last executing test programs: 12.367215482s ago: executing program 2 (id=362): bind$inet6(0xffffffffffffffff, &(0x7f0000000440)={0xa, 0x4e60, 0x5, @empty, 0x1}, 0x1c) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0xfffffeffffff7ffe, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000480), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000003c0)={r2, 0xffffffffffffffff, 0x0, 0x96, &(0x7f0000000500)='fO>d+\xbbCD\xfcu\xf60\x1c2\x04T<\"K\xf2\xf2EG\xba\xe0\x92\x02\x00?\x05!\xaf\xbb\xa8|\x92\xa7\x88/\x80\x9f{\xc9\x1b\xea\xe0\xaa\x14S3\x1594V\x96\x90\xb1\xb8\xe6\xc5S\xe4\xcb\xaf\x84n]\x96\x88\x10(\xae\xbc\xe6G\xcd\xef\xa0)\xd6N\xc2-\x80H\xd0\xaci\x15\xf1\xb4\xb0\x19\x9aC\xd0\x94\xc6\x82\b\x9d\xfd\x0e]\x1e\xb6\xbd\xe8\xe1\x1f\xbd\xc2q\x01{q+p\xfceTKX6\xb9\xb2B\f\xd8\xd4\x91\x95\xa5=pz\xe0\x8e\xc9\x9b<{\xed9\x8f\x89Hd\x80\xb9'}, 0x30) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, 0x0, 0x0, 0x4, 0x8f, &(0x7f00000002c0)=""/143}, 0x90) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='attr/exec\x00') ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_clone(0x2910a000, 0x0, 0x37, 0x0, 0x0, 0x0) 8.499524774s ago: executing program 2 (id=377): r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f00000003c0)={'syztnl1\x00', &(0x7f0000000480)={'gretap0\x00', 0x0, 0x700, 0x7800, 0x9, 0x5, {{0xe, 0x4, 0x1, 0x2c, 0x38, 0x65, 0x0, 0x5, 0x4, 0x0, @remote, @broadcast, {[@timestamp_prespec={0x44, 0x4, 0xf8, 0x3, 0x7}, @timestamp={0x44, 0x10, 0xc4, 0x0, 0x9, [0x200, 0x4, 0x8dfc]}, @ssrr={0x89, 0xf, 0x50, [@loopback, @remote, @multicast2]}, @noop]}}}}}) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, 0x0) r2 = socket(0x1, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000280)=0x14) sendmsg$nl_route(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400ed1a00000000000000000a000000", @ANYRES32=r4, @ANYBLOB="1400020000000000000000080000ffff00000000"], 0x2c}}, 0x0) sendmsg$ETHTOOL_MSG_DEBUG_GET(0xffffffffffffffff, &(0x7f0000000980)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000940)={&(0x7f0000000780)=ANY=[@ANYBLOB="98010000", @ANYRES16=0x0, @ANYBLOB="20002abd7000fcdbdf25070000004000018008000100", @ANYRES32=0x0, @ANYBLOB="080003000100000008000100", @ANYRES32=0x0, @ANYBLOB="1400020069705f76746930000000000000000000080003000200000008000100", @ANYRES32=0x0, @ANYBLOB="6400018008000100", @ANYRES32=0x0, @ANYBLOB="1400020065727370616e300000000000000000001400020076657468305f6d61637674617000000008000100", @ANYRES32=r1, @ANYBLOB="14000200766574683000000000000000000000001400020070696d367265670000000000000000001c00018008000100", @ANYRES32, @ANYBLOB="08000100", @ANYRES32=r4, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="60000180080003000000000008000100", @ANYRES32=0x0, @ANYBLOB="08000300020000001400020076657468305f766c616e0000000000001400020073797a5f74756e00000000000000000008000100", @ANYRES32=0x0, @ANYBLOB="140002007369743000000000000000000000000064f400801400020067656e6576653000000000400000000014000200776731000000000000000000000000001400020076657468305f6d616376746170000000080003000051484b3500000014000200726f736530000000000000000000000200000300"], 0x198}, 0x1, 0x0, 0x0, 0x8050}, 0x40004) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r5}, 0x10) r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000a40)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d00000085", @ANYRESOCT=0x0, @ANYRES64=r0, @ANYBLOB="5fd51c7f575c9dff98d0ae06a8a463b543e5abebf7e249442504e96da51384c8ed33e39a5047baee180c725ad5beac07971d81ce7dd5008ee31d7b52bfb893080e95913c85f938462beeed818e7e88294cdc25f04363f60d76b010873c09e6d88107519ed7f26936c085859bfe"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000400)='tlb_flush\x00', r6}, 0x10) mremap(&(0x7f000020e000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil) bpf$MAP_CREATE(0x0, 0x0, 0x0) futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0) timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc)) syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000406c256d00000000000001090224000100000000090400000103000000092100130001220500090581030000000000"], 0x0) futex(&(0x7f000000cffc), 0x1, 0x0, 0x0, 0x0, 0x0) splice(0xffffffffffffffff, &(0x7f0000000240)=0x400000000002, 0xffffffffffffffff, &(0x7f0000000280)=0x3ff, 0x80000da2, 0x1) 8.336850709s ago: executing program 1 (id=379): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000280), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r1}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="b40800000000000073113b00000000008510000002000000b7000000000000009500c200000000009500001200000000"], &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195}, 0x70) 7.388557356s ago: executing program 1 (id=385): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000090000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) socket$nl_xfrm(0x10, 0x3, 0x6) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, &(0x7f0000000280)=@gcm_256={{0xfba618e8943ccf8}, "304883b388295ab4", "19f4b9ef890d6fedb861b9841f2045c5a71368a8e0e4197c9eff08a1d6b4df4b", 'hD0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, 0x0, 0x0, 0x2, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x7ffc0001}]}) pidfd_send_signal(0xffffffffffffffff, 0x0, 0x0, 0x0) personality(0x0) mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103) write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000002300)={0x50, 0xfffffffffffffff5, 0x0, {0x7, 0x9}}, 0x50) lchown(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) wait4(0x0, 0x0, 0x0, 0x0) 6.838893069s ago: executing program 2 (id=387): syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(0x0, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$ARPT_SO_SET_REPLACE(r3, 0x0, 0x60, &(0x7f00000000c0)={'filter\x00', 0xa, 0x4, 0x3f8, 0x0, 0x0, 0x200, 0x310, 0x310, 0x310, 0x4, 0x0, {[{{@arp={@dev, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'pimreg0\x00', 'veth1_to_team\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30}}, {{@arp={@dev, @multicast2, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'sit0\x00', 'ip6gre0\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@remote, @empty, @loopback, @multicast1}}}, {{@arp={@broadcast, @multicast1, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@dev}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth1_to_hsr\x00', 'ip6_vti0\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@multicast, @empty, @multicast1, @remote}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x448) 6.247824804s ago: executing program 1 (id=389): r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0xe, 0x0, &(0x7f0000000900)="e02742e8680d85ff9782762f0800", 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 6.128280332s ago: executing program 1 (id=390): sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0xfffffeffffff7ffe, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000480), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000003c0)={r2, 0xffffffffffffffff, 0x0, 0x96, &(0x7f0000000500)='fO>d+\xbbCD\xfcu\xf60\x1c2\x04T<\"K\xf2\xf2EG\xba\xe0\x92\x02\x00?\x05!\xaf\xbb\xa8|\x92\xa7\x88/\x80\x9f{\xc9\x1b\xea\xe0\xaa\x14S3\x1594V\x96\x90\xb1\xb8\xe6\xc5S\xe4\xcb\xaf\x84n]\x96\x88\x10(\xae\xbc\xe6G\xcd\xef\xa0)\xd6N\xc2-\x80H\xd0\xaci\x15\xf1\xb4\xb0\x19\x9aC\xd0\x94\xc6\x82\b\x9d\xfd\x0e]\x1e\xb6\xbd\xe8\xe1\x1f\xbd\xc2q\x01{q+p\xfceTKX6\xb9\xb2B\f\xd8\xd4\x91\x95\xa5=pz\xe0\x8e\xc9\x9b<{\xed9\x8f\x89Hd\x80\xb9'}, 0x30) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, 0x0, 0x0, 0x4, 0x8f, &(0x7f00000002c0)=""/143}, 0x90) syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='attr/exec\x00') ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_clone(0x2910a000, 0x0, 0x37, 0x0, 0x0, 0x0) 5.321356966s ago: executing program 3 (id=393): bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) socket(0x0, 0x3, 0x100) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) socket$inet_udplite(0x2, 0x2, 0x88) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x1, &(0x7f00000003c0)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = add_key$keyring(0x0, &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, 0x0) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f0000000040)='asymmetric\x00', 0x0) r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000020b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='sched_switch\x00', r7}, 0x10) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f00000002c0)='sched_kthread_work_queue_work\x00', r8}, 0x10) socketpair(0xf, 0x3, 0x2, &(0x7f00000001c0)={0xffffffffffffffff}) keyctl$link(0x8, r5, 0x0) ioctl$USBDEVFS_DISCONNECT_CLAIM(0xffffffffffffffff, 0x8108551b, 0x0) ioctl$F2FS_IOC_DEFRAGMENT(r9, 0xc010f508, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000100)=@ethtool_link_settings={0x2}}) 3.979555703s ago: executing program 3 (id=396): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f60000008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f00000083c0)={{0x1}}) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r2, 0x40505412, &(0x7f0000000140)={0x0, 0x3, 0x3ff}) 3.798882813s ago: executing program 3 (id=398): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f000001a200)={0x8, 0xc, &(0x7f000001a440)=ANY=[], &(0x7f000001a2c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4d, '\x00', 0x0, 0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000100)={0xa0179e1d}) epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10) bpf$PROG_LOAD(0x5, 0x0, 0x0) r4 = syz_open_dev$usbfs(&(0x7f0000000080), 0x76, 0x101301) ioctl$USBDEVFS_DROP_PRIVILEGES(0xffffffffffffffff, 0x4004551e, &(0x7f00000000c0)) ioctl$USBDEVFS_CONTROL(r4, 0xc0185500, &(0x7f000001a080)={0x0, 0x9, 0x92, 0x0, 0x1000, 0xffffffff, &(0x7f0000019080)="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"}) syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaa88aaaaaaaaaaaaaabb86dd"], 0x0) r5 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$NL80211_CMD_GET_REG(r5, &(0x7f000001a1c0)={&(0x7f000001a0c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f000001a180)={&(0x7f000001a100)={0x7c, 0x0, 0x10, 0x70bd27, 0x25dfdbfd, {}, [@NL80211_ATTR_REG_RULES={0x40, 0x22, 0x0, 0x1, [{0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x9}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xfffffff9}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x2}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x1}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x6}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x7}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0xa}]}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x3}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'bb\x00'}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x7e}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x6}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x1}]}, 0x7c}, 0x1, 0x0, 0x0, 0x4}, 0x0) pread64(r5, &(0x7f0000000080)=""/102356, 0x18fd4, 0xc2a) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$devlink(&(0x7f0000000740), 0xffffffffffffffff) syz_mount_image$vfat(&(0x7f000001a3c0), &(0x7f00000002c0)='./file0\x00', 0x10, &(0x7f000001a580)=ANY=[@ANYRES8=r7, @ANYRESHEX=r6, @ANYRES64, @ANYBLOB="e4461caed281e2c45a075cc10fd286ce49817e247593ed113c7819b292f9859e9587253fe9dae06e69d0c9fd24426e763315d9b4228963596ed04f3fcfb9e63e847192573a00519f1068d1d6332d4140e5340afb665aecd4658b23ba8f002a52f90e70e33fe2dd66d601bfe343253657c37663b5d24adfe0737c8d63a8bbd822d80f2c06606162bd1556c181599846f6cb6c7c5920763aade8731af7c522dc29d3ca76be4e6c9bd22400c1aa79a0fe01a8cc187c94b5da26123007bf5dacee2ef16fbc9e929b9b863ef457ff4ee38864451486ac3c76d03c7f98a4bc7eb4dc03"], 0x3, 0x2ce, &(0x7f000001a680)="$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") ioctl$BTRFS_IOC_DEFRAG_RANGE(r4, 0x40309410, 0x0) socket$nl_route(0x10, 0x3, 0x0) 3.635625295s ago: executing program 1 (id=399): sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0xfffffeffffff7ffe, 0x0, 0x0) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000003c0)={r2, 0xffffffffffffffff, 0x0, 0x96, &(0x7f0000000500)='fO>d+\xbbCD\xfcu\xf60\x1c2\x04T<\"K\xf2\xf2EG\xba\xe0\x92\x02\x00?\x05!\xaf\xbb\xa8|\x92\xa7\x88/\x80\x9f{\xc9\x1b\xea\xe0\xaa\x14S3\x1594V\x96\x90\xb1\xb8\xe6\xc5S\xe4\xcb\xaf\x84n]\x96\x88\x10(\xae\xbc\xe6G\xcd\xef\xa0)\xd6N\xc2-\x80H\xd0\xaci\x15\xf1\xb4\xb0\x19\x9aC\xd0\x94\xc6\x82\b\x9d\xfd\x0e]\x1e\xb6\xbd\xe8\xe1\x1f\xbd\xc2q\x01{q+p\xfceTKX6\xb9\xb2B\f\xd8\xd4\x91\x95\xa5=pz\xe0\x8e\xc9\x9b<{\xed9\x8f\x89Hd\x80\xb9'}, 0x30) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='attr/exec\x00') ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_clone(0x2910a000, 0x0, 0x37, 0x0, 0x0, 0x0) sendto$inet6(0xffffffffffffffff, &(0x7f00000003c0)="f2ed7f656a9f605e1757278f9c8a272e4a735730c5c74e19315bcd277734c06ae1aba281dcbf4969c2e3e11dc50fde34c34e4e0ee14cc3b6da5f93fd0fd298c64b71f045cb5437384c6a3a4acd171f4bbf6f4d7953996e9e", 0x58, 0x851, 0x0, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x0, 0x3, &(0x7f0000000480)=ANY=[], &(0x7f0000000000)='syzkaller\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prctl$PR_TASK_PERF_EVENTS_ENABLE(0x35) syz_open_dev$tty1(0xc, 0x4, 0x1) 2.979527623s ago: executing program 4 (id=400): r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0xe, 0x0, &(0x7f0000000900)="e02742e8680d85ff9782762f0800", 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 2.158938854s ago: executing program 3 (id=401): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000070000000000000000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000}, 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', 0x0}) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x3, 0x4, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)) futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, &(0x7f000000b000)={0x77359400}, &(0x7f0000048000), 0x0) accept4(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) openat$tun(0xffffffffffffff9c, 0x0, 0x2000, 0x0) socket$unix(0x1, 0x0, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x0) socket$inet6_udplite(0x11, 0x2, 0x88) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) 1.95179718s ago: executing program 4 (id=402): r0 = socket$inet6(0xa, 0x2, 0x3a) sendto$inet6(r0, &(0x7f0000000000)="800037bbfa9ba1ce", 0x8, 0xfffffff5, 0x0, 0x0) 1.951467189s ago: executing program 1 (id=403): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000002ac0)={[{@nobh}, {@noauto_da_alloc}, {@jqfmt_vfsold}, {@data_err_ignore}, {@noquota}, {@nomblk_io_submit}, {@init_itable_val={'init_itable', 0x3d, 0x85c5}}, {@nojournal_checksum}, {@jqfmt_vfsv1}]}, 0xfe, 0x576, &(0x7f00000024c0)="$eJzs3d9rW1UcAPDvTdv91nUwhvoghT04mUvX1h8TfJiPosOBvs/Q3pXRdBlNOtY62PbgXnyRIYg4EP8A330c/gP+FQMdDBlFH3yJ3PSmzdqk6bK41ubzgbudc+9Nzj0553t6Tm5CAhhYY9k/hYhXI+KbJOJoy7HhyA+OrZ638uTmdLYlUa9/9mcSSb6veX6S/384z7wSEb9+FXG6sLnc6tLyXKlcThfy/Hht/tp4dWn5zJX50mw6m16dnJo6987U5Pvvvdu3ur558e/vP33w0bmvT6589/OjY/eSOB9H8mOt9XgOt1szYzGWvyYjcX7DiRN9KGw3SXb6AujJUB7nI5GNAUdjKI96YO+7FRF1YEAl4h8GVHMe0Fzbb7EO3pNLvMcfri6ANtd/ePW9kTjQWBsdWkmeWhllL8ZoH8rPyvjlj/v3si369z4EQFe370TE2eHhzeNfko9/vTu7jXM2lmH8gxfnQTb/eavd/KewNv+JNvOfw21itxfd47/wqA/FdJTN/z5oO/9du2k1OpTnXmrM+UaSy1fKaTa2vRwRp2Jkf5bf6n7OuZWH9U7HWud/2ZaV35wL5tfxaHj/04+ZKdVKz1PnVo/vRLzWdv6brLV/0qb9s9fj4jbLOJHef73Tse71b+vgNovuqv5TxBtt2399uZNsfX9yvNEfxpu9YrO/7p74rVP5G+f/kef7Vb9usvY/tHX9R5PW+7XVZy/jxwP/pJ2O9dr/9yWfN9L78n03SrXawkTEvuSTzfsn1x/bzDfPz+p/6uTW41+7/p91wC+2Wf+7x+92PLXH/t83Wf1n1to/29Ot/dcTyaY97RMPP/7yh+aT1ev1W89W/6z9326kTuV7tjP+bee6euvNAAAAAAAAsHsVIuJIJIXiWrpQKBZXP99xPA4VypVq7fTlyuLVmWh8V3Y0RgrNO91HWz4PMZF/HraZn9yQn4qIYxHx7dDBRr44XSnP7HTlAQAAAAAAAAAAAAAAAAAAYJc4HHGg3ff/M78P7fTVAf85P/kNg6tz/OdH+vFLT8Cu5O8/DC7xD4NL/MPgEv8wuMQ/DC7xD4NL/MPgEv8AAAAAAAAAAAAAAAAAAAAAAAAAAADQVxcvXMi2+sqTm9NZfub60uJc5fqZmbQ6V5xfnC5OVxauFWcrldlyWpyuzHd7vnKlcm1iMhZvjNfSam28urR8ab6yeLV26cp8aTa9lI68kFoBAAAAAAAAAAAAAAAAAADA/0t16XyUyuV0obq0PCch8cyJ4d1xGXsoUc/t7GXs9MgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOv+DQAA//+HxTdZ") open(&(0x7f0000000000)='.\x00', 0x0, 0x0) renameat2(0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0xffffffffffffffff, 0x0, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095", @ANYRESHEX, @ANYRESOCT=0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00'}, 0x10) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = userfaultfd(0x80001) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x749}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000200)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1}) madvise(&(0x7f00008d7000/0x1000)=nil, 0x1000, 0x4) mremap(&(0x7f00003fc000/0x3000)=nil, 0x3000, 0x2000, 0x3, &(0x7f0000ffe000/0x2000)=nil) readv(r1, &(0x7f0000000040)=[{&(0x7f0000000100)=""/64, 0x40}], 0x5) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) r5 = dup(r4) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x10) r6 = epoll_create(0xae) r7 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r7, &(0x7f0000000300)={0x80000007}) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0) write$cgroup_int(r8, &(0x7f0000000100), 0x1001) fadvise64(r8, 0x0, 0x7fff, 0x4) sendmsg$ETHTOOL_MSG_TSINFO_GET(r5, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000640)={0x0}, 0x1, 0x0, 0x0, 0x800}, 0x20000001) 1.934362358s ago: executing program 0 (id=404): mkdirat(0xffffffffffffff9c, 0x0, 0x0) socket$inet_icmp(0x2, 0x2, 0x1) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$inet6(0xa, 0x2, 0x0) bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000440), 0x10) listen(0xffffffffffffffff, 0x0) r3 = socket$vsock_stream(0x28, 0x1, 0x0) ppoll(&(0x7f00000002c0)=[{r3}], 0x1, 0x0, 0x0, 0xfffffffffffffd4c) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xf}]}, @NFT_MSG_NEWSETELEM={0x20, 0x1d, 0xa, 0x805, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x10}}, 0xa4}}, 0x0) 1.81939026s ago: executing program 4 (id=405): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000000a00), r0) sendmsg$NFC_CMD_DEP_LINK_UP(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000a40)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002dbd7000ffdbdf250400000008000100", @ANYRES32=0x0, @ANYBLOB="08000400810900000500"], 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x810) 1.65251958s ago: executing program 4 (id=406): shmget(0xffffffffffffffff, 0x3000, 0x0, &(0x7f0000ffc000/0x3000)=nil) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000000)='./file1\x00', 0x844, &(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1, 0x23b, &(0x7f00000005c0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) write$binfmt_script(r0, &(0x7f0000000680)={'#! ', './file1'}, 0xb) close(r0) open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) execveat(r0, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0) 855.764738ms ago: executing program 0 (id=407): bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x0}, 0x90) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0) write$binfmt_script(r1, &(0x7f0000000340), 0xfe07) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r1, 0x0) getsockopt$bt_hci(r0, 0x84, 0x22, &(0x7f0000000500)=""/4067, &(0x7f00000004c0)=0xfe3) 855.410959ms ago: executing program 3 (id=408): r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) close(r0) r1 = socket$vsock_stream(0x28, 0x1, 0x0) ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0xfffffffffbfffffe) connect$vsock_stream(r1, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10) connect$vsock_stream(r0, &(0x7f0000000040)={0x28, 0x0, 0x2711, @host}, 0x10) 602.768515ms ago: executing program 0 (id=409): r0 = fsopen(&(0x7f00000002c0)='rpc_pipefs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) r2 = socket$unix(0x1, 0x5, 0x0) r3 = dup2(r2, r1) close_range(r3, 0xffffffffffffffff, 0x0) 580.705868ms ago: executing program 3 (id=410): r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$UHID_CREATE2(r0, &(0x7f0000000500)=ANY=[@ANYBLOB="0b00000073797a300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119) syz_usb_connect(0x0, 0x2d, 0x0, 0x0) writev(r0, &(0x7f0000000240)=[{&(0x7f00000001c0)='\b\x00\x00\x00', 0x4}, {0x0}], 0x2) 531.721827ms ago: executing program 2 (id=411): bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000040)={@ifindex, 0xffffffffffffffff, 0x17, 0x1}, 0x20) r0 = socket$kcm(0xa, 0x5, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x890b, &(0x7f0000000000)={r0}) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x890c, &(0x7f0000000000)) 470.696448ms ago: executing program 4 (id=412): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0x5, 0x0, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0xe, 0x0, &(0x7f0000000900)="e02742e8680d85ff9782762f0800", 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 401.632746ms ago: executing program 0 (id=413): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4) setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000000)={0x2, &(0x7f0000000080)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x16}]}, 0x10) connect$inet6(0xffffffffffffffff, 0x0, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000580)={@local, @link_local={0x3}, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x20, 0x6, 0x0, @dev, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@ssrr={0x89, 0x3}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x8}}}}}}, 0x0) 327.753099ms ago: executing program 2 (id=414): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10) r1 = socket$inet(0x2, 0x6, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'team_slave_0\x00', 0x0}) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000880)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_QUANTUM={0x8}]}}]}, 0x38}}, 0x0) 237.1239ms ago: executing program 4 (id=415): r0 = socket$inet6(0xa, 0x5, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, 0x0, 0x0) getpid() r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000000900010073797a300000000068000000090a010400000000000000000100000008000a4000000000200011800e000100636f6e6e6c696d69740000000c00028008000140000000000900010073797a30000000000900020073797a3200000000080005400000001f0c000980080001400037"], 0xb0}}, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) r2 = socket(0x10, 0x3, 0xc) write(r2, &(0x7f0000000040)="effd00001000ff00fd4344c007110000f3050a00dbfd010000000001ffdf00", 0xfe00) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a4c000000060a0b0400000000000000000100000009"], 0x74}}, 0x0) shutdown(r0, 0x0) 230.521028ms ago: executing program 0 (id=416): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000000a00), r0) sendmsg$NFC_CMD_DEP_LINK_UP(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000a40)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002dbd7000ffdbdf250400000008000100", @ANYRES32=0x0, @ANYBLOB="080004008109000005000a00"], 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x810) 63.645666ms ago: executing program 2 (id=417): mkdirat(0xffffffffffffff9c, 0x0, 0x0) socket$inet_icmp(0x2, 0x2, 0x1) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$inet6(0xa, 0x2, 0x0) bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000440), 0x10) listen(0xffffffffffffffff, 0x0) r3 = socket$vsock_stream(0x28, 0x1, 0x0) ppoll(&(0x7f00000002c0)=[{r3}], 0x1, 0x0, 0x0, 0xfffffffffffffd4c) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xf}]}, @NFT_MSG_NEWSETELEM={0x20, 0x1d, 0xa, 0x805, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x10}}, 0xa4}}, 0x0) 0s ago: executing program 0 (id=418): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r2 = dup(r1) pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff}, 0x0) syz_emit_ethernet(0x176, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaa48847000000000000000000000000603f599001340600fe8000000000000000000000000000aafe8000000000000000000000000000000000000000000000c204000000000000000c000000000000fc02000000000000000000000000000000000000000000000000ffff00000000fe800000000000000000000000000000fe80000000000000000000000000000000000000000000000000000000000000fc00"/190, @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="50000000907800006c3e4af6e95497a4e1f23137ae5d9ab0d6a6a3ff1ff52b15b109af0f93abe7bddfe72723968479f91c26bda6d7d589fb8cb68c4f8760051117d27ab8434eb2818254ab55825a80ba277e953c42c3e3a34d6f1998abd85935442e96e25dc77ffb0469578ffae16aa69caf18e96b08085370c0c242147969cf393604407755c55c4b539a2e36241dc73a3d65b8b2585660c1365e7ec6c7a536a08d21e53aa4e60cad0bd8"], 0x0) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r1}}) write$P9_RLERRORu(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="8b"], 0x53) write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f00000008c0)={0xe, 0x18, 0xfa00, @ib_path={0x0}}, 0x20) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x2c, 0x16, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}]}, @NFT_MSG_DELFLOWTABLE={0x2c, 0x18, 0xa, 0x0, 0xb00, 0x0, {}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc}]}], {0x14, 0x10}}, 0xa0}}, 0x0) write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000800000003003c02ffffffef3501"], 0x7c8) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@access_uid}], [], 0x6b}}) lchown(&(0x7f0000000100)='./file0\x00', 0x0, 0xffffffffffffffff) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.99' (ED25519) to the list of known hosts. [ 48.106708][ T5213] cgroup: Unknown subsys name 'net' [ 48.264268][ T5213] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 49.572088][ T5213] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 51.890175][ T5227] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 51.916862][ T5227] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 51.936476][ T5227] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 51.956707][ T5227] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 51.966515][ T5227] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 51.974407][ T5227] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 52.129646][ T4620] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 52.153722][ T54] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 52.161903][ T54] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 52.198405][ T54] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 52.210632][ T5233] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 52.219483][ T5233] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 52.228536][ T5233] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 52.237427][ T5233] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 52.237874][ T5243] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 52.245661][ T5233] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 52.253554][ T5243] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 52.267171][ T5233] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 52.274993][ T5233] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 52.275826][ T5243] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 52.290117][ T5245] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 52.297592][ T5245] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 52.310258][ T5244] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 52.336560][ T5244] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 52.345258][ T5245] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 52.357037][ T5243] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 52.357543][ T5245] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 52.364358][ T5243] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 52.372496][ T5245] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 52.387105][ T5245] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 52.401559][ T5223] chnl_net:caif_netlink_parms(): no params data found [ 52.526196][ T5223] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.534118][ T5223] bridge0: port 1(bridge_slave_0) entered disabled state [ 52.542312][ T5223] bridge_slave_0: entered allmulticast mode [ 52.549483][ T5223] bridge_slave_0: entered promiscuous mode [ 52.560517][ T5223] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.567674][ T5223] bridge0: port 2(bridge_slave_1) entered disabled state [ 52.574825][ T5223] bridge_slave_1: entered allmulticast mode [ 52.581778][ T5223] bridge_slave_1: entered promiscuous mode [ 52.633849][ T5223] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 52.663032][ T5223] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 52.730533][ T5223] team0: Port device team_slave_0 added [ 52.739284][ T5223] team0: Port device team_slave_1 added [ 52.807141][ T5223] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 52.814301][ T5223] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 52.840850][ T5223] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 52.857061][ T5223] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 52.864034][ T5223] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 52.890283][ T5223] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 52.912687][ T5230] chnl_net:caif_netlink_parms(): no params data found [ 52.995859][ T5223] hsr_slave_0: entered promiscuous mode [ 53.002297][ T5223] hsr_slave_1: entered promiscuous mode [ 53.023609][ T5237] chnl_net:caif_netlink_parms(): no params data found [ 53.107638][ T5230] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.114819][ T5230] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.122494][ T5230] bridge_slave_0: entered allmulticast mode [ 53.129685][ T5230] bridge_slave_0: entered promiscuous mode [ 53.136569][ T5236] chnl_net:caif_netlink_parms(): no params data found [ 53.146399][ T5230] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.153709][ T5230] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.161092][ T5230] bridge_slave_1: entered allmulticast mode [ 53.168307][ T5230] bridge_slave_1: entered promiscuous mode [ 53.245808][ T5230] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 53.285425][ T5230] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 53.314372][ T5237] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.323341][ T5237] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.330997][ T5237] bridge_slave_0: entered allmulticast mode [ 53.337788][ T5237] bridge_slave_0: entered promiscuous mode [ 53.363464][ T5230] team0: Port device team_slave_0 added [ 53.374583][ T5232] chnl_net:caif_netlink_parms(): no params data found [ 53.387798][ T5237] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.394893][ T5237] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.402451][ T5237] bridge_slave_1: entered allmulticast mode [ 53.409285][ T5237] bridge_slave_1: entered promiscuous mode [ 53.427412][ T5230] team0: Port device team_slave_1 added [ 53.464274][ T5236] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.471844][ T5236] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.479143][ T5236] bridge_slave_0: entered allmulticast mode [ 53.485693][ T5236] bridge_slave_0: entered promiscuous mode [ 53.522897][ T5237] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 53.534638][ T5237] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 53.544990][ T5236] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.552402][ T5236] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.559750][ T5236] bridge_slave_1: entered allmulticast mode [ 53.566364][ T5236] bridge_slave_1: entered promiscuous mode [ 53.589159][ T5230] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 53.596133][ T5230] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 53.622245][ T5230] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 53.655942][ T5236] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 53.666038][ T5230] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 53.674212][ T5230] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 53.701579][ T5230] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 53.735625][ T5236] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 53.760334][ T5232] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.767679][ T5232] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.774842][ T5232] bridge_slave_0: entered allmulticast mode [ 53.783607][ T5232] bridge_slave_0: entered promiscuous mode [ 53.793426][ T5237] team0: Port device team_slave_0 added [ 53.801766][ T5237] team0: Port device team_slave_1 added [ 53.824389][ T5232] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.831896][ T5232] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.839435][ T5232] bridge_slave_1: entered allmulticast mode [ 53.846003][ T5232] bridge_slave_1: entered promiscuous mode [ 53.879346][ T5237] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 53.886440][ T5237] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 53.912880][ T5237] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 53.927600][ T5236] team0: Port device team_slave_0 added [ 53.952166][ T5232] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 53.963407][ T5237] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 53.970614][ T5237] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 53.997245][ T5237] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 54.010060][ T5236] team0: Port device team_slave_1 added [ 54.022314][ T5230] hsr_slave_0: entered promiscuous mode [ 54.029535][ T5230] hsr_slave_1: entered promiscuous mode [ 54.035687][ T5230] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 54.043746][ T5230] Cannot create hsr debugfs directory [ 54.057770][ T5245] Bluetooth: hci0: command tx timeout [ 54.064104][ T5232] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 54.095015][ T5236] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 54.104410][ T5236] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 54.130859][ T5236] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 54.165592][ T5232] team0: Port device team_slave_0 added [ 54.172234][ T5236] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 54.179692][ T5236] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 54.206810][ T5236] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 54.240539][ T5232] team0: Port device team_slave_1 added [ 54.299590][ T5245] Bluetooth: hci1: command tx timeout [ 54.318357][ T5223] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 54.337863][ T5237] hsr_slave_0: entered promiscuous mode [ 54.344253][ T5237] hsr_slave_1: entered promiscuous mode [ 54.350834][ T5237] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 54.358750][ T5237] Cannot create hsr debugfs directory [ 54.370601][ T5236] hsr_slave_0: entered promiscuous mode [ 54.377166][ T5236] hsr_slave_1: entered promiscuous mode [ 54.383494][ T5236] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 54.391393][ T5245] Bluetooth: hci2: command tx timeout [ 54.391740][ T5236] Cannot create hsr debugfs directory [ 54.402797][ T5223] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 54.412339][ T5232] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 54.419431][ T5232] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 54.445767][ T5232] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 54.457270][ T5245] Bluetooth: hci4: command tx timeout [ 54.458166][ T5232] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 54.469974][ T5245] Bluetooth: hci3: command tx timeout [ 54.471873][ T5232] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 54.502091][ T5232] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 54.532924][ T5223] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 54.578465][ T5223] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 54.629893][ T5232] hsr_slave_0: entered promiscuous mode [ 54.636961][ T5232] hsr_slave_1: entered promiscuous mode [ 54.643169][ T5232] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 54.651488][ T5232] Cannot create hsr debugfs directory [ 54.796524][ T5230] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 54.806901][ T5230] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 54.846717][ T5230] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 54.855892][ T5230] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 54.935458][ T5237] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 54.960616][ T5237] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 54.970794][ T5237] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 54.983701][ T5237] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 55.073141][ T5236] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 55.082474][ T5236] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 55.104502][ T5236] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 55.128471][ T5236] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 55.187596][ T5232] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 55.200885][ T5232] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 55.210051][ T5232] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 55.222482][ T5232] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 55.248550][ T5223] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.272935][ T5230] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.305328][ T5223] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.339139][ T751] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.346441][ T751] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.355829][ T751] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.363012][ T751] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.380888][ T5230] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.403179][ T5237] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.425993][ T5237] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.452113][ T751] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.459282][ T751] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.468723][ T751] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.475855][ T751] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.517150][ T62] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.524252][ T62] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.545874][ T52] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.552981][ T52] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.642886][ T5237] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 55.653709][ T5237] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 55.671906][ T5236] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.742520][ T5236] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.764094][ T5232] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.818376][ T35] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.825493][ T35] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.844138][ T35] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.851413][ T35] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.885785][ T5232] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.925429][ T35] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.932669][ T35] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.980294][ T5236] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 56.026201][ T35] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.033394][ T35] bridge0: port 2(bridge_slave_1) entered forwarding state [ 56.101359][ T5237] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 56.114528][ T5223] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 56.148848][ T5245] Bluetooth: hci0: command tx timeout [ 56.166186][ T5232] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 56.179089][ T5232] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 56.232227][ T5230] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 56.323363][ T5236] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 56.365960][ T5230] veth0_vlan: entered promiscuous mode [ 56.386957][ T5245] Bluetooth: hci1: command tx timeout [ 56.413586][ T5230] veth1_vlan: entered promiscuous mode [ 56.457229][ T5245] Bluetooth: hci2: command tx timeout [ 56.478198][ T5223] veth0_vlan: entered promiscuous mode [ 56.535381][ T5223] veth1_vlan: entered promiscuous mode [ 56.537005][ T5235] Bluetooth: hci4: command tx timeout [ 56.546548][ T5245] Bluetooth: hci3: command tx timeout [ 56.550291][ T5232] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 56.570742][ T5236] veth0_vlan: entered promiscuous mode [ 56.608381][ T5236] veth1_vlan: entered promiscuous mode [ 56.619888][ T5230] veth0_macvtap: entered promiscuous mode [ 56.645081][ T5237] veth0_vlan: entered promiscuous mode [ 56.661561][ T5230] veth1_macvtap: entered promiscuous mode [ 56.694950][ T5237] veth1_vlan: entered promiscuous mode [ 56.714115][ T5232] veth0_vlan: entered promiscuous mode [ 56.739084][ T5230] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 56.750426][ T5230] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 56.771538][ T5232] veth1_vlan: entered promiscuous mode [ 56.798639][ T5237] veth0_macvtap: entered promiscuous mode [ 56.811290][ T5237] veth1_macvtap: entered promiscuous mode [ 56.819622][ T5236] veth0_macvtap: entered promiscuous mode [ 56.831538][ T5223] veth0_macvtap: entered promiscuous mode [ 56.843738][ T5230] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.853154][ T5230] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.862341][ T5230] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.873438][ T5230] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.893112][ T5236] veth1_macvtap: entered promiscuous mode [ 56.903600][ T5223] veth1_macvtap: entered promiscuous mode [ 56.915061][ T5237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 56.927251][ T5237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 56.942250][ T5237] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 56.954845][ T5232] veth0_macvtap: entered promiscuous mode [ 56.978251][ T5237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 56.989737][ T5237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 57.001063][ T5237] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 57.010235][ T5232] veth1_macvtap: entered promiscuous mode [ 57.040798][ T5236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 57.052813][ T5236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 57.068237][ T5236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 57.078787][ T5236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 57.090244][ T5236] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 57.104503][ T5223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 57.115519][ T5223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 57.125476][ T5223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 57.137000][ T5223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 57.146915][ T5223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 57.158195][ T5223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 57.170200][ T5223] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 57.181654][ T5237] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.190562][ T5237] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.200197][ T5237] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.209439][ T5237] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.224730][ T5236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 57.235592][ T5236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 57.245529][ T5236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 57.257097][ T5236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 57.269819][ T5236] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 57.306943][ T5223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 57.319347][ T5223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 57.329403][ T5223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 57.340332][ T5223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 57.350502][ T5223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 57.362047][ T5223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 57.374000][ T5223] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 57.388248][ T5223] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.397209][ T5223] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.405928][ T5223] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.415316][ T5223] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.448508][ T5232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 57.459121][ T5232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 57.470084][ T5232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 57.481061][ T5232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 57.491302][ T5232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 57.502213][ T5232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 57.512308][ T5232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 57.523753][ T5232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 57.535550][ T5232] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 57.560280][ T5236] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.569212][ T5236] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.579604][ T5236] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.588367][ T5236] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.623988][ T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 57.634783][ T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 57.654031][ T5232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 57.665929][ T5232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 57.676216][ T5232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 57.687094][ T5232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 57.697249][ T5232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 57.708087][ T5232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 57.718586][ T5232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 57.729439][ T5232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 57.741191][ T5232] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 57.756775][ T5232] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.765505][ T5232] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.774705][ T5232] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.783704][ T5232] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.847614][ T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 57.855662][ T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 57.881334][ T751] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 57.900586][ T751] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 57.942374][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 57.951627][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 58.005837][ T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 58.021486][ T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 58.130498][ T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 58.144035][ T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 58.172331][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 58.173765][ T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 58.197614][ T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 58.199635][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 58.218182][ T5245] Bluetooth: hci0: command tx timeout [ 58.293660][ T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 58.323167][ T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 58.373958][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 58.446018][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 58.457517][ T5245] Bluetooth: hci1: command tx timeout [ 58.537803][ T5245] Bluetooth: hci2: command tx timeout [ 58.546780][ T5277] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 58.735615][ T5245] Bluetooth: hci3: command tx timeout [ 58.741493][ T5245] Bluetooth: hci4: command tx timeout [ 58.992250][ T5277] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 59.242596][ T5314] loop0: detected capacity change from 0 to 1024 [ 59.281281][ T5277] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 59.294092][ T5277] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 59.312040][ T5277] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 59.321581][ T5277] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 59.372453][ T5277] usb 4-1: config 0 descriptor?? [ 59.404948][ T5307] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 59.453466][ T5317] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 59.705526][ T5326] coredump: 6(syz.0.1): Error writing out the process memory [ 59.709963][ T5317] loop2: detected capacity change from 0 to 256 [ 59.728966][ T5317] ======================================================= [ 59.728966][ T5317] WARNING: The mand mount option has been deprecated and [ 59.728966][ T5317] and is ignored by this kernel. Remove the mand [ 59.728966][ T5317] option from the mount to silence this warning. [ 59.728966][ T5317] ======================================================= [ 59.774690][ T5326] coredump: 6(syz.0.1): written to core: VMAs: 34, size 88338432; core: 25542 bytes, pos 49152 [ 59.793146][ T5317] exfat: Bad value for 'uid' [ 59.798246][ T5317] exfat: Bad value for 'uid' [ 59.931131][ T5277] plantronics 0003:047F:FFFF.0001: ignoring exceeding usage max [ 59.968914][ T5277] plantronics 0003:047F:FFFF.0001: No inputs registered, leaving [ 60.020639][ T5330] loop4: detected capacity change from 0 to 256 [ 60.038057][ T5330] vfat: Unknown parameter '' [ 60.080543][ T5277] plantronics 0003:047F:FFFF.0001: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 60.143819][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 60.228347][ T5326] syz.0.1 (5326) used greatest stack depth: 19480 bytes left [ 60.297550][ T5235] Bluetooth: hci0: command tx timeout [ 60.599066][ T5235] Bluetooth: hci1: command tx timeout [ 60.616660][ T5235] Bluetooth: hci2: command tx timeout [ 60.786393][ T5235] Bluetooth: hci4: command tx timeout [ 60.792069][ T5235] Bluetooth: hci3: command tx timeout [ 61.544709][ T5320] loop1: detected capacity change from 0 to 32768 [ 61.569905][ T5320] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.2 (5320) [ 61.627627][ T5320] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 61.644029][ T5320] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 61.653305][ T5320] BTRFS info (device loop1): using free-space-tree [ 61.670041][ T5338] netlink: 20 bytes leftover after parsing attributes in process `syz.0.9'. [ 61.755815][ T5340] loop3: detected capacity change from 0 to 1024 [ 61.819393][ T5340] hfsplus: request for non-existent node 33423360 in B*Tree [ 61.869924][ T5340] hfsplus: request for non-existent node 33423360 in B*Tree [ 61.918424][ T5360] loop2: detected capacity change from 0 to 1024 [ 61.929562][ T5340] hfsplus: request for non-existent node 33423360 in B*Tree [ 61.976342][ T5340] hfsplus: request for non-existent node 33423360 in B*Tree [ 61.995890][ T5360] loop2: detected capacity change from 0 to 1024 [ 62.056233][ T5360] hfsplus: extend alloc file! (8192,65536,366) [ 62.067061][ T5364] hfsplus: request for non-existent node 33423360 in B*Tree [ 62.074553][ T5364] hfsplus: request for non-existent node 33423360 in B*Tree [ 62.112800][ T5366] loop0: detected capacity change from 0 to 1024 [ 62.215781][ T5366] EXT4-fs: Ignoring removed orlov option [ 62.304809][ T5366] EXT4-fs: Ignoring removed nomblk_io_submit option [ 62.322293][ T5340] hfsplus: request for non-existent node 33423360 in B*Tree [ 62.374621][ T5275] usb 4-1: USB disconnect, device number 2 [ 62.396588][ T0] NOHZ tick-stop error: local softirq work is pending, handler #c2!!! [ 62.497397][ T5340] hfsplus: request for non-existent node 33423360 in B*Tree [ 62.675595][ T5367] hfsplus: request for non-existent node 33423360 in B*Tree [ 62.827750][ T5367] hfsplus: request for non-existent node 33423360 in B*Tree [ 62.864457][ T5364] hfsplus: request for non-existent node 33423360 in B*Tree [ 62.872669][ T5364] hfsplus: request for non-existent node 33423360 in B*Tree [ 62.899844][ T5366] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 63.105077][ T5223] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 63.220149][ T5345] loop4: detected capacity change from 0 to 32768 [ 63.234473][ T5232] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 63.265264][ T5345] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.12 (5345) [ 63.329689][ T5345] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 63.419894][ T5226] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 63.485822][ T5384] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 63.559821][ T5345] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm [ 63.597237][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 63.598080][ T5345] BTRFS info (device loop4): disk space caching is enabled [ 63.616155][ T5345] BTRFS warning (device loop4): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 63.686840][ T5226] usb 4-1: Using ep0 maxpacket: 16 [ 63.736905][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 63.830308][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 63.976798][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 64.166268][ T5226] usb 4-1: config index 0 descriptor too short (expected 16456, got 72) [ 64.174737][ T5226] usb 4-1: config 0 has an invalid interface number: 125 but max is 1 [ 64.183657][ T5226] usb 4-1: config 0 has an invalid interface number: 125 but max is 1 [ 64.196881][ T5226] usb 4-1: config 0 has an invalid interface number: 125 but max is 1 [ 64.205271][ T5226] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 64.214364][ T5226] usb 4-1: config 0 has no interface number 0 [ 64.218766][ T5390] netlink: 'syz.0.21': attribute type 1 has an invalid length. [ 64.221425][ T5226] usb 4-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64 [ 64.241444][ T5226] usb 4-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0 [ 64.251482][ T5226] usb 4-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0 [ 64.261476][ T5226] usb 4-1: config 0 interface 125 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 64.274840][ T5226] usb 4-1: config 0 interface 125 has no altsetting 0 [ 64.281691][ T5226] usb 4-1: config 0 interface 125 has no altsetting 2 [ 64.293301][ T5390] netlink: 40 bytes leftover after parsing attributes in process `syz.0.21'. [ 64.298164][ T5226] usb 4-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27 [ 64.311271][ T5226] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 64.319465][ T5226] usb 4-1: Product: syz [ 64.323649][ T5226] usb 4-1: Manufacturer: syz [ 64.328302][ T5226] usb 4-1: SerialNumber: syz [ 64.338771][ T5226] usb 4-1: config 0 descriptor?? [ 64.349787][ T5226] usb 4-1: selecting invalid altsetting 2 [ 64.395822][ T5345] BTRFS info (device loop4): rebuilding free space tree [ 64.556881][ T5345] BTRFS info (device loop4): disabling free space tree [ 64.563867][ T5345] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 64.597934][ T5345] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 64.916897][ C0] usb 4-1: async_complete: urb error -71 [ 64.922665][ C0] usb 4-1: async_complete: urb error -71 [ 64.928376][ C0] usb 4-1: async_complete: urb error -71 [ 65.687125][ T5226] get_1284_register: usb error -71 [ 65.727844][ T5226] uss720 4-1:0.125: probe with driver uss720 failed with error -71 [ 66.500243][ T5226] usb 4-1: USB disconnect, device number 3 [ 66.552449][ T5237] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 66.727368][ T5421] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 67.736438][ T5277] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 67.779437][ T5431] loop4: detected capacity change from 0 to 2048 [ 67.852961][ T5431] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 68.103469][ T5439] loop2: detected capacity change from 0 to 256 [ 68.504474][ T5277] usb 2-1: Using ep0 maxpacket: 8 [ 68.618231][ T5277] usb 2-1: config 0 has an invalid interface number: 0 but max is -1 [ 68.773687][ T5277] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 0 [ 68.826623][ T5277] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 68.944032][ T5277] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 68.987110][ T5277] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 69.022308][ T5237] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.082407][ T5277] usb 2-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00 [ 69.133159][ T5446] loop2: detected capacity change from 0 to 512 [ 69.146785][ T5277] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 69.173042][ T5277] usb 2-1: config 0 descriptor?? [ 69.211131][ T5427] loop0: detected capacity change from 0 to 32768 [ 69.221765][ T5427] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.30 (5427) [ 69.247265][ T5446] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 69.266769][ T5446] ext4 filesystem being mounted at /7/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 69.299379][ T5427] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 69.299601][ T5444] loop3: detected capacity change from 0 to 8192 [ 69.332325][ T5427] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 69.343315][ T5427] BTRFS info (device loop0): using free-space-tree [ 69.356021][ T5446] Quota error (device loop2): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8 [ 69.369017][ T5446] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 69.383386][ T5446] EXT4-fs error (device loop2): ext4_acquire_dquot:6848: comm syz.2.34: Failed to acquire dquot type 0 [ 69.412395][ T5444] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 69.435185][ T5444] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal [ 69.447066][ T5444] REISERFS (device loop3): using ordered data mode [ 69.454919][ T5236] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 69.467691][ T5444] reiserfs: using flush barriers [ 69.492730][ T5444] REISERFS warning (device loop3): sh-458 journal_init_dev: cannot init journal device unknown-block(7,3): -16 [ 69.524591][ T5444] REISERFS warning (device loop3): sh-462 journal_init: unable to initialize journal device [ 69.595514][ T5444] REISERFS warning (device loop3): sh-2022 reiserfs_fill_super: unable to initialize journal space [ 69.620981][ T5277] hid-steam 0003:28DE:1102.0002: unknown main item tag 0x0 [ 69.640488][ T5277] hid-steam 0003:28DE:1102.0002: : USB HID v0.00 Device [HID 28de:1102] on usb-dummy_hcd.1-1/input0 [ 69.927933][ T5277] hid-steam 0003:28DE:1102.0002: Steam Controller 'XXXXXXXXXX' connected [ 69.939906][ T5277] input: Steam Controller as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:28DE:1102.0002/input/input5 [ 69.971203][ T5277] hid-steam 0003:28DE:1102.0003: unknown main item tag 0x0 [ 70.303967][ T5277] hid-steam 0003:28DE:1102.0003: hidraw0: USB HID v0.00 Device [HID 28de:1102] on usb-dummy_hcd.1-1/input0 [ 70.688150][ T5277] usb 2-1: USB disconnect, device number 2 [ 70.695066][ T5223] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 70.866931][ T5277] hid-steam 0003:28DE:1102.0002: Steam Controller 'XXXXXXXXXX' disconnected [ 70.936638][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 71.081495][ T5488] loop4: detected capacity change from 0 to 512 [ 71.099968][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 71.111392][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 71.854268][ T1268] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.860871][ T1268] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.916520][ T5488] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 72.017290][ T5488] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.42: corrupted in-inode xattr: e_value out of bounds [ 72.228704][ T5488] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.42: couldn't read orphan inode 15 (err -117) [ 72.317975][ T5488] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 72.536793][ T5499] loop0: detected capacity change from 0 to 512 [ 72.567015][ T5499] EXT4-fs: Ignoring removed orlov option [ 72.596425][ T5499] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 72.635776][ T5237] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.646402][ T5499] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 72.731296][ T5499] EXT4-fs (loop0): 1 truncate cleaned up [ 72.751113][ T5499] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 72.888635][ T5485] loop3: detected capacity change from 0 to 32768 [ 72.909201][ T5485] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.37 (5485) [ 73.057004][ T5485] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 73.075188][ T5485] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 73.086407][ T5485] BTRFS info (device loop3): disk space caching is enabled [ 73.126208][ T5485] BTRFS warning (device loop3): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 73.385137][ T5516] loop1: detected capacity change from 0 to 512 [ 73.464238][ T5516] EXT4-fs (loop1): can't mount with both data=journal and delalloc [ 73.545236][ T5485] BTRFS info (device loop3): rebuilding free space tree [ 73.572985][ T5516] loop1: detected capacity change from 0 to 128 [ 73.632048][ T5223] EXT4-fs error (device loop0): ext4_readdir:260: inode #11: block 54: comm syz-executor: path /9/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0 [ 73.655524][ T5485] BTRFS info (device loop3): disabling free space tree [ 73.666841][ T5485] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 73.684537][ T5223] EXT4-fs error (device loop0): ext4_empty_dir:3126: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0 [ 73.701076][ T5485] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 73.710197][ T5226] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 73.733739][ T5223] EXT4-fs error (device loop0): ext4_readdir:260: inode #11: block 54: comm syz-executor: path /9/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0 [ 73.775617][ T5223] EXT4-fs error (device loop0): ext4_empty_dir:3126: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0 [ 73.851818][ T5223] EXT4-fs error (device loop0): ext4_readdir:260: inode #11: block 54: comm syz-executor: path /9/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0 [ 73.916686][ T5223] EXT4-fs error (device loop0): ext4_empty_dir:3126: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0 [ 73.936493][ T5226] usb 5-1: Using ep0 maxpacket: 32 [ 73.942417][ T5230] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 73.942815][ T5223] EXT4-fs error (device loop0): ext4_readdir:260: inode #11: block 54: comm syz-executor: path /9/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0 [ 73.964896][ T5226] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 32 [ 74.207124][ T5223] EXT4-fs error (device loop0): ext4_empty_dir:3126: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0 [ 74.500595][ T5226] usb 5-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= 5.f5 [ 74.510163][ T5226] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 74.518944][ T5223] EXT4-fs error (device loop0): ext4_readdir:260: inode #11: block 54: comm syz-executor: path /9/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0 [ 74.541491][ T5226] usb 5-1: Product: syz [ 75.170238][ T5226] usb 5-1: Manufacturer: syz [ 75.175953][ T5226] usb 5-1: SerialNumber: syz [ 75.183636][ T5226] usb 5-1: config 0 descriptor?? [ 75.190721][ T5511] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 75.234435][ T5226] usb 5-1: Quirk or no altset; falling back to MIDI 1.0 [ 75.279883][ T5223] EXT4-fs error (device loop0): ext4_empty_dir:3126: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0 [ 75.488034][ T5226] usb 5-1: USB disconnect, device number 2 [ 75.566568][ T5274] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 75.841871][ T5274] usb 2-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 255, changing to 11 [ 75.853494][ T5274] usb 2-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 59391, setting to 1024 [ 75.865054][ T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!! [ 75.865138][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 76.648064][ T5274] usb 2-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 76.678082][ T5274] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 76.690086][ T5541] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22 [ 76.995394][ T8] cfg80211: failed to load regulatory.db [ 78.075681][ T5561] netlink: 4 bytes leftover after parsing attributes in process `syz.3.58'. [ 78.131712][ T5569] mmap: syz.4.61 (5569) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 79.719500][ T5274] aiptek 2-1:17.0: Aiptek using 400 ms programming speed [ 79.738317][ T5274] input: Aiptek as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:17.0/input/input6 [ 79.762881][ T5274] usb 2-1: USB disconnect, device number 3 [ 79.768741][ C0] aiptek 2-1:17.0: aiptek_irq - usb_submit_urb failed with result -19 [ 80.241772][ T5223] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.814295][ T5588] loop3: detected capacity change from 0 to 1024 [ 80.822310][ T11] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 80.881268][ T5588] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #2: comm syz.3.67: pblk 0 bad header/extent: too large eh_max - magic f30a, entries 1, max 1028(4), depth 0(0) [ 80.943006][ T5588] EXT4-fs (loop3): get root inode failed [ 80.954214][ T5588] EXT4-fs (loop3): mount failed [ 81.360698][ T11] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 82.574110][ T11] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 82.782191][ T5613] loop3: detected capacity change from 0 to 256 [ 82.915064][ T5613] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 82.936152][ T5235] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 82.945640][ T5235] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 82.954610][ T5235] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 82.967019][ T5235] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 82.974743][ T5235] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 82.985190][ T5235] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 83.060299][ T11] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 83.776025][ T29] audit: type=1800 audit(1723995544.231:2): pid=5613 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.75" name="bus" dev="loop3" ino=1048601 res=0 errno=0 [ 83.848030][ T5623] loop2: detected capacity change from 0 to 16 [ 83.895834][ T5623] erofs: (device loop2): mounted with root inode @ nid 36. [ 83.950893][ T5623] syz.2.76: attempt to access beyond end of device [ 83.950893][ T5623] loop2: rw=0, sector=8, nr_sectors = 16 limit=16 [ 83.987806][ T5623] syz.2.76: attempt to access beyond end of device [ 83.987806][ T5623] loop2: rw=0, sector=8, nr_sectors = 16 limit=16 [ 84.199594][ T5623] syz.2.76: attempt to access beyond end of device [ 84.199594][ T5623] loop2: rw=524288, sector=16, nr_sectors = 16 limit=16 [ 84.846544][ T5623] syz.2.76: attempt to access beyond end of device [ 84.846544][ T5623] loop2: rw=524288, sector=8, nr_sectors = 16 limit=16 [ 85.096460][ T5235] Bluetooth: hci0: command tx timeout [ 85.127895][ T11] bridge_slave_1: left allmulticast mode [ 85.134621][ T11] bridge_slave_1: left promiscuous mode [ 85.142784][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 85.168480][ T11] bridge_slave_0: left allmulticast mode [ 85.185461][ T11] bridge_slave_0: left promiscuous mode [ 85.205038][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 85.419251][ T5310] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 86.546561][ T5310] usb 4-1: Using ep0 maxpacket: 8 [ 86.565650][ T5310] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 86.622454][ T5310] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 86.685271][ T5310] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 86.737695][ T5310] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 86.803948][ T5310] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 86.826603][ T5310] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 86.834764][ T5650] loop1: detected capacity change from 0 to 256 [ 86.908215][ T5650] exFAT-fs (loop1): failed to load upcase table (idx : 0x0001e4a3, chksum : 0x009ea0b8, utbl_chksum : 0x7319d30d) [ 87.181896][ T5235] Bluetooth: hci0: command tx timeout [ 87.222623][ T5310] usb 4-1: GET_CAPABILITIES returned 0 [ 87.228394][ T5310] usbtmc 4-1:16.0: can't read capabilities [ 87.510027][ T5632] usbtmc 4-1:16.0: usbtmc488_ioctl_trigger returned -71 [ 87.525684][ T5275] usb 4-1: USB disconnect, device number 4 [ 87.630939][ T5669] xt_l2tp: unknown flags: 10 [ 89.256473][ T5235] Bluetooth: hci0: command tx timeout [ 89.306972][ T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 89.574802][ T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 89.614239][ T11] bond0 (unregistering): Released all slaves [ 89.658607][ T5660] netlink: 'syz.4.83': attribute type 1 has an invalid length. [ 89.669590][ T5660] netlink: 'syz.4.83': attribute type 4 has an invalid length. [ 89.680639][ T5660] netlink: 15334 bytes leftover after parsing attributes in process `syz.4.83'. [ 90.002660][ T5275] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 90.010396][ T5310] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 90.231141][ T5275] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 18 [ 90.295647][ T5310] usb 3-1: config 0 has an invalid interface number: 156 but max is 1 [ 90.345668][ T5275] usb 2-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=6d.cc [ 90.416694][ T5310] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 90.574223][ T5275] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 90.657893][ T5617] chnl_net:caif_netlink_parms(): no params data found [ 90.719086][ T5310] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 90.728305][ T5275] usb 2-1: Product: syz [ 90.732521][ T5275] usb 2-1: Manufacturer: syz [ 90.738109][ T5310] usb 3-1: config 0 has no interface number 0 [ 90.744251][ T5310] usb 3-1: config 0 interface 156 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 90.754269][ T5275] usb 2-1: SerialNumber: syz [ 90.764687][ T5275] usb 2-1: config 0 descriptor?? [ 90.773495][ T5310] usb 3-1: config 0 interface 156 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7 [ 90.809107][ T5275] i2c-tiny-usb 2-1:0.0: version 6d.cc found at bus 002 address 004 [ 90.837038][ T5310] usb 3-1: config 0 interface 156 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 90.872685][ T5310] usb 3-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9 [ 90.896489][ T5310] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=21 [ 90.904639][ T5310] usb 3-1: SerialNumber: syz [ 90.958725][ T5310] usb 3-1: config 0 descriptor?? [ 90.987217][ T5310] gspca_main: spca561-2.14.0 probing abcd:cdee [ 91.007381][ T5275] (null): failure setting delay to 10us [ 91.013571][ T5275] i2c-tiny-usb 2-1:0.0: probe with driver i2c-tiny-usb failed with error -5 [ 91.035687][ T5275] usb 2-1: USB disconnect, device number 4 [ 91.083340][ T11] hsr_slave_0: left promiscuous mode [ 91.097346][ T5226] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 91.107464][ T11] hsr_slave_1: left promiscuous mode [ 91.128251][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 91.141562][ T11] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 91.153078][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 91.165830][ T11] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 91.179014][ T5310] spca561 3-1:0.156: probe with driver spca561 failed with error -22 [ 91.197755][ T5310] usb 3-1: Quirk or no altset; falling back to MIDI 1.0 [ 91.206893][ T5310] usb 3-1: MIDIStreaming interface descriptor not found [ 91.237625][ T11] veth1_macvtap: left promiscuous mode [ 91.243544][ T11] veth0_macvtap: left promiscuous mode [ 91.260065][ T11] veth1_vlan: left promiscuous mode [ 91.273445][ T11] veth0_vlan: left promiscuous mode [ 91.287054][ T5310] usb 3-1: USB disconnect, device number 2 [ 91.317840][ T5226] usb 4-1: Using ep0 maxpacket: 8 [ 91.339361][ T5226] usb 4-1: New USB device found, idVendor=046d, idProduct=0896, bcdDevice=3a.11 [ 91.344349][ T5344] udevd[5344]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.156/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 91.348986][ T5235] Bluetooth: hci0: command tx timeout [ 91.372089][ T5226] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 91.390662][ T5226] usb 4-1: Product: syz [ 91.394959][ T5226] usb 4-1: Manufacturer: syz [ 91.406920][ T5226] usb 4-1: SerialNumber: syz [ 91.418158][ T5226] usb 4-1: config 0 descriptor?? [ 91.433818][ T5226] gspca_main: vc032x-2.14.0 probing 046d:0896 [ 91.684791][ T5693] loop4: detected capacity change from 0 to 40427 [ 91.702951][ T5693] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 91.720178][ T5693] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 91.788387][ T5693] F2FS-fs (loop4): invalid crc value [ 91.876939][ T5693] F2FS-fs (loop4): Found nat_bits in checkpoint [ 92.112791][ T5693] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 92.290952][ T5693] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 92.784005][ T29] audit: type=1800 audit(1723995553.241:3): pid=5693 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.92" name="bus" dev="loop4" ino=10 res=0 errno=0 [ 92.951760][ T5274] usb 4-1: USB disconnect, device number 5 [ 93.027651][ T5693] syz.4.92: attempt to access beyond end of device [ 93.027651][ T5693] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 94.711595][ T35] kworker/u8:2: attempt to access beyond end of device [ 94.711595][ T35] loop4: rw=1, sector=45104, nr_sectors = 120 limit=40427 [ 94.763330][ T5748] loop2: detected capacity change from 0 to 2048 [ 95.013142][ T5748] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 95.084770][ T5748] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 95.308313][ T11] team0 (unregistering): Port device team_slave_1 removed [ 95.403371][ T5748] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 65536 with max blocks 1 with error 28 [ 95.661230][ T5748] EXT4-fs (loop2): This should not happen!! Data will be lost [ 95.661230][ T5748] [ 95.672620][ T5748] EXT4-fs (loop2): Total free blocks count 0 [ 95.686531][ T5748] EXT4-fs (loop2): Free/Dirty block details [ 95.692698][ T5748] EXT4-fs (loop2): free_blocks=2415919104 [ 95.766458][ T5748] EXT4-fs (loop2): dirty_blocks=16 [ 95.771694][ T5748] EXT4-fs (loop2): Block reservation details [ 95.787105][ T5748] EXT4-fs (loop2): i_reserved_data_blocks=1 [ 95.799751][ T11] team0 (unregistering): Port device team_slave_0 removed [ 96.013823][ T5236] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 96.179401][ T5751] loop1: detected capacity change from 0 to 32768 [ 96.191220][ T5765] overlayfs: failed to resolve './file1': -2 [ 96.208909][ T5751] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.102 (5751) [ 96.267675][ T5751] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 96.278282][ T5751] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 96.308071][ T5751] BTRFS info (device loop1): using free-space-tree [ 97.198890][ T35] BTRFS info (device loop1): qgroup scan completed (inconsistency flag cleared) [ 97.349532][ T5792] coredump: 73(syz.4.107): coredump has not been created, error -2 [ 97.469922][ T5232] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 98.457601][ T5799] loop3: detected capacity change from 0 to 4096 [ 98.480026][ T5803] loop4: detected capacity change from 0 to 16 [ 98.503429][ T5803] erofs: Unknown parameter 'v @lJpHʫPXmʦ' [ 98.513482][ T5799] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512). [ 98.721056][ T5803] loop4: detected capacity change from 0 to 4096 [ 98.804433][ T5803] loop4: detected capacity change from 0 to 2048 [ 98.831033][ T5617] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.866166][ T5617] bridge0: port 1(bridge_slave_0) entered disabled state [ 98.894681][ T5617] bridge_slave_0: entered allmulticast mode [ 98.905345][ T5807] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 98.914411][ T5617] bridge_slave_0: entered promiscuous mode [ 99.036404][ T29] audit: type=1800 audit(1723995559.481:4): pid=5808 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.113" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 99.379199][ T5617] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.416530][ T5617] bridge0: port 2(bridge_slave_1) entered disabled state [ 99.423825][ T5617] bridge_slave_1: entered allmulticast mode [ 100.149755][ T5617] bridge_slave_1: entered promiscuous mode [ 100.296165][ T5617] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 100.333814][ T29] audit: type=1326 audit(1723995560.791:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5823 comm="syz.2.116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7dfe779e79 code=0x7fc00000 [ 100.370272][ T5617] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 100.420197][ T29] audit: type=1326 audit(1723995560.791:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5823 comm="syz.2.116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=208 compat=0 ip=0x7f7dfe779e79 code=0x7fc00000 [ 100.491020][ T29] audit: type=1326 audit(1723995560.791:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5823 comm="syz.2.116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7dfe779e79 code=0x7fc00000 [ 100.570213][ T5617] team0: Port device team_slave_0 added [ 100.606897][ T29] audit: type=1326 audit(1723995560.791:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5823 comm="syz.2.116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7dfe779e79 code=0x7fc00000 [ 100.613725][ T5832] loop2: detected capacity change from 0 to 64 [ 100.635576][ T5617] team0: Port device team_slave_1 added [ 100.718630][ T29] audit: type=1326 audit(1723995560.791:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5823 comm="syz.2.116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7dfe779e79 code=0x7fc00000 [ 101.614915][ T29] audit: type=1326 audit(1723995560.791:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5823 comm="syz.2.116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7dfe779e79 code=0x7fc00000 [ 101.639974][ T29] audit: type=1326 audit(1723995560.791:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5823 comm="syz.2.116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7dfe779e79 code=0x7fc00000 [ 101.647301][ T5617] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 101.662389][ T29] audit: type=1326 audit(1723995560.791:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5823 comm="syz.2.116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7dfe779e79 code=0x7fc00000 [ 101.699165][ T5617] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 101.737289][ T5617] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 101.817955][ T29] audit: type=1326 audit(1723995560.791:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5823 comm="syz.2.116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7dfe779e79 code=0x7fc00000 [ 101.902249][ T5617] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 101.913076][ T5840] loop2: detected capacity change from 0 to 512 [ 101.920627][ T5617] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 101.946990][ T5840] EXT4-fs: Ignoring removed nomblk_io_submit option [ 101.967790][ T5840] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 102.068082][ T5617] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 102.081276][ T5840] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=1802c01c, mo2=0002] [ 102.097628][ T5840] EXT4-fs (loop2): couldn't mount RDWR because of unsupported optional features (80) [ 102.107492][ T5840] EXT4-fs (loop2): Skipping orphan cleanup due to unknown ROCOMPAT features [ 102.123325][ T5840] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 102.265255][ T5840] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: none. [ 102.329279][ T5617] hsr_slave_0: entered promiscuous mode [ 102.416634][ T5617] hsr_slave_1: entered promiscuous mode [ 102.427524][ T5236] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 102.773464][ T5858] /dev/nullb0: Can't open blockdev [ 103.108741][ T5861] netlink: 'syz.2.124': attribute type 1 has an invalid length. [ 103.347527][ T5866] netlink: 40 bytes leftover after parsing attributes in process `syz.2.124'. [ 103.377372][ T5866] 8021q: adding VLAN 0 to HW filter on device bond1 [ 103.655350][ T5861] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 103.693369][ T5861] bond1: (slave batadv1): Enslaving as a backup interface with an up link [ 103.726971][ T5645] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond [ 103.877931][ T751] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond [ 104.036536][ T5275] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 104.043361][ T5883] netlink: 40 bytes leftover after parsing attributes in process `syz.4.129'. [ 104.062845][ T5884] loop2: detected capacity change from 0 to 4096 [ 104.075361][ T5884] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 104.226478][ T5275] usb 2-1: Using ep0 maxpacket: 32 [ 104.238993][ T5884] ntfs3: loop2: Failed to initialize $Extend/$Reparse. [ 104.250741][ T5275] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024 [ 104.299985][ T5275] usb 2-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79 [ 104.302190][ T5617] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 104.324397][ T5884] ntfs3: loop2: ino=1e, "file1" encrypted i/o not supported [ 104.330125][ T5275] usb 2-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2 [ 104.356178][ T29] kauditd_printk_skb: 8 callbacks suppressed [ 104.356193][ T29] audit: type=1800 audit(1723995564.811:22): pid=5884 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.131" name="file1" dev="loop2" ino=30 res=0 errno=0 [ 104.376504][ T5275] usb 2-1: Product: syz [ 104.415444][ T5617] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 104.453825][ T5275] usb 2-1: Manufacturer: syz [ 104.487044][ T5275] usb 2-1: SerialNumber: syz [ 104.489304][ T5617] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 104.545421][ T5275] usb 2-1: config 0 descriptor?? [ 104.581049][ T5879] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 104.612322][ T5617] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 104.832445][ T5275] usb 2-1: USB disconnect, device number 5 [ 105.654064][ T5617] 8021q: adding VLAN 0 to HW filter on device bond0 [ 105.690030][ T5617] 8021q: adding VLAN 0 to HW filter on device team0 [ 105.818338][ T5598] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.825521][ T5598] bridge0: port 1(bridge_slave_0) entered forwarding state [ 105.883048][ T5598] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.890286][ T5598] bridge0: port 2(bridge_slave_1) entered forwarding state [ 106.270077][ T5617] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 106.350597][ T5617] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 107.196647][ T5926] process 'syz.3.140' launched './file0' with NULL argv: empty string added [ 108.156425][ T5226] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 109.178602][ T5226] usb 4-1: Using ep0 maxpacket: 8 [ 109.226577][ T5226] usb 4-1: device descriptor read/all, error -71 [ 109.337099][ T5958] overlayfs: missing 'lowerdir' [ 109.353533][ T5617] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 110.769998][ T5617] veth0_vlan: entered promiscuous mode [ 110.956576][ T5617] veth1_vlan: entered promiscuous mode [ 111.009912][ T5617] veth0_macvtap: entered promiscuous mode [ 111.099151][ T5617] veth1_macvtap: entered promiscuous mode [ 111.682373][ T5617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 111.759279][ T5617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.846457][ T5617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 111.906033][ T5617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.943649][ T5617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 111.970830][ T5617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 112.016592][ T5617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 112.049903][ T5617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 112.078343][ T5617] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 112.092238][ T5984] loop3: detected capacity change from 0 to 2048 [ 112.160372][ T5617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 112.226798][ T5617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 112.255684][ T5984] loop3: detected capacity change from 0 to 1994 [ 112.262291][ T5617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 112.298386][ T5617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 112.336417][ T5617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 112.352945][ T5988] loop2: detected capacity change from 0 to 8192 [ 112.366893][ T5617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 112.384071][ T5984] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=2016, location=2016 [ 112.440636][ T5617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 112.461828][ T5984] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 112.471405][ T5617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 112.500830][ T5617] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 112.511660][ T5984] UDF-fs: error (device loop3): udf_read_inode: (ino 1376) failed !bh [ 112.568379][ T5617] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.576679][ T5984] UDF-fs: error (device loop3): udf_fill_super: Error in udf_iget, block=64, partition=0 [ 112.606466][ T5617] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.630506][ T5617] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.677497][ T5617] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.938147][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.982877][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 113.049138][ T6002] veth0_vlan: entered allmulticast mode [ 113.191282][ T6004] : renamed from vlan1 [ 114.192969][ T751] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 114.222225][ T751] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 114.283694][ T6022] loop4: detected capacity change from 0 to 512 [ 114.344002][ T6022] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 114.436697][ T6022] ext4 filesystem being mounted at /32/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 114.538355][ T6022] EXT4-fs error (device loop4): ext4_search_dir:1505: inode #2: block 3: comm syz.4.158: bad entry in directory: directory entry overrun - offset=16444, inode=113, rec_len=26368, size=2048 fake=0 [ 114.571367][ T6039] loop1: detected capacity change from 0 to 512 [ 114.657480][ T6039] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.163: casefold flag without casefold feature [ 114.694510][ T6039] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.163: couldn't read orphan inode 15 (err -117) [ 114.694634][ T6022] EXT4-fs error (device loop4): ext4_add_entry:2435: inode #2: comm syz.4.158: Directory hole found for htree leaf block 0 [ 114.725088][ T6039] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 114.813006][ T6046] EXT4-fs error (device loop4): ext4_add_entry:2435: inode #2: comm syz.4.158: Directory hole found for htree leaf block 0 [ 114.924489][ T5232] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 114.941548][ T6048] EXT4-fs error (device loop4): ext4_add_entry:2435: inode #2: comm syz.4.158: Directory hole found for htree leaf block 0 [ 115.886563][ T5237] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 116.191171][ T6035] loop0: detected capacity change from 0 to 32768 [ 116.705054][ T6092] loop4: detected capacity change from 0 to 164 [ 116.738390][ T6094] loop1: detected capacity change from 0 to 512 [ 116.765701][ T6092] iso9660: Unknown parameter 'ߛnojoliet' [ 116.800634][ T6094] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.178: casefold flag without casefold feature [ 116.828241][ T6092] syz.4.177: attempt to access beyond end of device [ 116.828241][ T6092] loop4: rw=0, sector=0, nr_sectors = 1 limit=0 [ 116.876208][ T6094] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.178: couldn't read orphan inode 15 (err -117) [ 116.925312][ T6092] FAT-fs (loop4): unable to read boot sector [ 116.944732][ T6094] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 117.218722][ T5232] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 117.305834][ T6086] loop3: detected capacity change from 0 to 32768 [ 117.383185][ T6086] xfs: Unknown parameter 'nobarrier' [ 117.400054][ T6110] capability: warning: `syz.4.181' uses deprecated v2 capabilities in a way that may be insecure [ 117.513336][ T6110] loop4: detected capacity change from 0 to 1024 [ 117.529150][ T6080] loop2: detected capacity change from 0 to 32768 [ 117.640304][ T6080] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 117.704426][ T6129] kmem_cache_sanity_check: name 9p-fcall-cache already exists as a cache [ 118.110076][ T6080] XFS (loop2): Ending clean mount [ 118.174171][ T6150] loop3: detected capacity change from 0 to 2048 [ 118.238734][ T6150] Alternate GPT is invalid, using primary GPT. [ 118.282580][ T6150] loop3: p1 p2 p3 [ 118.424280][ T5236] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 118.701935][ T9] IPVS: starting estimator thread 0... [ 118.771103][ T6165] loop3: detected capacity change from 0 to 512 [ 118.847548][ T6163] IPVS: using max 32 ests per chain, 76800 per kthread [ 118.927119][ T6165] EXT4-fs warning (device loop3): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 118.993805][ T6165] EXT4-fs warning (device loop3): dx_probe:881: Enable large directory feature to access it [ 119.004447][ T6165] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.190: Corrupt directory, running e2fsck is recommended [ 119.022140][ T6165] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 119.032786][ T6165] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.190: corrupted in-inode xattr: invalid ea_ino [ 119.050690][ T6165] EXT4-fs (loop3): Remounting filesystem read-only [ 119.059570][ T6165] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 119.111574][ T6165] EXT4-fs warning (device loop3): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 119.180930][ T6165] EXT4-fs warning (device loop3): dx_probe:881: Enable large directory feature to access it [ 119.229237][ T6165] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.190: Corrupt directory, running e2fsck is recommended [ 119.326474][ T6172] syz.2.189 (6172) used greatest stack depth: 18392 bytes left [ 119.393806][ T6173] gre0: entered allmulticast mode [ 119.413239][ T5230] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 119.472732][ T6174] netlink: 44 bytes leftover after parsing attributes in process `syz.1.193'. [ 119.726674][ T29] audit: type=1326 audit(1723995580.181:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6177 comm="syz.3.195" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4dadd79e79 code=0x0 [ 119.841646][ T6179] netlink: 8 bytes leftover after parsing attributes in process `syz.3.195'. [ 121.093833][ T6189] loop3: detected capacity change from 0 to 512 [ 121.188046][ T6189] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 121.247165][ T6189] EXT4-fs (loop3): invalid journal inode [ 121.252917][ T6189] EXT4-fs (loop3): can't get journal size [ 121.320056][ T6189] EXT4-fs (loop3): 1 truncate cleaned up [ 121.343025][ T6189] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 121.461647][ T6198] loop2: detected capacity change from 0 to 2048 [ 121.523178][ T5230] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 121.537514][ T6198] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 121.660669][ T6204] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check. [ 121.685683][ T6204] loop1: detected capacity change from 0 to 512 [ 121.729852][ T6206] loop3: detected capacity change from 0 to 2048 [ 121.765456][ T6206] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 121.767369][ T6204] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 121.786393][ T6206] UDF-fs: Scanning with blocksize 512 failed [ 121.808708][ T6206] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 121.845789][ T6204] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 121.953160][ T6210] IPVS: sync thread started: state = BACKUP, mcast_ifn = lo, syncid = 0, id = 0 [ 122.013458][ T6211] smb3: Unknown parameter 'acloY' [ 122.112533][ T6213] netlink: 16 bytes leftover after parsing attributes in process `syz.3.206'. [ 122.120237][ T6211] loop1: detected capacity change from 0 to 2048 [ 122.158650][ T6211] EXT4-fs (loop1): can't mount with commit=4049, fs mounted w/o journal [ 122.289116][ T751] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 122.353350][ T751] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 704 with error 28 [ 122.368659][ T751] EXT4-fs (loop2): This should not happen!! Data will be lost [ 122.368659][ T751] [ 122.386188][ T751] EXT4-fs (loop2): Total free blocks count 0 [ 122.392898][ T751] EXT4-fs (loop2): Free/Dirty block details [ 122.400673][ T751] EXT4-fs (loop2): free_blocks=2415919104 [ 122.409764][ T751] EXT4-fs (loop2): dirty_blocks=704 [ 122.415194][ T751] EXT4-fs (loop2): Block reservation details [ 122.422445][ T751] EXT4-fs (loop2): i_reserved_data_blocks=44 [ 122.475151][ T5236] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 122.789603][ T6230] loop1: detected capacity change from 0 to 512 [ 122.841636][ T6230] EXT4-fs (loop1): blocks per group (71) and clusters per group (32768) inconsistent [ 123.654927][ T6234] loop4: detected capacity change from 0 to 512 [ 123.687222][ T6234] EXT4-fs (loop4): blocks per group (95) and clusters per group (32768) inconsistent [ 123.846625][ T6238] loop1: detected capacity change from 0 to 1024 [ 123.865368][ T6238] EXT4-fs: Ignoring removed nomblk_io_submit option [ 123.926978][ T6238] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 124.004807][ T6238] EXT4-fs (loop1): shut down requested (2) [ 124.085467][ T5232] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 124.169903][ T6256] loop3: detected capacity change from 0 to 164 [ 124.247117][ T6256] Unable to read rock-ridge attributes [ 124.258662][ T6262] fuse: Bad value for 'fd' [ 124.818365][ T6284] loop3: detected capacity change from 0 to 512 [ 124.833041][ T6284] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.234: casefold flag without casefold feature [ 124.847942][ T6284] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.234: couldn't read orphan inode 15 (err -117) [ 124.871969][ T6284] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 124.909436][ T6284] EXT4-fs error (device loop3): ext4_add_entry:2435: inode #2: comm syz.3.234: Directory hole found for htree leaf block 0 [ 124.944111][ T6284] EXT4-fs error (device loop3): ext4_add_entry:2435: inode #2: comm syz.3.234: Directory hole found for htree leaf block 0 [ 125.003704][ T5230] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 125.143834][ T6288] loop3: detected capacity change from 0 to 4096 [ 125.154148][ T6288] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 125.215037][ T6288] ntfs3: loop3: ino=1b, "file0" attr_set_size [ 125.225345][ T6281] loop1: detected capacity change from 0 to 40427 [ 125.225756][ T6288] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 125.241547][ T6281] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 125.258838][ T6281] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 125.287034][ T6281] F2FS-fs (loop1): Found nat_bits in checkpoint [ 125.382581][ T6281] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 125.426187][ T6281] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 125.512249][ T6296] loop3: detected capacity change from 0 to 512 [ 125.560930][ T6296] EXT4-fs (loop3): 1 truncate cleaned up [ 125.570274][ T6296] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 125.654700][ T6296] EXT4-fs error (device loop3): ext4_add_entry:2435: inode #2: comm syz.3.236: Directory hole found for htree leaf block 0 [ 125.784444][ T5230] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 128.021921][ T6329] loop3: detected capacity change from 0 to 256 [ 128.180921][ T6332] tipc: Enabling of bearer rejected, failed to enable media [ 128.251439][ T6329] FAT-fs (loop3): Directory bread(block 64) failed [ 128.284878][ T6329] FAT-fs (loop3): Directory bread(block 65) failed [ 128.315823][ T6329] FAT-fs (loop3): Directory bread(block 66) failed [ 128.326554][ T6329] FAT-fs (loop3): Directory bread(block 67) failed [ 128.333178][ T6329] FAT-fs (loop3): Directory bread(block 68) failed [ 128.354244][ T6329] FAT-fs (loop3): Directory bread(block 69) failed [ 128.367171][ T6329] FAT-fs (loop3): Directory bread(block 70) failed [ 128.373979][ T6329] FAT-fs (loop3): Directory bread(block 71) failed [ 128.388422][ T6329] FAT-fs (loop3): Directory bread(block 72) failed [ 128.395316][ T6329] FAT-fs (loop3): Directory bread(block 73) failed [ 129.170111][ T5277] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 129.200962][ T6342] loop0: detected capacity change from 0 to 1024 [ 129.234248][ T6342] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 129.256579][ T5226] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 129.293251][ T6342] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #11: comm syz.0.251: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 129.332614][ T6342] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.251: couldn't read orphan inode 11 (err -117) [ 129.377694][ T6342] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 129.401093][ T5277] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 129.424148][ T5277] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 129.452380][ T5277] usb 5-1: New USB device found, idVendor=06cb, idProduct=81a7, bcdDevice= 0.00 [ 129.473150][ T5277] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 129.487494][ T5226] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 129.508098][ T5226] usb 2-1: config 0 has no interfaces? [ 129.513721][ T5226] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 129.524407][ T5277] usb 5-1: config 0 descriptor?? [ 129.580600][ T5226] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 129.612228][ T5226] usb 2-1: config 0 descriptor?? [ 130.079444][ T6336] loop1: detected capacity change from 0 to 512 [ 130.123212][ T6336] EXT4-fs: Ignoring removed orlov option [ 130.212264][ T6336] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 130.360072][ T6336] EXT4-fs (loop1): orphan cleanup on readonly fs [ 130.399397][ T5277] hid-rmi 0003:06CB:81A7.0004: unknown main item tag 0x0 [ 130.404734][ T5617] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 130.415477][ T5277] hid-rmi 0003:06CB:81A7.0004: unknown main item tag 0x0 [ 130.432884][ T6336] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.239: bg 0: block 248: padding at end of block bitmap is not set [ 130.506847][ T5277] hid-rmi 0003:06CB:81A7.0004: unknown main item tag 0x0 [ 130.513977][ T5277] hid-rmi 0003:06CB:81A7.0004: unknown main item tag 0x0 [ 130.516661][ T6336] Quota error (device loop1): write_blk: dquota write failed [ 130.564380][ T5277] hid-rmi 0003:06CB:81A7.0004: unknown main item tag 0x0 [ 130.567019][ T6336] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 130.607161][ T5277] hid-rmi 0003:06CB:81A7.0004: hidraw0: USB HID v0.00 Device [HID 06cb:81a7] on usb-dummy_hcd.4-1/input0 [ 130.618930][ T6336] EXT4-fs error (device loop1): ext4_acquire_dquot:6848: comm syz.1.239: Failed to acquire dquot type 1 [ 130.679209][ T6336] EXT4-fs (loop1): 1 truncate cleaned up [ 130.707653][ T5277] usb 5-1: USB disconnect, device number 3 [ 130.753804][ T6336] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 131.007805][ T5310] usb 2-1: USB disconnect, device number 6 [ 131.054351][ T6360] loop3: detected capacity change from 0 to 1024 [ 131.106133][ T6360] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 131.158918][ T6360] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #11: comm syz.3.254: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 131.229065][ T6360] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.254: couldn't read orphan inode 11 (err -117) [ 131.273238][ T6360] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 131.639098][ T5232] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 132.258093][ T5230] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 132.526082][ T6380] loop4: detected capacity change from 0 to 512 [ 132.546150][ T6380] EXT4-fs: Ignoring removed mblk_io_submit option [ 132.577851][ T6380] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -13 [ 132.596577][ T6380] EXT4-fs error (device loop4): ext4_clear_blocks:883: inode #13: comm syz.4.261: attempt to clear invalid blocks 2 len 1 [ 132.634939][ T6380] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 132.655757][ T6380] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.261: invalid indirect mapped block 1819239214 (level 0) [ 132.674813][ T6380] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.261: invalid indirect mapped block 1819239214 (level 1) [ 132.702241][ T6380] EXT4-fs (loop4): 1 truncate cleaned up [ 132.717122][ T6380] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 132.747144][ T29] audit: type=1326 audit(1723995593.201:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6379 comm="syz.4.261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42a3379e79 code=0x7ffc0000 [ 132.769512][ T5237] EXT4-fs error (device loop4): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz-executor: bad entry in directory: rec_len % 4 != 0 - offset=108, inode=4294901777, rec_len=65535, size=1024 fake=0 [ 132.773461][ T5237] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz-executor: corrupted in-inode xattr: e_value out of bounds [ 132.812955][ T29] audit: type=1326 audit(1723995593.201:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6379 comm="syz.4.261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42a3379e79 code=0x7ffc0000 [ 132.845183][ T29] audit: type=1326 audit(1723995593.201:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6379 comm="syz.4.261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=127 compat=0 ip=0x7f42a3379e79 code=0x7ffc0000 [ 132.846708][ T5237] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz-executor: corrupted in-inode xattr: e_value out of bounds [ 132.867945][ T29] audit: type=1326 audit(1723995593.201:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6379 comm="syz.4.261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42a3379e79 code=0x7ffc0000 [ 132.867984][ T29] audit: type=1326 audit(1723995593.201:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6379 comm="syz.4.261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42a3379e79 code=0x7ffc0000 [ 133.170180][ T6385] loop2: detected capacity change from 0 to 32768 [ 133.184654][ T6385] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.262 (6385) [ 133.198888][ T1268] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.205197][ T1268] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.247922][ T5237] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 133.276414][ T6385] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 133.312043][ T6385] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 133.344968][ T6385] BTRFS info (device loop2): using free-space-tree [ 133.461238][ T751] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 133.790923][ T751] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 133.981994][ T5236] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 134.881817][ T751] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 135.149010][ T5245] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 135.161045][ T5245] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 135.187042][ T5245] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 135.232200][ T5245] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 135.249757][ T5245] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 135.257472][ T5245] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 135.279548][ T751] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 135.361406][ T6441] kmem_cache_sanity_check: name 9p-fcall-cache already exists as a cache [ 135.402223][ T6438] loop2: detected capacity change from 0 to 764 [ 135.451205][ T6438] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 135.512463][ T6444] netlink: 52 bytes leftover after parsing attributes in process `syz.0.279'. [ 135.820413][ T751] bridge_slave_1: left allmulticast mode [ 135.826105][ T751] bridge_slave_1: left promiscuous mode [ 135.857813][ T751] bridge0: port 2(bridge_slave_1) entered disabled state [ 135.874291][ T751] bridge_slave_0: left allmulticast mode [ 135.883291][ T751] bridge_slave_0: left promiscuous mode [ 135.903662][ T751] bridge0: port 1(bridge_slave_0) entered disabled state [ 136.044629][ T29] audit: type=1326 audit(1723995596.501:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6462 comm="syz.3.282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dadd79e79 code=0x7ffc0000 [ 136.099022][ T29] audit: type=1326 audit(1723995596.501:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6462 comm="syz.3.282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dadd79e79 code=0x7ffc0000 [ 136.165339][ T29] audit: type=1326 audit(1723995596.541:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6462 comm="syz.3.282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4dadd79e79 code=0x7ffc0000 [ 136.232492][ T29] audit: type=1326 audit(1723995596.541:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6462 comm="syz.3.282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dadd79e79 code=0x7ffc0000 [ 136.328223][ T29] audit: type=1326 audit(1723995596.541:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6462 comm="syz.3.282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dadd79e79 code=0x7ffc0000 [ 136.413562][ T29] audit: type=1326 audit(1723995596.541:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6462 comm="syz.3.282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4dadd79e79 code=0x7ffc0000 [ 136.521777][ T29] audit: type=1326 audit(1723995596.541:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6462 comm="syz.3.282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dadd79e79 code=0x7ffc0000 [ 136.604110][ T29] audit: type=1326 audit(1723995596.541:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6462 comm="syz.3.282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4dadd79e79 code=0x7ffc0000 [ 136.674571][ T29] audit: type=1326 audit(1723995596.571:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6462 comm="syz.3.282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dadd79e79 code=0x7ffc0000 [ 136.758575][ T29] audit: type=1326 audit(1723995596.571:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6462 comm="syz.3.282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dadd79e79 code=0x7ffc0000 [ 137.337994][ T5235] Bluetooth: hci4: command tx timeout [ 137.703945][ T6454] loop2: detected capacity change from 0 to 32768 [ 137.855558][ T6454] XFS (loop2): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 137.950117][ T6454] XFS (loop2): Ending clean mount [ 137.976500][ T6454] XFS (loop2): Quotacheck needed: Please wait. [ 138.033581][ T751] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 138.049547][ T6454] XFS (loop2): Quotacheck: Done. [ 138.073350][ T751] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 138.100166][ T751] bond0 (unregistering): Released all slaves [ 138.124981][ T6434] chnl_net:caif_netlink_parms(): no params data found [ 138.352810][ T6502] loop1: detected capacity change from 0 to 512 [ 138.391512][ T5236] XFS (loop2): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 138.437050][ T6502] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.291: corrupted in-inode xattr: bad e_name length [ 138.474553][ T6502] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.291: couldn't read orphan inode 15 (err -117) [ 138.519603][ T6502] EXT4-fs (loop1): mounted filesystem 00000004-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 138.652530][ T6434] bridge0: port 1(bridge_slave_0) entered blocking state [ 138.666607][ T6434] bridge0: port 1(bridge_slave_0) entered disabled state [ 138.696234][ T6434] bridge_slave_0: entered allmulticast mode [ 138.724785][ T6434] bridge_slave_0: entered promiscuous mode [ 138.774390][ T6434] bridge0: port 2(bridge_slave_1) entered blocking state [ 138.774756][ T5232] EXT4-fs (loop1): unmounting filesystem 00000004-0000-0000-0000-000000000000. [ 138.797294][ T6434] bridge0: port 2(bridge_slave_1) entered disabled state [ 138.818728][ T6434] bridge_slave_1: entered allmulticast mode [ 138.825791][ T6434] bridge_slave_1: entered promiscuous mode [ 138.862677][ T6495] loop3: detected capacity change from 0 to 32768 [ 138.989657][ T6495] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 139.323937][ T751] hsr_slave_0: left promiscuous mode [ 139.402931][ T6495] XFS (loop3): Ending clean mount [ 139.416403][ T5235] Bluetooth: hci4: command tx timeout [ 139.428830][ T751] hsr_slave_1: left promiscuous mode [ 139.442360][ T6495] XFS (loop3): Quotacheck needed: Please wait. [ 139.595666][ T6495] XFS (loop3): Quotacheck: Done. [ 139.659744][ T751] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 139.699588][ T751] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 140.352168][ T751] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 140.380733][ T751] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 140.445111][ T5230] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 140.529326][ T751] veth1_macvtap: left promiscuous mode [ 140.534898][ T751] veth0_macvtap: left promiscuous mode [ 140.613212][ T751] veth1_vlan: left promiscuous mode [ 140.632742][ T751] veth0_vlan: left promiscuous mode [ 141.048789][ T29] kauditd_printk_skb: 13 callbacks suppressed [ 141.048804][ T29] audit: type=1326 audit(1723995601.501:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6563 comm="syz.2.303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7dfe779e79 code=0x7ffc0000 [ 141.078082][ T29] audit: type=1326 audit(1723995601.531:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6563 comm="syz.2.303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7dfe779e79 code=0x7ffc0000 [ 141.101601][ T29] audit: type=1326 audit(1723995601.561:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6563 comm="syz.2.303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f7dfe779e79 code=0x7ffc0000 [ 141.127339][ T29] audit: type=1326 audit(1723995601.561:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6563 comm="syz.2.303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7dfe779e79 code=0x7ffc0000 [ 141.159042][ T29] audit: type=1326 audit(1723995601.561:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6563 comm="syz.2.303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7dfe779e79 code=0x7ffc0000 [ 141.190786][ T29] audit: type=1326 audit(1723995601.561:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6563 comm="syz.2.303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f7dfe779e79 code=0x7ffc0000 [ 141.221617][ T29] audit: type=1326 audit(1723995601.561:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6563 comm="syz.2.303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7dfe779e79 code=0x7ffc0000 [ 141.262161][ T29] audit: type=1326 audit(1723995601.561:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6563 comm="syz.2.303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7dfe779e79 code=0x7ffc0000 [ 141.284987][ T29] audit: type=1326 audit(1723995601.581:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6563 comm="syz.2.303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f7dfe779e79 code=0x7ffc0000 [ 141.362296][ T29] audit: type=1326 audit(1723995601.581:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6563 comm="syz.2.303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7dfe779e79 code=0x7ffc0000 [ 141.499117][ T5235] Bluetooth: hci4: command tx timeout [ 141.582346][ T751] team0 (unregistering): Port device team_slave_1 removed [ 141.624964][ T751] team0 (unregistering): Port device team_slave_0 removed [ 142.105484][ T6529] sch_fq: defrate 0 ignored. [ 142.128542][ T6434] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 142.174603][ T6434] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 142.378144][ T6434] team0: Port device team_slave_0 added [ 142.510900][ T6434] team0: Port device team_slave_1 added [ 143.430003][ T6434] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 143.456527][ T6434] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 143.551042][ T6434] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 143.576611][ T5235] Bluetooth: hci4: command tx timeout [ 143.602037][ T6434] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 143.629512][ T6434] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 143.739091][ T6434] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 143.901459][ T6434] hsr_slave_0: entered promiscuous mode [ 143.954840][ T6434] hsr_slave_1: entered promiscuous mode [ 143.985038][ T6434] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 144.007335][ T6434] Cannot create hsr debugfs directory [ 144.134436][ T751] IPVS: stop unused estimator thread 0... [ 145.127741][ T6434] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 145.185819][ T6434] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 145.266686][ T6434] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 145.297888][ T6434] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 145.620476][ T6434] 8021q: adding VLAN 0 to HW filter on device bond0 [ 146.012631][ T6434] 8021q: adding VLAN 0 to HW filter on device team0 [ 146.317649][ T1106] bridge0: port 1(bridge_slave_0) entered blocking state [ 146.324774][ T1106] bridge0: port 1(bridge_slave_0) entered forwarding state [ 146.391650][ T1106] bridge0: port 2(bridge_slave_1) entered blocking state [ 146.398814][ T1106] bridge0: port 2(bridge_slave_1) entered forwarding state [ 146.515952][ T6593] coredump: 210(syz.2.311): interrupted: fatal signal pending [ 146.556489][ T6593] coredump: 210(syz.2.311): written to core: VMAs: 36, size 97423360; core: 45540152 bytes, pos 83046400 [ 146.874703][ T6670] netlink: 16 bytes leftover after parsing attributes in process `syz.1.325'. [ 146.924986][ T6434] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 147.665153][ T6434] veth0_vlan: entered promiscuous mode [ 147.693878][ T6434] veth1_vlan: entered promiscuous mode [ 147.814881][ T6434] veth0_macvtap: entered promiscuous mode [ 147.850629][ T6434] veth1_macvtap: entered promiscuous mode [ 147.894560][ T6434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 147.940144][ T6434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 147.966427][ T6434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 147.986450][ T6434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 148.007155][ T6434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 148.040822][ T6434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 148.069480][ T6434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 148.094265][ T6434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 148.118097][ T6434] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 148.159581][ T6434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 148.206364][ T6434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 148.227100][ T6434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 148.268105][ T6434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 148.326614][ T6434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 148.410678][ T6434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 148.709859][ T6434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 148.985381][ T6434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 149.099084][ T6434] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 149.165329][ T6434] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 149.205038][ T6434] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 149.246692][ T6434] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 149.256181][ T6729] netlink: 16 bytes leftover after parsing attributes in process `syz.0.336'. [ 149.269107][ T6434] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 149.518012][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 149.553273][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 149.658985][ T3352] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 149.674732][ T3352] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 150.735969][ T6787] netlink: 8 bytes leftover after parsing attributes in process `syz.0.348'. [ 150.842285][ T6707] coredump: 215(syz.2.332): interrupted: fatal signal pending [ 150.864360][ T6707] coredump: 215(syz.2.332): written to core: VMAs: 36, size 97423360; core: 43230008 bytes, pos 80752640 [ 151.581968][ T6808] loop2: detected capacity change from 0 to 512 [ 151.723995][ T6808] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 151.764350][ T6818] loop4: detected capacity change from 0 to 256 [ 151.827090][ T6808] ext4 filesystem being mounted at /74/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 151.912735][ T6818] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 151.947986][ T6808] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 152.057068][ T6832] netlink: 8 bytes leftover after parsing attributes in process `syz.1.357'. [ 152.119748][ T6832] netlink: 8 bytes leftover after parsing attributes in process `syz.1.357'. [ 152.388931][ T6840] netlink: 8 bytes leftover after parsing attributes in process `syz.1.359'. [ 152.482784][ T5236] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 152.653733][ T6849] loop1: detected capacity change from 0 to 128 [ 154.319369][ T6874] loop0: detected capacity change from 0 to 1024 [ 154.352632][ T6874] EXT4-fs: Ignoring removed nobh option [ 154.429880][ T6874] EXT4-fs: Ignoring removed nomblk_io_submit option [ 154.545603][ T6874] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 154.620991][ T6886] binder: BINDER_SET_CONTEXT_MGR already set [ 154.627835][ T6886] binder: 6885:6886 ioctl 4018620d 20000040 returned -16 [ 154.906227][ T5617] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 155.054144][ T6892] x_tables: unsorted underflow at hook 3 [ 155.142531][ T6894] netlink: 8 bytes leftover after parsing attributes in process `syz.0.372'. [ 155.437660][ T6868] coredump: 1(syz.2.362): written to core: VMAs: 13, size 14929920; core: 13880669 bytes, pos 14934016 [ 156.836469][ T5275] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 157.057815][ T5275] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 157.084252][ T5275] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 157.118525][ T5275] usb 4-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00 [ 157.138169][ T5275] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 157.159168][ T5275] usb 4-1: config 0 descriptor?? [ 157.176641][ T1851] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 157.380122][ T1851] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 157.400314][ T1851] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 157.421457][ T1851] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 157.446393][ T1851] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 157.467997][ T1851] usb 3-1: config 0 descriptor?? [ 157.608981][ T5275] isku 0003:1E7D:319C.0005: unexpected long global item [ 157.638985][ T5275] isku 0003:1E7D:319C.0005: parse failed [ 157.655043][ T5275] isku 0003:1E7D:319C.0005: probe with driver isku failed with error -22 [ 157.685312][ T1851] usbhid 3-1:0.0: can't add hid device: -71 [ 157.711284][ T1851] usbhid 3-1:0.0: probe with driver usbhid failed with error -71 [ 157.746687][ T1851] usb 3-1: USB disconnect, device number 3 [ 157.924137][ T5277] usb 4-1: USB disconnect, device number 8 [ 158.303259][ T6927] loop0: detected capacity change from 0 to 40427 [ 158.338223][ T6927] F2FS-fs (loop0): invalid crc value [ 158.367154][ T6927] F2FS-fs (loop0): Found nat_bits in checkpoint [ 158.425660][ T6939] loop4: detected capacity change from 0 to 32768 [ 158.472964][ T6927] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 158.509414][ T6939] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 158.673743][ T6939] XFS (loop4): Ending clean mount [ 158.698989][ T6939] XFS (loop4): Quotacheck needed: Please wait. [ 158.765495][ T6939] XFS (loop4): Quotacheck: Done. [ 159.024212][ T6434] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 159.169993][ T6961] loop3: detected capacity change from 0 to 16 [ 159.219723][ T6961] erofs: (device loop3): mounted with root inode @ nid 36. [ 161.057303][ T6985] x_tables: unsorted underflow at hook 3 [ 161.770079][ T6996] loop3: detected capacity change from 0 to 512 [ 161.780496][ T6996] vfat: Unknown parameter '0x0000000000000007FҁZ\҆I~$uqW:' [ 162.763267][ T6999] coredump: 1(syz.1.399): written to core: VMAs: 8, size 12701696; core: 11779094 bytes, pos 12705792 [ 164.153024][ T7015] loop4: detected capacity change from 0 to 256 [ 164.181454][ T7015] FAT-fs (loop4): Directory bread(block 64) failed [ 164.189111][ T7015] FAT-fs (loop4): Directory bread(block 65) failed [ 164.195674][ T7015] FAT-fs (loop4): Directory bread(block 66) failed [ 164.202583][ T7015] FAT-fs (loop4): Directory bread(block 67) failed [ 164.209309][ T7015] FAT-fs (loop4): Directory bread(block 68) failed [ 164.215855][ T7015] FAT-fs (loop4): Directory bread(block 69) failed [ 164.222733][ T7015] FAT-fs (loop4): Directory bread(block 70) failed [ 164.229343][ T7015] FAT-fs (loop4): Directory bread(block 71) failed [ 164.235948][ T7015] FAT-fs (loop4): Directory bread(block 72) failed [ 164.242597][ T7015] FAT-fs (loop4): Directory bread(block 73) failed [ 164.270922][ T7015] syz.4.406: attempt to access beyond end of device [ 164.270922][ T7015] loop4: rw=524288, sector=1768, nr_sectors = 4 limit=256 [ 164.287340][ T7015] syz.4.406: attempt to access beyond end of device [ 164.287340][ T7015] loop4: rw=0, sector=1768, nr_sectors = 4 limit=256 [ 164.305994][ T29] kauditd_printk_skb: 31 callbacks suppressed [ 164.306009][ T29] audit: type=1800 audit(1723995624.771:93): pid=7015 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.406" name="file1" dev="loop4" ino=1048620 res=0 errno=0 [ 164.306026][ T7015] syz.4.406: attempt to access beyond end of device [ 164.306026][ T7015] loop4: rw=0, sector=1768, nr_sectors = 4 limit=256 [ 164.330559][ T6984] coredump: 1(syz.1.390): written to core: VMAs: 16, size 17027072; core: 15978036 bytes, pos 17031168 [ 164.378024][ T7018] syz.4.406: attempt to access beyond end of device [ 164.378024][ T7018] loop4: rw=0, sector=1768, nr_sectors = 4 limit=256 [ 164.440375][ T7018] Buffer I/O error on dev loop4, logical block 442, async page read [ 164.611078][ T5275] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 164.660844][ T5275] hid-generic 0000:0000:0000.0006: hidraw0: HID v0.00 Device [syz0] on syz0 [ 164.710215][ T7028] loop1: detected capacity change from 0 to 1024 [ 164.722648][ T7028] EXT4-fs: Ignoring removed nobh option [ 164.817723][ T7028] EXT4-fs: Ignoring removed nomblk_io_submit option [ 164.986526][ T7028] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 165.092101][ T7038] ------------[ cut here ]------------ [ 165.098150][ T7038] WARNING: CPU: 0 PID: 7038 at include/linux/memcontrol.h:373 folio_memcg+0x111/0x220 [ 165.108180][ T7038] Modules linked in: [ 165.112120][ T7038] CPU: 0 UID: 0 PID: 7038 Comm: syz.4.415 Not tainted 6.11.0-rc3-next-20240816-syzkaller #0 [ 165.122628][ T7038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 165.132828][ T7038] RIP: 0010:folio_memcg+0x111/0x220 [ 165.138097][ T7038] Code: 10 48 89 d8 48 c1 e8 03 42 80 3c 20 00 74 08 48 89 df e8 e2 2f f8 ff 48 8b 1b 48 89 d8 5b 41 5c 41 5e 41 5f c3 cc cc cc cc 90 <0f> 0b 90 eb ce 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 55 ff ff ff [ 165.157948][ T7038] RSP: 0018:ffffc9000358ef40 EFLAGS: 00010246 [ 165.164131][ T7038] RAX: 0000000000000000 RBX: ffff88807bb3dc80 RCX: 0000000080000000 [ 165.172347][ T7038] RDX: 0000000000000000 RSI: ffffffff8c0adfc0 RDI: ffffffff8c60a8c0 [ 165.180930][ T7038] RBP: ffffea0001688008 R08: ffffffff9018c5af R09: 1ffffffff20318b5 [ 165.189021][ T7038] R10: dffffc0000000000 R11: fffffbfff20318b6 R12: dffffc0000000000 [ 165.197258][ T7038] R13: 0000000004000108 R14: ffffea0001688000 R15: ffffea0001688030 [ 165.205253][ T7038] FS: 00007f1bbd2af6c0(0000) GS:ffff8880b9000000(0000) knlGS:0000000000000000 [ 165.214697][ T7038] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 165.221866][ T7038] CR2: 0000000000000000 CR3: 0000000025a8a000 CR4: 00000000003506f0 [ 165.229986][ T7038] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 165.238143][ T7038] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 165.246149][ T7038] Call Trace: [ 165.249604][ T7038] [ 165.252562][ T7038] ? __warn+0x163/0x4e0 [ 165.256947][ T7038] ? folio_memcg+0x111/0x220 [ 165.261609][ T7038] ? report_bug+0x2b3/0x500 [ 165.266135][ T7038] ? folio_memcg+0x111/0x220 [ 165.270905][ T7038] ? handle_bug+0x60/0x90 [ 165.275271][ T7038] ? exc_invalid_op+0x1a/0x50 [ 165.280050][ T7038] ? asm_exc_invalid_op+0x1a/0x20 [ 165.285109][ T7038] ? folio_memcg+0x111/0x220 [ 165.289792][ T7038] split_page_memcg+0x58/0x3f0 [ 165.294585][ T7038] ? split_page+0x205/0x230 [ 165.299160][ T7038] __vmalloc_node_range_noprof+0xa63/0x1400 [ 165.305111][ T7038] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 165.311889][ T7038] ? rcu_is_watching+0x15/0xb0 [ 165.317070][ T7038] ? trace_kmalloc+0x1f/0xd0 [ 165.321694][ T7038] ? __kmalloc_node_noprof+0x247/0x440 [ 165.327251][ T7038] ? __kvmalloc_node_noprof+0x72/0x1b0 [ 165.329977][ T7047] netlink: 'syz.4.415': attribute type 1 has an invalid length. [ 165.332728][ T7038] __kvmalloc_node_noprof+0x142/0x1b0 [ 165.346100][ T7038] ? nf_tables_newset+0x1743/0x2ea0 [ 165.351476][ T7038] nf_tables_newset+0x1743/0x2ea0 [ 165.356656][ T7038] ? __pfx_nf_tables_newset+0x10/0x10 [ 165.362238][ T7038] ? __nla_parse+0x40/0x60 [ 165.366855][ T7038] nfnetlink_rcv+0x14dc/0x2ad0 [ 165.371680][ T7038] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 165.376945][ T7038] ? netlink_deliver_tap+0x2e/0x1b0 [ 165.382174][ T7038] ? skb_clone+0x240/0x390 [ 165.386680][ T7038] ? __pfx_lock_release+0x10/0x10 [ 165.391740][ T7038] ? netlink_deliver_tap+0x2e/0x1b0 [ 165.397045][ T7038] netlink_unicast+0x7f6/0x990 [ 165.401855][ T7038] ? __pfx_netlink_unicast+0x10/0x10 [ 165.407234][ T7038] ? __virt_addr_valid+0x183/0x530 [ 165.412725][ T7038] ? __check_object_size+0x49c/0x900 [ 165.418612][ T7038] ? bpf_lsm_netlink_send+0x9/0x10 [ 165.423777][ T7038] netlink_sendmsg+0x8e4/0xcb0 [ 165.428641][ T7038] ? __pfx_netlink_sendmsg+0x10/0x10 [ 165.433963][ T7038] ? __import_iovec+0x536/0x820 [ 165.438899][ T7038] ? aa_sock_msg_perm+0x91/0x160 [ 165.443870][ T7038] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 165.449225][ T7038] ? security_socket_sendmsg+0x87/0xb0 [ 165.454715][ T7038] ? __pfx_netlink_sendmsg+0x10/0x10 [ 165.460096][ T7038] __sock_sendmsg+0x221/0x270 [ 165.464810][ T7038] ____sys_sendmsg+0x525/0x7d0 [ 165.469900][ T7038] ? __pfx_____sys_sendmsg+0x10/0x10 [ 165.475400][ T7038] __sys_sendmsg+0x298/0x390 [ 165.480062][ T7038] ? __pfx___sys_sendmsg+0x10/0x10 [ 165.485255][ T7038] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 165.491674][ T7038] ? do_syscall_64+0x100/0x230 [ 165.496524][ T7038] ? do_syscall_64+0xb6/0x230 [ 165.501318][ T7038] do_syscall_64+0xf3/0x230 [ 165.505849][ T7038] ? clear_bhb_loop+0x35/0x90 [ 165.510619][ T7038] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.517384][ T7038] RIP: 0033:0x7f1bbc579e79 [ 165.521837][ T7038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 165.541932][ T7038] RSP: 002b:00007f1bbd2af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 165.550460][ T7038] RAX: ffffffffffffffda RBX: 00007f1bbc715f80 RCX: 00007f1bbc579e79 [ 165.558512][ T7038] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000004 [ 165.566569][ T7038] RBP: 00007f1bbc5e7916 R08: 0000000000000000 R09: 0000000000000000 [ 165.574561][ T7038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 165.582675][ T7038] R13: 0000000000000000 R14: 00007f1bbc715f80 R15: 00007ffd67f8c3d8 [ 165.590725][ T7038] [ 165.593758][ T7038] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 165.601032][ T7038] CPU: 0 UID: 0 PID: 7038 Comm: syz.4.415 Not tainted 6.11.0-rc3-next-20240816-syzkaller #0 [ 165.611265][ T7038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 165.621327][ T7038] Call Trace: [ 165.624643][ T7038] [ 165.627579][ T7038] dump_stack_lvl+0x241/0x360 [ 165.632267][ T7038] ? __pfx_dump_stack_lvl+0x10/0x10 [ 165.637550][ T7038] ? __pfx__printk+0x10/0x10 [ 165.642140][ T7038] ? vscnprintf+0x5d/0x90 [ 165.646460][ T7038] panic+0x349/0x870 [ 165.650357][ T7038] ? __warn+0x172/0x4e0 [ 165.654504][ T7038] ? __pfx_panic+0x10/0x10 [ 165.659024][ T7038] __warn+0x346/0x4e0 [ 165.662997][ T7038] ? folio_memcg+0x111/0x220 [ 165.667582][ T7038] report_bug+0x2b3/0x500 [ 165.671910][ T7038] ? folio_memcg+0x111/0x220 [ 165.676493][ T7038] handle_bug+0x60/0x90 [ 165.680646][ T7038] exc_invalid_op+0x1a/0x50 [ 165.685145][ T7038] asm_exc_invalid_op+0x1a/0x20 [ 165.689988][ T7038] RIP: 0010:folio_memcg+0x111/0x220 [ 165.695176][ T7038] Code: 10 48 89 d8 48 c1 e8 03 42 80 3c 20 00 74 08 48 89 df e8 e2 2f f8 ff 48 8b 1b 48 89 d8 5b 41 5c 41 5e 41 5f c3 cc cc cc cc 90 <0f> 0b 90 eb ce 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 55 ff ff ff [ 165.714801][ T7038] RSP: 0018:ffffc9000358ef40 EFLAGS: 00010246 [ 165.720872][ T7038] RAX: 0000000000000000 RBX: ffff88807bb3dc80 RCX: 0000000080000000 [ 165.728839][ T7038] RDX: 0000000000000000 RSI: ffffffff8c0adfc0 RDI: ffffffff8c60a8c0 [ 165.736807][ T7038] RBP: ffffea0001688008 R08: ffffffff9018c5af R09: 1ffffffff20318b5 [ 165.744768][ T7038] R10: dffffc0000000000 R11: fffffbfff20318b6 R12: dffffc0000000000 [ 165.752766][ T7038] R13: 0000000004000108 R14: ffffea0001688000 R15: ffffea0001688030 [ 165.760780][ T7038] split_page_memcg+0x58/0x3f0 [ 165.765562][ T7038] ? split_page+0x205/0x230 [ 165.770063][ T7038] __vmalloc_node_range_noprof+0xa63/0x1400 [ 165.776226][ T7038] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 165.782544][ T7038] ? rcu_is_watching+0x15/0xb0 [ 165.787316][ T7038] ? trace_kmalloc+0x1f/0xd0 [ 165.791897][ T7038] ? __kmalloc_node_noprof+0x247/0x440 [ 165.797349][ T7038] ? __kvmalloc_node_noprof+0x72/0x1b0 [ 165.802799][ T7038] __kvmalloc_node_noprof+0x142/0x1b0 [ 165.808160][ T7038] ? nf_tables_newset+0x1743/0x2ea0 [ 165.813350][ T7038] nf_tables_newset+0x1743/0x2ea0 [ 165.818381][ T7038] ? __pfx_nf_tables_newset+0x10/0x10 [ 165.823761][ T7038] ? __nla_parse+0x40/0x60 [ 165.828176][ T7038] nfnetlink_rcv+0x14dc/0x2ad0 [ 165.832956][ T7038] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 165.838095][ T7038] ? netlink_deliver_tap+0x2e/0x1b0 [ 165.843296][ T7038] ? skb_clone+0x240/0x390 [ 165.847702][ T7038] ? __pfx_lock_release+0x10/0x10 [ 165.852731][ T7038] ? netlink_deliver_tap+0x2e/0x1b0 [ 165.857923][ T7038] netlink_unicast+0x7f6/0x990 [ 165.862683][ T7038] ? __pfx_netlink_unicast+0x10/0x10 [ 165.867958][ T7038] ? __virt_addr_valid+0x183/0x530 [ 165.873061][ T7038] ? __check_object_size+0x49c/0x900 [ 165.878340][ T7038] ? bpf_lsm_netlink_send+0x9/0x10 [ 165.883448][ T7038] netlink_sendmsg+0x8e4/0xcb0 [ 165.888213][ T7038] ? __pfx_netlink_sendmsg+0x10/0x10 [ 165.893583][ T7038] ? __import_iovec+0x536/0x820 [ 165.898432][ T7038] ? aa_sock_msg_perm+0x91/0x160 [ 165.903364][ T7038] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 165.908645][ T7038] ? security_socket_sendmsg+0x87/0xb0 [ 165.914095][ T7038] ? __pfx_netlink_sendmsg+0x10/0x10 [ 165.919372][ T7038] __sock_sendmsg+0x221/0x270 [ 165.924045][ T7038] ____sys_sendmsg+0x525/0x7d0 [ 165.928812][ T7038] ? __pfx_____sys_sendmsg+0x10/0x10 [ 165.934110][ T7038] __sys_sendmsg+0x298/0x390 [ 165.938693][ T7038] ? __pfx___sys_sendmsg+0x10/0x10 [ 165.943820][ T7038] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 165.950144][ T7038] ? do_syscall_64+0x100/0x230 [ 165.954904][ T7038] ? do_syscall_64+0xb6/0x230 [ 165.959575][ T7038] do_syscall_64+0xf3/0x230 [ 165.964080][ T7038] ? clear_bhb_loop+0x35/0x90 [ 165.968749][ T7038] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.974635][ T7038] RIP: 0033:0x7f1bbc579e79 [ 165.979038][ T7038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 165.998632][ T7038] RSP: 002b:00007f1bbd2af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 166.007035][ T7038] RAX: ffffffffffffffda RBX: 00007f1bbc715f80 RCX: 00007f1bbc579e79 [ 166.015083][ T7038] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000004 [ 166.023130][ T7038] RBP: 00007f1bbc5e7916 R08: 0000000000000000 R09: 0000000000000000 [ 166.031105][ T7038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 166.039078][ T7038] R13: 0000000000000000 R14: 00007f1bbc715f80 R15: 00007ffd67f8c3d8 [ 166.047058][ T7038] [ 166.050376][ T7038] Kernel Offset: disabled [ 166.054766][ T7038] Rebooting in 86400 seconds..