last executing test programs: 12m7.367431407s ago: executing program 1 (id=2): setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x25, &(0x7f0000000000)={@multicast2, @multicast2, @loopback}, 0xc) r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x8) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000001700)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r4}, 0x10) sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, 0x0, 0x4000004) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f00000008c0)={[{@bsdgroups}, {@nodiscard}, {@noblock_validity}, {@grpjquota}, {@grpjquota}, {@noquota}, {@abort}, {@noload}, {@noload}]}, 0x64, 0x50a, &(0x7f0000000200)="$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") r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYRES16=r5, @ANYRESHEX=r5, @ANYBLOB=',rootmode=', @ANYRESDEC=0x0, @ANYBLOB=',group_id']) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @remote}) 11m59.006456604s ago: executing program 1 (id=13): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socketpair$nbd(0x1, 0x1, 0x0, 0x0) r3 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$sock_linger(r3, 0x1, 0x3c, 0x0, 0x0) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c) setsockopt$inet6_IPV6_HOPOPTS(r3, 0x29, 0x36, &(0x7f0000001440)=ANY=[@ANYBLOB="0017"], 0xc0) sendmmsg$inet6(r3, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000) 11m56.526596925s ago: executing program 1 (id=14): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20) bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) socket$nl_route(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="000000e300"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/27], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r4, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) ioctl$AUTOFS_IOC_READY(r1, 0x9360, 0x7fff) syz_mount_image$ext4(0x0, &(0x7f0000000080)='./file0\x00', 0x18808, 0x0, 0xf9, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) syz_mount_image$fuse(0x0, &(0x7f0000000180)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c}) r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) fchmodat(r5, &(0x7f00000000c0)='./file1\x00', 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x71}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94) 11m54.662408008s ago: executing program 1 (id=17): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) socket$nl_route(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, 0x0, 0x0) ioctl$AUTOFS_IOC_READY(r1, 0x9360, 0x7fff) syz_mount_image$ext4(0x0, &(0x7f0000000080)='./file0\x00', 0x18808, 0x0, 0xf9, 0x0, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) syz_mount_image$fuse(0x0, &(0x7f0000000180)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pwritev(r4, 0x0, 0x0, 0x2000001, 0x6) mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c}) 11m52.403193829s ago: executing program 1 (id=19): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') read$FUSE(r3, &(0x7f00000023c0)={0x2020}, 0x2020) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x12, &(0x7f0000000300)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x3}, [@jmp={0x5, 0x1, 0x9, 0xb, 0x3, 0xfffffffffffffff0, 0xffffffffffffffef}, @map_fd={0x18, 0x8}, @map_fd={0x18, 0x2}, @printk={@d, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1}}, @map_idx_val={0x18, 0x2, 0x6, 0x0, 0x5, 0x0, 0x0, 0x0, 0x2}]}, &(0x7f0000000180)='syzkaller\x00', 0xc, 0xb9, &(0x7f00000005c0)=""/185, 0x41000, 0x48, '\x00', 0x0, 0x25, r3, 0x8, &(0x7f00000004c0)={0x6, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f00000006c0), 0x10, 0x142, @void, @value}, 0x94) socket$nl_route(0x10, 0x3, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) r6 = socket$packet(0x11, 0x3, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', 0x0}) sendmsg$nl_route(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x20, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x25dfdbff, {}, [@NHA_OIF={0x8, 0x5, r7}]}, 0x20}}, 0x0) sendmsg$nl_route(r4, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@ipv6_newrule={0x24, 0x18, 0x409, 0x0, 0x0, {}, [@FIB_RULE_POLICY=@FRA_GOTO={0x8, 0x1e, 0x1}]}, 0x24}}, 0x0) r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x10) setfsgid(0xee01) getitimer(0x0, 0x0) syz_open_dev$tty1(0xc, 0x4, 0x1) 11m48.242160383s ago: executing program 1 (id=23): sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x601c2, 0x0) ftruncate(r3, 0x8800000) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000400)={0xffffffffffffffff, 0xffffffffffffffff}) recvmmsg(r5, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000000b80)=""/4096, 0x20001b80}, {&(0x7f0000001b80)=""/112, 0x70}], 0x2, 0x0, 0xa0028cb4}}], 0x40000000000013c, 0x700, 0x0) sendfile(r4, r3, 0x0, 0x578410e9) 11m33.168008645s ago: executing program 32 (id=23): sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x601c2, 0x0) ftruncate(r3, 0x8800000) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000400)={0xffffffffffffffff, 0xffffffffffffffff}) recvmmsg(r5, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000000b80)=""/4096, 0x20001b80}, {&(0x7f0000001b80)=""/112, 0x70}], 0x2, 0x0, 0xa0028cb4}}], 0x40000000000013c, 0x700, 0x0) sendfile(r4, r3, 0x0, 0x578410e9) 1m35.679955409s ago: executing program 4 (id=1439): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f00000000c0)=ANY=[], 0x8) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000080)='bridge0\x00', 0x10) sendmmsg$inet6(r0, &(0x7f0000004b80)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000040)="82", 0x1}, {&(0x7f00000000c0)='\x00', 0x1}], 0x2}}], 0x1, 0x40048184) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000840)=@newtfilter={0x34, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xf0, 0x7}, {}, {0x7}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}}, 0x0) sendto$inet6(r0, &(0x7f0000000300), 0x16, 0x3b00, 0x0, 0xfffffffffffffdfd) 1m35.350878427s ago: executing program 4 (id=1444): syz_io_uring_setup(0x110, 0x0, 0x0, 0x0) syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r0) r1 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r1, 0x0) r2 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10) 1m33.51677126s ago: executing program 4 (id=1453): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0) ppoll(&(0x7f00000001c0)=[{r0, 0x4020}], 0x1, &(0x7f0000000200)={0x0, 0x3938700}, 0x0, 0x0) syz_clone(0x0, 0x0, 0xfffffffffffffe1e, 0x0, 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000300)={0x4c, 0x0, &(0x7f0000000540)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 1m32.907930048s ago: executing program 4 (id=1464): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_LIST(r0, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0x28, 0x7, 0x6, 0x5, 0x0, 0x0, {0x3, 0x0, 0x4}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x8000) 1m32.462879046s ago: executing program 4 (id=1468): r0 = socket(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000600)={'team0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000440)=@newqdisc={0x54, 0x24, 0xf0b, 0x70bd27, 0x3, {0x0, 0x0, 0x12, r2, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x24, 0x2, [@TCA_CAKE_INGRESS={0x8, 0xf, 0x1}, @TCA_CAKE_TARGET={0x8, 0x8, 0xff}, @TCA_CAKE_OVERHEAD={0x8, 0x6, 0xd9}, @TCA_CAKE_MEMORY={0x8, 0xa, 0x5}]}}]}, 0x54}}, 0x0) 1m31.474311332s ago: executing program 4 (id=1474): r0 = socket$inet6(0xa, 0x3, 0x8000000003c) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000014c0)=@raw={'raw\x00', 0x8, 0x3, 0x528, 0x0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x458, 0xffffffff, 0xffffffff, 0x458, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@empty, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x62}, 0x0, 0x358, 0x388, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'veth0_to_hsr\x00', {0x4, 0x8, 0x20, 0x5e1b2d47, 0xf91, 0x5, 0x4, 0x9f7, 0x18}, {0x8}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x588) syz_emit_ethernet(0x56, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd60020000002084"], 0x0) 1m15.431063571s ago: executing program 33 (id=1474): r0 = socket$inet6(0xa, 0x3, 0x8000000003c) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000014c0)=@raw={'raw\x00', 0x8, 0x3, 0x528, 0x0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x458, 0xffffffff, 0xffffffff, 0x458, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@empty, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x62}, 0x0, 0x358, 0x388, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'veth0_to_hsr\x00', {0x4, 0x8, 0x20, 0x5e1b2d47, 0xf91, 0x5, 0x4, 0x9f7, 0x18}, {0x8}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x588) syz_emit_ethernet(0x56, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd60020000002084"], 0x0) 48.200151676s ago: executing program 3 (id=1634): r0 = socket$kcm(0x10, 0x2, 0x4) sendmsg$inet(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000240)="5c00000014006b02c84e21100af32c6e0a0675f8d3be446040f000000000005c1e6182949a36c23d3b48dfd8cdbf9367b498fa51f6c9f4d493803792684b71bdd70000b6c0504bb9183132be471b93c91b5d7870743719b4b53cf200", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x4) 47.863799164s ago: executing program 3 (id=1640): bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000540)={@map, 0xffffffffffffffff, 0x1b, 0x8, 0x0, @void, @value}, 0x20) 47.723655004s ago: executing program 3 (id=1645): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000440), r0) sendmsg$NLBL_UNLABEL_C_STATICLISTDEF(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000240)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="07ef000000000000000008"], 0x40}, 0x1, 0x0, 0x0, 0x44041}, 0x0) syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000001c0), r0) 47.584530113s ago: executing program 3 (id=1649): bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r0, r1, 0x2, 0x0, 0x0, @void, @value}, 0x10) bpf$ENABLE_STATS(0x20, 0x0, 0x0) socket$inet6(0xa, 0x80002, 0x0) 47.455774823s ago: executing program 3 (id=1651): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x13, &(0x7f0000000480)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008004}, 0x0) r0 = socket(0x18, 0x0, 0x0) connect$pppoe(r0, &(0x7f0000000080)={0x18, 0x0, {0x5, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, 'sit0\x00'}}, 0x1e) r1 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r1, &(0x7f0000000080)={0x18, 0x0, {0xc, @broadcast, 'veth1_to_team\x00'}}, 0x1e) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000140), 0x101a40, 0x0) ioctl$PPPIOCATTCHAN(r2, 0x40047438, &(0x7f0000000040)=0x2) ioctl$PPPIOCBRIDGECHAN(r2, 0x40047435, &(0x7f0000000200)=0x1) 46.895914371s ago: executing program 3 (id=1661): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$can_raw(0x1d, 0x3, 0x1) r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0), 0x141000, 0x0) ioctl$SNDCTL_SEQ_CTRLRATE(r4, 0xc0045103, 0xffffffffffffffff) bind$can_raw(r3, &(0x7f0000000040), 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x48) r5 = dup(0xffffffffffffffff) sendmsg$inet(r5, &(0x7f0000000780)={0x0, 0x0, 0x0}, 0x0) sendmsg$netlink(r5, 0x0, 0x93) bpf$PROG_LOAD(0x5, 0x0, 0x0) getsockname$unix(r2, &(0x7f0000000240)=@abs, &(0x7f00000000c0)=0x6e) ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000200)) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, 0x0, &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10) 9.467112197s ago: executing program 0 (id=1805): socket$inet_mptcp(0x2, 0x1, 0x106) r0 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r0, &(0x7f0000000280)=[{&(0x7f0000000040)="580000001400192340834b80040d8c560a067fbc45ff81054e220000000058000b480400945f64009400050038925a01000000000000008004000000ffe809000000fff5dd0000000800030006010000418e01400004fcff", 0x58}], 0x1) 9.181347986s ago: executing program 0 (id=1806): r0 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4) ioctl$int_in(r0, 0x5421, &(0x7f00000000c0)=0x9) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000080)=0x2, 0x4) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10) shutdown(r0, 0x1) bpf$PROG_LOAD(0x5, 0x0, 0x0) 9.105726035s ago: executing program 0 (id=1810): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f00000003c0)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) prlimit64(0x0, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c) sendmmsg$inet6(r3, &(0x7f0000007e40)=[{{&(0x7f0000000340)={0xa, 0x4e20, 0x5dc, @ipv4={'\x00', '\xff\xff', @multicast1=0xe0000010}}, 0x1c, 0x0}}], 0x6c00, 0x0) 7.491826039s ago: executing program 0 (id=1816): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x10000000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r3, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027fa80a010100000004"], 0x57) 7.490298239s ago: executing program 5 (id=1817): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x20000845, 0x0, 0x0) listen(r0, 0x5f6) 7.457694199s ago: executing program 5 (id=1818): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x5) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x6, &(0x7f0000000280)=@raw=[@cb_func={0x18, 0x3, 0x4, 0x0, 0xfffffffffffffffa}, @initr0={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xecb}, @cb_func={0x18, 0x9, 0x4, 0x0, 0xfffffffffffffff8}], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1f, @void, @value}, 0x90) socket$nl_netfilter(0x10, 0x3, 0xc) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r3, 0x0, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r4 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r4, 0x84, 0x11, 0x0, 0x0) 7.393443369s ago: executing program 2 (id=1819): listen(0xffffffffffffffff, 0x9) r0 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r0, &(0x7f0000000280)=[{&(0x7f0000000040)="580000001400192340834b80040d8c560a067fbc45ff81054e220000000058000b480400945f64009400050038925a01000000000000008004000000ffe809000000fff5dd0000000800030006010000418e01400004fcff", 0x58}], 0x1) 7.291842548s ago: executing program 6 (id=1820): r0 = socket(0xa, 0x3, 0x3a) setsockopt$MRT6_ADD_MFC(r0, 0x29, 0xcc, &(0x7f0000000000)={{0xa, 0x0, 0x0, @private2={0xfc, 0x2, '\x00', 0x1}, 0x809}, {0xa, 0x0, 0x0, @empty}, 0x2, {[0x0, 0x1, 0xfffffffe]}}, 0x5c) setsockopt$MRT6_ADD_MFC(r0, 0x29, 0xcc, 0x0, 0x0) setsockopt$MRT6_ADD_MFC(r0, 0x29, 0xcc, &(0x7f0000000000)={{0xa, 0x0, 0x0, @private2}, {0xa, 0x0, 0x0, @empty}}, 0x5c) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setaffinity(0x0, 0x0, 0x0) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x10) ioctl$VHOST_SET_VRING_KICK(0xffffffffffffffff, 0x4008af20, &(0x7f0000000040)={0x1}) ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f0000000900)) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0xe, 0x4, 0x4, 0x3, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x13, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x5}, {{0x18, 0x1, 0x1, 0x0, r5}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}, {0x95, 0x0, 0x0, 0x700}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x6, 0x0, 0x6, 0x9, 0x0, 0x0, 0xffffffff}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff0, 0x50}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x5, 0x0, 0xd, 0x0}, {0x18, 0x2, 0x2, 0x0, r6}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x5, 0x1, 0x5, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/syz0\x00', 0x1ff) r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0) syz_clone3(&(0x7f00000000c0)={0x200000400, 0x0, 0x0, 0x0, {0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, {r7}}, 0x58) setsockopt$MRT6_FLUSH(r0, 0x29, 0xd4, &(0x7f0000000140)=0xf, 0x4) 4.493155057s ago: executing program 0 (id=1821): ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, 0x0) r0 = io_uring_setup(0x79af, &(0x7f0000001240)) r1 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r2) sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3], 0x1c}}, 0x0) connect$nfc_llcp(r1, &(0x7f0000000000)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "f235cd041ecfd237d48b9fc39aa09025f026b0634b6f82bded015a1b2cc967eff95fd0b6841d40ae65cd6ddd03de31eba0328a09ff4f717c7b1b1c65e750c8", 0x1d}, 0x60) close_range(r0, 0xffffffffffffffff, 0x0) open_by_handle_at(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB='\f\x00'], 0x0) openat$binfmt_format(0xffffff9c, 0x0, 0x2, 0x0) socket$alg(0x26, 0x5, 0x0) syz_usb_connect(0x0, 0x24, &(0x7f0000000400)=ANY=[@ANYBLOB="120100006fb68440e11d02c1087d01020301090212000100000000090400000043da9100b850d25c5ae22435cfa52a2041f49e40244da71e50ee8580d64a143375b6c4ae0d4144ed76eb7ab106229082c5825524ab661eb900c34296ee831ff7755b1ed4e014812e10a567f257f6e4c7ba2081"], 0x0) 4.492995588s ago: executing program 2 (id=1822): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0) futex(&(0x7f000000cffc)=0x4, 0x10b, 0x4, 0x0, &(0x7f0000048000), 0x0) futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000000), &(0x7f0000048000), 0x0) 3.985933116s ago: executing program 6 (id=1823): bind$rds(0xffffffffffffffff, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10) sendmsg$rds(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x2, 0x0, @private=0xa010101}, 0x10, 0x0, 0x0, &(0x7f0000000380)=[@fadd={0x58, 0x114, 0x6, {{0xfffffffe, 0x8}, &(0x7f0000000300)=0x7, 0x0, 0x3, 0x1, 0x3ff, 0x2, 0x28, 0x754faab1}}], 0x58, 0x24008041}, 0x0) 3.810285235s ago: executing program 5 (id=1824): bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) bind$alg(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[], 0x3c}}, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f00000000c0)='cpu.stat\x00', 0x275a, 0x0) preadv(r1, &(0x7f0000000100), 0x2b, 0x0, 0x0) 3.662788905s ago: executing program 6 (id=1825): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[], 0x40}}, 0x80) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000400)=0x1, 0x4) sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000000)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x20008004}, 0x20004000) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f00000000c0)=@gcm_256={{0x303, 0x36}, "b1d65ab71f5ef2fe", "9e8ecc7bb5352776725e1047711330ff2bb17b550800", "dc5d3f00", "46b0dc72b7b1d30e"}, 0x38) 3.652896955s ago: executing program 2 (id=1826): r0 = socket(0x1e, 0x4, 0x0) r1 = socket(0x1e, 0x4, 0x0) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0) unshare(0x400) timer_create(0x0, &(0x7f0000000180)={0x0, 0x13, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000240)=0x0) timer_settime(r2, 0x0, &(0x7f0000000340)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) r3 = dup3(r1, r0, 0x0) recvmmsg$unix(r3, &(0x7f0000000e00)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000032c0)=""/4096, 0x1000}], 0x31e}}], 0x1, 0x58ca02a0, 0x0) 3.548068074s ago: executing program 5 (id=1827): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f00000003c0)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) prlimit64(0x0, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c) sendmmsg$inet6(r3, &(0x7f0000007e40)=[{{&(0x7f0000000340)={0xa, 0x4e20, 0x5dc, @ipv4={'\x00', '\xff\xff', @multicast1=0xe0000010}}, 0x1c, 0x0}}], 0x6c00, 0x0) 2.652222491s ago: executing program 5 (id=1828): socket$nl_generic(0x10, 0x3, 0x10) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mkdirat(0xffffffffffffff9c, 0x0, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000540)=@filter={'filter\x00', 0x2, 0x4, 0x388, 0xffffffff, 0xd0, 0xd0, 0x0, 0xfeffffff, 0xffffffff, 0x2b8, 0x2b8, 0x2b8, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@dev, @mcast1, [], [], 'macsec0\x00', 'bond_slave_0\x00', {}, {}, 0x0, 0x0, 0x3}, 0x2f2, 0xa8, 0xd0}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x6}}}, {{@ipv6={@mcast1, @loopback, [], [], 'netdevsim0\x00', 'geneve0\x00'}, 0x0, 0xa8, 0x118}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "ddabf53d9b1435965491f6531877000001e770b667f173dfa40b58c10327e3121114449fd20ba2be6e45cae72a972f25170163232ed996b4789b9d00"}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE3={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3e8) socket$inet6_sctp(0xa, 0x5, 0x84) r4 = socket(0x10, 0x3, 0x0) write(r4, &(0x7f00000000c0)="240000001e005f0214fffffffffffff8070000000100000000000000080003000b000000", 0x24) 2.626957561s ago: executing program 6 (id=1829): r0 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x34f}, &(0x7f00000002c0)=0x0, &(0x7f0000000080)=0x0) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r3, 0x29, 0x11, &(0x7f0000000080)=0x4, 0x4) connect$inet6(r3, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1}, 0x1b) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x58}}, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x30, 0x8, 0x0, 0x4}]}, 0x10) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x7b, 0x0, 0x0, 0x0, &(0x7f0000011000/0x4000)=nil, 0x4000, 0xc}) io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0) 2.625870201s ago: executing program 2 (id=1830): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x20, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_DIRENTPLUS(r2, &(0x7f0000000140)=ANY=[@ANYBLOB="10"], 0x10) mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$9p_fd(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',posixacl']) 2.50580348s ago: executing program 2 (id=1831): r0 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0) 2.49638978s ago: executing program 6 (id=1832): r0 = socket$pppl2tp(0x18, 0x1, 0x1) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r0, &(0x7f0000000040)=@pppol2tp={0x18, 0x1, {0x0, r1, {0x2, 0x0, @local}, 0x2}}, 0x26) r2 = socket$inet_udp(0x2, 0x2, 0x0) connect$pppl2tp(r0, &(0x7f0000000980)=@pppol2tpin6={0x18, 0x1, {0x0, r2, 0x1, 0x0, 0x0, 0x0, {0xa, 0x4e23, 0x0, @local}}}, 0x32) 2.413055499s ago: executing program 2 (id=1833): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r1 = getpid() seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) mprotect(&(0x7f0000570000/0x4000)=nil, 0x4000, 0x0) sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d00000085000000230000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10) getpgid(0xffffffffffffffff) bpf$MAP_CREATE(0x0, 0x0, 0x50) syz_clone3(0x0, 0x0) write$binfmt_script(r0, &(0x7f00000001c0)={'#! ', './file0'}, 0xb) r5 = socket$nl_route(0x10, 0x3, 0x0) r6 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000005c0)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x0) r8 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r8, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newqdisc={0x24, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, 0x0, {0xfff1}, {0x9, 0xffff}, {0x3, 0x1}}}, 0x24}, 0x1, 0x0, 0x0, 0x400dc}, 0x4000000) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x0) r9 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_int(r9, 0x0, 0x15, 0x0, &(0x7f0000000240)) 2.36997979s ago: executing program 0 (id=1834): syz_open_dev$loop(0x0, 0x81, 0x2a82) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() syz_open_dev$I2C(&(0x7f0000000240), 0x4, 0x1) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_open_dev$loop(&(0x7f0000000000), 0x1, 0x8000) io_uring_register$IORING_REGISTER_NAPI(0xffffffffffffffff, 0x1b, 0x0, 0x1) r3 = syz_open_procfs(0x0, 0x0) read$FUSE(r3, 0x0, 0x0) socket$inet6(0xa, 0x2, 0x0) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r4, &(0x7f0000000040), 0x6) ioctl$sock_bt_hci(r4, 0x400448e6, 0x0) ioctl$sock_bt_hci(r4, 0x400448e6, 0x0) ioctl$sock_bt_hci(r4, 0x400448e1, &(0x7f0000000180)) 1.540554826s ago: executing program 5 (id=1835): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x5) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x6, &(0x7f0000000280)=@raw=[@cb_func={0x18, 0x3, 0x4, 0x0, 0xfffffffffffffffa}, @initr0={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xecb}, @cb_func={0x18, 0x9, 0x4, 0x0, 0xfffffffffffffff8}], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1f, @void, @value}, 0x90) socket$nl_netfilter(0x10, 0x3, 0xc) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r3, 0x0, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r4 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r4, 0x84, 0x11, 0x0, 0x0) 0s ago: executing program 6 (id=1836): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0) futex(&(0x7f000000cffc)=0x4, 0x10b, 0x4, 0x0, &(0x7f0000048000), 0x0) futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000000), &(0x7f0000048000), 0x0) kernel console output (not intermixed with test programs): vs 150994969 free clusters [ 377.123147][ T7398] netlink: 4 bytes leftover after parsing attributes in process `syz.4.654'. [ 377.143088][ T4567] EXT4-fs (loop5): unmounting filesystem. [ 377.175949][ T7398] netlink: 4 bytes leftover after parsing attributes in process `syz.4.654'. [ 378.407567][ T7406] loop2: detected capacity change from 0 to 8192 [ 378.510154][ T7406] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 378.521588][ T7406] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal [ 378.523998][ T7406] REISERFS (device loop2): using ordered data mode [ 378.526647][ T7406] reiserfs: using flush barriers [ 378.560822][ T7406] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 378.579381][ T7406] REISERFS (device loop2): checking transaction log (loop2) [ 378.788089][ T7414] loop4: detected capacity change from 0 to 2048 [ 379.324635][ T7406] REISERFS (device loop2): Using r5 hash to sort names [ 379.385513][ T7406] reiserfs: enabling write barrier flush mode [ 379.412164][ T7406] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage. [ 379.422303][ T7414] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 379.801438][ T7426] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 380.465680][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 383.676088][ T7452] loop3: detected capacity change from 0 to 2048 [ 383.716795][ T7452] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 384.007344][ T7466] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 387.011180][ T4308] EXT4-fs (loop3): unmounting filesystem. [ 387.317944][ T7475] loop0: detected capacity change from 0 to 2048 [ 387.431316][ T7475] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 388.145173][ T7485] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 388.704798][ T4305] EXT4-fs (loop0): unmounting filesystem. [ 391.314174][ T7506] sctp: failed to load transform for md5: -2 [ 392.103838][ T7524] loop2: detected capacity change from 0 to 2048 [ 392.241714][ T7531] loop4: detected capacity change from 0 to 2048 [ 392.267111][ T7524] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 392.459599][ T7531] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 392.544788][ T7540] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 393.024482][ T7547] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 393.061553][ T4301] EXT4-fs (loop2): unmounting filesystem. [ 394.084224][ T7564] loop5: detected capacity change from 0 to 128 [ 394.502405][ T7569] syz.5.695: attempt to access beyond end of device [ 394.502405][ T7569] loop5: rw=2049, sector=145, nr_sectors = 160 limit=128 [ 395.418492][ T7585] loop3: detected capacity change from 0 to 8192 [ 395.448990][ T7585] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 395.458375][ T7585] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal [ 395.460339][ T7585] REISERFS (device loop3): using ordered data mode [ 395.476830][ T7585] reiserfs: using flush barriers [ 395.481254][ T7585] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 395.486360][ T7585] REISERFS (device loop3): checking transaction log (loop3) [ 395.497056][ T7585] REISERFS (device loop3): Using r5 hash to sort names [ 395.507112][ T7585] reiserfs: enabling write barrier flush mode [ 395.515833][ T7585] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage. [ 396.246253][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 396.358260][ T7594] loop5: detected capacity change from 0 to 2048 [ 396.495242][ T7594] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 396.809927][ T7612] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 397.397318][ T4567] EXT4-fs (loop5): unmounting filesystem. [ 400.107469][ T7643] loop3: detected capacity change from 0 to 2048 [ 401.959327][ T7643] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 402.256290][ T7658] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 402.792698][ T4308] EXT4-fs (loop3): unmounting filesystem. [ 403.364345][ T7667] loop0: detected capacity change from 0 to 128 [ 403.380132][ T7667] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 403.398608][ T7667] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 404.467304][ T7674] loop4: detected capacity change from 0 to 2048 [ 404.560959][ T7674] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 404.867111][ T7687] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 405.762611][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 407.229266][ T7706] loop5: detected capacity change from 0 to 128 [ 410.198694][ T7709] syz.5.727: attempt to access beyond end of device [ 410.198694][ T7709] loop5: rw=2049, sector=145, nr_sectors = 744 limit=128 [ 412.545253][ T7730] loop2: detected capacity change from 0 to 8192 [ 412.650651][ T7730] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 412.653464][ T7730] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal [ 412.656629][ T7730] REISERFS (device loop2): using ordered data mode [ 412.702102][ T7730] reiserfs: using flush barriers [ 412.710715][ T7730] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 412.726767][ T7730] REISERFS (device loop2): checking transaction log (loop2) [ 413.573506][ T7730] REISERFS (device loop2): Using r5 hash to sort names [ 413.761258][ T7730] reiserfs: enabling write barrier flush mode [ 415.541452][ T7730] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage. [ 423.458411][ T7803] loop4: detected capacity change from 0 to 128 [ 423.496128][ T7805] loop5: detected capacity change from 0 to 128 [ 423.520140][ T7805] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256 [ 423.524207][ T7805] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 423.566818][ T7791] loop0: detected capacity change from 0 to 4096 [ 423.736932][ T27] audit: type=1326 audit(423.710:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7808 comm="syz.3.754" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9f353a68 code=0x7ffc0000 [ 423.746500][ T27] audit: type=1326 audit(423.720:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7808 comm="syz.3.754" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9f353a68 code=0x7ffc0000 [ 423.757726][ T7809] loop3: detected capacity change from 0 to 512 [ 423.781261][ T27] audit: type=1326 audit(423.720:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7808 comm="syz.3.754" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9f353a68 code=0x7ffc0000 [ 423.905748][ T27] audit: type=1326 audit(423.720:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7808 comm="syz.3.754" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9f353a68 code=0x7ffc0000 [ 423.935104][ T27] audit: type=1326 audit(423.720:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7808 comm="syz.3.754" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9f353a68 code=0x7ffc0000 [ 423.960014][ T27] audit: type=1326 audit(423.720:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7808 comm="syz.3.754" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9f353a68 code=0x7ffc0000 [ 423.993168][ T27] audit: type=1326 audit(423.720:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7808 comm="syz.3.754" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9f353a68 code=0x7ffc0000 [ 424.016938][ T7809] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 424.069616][ T27] audit: type=1326 audit(423.720:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7808 comm="syz.3.754" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9f353a68 code=0x7ffc0000 [ 424.080703][ T27] audit: type=1326 audit(423.720:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7808 comm="syz.3.754" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9f353a68 code=0x7ffc0000 [ 424.118019][ T27] audit: type=1326 audit(423.720:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7808 comm="syz.3.754" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9f353a68 code=0x7ffc0000 [ 430.466619][ T7855] sctp: failed to load transform for md5: -2 [ 430.558935][ T4308] EXT4-fs (loop3): unmounting filesystem. [ 430.812111][ T7869] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3) [ 430.813524][ T7869] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 430.830556][ T7869] vhci_hcd vhci_hcd.0: Device attached [ 431.120637][ T4343] usb 6-1: new low-speed USB device number 2 using vhci_hcd [ 431.375018][ T7881] loop3: detected capacity change from 0 to 32768 [ 431.379350][ T7881] XFS: attr2 mount option is deprecated. [ 431.382278][ T7881] XFS: ikeep mount option is deprecated. [ 431.383601][ T7881] XFS: noikeep mount option is deprecated. [ 432.396878][ T7881] XFS (loop3): Mounting V5 Filesystem [ 432.591321][ T7881] XFS (loop3): Ending clean mount [ 432.593824][ T7881] XFS (loop3): Quotacheck needed: Please wait. [ 432.623489][ T7881] XFS (loop3): Quotacheck: Done. [ 432.783639][ T4308] XFS (loop3): Unmounting Filesystem [ 433.419394][ T2060] ieee802154 phy0 wpan0: encryption failed: -22 [ 433.420887][ T2060] ieee802154 phy1 wpan1: encryption failed: -22 [ 433.810554][ T7876] vhci_hcd: connection reset by peer [ 433.812776][ T179] vhci_hcd: stop threads [ 433.813831][ T179] vhci_hcd: release socket [ 433.827094][ T179] vhci_hcd: disconnect device [ 435.170744][ T7912] sctp: failed to load transform for md5: -2 [ 436.580646][ T4343] vhci_hcd: vhci_device speed not set [ 437.560012][ T7939] sctp: failed to load transform for md5: -2 [ 438.635240][ T7952] loop5: detected capacity change from 0 to 128 [ 438.678497][ T7952] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256 [ 438.712105][ T7952] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 441.757621][ T7977] loop0: detected capacity change from 0 to 40427 [ 441.779342][ T7977] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 441.781056][ T7977] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 441.790865][ T7977] F2FS-fs (loop0): invalid crc value [ 441.808748][ T7977] F2FS-fs (loop0): Found nat_bits in checkpoint [ 441.830993][ T7977] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 441.832449][ T7977] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 443.289916][ T7980] loop3: detected capacity change from 0 to 32768 [ 443.499700][ T7993] hub 6-0:1.0: USB hub found [ 443.501439][ T7993] hub 6-0:1.0: 8 ports detected [ 444.363195][ T7980] ocfs2: Mounting device (7,3) on (node local, slot 0) with writeback data mode. [ 445.150182][ T27] kauditd_printk_skb: 44 callbacks suppressed [ 445.150195][ T27] audit: type=1326 audit(445.120:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7996 comm="syz.2.790" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 445.157659][ T27] audit: type=1326 audit(445.130:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7996 comm="syz.2.790" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 445.171496][ T8001] sctp: failed to load transform for md5: -2 [ 445.230331][ T27] audit: type=1326 audit(445.160:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7996 comm="syz.2.790" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 445.235256][ T27] audit: type=1326 audit(445.160:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7996 comm="syz.2.790" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 445.239754][ T27] audit: type=1326 audit(445.160:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7996 comm="syz.2.790" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 445.265346][ T7999] loop2: detected capacity change from 0 to 512 [ 445.280512][ T27] audit: type=1326 audit(445.190:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7996 comm="syz.2.790" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 445.285075][ T27] audit: type=1326 audit(445.210:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7996 comm="syz.2.790" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 445.289542][ T27] audit: type=1326 audit(445.210:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7996 comm="syz.2.790" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 445.369324][ T27] audit: type=1326 audit(445.210:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7996 comm="syz.2.790" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 445.380631][ T27] audit: type=1326 audit(445.210:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7996 comm="syz.2.790" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 445.437844][ T4308] ocfs2: Unmounting device (7,3) on (node local) [ 446.201384][ T7999] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 448.129296][ T8032] sctp: failed to load transform for md5: -2 [ 449.439132][ T4301] EXT4-fs (loop2): unmounting filesystem. [ 450.922767][ T8057] loop4: detected capacity change from 0 to 40427 [ 450.930570][ T8057] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 450.932155][ T8057] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 450.937775][ T8057] F2FS-fs (loop4): invalid crc value [ 450.986843][ T8057] F2FS-fs (loop4): Found nat_bits in checkpoint [ 451.020998][ T8057] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 451.022468][ T8057] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 454.717998][ T8073] sctp: failed to load transform for md5: -2 [ 454.776555][ T8074] sctp: failed to load transform for md5: -2 [ 455.162257][ T8096] loop2: detected capacity change from 0 to 40427 [ 455.383513][ T8096] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 455.385320][ T8096] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 455.404510][ T8096] F2FS-fs (loop2): invalid crc value [ 456.077262][ T8096] F2FS-fs (loop2): Found nat_bits in checkpoint [ 456.137566][ T8096] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 456.139179][ T8096] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 458.694206][ T27] kauditd_printk_skb: 46 callbacks suppressed [ 458.694219][ T27] audit: type=1326 audit(458.650:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8127 comm="syz.4.814" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb0353a68 code=0x7ffc0000 [ 458.706361][ T27] audit: type=1326 audit(458.670:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8127 comm="syz.4.814" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb0353a68 code=0x7ffc0000 [ 458.749727][ T27] audit: type=1326 audit(458.690:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8127 comm="syz.4.814" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb0353a68 code=0x7ffc0000 [ 458.774205][ T8128] loop4: detected capacity change from 0 to 512 [ 458.800600][ T27] audit: type=1326 audit(458.690:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8127 comm="syz.4.814" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb0353a68 code=0x7ffc0000 [ 458.805774][ T27] audit: type=1326 audit(458.690:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8127 comm="syz.4.814" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb0353a68 code=0x7ffc0000 [ 458.810304][ T27] audit: type=1326 audit(458.690:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8127 comm="syz.4.814" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb0353a68 code=0x7ffc0000 [ 458.906062][ T27] audit: type=1326 audit(458.700:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8127 comm="syz.4.814" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb0353a68 code=0x7ffc0000 [ 458.945212][ T27] audit: type=1326 audit(458.700:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8127 comm="syz.4.814" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb0353a68 code=0x7ffc0000 [ 458.990610][ T27] audit: type=1326 audit(458.700:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8127 comm="syz.4.814" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb0353a68 code=0x7ffc0000 [ 459.019072][ T8128] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 459.039556][ T27] audit: type=1326 audit(458.700:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8127 comm="syz.4.814" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb0353a68 code=0x7ffc0000 [ 459.292003][ T8135] loop2: detected capacity change from 0 to 40427 [ 460.402877][ T8139] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 460.404768][ T8139] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 460.409187][ T8139] Bluetooth: hci1: Suspend notifier action (1) failed: -4 [ 460.411407][ T8139] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 460.413066][ T8139] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 460.414803][ T8139] Bluetooth: hci2: Suspend notifier action (1) failed: -4 [ 460.416875][ T8139] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 460.418424][ T8139] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 460.420191][ T8139] Bluetooth: hci3: Suspend notifier action (1) failed: -4 [ 460.422362][ T8139] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 460.423992][ T8139] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 460.425684][ T8139] Bluetooth: hci4: Suspend notifier action (1) failed: -4 [ 460.427907][ T8139] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 460.429482][ T8139] Bluetooth: hci5: Opcode 0x0406 failed: -4 [ 460.431374][ T8139] Bluetooth: hci5: Suspend notifier action (1) failed: -4 [ 460.900712][ T8135] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 460.902429][ T8135] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 460.906460][ T8135] F2FS-fs (loop2): invalid crc value [ 460.967890][ T8135] F2FS-fs (loop2): Found nat_bits in checkpoint [ 460.995580][ T8135] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 460.997114][ T8135] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 461.038155][ T8142] sctp: failed to load transform for md5: -2 [ 464.287983][ T4304] Bluetooth: hci5: command 0x0c1a tx timeout [ 464.290268][ T4304] Bluetooth: hci4: command 0x0c1a tx timeout [ 464.292548][ T4304] Bluetooth: hci3: command 0x0c1a tx timeout [ 464.293919][ T4304] Bluetooth: hci2: command 0x0c1a tx timeout [ 464.295222][ T4304] Bluetooth: hci1: command 0x0c1a tx timeout [ 464.539254][ T8161] loop3: detected capacity change from 0 to 40427 [ 464.550730][ T8161] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 464.552322][ T8161] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 464.556669][ T8161] F2FS-fs (loop3): invalid crc value [ 464.613355][ T8161] F2FS-fs (loop3): Found nat_bits in checkpoint [ 464.634463][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 464.646601][ T8161] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 464.648038][ T8161] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 466.377617][ T8168] Bluetooth: hci1: command 0x0406 tx timeout [ 466.378924][ T8168] Bluetooth: hci2: command 0x0406 tx timeout [ 466.380251][ T8168] Bluetooth: hci3: command 0x0406 tx timeout [ 466.381563][ T8168] Bluetooth: hci4: command 0x0406 tx timeout [ 466.382808][ T8168] Bluetooth: hci5: command 0x0406 tx timeout [ 466.857398][ T27] kauditd_printk_skb: 30 callbacks suppressed [ 466.857412][ T27] audit: type=1326 audit(466.830:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8201 comm="syz.2.827" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 466.871788][ T27] audit: type=1326 audit(466.830:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8201 comm="syz.2.827" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 466.877515][ T8202] loop2: detected capacity change from 0 to 512 [ 466.889592][ T27] audit: type=1326 audit(466.830:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8201 comm="syz.2.827" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 466.921572][ T27] audit: type=1326 audit(466.830:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8201 comm="syz.2.827" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 466.994580][ T8194] loop4: detected capacity change from 0 to 4096 [ 467.100950][ T27] audit: type=1326 audit(466.830:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8201 comm="syz.2.827" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 467.304261][ T27] audit: type=1326 audit(466.840:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8201 comm="syz.2.827" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 467.504114][ T27] audit: type=1326 audit(466.840:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8201 comm="syz.2.827" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 467.723346][ T8202] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 467.747483][ T27] audit: type=1326 audit(466.840:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8201 comm="syz.2.827" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 467.752500][ T27] audit: type=1326 audit(466.840:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8201 comm="syz.2.827" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 467.757233][ T27] audit: type=1326 audit(466.840:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8201 comm="syz.2.827" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=138 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 471.875387][ T8245] hub 6-0:1.0: USB hub found [ 471.877308][ T8245] hub 6-0:1.0: 8 ports detected [ 473.248967][ T4301] EXT4-fs (loop2): unmounting filesystem. [ 475.060036][ T8274] loop0: detected capacity change from 0 to 40427 [ 475.066366][ T8274] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 475.068077][ T8274] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 475.078427][ T8274] F2FS-fs (loop0): invalid crc value [ 475.254579][ T8274] F2FS-fs (loop0): Found nat_bits in checkpoint [ 475.271298][ T8274] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 475.272967][ T8274] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 477.707960][ T8289] loop2: detected capacity change from 0 to 40427 [ 477.837365][ T8289] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 477.839067][ T8289] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 477.848974][ T8289] F2FS-fs (loop2): invalid crc value [ 477.899033][ T8289] F2FS-fs (loop2): Found nat_bits in checkpoint [ 477.934086][ T8289] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 477.935651][ T8289] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 480.117247][ T8311] hub 6-0:1.0: USB hub found [ 480.121234][ T8311] hub 6-0:1.0: 8 ports detected [ 483.092634][ T8327] sctp: failed to load transform for md5: -2 [ 483.711938][ T8349] block device autoloading is deprecated and will be removed. [ 483.715184][ T8349] I/O error, dev loop34, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 1 [ 484.284876][ T8350] sctp: failed to load transform for md5: -2 [ 486.728334][ T8379] hub 6-0:1.0: USB hub found [ 486.731430][ T8379] hub 6-0:1.0: 8 ports detected [ 489.602342][ T8399] loop5: detected capacity change from 0 to 40427 [ 489.699522][ T8399] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12 [ 489.701232][ T8399] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 489.708053][ T8399] F2FS-fs (loop5): invalid crc value [ 490.402010][ T8399] F2FS-fs (loop5): Found nat_bits in checkpoint [ 490.422051][ T8399] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0 [ 490.423594][ T8399] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 494.370345][ T8419] loop4: detected capacity change from 0 to 40427 [ 494.379459][ T8419] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 494.381235][ T8419] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 494.388967][ T8419] F2FS-fs (loop4): invalid crc value [ 494.441608][ T8419] F2FS-fs (loop4): Found nat_bits in checkpoint [ 494.479588][ T8419] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 494.482309][ T8419] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 494.636723][ T2060] ieee802154 phy0 wpan0: encryption failed: -22 [ 494.638364][ T2060] ieee802154 phy1 wpan1: encryption failed: -22 [ 496.341788][ T8434] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 496.343360][ T8434] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 496.344809][ T8434] Bluetooth: hci1: Suspend notifier action (1) failed: -4 [ 496.346426][ T8434] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 496.348696][ T8434] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 496.350075][ T8434] Bluetooth: hci2: Suspend notifier action (1) failed: -4 [ 496.351885][ T8434] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 496.353157][ T8434] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 496.355030][ T8434] Bluetooth: hci3: Suspend notifier action (1) failed: -4 [ 496.356689][ T8434] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 496.358126][ T8434] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 496.359471][ T8434] Bluetooth: hci4: Suspend notifier action (1) failed: -4 [ 496.361153][ T8434] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 496.362739][ T8434] Bluetooth: hci5: Opcode 0x0406 failed: -4 [ 496.364020][ T8434] Bluetooth: hci5: Suspend notifier action (1) failed: -4 [ 497.615723][ T8446] loop3: detected capacity change from 0 to 128 [ 497.619917][ T8446] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 497.726659][ T8446] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 498.340701][ T4300] Bluetooth: hci1: command 0x0c1a tx timeout [ 498.420678][ T4300] Bluetooth: hci2: command 0x0c1a tx timeout [ 498.420722][ T8168] Bluetooth: hci3: command 0x0c1a tx timeout [ 498.581268][ T4300] Bluetooth: hci5: command 0x0c1a tx timeout [ 498.582632][ T4300] Bluetooth: hci4: command 0x0c1a tx timeout [ 499.647444][ T8467] I/O error, dev loop34, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 1 [ 500.673783][ T8168] Bluetooth: hci1: command 0x0406 tx timeout [ 500.699394][ T4300] Bluetooth: hci2: command 0x0406 tx timeout [ 500.700945][ T8168] Bluetooth: hci3: command 0x0406 tx timeout [ 500.715792][ T4300] Bluetooth: hci4: command 0x0406 tx timeout [ 500.717158][ T8168] Bluetooth: hci5: command 0x0406 tx timeout [ 503.194751][ T8496] loop5: detected capacity change from 0 to 40427 [ 503.197178][ T8496] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12 [ 503.198827][ T8496] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 503.206197][ T8496] F2FS-fs (loop5): invalid crc value [ 503.231768][ T8496] F2FS-fs (loop5): Found nat_bits in checkpoint [ 503.249591][ T8496] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0 [ 503.251228][ T8496] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 506.831975][ T8528] loop2: detected capacity change from 0 to 128 [ 506.848516][ T8528] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 506.885660][ T8528] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 507.479667][ T8538] netlink: 4 bytes leftover after parsing attributes in process `syz.5.904'. [ 509.028205][ T8542] netlink: 4 bytes leftover after parsing attributes in process `syz.5.904'. [ 509.363131][ T8557] netlink: 4 bytes leftover after parsing attributes in process `syz.4.909'. [ 509.954014][ T8561] hub 6-0:1.0: USB hub found [ 509.957036][ T8561] hub 6-0:1.0: 8 ports detected [ 510.612755][ T8557] netlink: 4 bytes leftover after parsing attributes in process `syz.4.909'. [ 513.409977][ T8603] I/O error, dev loop34, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 1 [ 514.147266][ T8599] netlink: 4 bytes leftover after parsing attributes in process `syz.4.918'. [ 514.268892][ T8599] netlink: 4 bytes leftover after parsing attributes in process `syz.4.918'. [ 520.014100][ T8645] netlink: 4 bytes leftover after parsing attributes in process `syz.5.930'. [ 520.074606][ T8645] netlink: 4 bytes leftover after parsing attributes in process `syz.5.930'. [ 521.314152][ T8654] netlink: 4 bytes leftover after parsing attributes in process `syz.4.934'. [ 521.448517][ T8654] netlink: 4 bytes leftover after parsing attributes in process `syz.4.934'. [ 521.856503][ T8667] loop2: detected capacity change from 0 to 40427 [ 521.902632][ T8667] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 521.904268][ T8667] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 521.932105][ T8667] F2FS-fs (loop2): invalid crc value [ 523.032571][ T8667] F2FS-fs (loop2): Found nat_bits in checkpoint [ 523.091721][ T8683] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 523.093130][ T8683] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 523.094608][ T8683] Bluetooth: hci1: Suspend notifier action (1) failed: -4 [ 523.096260][ T8683] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 523.097513][ T8683] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 523.098753][ T8683] Bluetooth: hci2: Suspend notifier action (1) failed: -4 [ 523.100320][ T8683] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 523.101633][ T8683] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 523.103075][ T8683] Bluetooth: hci3: Suspend notifier action (1) failed: -4 [ 523.104664][ T8683] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 523.105844][ T8683] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 523.107140][ T8683] Bluetooth: hci4: Suspend notifier action (1) failed: -4 [ 523.108892][ T8683] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 523.110407][ T8683] Bluetooth: hci5: Opcode 0x0406 failed: -4 [ 523.112522][ T8683] Bluetooth: hci5: Suspend notifier action (1) failed: -4 [ 523.260266][ T8667] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 523.263166][ T8667] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 523.322731][ T8694] netlink: 4 bytes leftover after parsing attributes in process `syz.0.943'. [ 524.998630][ T8694] netlink: 4 bytes leftover after parsing attributes in process `syz.0.943'. [ 525.152271][ T8168] Bluetooth: hci5: command 0x0c1a tx timeout [ 525.152303][ T4300] Bluetooth: hci4: command 0x0c1a tx timeout [ 525.153536][ T8168] Bluetooth: hci3: command 0x0c1a tx timeout [ 525.154947][ T4300] Bluetooth: hci2: command 0x0c1a tx timeout [ 525.156024][ T8168] Bluetooth: hci1: command 0x0c1a tx timeout [ 525.169663][ T8701] loop4: detected capacity change from 0 to 2048 [ 525.276406][ T8701] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 525.453904][ T8701] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 525.522977][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 526.980364][ T8729] netlink: 4 bytes leftover after parsing attributes in process `syz.4.953'. [ 527.075593][ T8729] netlink: 4 bytes leftover after parsing attributes in process `syz.4.953'. [ 527.220607][ T8168] Bluetooth: hci1: command 0x0406 tx timeout [ 527.221989][ T8168] Bluetooth: hci2: command 0x0406 tx timeout [ 527.223201][ T8168] Bluetooth: hci3: command 0x0406 tx timeout [ 527.224466][ T8168] Bluetooth: hci4: command 0x0406 tx timeout [ 527.225796][ T8168] Bluetooth: hci5: command 0x0406 tx timeout [ 528.570281][ T8746] loop4: detected capacity change from 0 to 2048 [ 528.658121][ T8746] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 528.808010][ T8746] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 528.974951][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 530.294292][ T8749] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 530.296960][ T8749] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 530.302231][ T8749] Bluetooth: hci1: Suspend notifier action (1) failed: -4 [ 530.304505][ T8749] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 530.306843][ T8749] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 530.331476][ T8749] Bluetooth: hci2: Suspend notifier action (1) failed: -4 [ 530.333326][ T8749] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 530.336845][ T8749] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 530.347757][ T8749] Bluetooth: hci3: Suspend notifier action (1) failed: -4 [ 530.356814][ T8749] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 530.361521][ T8749] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 530.366067][ T8749] Bluetooth: hci4: Suspend notifier action (1) failed: -4 [ 530.378579][ T8749] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 530.384220][ T8749] Bluetooth: hci5: Opcode 0x0406 failed: -4 [ 530.388743][ T8749] Bluetooth: hci5: Suspend notifier action (1) failed: -4 [ 531.259229][ T4304] Bluetooth: hci1: command 0x0c1a tx timeout [ 531.458109][ T8781] netlink: 40 bytes leftover after parsing attributes in process `syz.4.967'. [ 532.392107][ T8168] Bluetooth: hci3: command 0x0c1a tx timeout [ 532.393458][ T8168] Bluetooth: hci2: command 0x0c1a tx timeout [ 532.427259][ T4304] Bluetooth: hci5: command 0x0c1a tx timeout [ 532.428660][ T4304] Bluetooth: hci4: command 0x0c1a tx timeout [ 532.580280][ T8787] loop2: detected capacity change from 0 to 2048 [ 532.886982][ T8787] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 533.300755][ T8168] Bluetooth: hci1: command 0x0406 tx timeout [ 533.593968][ T8787] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 534.420974][ T8168] Bluetooth: hci2: command 0x0406 tx timeout [ 534.422492][ T8168] Bluetooth: hci3: command 0x0406 tx timeout [ 534.487451][ T4301] EXT4-fs (loop2): unmounting filesystem. [ 534.500711][ T4304] Bluetooth: hci4: command 0x0406 tx timeout [ 534.501994][ T4304] Bluetooth: hci5: command 0x0406 tx timeout [ 534.556202][ T8805] netlink: 4 bytes leftover after parsing attributes in process `syz.0.977'. [ 534.801913][ T8805] netlink: 4 bytes leftover after parsing attributes in process `syz.0.977'. [ 535.876378][ T8824] netlink: 4 bytes leftover after parsing attributes in process `syz.2.984'. [ 535.986113][ T8829] netlink: 4 bytes leftover after parsing attributes in process `syz.3.985'. [ 536.074748][ T8824] netlink: 4 bytes leftover after parsing attributes in process `syz.2.984'. [ 536.196595][ T8832] loop0: detected capacity change from 0 to 2048 [ 536.299099][ T8832] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 536.470836][ T8837] netlink: 4 bytes leftover after parsing attributes in process `syz.3.985'. [ 536.562792][ T8842] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 537.032585][ T4305] EXT4-fs (loop0): unmounting filesystem. [ 537.477646][ T8849] netlink: 4 bytes leftover after parsing attributes in process `syz.0.991'. [ 537.695896][ T8849] netlink: 4 bytes leftover after parsing attributes in process `syz.0.991'. [ 541.673364][ T8890] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1003'. [ 541.974759][ T8896] loop2: detected capacity change from 0 to 40427 [ 543.956385][ T8896] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 543.958126][ T8896] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 543.962294][ T8896] F2FS-fs (loop2): invalid crc value [ 544.030060][ T8896] F2FS-fs (loop2): Found nat_bits in checkpoint [ 544.185670][ T8896] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 544.187267][ T8896] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 547.731814][ T8931] loop5: detected capacity change from 0 to 2048 [ 547.931396][ T8938] hub 6-0:1.0: USB hub found [ 547.933241][ T8938] hub 6-0:1.0: 8 ports detected [ 548.704631][ T8931] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 548.967784][ T8952] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 549.413747][ T4567] EXT4-fs (loop5): unmounting filesystem. [ 549.895984][ T8960] loop0: detected capacity change from 0 to 40427 [ 549.977835][ T8960] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 549.979491][ T8960] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 549.985461][ T8960] F2FS-fs (loop0): invalid crc value [ 550.494097][ T8960] F2FS-fs (loop0): Found nat_bits in checkpoint [ 550.520598][ T8960] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 550.522360][ T8960] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 553.087191][ T8980] netlink: 80 bytes leftover after parsing attributes in process `syz.0.1025'. [ 553.467086][ T8985] loop3: detected capacity change from 0 to 40427 [ 553.471933][ T8985] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 553.473598][ T8985] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 553.477185][ T8985] F2FS-fs (loop3): invalid crc value [ 553.637690][ T8985] F2FS-fs (loop3): Found nat_bits in checkpoint [ 553.654597][ T8985] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 553.656117][ T8985] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 556.024086][ T2060] ieee802154 phy0 wpan0: encryption failed: -22 [ 556.025489][ T2060] ieee802154 phy1 wpan1: encryption failed: -22 [ 557.469199][ T9006] loop0: detected capacity change from 0 to 2048 [ 557.562179][ T9006] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 557.825669][ T9022] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 558.255657][ T4305] EXT4-fs (loop0): unmounting filesystem. [ 558.423691][ T9030] loop3: detected capacity change from 0 to 2048 [ 559.355833][ T9030] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 559.735714][ T9046] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 560.712031][ T4308] EXT4-fs (loop3): unmounting filesystem. [ 561.225347][ T9054] loop3: detected capacity change from 0 to 8192 [ 561.525602][ T9054] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 561.981422][ T9054] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal [ 561.983578][ T9054] REISERFS (device loop3): using ordered data mode [ 561.984954][ T9054] reiserfs: using flush barriers [ 562.025909][ T9054] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 562.067709][ T9054] REISERFS (device loop3): checking transaction log (loop3) [ 562.102475][ T9054] REISERFS (device loop3): Using r5 hash to sort names [ 562.108330][ T9054] reiserfs: enabling write barrier flush mode [ 562.145620][ T9054] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage. [ 562.542015][ T9065] loop5: detected capacity change from 0 to 40427 [ 562.577983][ T9065] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12 [ 562.579641][ T9065] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 562.583880][ T9065] F2FS-fs (loop5): invalid crc value [ 562.621744][ T9065] F2FS-fs (loop5): Found nat_bits in checkpoint [ 562.641067][ T9065] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0 [ 562.642632][ T9065] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 563.908859][ T9077] loop0: detected capacity change from 0 to 2048 [ 564.037649][ T9077] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 564.252161][ T9085] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 564.730656][ T4305] EXT4-fs (loop0): unmounting filesystem. [ 565.055603][ T9093] loop5: detected capacity change from 0 to 2048 [ 565.087835][ T9097] loop4: detected capacity change from 0 to 40427 [ 565.967919][ T9097] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 565.969566][ T9097] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 565.973306][ T9097] F2FS-fs (loop4): invalid crc value [ 566.008692][ T9097] F2FS-fs (loop4): Found nat_bits in checkpoint [ 566.029412][ T9093] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 566.195083][ T9097] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 566.196796][ T9097] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 566.354592][ T9109] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 567.935823][ T4567] EXT4-fs (loop5): unmounting filesystem. [ 570.220247][ T9139] loop3: detected capacity change from 0 to 2048 [ 570.254142][ T9137] loop4: detected capacity change from 0 to 40427 [ 570.256537][ T9137] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 570.258146][ T9137] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 570.263880][ T9137] F2FS-fs (loop4): invalid crc value [ 570.330588][ T9139] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 570.340347][ T9137] F2FS-fs (loop4): Found nat_bits in checkpoint [ 570.545605][ T9140] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 570.562034][ T9137] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 570.563647][ T9137] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 571.626472][ T4308] EXT4-fs (loop3): unmounting filesystem. [ 574.159408][ T9169] loop4: detected capacity change from 0 to 40427 [ 574.162582][ T9169] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 574.164267][ T9169] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 574.167826][ T9169] F2FS-fs (loop4): invalid crc value [ 574.211756][ T9169] F2FS-fs (loop4): Found nat_bits in checkpoint [ 574.231088][ T9169] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 574.232722][ T9169] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 574.476804][ T9182] loop3: detected capacity change from 0 to 40427 [ 575.274343][ T9182] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 575.276110][ T9182] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 575.313463][ T9182] F2FS-fs (loop3): invalid crc value [ 575.321246][ T9177] loop2: detected capacity change from 0 to 8192 [ 575.333598][ T9177] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 575.336489][ T9177] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal [ 575.338575][ T9177] REISERFS (device loop2): using ordered data mode [ 575.339973][ T9177] reiserfs: using flush barriers [ 575.378626][ T9177] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 575.388454][ T9182] F2FS-fs (loop3): Found nat_bits in checkpoint [ 575.401465][ T9177] REISERFS (device loop2): checking transaction log (loop2) [ 575.405528][ T9177] REISERFS (device loop2): Using r5 hash to sort names [ 575.441466][ T9182] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 575.442974][ T9182] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 578.359601][ T9209] loop2: detected capacity change from 0 to 2048 [ 578.491182][ T9209] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 578.720747][ T9221] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 580.340928][ T4301] EXT4-fs (loop2): unmounting filesystem. [ 580.869573][ T9237] loop5: detected capacity change from 0 to 8192 [ 580.916760][ T9237] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 580.919602][ T9237] REISERFS (device loop5): found reiserfs format "3.5" with non-standard journal [ 580.925939][ T9237] REISERFS (device loop5): using ordered data mode [ 580.940689][ T9237] reiserfs: using flush barriers [ 580.961175][ T9237] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 580.964674][ T9237] REISERFS (device loop5): checking transaction log (loop5) [ 580.999033][ T9237] REISERFS (device loop5): Using r5 hash to sort names [ 582.636987][ T9262] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 582.638863][ T9262] IPv6: NLM_F_CREATE should be set when creating new route [ 584.083376][ T27] kauditd_printk_skb: 31 callbacks suppressed [ 584.083391][ T27] audit: type=1326 audit(583.560:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9266 comm="syz.4.1103" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffb0353a68 code=0x0 [ 584.996079][ T9285] loop0: detected capacity change from 0 to 128 [ 585.036972][ T9282] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1105'. [ 585.065967][ C0] vcan0 (unregistering): j1939_xtp_rx_dpo: no connection found [ 585.068260][ C0] vcan0 (unregistering): j1939_xtp_rx_dpo: no connection found [ 585.069862][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.071532][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.073177][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.074791][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.076495][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.078123][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.079736][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.081049][ T9285] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 585.081459][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.084816][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.086590][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.088305][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.089995][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.091720][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.093248][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.094902][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.096499][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.098222][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.099786][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.101630][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.103344][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.105058][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.106658][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.108403][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.109984][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.111784][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.113369][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.115269][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.116998][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.118633][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.120216][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.122005][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.123582][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.125100][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.126758][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.128462][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.130227][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.131986][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.133538][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.135316][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.137222][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.138897][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.140594][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.142294][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.143978][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.145756][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.147453][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.149214][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.150987][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.152737][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.154331][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.155980][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.157675][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.159415][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.161230][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.162980][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.164560][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.166309][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.167975][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.169684][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.171500][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.173146][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.174829][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.176543][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.178229][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.179902][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.181564][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.183294][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.185013][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.186872][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.188500][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.190220][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.191904][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.193667][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.195302][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.196946][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.198650][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.200329][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.202023][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.203695][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.205325][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.207086][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.208914][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.210619][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.212252][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.213914][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.215615][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.217227][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.218952][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.220730][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.222433][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.224160][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.225805][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.227511][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.229159][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.230885][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.232543][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.234253][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.235889][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.237454][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.239044][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.240747][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.242359][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.244023][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.245662][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.247365][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.249119][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.250802][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.252629][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.254291][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.255972][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.257562][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.259188][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.260798][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.262600][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.264144][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.265746][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.267350][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.269048][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.270724][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.272338][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.273978][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.275709][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.277376][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.279089][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.280931][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 585.282535][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 585.525142][ T9294] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1110'. [ 585.763132][ C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. [ 586.865030][ T27] audit: type=1326 audit(586.840:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9314 comm="syz.5.1113" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e353a68 code=0x7ffc0000 [ 586.874484][ T27] audit: type=1326 audit(586.850:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9314 comm="syz.5.1113" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e353a68 code=0x7ffc0000 [ 586.885283][ T27] audit: type=1326 audit(586.860:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9314 comm="syz.5.1113" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9e353a68 code=0x7ffc0000 [ 586.889962][ T27] audit: type=1326 audit(586.860:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9314 comm="syz.5.1113" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e353a68 code=0x7ffc0000 [ 586.912379][ T9316] loop5: detected capacity change from 0 to 512 [ 586.914806][ T27] audit: type=1326 audit(586.860:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9314 comm="syz.5.1113" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e353a68 code=0x7ffc0000 [ 586.924468][ T27] audit: type=1326 audit(586.860:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9314 comm="syz.5.1113" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9e353a68 code=0x7ffc0000 [ 586.948341][ T27] audit: type=1326 audit(586.870:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9314 comm="syz.5.1113" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e353a68 code=0x7ffc0000 [ 587.117334][ T27] audit: type=1326 audit(586.870:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9314 comm="syz.5.1113" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e353a68 code=0x7ffc0000 [ 587.139297][ T27] audit: type=1326 audit(586.870:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9314 comm="syz.5.1113" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9e353a68 code=0x7ffc0000 [ 587.149330][ T9316] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 587.549951][ T4305] EXT4-fs (loop0): unmounting filesystem. [ 588.823177][ T9343] loop4: detected capacity change from 0 to 128 [ 588.850875][ T9343] befs: Invalid gid -1, using default [ 588.862514][ T9343] befs: (loop4): No write support. Marking filesystem read-only [ 588.886678][ T9343] befs: (loop4): invalid magic header [ 588.943420][ T7246] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 591.300567][ T27] kauditd_printk_skb: 71 callbacks suppressed [ 591.300582][ T27] audit: type=1326 audit(591.180:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9356 comm="syz.2.1128" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 591.313896][ T27] audit: type=1326 audit(591.190:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9356 comm="syz.2.1128" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 591.335120][ T27] audit: type=1326 audit(591.200:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9356 comm="syz.2.1128" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 591.366850][ T27] audit: type=1326 audit(591.200:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9356 comm="syz.2.1128" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 591.503541][ T27] audit: type=1326 audit(591.200:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9356 comm="syz.2.1128" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 591.508201][ T27] audit: type=1326 audit(591.200:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9356 comm="syz.2.1128" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=433 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 591.533573][ T27] audit: type=1326 audit(591.200:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9356 comm="syz.2.1128" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 591.561268][ T4567] EXT4-fs (loop5): unmounting filesystem. [ 592.566009][ T9380] loop2: detected capacity change from 0 to 128 [ 592.701133][ T9380] capability: warning: `syz.2.1135' uses deprecated v2 capabilities in a way that may be insecure [ 592.703928][ T9380] UBIFS error (pid: 9380): cannot open "(null)", error -22 [ 593.036194][ T9363] loop0: detected capacity change from 0 to 40427 [ 593.044603][ T9363] F2FS-fs (loop0): Invalid Fs Meta Ino: node(0) meta(0) root(83886083) [ 593.046386][ T9363] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock [ 593.048316][ T9363] F2FS-fs (loop0): build fault injection attr: rate: 690, type: 0x3ffff [ 593.061114][ T9363] F2FS-fs (loop0): invalid crc value [ 593.076456][ T9363] F2FS-fs (loop0): Found nat_bits in checkpoint [ 593.110355][ T9363] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0 [ 593.112118][ T9363] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 593.136032][ T9388] loop4: detected capacity change from 0 to 4096 [ 593.169300][ T9388] NILFS (loop4): invalid segment: Checksum error in segment payload [ 593.179630][ T9388] NILFS (loop4): trying rollback from an earlier position [ 593.197212][ T4305] syz-executor: attempt to access beyond end of device [ 593.197212][ T4305] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 593.241210][ T9388] NILFS (loop4): recovery complete [ 593.272640][ T9390] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 594.591876][ T9406] netlink: 'syz.0.1137': attribute type 10 has an invalid length. [ 594.592474][ T9403] loop2: detected capacity change from 0 to 64 [ 594.593698][ T9406] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1137'. [ 594.596924][ T9406] device bond0 entered promiscuous mode [ 594.616188][ T9402] loop5: detected capacity change from 0 to 2048 [ 594.619317][ T9403] hfs: get root inode failed [ 594.632544][ T9406] device bond_slave_0 entered promiscuous mode [ 594.634090][ T9406] device bond_slave_1 entered promiscuous mode [ 594.649702][ T9406] bridge0: port 3(bond0) entered blocking state [ 594.661983][ T9402] UDF-fs: warning (device loop5): udf_load_vrs: No anchor found [ 594.665204][ T9406] bridge0: port 3(bond0) entered disabled state [ 594.676445][ T9402] UDF-fs: Scanning with blocksize 512 failed [ 594.676571][ T7246] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 594.682060][ T9406] bridge0: port 3(bond0) entered blocking state [ 594.683803][ T9406] bridge0: port 3(bond0) entered forwarding state [ 594.699802][ T9402] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 594.764167][ T9402] Process accounting resumed [ 596.779027][ T9423] loop2: detected capacity change from 0 to 164 [ 596.963759][ T9425] loop5: detected capacity change from 0 to 512 [ 598.337684][ T9425] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 598.567993][ T9425] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 599.912141][ T8168] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 599.952821][ T4567] EXT4-fs (loop5): unmounting filesystem. [ 600.799772][ T9452] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 600.825970][ T9452] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 600.886035][ T9455] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1154'. [ 601.022738][ T9465] loop0: detected capacity change from 0 to 64 [ 601.047907][ T9461] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 602.349470][ T9487] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1161'. [ 603.441228][ T27] audit: type=1326 audit(603.340:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9498 comm="syz.2.1170" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 603.465278][ T27] audit: type=1326 audit(603.340:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9498 comm="syz.2.1170" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=152 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 603.489223][ T27] audit: type=1326 audit(603.340:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9498 comm="syz.2.1170" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 605.121370][ T27] audit: type=1326 audit(603.340:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9498 comm="syz.2.1170" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8b553a68 code=0x7ffc0000 [ 606.682130][ T9529] loop5: detected capacity change from 0 to 128 [ 606.684083][ T9529] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 606.687289][ T9529] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 607.185498][ T9532] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 607.370743][ T6343] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 608.535872][ T9565] loop4: detected capacity change from 0 to 2048 [ 608.588820][ T9565] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 608.739204][ T8168] Bluetooth: hci5: command 0x0405 tx timeout [ 608.887691][ T9573] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 609.818707][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 610.333126][ T9586] xt_TCPMSS: Only works on TCP SYN packets [ 610.880851][ T8168] Bluetooth: hci5: command 0x0405 tx timeout [ 611.707535][ T9612] atomic_op 0000000096b3278c conn xmit_atomic 0000000000000000 [ 612.414307][ T9610] loop3: detected capacity change from 0 to 512 [ 612.439977][ T9610] EXT4-fs (loop3): orphan cleanup on readonly fs [ 612.443244][ T9610] EXT4-fs error (device loop3): ext4_find_extent:936: inode #4: comm syz.3.1204: pblk 2 bad header/extent: invalid magic - magic 3fff, entries 12, max 508(0), depth 0(0) [ 612.449705][ T9610] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=-117 [ 612.451783][ T9610] EXT4-fs warning (device loop3): ext4_enable_quotas:7029: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 612.454749][ T9610] EXT4-fs (loop3): Cannot turn on quotas: error -22 [ 612.456237][ T9610] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 612.652672][ T4308] EXT4-fs (loop3): unmounting filesystem. [ 613.011189][ T9641] loop5: detected capacity change from 0 to 256 [ 613.084701][ T9641] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 613.087013][ T9641] exFAT-fs (loop5): Medium has reported failures. Some data may be lost. [ 613.184790][ T9641] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 614.884870][ T9647] loop2: detected capacity change from 0 to 512 [ 614.886688][ T9647] EXT4-fs: Ignoring removed nobh option [ 614.887876][ T9647] EXT4-fs: Ignoring removed nobh option [ 615.149482][ T9647] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 615.172259][ T9652] loop0: detected capacity change from 0 to 1024 [ 615.174152][ T9652] EXT4-fs: Ignoring removed nomblk_io_submit option [ 615.194585][ T9647] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 615.196837][ T9647] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.1217: invalid indirect mapped block 2683928664 (level 1) [ 615.203795][ T9647] EXT4-fs (loop2): 1 truncate cleaned up [ 615.205036][ T9647] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 615.225434][ T9656] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 615.227514][ T9656] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 615.278143][ T9652] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 615.492132][ T4301] EXT4-fs (loop2): unmounting filesystem. [ 616.264085][ T9665] loop4: detected capacity change from 0 to 256 [ 617.333758][ T9669] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 617.335806][ T9669] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 617.462116][ T2060] ieee802154 phy0 wpan0: encryption failed: -22 [ 617.463504][ T2060] ieee802154 phy1 wpan1: encryption failed: -22 [ 617.567847][ T4305] EXT4-fs (loop0): unmounting filesystem. [ 617.681765][ T9683] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 617.683657][ T9683] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 617.766230][ T8168] Bluetooth: hci3: unexpected event for opcode 0x080c [ 618.317608][ T9693] loop4: detected capacity change from 0 to 32768 [ 619.560948][ T9722] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1244'. [ 619.563013][ T9722] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1244'. [ 619.640272][ T9724] loop3: detected capacity change from 0 to 512 [ 619.671140][ T9722] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1244'. [ 619.673270][ T9722] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1244'. [ 619.934152][ T9733] netlink: 'syz.3.1249': attribute type 1 has an invalid length. [ 619.964918][ T9733] 8021q: adding VLAN 0 to HW filter on device bond1 [ 619.990701][ T9733] bond1: (slave gretap1): making interface the new active one [ 619.994800][ T9733] bond1: (slave gretap1): Enslaving as an active interface with an up link [ 619.996785][ T4459] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready [ 621.082704][ T9743] loop4: detected capacity change from 0 to 512 [ 621.159857][ T9743] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 621.255663][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 621.783145][ T8168] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0 [ 621.785551][ T8168] Bluetooth: hci3: Injecting HCI hardware error event [ 621.791268][ T4304] Bluetooth: hci3: hardware error 0x00 [ 622.334065][ T9765] loop2: detected capacity change from 0 to 256 [ 622.336006][ T9765] exfat: Deprecated parameter 'namecase' [ 622.360103][ T9765] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x9f38bf76, utbl_chksum : 0xe619d30d) [ 622.360816][ T9767] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 622.382112][ T9769] loop4: detected capacity change from 0 to 1024 [ 622.384046][ T9769] EXT4-fs: Ignoring removed nobh option [ 622.395433][ T9769] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 622.397834][ T9769] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 622.425011][ T9769] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #11: comm syz.4.1261: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 622.436243][ T9769] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.1261: couldn't read orphan inode 11 (err -117) [ 622.449196][ T9769] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 622.525677][ T9769] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:477: comm syz.4.1261: Invalid block bitmap block 0 in block_group 0 [ 622.540772][ C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. [ 622.566561][ T9769] Quota error (device loop4): write_blk: dquota write failed [ 622.568593][ T9769] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 622.611070][ T9769] EXT4-fs error (device loop4): ext4_acquire_dquot:6794: comm syz.4.1261: Failed to acquire dquot type 0 [ 622.788341][ T9781] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 623.679904][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 624.136331][ T4304] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 624.863709][ T9793] loop2: detected capacity change from 0 to 256 [ 624.928677][ T9793] FAT-fs (loop2): Directory bread(block 64) failed [ 624.940253][ T9793] FAT-fs (loop2): Directory bread(block 65) failed [ 624.946914][ T9793] FAT-fs (loop2): Directory bread(block 66) failed [ 624.948289][ T9793] FAT-fs (loop2): Directory bread(block 67) failed [ 624.949944][ T9793] FAT-fs (loop2): Directory bread(block 68) failed [ 625.026098][ T9793] FAT-fs (loop2): Directory bread(block 69) failed [ 625.109616][ T9793] FAT-fs (loop2): Directory bread(block 70) failed [ 625.234211][ T9793] FAT-fs (loop2): Directory bread(block 71) failed [ 625.286572][ T9793] FAT-fs (loop2): Directory bread(block 72) failed [ 625.317354][ T9793] FAT-fs (loop2): Directory bread(block 73) failed [ 625.967313][ T9806] device wg2 entered promiscuous mode [ 626.968784][ T9824] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 626.998968][ T9824] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 629.604925][ T9855] process 'syz.2.1287' launched './file0' with NULL argv: empty string added [ 629.682825][ T9856] nbd5: detected capacity change from 0 to 12 [ 629.685297][ T9856] block nbd5: NBD_DISCONNECT [ 629.686961][ T9856] block nbd5: Send disconnect failed -89 [ 629.723835][ T8028] block nbd5: Send control failed (result -89) [ 629.725551][ T8028] block nbd5: Request send failed, requeueing [ 629.728753][ T8028] block nbd5: Disconnected due to user request. [ 629.732797][ T8028] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 629.735130][ T8028] Buffer I/O error on dev nbd5, logical block 0, async page read [ 629.736983][ T8028] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 629.738856][ T8028] Buffer I/O error on dev nbd5, logical block 0, async page read [ 629.745328][ T8028] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 629.747302][ T8028] Buffer I/O error on dev nbd5, logical block 0, async page read [ 629.749006][ T8028] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 629.750903][ T8028] Buffer I/O error on dev nbd5, logical block 0, async page read [ 629.752947][ T8028] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 629.754891][ T8028] Buffer I/O error on dev nbd5, logical block 0, async page read [ 629.758924][ T8028] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 629.761104][ T8028] Buffer I/O error on dev nbd5, logical block 0, async page read [ 629.762939][ T8028] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 629.764768][ T8028] Buffer I/O error on dev nbd5, logical block 0, async page read [ 629.766482][ T8028] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 629.768516][ T8028] Buffer I/O error on dev nbd5, logical block 0, async page read [ 629.770173][ T7246] ldm_validate_partition_table(): Disk read failed. [ 629.772006][ T8028] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 629.773954][ T8028] Buffer I/O error on dev nbd5, logical block 0, async page read [ 629.775652][ T8028] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 629.777580][ T8028] Buffer I/O error on dev nbd5, logical block 0, async page read [ 629.780071][ T7246] Dev nbd5: unable to read RDB block 0 [ 629.782171][ T7246] nbd5: unable to read partition table [ 629.783444][ T7246] nbd5: partition table beyond EOD, truncated [ 629.788433][ T7246] ldm_validate_partition_table(): Disk read failed. [ 629.790390][ T7246] Dev nbd5: unable to read RDB block 0 [ 629.792078][ T7246] nbd5: unable to read partition table [ 629.793311][ T7246] nbd5: partition table beyond EOD, truncated [ 629.950004][ T9865] mmap: syz.0.1294 (9865) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 630.108779][ T9870] netlink: 372 bytes leftover after parsing attributes in process `syz.5.1295'. [ 632.375172][ T9897] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1305'. [ 632.377536][ T9897] tipc: Started in network mode [ 632.378655][ T9897] tipc: Node identity @, cluster identity 4711 [ 634.264960][ T9912] loop0: detected capacity change from 0 to 256 [ 638.439960][ T9941] netlink: 'syz.2.1318': attribute type 1 has an invalid length. [ 638.506902][ T9941] 8021q: adding VLAN 0 to HW filter on device bond1 [ 638.573468][ T9943] 8021q: adding VLAN 0 to HW filter on device bond2 [ 638.595455][ T9943] bond1: (slave bond2): Enslaving as an active interface with a down link [ 640.652413][ T9968] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 640.654287][ T9968] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 645.457528][ T9981] loop5: detected capacity change from 0 to 32768 [ 645.469767][ T9981] XFS: ikeep mount option is deprecated. [ 645.481519][ T9981] XFS: noikeep mount option is deprecated. [ 645.711243][T10005] sch_tbf: burst 1 is lower than device lo mtu (65550) ! [ 646.352776][ T9981] XFS (loop5): Mounting V5 Filesystem [ 646.461259][ T9981] XFS (loop5): log mount failed [ 646.535191][ T27] audit: type=1326 audit(646.510:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10008 comm="syz.2.1336" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff8b553a68 code=0x0 [ 648.478794][T10035] loop2: detected capacity change from 0 to 512 [ 648.567671][T10037] loop0: detected capacity change from 0 to 8 [ 648.597054][T10035] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 648.641630][T10039] loop5: detected capacity change from 0 to 2048 [ 648.653699][T10035] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2809: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 648.660787][T10035] EXT4-fs (loop2): 1 truncate cleaned up [ 648.662075][T10035] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 648.804418][T10043] mkiss: ax0: crc mode is auto. [ 650.508464][T10058] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1352'. [ 650.556068][ T4301] EXT4-fs (loop2): unmounting filesystem. [ 651.384277][ T27] audit: type=1326 audit(651.360:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10066 comm="syz.5.1355" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e353a68 code=0x7ffc0000 [ 651.389485][ T27] audit: type=1326 audit(651.360:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10066 comm="syz.5.1355" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffff9e353a68 code=0x7ffc0000 [ 651.426540][ T27] audit: type=1326 audit(651.360:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10066 comm="syz.5.1355" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e353a68 code=0x7ffc0000 [ 651.439883][T10073] loop5: detected capacity change from 0 to 512 [ 651.442399][ T27] audit: type=1326 audit(651.360:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10066 comm="syz.5.1355" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffff9e353a68 code=0x7ffc0000 [ 651.447176][ T27] audit: type=1326 audit(651.360:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10066 comm="syz.5.1355" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e353a68 code=0x7ffc0000 [ 651.455931][T10072] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 651.460156][T10073] EXT4-fs (loop5): VFS: Can't find ext4 filesystem [ 651.491219][T10072] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 651.497755][ T27] audit: type=1326 audit(651.360:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10066 comm="syz.5.1355" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=201 compat=0 ip=0xffff9e353a68 code=0x7ffc0000 [ 651.511492][ T27] audit: type=1326 audit(651.360:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10066 comm="syz.5.1355" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e353a68 code=0x7ffc0000 [ 651.511537][ T27] audit: type=1326 audit(651.360:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10066 comm="syz.5.1355" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffff9e353a68 code=0x7ffc0000 [ 651.511595][ T27] audit: type=1326 audit(651.360:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10066 comm="syz.5.1355" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e353a68 code=0x7ffc0000 [ 651.627191][T10076] 9pnet_fd: p9_fd_create_unix (10076): problem connecting socket: ./cgroup: -111 [ 652.652809][T10089] sch_tbf: burst 4398 is lower than device lo mtu (65550) ! [ 652.664158][T10088] loop2: detected capacity change from 0 to 4096 [ 652.673905][T10088] NILFS (loop2): invalid segment: Checksum error in segment payload [ 652.675650][T10088] NILFS (loop2): trying rollback from an earlier position [ 652.693352][T10088] NILFS (loop2): recovery complete [ 652.697745][T10090] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 652.836020][T10095] loop3: detected capacity change from 0 to 256 [ 652.864416][T10095] FAT-fs (loop3): Directory bread(block 64) failed [ 652.865998][T10095] FAT-fs (loop3): Directory bread(block 65) failed [ 652.867636][T10095] FAT-fs (loop3): Directory bread(block 66) failed [ 652.869151][T10095] FAT-fs (loop3): Directory bread(block 67) failed [ 652.871324][T10095] FAT-fs (loop3): Directory bread(block 68) failed [ 652.872899][T10095] FAT-fs (loop3): Directory bread(block 69) failed [ 652.874512][T10095] FAT-fs (loop3): Directory bread(block 70) failed [ 652.876056][T10095] FAT-fs (loop3): Directory bread(block 71) failed [ 652.877777][T10095] FAT-fs (loop3): Directory bread(block 72) failed [ 652.879396][T10095] FAT-fs (loop3): Directory bread(block 73) failed [ 653.991389][ T27] kauditd_printk_skb: 6 callbacks suppressed [ 653.991403][ T27] audit: type=1326 audit(653.920:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10103 comm="syz.3.1366" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9f353a68 code=0x7ffc0000 [ 654.010537][ T27] audit: type=1326 audit(653.920:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10103 comm="syz.3.1366" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffff9f353a68 code=0x7ffc0000 [ 654.054448][ T27] audit: type=1326 audit(653.920:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10103 comm="syz.3.1366" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9f353a68 code=0x7ffc0000 [ 654.090344][ T27] audit: type=1326 audit(653.920:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10103 comm="syz.3.1366" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=184 compat=0 ip=0xffff9f353a68 code=0x7ffc0000 [ 654.103335][ T27] audit: type=1326 audit(653.920:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10103 comm="syz.3.1366" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9f353a68 code=0x7ffc0000 [ 654.107910][ T27] audit: type=1326 audit(653.920:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10103 comm="syz.3.1366" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffff9f353a68 code=0x7ffc0000 [ 654.856925][ T27] audit: type=1326 audit(653.920:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10103 comm="syz.3.1366" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9f353a68 code=0x7ffc0000 [ 654.863110][T10112] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1359'. [ 654.896403][ T27] audit: type=1326 audit(653.920:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10103 comm="syz.3.1366" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffff9f353a68 code=0x7ffc0000 [ 654.919910][ T27] audit: type=1326 audit(653.920:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10103 comm="syz.3.1366" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9f353a68 code=0x7ffc0000 [ 654.997412][ T27] audit: type=1326 audit(653.920:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10103 comm="syz.3.1366" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffff9f353a68 code=0x7ffc0000 [ 655.070725][ T4304] Bluetooth: hci1: ACL packet for unknown connection handle 1 [ 655.087274][T10122] loop3: detected capacity change from 0 to 128 [ 655.120018][T10122] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 655.879990][T10117] block nbd2: Device being setup by another task [ 655.907001][ T4308] EXT4-fs (loop3): unmounting filesystem. [ 656.043059][T10121] block nbd2: shutting down sockets [ 658.449849][T10157] loop3: detected capacity change from 0 to 64 [ 658.478118][T10157] hfs: get root inode failed [ 666.584815][T10228] loop2: detected capacity change from 0 to 8 [ 666.896318][T10214] syz.3.1400 uses obsolete (PF_INET,SOCK_PACKET) [ 668.047198][ T4304] Bluetooth: hci1: unexpected event for opcode 0x202a [ 668.138117][T10252] loop2: detected capacity change from 0 to 2048 [ 668.162290][T10252] loop2: p1 p2 p3 [ 669.079374][T10263] loop3: detected capacity change from 0 to 8 [ 669.207534][T10263] SQUASHFS error: zlib decompression failed, data probably corrupt [ 669.209580][T10263] SQUASHFS error: Failed to read block 0x9b: -5 [ 669.211035][T10263] SQUASHFS error: Unable to read metadata cache entry [99] [ 669.212588][T10263] SQUASHFS error: Unable to read inode 0x127 [ 669.457642][T10271] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1420'. [ 669.472189][T10271] team0: No ports can be present during mode change [ 669.491763][T10271] device vlan0 entered promiscuous mode [ 670.339665][T10271] team0: Port device vlan0 added [ 670.419728][T10080] udevd[10080]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 670.527483][T10080] udevd[10080]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory [ 670.820717][T10289] 9pnet_fd: p9_fd_create_tcp (10289): problem connecting socket to 127.0.0.1 [ 673.254612][T10336] loop5: detected capacity change from 0 to 256 [ 673.262394][T10337] Cannot find add_set index 1 as target [ 673.264885][T10336] FAT-fs (loop5): Unrecognized mount option "shortnime=win95" or missing value [ 673.747688][T10345] loop5: detected capacity change from 0 to 128 [ 674.107206][T10345] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 674.462533][ T4567] EXT4-fs (loop5): unmounting filesystem. [ 674.686963][T10362] binder: 10353:10362 ioctl 4018620d 0 returned -22 [ 674.727739][T10359] binder: 10353:10359 ioctl c0045005 20000180 returned -22 [ 675.685441][T10379] binder: 10376:10379 got transaction to invalid handle, 1 [ 675.687480][T10379] binder: 10379:10376 cannot find target node [ 675.689050][T10379] binder: 10376:10379 transaction async to 0:0 failed 1/29201/-22, size 0-0 line 3054 [ 675.721837][T10392] netlink: 'syz.5.1458': attribute type 2 has an invalid length. [ 676.053896][T10396] infiniband syz0: set active [ 676.055233][T10396] infiniband syz0: added bond0 [ 676.139162][T10396] RDS/IB: syz0: added [ 676.154327][T10396] smc: adding ib device syz0 with port count 1 [ 676.155895][T10396] smc: ib device syz0 port 1 has pnetid [ 676.455927][T10411] 9pnet: p9_errstr2errno: server reported unknown error 1844674407370 [ 677.223614][T10417] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 677.225115][T10417] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 677.226728][T10417] Bluetooth: hci1: Suspend notifier action (1) failed: -4 [ 677.228417][T10417] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 677.229815][T10417] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 677.238587][T10417] Bluetooth: hci2: Suspend notifier action (1) failed: -4 [ 677.247510][T10417] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 677.248918][T10417] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 677.250418][T10417] Bluetooth: hci4: Suspend notifier action (1) failed: -4 [ 677.255341][T10417] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 677.268154][T10417] Bluetooth: hci5: Opcode 0x0406 failed: -4 [ 677.269523][T10417] Bluetooth: hci5: Suspend notifier action (1) failed: -4 [ 677.487619][T10432] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 677.489775][T10432] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 677.535251][T10436] xt_hashlimit: size too large, truncated to 1048576 [ 678.071063][ T4435] binder: undelivered TRANSACTION_ERROR: 29201 [ 678.696092][T10457] netdevsim netdevsim5: Direct firmware load for . [ 678.696092][T10457] failed with error -2 [ 678.698590][T10457] netdevsim netdevsim5: Falling back to sysfs fallback for: . [ 678.698590][T10457] [ 678.901927][ T2060] ieee802154 phy0 wpan0: encryption failed: -22 [ 678.903236][ T2060] ieee802154 phy1 wpan1: encryption failed: -22 [ 679.300686][ T4304] Bluetooth: hci5: command 0x0c1a tx timeout [ 679.302056][ T4304] Bluetooth: hci4: command 0x0c1a tx timeout [ 679.303281][ T4304] Bluetooth: hci2: command 0x0c1a tx timeout [ 679.304582][ T4304] Bluetooth: hci1: command 0x0c1a tx timeout [ 680.562999][T10478] 9pnet: p9_errstr2errno: server reported unknown error 18446744073 [ 681.380632][ T4300] Bluetooth: hci1: command 0x0406 tx timeout [ 681.381983][ T4300] Bluetooth: hci2: command 0x0406 tx timeout [ 681.383235][ T4300] Bluetooth: hci4: command 0x0406 tx timeout [ 681.384514][ T4300] Bluetooth: hci5: command 0x0406 tx timeout [ 681.734364][T10527] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1517'. [ 681.934935][T10533] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1518'. [ 682.967220][T10538] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1520'. [ 689.006443][ T27] kauditd_printk_skb: 24 callbacks suppressed [ 689.006456][ T27] audit: type=1326 audit(688.980:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10575 comm="syz.0.1530" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb1753a68 code=0x7ffc0000 [ 689.015742][ T27] audit: type=1326 audit(688.990:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10575 comm="syz.0.1530" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb1753a68 code=0x7ffc0000 [ 689.020154][ T27] audit: type=1326 audit(688.990:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10575 comm="syz.0.1530" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb1753a68 code=0x7ffc0000 [ 689.055467][ T27] audit: type=1326 audit(688.990:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10575 comm="syz.0.1530" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb1753a68 code=0x7ffc0000 [ 689.059878][ T27] audit: type=1326 audit(689.000:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10575 comm="syz.0.1530" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb1753a68 code=0x7ffc0000 [ 689.087971][ T27] audit: type=1326 audit(689.010:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10575 comm="syz.0.1530" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb1753a68 code=0x7ffc0000 [ 689.108239][ T27] audit: type=1326 audit(689.010:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10575 comm="syz.0.1530" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb1753a68 code=0x7ffc0000 [ 689.153951][ T27] audit: type=1326 audit(689.010:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10575 comm="syz.0.1530" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb1753a68 code=0x7ffc0000 [ 689.180560][ T27] audit: type=1326 audit(689.010:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10575 comm="syz.0.1530" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb1753a68 code=0x7ffc0000 [ 689.707724][ T27] audit: type=1326 audit(689.010:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10575 comm="syz.0.1530" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb1753a68 code=0x7ffc0000 [ 694.743737][ T4300] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 694.751399][ T4300] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 694.753969][ T4300] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 694.756897][ T4300] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 694.759506][ T4300] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 694.761466][ T4300] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 695.513003][T10616] chnl_net:caif_netlink_parms(): no params data found [ 695.683628][T10616] bridge0: port 1(bridge_slave_0) entered blocking state [ 695.685173][T10616] bridge0: port 1(bridge_slave_0) entered disabled state [ 695.687493][T10616] device bridge_slave_0 entered promiscuous mode [ 695.711193][T10616] bridge0: port 2(bridge_slave_1) entered blocking state [ 695.712904][T10616] bridge0: port 2(bridge_slave_1) entered disabled state [ 695.715507][T10616] device bridge_slave_1 entered promiscuous mode [ 695.798872][T10616] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 695.812421][T10616] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 695.877303][T10616] team0: Port device team_slave_0 added [ 695.902434][T10616] team0: Port device team_slave_1 added [ 695.939495][T10616] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 695.942997][T10616] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 695.949067][T10616] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 695.984706][T10616] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 695.986275][T10616] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 696.038349][T10616] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 696.261108][T10650] netlink: 80 bytes leftover after parsing attributes in process `syz.5.1552'. [ 696.332345][T10616] device hsr_slave_0 entered promiscuous mode [ 696.380926][T10616] device hsr_slave_1 entered promiscuous mode [ 696.821685][ T4300] Bluetooth: hci0: command 0x0409 tx timeout [ 696.957653][T10616] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 696.983399][T10616] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 697.032641][T10616] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 697.063537][T10616] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 697.347816][T10616] 8021q: adding VLAN 0 to HW filter on device bond0 [ 697.387187][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 697.389305][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 697.398763][T10616] 8021q: adding VLAN 0 to HW filter on device team0 [ 697.449800][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 697.452239][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 697.454212][ T4807] bridge0: port 1(bridge_slave_0) entered blocking state [ 697.455828][ T4807] bridge0: port 1(bridge_slave_0) entered forwarding state [ 697.458366][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 697.472163][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 697.481692][ T4807] bridge0: port 2(bridge_slave_1) entered blocking state [ 697.483165][ T4807] bridge0: port 2(bridge_slave_1) entered forwarding state [ 697.485336][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 697.501155][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 697.511363][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 697.514081][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 697.525344][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 697.539039][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 697.548752][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 697.566385][T10616] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 697.570980][T10616] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 697.583410][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 697.585543][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 697.588586][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 697.599408][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 697.628742][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 697.635197][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 697.878651][T10696] netlink: 'syz.2.1573': attribute type 10 has an invalid length. [ 697.980885][T10696] device geneve0 entered promiscuous mode [ 698.061828][T10702] netlink: 'syz.3.1576': attribute type 29 has an invalid length. [ 698.935745][ T4300] Bluetooth: hci0: command 0x041b tx timeout [ 698.979134][T10616] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 699.019125][T10702] netlink: 'syz.3.1576': attribute type 29 has an invalid length. [ 699.111440][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 699.113211][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 699.471325][T10733] netlink: 'syz.0.1585': attribute type 9 has an invalid length. [ 699.473033][T10733] netlink: 61951 bytes leftover after parsing attributes in process `syz.0.1585'. [ 699.525403][ T179] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 699.527832][ T179] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 699.602504][ T179] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 699.604939][ T179] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 699.607387][ T179] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 699.620888][ T179] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 699.625407][T10616] device veth0_vlan entered promiscuous mode [ 699.658387][T10616] device veth1_vlan entered promiscuous mode [ 700.135783][T10616] device veth0_macvtap entered promiscuous mode [ 700.139744][T10616] device veth1_macvtap entered promiscuous mode [ 700.166487][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 701.150674][ T4304] Bluetooth: hci0: command 0x040f tx timeout [ 701.274613][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 701.277665][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 701.279934][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 701.322343][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 701.329029][ T4807] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 701.491650][T10616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 701.494017][T10616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 701.496119][T10616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 701.498443][T10616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 701.500404][T10616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 701.540475][T10616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 701.542741][T10616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 701.544989][T10616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 701.579095][T10616] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 701.591031][ T4520] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 701.595623][ T4520] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 701.605855][T10616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 701.608071][T10616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 701.610333][T10616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 701.651019][T10616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 701.653255][T10616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 701.655299][T10616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 701.657276][T10616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 701.659525][T10616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 701.687118][T10616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 701.689248][T10616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 701.711700][T10616] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 701.714571][ T179] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 701.717170][ T179] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 701.742643][T10616] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 701.744484][T10616] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 701.746431][T10616] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 701.748355][T10616] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 702.073021][ T7022] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 702.075970][ T7022] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 702.092963][ T4807] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 702.094922][ T4807] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 702.400295][ T179] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 702.901403][ T179] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 703.351515][T10790] loop3: detected capacity change from 0 to 40427 [ 703.356254][ T4304] Bluetooth: hci0: command 0x0419 tx timeout [ 703.636698][T10790] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 703.638295][T10790] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 703.644264][T10790] F2FS-fs (loop3): invalid crc value [ 704.204499][T10790] F2FS-fs (loop3): Found nat_bits in checkpoint [ 704.247863][T10790] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 704.249407][T10790] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 716.480338][T10814] netlink: 'syz.5.1618': attribute type 10 has an invalid length. [ 716.482966][T10814] bond0: (slave bond_slave_0): Releasing backup interface [ 716.762863][T10825] netlink: 'syz.2.1620': attribute type 29 has an invalid length. [ 716.765001][T10825] netlink: 'syz.2.1620': attribute type 29 has an invalid length. [ 716.768520][T10825] netlink: 'syz.2.1620': attribute type 29 has an invalid length. [ 717.709020][T10840] netlink: 'syz.5.1627': attribute type 29 has an invalid length. [ 717.713365][T10840] netlink: 'syz.5.1627': attribute type 29 has an invalid length. [ 717.716794][T10840] netlink: 'syz.5.1627': attribute type 29 has an invalid length. [ 717.844430][T10849] loop6: detected capacity change from 0 to 512 [ 717.860957][ T27] kauditd_printk_skb: 22 callbacks suppressed [ 717.860970][ T27] audit: type=1326 audit(717.810:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.6.1628" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff86953a68 code=0x7ffc0000 [ 717.867050][ T27] audit: type=1326 audit(717.810:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.6.1628" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff86953a68 code=0x7ffc0000 [ 720.765512][T10849] EXT4-fs: error -4 creating inode table initialization thread [ 720.767908][T10849] EXT4-fs (loop6): mount failed [ 720.803290][ T27] audit: type=1326 audit(717.810:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.6.1628" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff86953a68 code=0x7ffc0000 [ 720.807915][ T27] audit: type=1326 audit(717.810:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.6.1628" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff86953a68 code=0x7ffc0000 [ 720.850658][ T27] audit: type=1326 audit(717.810:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.6.1628" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff86953a68 code=0x7ffc0000 [ 720.855160][ T27] audit: type=1326 audit(717.810:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.6.1628" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff86953a68 code=0x7ffc0000 [ 720.879785][ T27] audit: type=1326 audit(717.810:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.6.1628" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff86953a68 code=0x7ffc0000 [ 720.888055][ T27] audit: type=1326 audit(717.810:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.6.1628" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff86953a68 code=0x7ffc0000 [ 720.903971][ T27] audit: type=1326 audit(717.810:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.6.1628" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=279 compat=0 ip=0xffff86953a68 code=0x7ffc0000 [ 720.908847][ T27] audit: type=1326 audit(717.810:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.6.1628" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=222 compat=0 ip=0xffff86953a9c code=0x7ffc0000 [ 721.065579][T10883] netlink: 'syz.6.1643': attribute type 29 has an invalid length. [ 721.077943][T10883] netlink: 'syz.6.1643': attribute type 29 has an invalid length. [ 721.088741][T10883] netlink: 'syz.6.1643': attribute type 29 has an invalid length. [ 721.589749][T10907] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1654'. [ 721.683552][T10909] tipc: Started in network mode [ 721.684838][T10909] tipc: Node identity 080211000001, cluster identity 4711 [ 721.687674][T10909] tipc: Enabled bearer , priority 0 [ 721.689998][T10909] device syzkaller0 entered promiscuous mode [ 721.741967][T10911] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1656'. [ 721.841118][T10917] validate_nla: 2 callbacks suppressed [ 721.841133][T10917] netlink: 'syz.0.1659': attribute type 1 has an invalid length. [ 722.057603][T10893] dccp_close: ABORT with 160 bytes unread [ 722.082186][ T4304] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 722.085509][ T4304] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 722.088432][ T4304] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 722.090787][ T4304] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 722.092756][ T4304] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 722.094421][ T4304] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 722.113440][T10926] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1673'. [ 722.488934][ T4474] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 722.742044][ T4344] tipc: Node number set to 134418688 [ 723.962310][ T4474] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 724.178548][ T4474] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 724.190665][ T4304] Bluetooth: hci1: command 0x0409 tx timeout [ 724.279431][T10993] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1678'. [ 724.433214][ T4474] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 724.504443][T10923] chnl_net:caif_netlink_parms(): no params data found [ 724.784807][T10923] bridge0: port 1(bridge_slave_0) entered blocking state [ 724.795474][T10923] bridge0: port 1(bridge_slave_0) entered disabled state [ 724.814246][T10923] device bridge_slave_0 entered promiscuous mode [ 724.843537][T10923] bridge0: port 2(bridge_slave_1) entered blocking state [ 724.850676][T10923] bridge0: port 2(bridge_slave_1) entered disabled state [ 724.862804][T10923] device bridge_slave_1 entered promiscuous mode [ 724.938934][T10923] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 725.277086][T10923] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 726.237630][T10923] team0: Port device team_slave_0 added [ 726.260930][ T4304] Bluetooth: hci1: command 0x041b tx timeout [ 726.336189][T10923] team0: Port device team_slave_1 added [ 726.375950][T10923] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 726.378739][T10923] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 726.390058][T10923] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 726.536357][T10923] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 726.538028][T10923] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 726.555081][T10923] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 726.772493][T10923] device hsr_slave_0 entered promiscuous mode [ 726.811157][T10923] device hsr_slave_1 entered promiscuous mode [ 726.841119][T10923] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 726.842771][T10923] Cannot create hsr debugfs directory [ 727.364136][ T4474] bond1: (slave gretap1): Releasing active interface [ 728.184555][T11123] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 728.227919][T11112] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 728.250252][T11125] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1708'. [ 728.350863][ T4300] Bluetooth: hci1: command 0x040f tx timeout [ 730.420895][ T4304] Bluetooth: hci1: command 0x0419 tx timeout [ 732.167892][T11196] IPVS: rr: UDP 224.0.0.2:0 - no destination available [ 732.429045][T11208] tipc: Enabled bearer , priority 0 [ 732.431171][T11204] device syzkaller0 entered promiscuous mode [ 732.992105][T11227] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1735'. [ 733.883781][ T4339] tipc: Node number set to 1073753603 [ 733.955048][T11233] loop6: detected capacity change from 0 to 64 [ 733.995159][T11233] hfs: get root inode failed [ 734.022109][ T4474] device hsr_slave_0 left promiscuous mode [ 734.241148][ T4474] device hsr_slave_1 left promiscuous mode [ 735.960739][ T4474] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 735.962483][ T4474] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 735.968511][ T4474] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 735.972011][ T4474] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 735.980934][ T4474] device bridge_slave_1 left promiscuous mode [ 735.982529][ T4474] bridge0: port 2(bridge_slave_1) entered disabled state [ 736.042268][ T4474] device bridge_slave_0 left promiscuous mode [ 736.043809][ T4474] bridge0: port 1(bridge_slave_0) entered disabled state [ 736.118666][T11269] nftables ruleset with unbound set [ 736.235109][ T4474] device veth1_macvtap left promiscuous mode [ 736.236456][ T4474] device veth0_macvtap left promiscuous mode [ 736.237833][ T4474] device veth1_vlan left promiscuous mode [ 738.504738][ T4474] bond1 (unregistering): Released all slaves [ 740.334713][ T4474] team0 (unregistering): Port device team_slave_1 removed [ 740.351674][ T2060] ieee802154 phy0 wpan0: encryption failed: -22 [ 740.352920][ T2060] ieee802154 phy1 wpan1: encryption failed: -22 [ 740.522567][ T4474] team0 (unregistering): Port device team_slave_0 removed [ 740.702520][ T4474] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 740.922961][ T4474] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 743.519778][ T4474] bond0 (unregistering): Released all slaves [ 743.951904][T10923] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 743.994207][T10923] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 744.052255][T10923] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 744.146091][T11302] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 744.223589][T10923] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 746.475204][T11314] loop2: detected capacity change from 0 to 2048 [ 746.500628][ T4304] Bluetooth: hci1: command 0x0405 tx timeout [ 746.523609][T10923] 8021q: adding VLAN 0 to HW filter on device bond0 [ 746.560891][ T4389] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 746.562893][ T4389] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 746.573818][T11314] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 746.574482][T10923] 8021q: adding VLAN 0 to HW filter on device team0 [ 746.587237][ T6343] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 746.589408][ T6343] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 746.592885][ T6343] bridge0: port 1(bridge_slave_0) entered blocking state [ 746.594351][ T6343] bridge0: port 1(bridge_slave_0) entered forwarding state [ 746.601859][ T6343] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 746.612879][ T6343] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 746.712555][ T6343] bridge0: port 2(bridge_slave_1) entered blocking state [ 746.714308][ T6343] bridge0: port 2(bridge_slave_1) entered forwarding state [ 746.721135][ T6343] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 746.743028][ T6343] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 746.749784][ T6343] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 746.778686][ T6343] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 746.793717][ T6343] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 746.796166][ T6343] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 746.798475][ T6343] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 746.804214][ T6343] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 746.891776][T11328] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 747.602274][ T4301] EXT4-fs (loop2): unmounting filesystem. [ 747.623262][ T6961] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 747.625719][ T6961] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 747.628035][ T6961] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 747.642730][ T6961] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 747.676220][T10923] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 749.203276][T11341] loop2: detected capacity change from 0 to 256 [ 749.286469][T11341] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 749.288876][T11341] exFAT-fs (loop2): Medium has reported failures. Some data may be lost. [ 749.647474][T11341] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 750.240506][ T179] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 750.242417][ T179] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 750.264168][T10923] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 750.342238][ T6343] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 750.344518][ T6343] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 750.392268][ T6961] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 750.394533][ T6961] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 750.402636][ T6961] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 750.411631][ T6961] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 750.423848][T11363] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1777'. [ 750.427934][T10923] device veth0_vlan entered promiscuous mode [ 750.458090][T10923] device veth1_vlan entered promiscuous mode [ 750.546289][ T179] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 750.548878][ T179] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 750.572620][ T179] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 750.578035][T11370] loop6: detected capacity change from 0 to 2048 [ 750.583085][ T179] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 750.585924][T10923] device veth0_macvtap entered promiscuous mode [ 750.611205][T10923] device veth1_macvtap entered promiscuous mode [ 750.616929][T11371] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1781'. [ 750.632765][T10923] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 750.640054][T10923] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 750.642467][T10923] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 750.644714][T10923] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 750.647402][T11370] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 750.649135][T10923] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 750.659355][T10923] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 750.662467][T10923] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 750.664781][T10923] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 750.669041][T10923] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 750.672758][T10923] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 750.674745][T10923] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 750.676785][T10923] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 750.679239][T10923] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 750.681476][T10923] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 750.683741][T10923] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 750.685801][T10923] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 750.688021][T10923] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 750.690368][T10923] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 750.692779][T10923] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 750.695919][T10923] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 750.699548][T10923] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 750.701754][T10923] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 750.829411][T10923] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 750.834681][T10923] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 751.002468][T11380] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 752.090659][ T4520] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 752.092886][ T4520] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 752.095027][ T4520] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 752.097308][ T4520] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 752.127917][ T4520] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 752.138900][T10616] EXT4-fs (loop6): unmounting filesystem. [ 752.184867][ T4520] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 753.907269][T11398] loop6: detected capacity change from 0 to 256 [ 753.987273][T11398] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 753.989675][T11398] exFAT-fs (loop6): Medium has reported failures. Some data may be lost. [ 754.132484][T11398] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 754.933540][ T4520] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 754.935507][ T4520] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 754.940937][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 755.135208][T11416] device wg2 entered promiscuous mode [ 755.146533][ T6961] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 755.148735][ T6961] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 755.155955][T11420] loop5: detected capacity change from 0 to 1024 [ 755.159008][ T6961] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 755.171103][T11420] EXT4-fs: Ignoring removed nomblk_io_submit option [ 755.197125][T11420] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 755.206348][T11423] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1795'. [ 756.666117][T11440] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 757.375016][ T4567] EXT4-fs (loop5): unmounting filesystem. [ 766.491128][T11542] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 768.683214][T11552] Bluetooth: hci0: Opcode 0x080f failed: -4 [ 769.379302][T10923] unregister_netdevice: waiting for syz_tun to become free. Usage count = 10 [ 769.385326][T10923] leaked reference. [ 769.386583][T10923] dst_init+0xc0/0x3bc [ 769.387506][T10923] dst_alloc+0x120/0x170 [ 769.388410][T10923] ip_route_output_key_hash_rcu+0x11d4/0x1eec [ 769.389673][T10923] ip_route_output_key_hash+0x1b4/0x328 [ 769.390870][T10923] ip_route_output_flow+0x3c/0x160 [ 769.391936][T10923] geneve_link_config+0x174/0x550 [ 769.392996][T10923] geneve_newlink+0x12c/0x19c [ 769.394003][T10923] rtnl_newlink+0x116c/0x1b74 [ 769.394994][T10923] rtnetlink_rcv_msg+0x72c/0xd94 [ 769.396124][T10923] netlink_rcv_skb+0x20c/0x3b8 [ 769.397102][T10923] rtnetlink_rcv+0x28/0x38 [ 769.398098][T10923] netlink_unicast+0x65c/0x898 [ 769.399043][T10923] netlink_sendmsg+0x834/0xb18 [ 769.400096][T10923] __sys_sendto+0x3b8/0x508 [ 769.401094][T10923] __arm64_sys_sendto+0xd8/0xf8 [ 769.402095][T10923] invoke_syscall+0x98/0x2bc [ 769.403052][T10923] leaked reference. [ 769.403886][T10923] fib6_nh_init+0x640/0x1ca0 [ 769.404821][T10923] ip6_route_info_create+0x7ac/0xf14 [ 769.405939][T10923] ip6_route_add+0x38/0x168 [ 769.406959][T10923] addrconf_add_linklocal+0x46c/0x854 [ 769.408090][T10923] addrconf_addr_gen+0x3a8/0x930 [ 769.409092][T10923] addrconf_init_auto_addrs+0x794/0xc9c [ 769.410246][T10923] addrconf_notify+0x7d0/0xc94 [ 769.411250][T10923] raw_notifier_call_chain+0xd4/0x164 [ 769.412348][T10923] __dev_notify_flags+0x2ac/0x534 [ 769.413475][T10923] dev_change_flags+0xc8/0x154 [ 769.414568][T10923] do_setlink+0xacc/0x3318 [ 769.415539][T10923] rtnl_newlink+0x1424/0x1b74 [ 769.416455][T10923] rtnetlink_rcv_msg+0x72c/0xd94 [ 769.417513][T10923] netlink_rcv_skb+0x20c/0x3b8 [ 769.418623][T10923] rtnetlink_rcv+0x28/0x38 [ 769.419640][T10923] netlink_unicast+0x65c/0x898 [ 769.420616][T10923] leaked reference. [ 769.421399][T10923] fib6_nh_init+0x640/0x1ca0 [ 769.422324][T10923] ip6_route_info_create+0x7ac/0xf14 [ 769.423509][T10923] addrconf_f6i_alloc+0x2c0/0x5cc [ 769.424559][T10923] ipv6_add_addr+0x3d0/0xc9c [ 769.425446][T10923] addrconf_add_linklocal+0x264/0x854 [ 769.426596][T10923] addrconf_addr_gen+0x3a8/0x930 [ 769.427635][T10923] addrconf_init_auto_addrs+0x794/0xc9c [ 769.428760][T10923] addrconf_notify+0x7d0/0xc94 [ 769.429795][T10923] raw_notifier_call_chain+0xd4/0x164 [ 769.430882][T10923] __dev_notify_flags+0x2ac/0x534 [ 769.431994][T10923] dev_change_flags+0xc8/0x154 [ 769.432983][T10923] do_setlink+0xacc/0x3318 [ 769.433893][T10923] rtnl_newlink+0x1424/0x1b74 [ 769.434873][T10923] rtnetlink_rcv_msg+0x72c/0xd94 [ 769.435864][T10923] netlink_rcv_skb+0x20c/0x3b8 [ 769.436817][T10923] rtnetlink_rcv+0x28/0x38 [ 769.437721][T10923] leaked reference. [ 769.438485][T10923] fib6_nh_init+0x640/0x1ca0 [ 769.439437][T10923] ip6_route_info_create+0x7ac/0xf14 [ 769.440506][T10923] ip6_route_add+0x38/0x168 [ 769.441430][T10923] addrconf_add_dev+0x2b8/0x458 [ 769.442413][T10923] addrconf_init_auto_addrs+0x708/0xc9c [ 769.443554][T10923] addrconf_notify+0x7d0/0xc94 [ 769.444519][T10923] raw_notifier_call_chain+0xd4/0x164 [ 769.445618][T10923] __dev_notify_flags+0x2ac/0x534 [ 769.446622][T10923] dev_change_flags+0xc8/0x154 [ 769.447584][T10923] do_setlink+0xacc/0x3318 [ 769.448489][T10923] rtnl_newlink+0x1424/0x1b74 [ 769.449417][T10923] rtnetlink_rcv_msg+0x72c/0xd94 [ 769.450433][T10923] netlink_rcv_skb+0x20c/0x3b8 [ 769.451467][T10923] rtnetlink_rcv+0x28/0x38 [ 769.452386][T10923] netlink_unicast+0x65c/0x898 [ 769.453335][T10923] netlink_sendmsg+0x834/0xb18 [ 769.454295][T10923] leaked reference. [ 769.455128][T10923] fib6_nh_init+0x640/0x1ca0 [ 769.456111][T10923] ip6_route_info_create+0x7ac/0xf14 [ 769.457320][T10923] ip6_route_add+0x38/0x168 [ 769.458390][T10923] addrconf_permanent_addr+0x61c/0xa8c [ 769.459489][T10923] addrconf_notify+0x7ac/0xc94 [ 769.460483][T10923] raw_notifier_call_chain+0xd4/0x164 [ 769.461739][T10923] __dev_notify_flags+0x2ac/0x534 [ 769.462825][T10923] dev_change_flags+0xc8/0x154 [ 769.463803][T10923] do_setlink+0xacc/0x3318 [ 769.464736][T10923] rtnl_newlink+0x1424/0x1b74 [ 769.465645][T10923] rtnetlink_rcv_msg+0x72c/0xd94 [ 769.466690][T10923] netlink_rcv_skb+0x20c/0x3b8 [ 769.467728][T10923] rtnetlink_rcv+0x28/0x38 [ 769.468602][T10923] netlink_unicast+0x65c/0x898 [ 769.469636][T10923] netlink_sendmsg+0x834/0xb18 [ 769.470602][T10923] __sys_sendto+0x3b8/0x508 [ 769.471518][T10923] leaked reference. [ 769.472327][T10923] fib_check_nh+0xa84/0x17a4 [ 769.473351][T10923] fib_create_info+0x10b4/0x1e60 [ 769.474456][T10923] fib_table_insert+0x1a4/0x1574 [ 769.475517][T10923] fib_add_ifaddr+0xba0/0x122c [ 769.476528][T10923] fib_netdev_event+0x56c/0x6b0 [ 769.477520][T10923] raw_notifier_call_chain+0xd4/0x164 [ 769.478686][T10923] __dev_notify_flags+0x2ac/0x534 [ 769.479735][T10923] dev_change_flags+0xc8/0x154 [ 769.480710][T10923] do_setlink+0xacc/0x3318 [ 769.481615][T10923] rtnl_newlink+0x1424/0x1b74 [ 769.482624][T10923] rtnetlink_rcv_msg+0x72c/0xd94 [ 769.483603][T10923] netlink_rcv_skb+0x20c/0x3b8 [ 769.484543][T10923] rtnetlink_rcv+0x28/0x38 [ 769.485450][T10923] netlink_unicast+0x65c/0x898 [ 769.486464][T10923] netlink_sendmsg+0x834/0xb18 [ 769.487433][T10923] __sys_sendto+0x3b8/0x508 [ 769.488377][T10923] leaked reference. [ 769.489230][T10923] fib_check_nh+0xa84/0x17a4 [ 769.490208][T10923] fib_create_info+0x10b4/0x1e60 [ 769.491298][T10923] fib_table_insert+0x1a4/0x1574 [ 769.492326][T10923] fib_add_ifaddr+0x950/0x122c [ 769.493411][T10923] fib_netdev_event+0x56c/0x6b0 [ 769.494412][T10923] raw_notifier_call_chain+0xd4/0x164 [ 769.495583][T10923] __dev_notify_flags+0x2ac/0x534 [ 769.496631][T10923] dev_change_flags+0xc8/0x154 [ 769.497603][T10923] do_setlink+0xacc/0x3318 [ 769.498597][T10923] rtnl_newlink+0x1424/0x1b74 [ 769.499593][T10923] rtnetlink_rcv_msg+0x72c/0xd94 [ 769.500614][T10923] netlink_rcv_skb+0x20c/0x3b8 [ 769.501632][T10923] rtnetlink_rcv+0x28/0x38 [ 769.502512][T10923] netlink_unicast+0x65c/0x898 [ 769.503500][T10923] netlink_sendmsg+0x834/0xb18 [ 769.504456][T10923] __sys_sendto+0x3b8/0x508 [ 769.505411][T10923] leaked reference. [ 769.506168][T10923] fib6_nh_init+0x640/0x1ca0 [ 769.507177][T10923] ip6_route_info_create+0x7ac/0xf14 [ 769.508302][T10923] addrconf_f6i_alloc+0x2c0/0x5cc [ 769.509369][T10923] ipv6_add_addr+0x3d0/0xc9c [ 769.510314][T10923] inet6_addr_add+0x370/0x818 [ 769.511280][T10923] inet6_rtm_newaddr+0x720/0x1ec8 [ 769.512463][T10923] rtnetlink_rcv_msg+0x72c/0xd94 [ 769.513532][T10923] netlink_rcv_skb+0x20c/0x3b8 [ 769.514531][T10923] rtnetlink_rcv+0x28/0x38 [ 769.515520][T10923] netlink_unicast+0x65c/0x898 [ 769.516607][T10923] netlink_sendmsg+0x834/0xb18 [ 769.517592][T10923] __sys_sendto+0x3b8/0x508 [ 769.518561][T10923] __arm64_sys_sendto+0xd8/0xf8 [ 769.519597][T10923] invoke_syscall+0x98/0x2bc [ 769.520581][T10923] el0_svc_common+0x138/0x258 [ 769.521562][T10923] do_el0_svc+0x58/0x13c [ 769.522487][T10923] leaked reference. [ 769.523303][T10923] netdev_tracker_alloc+0x68/0xb4 [ 769.524382][T10923] fib_create_info+0x126c/0x1e60 [ 769.525518][T10923] fib_table_insert+0x1a4/0x1574 [ 769.526555][T10923] fib_add_ifaddr+0x368/0x122c [ 769.527541][T10923] fib_inetaddr_event+0x124/0x2fc [ 769.528694][T10923] blocking_notifier_call_chain+0xf0/0x198 [ 769.529956][T10923] __inet_insert_ifa+0x8ac/0xa8c [ 769.530941][T10923] inet_rtm_newaddr+0xe74/0x1744 [ 769.531971][T10923] rtnetlink_rcv_msg+0x72c/0xd94 [ 769.533039][T10923] netlink_rcv_skb+0x20c/0x3b8 [ 769.534051][T10923] rtnetlink_rcv+0x28/0x38 [ 769.534908][T10923] netlink_unicast+0x65c/0x898 [ 769.535875][T10923] netlink_sendmsg+0x834/0xb18 [ 769.536943][T10923] __sys_sendto+0x3b8/0x508 [ 769.537831][T10923] __arm64_sys_sendto+0xd8/0xf8 [ 769.538843][T10923] invoke_syscall+0x98/0x2bc [ 770.821420][ T4300] Bluetooth: hci0: command 0x080f tx timeout [ 771.287811][ T179] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 771.393688][ T179] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 771.513975][ T179] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 771.634838][ T179] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 773.876079][ T179] device hsr_slave_0 left promiscuous mode [ 773.920742][ T179] device hsr_slave_1 left promiscuous mode [ 773.990994][ T179] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 773.992511][ T179] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 773.994744][ T179] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 773.996392][ T179] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 774.001465][ T179] device bridge_slave_1 left promiscuous mode [ 774.005401][ T179] bridge0: port 2(bridge_slave_1) entered disabled state [ 774.061705][ T179] device bridge_slave_0 left promiscuous mode [ 774.064745][ T179] bridge0: port 1(bridge_slave_0) entered disabled state [ 774.200914][ T179] device veth1_macvtap left promiscuous mode [ 774.202268][ T179] device veth0_macvtap left promiscuous mode [ 774.203630][ T179] device veth1_vlan left promiscuous mode [ 774.205085][ T179] device veth0_vlan left promiscuous mode [ 776.257330][ T179] team0 (unregistering): Port device team_slave_1 removed [ 776.463747][ T179] team0 (unregistering): Port device team_slave_0 removed [ 776.677655][ T179] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 776.912858][ T179] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface