last executing test programs: 13.583863435s ago: executing program 1 (id=197): socket$kcm(0x10, 0x2, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) sendmsg$inet6(r0, &(0x7f00000000c0)={&(0x7f00000001c0)={0xa, 0x4e23, 0x80000, @private1={0xfc, 0x1, '\x00', 0x1}}, 0x1c, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="120000000000000029000000", @ANYRES16=r0], 0x18}, 0x40c0) 13.508394412s ago: executing program 1 (id=199): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x64}}, 0x20008040) sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x28, 0x3, 0x6, 0x3, 0x0, 0x0, {0x3, 0x0, 0x1}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x14080) 13.387893393s ago: executing program 1 (id=200): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000380)={r0, r0}, 0x4) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={0xffffffffffffffff, 0x0, 0xe, 0x0, &(0x7f0000000040)="f4b84de4115d64244a0e839e9900", 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 13.351840452s ago: executing program 1 (id=201): socket$alg(0x26, 0x5, 0x0) mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x20048010) mount$bpf(0x200000000000, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x989046, 0x0) mount$bpf(0x0, &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x100000, 0x0) mount$bpf(0x200000000000, &(0x7f0000000000)='.\x00', 0x0, 0x8b7848, 0x0) mount$bpf(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x84000, 0x0) mount$bpf(0x200000002000, &(0x7f0000000100)='./file0/../file0\x00', 0x0, 0x80000, 0x0) 13.200432055s ago: executing program 1 (id=203): r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmsg$inet6(r0, &(0x7f0000000000)={&(0x7f00000000c0)={0xa, 0x4e1e, 0x951, @local, 0x80000000}, 0x1c, 0x0, 0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="280000000000000029000000050000000002020100000000000000000000000072"], 0x28}, 0x0) 12.803901294s ago: executing program 1 (id=210): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x10, 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="911039000000000095"], &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94) 12.49627159s ago: executing program 32 (id=210): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x10, 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="911039000000000095"], &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94) 4.965836555s ago: executing program 3 (id=275): write$tcp_mem(0xffffffffffffffff, 0x0, 0x0) r0 = openat$binfmt_format(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/fs/binfmt_misc/syz0\x00', 0x2, 0x0) write$binfmt_format(r0, 0x0, 0x0) 4.742761676s ago: executing program 3 (id=279): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendto$inet(0xffffffffffffffff, &(0x7f00000000c0)="8689d46205a34100ff2bbe11a5ce7879edaf02afe39ead95913e9c4f8cf31440006769ebdf12cfacae8e8c03f5db079da7d9", 0x32, 0x20000000, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text16={0x10, 0x0}], 0x1, 0x31, 0x0, 0x0) r3 = dup(r2) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000)=@x86={0x3, 0x1, 0xfb, 0x0, 0x10005, 0x5, 0x3, 0xd4, 0x7, 0x2, 0x4, 0x1, 0x0, 0x7, 0x3, 0xd6, 0x2, 0x9, 0x7, '\x00', 0x8, 0x1}) r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x72, 0x0, 0x7fff0000}]}) close_range(r4, 0xffffffffffffffff, 0x0) 4.178065889s ago: executing program 3 (id=282): delete_module(&(0x7f0000000040)='\'%\'\'}{\x00', 0xa00) 4.041563848s ago: executing program 2 (id=284): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000240)={0x2, &(0x7f0000000400)=[{0x28, 0xff, 0x0, 0xfffff008}, {0x6, 0x3, 0x44, 0x3}]}, 0x10) syz_emit_ethernet(0x0, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) r2 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r2) getsockname$packet(r2, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14) sendmsg$nl_route(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000100)=@newlink={0x38, 0x10, 0x437, 0x0, 0x4, {0x0, 0x0, 0x0, r3, 0x50483}, [@IFLA_LINKINFO={0x10, 0x12, 0x0, 0x1, @sit={{0x8}, {0x4}}}, @IFLA_CARRIER={0x5, 0x21, 0x4}]}, 0x38}}, 0x4000000) sendmmsg$inet(r1, &(0x7f0000000880)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r3, @empty, @multicast1}}}], 0x20}}], 0x1, 0x4880) 3.880509311s ago: executing program 3 (id=286): bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000a40)={@cgroup, 0xffffffffffffffff, 0x9, 0x2020}, 0x20) 3.542696537s ago: executing program 3 (id=289): mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x4) fcntl$setstatus(r0, 0x4, 0x42000) read$FUSE(r0, &(0x7f0000006100)={0x2020}, 0x2020) r1 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1) r2 = syz_io_uring_setup(0x112, &(0x7f00000002c0)={0x0, 0xf59b, 0x10000, 0x10003, 0x65, 0x0, r1}, &(0x7f0000000140)=0x0, &(0x7f0000000280)) eventfd2(0x9, 0x800) r4 = socket$packet(0x11, 0x3, 0x300) r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r5, 0x0) ftruncate(r5, 0xc17a) setsockopt$packet_int(r4, 0x107, 0xa, 0x0, 0x0) setsockopt$packet_rx_ring(r4, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7ff, 0xf83, 0x3}, 0x1c) bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) sendmsg$IPCTNL_MSG_CT_DELETE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="24000000000000000000009400000000050000060800084002000053040019800400"], 0x24}, 0x1, 0x0, 0x0, 0x50}, 0x4840) syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0x200, 0x0, 0x4) syz_open_procfs(0x0, &(0x7f0000000140)='net/tcp6\x00') listen(0xffffffffffffffff, 0x0) mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000480), 0x0, &(0x7f0000002240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2]) r6 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x103041, 0x0) writev(r6, &(0x7f0000000000)=[{&(0x7f0000000cc0)="e1", 0x10113}], 0x1) 3.542464426s ago: executing program 2 (id=290): mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x28100, 0x0) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) accept4(0xffffffffffffffff, 0x0, 0x0, 0x80000) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000440)={[0xfff, 0x100000000, 0x0, 0x8ed5, 0x100000, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0x7, 0x0, 0x5, 0x0, 0x2, 0xffffffffffffffff], 0x0, 0x200}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 3.327898443s ago: executing program 0 (id=292): unshare(0x22020400) r0 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x1, 0x88) pidfd_send_signal(r1, 0xc, 0x0, 0x0) 3.209884461s ago: executing program 3 (id=293): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x3000001, 0x11, r0, 0x0) mremap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x4000, 0x3, &(0x7f0000001000/0x4000)=nil) bind$unix(0xffffffffffffffff, 0x0, 0x0) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) 3.079027504s ago: executing program 0 (id=294): bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x6, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000c30400ff0000000095"], 0x0, 0x4}, 0x94) r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="02000000040000000800170001"], 0x48) bpf$MAP_LOOKUP_ELEM(0x5, &(0x7f00000000c0)={r0, &(0x7f0000000000), &(0x7f0000000040)=""/73}, 0x70) 2.716046372s ago: executing program 0 (id=295): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='attr\x00') exit(0xfffffffffffffffb) fchdir(r0) r1 = socket$unix(0x1, 0x1, 0x0) bind$unix(r1, &(0x7f00000001c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x56) 2.269544441s ago: executing program 2 (id=297): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x121e, &(0x7f0000001b00)="$eJzs3M9rHGUYB/AnaU2b1PxQa7UF8UUvehmSHLzoJUgK0gWlbYRWEKZmokvG3ZBZAiti9eTVv8KDCCJ4E8SbXnLxPxC85eKxgvhKd9PUNImiqBvC53PZd3jf7+zzsMvAu+zMzkufvLu+1hRrZS/Gx8ZifCMi3UmRYjzu+TCef/G775+6duPmlaVWa/lqSpeXri+8kFKaefqbN97//Jlve+de/2rm6zOxPffmzs+LP21f2L6489v1d9pNajep0+2lMt3qdnvlrbpKq+1mvUjptboqmyq1O021uW9+re5ubPRT2VmdntrYrJomlZ1+Wq/6qddNvc1+Kt8u251UFEWangr2TOw7OnX0wtN7o5XP7uScI3J+KCYi55xnIuJcPBzTMROzMRePxKPxWJyPx+NCPBFPxpc/ftG/mwAAAAAAAAAAAAAAAAAAAAD+PQ/e/z8ZU396///FwapRVw0AAAAAAAAAAAAAAAAAAAAny7UbN68stVrLV1M6G1F/vLWytTJ8Hc4vrUU76qhiPmbj14j8ad4VgycBXH6ltTyfBubio/r2bv721sqp/fmFweMEIueD+YVhPu3PT94rcZhfjNk4Pzg+kF88NH82nnv2D+9fxGz88FZ0o47VwUnu5z9YSOnlV1sP5C8N1gEAAMBJUKQ9h+7fi+Ko+WH+wO8Dh+zv5w/Zn9/NXjo90taJiKb/3npZ19WmwbEfTIy2jF9yzn+xZvLEfqOO7utMRPzjM49FxPFo8MBg9wIxPuILFP+p+x/6qCsBAAAAAAAAAADg7/g//k446h4BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4Hd24FgAAAAAQJi/dRodGwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPBVAAAA//+WM814") ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000543000/0x18000)=nil, &(0x7f0000000280)=[@text16={0x10, &(0x7f0000000080)="660ff92f0f32670fc731268ba3a308ba42000f01c80fc7b60070f30f5db696000f06baf80c66b86e7c4a8966efbafc0cb8e8eaef", 0x34}], 0x1, 0x5a48be492b680f45, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) 1.968006866s ago: executing program 4 (id=298): socket$nl_route(0x10, 0x3, 0x0) r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x410000, 0x100000001, 0x210000, 0x1, 0x20a}, 0x1c) socket(0x10, 0x803, 0x0) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ff5000/0x2000)=nil, 0x0}, 0x68) eventfd2(0x9, 0x800) r1 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000100)={0x0, 0x4}, 0x8) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0) r2 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0xc1}) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="16"], 0x50) io_uring_enter(r2, 0x2219, 0x7721, 0x16, 0x0, 0x20) 1.71619987s ago: executing program 0 (id=299): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0xe0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) 1.552064554s ago: executing program 4 (id=300): r0 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000380)={r0, r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0xc, 0x11, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x8d80}, [@call={0x85, 0x0, 0x0, 0x18}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}]}, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xb, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x0, 0xe, 0x0, &(0x7f0000000040)="f4b84de4115d64244a0e839e9900", 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 1.383925765s ago: executing program 0 (id=301): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x6, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x7}, 0x1c) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) setfsgid(0xee00) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x488c4}, 0x4c800) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000340)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x46, 0x6, 0x3, 0xad, 0x2, 0x0, 0xfffffff8, 0x173, 0x40, 0xa3, 0x6, 0xf, 0x38, 0x2, 0xfffb, 0x6, 0xab}, [{0x5, 0x3, 0x2, 0x101, 0x9, 0x0, 0x2, 0x1}, {0x5, 0x0, 0x1, 0x8, 0x0, 0xfffffffffffffffc, 0x1ff, 0x7}], "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", ['\x00', '\x00', '\x00', '\x00']}, 0x14b0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0xfd8b, 0x5}) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_percpu\x00', 0x275a, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) fcntl$lock(r2, 0x6, &(0x7f0000000000)={0x0, 0x0, 0x8}) fcntl$lock(r2, 0x26, &(0x7f0000000280)={0x1, 0x0, 0x73f0, 0x9}) fcntl$lock(r2, 0x7, &(0x7f0000000140)={0x1, 0x1, 0x7, 0x5}) fcntl$lock(r2, 0x26, &(0x7f00000000c0)={0x1, 0x2, 0x2, 0x73e9}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}, 0x106}, 0x1c) 1.372103367s ago: executing program 2 (id=302): socket$packet(0x11, 0x2, 0x300) unshare(0x28000600) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='oom_score_adj\x00') pread64(r0, &(0x7f00000001c0)=""/4096, 0x1000, 0x0) 1.304105351s ago: executing program 4 (id=303): r0 = fsopen(&(0x7f00000003c0)='proc\x00', 0x1) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x0, 0xa) fchdir(r1) chroot(&(0x7f0000000300)='.\x00') openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/warn_count', 0x24242, 0x4) 872.439128ms ago: executing program 4 (id=304): mkdirat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x1c0) lseek(0xffffffffffffffff, 0x5, 0x4) r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', 0x0}) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0x12, 0x5, 0x4, 0x3}, 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r3, 0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000000140)=r2}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x1e, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000640)={r5, r1, 0x25, 0x0, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6fc}}, 0x40) syz_emit_ethernet(0xbc1, &(0x7f0000001780)={@local, @empty, @val={@val={0x88a8, 0x5, 0x0, 0x4}, {0x8100, 0x7, 0x1, 0x4}}, {@ipv6={0x86dd, @gre_packet={0x9, 0x6, "896df4", 0xb83, 0x2f, 0xff, @private0, @private0={0xfc, 0x0, '\x00', 0x1}, {[], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, {0x1, 0x0, 0x1}, {0x1, 0x0, 0x0, 0x1}, {0x8, 0x88be, 0x1, {{0x4, 0x1, 0xfb, 0x0, 0x0, 0x3, 0x0, 0x4}, 0x1, {0x3}}}, {0x8, 0x22eb, 0x4, {{0x1, 0x2, 0x8, 0x1, 0x0, 0x0, 0x7, 0x4}, 0x2, {0x3, 0x0, 0x0, 0x1a, 0x1, 0x1, 0x3, 0x1}}}, {0x8, 0x6558, 0x1, "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"}}}}}}}, 0x0) 816.825854ms ago: executing program 2 (id=305): syz_mount_image$msdos(&(0x7f0000000080), &(0x7f0000000a80)='./file2\x00', 0x2800810, &(0x7f00000025c0)=ANY=[@ANYBLOB="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"], 0x3, 0x15d, &(0x7f0000000f00)="$eJzs27+KE1EUB+AzJmrUJrVYDNhYBbWyVCSCOKAoKbRSiDaJBEwzWgWfxNaHEyRVCuGKzpLshoRl/8zO7ub7mhz4ccM9xZ3LGZj3dz6PhpPpp8mreXSyLNqPI49FFt24Eq2ozAIAuEwWKcXvlFK6PosbPyKl1PSOAIC6uf8BYPccev8/amhjAEBtzP8AsHvevH334klR9F/neSfi16wclIPqt8qfPS/69/P/uqtV87IctJb5gyrPD+ZX4+Ze/nBjfi3u3a3yf9nTl8VafiuG9bcPAAAAO6GXL22c73u9bXlV7Xs/sDa/t+N2+8zaAACOYPr12+jDePzxi0JxQYs/KaVjLP/+szoC56SL0y2yiDjZ/zT9ZALqtjr0Te8EAAAAAAAAAAAAAADYpt6vkVpNtwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAb/Q0AAP//LjxONw==") truncate(&(0x7f0000000000)='./file2\x00', 0x2328) r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x2, 0x7fff7ffc}]}) r1 = getpid() r2 = syz_pidfd_open(r1, 0x0) setns(r2, 0x24020000) umount2(&(0x7f0000000040)='.\x00', 0x2) close_range(r0, 0xffffffffffffffff, 0x200000000000000) 542.515217ms ago: executing program 4 (id=306): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CAP_DIRTY_LOG_RING(r1, 0x4068aea3, &(0x7f0000000080)={0xc0, 0x0, 0x2000}) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000580)={0x1ff, 0x1, 0x0, 0x1000, &(0x7f0000456000/0x1000)=nil}) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000040)={0x1, 0x0, [{0x4b564d02, 0xec000000, 0xcd}]}) 95.592668ms ago: executing program 2 (id=307): mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x3000003, 0x204031, 0xffffffffffffffff, 0xffffd000) io_setup(0x24400000, &(0x7f0000000080)) madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x19) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ff4000/0xa000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f000068c000/0xc000)=nil, &(0x7f0000817000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0) io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0xc1}) madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x15) 95.379606ms ago: executing program 4 (id=308): r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) write(r0, &(0x7f0000000040)="f545a88045dbc75354932c2027943ff7cafbdb4553c08962fc521ecca30d4a04af6209038e55ace186359bcc5a9e8ffebb8b9a0a8e0bca98aed7b56800facf7b16b41e0b8a7230cd6e195153866bfba808f53065725d38c0b09be4e08d6c26ae5a9b4fa6d6e72030d6d9a84444c9c7080ef669b513c1a65fb01cf575ce394016b8cc7866d316b818ca95673bb6c8e45516b3baa0aa4106d7f28823b727e5736189d6633e2b9b40f5", 0xa8) 0s ago: executing program 0 (id=309): futex(&(0x7f0000001c80)=0x2, 0xd, 0x2, 0x0, 0x0, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.40' (ED25519) to the list of known hosts. [ 82.741002][ T5821] cgroup: Unknown subsys name 'net' [ 82.838757][ T5821] cgroup: Unknown subsys name 'cpuset' [ 82.847758][ T5821] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 84.506530][ T5821] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 86.831874][ T5837] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 86.843250][ T5843] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 86.853412][ T5837] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 86.861144][ T5843] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 86.869560][ T5843] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 86.876817][ T5837] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 86.885930][ T5837] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 86.894167][ T5843] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 86.902161][ T5843] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 86.911069][ T5844] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 86.929706][ T5152] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 86.938170][ T5152] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 86.947592][ T5152] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 86.956739][ T5152] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 86.967154][ T5152] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 86.986317][ T5837] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 86.998732][ T5837] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 87.006874][ T5837] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 87.021589][ T5837] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 87.032093][ T5837] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 87.068409][ T5844] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 87.077690][ T5844] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 87.087328][ T5844] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 87.101646][ T5844] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 87.110159][ T5844] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 87.847747][ T5835] chnl_net:caif_netlink_parms(): no params data found [ 87.898247][ T5846] chnl_net:caif_netlink_parms(): no params data found [ 88.052366][ T5847] chnl_net:caif_netlink_parms(): no params data found [ 88.156624][ T5853] chnl_net:caif_netlink_parms(): no params data found [ 88.217836][ T5836] chnl_net:caif_netlink_parms(): no params data found [ 88.266431][ T5835] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.274454][ T5835] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.282059][ T5835] bridge_slave_0: entered allmulticast mode [ 88.290057][ T5835] bridge_slave_0: entered promiscuous mode [ 88.349569][ T5835] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.356966][ T5835] bridge0: port 2(bridge_slave_1) entered disabled state [ 88.364162][ T5835] bridge_slave_1: entered allmulticast mode [ 88.372105][ T5835] bridge_slave_1: entered promiscuous mode [ 88.479188][ T5847] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.487491][ T5847] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.494872][ T5847] bridge_slave_0: entered allmulticast mode [ 88.502610][ T5847] bridge_slave_0: entered promiscuous mode [ 88.523707][ T5846] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.531074][ T5846] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.538508][ T5846] bridge_slave_0: entered allmulticast mode [ 88.546493][ T5846] bridge_slave_0: entered promiscuous mode [ 88.583691][ T5847] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.591087][ T5847] bridge0: port 2(bridge_slave_1) entered disabled state [ 88.598781][ T5847] bridge_slave_1: entered allmulticast mode [ 88.607016][ T5847] bridge_slave_1: entered promiscuous mode [ 88.619681][ T5835] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 88.629107][ T5846] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.636924][ T5846] bridge0: port 2(bridge_slave_1) entered disabled state [ 88.644118][ T5846] bridge_slave_1: entered allmulticast mode [ 88.652139][ T5846] bridge_slave_1: entered promiscuous mode [ 88.697488][ T5835] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 88.728261][ T5853] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.735795][ T5853] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.743008][ T5853] bridge_slave_0: entered allmulticast mode [ 88.751027][ T5853] bridge_slave_0: entered promiscuous mode [ 88.815791][ T5853] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.823125][ T5853] bridge0: port 2(bridge_slave_1) entered disabled state [ 88.830696][ T5853] bridge_slave_1: entered allmulticast mode [ 88.838809][ T5853] bridge_slave_1: entered promiscuous mode [ 88.850109][ T5847] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 88.878981][ T5846] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 88.902364][ T5836] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.909819][ T5836] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.917131][ T5836] bridge_slave_0: entered allmulticast mode [ 88.925020][ T5836] bridge_slave_0: entered promiscuous mode [ 88.950297][ T5847] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 88.962475][ T5835] team0: Port device team_slave_0 added [ 88.972337][ T5846] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 88.985192][ T5837] Bluetooth: hci1: command tx timeout [ 88.990960][ T5844] Bluetooth: hci0: command tx timeout [ 89.006501][ T5836] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.013810][ T5836] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.021312][ T5836] bridge_slave_1: entered allmulticast mode [ 89.029160][ T5836] bridge_slave_1: entered promiscuous mode [ 89.055149][ T5844] Bluetooth: hci3: command tx timeout [ 89.061007][ T5837] Bluetooth: hci2: command tx timeout [ 89.075354][ T5835] team0: Port device team_slave_1 added [ 89.113630][ T5853] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 89.134937][ T5837] Bluetooth: hci4: command tx timeout [ 89.161083][ T5846] team0: Port device team_slave_0 added [ 89.184004][ T5853] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 89.196673][ T5847] team0: Port device team_slave_0 added [ 89.218963][ T5846] team0: Port device team_slave_1 added [ 89.243956][ T5836] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 89.269355][ T5847] team0: Port device team_slave_1 added [ 89.276882][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 89.283824][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 89.311064][ T5835] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 89.342657][ T5836] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 89.379822][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 89.386857][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 89.412823][ T5835] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 89.426065][ T5846] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 89.433011][ T5846] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 89.458988][ T5846] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 89.487043][ T5853] team0: Port device team_slave_0 added [ 89.518770][ T5846] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 89.525833][ T5846] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 89.552059][ T5846] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 89.579338][ T5853] team0: Port device team_slave_1 added [ 89.602460][ T5847] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 89.609627][ T5847] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 89.635635][ T5847] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 89.649420][ T5847] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 89.656458][ T5847] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 89.682587][ T5847] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 89.707165][ T5836] team0: Port device team_slave_0 added [ 89.754384][ T5836] team0: Port device team_slave_1 added [ 89.761864][ T5853] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 89.768853][ T5853] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 89.794929][ T5853] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 89.861902][ T5853] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 89.869121][ T5853] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 89.895146][ T5853] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 89.914032][ T5835] hsr_slave_0: entered promiscuous mode [ 89.921369][ T5835] hsr_slave_1: entered promiscuous mode [ 89.998611][ T5847] hsr_slave_0: entered promiscuous mode [ 90.005884][ T5847] hsr_slave_1: entered promiscuous mode [ 90.013040][ T5847] debugfs: 'hsr0' already exists in 'hsr' [ 90.018998][ T5847] Cannot create hsr debugfs directory [ 90.031306][ T5846] hsr_slave_0: entered promiscuous mode [ 90.038387][ T5846] hsr_slave_1: entered promiscuous mode [ 90.045565][ T5846] debugfs: 'hsr0' already exists in 'hsr' [ 90.051364][ T5846] Cannot create hsr debugfs directory [ 90.058763][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 90.065900][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 90.091885][ T5836] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 90.140119][ T5853] hsr_slave_0: entered promiscuous mode [ 90.147262][ T5853] hsr_slave_1: entered promiscuous mode [ 90.153975][ T5853] debugfs: 'hsr0' already exists in 'hsr' [ 90.159878][ T5853] Cannot create hsr debugfs directory [ 90.167230][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 90.174176][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 90.200756][ T5836] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 90.516378][ T5836] hsr_slave_0: entered promiscuous mode [ 90.523541][ T5836] hsr_slave_1: entered promiscuous mode [ 90.530537][ T5836] debugfs: 'hsr0' already exists in 'hsr' [ 90.536370][ T5836] Cannot create hsr debugfs directory [ 91.036100][ T5835] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 91.049673][ T5835] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 91.056785][ T5837] Bluetooth: hci0: command tx timeout [ 91.059691][ T5844] Bluetooth: hci1: command tx timeout [ 91.073227][ T5835] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 91.094227][ T5835] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 91.135537][ T5844] Bluetooth: hci2: command tx timeout [ 91.135881][ T5837] Bluetooth: hci3: command tx timeout [ 91.190263][ T5853] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 91.207405][ T5853] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 91.214619][ T5837] Bluetooth: hci4: command tx timeout [ 91.227656][ T5853] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 91.240891][ T5853] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 91.345825][ T5847] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 91.359247][ T5847] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 91.373068][ T5847] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 91.397672][ T5847] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 91.506729][ T5846] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 91.533017][ T5846] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 91.551402][ T5846] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 91.587681][ T5846] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 91.711330][ T5835] 8021q: adding VLAN 0 to HW filter on device bond0 [ 91.720861][ T5836] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 91.749681][ T5836] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 91.762950][ T5836] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 91.785124][ T5836] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 91.867564][ T10] cfg80211: failed to load regulatory.db [ 91.880192][ T5835] 8021q: adding VLAN 0 to HW filter on device team0 [ 91.927665][ T5853] 8021q: adding VLAN 0 to HW filter on device bond0 [ 91.947797][ T1155] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.955367][ T1155] bridge0: port 1(bridge_slave_0) entered forwarding state [ 91.987725][ T5847] 8021q: adding VLAN 0 to HW filter on device bond0 [ 92.002704][ T77] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.010033][ T77] bridge0: port 2(bridge_slave_1) entered forwarding state [ 92.053546][ T5853] 8021q: adding VLAN 0 to HW filter on device team0 [ 92.086178][ T5847] 8021q: adding VLAN 0 to HW filter on device team0 [ 92.111753][ T77] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.118952][ T77] bridge0: port 1(bridge_slave_0) entered forwarding state [ 92.150407][ T77] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.157604][ T77] bridge0: port 2(bridge_slave_1) entered forwarding state [ 92.168201][ T77] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.175573][ T77] bridge0: port 1(bridge_slave_0) entered forwarding state [ 92.216223][ T77] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.223431][ T77] bridge0: port 2(bridge_slave_1) entered forwarding state [ 92.287643][ T5846] 8021q: adding VLAN 0 to HW filter on device bond0 [ 92.427198][ T5846] 8021q: adding VLAN 0 to HW filter on device team0 [ 92.470912][ T5836] 8021q: adding VLAN 0 to HW filter on device bond0 [ 92.483418][ T77] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.490644][ T77] bridge0: port 1(bridge_slave_0) entered forwarding state [ 92.550104][ T137] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.557337][ T137] bridge0: port 2(bridge_slave_1) entered forwarding state [ 92.644096][ T5836] 8021q: adding VLAN 0 to HW filter on device team0 [ 92.691102][ T1163] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.698356][ T1163] bridge0: port 1(bridge_slave_0) entered forwarding state [ 92.781477][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.788743][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 92.929022][ T5835] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 92.996854][ T5853] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 93.136110][ T5837] Bluetooth: hci1: command tx timeout [ 93.137611][ T5844] Bluetooth: hci0: command tx timeout [ 93.163934][ T5847] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 93.215510][ T5844] Bluetooth: hci2: command tx timeout [ 93.224915][ T5844] Bluetooth: hci3: command tx timeout [ 93.283246][ T5835] veth0_vlan: entered promiscuous mode [ 93.295192][ T5844] Bluetooth: hci4: command tx timeout [ 93.333846][ T5846] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 93.424817][ T5835] veth1_vlan: entered promiscuous mode [ 93.434070][ T5853] veth0_vlan: entered promiscuous mode [ 93.513219][ T5853] veth1_vlan: entered promiscuous mode [ 93.530849][ T5847] veth0_vlan: entered promiscuous mode [ 93.620276][ T5847] veth1_vlan: entered promiscuous mode [ 93.643970][ T5836] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 93.665895][ T5835] veth0_macvtap: entered promiscuous mode [ 93.700777][ T5835] veth1_macvtap: entered promiscuous mode [ 93.746853][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 93.775693][ T5853] veth0_macvtap: entered promiscuous mode [ 93.791540][ T5853] veth1_macvtap: entered promiscuous mode [ 93.808363][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 93.860061][ T13] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.885751][ T13] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.895149][ T13] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.917134][ T13] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.941173][ T5853] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 93.956503][ T5847] veth0_macvtap: entered promiscuous mode [ 94.000287][ T5853] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 94.039142][ T5847] veth1_macvtap: entered promiscuous mode [ 94.062555][ T13] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.072447][ T13] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.084337][ T5846] veth0_vlan: entered promiscuous mode [ 94.116650][ T5836] veth0_vlan: entered promiscuous mode [ 94.123417][ T13] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.132708][ T13] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.167431][ T5847] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 94.206598][ T5846] veth1_vlan: entered promiscuous mode [ 94.240027][ T5847] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 94.249607][ T5836] veth1_vlan: entered promiscuous mode [ 94.273183][ T77] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.286103][ T77] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.319105][ T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.328085][ T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.355506][ T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.364321][ T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.429738][ T77] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.441207][ T77] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.492813][ T77] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.503431][ T77] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.519202][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.531763][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.558569][ T5846] veth0_macvtap: entered promiscuous mode [ 94.620290][ T5836] veth0_macvtap: entered promiscuous mode [ 94.633076][ T5846] veth1_macvtap: entered promiscuous mode [ 94.688986][ T5853] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 94.704881][ T5836] veth1_macvtap: entered promiscuous mode [ 94.749443][ T5846] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 94.773713][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.803193][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.857380][ T5846] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 94.928900][ T12] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.939284][ T12] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.966040][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 94.981007][ T12] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.999656][ T12] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.024946][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.039052][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 95.051798][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 95.108126][ T5961] process 'syz.2.3' launched './file2' with NULL argv: empty string added [ 95.125320][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 95.139513][ T5960] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2'. [ 95.162756][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 95.192918][ T36] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.206570][ T36] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.217249][ T5844] Bluetooth: hci0: command tx timeout [ 95.221034][ T5837] Bluetooth: hci1: command tx timeout [ 95.256961][ T36] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.279736][ T36] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.294907][ T5837] Bluetooth: hci3: command tx timeout [ 95.295075][ T5844] Bluetooth: hci2: command tx timeout [ 95.375541][ T5844] Bluetooth: hci4: command tx timeout [ 95.542333][ T1163] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.568111][ T1163] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 95.645357][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 95.654037][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 95.662781][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 95.671789][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 95.681033][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 95.799228][ T1155] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.839426][ T1155] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 95.864918][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 95.873483][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 95.921778][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.946692][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.122663][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.143225][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.385908][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 97.190523][ T5969] bridge1: trying to set multicast query interval above maximum, setting to 8640000 (86400000ms) [ 97.366766][ T30] audit: type=1326 audit(1773685880.985:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5971 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce139c799 code=0x7ffc0000 [ 97.520375][ T30] audit: type=1326 audit(1773685881.045:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5971 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce139c799 code=0x7ffc0000 [ 97.762135][ T30] audit: type=1326 audit(1773685881.065:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5971 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f3ce139c799 code=0x7ffc0000 [ 97.883759][ T5981] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6'. [ 97.929487][ T30] audit: type=1326 audit(1773685881.065:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5971 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce139c799 code=0x7ffc0000 [ 98.050189][ T30] audit: type=1326 audit(1773685881.075:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5971 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3ce139c799 code=0x7ffc0000 [ 98.227266][ T30] audit: type=1326 audit(1773685881.075:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5971 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce139c799 code=0x7ffc0000 [ 98.463372][ T30] audit: type=1326 audit(1773685881.075:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5971 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f3ce139c799 code=0x7ffc0000 [ 98.562542][ T30] audit: type=1326 audit(1773685881.075:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5971 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce139c799 code=0x7ffc0000 [ 98.679350][ T5986] openvswitch: netlink: Message has 57 unknown bytes. [ 98.680918][ T30] audit: type=1326 audit(1773685881.075:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5971 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f3ce139c799 code=0x7ffc0000 [ 98.727459][ T5986] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 98.821167][ T30] audit: type=1326 audit(1773685881.075:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5971 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce139c799 code=0x7ffc0000 [ 100.285666][ T5994] bridge1: trying to set multicast query interval above maximum, setting to 8640000 (86400000ms) [ 103.105261][ T6025] netlink: 16 bytes leftover after parsing attributes in process `syz.3.15'. [ 103.911853][ T6035] netlink: 16 bytes leftover after parsing attributes in process `syz.4.17'. [ 104.360860][ T6040] netlink: 16 bytes leftover after parsing attributes in process `syz.2.18'. [ 105.330543][ T30] kauditd_printk_skb: 65 callbacks suppressed [ 105.330562][ T30] audit: type=1326 audit(1773685888.945:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.3.20" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce139c799 code=0x7ffc0000 [ 105.493042][ T30] audit: type=1326 audit(1773685888.975:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.3.20" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce139c799 code=0x7ffc0000 [ 105.586284][ T30] audit: type=1326 audit(1773685888.975:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.3.20" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f3ce139c799 code=0x7ffc0000 [ 105.667135][ T30] audit: type=1326 audit(1773685888.985:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.3.20" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce139c799 code=0x7ffc0000 [ 105.739993][ T30] audit: type=1326 audit(1773685888.985:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.3.20" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce139c799 code=0x7ffc0000 [ 105.930937][ T30] audit: type=1326 audit(1773685888.985:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.3.20" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3ce139c799 code=0x7ffc0000 [ 106.072181][ T30] audit: type=1326 audit(1773685888.985:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.3.20" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce139c799 code=0x7ffc0000 [ 106.113472][ T6054] netlink: 12 bytes leftover after parsing attributes in process `syz.0.21'. [ 106.240756][ T30] audit: type=1326 audit(1773685888.985:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.3.20" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce139c799 code=0x7ffc0000 [ 106.275087][ T6054] vlan2: entered promiscuous mode [ 106.309969][ T6054] batadv0: entered promiscuous mode [ 106.396697][ T30] audit: type=1326 audit(1773685888.985:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.3.20" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f3ce139c799 code=0x7ffc0000 [ 106.547000][ T30] audit: type=1326 audit(1773685888.985:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.3.20" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce139c799 code=0x7ffc0000 [ 106.605866][ T6058] netlink: 16 bytes leftover after parsing attributes in process `syz.4.22'. [ 106.990252][ T6063] team0 (unregistering): Port device team_slave_0 removed [ 107.035694][ T6063] team0 (unregistering): Port device team_slave_1 removed [ 107.728813][ T6073] bridge2: trying to set multicast query interval above maximum, setting to 8640000 (86400000ms) [ 109.517378][ T6094] netlink: 16 bytes leftover after parsing attributes in process `syz.4.30'. [ 112.295916][ T6120] bridge2: trying to set multicast query interval above maximum, setting to 8640000 (86400000ms) [ 112.366784][ T6119] openvswitch: netlink: Message has 57 unknown bytes. [ 112.388757][ T6119] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 112.968476][ T30] kauditd_printk_skb: 103 callbacks suppressed [ 112.968489][ T30] audit: type=1326 audit(1773685896.575:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6123 comm="syz.4.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97b19c799 code=0x7ffc0000 [ 113.140801][ T30] audit: type=1326 audit(1773685896.575:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6123 comm="syz.4.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97b19c799 code=0x7ffc0000 [ 113.207877][ T30] audit: type=1326 audit(1773685896.615:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6123 comm="syz.4.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7fd97b19c799 code=0x7ffc0000 [ 113.319702][ T30] audit: type=1326 audit(1773685896.625:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6123 comm="syz.4.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97b19c799 code=0x7ffc0000 [ 113.397858][ T30] audit: type=1326 audit(1773685896.625:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6123 comm="syz.4.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd97b19c799 code=0x7ffc0000 [ 113.485286][ T30] audit: type=1326 audit(1773685896.635:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6123 comm="syz.4.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97b19c799 code=0x7ffc0000 [ 113.558506][ T30] audit: type=1326 audit(1773685896.635:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6123 comm="syz.4.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fd97b19c799 code=0x7ffc0000 [ 113.619114][ T6126] loop5: detected capacity change from 0 to 7 [ 113.644458][ T30] audit: type=1326 audit(1773685896.635:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6123 comm="syz.4.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97b19c799 code=0x7ffc0000 [ 113.727012][ T30] audit: type=1326 audit(1773685896.645:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6123 comm="syz.4.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fd97b19c799 code=0x7ffc0000 [ 113.796971][ T30] audit: type=1326 audit(1773685896.655:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6123 comm="syz.4.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97b19c799 code=0x7ffc0000 [ 113.860824][ T6126] Dev loop5: unable to read RDB block 7 [ 113.888778][ T6126] loop5: unable to read partition table [ 113.930471][ T6126] loop5: partition table beyond EOD, truncated [ 114.336841][ T6126] loop_reread_partitions: partition scan of loop5 (þ被xü—ŸÑà– ) failed (rc=-5) [ 114.371001][ T6143] netlink: 16 bytes leftover after parsing attributes in process `syz.2.41'. [ 116.970473][ T6156] bridge1: trying to set multicast query interval above maximum, setting to 8640000 (86400000ms) [ 117.142681][ T6158] openvswitch: netlink: Message has 57 unknown bytes. [ 117.169013][ T6158] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 117.457365][ T6161] bridge3: trying to set multicast query interval above maximum, setting to 8640000 (86400000ms) [ 118.080931][ T6171] openvswitch: netlink: Message has 57 unknown bytes. [ 118.115049][ T6171] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 118.169815][ T30] kauditd_printk_skb: 117 callbacks suppressed [ 118.169830][ T30] audit: type=1326 audit(1773685901.785:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6164 comm="syz.1.48" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28c299c799 code=0x7ffc0000 [ 118.295412][ T30] audit: type=1326 audit(1773685901.815:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6164 comm="syz.1.48" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28c299c799 code=0x7ffc0000 [ 118.400935][ T30] audit: type=1326 audit(1773685901.825:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6164 comm="syz.1.48" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f28c299c799 code=0x7ffc0000 [ 118.469692][ T30] audit: type=1326 audit(1773685901.825:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6164 comm="syz.1.48" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28c299c799 code=0x7ffc0000 [ 118.519070][ T30] audit: type=1326 audit(1773685901.825:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6164 comm="syz.1.48" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f28c299c799 code=0x7ffc0000 [ 118.619961][ T30] audit: type=1326 audit(1773685901.835:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6164 comm="syz.1.48" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28c299c799 code=0x7ffc0000 [ 118.711589][ T30] audit: type=1326 audit(1773685901.835:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6164 comm="syz.1.48" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f28c299c799 code=0x7ffc0000 [ 118.865369][ T30] audit: type=1326 audit(1773685901.845:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6164 comm="syz.1.48" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28c299c799 code=0x7ffc0000 [ 118.946465][ T30] audit: type=1326 audit(1773685901.845:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6164 comm="syz.1.48" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f28c299c799 code=0x7ffc0000 [ 119.044596][ T30] audit: type=1326 audit(1773685901.895:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6164 comm="syz.1.48" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28c299c799 code=0x7ffc0000 [ 120.070798][ T6189] geneve2: entered promiscuous mode [ 120.101685][ T6189] geneve2: entered allmulticast mode [ 120.950474][ T6204] netlink: 16 bytes leftover after parsing attributes in process `syz.0.54'. [ 121.310349][ T6213] openvswitch: netlink: Message has 57 unknown bytes. [ 121.339004][ T6213] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 123.925638][ T6218] bridge1: trying to set multicast query interval above maximum, setting to 8640000 (86400000ms) [ 124.455242][ T6231] netlink: 12 bytes leftover after parsing attributes in process `syz.2.62'. [ 125.863833][ T6231] vlan2: entered promiscuous mode [ 125.938306][ T6231] batadv0: entered promiscuous mode [ 126.102069][ T6234] bridge2: trying to set multicast query interval above maximum, setting to 8640000 (86400000ms) [ 126.174665][ T6243] netlink: 16 bytes leftover after parsing attributes in process `syz.4.65'. [ 127.385380][ T6262] netlink: 16 bytes leftover after parsing attributes in process `syz.0.68'. [ 128.747686][ T6269] netlink: 16 bytes leftover after parsing attributes in process `syz.4.70'. [ 129.124569][ T6277] bridge2: trying to set multicast query interval above maximum, setting to 8640000 (86400000ms) [ 129.893517][ T6280] team0 (unregistering): Port device team_slave_0 removed [ 129.960062][ T6280] team0 (unregistering): Port device team_slave_1 removed [ 130.182601][ T6278] syz.2.73 (6278) used greatest stack depth: 16552 bytes left [ 130.434070][ T6292] netlink: 16 bytes leftover after parsing attributes in process `syz.2.76'. [ 131.727397][ T5924] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 131.769237][ T6307] openvswitch: netlink: Message has 57 unknown bytes. [ 131.803896][ T6307] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 131.934905][ T5924] usb 1-1: Using ep0 maxpacket: 8 [ 131.961252][ T5924] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 132.015350][ T5924] usb 1-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 132.063053][ T5924] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 132.140276][ T5924] usb 1-1: config 0 descriptor?? [ 132.222393][ T6311] netlink: 8 bytes leftover after parsing attributes in process `syz.1.81'. [ 132.389598][ T6314] netlink: 8 bytes leftover after parsing attributes in process `syz.1.81'. [ 132.442675][ T5924] iowarrior 1-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0 [ 132.567843][ T6313] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 132.576314][ T5924] usb 1-1: USB disconnect, device number 2 [ 132.603310][ T6313] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 132.984082][ T1309] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.244926][ T1309] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.278923][ T6313] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 133.324994][ T6313] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 133.365025][ T6313] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 133.402891][ T6313] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 133.489404][ T6313] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 133.500757][ T6313] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 133.575953][ T6313] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 133.738460][ T6313] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 133.762494][ T6313] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 133.818841][ T6313] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 133.839110][ T6325] loop2: detected capacity change from 0 to 7 [ 133.866608][ T6325] Dev loop2: unable to read RDB block 7 [ 133.890338][ T6313] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 133.909179][ T6313] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 133.939120][ T6313] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 133.953978][ T6325] loop2: AHDI p1 p2 p3 [ 133.996434][ T6325] loop2: partition table partially beyond EOD, truncated [ 134.029060][ T6325] loop2: p1 start 1601398130 is beyond EOD, truncated [ 134.052781][ T6325] loop2: p2 start 1702059890 is beyond EOD, truncated [ 134.373993][ T5201] Dev loop2: unable to read RDB block 7 [ 134.395158][ T5201] loop2: AHDI p1 p2 p3 [ 134.405920][ T5201] loop2: partition table partially beyond EOD, truncated [ 134.424082][ T5201] loop2: p1 start 1601398130 is beyond EOD, truncated [ 134.434020][ T5201] loop2: p2 start 1702059890 is beyond EOD, truncated [ 134.574901][ T5844] Bluetooth: hci0: command 0x0c1a tx timeout [ 135.395287][ T5844] Bluetooth: hci1: command 0x0c1a tx timeout [ 135.534689][ T5844] Bluetooth: hci2: command 0x0c1a tx timeout [ 135.784652][ T5844] Bluetooth: hci3: command 0x0c1a tx timeout [ 135.934613][ T5844] Bluetooth: hci4: command 0x0c1a tx timeout [ 136.655459][ T5844] Bluetooth: hci0: command 0x0c1a tx timeout [ 137.459169][ T5844] Bluetooth: hci1: command 0x0c1a tx timeout [ 137.614752][ T5844] Bluetooth: hci2: command 0x0c1a tx timeout [ 137.652490][ T6357] netlink: 12 bytes leftover after parsing attributes in process `syz.2.94'. [ 137.717740][ T6359] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 137.865175][ T5844] Bluetooth: hci3: command 0x0c1a tx timeout [ 138.014878][ T5844] Bluetooth: hci4: command 0x0c1a tx timeout [ 138.734887][ T5844] Bluetooth: hci0: command 0x0c1a tx timeout [ 139.554667][ T5844] Bluetooth: hci1: command 0x0c1a tx timeout [ 139.602122][ T6379] loop0: detected capacity change from 0 to 256 [ 139.615311][ T6379] ======================================================= [ 139.615311][ T6379] WARNING: The mand mount option has been deprecated and [ 139.615311][ T6379] and is ignored by this kernel. Remove the mand [ 139.615311][ T6379] option from the mount to silence this warning. [ 139.615311][ T6379] ======================================================= [ 139.650983][ T6379] exfat: Deprecated parameter 'utf8' [ 139.656715][ T6379] exfat: Deprecated parameter 'namecase' [ 139.662514][ T6379] exfat: Deprecated parameter 'utf8' [ 139.734690][ T5837] Bluetooth: hci2: command 0x0c1a tx timeout [ 139.934602][ T5837] Bluetooth: hci3: command 0x0c1a tx timeout [ 140.094733][ T5837] Bluetooth: hci4: command 0x0c1a tx timeout [ 140.172960][ T6379] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 140.224200][ T6377] IPVS: ip_vs_edit_dest(): lower threshold is higher than upper threshold [ 140.239877][ T6377] x_tables: duplicate underflow at hook 3 [ 140.274648][ T5905] IPVS: starting estimator thread 0... [ 140.486127][ T6383] IPVS: using max 26 ests per chain, 62400 per kthread [ 142.780499][ T6407] loop4: detected capacity change from 0 to 256 [ 142.792516][ T6407] exfat: Deprecated parameter 'utf8' [ 142.798192][ T6407] exfat: Deprecated parameter 'namecase' [ 142.803984][ T6407] exfat: Deprecated parameter 'utf8' [ 143.351094][ T6407] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 143.396415][ T6406] IPVS: ip_vs_edit_dest(): lower threshold is higher than upper threshold [ 143.420689][ T5924] IPVS: starting estimator thread 0... [ 143.544695][ T6409] IPVS: using max 42 ests per chain, 100800 per kthread [ 144.205395][ T6422] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 144.232702][ T6422] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 144.281439][ T6422] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 144.312850][ T6422] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 144.350644][ T6422] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 144.606331][ T5905] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 144.652640][ T6433] loop1: detected capacity change from 0 to 512 [ 144.751255][ T6433] EXT4-fs (loop1): 1 truncate cleaned up [ 144.783614][ T6433] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 144.820132][ T5905] usb 5-1: config 1 interface 0 altsetting 7 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 144.842009][ T5905] usb 5-1: config 1 interface 0 has no altsetting 0 [ 144.858494][ T5905] usb 5-1: New USB device found, idVendor=04b4, idProduct=0001, bcdDevice= 0.40 [ 144.871096][ T6433] EXT4-fs (loop1): shut down requested (2) [ 144.887175][ T5905] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 144.904774][ T5905] usb 5-1: Product: syz [ 144.910820][ T5905] usb 5-1: Manufacturer: å–¹ [ 144.927177][ T5905] usb 5-1: SerialNumber: syz [ 145.293965][ T5905] usbhid 5-1:1.0: can't add hid device: -71 [ 145.312136][ T5905] usbhid 5-1:1.0: probe with driver usbhid failed with error -71 [ 145.367272][ T5905] usb 5-1: USB disconnect, device number 2 [ 145.489551][ T5835] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 145.516675][ T6442] loop2: detected capacity change from 0 to 1024 [ 146.046295][ T6442] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 146.174740][ T5837] Bluetooth: hci0: command 0x0c1a tx timeout [ 146.260292][ T5837] Bluetooth: hci1: command 0x0c1a tx timeout [ 146.344800][ T5837] Bluetooth: hci3: command 0x0c1a tx timeout [ 146.347208][ T5844] Bluetooth: hci2: command 0x0c1a tx timeout [ 146.414886][ T5844] Bluetooth: hci4: command 0x0c1a tx timeout [ 146.878424][ T6461] netlink: 8 bytes leftover after parsing attributes in process `syz.3.117'. [ 146.911113][ T6463] Zero length message leads to an empty skb [ 147.052886][ T5853] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 147.063141][ T6465] loop4: detected capacity change from 0 to 8 [ 147.650216][ T6474] openvswitch: netlink: Message has 57 unknown bytes. [ 147.676347][ T6474] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 148.196067][ T6478] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 148.245935][ T6478] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 148.278872][ T6478] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 148.322841][ T6478] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 148.380479][ T6478] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 150.174719][ T5844] Bluetooth: hci0: command 0x0c1a tx timeout [ 150.254641][ T5844] Bluetooth: hci1: command 0x0c1a tx timeout [ 150.294831][ T6497] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 150.334822][ T5844] Bluetooth: hci3: command 0x0c1a tx timeout [ 150.334841][ T5837] Bluetooth: hci2: command 0x0c1a tx timeout [ 150.374956][ T6497] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 150.398919][ T6497] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 150.414622][ T5837] Bluetooth: hci4: command 0x0c1a tx timeout [ 150.426073][ T6497] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 150.453556][ T6497] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 150.490629][ T6502] loop2: detected capacity change from 0 to 1024 [ 150.579753][ T6502] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 151.554053][ T6510] loop0: detected capacity change from 0 to 8 [ 151.577599][ T5853] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 151.642610][ T6510] SQUASHFS error: Unable to read inode 0x11f [ 151.968576][ T803] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 152.159543][ T803] usb 1-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00 [ 152.185812][ T803] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 152.214385][ T803] usb 1-1: Product: syz [ 152.228882][ T803] usb 1-1: Manufacturer: syz [ 152.241287][ T803] usb 1-1: SerialNumber: syz [ 152.335298][ T5837] Bluetooth: hci0: command 0x0c1a tx timeout [ 152.414711][ T5837] Bluetooth: hci2: command 0x0c1a tx timeout [ 152.414735][ T5844] Bluetooth: hci1: command 0x0c1a tx timeout [ 152.494932][ T5844] Bluetooth: hci4: command 0x0c1a tx timeout [ 152.495699][ T5837] Bluetooth: hci3: command 0x0c1a tx timeout [ 152.683103][ T803] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -EPIPE [ 152.712349][ T803] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Failed to sync IRQ enable register: -EPIPE [ 153.962901][ T803] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -EPIPE [ 155.049475][ T6546] netlink: 8 bytes leftover after parsing attributes in process `syz.2.141'. [ 155.243055][ T6549] netlink: 8 bytes leftover after parsing attributes in process `syz.2.141'. [ 155.871435][ T6535] loop3: detected capacity change from 0 to 40427 [ 155.935968][ T6535] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 155.976172][ T6535] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 156.313488][ T6562] netlink: 8 bytes leftover after parsing attributes in process `syz.2.143'. [ 156.561230][ T6535] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 156.630313][ T6535] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 156.662610][ T6535] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 158.110005][ T803] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x00001004. ret = -EPROTO [ 158.161845][ T803] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x0000011c. ret = -EPROTO [ 158.211519][ T803] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED.... [ 158.247188][ T803] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED [ 158.326619][ T803] lan78xx 1-1:1.0: probe with driver lan78xx failed with error -71 [ 158.435718][ T803] usb 1-1: USB disconnect, device number 3 [ 158.617337][ T30] kauditd_printk_skb: 86 callbacks suppressed [ 158.617363][ T30] audit: type=1326 audit(1773685942.235:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6590 comm="syz.4.150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97b19c799 code=0x7ffc0000 [ 158.684200][ T30] audit: type=1326 audit(1773685942.265:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6590 comm="syz.4.150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7fd97b19c799 code=0x7ffc0000 [ 158.761117][ T30] audit: type=1326 audit(1773685942.285:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6590 comm="syz.4.150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97b19c799 code=0x7ffc0000 [ 158.848026][ T30] audit: type=1326 audit(1773685942.295:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6590 comm="syz.4.150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97b19c799 code=0x7ffc0000 [ 158.909194][ T30] audit: type=1326 audit(1773685942.325:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6590 comm="syz.4.150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd97b19c799 code=0x7ffc0000 [ 158.982574][ T30] audit: type=1326 audit(1773685942.325:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6590 comm="syz.4.150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97b19c799 code=0x7ffc0000 [ 159.116483][ T30] audit: type=1326 audit(1773685942.325:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6590 comm="syz.4.150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fd97b19c799 code=0x7ffc0000 [ 159.198533][ T30] audit: type=1326 audit(1773685942.325:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6590 comm="syz.4.150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97b19c799 code=0x7ffc0000 [ 159.308234][ T30] audit: type=1326 audit(1773685942.335:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6590 comm="syz.4.150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fd97b19c799 code=0x7ffc0000 [ 159.484630][ T30] audit: type=1326 audit(1773685942.335:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6590 comm="syz.4.150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97b19c799 code=0x7ffc0000 [ 159.897201][ T6603] netlink: 'syz.0.153': attribute type 21 has an invalid length. [ 159.923902][ T6603] netlink: 'syz.0.153': attribute type 6 has an invalid length. [ 160.164952][ T5924] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 160.325258][ T5924] usb 4-1: Using ep0 maxpacket: 8 [ 160.352202][ T5924] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 160.394076][ T5924] usb 4-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 160.428319][ T5924] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 160.486469][ T6612] netlink: 65039 bytes leftover after parsing attributes in process `syz.0.157'. [ 160.526205][ T5924] usb 4-1: config 0 descriptor?? [ 160.628030][ T6614] netlink: 12 bytes leftover after parsing attributes in process `syz.1.158'. [ 160.789802][ T5924] iowarrior 4-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0 [ 160.820199][ T6616] netlink: 'syz.0.159': attribute type 7 has an invalid length. [ 160.948124][ T6618] netlink: 830 bytes leftover after parsing attributes in process `syz.1.160'. [ 160.988253][ T6618] veth0_to_bond: entered promiscuous mode [ 161.123547][ T803] usb 4-1: USB disconnect, device number 2 [ 161.500886][ T6630] netlink: 60 bytes leftover after parsing attributes in process `syz.4.165'. [ 161.547070][ T6630] netlink: 60 bytes leftover after parsing attributes in process `syz.4.165'. [ 161.625103][ T6635] netlink: 60 bytes leftover after parsing attributes in process `syz.4.165'. [ 161.670367][ T6637] netlink: 'syz.0.169': attribute type 29 has an invalid length. [ 161.716579][ T6637] netlink: 'syz.0.169': attribute type 29 has an invalid length. [ 161.766373][ T6642] netlink: 60 bytes leftover after parsing attributes in process `syz.3.170'. [ 161.810097][ T6642] netlink: 60 bytes leftover after parsing attributes in process `syz.3.170'. [ 161.866940][ T6645] netlink: 60 bytes leftover after parsing attributes in process `syz.3.170'. [ 161.962313][ T6648] netlink: 212348 bytes leftover after parsing attributes in process `syz.2.173'. [ 162.200812][ T6660] netlink: 'syz.1.179': attribute type 6 has an invalid length. [ 162.237005][ T6660] netlink: 'syz.1.179': attribute type 6 has an invalid length. [ 164.009199][ T6380] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 164.153346][ T6380] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 164.296211][ T6731] netlink: 'syz.3.215': attribute type 2 has an invalid length. [ 164.312881][ T6380] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 164.421495][ T6734] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 164.527194][ T6380] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 164.560771][ T5844] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 164.572244][ T5844] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 164.583185][ T5844] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 164.598049][ T5844] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 164.608768][ T5844] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 165.436098][ T6380] bridge_slave_1: left allmulticast mode [ 165.465030][ T6380] bridge_slave_1: left promiscuous mode [ 165.485630][ T6380] bridge0: port 2(bridge_slave_1) entered disabled state [ 165.573288][ T6380] bridge_slave_0: left allmulticast mode [ 165.591901][ T6380] bridge_slave_0: left promiscuous mode [ 165.606140][ T6380] bridge0: port 1(bridge_slave_0) entered disabled state [ 165.703018][ T6783] __nla_validate_parse: 5 callbacks suppressed [ 165.703036][ T6783] netlink: 12 bytes leftover after parsing attributes in process `syz.0.239'. [ 165.720472][ T6783] openvswitch: netlink: ufid size 20 bytes exceeds the range (1, 16) [ 165.728815][ T6783] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 166.071305][ T6380] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 166.082758][ T6380] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 166.093624][ T6380] bond0 (unregistering): Released all slaves [ 166.564184][ T6739] chnl_net:caif_netlink_parms(): no params data found [ 166.640047][ T6807] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.249'. [ 166.654690][ T5844] Bluetooth: hci0: command tx timeout [ 167.331023][ T6380] hsr_slave_0: left promiscuous mode [ 167.359817][ T6380] hsr_slave_1: left promiscuous mode [ 167.374971][ T6837] netlink: 'syz.4.259': attribute type 2 has an invalid length. [ 167.390514][ T6380] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 167.406128][ T6837] netlink: 'syz.4.259': attribute type 8 has an invalid length. [ 167.417853][ T6380] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 167.428618][ T6837] netlink: 132 bytes leftover after parsing attributes in process `syz.4.259'. [ 167.452136][ T6380] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 167.488339][ T6380] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 167.577023][ T6380] veth1_macvtap: left promiscuous mode [ 167.599428][ T6380] veth0_macvtap: left promiscuous mode [ 167.612940][ T6380] veth1_vlan: left promiscuous mode [ 167.630376][ T6380] veth0_vlan: left promiscuous mode [ 168.734812][ T5844] Bluetooth: hci0: command tx timeout [ 170.819895][ T5844] Bluetooth: hci0: command tx timeout [ 170.890540][ T6856] netlink: 8 bytes leftover after parsing attributes in process `syz.2.265'. [ 171.133457][ T6380] team0 (unregistering): Port device team_slave_1 removed [ 171.150023][ T6380] team0 (unregistering): Port device team_slave_0 removed [ 171.555458][ T6871] netlink: 'syz.3.270': attribute type 29 has an invalid length. [ 171.592203][ T6739] bridge0: port 1(bridge_slave_0) entered blocking state [ 171.610752][ T6739] bridge0: port 1(bridge_slave_0) entered disabled state [ 171.619983][ T6739] bridge_slave_0: entered allmulticast mode [ 171.628665][ T6739] bridge_slave_0: entered promiscuous mode [ 171.638655][ T6871] netlink: 'syz.3.270': attribute type 29 has an invalid length. [ 171.667549][ T6739] bridge0: port 2(bridge_slave_1) entered blocking state [ 171.689490][ T6739] bridge0: port 2(bridge_slave_1) entered disabled state [ 171.721182][ T6739] bridge_slave_1: entered allmulticast mode [ 171.765607][ T6739] bridge_slave_1: entered promiscuous mode [ 171.959870][ T6739] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 172.018787][ T6739] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 172.051739][ T6884] loop4: detected capacity change from 0 to 16 [ 172.096619][ T6884] erofs (device loop4): invalid ishare xattr prefix id 0 [ 172.260842][ T6739] team0: Port device team_slave_0 added [ 172.329559][ T6739] team0: Port device team_slave_1 added [ 172.537078][ T6739] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 172.574544][ T6739] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 172.688509][ T6739] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 172.760888][ T6739] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 172.787016][ T6739] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 172.862468][ T6739] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 172.895746][ T5844] Bluetooth: hci0: command tx timeout [ 173.132189][ T6739] hsr_slave_0: entered promiscuous mode [ 173.160380][ T6739] hsr_slave_1: entered promiscuous mode [ 173.301814][ T6922] kvm: kvm [6921]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111 [ 174.209782][ T6739] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 174.260984][ T6739] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 174.288580][ T6739] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 174.332621][ T6739] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 174.513532][ T6962] netlink: 8 bytes leftover after parsing attributes in process `syz.4.296'. [ 174.582594][ T6962] netlink: 7 bytes leftover after parsing attributes in process `syz.4.296'. [ 174.744388][ T6739] 8021q: adding VLAN 0 to HW filter on device bond0 [ 174.798876][ T6964] loop2: detected capacity change from 0 to 8192 [ 174.838069][ T6739] 8021q: adding VLAN 0 to HW filter on device team0 [ 174.916465][ T49] bridge0: port 1(bridge_slave_0) entered blocking state [ 174.923701][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state [ 175.031793][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 175.039110][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 175.971664][ T6994] Illegal XDP return value 4294967294 on prog (id 32) dev syz_tun, expect packet loss! [ 176.065966][ T6997] loop2: detected capacity change from 0 to 128 [ 176.375855][ T6739] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 176.721400][ T7008] node ffff88802ace3180 offset 0 parent ffff88802ace3440 shift 0 count 1 values 0 array ffff88801fb3ae40 list ffff88802ace3198 ffff88802ace3198 marks 0 0 0 [ 176.721809][ T7008] ------------[ cut here ]------------ [ 176.721822][ T7008] kernel BUG at ./include/linux/xarray.h:1441! [ 176.723448][ T7008] Oops: invalid opcode: 0000 [#1] SMP KASAN PTI [ 176.723487][ T7008] CPU: 0 UID: 0 PID: 7008 Comm: syz.2.307 Not tainted syzkaller #0 PREEMPT(full) [ 176.723512][ T7008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 176.723526][ T7008] RIP: 0010:hpage_collapse_scan_file+0x4f98/0x5230 [ 176.723558][ T7008] Code: ff 4c 89 e7 48 c7 c6 80 b1 dc 8b e8 82 df f1 fe 90 0f 0b 48 85 db 0f 84 03 01 00 00 e8 01 62 90 ff 48 89 df e8 69 5d 7b 09 90 <0f> 0b e8 f1 61 90 ff 48 89 df 48 c7 c6 80 b1 dc 8b e8 52 df f1 fe [ 176.723577][ T7008] RSP: 0018:ffffc900046a7120 EFLAGS: 00010246 [ 176.723598][ T7008] RAX: 0000000000000000 RBX: ffff88802ace3180 RCX: 4497fc48abe2bd00 [ 176.723615][ T7008] RDX: ffffc90005ec1000 RSI: 0000000000001c79 RDI: 0000000000001c7a [ 176.723630][ T7008] RBP: ffffc900046a7428 R08: ffff8880b86247d3 R09: 1ffff110170c48fa [ 176.723647][ T7008] R10: dffffc0000000000 R11: ffffed10170c48fb R12: ffffea0001f6a270 [ 176.723665][ T7008] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffc900046a7310 [ 176.723681][ T7008] FS: 00007f2a4c6946c0(0000) GS:ffff888125436000(0000) knlGS:0000000000000000 [ 176.723701][ T7008] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 176.723716][ T7008] CR2: 00007f4563f456b8 CR3: 0000000032a00000 CR4: 00000000003526f0 [ 176.723736][ T7008] Call Trace: [ 176.723749][ T7008] [ 176.723767][ T7008] ? debug_object_free+0x2d7/0x490 [ 176.723802][ T7008] ? hpage_collapse_scan_file+0x1c1/0x5230 [ 176.723828][ T7008] ? __pfx_hpage_collapse_scan_file+0x10/0x10 [ 176.723851][ T7008] ? __flush_work+0xa26/0xc50 [ 176.723874][ T7008] ? __flush_work+0x100/0xc50 [ 176.723918][ T7008] ? __up_read+0x291/0x6b0 [ 176.723948][ T7008] ? __pfx___up_read+0x10/0x10 [ 176.723974][ T7008] ? madvise_collapse+0x41e/0xb80 [ 176.724000][ T7008] madvise_collapse+0x451/0xb80 [ 176.724030][ T7008] madvise_vma_behavior+0x1094/0x4460 [ 176.724060][ T7008] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 176.724087][ T7008] ? __lock_acquire+0x6b5/0x2cf0 [ 176.724125][ T7008] ? do_raw_spin_lock+0x12b/0x2f0 [ 176.724161][ T7008] ? do_raw_spin_lock+0x12b/0x2f0 [ 176.724190][ T7008] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 176.724219][ T7008] ? debug_object_assert_init+0x209/0x370 [ 176.724251][ T7008] ? rcu_is_watching+0x15/0xb0 [ 176.724272][ T7008] ? trace_hrtimer_start+0x82/0x230 [ 176.724305][ T7008] ? finish_task_switch+0x41f/0xbe0 [ 176.724336][ T7008] ? lockdep_hardirqs_on+0x7a/0x110 [ 176.724367][ T7008] ? mas_prev_slot+0xb7b/0xbf0 [ 176.724398][ T7008] ? find_vma_prev+0x123/0x1b0 [ 176.724428][ T7008] ? __pfx_find_vma_prev+0x10/0x10 [ 176.724462][ T7008] ? __pfx___resched_curr+0x10/0x10 [ 176.724488][ T7008] madvise_walk_vmas+0x573/0xae0 [ 176.724517][ T7008] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 176.724542][ T7008] ? blk_start_plug+0x6e/0x1b0 [ 176.724568][ T7008] madvise_do_behavior+0x386/0x540 [ 176.724594][ T7008] ? __pfx_madvise_do_behavior+0x10/0x10 [ 176.724622][ T7008] ? down_read+0x270/0x2e0 [ 176.724647][ T7008] ? madvise_lock+0x146/0x2e0 [ 176.724673][ T7008] do_madvise+0x1fa/0x2e0 [ 176.724695][ T7008] ? __pfx_do_madvise+0x10/0x10 [ 176.724723][ T7008] ? __se_sys_futex+0x3a8/0x450 [ 176.724748][ T7008] ? rcu_is_watching+0x15/0xb0 [ 176.724774][ T7008] __x64_sys_madvise+0xa6/0xc0 [ 176.724797][ T7008] do_syscall_64+0x14d/0xf80 [ 176.724821][ T7008] ? trace_irq_disable+0x3b/0x150 [ 176.724848][ T7008] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 176.724870][ T7008] ? clear_bhb_loop+0x40/0x90 [ 176.724904][ T7008] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 176.724926][ T7008] RIP: 0033:0x7f2a4b79c799 [ 176.724951][ T7008] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 176.724969][ T7008] RSP: 002b:00007f2a4c694028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 176.724992][ T7008] RAX: ffffffffffffffda RBX: 00007f2a4ba15fa0 RCX: 00007f2a4b79c799 [ 176.725009][ T7008] RDX: 0000000000000019 RSI: 0000000000c00000 RDI: 0000200000000000 [ 176.725024][ T7008] RBP: 00007f2a4b832c99 R08: 0000000000000000 R09: 0000000000000000 [ 176.725038][ T7008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 176.725051][ T7008] R13: 00007f2a4ba16038 R14: 00007f2a4ba15fa0 R15: 00007fffd2b0d758 [ 176.725076][ T7008] [ 176.725085][ T7008] Modules linked in: SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 176.725445][ T7008] ---[ end trace 0000000000000000 ]--- [ 176.738754][ T7008] RIP: 0010:hpage_collapse_scan_file+0x4f98/0x5230 [ 177.214789][ T7008] Code: ff 4c 89 e7 48 c7 c6 80 b1 dc 8b e8 82 df f1 fe 90 0f 0b 48 85 db 0f 84 03 01 00 00 e8 01 62 90 ff 48 89 df e8 69 5d 7b 09 90 <0f> 0b e8 f1 61 90 ff 48 89 df 48 c7 c6 80 b1 dc 8b e8 52 df f1 fe [ 177.276089][ T7008] RSP: 0018:ffffc900046a7120 EFLAGS: 00010246 [ 177.345215][ T7008] RAX: 0000000000000000 RBX: ffff88802ace3180 RCX: 4497fc48abe2bd00 [ 177.353316][ T7008] RDX: ffffc90005ec1000 RSI: 0000000000001c79 RDI: 0000000000001c7a [ 177.407197][ T7008] RBP: ffffc900046a7428 R08: ffff8880b86247d3 R09: 1ffff110170c48fa [ 177.487896][ T7008] R10: dffffc0000000000 R11: ffffed10170c48fb R12: ffffea0001f6a270 [ 177.551838][ T7008] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffc900046a7310 [ 177.609132][ T7008] FS: 00007f2a4c6946c0(0000) GS:ffff888125436000(0000) knlGS:0000000000000000 [ 177.674670][ T7008] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 177.702550][ T7008] CR2: 000055e23925f950 CR3: 0000000032a00000 CR4: 00000000003526f0 [ 177.744188][ T7008] Kernel panic - not syncing: Fatal exception [ 177.750900][ T7008] Kernel Offset: disabled [ 177.755234][ T7008] Rebooting in 86400 seconds..