052][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 361.686439][ T30] ? __netlink_deliver_tap+0x77e/0x7c0 [ 361.702751][ T30] genl_rcv+0x28/0x40 [ 361.706787][ T30] netlink_unicast+0x7ea/0x980 [ 361.716945][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 361.723459][ T30] ? __virt_addr_valid+0x183/0x520 [ 361.728631][ T30] ? __check_object_size+0x49c/0x900 [ 361.736469][ T30] ? bpf_lsm_netlink_send+0x9/0x10 [ 361.741723][ T30] netlink_sendmsg+0x8db/0xcb0 [ 361.746538][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 361.751929][ T30] ? __import_iovec+0x536/0x820 [ 361.756852][ T30] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 361.762249][ T30] ? security_socket_sendmsg+0x87/0xb0 [ 361.767749][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 361.773111][ T30] __sock_sendmsg+0x221/0x270 [ 361.777826][ T30] ____sys_sendmsg+0x525/0x7d0 [ 361.782734][ T30] ? __pfx_____sys_sendmsg+0x10/0x10 [ 361.788100][ T30] __sys_sendmsg+0x2b0/0x3a0 [ 361.793884][ T30] ? __pfx___sys_sendmsg+0x10/0x10 [ 361.799048][ T30] ? bpf_raw_tracepoint_open+0x1d6/0x240 [ 361.804853][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 361.811310][ T30] ? do_syscall_64+0x100/0x230 [ 361.816104][ T30] ? do_syscall_64+0xb6/0x230 [ 361.835646][ T30] do_syscall_64+0xf3/0x230 [ 361.845098][ T30] ? clear_bhb_loop+0x35/0x90 [ 361.850061][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 361.856003][ T30] RIP: 0033:0x7f182b67cea9 [ 361.869926][ T30] RSP: 002b:00007f182c48a0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 361.878479][ T30] RAX: ffffffffffffffda RBX: 00007f182b7b3f80 RCX: 00007f182b67cea9 [ 361.897318][ T30] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 361.907969][ T30] RBP: 00007f182b6ebff4 R08: 0000000000000000 R09: 0000000000000000 [ 361.929417][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 361.937675][ T30] R13: 000000000000000b R14: 00007f182b7b3f80 R15: 00007ffd83adb8d8 [ 361.949999][ T30] [ 361.953112][ T30] [ 361.953112][ T30] Showing all locks held in the system: [ 361.980841][ T30] 5 locks held by kworker/u8:1/12: [ 361.984752][ T61] hfs: request for non-existent node 1291 in B*Tree [ 361.986154][ T30] #0: ffff888015ed3148 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 361.986232][ T30] #1: ffffc90000117d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 362.039646][ T30] #2: ffffffff8f5c8cd0 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 [ 362.039886][ T61] hfs: request for non-existent node 1291 in B*Tree [ 362.065331][ T30] #3: ffff8880237ed408 (&wg->device_update_lock){+.+.}-{3:3}, at: wg_destruct+0x110/0x2e0 [ 362.075695][ T30] #4: ffffffff8e339240 (rcu_state.barrier_mutex){+.+.}-{3:3}, at: rcu_barrier+0x4c/0x530 [ 362.092331][ T61] hfs: request for non-existent node 1291 in B*Tree [ 362.097980][ T30] 1 lock held by khungtaskd/30: [ 362.098949][ T61] hfs: request for non-existent node 1291 in B*Tree [ 362.106393][ T30] #0: ffffffff8e333fa0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 362.149933][ T30] 3 locks held by kworker/u8:4/61: [ 362.155103][ T30] #0: ffff8880b953e798 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140 [ 362.191031][ T30] #1: ffff8880b9528948 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x441/0x770 [ 362.202737][ T5125] Bluetooth: hci6: command tx timeout [ 362.251160][ T30] #2: ffff8880b953e798 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140 [ 362.290322][ T30] 3 locks held by kworker/0:2/1156: [ 362.295583][ T30] #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 362.340075][ T30] #1: ffffc90004627d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 362.381092][ T30] #2: ffffffff8f5d5508 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 362.420195][ T30] 2 locks held by kworker/u8:9/2839: [ 362.425539][ T30] 2 locks held by getty/4842: [ 362.450934][ T30] #0: ffff88802b04c0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 362.475348][ T30] #1: ffffc90002f162f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 [ 362.486775][ T30] 2 locks held by syz-fuzzer/5088: [ 362.493003][ T30] 3 locks held by kworker/0:6/5164: [ 362.498231][ T30] #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 362.509376][ T30] #1: ffffc90004577d00 (free_ipc_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 362.519779][ T30] #2: ffffffff8e339378 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830 [ 362.543702][ T30] 2 locks held by syz-executor.4/7353: [ 362.549214][ T30] #0: ffffffff8f63b9d0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 362.559874][ T30] #1: ffffffff8e600748 (nfsd_mutex){+.+.}-{3:3}, at: nfsd_nl_listener_set_doit+0x12d/0x1a90 [ 362.579886][ T30] 3 locks held by syz-executor.1/7517: [ 362.585400][ T30] #0: ffffffff8f63b9d0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 362.608740][ T30] #1: ffff888052998678 (nlk_cb_mutex-GENERIC){+.+.}-{3:3}, at: __netlink_dump_start+0x119/0x780 [ 362.619654][ T30] #2: ffffffff8e600748 (nfsd_mutex){+.+.}-{3:3}, at: nfsd_nl_rpc_status_get_start+0x8d/0xe0 [ 362.643261][ T30] 2 locks held by syz-executor.1/10475: [ 362.648891][ T30] #0: ffffffff8f5d5508 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x842/0x1180 [