last executing test programs: 4.365941493s ago: executing program 3 (id=527): r0 = socket$kcm(0x11, 0x3, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r3) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000000)={'syzkaller0\x00', @broadcast}) r4 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x7, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0) sendmsg$nl_route_sched(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000002c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdc01, {0x0, 0x0, 0x0, r5, {0x0, 0x9}, {0xffff, 0xb}, {0xffff, 0xffe0}}, [@qdisc_kind_options=@q_fq={{0x7}, {0xc, 0x2, [@TCA_FQ_FLOW_MAX_RATE={0x8, 0x7, 0x1}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x240040e0}, 0x200040d0) r6 = socket$packet(0x11, 0x3, 0x300) sendto$packet(r6, &(0x7f00000005c0)="bad330fbc9b55400040000ea0756", 0xe, 0x20000891, &(0x7f00000001c0)={0x11, 0x810d, r5, 0x1, 0x3, 0x6, @multicast}, 0x14) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000600), 0x56) sendmsg$kcm(r0, &(0x7f00000000c0)={&(0x7f0000000580)=@xdp={0x2c, 0x0, r7, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000180)="27030200590214000600002fb96dbcf706e10500000086ddffff1144ee162fd4b8bf4a31accb", 0xfdef}], 0x1}, 0x0) 3.92466683s ago: executing program 3 (id=531): sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWTABLE={0x1c, 0x0, 0xa, 0x5, 0x0, 0x0, {0x7}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}]}, @NFT_MSG_NEWSET={0x60, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_EXPRESSIONS={0x20, 0x12, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @meta={{0x9}, @void}}, {0xc, 0x1, 0x0, 0x1, @ct={{0x7}, @void}}]}, @NFTA_SET_TIMEOUT={0xc, 0xb, 0x1, 0x0, 0x1800000000000000}, @NFTA_SET_DESC={0xc, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x5}]}, @NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xa4}, 0x1, 0x0, 0x0, 0x2400c000}, 0x20000000) r0 = syz_open_dev$sg(&(0x7f00000000c0), 0x6f5e, 0x101) capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x40}) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x85) 3.858322843s ago: executing program 2 (id=532): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e) sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000029c0)={0x0, 0x0, 0x0}, 0x20008080) r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x15, 0xf, &(0x7f0000000100)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0xcd9}, {{0x18, 0x1, 0x1, 0x0, r5}, {}, {0x7, 0x0, 0xb, 0x6}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @sk_reuseport=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r6 = socket(0x10, 0x3, 0x0) r7 = openat$sysfs(0xffffff9c, &(0x7f0000000000)='/sys/kernel/profiling', 0x42242, 0x73) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={0xffffffffffffffff, 0x108, 0x0, 0x0, &(0x7f00000004c0), 0x0, 0xf000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x6}, 0x50) r8 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x84}}, 0x0) pwritev(r7, &(0x7f0000000400)=[{&(0x7f0000000040)='9G', 0x2}, {0x0}], 0x2, 0xffffff01, 0xa) close_range(r1, 0xffffffffffffffff, 0x0) r9 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$sock_buf(r9, 0x1, 0x22, 0x0, &(0x7f0000000180)) r10 = syz_open_procfs$namespace(0x0, &(0x7f00000005c0)='ns/time\x00') sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=@newlink={0x3c, 0x10, 0xffffffffffffffff, 0x70bd2a, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x52014, 0x2021}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_NET_NS_FD={0x8, 0x1c, r10}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8841}, 0x280048c6) sendmsg$L2TP_CMD_SESSION_DELETE(0xffffffffffffffff, &(0x7f0000001f00)={0x0, 0x0, &(0x7f0000001ec0)={&(0x7f0000001e40)={0x24, 0x0, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@L2TP_ATTR_CONN_ID={0x8, 0x9, 0x2}, @L2TP_ATTR_SESSION_ID={0x8, 0xb, 0x4}]}, 0x24}}, 0x80) sendmsg$L2TP_CMD_SESSION_MODIFY(r6, &(0x7f0000000480)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x28, 0x0, 0x100, 0x70bd29, 0x25dfdbfb, {}, [@L2TP_ATTR_UDP_ZERO_CSUM6_TX={0x5}, @L2TP_ATTR_COOKIE={0xc, 0xf, 0x2}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000000}, 0x4004001) 3.722011418s ago: executing program 3 (id=533): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="1801000004000000000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000002240)=ANY=[], 0x48) r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000}, 0x94) bpf$BPF_PROG_DETACH(0x8, &(0x7f00000015c0)=ANY=[@ANYRES32=r2, @ANYRES32=r3, @ANYBLOB="05"], 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r2}, &(0x7f00000006c0), &(0x7f0000000700)=r1}, 0x20) sendmsg$inet(r0, &(0x7f0000000980)={0x0, 0x6000, &(0x7f0000000900)=[{&(0x7f0000000640)='U', 0xa00120}], 0x1}, 0x3) 2.662408718s ago: executing program 2 (id=534): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x840}, 0x0) 2.612283731s ago: executing program 3 (id=537): bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000300)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x50) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50) ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f0000000780)={0x0, 0x4, 0x0, [0x806f, 0x0, 0x2d5, 0x2, 0x6], [0x6, 0x7, 0x1, 0x9, 0x8002, 0x0, 0x5, 0x2, 0x0, 0x802, 0x9, 0x200000100, 0xffffffffffffffff, 0xfffffffffffffff4, 0x4a, 0x5, 0x100, 0xd, 0xdd, 0x5, 0x1, 0x2a9, 0x2000000003, 0xc39, 0x8000003, 0x8, 0x100000000, 0x2, 0xa51, 0x8, 0x6, 0x800000000000001, 0x7, 0xfffffffffffffffb, 0x81, 0x100, 0x5, 0x931, 0x101, 0x3, 0xf, 0x8000000000000000, 0x7, 0x1, 0x8, 0x8, 0x6a8, 0x102, 0x1, 0x83, 0x538a, 0x9, 0xfffffffffffffffb, 0x4, 0x3, 0x8000000000000000, 0x5, 0x9, 0x80008000, 0x8000000000000000, 0x40000000000004, 0xfffffffffffffffc, 0xfffffffffffffffd, 0x5bc, 0x1, 0x0, 0x4, 0x8000, 0xc9, 0x7, 0x6, 0x9, 0x82c, 0x8000, 0xe000000000000, 0xe4, 0x11, 0x0, 0x8, 0x26, 0xffffffffffffffff, 0x7, 0xbfa, 0x8000000000000000, 0x2000000009, 0x8, 0x0, 0x6, 0x6, 0x7, 0x100000002, 0x4, 0x4, 0x7, 0x7, 0x7, 0x9, 0x1, 0x16d, 0x6, 0x68d, 0xffffffffffff43b0, 0x8, 0x50000000000000, 0xe, 0x0, 0x1, 0x300000003, 0x5, 0x7, 0x406, 0x3, 0x6, 0x5, 0x1, 0x3, 0x10000, 0x7fffffff, 0x7, 0x3, 0x1]}) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000fe4000/0x11000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff1000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004084) r0 = io_uring_setup(0x899, &(0x7f0000000040)={0x0, 0x3cb1, 0x1c080, 0xa, 0x20002f7}) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x5, 0x7, 0x7ffc0001}]}) io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0) 2.585359342s ago: executing program 2 (id=538): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0) 2.447179567s ago: executing program 2 (id=539): syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000200)=ANY=[], 0x1, 0x3b9, &(0x7f0000000a80)="$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") truncate(&(0x7f0000000040)='./file1\x00', 0x1001bfc) 2.397814859s ago: executing program 0 (id=540): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYRES32=0x0, @ANYBLOB="0000000000000000480012800e00010069703665727370616e00000034000280060002003000000014000600fc02000000000000000000000000000014000700fc01000000000000000000000000000008000a00", @ANYRES32], 0x70}, 0x1, 0x0, 0x0, 0x4040080}, 0x0) 2.325207931s ago: executing program 1 (id=541): sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWTABLE={0x1c, 0x0, 0xa, 0x5, 0x0, 0x0, {0x7}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}]}, @NFT_MSG_NEWSET={0x60, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_EXPRESSIONS={0x20, 0x12, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @meta={{0x9}, @void}}, {0xc, 0x1, 0x0, 0x1, @ct={{0x7}, @void}}]}, @NFTA_SET_TIMEOUT={0xc, 0xb, 0x1, 0x0, 0x1800000000000000}, @NFTA_SET_DESC={0xc, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x5}]}, @NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xa4}, 0x1, 0x0, 0x0, 0x2400c000}, 0x20000000) r0 = syz_open_dev$sg(&(0x7f00000000c0), 0x6f5e, 0x101) capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x40}) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x85) 2.216522755s ago: executing program 0 (id=542): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e) sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000029c0)={0x0, 0x0, 0x0}, 0x20008080) r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x15, 0xf, &(0x7f0000000100)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0xcd9}, {{0x18, 0x1, 0x1, 0x0, r5}, {}, {0x7, 0x0, 0xb, 0x6}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @sk_reuseport=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r6 = socket(0x10, 0x3, 0x0) r7 = openat$sysfs(0xffffff9c, &(0x7f0000000000)='/sys/kernel/profiling', 0x42242, 0x73) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={0xffffffffffffffff, 0x108, 0x0, 0x0, &(0x7f00000004c0), 0x0, 0xf000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x6}, 0x50) r8 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x84}}, 0x0) pwritev(r7, &(0x7f0000000400)=[{&(0x7f0000000040)='9G', 0x2}, {0x0}], 0x2, 0xffffff01, 0xa) close_range(r1, 0xffffffffffffffff, 0x0) r9 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$sock_buf(r9, 0x1, 0x22, 0x0, &(0x7f0000000180)) r10 = syz_open_procfs$namespace(0x0, &(0x7f00000005c0)='ns/time\x00') sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=@newlink={0x3c, 0x10, 0xffffffffffffffff, 0x70bd2a, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x52014, 0x2021}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_NET_NS_FD={0x8, 0x1c, r10}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8841}, 0x280048c6) sendmsg$L2TP_CMD_SESSION_DELETE(0xffffffffffffffff, &(0x7f0000001f00)={0x0, 0x0, &(0x7f0000001ec0)={&(0x7f0000001e40)={0x24, 0x0, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@L2TP_ATTR_CONN_ID={0x8, 0x9, 0x2}, @L2TP_ATTR_SESSION_ID={0x8, 0xb, 0x4}]}, 0x24}}, 0x80) sendmsg$L2TP_CMD_SESSION_MODIFY(r6, &(0x7f0000000480)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x28, 0x0, 0x100, 0x70bd29, 0x25dfdbfb, {}, [@L2TP_ATTR_UDP_ZERO_CSUM6_TX={0x5}, @L2TP_ATTR_COOKIE={0xc, 0xf, 0x2}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000000}, 0x4004001) 2.008919144s ago: executing program 1 (id=543): writev(0xffffffffffffffff, &(0x7f0000000000)=[{0x0}, {0x0}, {&(0x7f0000001480)="d1ffacd516de50ac9d15bc75316da4defa1e72f65a65cdd26dcc389aacf7856da9aecf3765d4c032e1960faf25bad906b7d3440b6e71a82f1d8f8b8db35b6091f3af94c6b46b9ab10fe3923f268771078d2668be7bd3eb941d4bb5baa8547e36283a065ce5766cbff3a8fc37fc4507643d3786bbf231d3ed88cb8b01eab14e4372cf4f89bd1b853caa5d9f07f523b9dfa8cc09053ff36fde08e96fb6b3acc196b1bd1e2d3a6c65f585df7e2b8b17439a7ab29a7dfe642c2f0ac7a81eca8073b559663f2daf7a0832b2b09557794a21bf114831f8e6db3922d0cd169e5a8b4adc95d7322ee75944de15f57780b88fef7f3d9b256705ccfa2125b43ce8e3aacaea", 0x100}], 0x3) r0 = syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x8002) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={0xffffffffffffffff, 0x2000300, 0x3, 0x0, &(0x7f0000000000)="63eced", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) ioctl$SCSI_IOCTL_GET_PCI(r0, 0x5393, &(0x7f0000000000)) 1.962354245s ago: executing program 2 (id=544): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) shutdown(r0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x44, 0x0, 0x0) bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$ITER_CREATE(0xb, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={0xffffffffffffffff, 0x8, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) setsockopt$inet_sctp6_SCTP_CONTEXT(r0, 0x84, 0x11, 0x0, 0x0) 1.863661389s ago: executing program 3 (id=545): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="1801000004000000000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000002240)=ANY=[], 0x48) r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000}, 0x94) bpf$BPF_PROG_DETACH(0x8, &(0x7f00000015c0)=ANY=[@ANYRES32=r2, @ANYRES32=r3, @ANYBLOB="05"], 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r2}, &(0x7f00000006c0), &(0x7f0000000700)=r1}, 0x20) sendmsg$inet(r0, &(0x7f0000000980)={0x0, 0x6000, &(0x7f0000000900)=[{&(0x7f0000000640)='U', 0xa00120}], 0x1}, 0x3) 1.074435229s ago: executing program 0 (id=546): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000008c0)={{0x14}, [], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x28}, 0x1, 0x0, 0x0, 0x840}, 0x0) 896.211206ms ago: executing program 0 (id=547): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000008c0)={[{@nodioread_nolock}, {@errors_remount}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@init_itable}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x3}}]}, 0x1, 0x46f, &(0x7f0000000bc0)="$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") setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', 0x0, 0x0, 0x0) 896.032046ms ago: executing program 1 (id=548): mount$tmpfs(0x0, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000f80), 0xc00, &(0x7f0000000380)=ANY=[@ANYBLOB="6d706f6c3d7072656665723d72656c61746976652c6990b24eff33ffff402cc3292b3dacc026565f69bc9e911a4d00f862346cc1e6c906abc2eb084b80af3c0f8ed7279e6a174f5fefe98ffff6980e6bde36494e975344dea93011df215765950fff74c942bfa51d4eacc491fa05a4e84330dbf99d9eec342531848a275b07a034a0f715c3e9b7fc66ac3fd9726bc53245d2e48967de5b426b3b1574e9d0f7732af68efa14b25a43ee7437cb972afb4448636281027f95ec3830fdda686817793671a03b760e2ffc"]) newfstatat(0xffffffffffffff9c, 0x0, 0x0, 0x800) 638.352526ms ago: executing program 1 (id=549): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) socket$inet(0x2, 0x80001, 0x84) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) r0 = socket$pppl2tp(0x18, 0x1, 0x1) connect$pppl2tp(r0, &(0x7f0000000440)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x4, 0x1, 0x0, {0xa, 0x4e20, 0x6, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x9}}}, 0x32) 616.186967ms ago: executing program 0 (id=550): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0xfffffffffffffdbc, 0x2, {{0x1, 0xd, 0x0, 0x9, 0x8}, 0x6, 0x1, 0x1, 0x4, 0x8, 0xe, 0x7, 0x1d, 0x3, 0x9, {0xa2d6, 0x200, 0xb, 0x40, 0x2, 0x1ff}}}}]}, 0x78}}, 0x0) r3 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000940)=@newqdisc={0x24, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xffffbddc, {0x0, 0x0, 0x0, r4, {0x10}, {0x2}, {0xe, 0xfff3}}}, 0x24}, 0x1, 0x0, 0x0, 0x4048841}, 0x4000) 299.547349ms ago: executing program 0 (id=551): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f00000001c0)={[{@data_err_ignore}, {@dioread_nolock}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@grpid}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x3e}}, {@min_batch_time={'min_batch_time', 0x3d, 0x3}}]}, 0x1, 0x47a, &(0x7f00000006c0)="$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") 229.370651ms ago: executing program 1 (id=552): sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWSET={0x68, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0x3}, @NFTA_SET_EXPRESSIONS={0x20, 0x12, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @meta={{0x9}, @void}}, {0xc, 0x1, 0x0, 0x1, @ct={{0x7}, @void}}]}, @NFTA_SET_TIMEOUT={0xc, 0xb, 0x1, 0x0, 0x1800000000000000}, @NFTA_SET_DESC={0xc, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x5}]}, @NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x90}, 0x1, 0x0, 0x0, 0x2400c000}, 0x20000000) r0 = syz_open_dev$sg(&(0x7f00000000c0), 0x6f5e, 0x101) capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x40}) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x85) 26.276309ms ago: executing program 2 (id=553): bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000300)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x50) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50) ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f0000000780)={0x0, 0x4, 0x0, [0x806f, 0x0, 0x2d5, 0x2, 0x6], [0x6, 0x7, 0x1, 0x9, 0x8002, 0x0, 0x5, 0x2, 0x0, 0x802, 0x9, 0x200000100, 0xffffffffffffffff, 0xfffffffffffffff4, 0x4a, 0x5, 0x100, 0xd, 0xdd, 0x5, 0x1, 0x2a9, 0x2000000003, 0xc39, 0x8000003, 0x8, 0x100000000, 0x2, 0xa51, 0x8, 0x6, 0x800000000000001, 0x7, 0xfffffffffffffffb, 0x81, 0x100, 0x5, 0x931, 0x101, 0x3, 0xf, 0x8000000000000000, 0x7, 0x1, 0x8, 0x8, 0x6a8, 0x102, 0x1, 0x83, 0x538a, 0x9, 0xfffffffffffffffb, 0x4, 0x3, 0x8000000000000000, 0x5, 0x9, 0x80008000, 0x8000000000000000, 0x40000000000004, 0xfffffffffffffffc, 0xfffffffffffffffd, 0x5bc, 0x1, 0x0, 0x4, 0x8000, 0xc9, 0x7, 0x6, 0x9, 0x82c, 0x8000, 0xe000000000000, 0xe4, 0x11, 0x0, 0x8, 0x26, 0xffffffffffffffff, 0x7, 0xbfa, 0x8000000000000000, 0x2000000009, 0x8, 0x0, 0x6, 0x6, 0x7, 0x100000002, 0x4, 0x4, 0x7, 0x7, 0x7, 0x9, 0x1, 0x16d, 0x6, 0x68d, 0xffffffffffff43b0, 0x8, 0x50000000000000, 0xe, 0x0, 0x1, 0x300000003, 0x5, 0x7, 0x406, 0x3, 0x6, 0x5, 0x1, 0x3, 0x10000, 0x7fffffff, 0x7, 0x3, 0x1]}) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000fe4000/0x11000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff1000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004084) r0 = io_uring_setup(0x899, &(0x7f0000000040)={0x0, 0x3cb1, 0x1c080, 0xa, 0x20002f7}) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x5, 0x7, 0x7ffc0001}]}) io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0) 14.60536ms ago: executing program 3 (id=554): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e) sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000029c0)={0x0, 0x0, 0x0}, 0x20008080) r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x15, 0xf, &(0x7f0000000100)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0xcd9}, {{0x18, 0x1, 0x1, 0x0, r5}, {}, {0x7, 0x0, 0xb, 0x6}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @sk_reuseport=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r6 = socket(0x10, 0x3, 0x0) r7 = openat$sysfs(0xffffff9c, &(0x7f0000000000)='/sys/kernel/profiling', 0x42242, 0x73) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={0xffffffffffffffff, 0x108, 0x0, 0x0, &(0x7f00000004c0), 0x0, 0xf000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x6}, 0x50) r8 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x84}}, 0x0) pwritev(r7, &(0x7f0000000400)=[{&(0x7f0000000040)='9G', 0x2}, {0x0}], 0x2, 0xffffff01, 0xa) close_range(r1, 0xffffffffffffffff, 0x0) r9 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$sock_buf(r9, 0x1, 0x22, 0x0, &(0x7f0000000180)) r10 = syz_open_procfs$namespace(0x0, &(0x7f00000005c0)='ns/time\x00') sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=@newlink={0x3c, 0x10, 0xffffffffffffffff, 0x70bd2a, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x52014, 0x2021}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_NET_NS_FD={0x8, 0x1c, r10}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8841}, 0x280048c6) sendmsg$L2TP_CMD_SESSION_DELETE(0xffffffffffffffff, &(0x7f0000001f00)={0x0, 0x0, &(0x7f0000001ec0)={&(0x7f0000001e40)={0x24, 0x0, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@L2TP_ATTR_CONN_ID={0x8, 0x9, 0x2}, @L2TP_ATTR_SESSION_ID={0x8, 0xb, 0x4}]}, 0x24}}, 0x80) sendmsg$L2TP_CMD_SESSION_MODIFY(r6, &(0x7f0000000480)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x28, 0x0, 0x100, 0x70bd29, 0x25dfdbfb, {}, [@L2TP_ATTR_UDP_ZERO_CSUM6_TX={0x5}, @L2TP_ATTR_COOKIE={0xc, 0xf, 0x2}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000000}, 0x4004001) 0s ago: executing program 1 (id=555): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000008c0)={{0x14}, [], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x28}, 0x1, 0x0, 0x0, 0x840}, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.78' (ED25519) to the list of known hosts. syzkaller login: [ 69.611373][ T5755] cgroup: Unknown subsys name 'net' [ 69.745081][ T5755] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 71.390943][ T5755] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 71.730464][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.737258][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 73.538637][ T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 73.547996][ T5776] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 73.555381][ T5776] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 73.563926][ T5776] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 73.572944][ T5776] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 73.587790][ T5781] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 73.595802][ T5776] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 73.617665][ T5782] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 73.618876][ T5778] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 73.632891][ T5780] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 73.640290][ T5778] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 73.641356][ T5780] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 73.655108][ T5782] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 73.664440][ T5778] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 73.664879][ T5782] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 73.678030][ T5778] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 73.680109][ T5782] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 73.694991][ T5782] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 73.697254][ T5778] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 73.702506][ T5782] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 73.710405][ T5776] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 73.723584][ T5778] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 73.733378][ T5782] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 73.757572][ T5782] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 74.183358][ T5771] chnl_net:caif_netlink_parms(): no params data found [ 74.287961][ T5772] chnl_net:caif_netlink_parms(): no params data found [ 74.388699][ T5766] chnl_net:caif_netlink_parms(): no params data found [ 74.401279][ T5771] bridge0: port 1(bridge_slave_0) entered blocking state [ 74.409584][ T5771] bridge0: port 1(bridge_slave_0) entered disabled state [ 74.417005][ T5771] bridge_slave_0: entered allmulticast mode [ 74.423854][ T5771] bridge_slave_0: entered promiscuous mode [ 74.452842][ T5771] bridge0: port 2(bridge_slave_1) entered blocking state [ 74.460149][ T5771] bridge0: port 2(bridge_slave_1) entered disabled state [ 74.467636][ T5771] bridge_slave_1: entered allmulticast mode [ 74.474426][ T5771] bridge_slave_1: entered promiscuous mode [ 74.486114][ T5777] chnl_net:caif_netlink_parms(): no params data found [ 74.591064][ T5771] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 74.603969][ T5771] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 74.613564][ T5772] bridge0: port 1(bridge_slave_0) entered blocking state [ 74.624962][ T5772] bridge0: port 1(bridge_slave_0) entered disabled state [ 74.632629][ T5772] bridge_slave_0: entered allmulticast mode [ 74.640338][ T5772] bridge_slave_0: entered promiscuous mode [ 74.676504][ T5772] bridge0: port 2(bridge_slave_1) entered blocking state [ 74.683860][ T5772] bridge0: port 2(bridge_slave_1) entered disabled state [ 74.691288][ T5772] bridge_slave_1: entered allmulticast mode [ 74.698218][ T5772] bridge_slave_1: entered promiscuous mode [ 74.767528][ T5771] team0: Port device team_slave_0 added [ 74.773707][ T5766] bridge0: port 1(bridge_slave_0) entered blocking state [ 74.781196][ T5766] bridge0: port 1(bridge_slave_0) entered disabled state [ 74.788679][ T5766] bridge_slave_0: entered allmulticast mode [ 74.795563][ T5766] bridge_slave_0: entered promiscuous mode [ 74.803620][ T5766] bridge0: port 2(bridge_slave_1) entered blocking state [ 74.810983][ T5766] bridge0: port 2(bridge_slave_1) entered disabled state [ 74.819399][ T5766] bridge_slave_1: entered allmulticast mode [ 74.826225][ T5766] bridge_slave_1: entered promiscuous mode [ 74.835099][ T5772] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 74.849643][ T5772] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 74.858996][ T5777] bridge0: port 1(bridge_slave_0) entered blocking state [ 74.866241][ T5777] bridge0: port 1(bridge_slave_0) entered disabled state [ 74.874622][ T5777] bridge_slave_0: entered allmulticast mode [ 74.881699][ T5777] bridge_slave_0: entered promiscuous mode [ 74.891367][ T5771] team0: Port device team_slave_1 added [ 74.949252][ T5766] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 74.959416][ T5777] bridge0: port 2(bridge_slave_1) entered blocking state [ 74.966695][ T5777] bridge0: port 2(bridge_slave_1) entered disabled state [ 74.974368][ T5777] bridge_slave_1: entered allmulticast mode [ 74.981916][ T5777] bridge_slave_1: entered promiscuous mode [ 75.005101][ T5771] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 75.013623][ T5771] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.042306][ T5771] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 75.063872][ T5766] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 75.075543][ T5777] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 75.086311][ T5771] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 75.093671][ T5771] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.120141][ T5771] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 75.134542][ T5772] team0: Port device team_slave_0 added [ 75.153474][ T5777] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 75.191216][ T5772] team0: Port device team_slave_1 added [ 75.225318][ T5777] team0: Port device team_slave_0 added [ 75.244135][ T5777] team0: Port device team_slave_1 added [ 75.254094][ T5766] team0: Port device team_slave_0 added [ 75.262515][ T5766] team0: Port device team_slave_1 added [ 75.269738][ T5772] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 75.277042][ T5772] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.303421][ T5772] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 75.356735][ T5772] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 75.363877][ T5772] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.390299][ T5772] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 75.406091][ T5771] hsr_slave_0: entered promiscuous mode [ 75.414083][ T5771] hsr_slave_1: entered promiscuous mode [ 75.448253][ T5766] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 75.455344][ T5766] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.481629][ T5766] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 75.494978][ T5766] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 75.502195][ T5766] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.528281][ T5766] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 75.541934][ T5777] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 75.549184][ T5777] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.575285][ T5777] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 75.589003][ T5777] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 75.596012][ T5777] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.622702][ T5777] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 75.691552][ T5772] hsr_slave_0: entered promiscuous mode [ 75.699539][ T5772] hsr_slave_1: entered promiscuous mode [ 75.705647][ T5772] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 75.713673][ T5772] Cannot create hsr debugfs directory [ 75.766157][ T5766] hsr_slave_0: entered promiscuous mode [ 75.773382][ T5766] hsr_slave_1: entered promiscuous mode [ 75.780009][ T5766] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 75.788624][ T5766] Cannot create hsr debugfs directory [ 75.808104][ T5782] Bluetooth: hci2: command tx timeout [ 75.813930][ T5776] Bluetooth: hci3: command tx timeout [ 75.820194][ T5782] Bluetooth: hci1: command tx timeout [ 75.820213][ T5773] Bluetooth: hci0: command tx timeout [ 75.846671][ T5777] hsr_slave_0: entered promiscuous mode [ 75.853608][ T5777] hsr_slave_1: entered promiscuous mode [ 75.859769][ T5777] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 75.867972][ T5777] Cannot create hsr debugfs directory [ 76.245720][ T5771] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 76.259420][ T5771] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 76.274195][ T5771] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 76.285931][ T5771] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 76.360511][ T5772] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 76.374879][ T5772] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 76.397208][ T5772] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 76.408996][ T5772] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 76.487820][ T5777] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 76.504954][ T5777] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 76.516519][ T5777] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 76.529539][ T5777] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 76.625293][ T5766] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 76.644931][ T5766] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 76.655862][ T5766] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 76.682027][ T5766] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 76.698957][ T5771] 8021q: adding VLAN 0 to HW filter on device bond0 [ 76.752589][ T5771] 8021q: adding VLAN 0 to HW filter on device team0 [ 76.770669][ T1094] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.778191][ T1094] bridge0: port 1(bridge_slave_0) entered forwarding state [ 76.836329][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.843539][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 76.878264][ T5772] 8021q: adding VLAN 0 to HW filter on device bond0 [ 76.970211][ T5772] 8021q: adding VLAN 0 to HW filter on device team0 [ 76.994834][ T5777] 8021q: adding VLAN 0 to HW filter on device bond0 [ 77.009116][ T1099] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.016957][ T1099] bridge0: port 1(bridge_slave_0) entered forwarding state [ 77.046353][ T59] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.053634][ T59] bridge0: port 2(bridge_slave_1) entered forwarding state [ 77.071799][ T5766] 8021q: adding VLAN 0 to HW filter on device bond0 [ 77.145018][ T5777] 8021q: adding VLAN 0 to HW filter on device team0 [ 77.160375][ T5766] 8021q: adding VLAN 0 to HW filter on device team0 [ 77.192309][ T1094] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.199525][ T1094] bridge0: port 1(bridge_slave_0) entered forwarding state [ 77.238188][ T39] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.245468][ T39] bridge0: port 1(bridge_slave_0) entered forwarding state [ 77.268535][ T39] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.275892][ T39] bridge0: port 2(bridge_slave_1) entered forwarding state [ 77.309945][ T39] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.317200][ T39] bridge0: port 2(bridge_slave_1) entered forwarding state [ 77.452625][ T5771] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 77.604707][ T5771] veth0_vlan: entered promiscuous mode [ 77.665906][ T5771] veth1_vlan: entered promiscuous mode [ 77.750077][ T5771] veth0_macvtap: entered promiscuous mode [ 77.788295][ T5771] veth1_macvtap: entered promiscuous mode [ 77.835954][ T5771] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 77.872356][ T5771] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 77.891659][ T5773] Bluetooth: hci3: command tx timeout [ 77.891683][ T5776] Bluetooth: hci1: command tx timeout [ 77.899907][ T5773] Bluetooth: hci2: command tx timeout [ 77.903155][ T5782] Bluetooth: hci0: command tx timeout [ 77.941904][ T5771] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.970928][ T5771] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.981940][ T5771] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.991510][ T5771] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.023084][ T5772] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 78.113450][ T5766] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 78.192391][ T5777] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 78.203052][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 78.221195][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 78.283148][ T5772] veth0_vlan: entered promiscuous mode [ 78.290319][ T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 78.291375][ T5766] veth0_vlan: entered promiscuous mode [ 78.308171][ T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 78.316545][ T5766] veth1_vlan: entered promiscuous mode [ 78.357420][ T5772] veth1_vlan: entered promiscuous mode [ 78.441748][ T5766] veth0_macvtap: entered promiscuous mode [ 78.471838][ T5766] veth1_macvtap: entered promiscuous mode [ 78.525076][ T5777] veth0_vlan: entered promiscuous mode [ 78.555598][ T5766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 78.567277][ T5766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.582234][ T5766] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 78.608818][ T5772] veth0_macvtap: entered promiscuous mode [ 78.632234][ T5766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 78.650972][ T5766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.664506][ T5766] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 78.673314][ T5777] veth1_vlan: entered promiscuous mode [ 78.685555][ T5772] veth1_macvtap: entered promiscuous mode [ 78.701850][ T5766] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.711842][ T5766] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.721528][ T5766] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.730703][ T5766] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.801537][ T5772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 78.814527][ T5772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.825920][ T5772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 78.837402][ T5772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.849598][ T5772] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 78.877710][ T5772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 78.890795][ T5772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.901759][ T5772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 78.912613][ T5772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.924360][ T5772] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 78.952667][ T5772] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.965771][ T5772] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.975161][ T5772] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.984214][ T5772] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.044309][ T1094] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 79.070454][ T1094] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 79.086125][ T5777] veth0_macvtap: entered promiscuous mode [ 79.138489][ T23] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 79.159129][ T5777] veth1_macvtap: entered promiscuous mode [ 79.185152][ T2931] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 79.195008][ T1099] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 79.208489][ T2931] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 79.221049][ T1099] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 79.232435][ T5777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 79.243968][ T5777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.254769][ T5777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 79.265376][ T5777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.275491][ T5777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 79.286142][ T5777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.298236][ T5777] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 79.324946][ T5777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 79.335833][ T5777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.346520][ T5777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 79.361070][ T5777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.371300][ T5777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 79.375257][ T23] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 79.387186][ T5777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.391255][ T23] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 79.410099][ T23] usb 1-1: Product: syz [ 79.414311][ T23] usb 1-1: Manufacturer: syz [ 79.421558][ T23] usb 1-1: SerialNumber: syz [ 79.422470][ T5777] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 79.464555][ T5777] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.466341][ T23] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 79.475628][ T5777] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.503867][ T5777] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.514327][ T5777] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.525414][ T5836] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 79.546600][ T1099] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 79.583626][ T1099] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 79.743745][ T5839] syz.3.4[5839]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 79.774662][ T5839] loop3: detected capacity change from 0 to 512 [ 79.790370][ T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 79.820620][ T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 79.822474][ T5839] EXT4-fs: Ignoring removed i_version option [ 79.868406][ T5839] EXT4-fs: Ignoring removed nomblk_io_submit option [ 79.942394][ T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 79.968821][ T5782] Bluetooth: hci0: command tx timeout [ 79.974306][ T5782] Bluetooth: hci1: command tx timeout [ 79.974323][ T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 79.982125][ T5776] Bluetooth: hci2: command tx timeout [ 79.987966][ T5773] Bluetooth: hci3: command tx timeout [ 80.032044][ T5842] loop1: detected capacity change from 0 to 1024 [ 80.041299][ T5839] EXT4-fs error (device loop3): ext4_orphan_get:1424: comm syz.3.4: bad orphan inode 1 [ 80.098004][ T5839] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 80.114017][ T5842] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 80.483142][ T5772] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.628679][ T5836] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive [ 80.636293][ T5836] ath9k_htc: Failed to initialize the device [ 80.659081][ T5812] usb 1-1: USB disconnect, device number 2 [ 80.681619][ T5812] usb 1-1: ath9k_htc: USB layer deinitialized [ 80.819077][ T5766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.015233][ T5853] syzkaller0: entered promiscuous mode [ 81.022333][ T5853] syzkaller0: entered allmulticast mode [ 81.222068][ T5861] kernel profiling enabled (shift: 9) [ 82.047488][ T51] Bluetooth: hci2: command tx timeout [ 82.052991][ T51] Bluetooth: hci3: command tx timeout [ 82.058507][ T51] Bluetooth: hci0: command tx timeout [ 82.097094][ T5773] Bluetooth: hci1: command tx timeout [ 82.324367][ T5870] loop0: detected capacity change from 0 to 64 [ 83.206690][ T5871] loop3: detected capacity change from 0 to 32768 [ 83.236713][ T5871] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop3 scanned by syz.3.11 (5871) [ 83.368427][ T5871] BTRFS info (device loop3): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 83.427437][ T5871] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm [ 83.447214][ T5871] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 83.467973][ T5871] BTRFS info (device loop3): use zstd compression, level 3 [ 83.497156][ T5871] BTRFS info (device loop3): using free space tree [ 83.676281][ T5871] BTRFS info (device loop3): enabling ssd optimizations [ 83.698486][ T5875] loop0: detected capacity change from 0 to 32768 [ 83.700512][ T5871] BTRFS info (device loop3): auto enabling async discard [ 83.724074][ T5875] BTRFS warning: duplicate device /dev/loop0 devid 1 generation 8 scanned by syz.0.13 (5875) [ 83.897466][ T5767] BTRFS warning: duplicate device /dev/loop0 devid 1 generation 8 scanned by udevd (5767) [ 83.975323][ T28] audit: type=1800 audit(1775227267.256:2): pid=5871 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.11" name="file1" dev="loop3" ino=260 res=0 errno=0 [ 84.003160][ T5871] fs-verity: sha256 using implementation "sha256-avx2" [ 84.091591][ T5871] BTRFS info (device loop3): setting compat-ro feature flag for VERITY (0x4) [ 84.432189][ T5766] BTRFS info (device loop3): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 84.990267][ T5898] program syz.3.15 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 86.330403][ T5907] netlink: 76 bytes leftover after parsing attributes in process `syz.3.18'. [ 86.614396][ T5920] tipc: Started in network mode [ 86.626766][ T5920] tipc: Node identity be2053e70fc5, cluster identity 4711 [ 86.635914][ T5920] tipc: Enabled bearer , priority 0 [ 86.740971][ T5920] syzkaller0: entered promiscuous mode [ 86.749295][ T5920] syzkaller0: entered allmulticast mode [ 86.755647][ T5920] tipc: Resetting bearer [ 86.787320][ T5921] syzkaller0: entered promiscuous mode [ 86.813920][ T5921] syzkaller0: entered allmulticast mode [ 86.903074][ T5919] tipc: Resetting bearer [ 87.129976][ T967] cfg80211: failed to load regulatory.db [ 88.468871][ T28] audit: type=1326 audit(1775227271.756:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.26" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc89b9c819 code=0x7ffc0000 [ 88.513379][ T5942] loop2: detected capacity change from 0 to 512 [ 88.537089][ T28] audit: type=1326 audit(1775227271.776:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.26" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc89b9c819 code=0x7ffc0000 [ 88.597932][ T28] audit: type=1326 audit(1775227271.776:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.26" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc89b9c819 code=0x7ffc0000 [ 88.669364][ T28] audit: type=1326 audit(1775227271.776:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.26" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc89b9c819 code=0x7ffc0000 [ 88.736934][ T28] audit: type=1326 audit(1775227271.776:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.26" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7fdc89b9c819 code=0x7ffc0000 [ 88.802047][ T5942] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 88.806882][ T28] audit: type=1326 audit(1775227271.796:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.26" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc89b9c819 code=0x7ffc0000 [ 88.852775][ T28] audit: type=1326 audit(1775227271.856:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.26" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdc89b5d04e code=0x7ffc0000 [ 88.882755][ T28] audit: type=1326 audit(1775227271.856:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.26" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdc89b5d04e code=0x7ffc0000 [ 88.905334][ T28] audit: type=1326 audit(1775227271.856:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.26" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdc89b5d04e code=0x7ffc0000 [ 89.081637][ T28] kauditd_printk_skb: 66 callbacks suppressed [ 89.081651][ T28] audit: type=1326 audit(1775227272.366:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.26" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdc89b5d04e code=0x7ffc0000 [ 89.085149][ T5944] netlink: 8 bytes leftover after parsing attributes in process `syz.2.28'. [ 89.095275][ T28] audit: type=1326 audit(1775227272.376:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.26" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdc89b5d04e code=0x7ffc0000 [ 89.142716][ T28] audit: type=1326 audit(1775227272.376:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.26" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdc89b5d04e code=0x7ffc0000 [ 89.165512][ T28] audit: type=1326 audit(1775227272.376:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.26" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdc89b5d04e code=0x7ffc0000 [ 89.188688][ T28] audit: type=1326 audit(1775227272.376:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.26" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdc89b5d04e code=0x7ffc0000 [ 89.236375][ T28] audit: type=1326 audit(1775227272.376:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.26" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdc89b5d04e code=0x7ffc0000 [ 89.277046][ T28] audit: type=1326 audit(1775227272.406:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.26" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdc89b5d04e code=0x7ffc0000 [ 89.316946][ T28] audit: type=1326 audit(1775227272.406:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.26" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdc89b5d04e code=0x7ffc0000 [ 89.346337][ T28] audit: type=1326 audit(1775227272.406:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.26" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdc89b5d04e code=0x7ffc0000 [ 89.408077][ T28] audit: type=1326 audit(1775227272.406:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.26" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdc89b5d04e code=0x7ffc0000 [ 90.578874][ T5919] tipc: Disabling bearer [ 90.736344][ T9] tipc: Node number set to 2984596455 [ 90.816521][ T5951] loop0: detected capacity change from 0 to 512 [ 90.824329][ T5951] ======================================================= [ 90.824329][ T5951] WARNING: The mand mount option has been deprecated and [ 90.824329][ T5951] and is ignored by this kernel. Remove the mand [ 90.824329][ T5951] option from the mount to silence this warning. [ 90.824329][ T5951] ======================================================= [ 90.904846][ T5951] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 91.002732][ T5951] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 91.083122][ T5951] EXT4-fs (loop0): 1 truncate cleaned up [ 91.106190][ T5951] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 93.283285][ T5971] loop2: detected capacity change from 0 to 64 [ 93.720239][ T5771] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 94.567805][ T5965] loop1: detected capacity change from 0 to 32768 [ 94.677692][ T5965] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 94.717969][ T5812] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 94.723460][ T5975] loop0: detected capacity change from 0 to 32768 [ 94.739427][ T5975] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop0 scanned by syz.0.38 (5975) [ 94.948765][ T5812] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 95.092814][ T5812] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 95.275708][ T5812] usb 4-1: Product: syz [ 95.359730][ T5812] usb 4-1: Manufacturer: syz [ 95.462516][ T5812] usb 4-1: SerialNumber: syz [ 95.628228][ T5812] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 95.681894][ T5975] BTRFS info (device loop0): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 95.720723][ T5965] syz.1.35 (5965) used greatest stack depth: 18568 bytes left [ 95.728015][ T787] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 95.739795][ T5975] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm [ 95.750384][ T5975] BTRFS info (device loop0): using free space tree [ 95.870592][ T5772] ocfs2: Unmounting device (7,1) on (node local) [ 95.940214][ T5975] BTRFS info (device loop0): enabling ssd optimizations [ 95.947407][ T5975] BTRFS info (device loop0): auto enabling async discard [ 96.060945][ T5769] usb 4-1: USB disconnect, device number 2 [ 96.349319][ T6018] loop2: detected capacity change from 0 to 64 [ 96.461836][ T5771] BTRFS info (device loop0): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 96.883442][ T787] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive [ 97.011100][ T787] ath9k_htc: Failed to initialize the device [ 97.376900][ T5769] usb 4-1: ath9k_htc: USB layer deinitialized [ 97.448282][ T5785] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 11 /dev/loop0 scanned by udevd (5785) [ 97.566632][ T6026] loop3: detected capacity change from 0 to 512 [ 97.629256][ T6033] x_tables: ip_tables: set.3 match: invalid size 48 (kernel) != (user) 56 [ 97.709424][ T6026] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 97.777193][ T6026] ext4 filesystem being mounted at /12/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 97.870777][ T6026] __quota_error: 8 callbacks suppressed [ 97.870794][ T6026] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 4 index 0 [ 97.909060][ T6028] loop1: detected capacity change from 0 to 4096 [ 97.927170][ T6026] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0 [ 97.967289][ T6026] EXT4-fs error (device loop3): ext4_acquire_dquot:6949: comm syz.3.52: Failed to acquire dquot type 0 [ 98.007062][ T6028] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512). [ 98.205576][ T5766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 98.256403][ T6040] loop2: detected capacity change from 0 to 128 [ 98.378769][ T6040] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 98.439647][ T6040] ext4 filesystem being mounted at /19/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 98.520371][ T6040] EXT4-fs warning (device loop2): ext4_dirblock_csum_verify:406: inode #2: comm syz.2.56: No space for directory leaf checksum. Please run e2fsck -D. [ 98.567050][ T6040] EXT4-fs error (device loop2): __ext4_find_entry:1696: inode #2: comm syz.2.56: checksumming directory block 0 [ 98.627092][ T6045] EXT4-fs warning (device loop2): ext4_dirblock_csum_verify:406: inode #2: comm syz.2.56: No space for directory leaf checksum. Please run e2fsck -D. [ 98.657620][ T6045] EXT4-fs error (device loop2): __ext4_find_entry:1696: inode #2: comm syz.2.56: checksumming directory block 0 [ 98.764388][ T6049] loop3: detected capacity change from 0 to 512 [ 98.807804][ T6049] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 98.819314][ T5777] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 98.897046][ T6049] EXT4-fs (loop3): 1 truncate cleaned up [ 98.930958][ T6049] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 99.071313][ T6036] loop0: detected capacity change from 0 to 32768 [ 101.495975][ T5766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 101.517414][ T787] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 101.525286][ T6036] JBD2: journal reset failed [ 101.557117][ T6036] (syz.0.54,6036,1):ocfs2_journal_load:1167 ERROR: Failed to load journal! [ 101.567899][ T6036] (syz.0.54,6036,1):ocfs2_check_volume:2432 ERROR: ocfs2 journal load failed! -4 [ 101.658842][ T6064] x_tables: ip_tables: set.3 match: invalid size 48 (kernel) != (user) 56 [ 101.770399][ T787] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 101.810249][ T787] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 101.823913][ T787] usb 3-1: Product: syz [ 101.830785][ T787] usb 3-1: Manufacturer: syz [ 101.835505][ T787] usb 3-1: SerialNumber: syz [ 101.861369][ T787] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 101.897735][ T27] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 102.121060][ T5769] usb 3-1: USB disconnect, device number 2 [ 102.274036][ T6078] loop2: detected capacity change from 0 to 64 [ 102.376622][ T6076] loop1: detected capacity change from 0 to 4096 [ 102.402414][ T6076] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512). [ 102.597376][ T6080] loop2: detected capacity change from 0 to 128 [ 102.636871][ T6080] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 102.702087][ T6080] ext4 filesystem being mounted at /22/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 102.789796][ T6080] EXT4-fs warning (device loop2): ext4_dirblock_csum_verify:406: inode #2: comm syz.2.69: No space for directory leaf checksum. Please run e2fsck -D. [ 102.841984][ T6080] EXT4-fs error (device loop2): __ext4_find_entry:1696: inode #2: comm syz.2.69: checksumming directory block 0 [ 102.937428][ T27] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 102.944542][ T27] ath9k_htc: Failed to initialize the device [ 102.976443][ T6068] loop0: detected capacity change from 0 to 32768 [ 102.987017][ T5769] usb 3-1: ath9k_htc: USB layer deinitialized [ 103.019989][ T6068] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.64 (6068) [ 103.034735][ T6084] loop3: detected capacity change from 0 to 512 [ 103.036239][ T5777] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 103.138920][ T6068] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 103.147242][ T6084] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 103.170728][ T6084] ext4 filesystem being mounted at /17/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 103.191985][ T6068] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm [ 103.192595][ T6088] loop1: detected capacity change from 0 to 1024 [ 103.244871][ T6088] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 103.267787][ T6068] BTRFS info (device loop0): setting nodatasum [ 103.295982][ T6068] BTRFS info (device loop0): force zlib compression, level 3 [ 103.358640][ T6084] netlink: 28 bytes leftover after parsing attributes in process `syz.3.70'. [ 103.388905][ T6068] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_LZO (0x8) [ 103.437111][ T6068] BTRFS info (device loop0): use lzo compression, level 0 [ 103.459949][ T5772] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 103.461799][ T6068] BTRFS info (device loop0): turning on flush-on-commit [ 103.489623][ T6068] BTRFS info (device loop0): enabling auto defrag [ 103.496189][ T6068] BTRFS info (device loop0): max_inline at 4096 [ 103.548830][ T6068] BTRFS info (device loop0): using free space tree [ 103.699234][ T5766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 103.757286][ T6068] BTRFS info (device loop0): enabling ssd optimizations [ 104.104129][ T6118] program syz.3.76 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 104.186023][ T6092] loop2: detected capacity change from 0 to 32768 [ 104.283707][ T5771] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 104.310821][ T6125] loop3: detected capacity change from 0 to 512 [ 104.328334][ T6125] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 104.356364][ T6092] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 104.443408][ T6125] EXT4-fs (loop3): 1 truncate cleaned up [ 104.504518][ T6125] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 105.930821][ T5777] ocfs2: Unmounting device (7,2) on (node local) [ 106.080885][ T6140] loop1: detected capacity change from 0 to 512 [ 106.082736][ T5766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 106.248546][ T6140] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 106.349429][ T6151] program syz.3.87 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 106.358910][ T6140] ext4 filesystem being mounted at /20/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 106.481884][ T6140] netlink: 28 bytes leftover after parsing attributes in process `syz.1.83'. [ 106.631121][ T6155] loop2: detected capacity change from 0 to 1024 [ 106.673392][ T5772] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 106.697734][ T6155] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 106.861383][ T5777] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 107.247690][ T6142] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.86 (6142) [ 107.314393][ T6142] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 107.347824][ T6142] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm [ 107.367202][ T6142] BTRFS info (device loop0): setting nodatasum [ 107.373446][ T6142] BTRFS info (device loop0): force zlib compression, level 3 [ 107.400140][ T6142] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_LZO (0x8) [ 107.415187][ T6142] BTRFS info (device loop0): use lzo compression, level 0 [ 107.422463][ T6142] BTRFS info (device loop0): turning on flush-on-commit [ 107.442814][ T6142] BTRFS info (device loop0): enabling auto defrag [ 107.457151][ T6142] BTRFS info (device loop0): max_inline at 4096 [ 107.493641][ T6142] BTRFS info (device loop0): using free space tree [ 107.589069][ T6183] program syz.3.96 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 107.664090][ T6142] BTRFS info (device loop0): enabling ssd optimizations [ 107.929957][ T6165] set_capacity_and_notify: 1 callbacks suppressed [ 107.929975][ T6165] loop1: detected capacity change from 0 to 32768 [ 108.101718][ T6165] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 108.113916][ T6202] loop2: detected capacity change from 0 to 1024 [ 108.362702][ T6202] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 108.546165][ T28] audit: type=1804 audit(1775227291.816:96): pid=6206 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.91" name="/newroot/22/file1/file1" dev="loop1" ino=17058 res=1 errno=0 [ 108.938254][ T5777] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 108.956228][ T5772] ocfs2: Unmounting device (7,1) on (node local) [ 109.826796][ C1] sched: RT throttling activated [ 109.833584][ T6217] program syz.1.106 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 109.835891][ T5771] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 110.940466][ T6227] loop3: detected capacity change from 0 to 32768 [ 111.049378][ T6227] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 111.090747][ T28] audit: type=1804 audit(1775227294.376:97): pid=6227 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.110" name="/newroot/29/file1/file1" dev="loop3" ino=17058 res=1 errno=0 [ 111.224618][ T5766] ocfs2: Unmounting device (7,3) on (node local) [ 112.669910][ T6255] program syz.2.117 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 113.011118][ T6269] loop0: detected capacity change from 0 to 512 [ 113.039045][ T6269] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 113.131404][ T6269] EXT4-fs (loop0): 1 truncate cleaned up [ 113.178124][ T6269] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 114.419441][ T6291] program syz.3.128 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 114.779206][ T6300] loop2: detected capacity change from 0 to 64 [ 114.828517][ T5771] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 114.965269][ T6301] loop1: detected capacity change from 0 to 1024 [ 115.070075][ T6301] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 115.186239][ T6301] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869) [ 115.255822][ T6301] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 115.339406][ T6301] EXT4-fs error (device loop1): ext4_get_journal_inode:5816: inode #5: comm syz.1.131: unexpected bad inode w/o EXT4_IGET_BAD [ 115.380785][ T6301] EXT4-fs (loop1): no journal found [ 115.474828][ T6301] EXT4-fs (loop1): can't get journal size [ 115.514758][ T6301] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 116.222859][ T5772] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 116.505831][ T6331] loop0: detected capacity change from 0 to 128 [ 116.554381][ T6334] tipc: Started in network mode [ 116.563833][ T6334] tipc: Node identity 4ec23a7309b3, cluster identity 4711 [ 116.565219][ T6331] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 116.596885][ T6334] tipc: Enabled bearer , priority 0 [ 116.624270][ T6331] ext4 filesystem being mounted at /22/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 116.671349][ T6332] tipc: Disabling bearer [ 116.842722][ T6341] syzkaller0: entered promiscuous mode [ 116.843023][ T5771] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 116.866047][ T6341] syzkaller0: entered allmulticast mode [ 117.384002][ T6358] netlink: 76 bytes leftover after parsing attributes in process `syz.2.154'. [ 117.619521][ T6363] tipc: Enabled bearer , priority 0 [ 117.643534][ T6362] tipc: Disabling bearer [ 118.360232][ T6361] loop1: detected capacity change from 0 to 32768 [ 118.397058][ T6361] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop1 scanned by syz.1.155 (6361) [ 118.404114][ T6379] syzkaller0: entered promiscuous mode [ 118.445792][ T6361] BTRFS info (device loop1): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 118.447791][ T6379] syzkaller0: entered allmulticast mode [ 118.472746][ T6361] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm [ 118.487178][ T6361] BTRFS info (device loop1): using free space tree [ 118.557806][ T6381] netlink: 76 bytes leftover after parsing attributes in process `syz.3.165'. [ 118.621795][ T6361] BTRFS info (device loop1): enabling ssd optimizations [ 118.636994][ T6361] BTRFS info (device loop1): auto enabling async discard [ 119.005464][ T5772] BTRFS info (device loop1): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 119.336322][ T6409] loop3: detected capacity change from 0 to 512 [ 119.367040][ T6409] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 119.464732][ T6409] EXT4-fs (loop3): 1 truncate cleaned up [ 119.509774][ T6409] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 119.708446][ T6419] tipc: Enabled bearer , priority 0 [ 119.898801][ T6418] tipc: Disabling bearer [ 119.937034][ T28] audit: type=1326 audit(1775227303.206:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6420 comm="syz.0.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc89b9c819 code=0x7ffc0000 [ 120.128066][ T28] audit: type=1326 audit(1775227303.206:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6420 comm="syz.0.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc89b9c819 code=0x7ffc0000 [ 120.246431][ T28] audit: type=1326 audit(1775227303.206:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6420 comm="syz.0.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc89b9c819 code=0x7ffc0000 [ 120.276971][ T28] audit: type=1326 audit(1775227303.246:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6420 comm="syz.0.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7fdc89b9c819 code=0x7ffc0000 [ 120.326916][ T28] audit: type=1326 audit(1775227303.246:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6420 comm="syz.0.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc89b9c819 code=0x7ffc0000 [ 120.481427][ T28] audit: type=1326 audit(1775227303.246:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6420 comm="syz.0.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdc89b5d04e code=0x7ffc0000 [ 120.505633][ T28] audit: type=1326 audit(1775227303.296:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6420 comm="syz.0.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc89b9c819 code=0x7ffc0000 [ 120.527033][ T5766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 120.528966][ T28] audit: type=1326 audit(1775227303.296:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6420 comm="syz.0.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdc89b5d04e code=0x7ffc0000 [ 120.608986][ T6433] syzkaller0: entered promiscuous mode [ 120.614657][ T28] audit: type=1326 audit(1775227303.296:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6420 comm="syz.0.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdc89b5d04e code=0x7ffc0000 [ 120.641711][ T6433] syzkaller0: entered allmulticast mode [ 120.653731][ T28] audit: type=1326 audit(1775227303.296:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6420 comm="syz.0.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdc89b5d04e code=0x7ffc0000 [ 121.146526][ T6430] loop2: detected capacity change from 0 to 32768 [ 121.178538][ T6430] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop2 scanned by syz.2.175 (6430) [ 121.217231][ T6439] netlink: 76 bytes leftover after parsing attributes in process `syz.1.178'. [ 121.236410][ T6430] BTRFS info (device loop2): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 121.260288][ T6430] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm [ 121.282566][ T6430] BTRFS info (device loop2): using free space tree [ 121.457711][ T6430] BTRFS info (device loop2): enabling ssd optimizations [ 121.466145][ T6430] BTRFS info (device loop2): auto enabling async discard [ 121.898875][ T5777] BTRFS info (device loop2): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 121.900602][ T6468] Zero length message leads to an empty skb [ 122.205696][ T5785] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 11 /dev/loop2 scanned by udevd (5785) [ 122.247802][ T6467] syzkaller0: entered promiscuous mode [ 122.261721][ T6467] syzkaller0: entered allmulticast mode [ 122.504726][ T6450] loop3: detected capacity change from 0 to 32768 [ 122.605410][ T6450] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 122.797633][ T5766] ocfs2: Unmounting device (7,3) on (node local) [ 123.122696][ T6488] loop3: detected capacity change from 0 to 512 [ 123.142170][ T6488] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 123.179137][ T6488] EXT4-fs (loop3): 1 truncate cleaned up [ 123.185723][ T6488] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 125.100177][ T5766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 125.151294][ T6500] netlink: 76 bytes leftover after parsing attributes in process `syz.2.191'. [ 125.210625][ T28] kauditd_printk_skb: 63 callbacks suppressed [ 125.210641][ T28] audit: type=1326 audit(1775227308.496:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6496 comm="syz.0.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc89b9c819 code=0x7ffc0000 [ 125.294826][ T28] audit: type=1326 audit(1775227308.496:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6496 comm="syz.0.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc89b9c819 code=0x7ffc0000 [ 125.367071][ T28] audit: type=1326 audit(1775227308.496:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6496 comm="syz.0.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc89b9c819 code=0x7ffc0000 [ 125.419591][ T28] audit: type=1326 audit(1775227308.496:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6496 comm="syz.0.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc89b9c819 code=0x7ffc0000 [ 125.468405][ T28] audit: type=1326 audit(1775227308.536:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6496 comm="syz.0.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7fdc89b9c819 code=0x7ffc0000 [ 125.557366][ T28] audit: type=1326 audit(1775227308.536:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6496 comm="syz.0.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc89b9c819 code=0x7ffc0000 [ 125.623133][ T28] audit: type=1326 audit(1775227308.536:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6496 comm="syz.0.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc89b9c819 code=0x7ffc0000 [ 125.697047][ T28] audit: type=1326 audit(1775227308.566:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6496 comm="syz.0.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdc89b5d04e code=0x7ffc0000 [ 125.781897][ T28] audit: type=1326 audit(1775227308.566:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6496 comm="syz.0.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdc89b5d04e code=0x7ffc0000 [ 125.820773][ T6515] syzkaller0: entered promiscuous mode [ 125.826476][ T6515] syzkaller0: entered allmulticast mode [ 125.844970][ T28] audit: type=1326 audit(1775227308.576:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6496 comm="syz.0.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdc89b5d04e code=0x7ffc0000 [ 126.396324][ T6514] loop3: detected capacity change from 0 to 32768 [ 126.485604][ T6514] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 126.604970][ T6523] loop0: detected capacity change from 0 to 1024 [ 126.672989][ T6523] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 126.747180][ T5766] ocfs2: Unmounting device (7,3) on (node local) [ 126.808534][ T5771] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 128.397828][ T6537] netlink: 76 bytes leftover after parsing attributes in process `syz.0.203'. [ 128.485736][ T6539] loop2: detected capacity change from 0 to 512 [ 128.897461][ T6551] loop3: detected capacity change from 0 to 1024 [ 129.045379][ T6557] syzkaller0: entered promiscuous mode [ 129.053136][ T6557] syzkaller0: entered allmulticast mode [ 129.058729][ T6551] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 129.192882][ T5766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 129.542949][ T6547] loop2: detected capacity change from 0 to 32768 [ 129.561242][ T6547] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.208 (6547) [ 129.590961][ T6547] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 129.601622][ T6547] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 129.630774][ T6547] BTRFS info (device loop2): setting nodatasum [ 129.641980][ T6547] BTRFS info (device loop2): force zlib compression, level 3 [ 129.651749][ T6547] BTRFS info (device loop2): setting incompat feature flag for COMPRESS_LZO (0x8) [ 129.682013][ T6547] BTRFS info (device loop2): use lzo compression, level 0 [ 129.691236][ T6547] BTRFS info (device loop2): turning on flush-on-commit [ 129.700939][ T6547] BTRFS info (device loop2): enabling auto defrag [ 129.711878][ T6547] BTRFS info (device loop2): max_inline at 4096 [ 129.720200][ T6547] BTRFS info (device loop2): using free space tree [ 129.863480][ T6547] BTRFS info (device loop2): enabling ssd optimizations [ 130.032562][ T5777] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 131.634895][ T6564] netlink: 76 bytes leftover after parsing attributes in process `syz.1.213'. [ 132.133980][ T6616] program syz.0.223 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 132.151816][ T6614] loop2: detected capacity change from 0 to 1024 [ 132.231617][ T6614] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 132.483592][ T5777] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 133.227061][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.233522][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.317215][ T6629] syzkaller0: entered promiscuous mode [ 133.342381][ T6629] syzkaller0: entered allmulticast mode [ 133.727805][ T6642] program syz.0.233 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 133.909379][ T6650] loop3: detected capacity change from 0 to 1024 [ 133.976252][ T6650] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 134.262767][ T5766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 135.326193][ T6668] syzkaller0: entered promiscuous mode [ 135.357177][ T6668] syzkaller0: entered allmulticast mode [ 135.364378][ T6675] netlink: 'syz.3.244': attribute type 1 has an invalid length. [ 135.453797][ T6677] bond1: (slave bridge1): making interface the new active one [ 135.464753][ T6677] bond1: (slave bridge1): Enslaving as an active interface with an up link [ 135.630288][ T6675] bond1: (slave gretap1): Enslaving as an active interface with an up link [ 135.739574][ T6677] macvlan2: entered promiscuous mode [ 135.763867][ T6677] macvlan2: entered allmulticast mode [ 135.774153][ T6677] bond1: entered promiscuous mode [ 135.782580][ T6677] bridge1: entered promiscuous mode [ 135.816067][ T6677] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 135.826261][ T6688] loop1: detected capacity change from 0 to 1024 [ 135.834147][ T6677] bond1: (slave macvlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened) [ 135.879680][ T6677] bond1: left promiscuous mode [ 135.886309][ T6677] bridge1: left promiscuous mode [ 135.896663][ T6688] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 136.015559][ T5772] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.513241][ T6724] loop0: detected capacity change from 0 to 512 [ 137.545954][ T6724] EXT4-fs: Ignoring removed bh option [ 137.582572][ T6724] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 137.672787][ T6724] EXT4-fs (loop0): 1 truncate cleaned up [ 137.722649][ T6724] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 137.822718][ T5771] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 138.343915][ T6747] syzkaller0: entered promiscuous mode [ 138.351731][ T6747] syzkaller0: entered allmulticast mode [ 139.673104][ T6767] loop0: detected capacity change from 0 to 4096 [ 139.683306][ T6767] EXT4-fs: Ignoring removed bh option [ 139.763553][ T6767] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 139.916562][ T6763] loop1: detected capacity change from 0 to 32768 [ 139.925258][ T6763] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.273 (6763) [ 139.959229][ T6763] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 139.975143][ T6763] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 139.985641][ T6763] BTRFS info (device loop1): setting nodatasum [ 139.994949][ T6763] BTRFS info (device loop1): force zlib compression, level 3 [ 140.008317][ T5771] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 140.019295][ T6763] BTRFS info (device loop1): setting incompat feature flag for COMPRESS_LZO (0x8) [ 140.031194][ T6763] BTRFS info (device loop1): use lzo compression, level 0 [ 140.070453][ T6763] BTRFS info (device loop1): turning on flush-on-commit [ 140.095674][ T6763] BTRFS info (device loop1): enabling auto defrag [ 140.127090][ T6763] BTRFS info (device loop1): max_inline at 4096 [ 140.140208][ T6763] BTRFS info (device loop1): using free space tree [ 140.318919][ T6763] BTRFS info (device loop1): enabling ssd optimizations [ 140.529827][ T5772] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 142.113041][ T28] kauditd_printk_skb: 63 callbacks suppressed [ 142.113058][ T28] audit: type=1326 audit(1775227325.396:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6802 comm="syz.1.282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f859c819 code=0x7ffc0000 [ 142.307394][ T28] audit: type=1326 audit(1775227325.436:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6802 comm="syz.1.282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f859c819 code=0x7ffc0000 [ 142.688596][ T28] audit: type=1326 audit(1775227325.466:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6802 comm="syz.1.282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f859c819 code=0x7ffc0000 [ 143.032092][ T28] audit: type=1326 audit(1775227325.476:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6802 comm="syz.1.282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f859c819 code=0x7ffc0000 [ 143.188101][ T28] audit: type=1326 audit(1775227325.486:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6802 comm="syz.1.282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f21f859c819 code=0x7ffc0000 [ 143.265951][ T6818] loop3: detected capacity change from 0 to 512 [ 143.276886][ T28] audit: type=1326 audit(1775227325.486:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6802 comm="syz.1.282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f859c819 code=0x7ffc0000 [ 143.308522][ T28] audit: type=1326 audit(1775227325.536:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6802 comm="syz.1.282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f21f855d04e code=0x7ffc0000 [ 143.340693][ T28] audit: type=1326 audit(1775227325.546:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6802 comm="syz.1.282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f21f855d04e code=0x7ffc0000 [ 143.343024][ T6819] netlink: 'syz.2.286': attribute type 1 has an invalid length. [ 143.436856][ T28] audit: type=1326 audit(1775227325.546:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6802 comm="syz.1.282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f21f855d04e code=0x7ffc0000 [ 143.492056][ T6818] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 143.537117][ T6818] ext4 filesystem being mounted at /78/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 143.569414][ T28] audit: type=1326 audit(1775227325.586:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6802 comm="syz.1.282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f21f855d04e code=0x7ffc0000 [ 143.637990][ T6826] bond1: (slave bridge1): making interface the new active one [ 143.684309][ T6826] bond1: (slave bridge1): Enslaving as an active interface with an up link [ 143.874215][ T5766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 143.937462][ T6819] bond1: (slave gretap1): Enslaving as an active interface with an up link [ 144.017943][ T6819] macvlan2: entered promiscuous mode [ 144.031144][ T6819] macvlan2: entered allmulticast mode [ 144.045377][ T6819] bond1: entered promiscuous mode [ 144.077981][ T6819] bridge1: entered promiscuous mode [ 144.098365][ T6819] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 144.115715][ T6819] bond1: (slave macvlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened) [ 144.200227][ T6819] bond1: left promiscuous mode [ 144.240309][ T6819] bridge1: left promiscuous mode [ 144.939174][ T6835] syzkaller0: entered promiscuous mode [ 144.985490][ T6835] syzkaller0: entered allmulticast mode [ 147.255576][ T28] kauditd_printk_skb: 29 callbacks suppressed [ 147.255594][ T28] audit: type=1326 audit(1775227330.536:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6857 comm="syz.3.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f8dd9c819 code=0x7ffc0000 [ 147.311754][ T28] audit: type=1326 audit(1775227330.576:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6857 comm="syz.3.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f8dd9c819 code=0x7ffc0000 [ 147.340251][ T28] audit: type=1326 audit(1775227330.576:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6857 comm="syz.3.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f8dd9c819 code=0x7ffc0000 [ 147.372740][ T28] audit: type=1326 audit(1775227330.576:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6857 comm="syz.3.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f1f8dd9c819 code=0x7ffc0000 [ 147.406103][ T28] audit: type=1326 audit(1775227330.576:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6857 comm="syz.3.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f8dd9c819 code=0x7ffc0000 [ 147.438111][ T28] audit: type=1326 audit(1775227330.576:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6857 comm="syz.3.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f8dd9c819 code=0x7ffc0000 [ 147.466940][ T28] audit: type=1326 audit(1775227330.576:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6857 comm="syz.3.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f1f8dd5d04e code=0x7ffc0000 [ 147.525432][ T28] audit: type=1326 audit(1775227330.586:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6857 comm="syz.3.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f1f8dd5d04e code=0x7ffc0000 [ 147.553287][ T28] audit: type=1326 audit(1775227330.596:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6857 comm="syz.3.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f1f8dd5d04e code=0x7ffc0000 [ 147.586857][ T28] audit: type=1326 audit(1775227330.596:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6857 comm="syz.3.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f1f8dd5d04e code=0x7ffc0000 [ 148.082208][ T6862] program syz.3.300 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 151.737463][ T6896] loop3: detected capacity change from 0 to 128 [ 151.858431][ T6896] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 151.966427][ T6896] ext4 filesystem being mounted at /89/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 152.230522][ T6913] syzkaller0: entered promiscuous mode [ 152.236221][ T6913] syzkaller0: entered allmulticast mode [ 152.247806][ T5766] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 154.775255][ T6940] netlink: 12 bytes leftover after parsing attributes in process `syz.3.328'. [ 156.183140][ T28] kauditd_printk_skb: 155 callbacks suppressed [ 156.183156][ T28] audit: type=1326 audit(1775227339.466:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz.1.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f859c819 code=0x7ffc0000 [ 156.318724][ T28] audit: type=1326 audit(1775227339.506:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz.1.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f859c819 code=0x7ffc0000 [ 156.395886][ T28] audit: type=1326 audit(1775227339.506:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz.1.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f859c819 code=0x7ffc0000 [ 156.436997][ T28] audit: type=1326 audit(1775227339.506:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz.1.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f21f859c819 code=0x7ffc0000 [ 156.485594][ T28] audit: type=1326 audit(1775227339.556:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz.1.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f21f855d04e code=0x7ffc0000 [ 156.556194][ T28] audit: type=1326 audit(1775227339.556:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz.1.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f21f855d04e code=0x7ffc0000 [ 156.636931][ T28] audit: type=1326 audit(1775227339.556:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz.1.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f21f855d04e code=0x7ffc0000 [ 156.706863][ T28] audit: type=1326 audit(1775227339.556:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz.1.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f21f855d04e code=0x7ffc0000 [ 156.815442][ T28] audit: type=1326 audit(1775227339.566:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz.1.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f21f855d04e code=0x7ffc0000 [ 156.888489][ T6980] netlink: 12 bytes leftover after parsing attributes in process `syz.3.342'. [ 156.917187][ T28] audit: type=1326 audit(1775227339.566:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz.1.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f21f855d04e code=0x7ffc0000 [ 157.127864][ T6988] netlink: 8 bytes leftover after parsing attributes in process `syz.0.344'. [ 158.769893][ T7012] netlink: 8 bytes leftover after parsing attributes in process `syz.2.355'. [ 160.175336][ T7038] loop0: detected capacity change from 0 to 512 [ 160.231341][ T7038] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 160.297196][ T7038] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.362: invalid indirect mapped block 1023410176 (level 0) [ 160.378232][ T7038] EXT4-fs error (device loop0): mb_free_blocks:1970: group 0, inode 11: block 237:freeing already freed block (bit 236); block bitmap corrupt. [ 160.477507][ T7038] EXT4-fs (loop0): 1 truncate cleaned up [ 160.500837][ T7038] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 160.900861][ T5771] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 161.362895][ T7063] tipc: Started in network mode [ 161.436454][ T7063] tipc: Node identity aa225e268bbc, cluster identity 4711 [ 161.574097][ T7063] tipc: Enabled bearer , priority 0 [ 161.899797][ T28] kauditd_printk_skb: 121 callbacks suppressed [ 161.899813][ T28] audit: type=1326 audit(1775227345.186:579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7043 comm="syz.2.363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fc25a79c819 code=0x7ffc0000 [ 161.957311][ T28] audit: type=1326 audit(1775227345.236:580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7043 comm="syz.2.363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fc25a79c819 code=0x7ffc0000 [ 162.049484][ T7062] tipc: Disabling bearer [ 162.300247][ T7077] loop0: detected capacity change from 0 to 1024 [ 162.375459][ T7077] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 162.559595][ T5771] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 162.762652][ T7085] program syz.1.374 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 162.772277][ T7087] netlink: 8 bytes leftover after parsing attributes in process `syz.0.372'. [ 162.977796][ T7093] loop1: detected capacity change from 0 to 512 [ 163.050617][ T7093] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2 [ 163.102845][ T7093] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -2 [ 163.145134][ T7093] EXT4-fs (loop1): 1 truncate cleaned up [ 163.284164][ T7093] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 163.769351][ T7103] tipc: Enabling of bearer rejected, failed to enable media [ 164.204445][ T7112] loop0: detected capacity change from 0 to 512 [ 164.279590][ T7112] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 164.304059][ T28] audit: type=1326 audit(1775227347.586:581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7109 comm="syz.2.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25a79c819 code=0x7ffc0000 [ 164.349792][ T7112] ext4 filesystem being mounted at /85/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 164.373373][ T5772] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.403263][ T28] audit: type=1326 audit(1775227347.616:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7109 comm="syz.2.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25a79c819 code=0x7ffc0000 [ 164.487156][ T28] audit: type=1326 audit(1775227347.616:583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7109 comm="syz.2.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25a79c819 code=0x7ffc0000 [ 164.512457][ T5771] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.589996][ T28] audit: type=1326 audit(1775227347.616:584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7109 comm="syz.2.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7fc25a79c819 code=0x7ffc0000 [ 164.646870][ T28] audit: type=1326 audit(1775227347.686:585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7109 comm="syz.2.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc25a75d04e code=0x7ffc0000 [ 164.673827][ T7121] loop3: detected capacity change from 0 to 512 [ 164.714103][ T7121] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 164.747733][ T28] audit: type=1326 audit(1775227347.716:586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7109 comm="syz.2.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc25a75d04e code=0x7ffc0000 [ 164.787221][ T7121] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.386: invalid indirect mapped block 1023410176 (level 0) [ 164.858107][ T7121] EXT4-fs error (device loop3): mb_free_blocks:1970: group 0, inode 11: block 237:freeing already freed block (bit 236); block bitmap corrupt. [ 164.894411][ T28] audit: type=1326 audit(1775227347.716:587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7109 comm="syz.2.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc25a75d04e code=0x7ffc0000 [ 164.941834][ T7121] EXT4-fs (loop3): 1 truncate cleaned up [ 164.978635][ T7121] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 164.992318][ T28] audit: type=1326 audit(1775227347.726:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7109 comm="syz.2.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc25a75d04e code=0x7ffc0000 [ 165.016836][ T7128] netlink: 8 bytes leftover after parsing attributes in process `syz.0.387'. [ 165.178510][ T5766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 165.421654][ T7136] tipc: Enabled bearer , priority 0 [ 165.432929][ T7135] tipc: Disabling bearer [ 166.447349][ T7145] loop3: detected capacity change from 0 to 512 [ 166.528208][ T7145] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 166.536427][ T7145] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 166.579611][ T7145] EXT4-fs (loop3): 1 truncate cleaned up [ 166.632539][ T7145] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 167.265399][ T5766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 167.435539][ T7134] loop1: detected capacity change from 0 to 32768 [ 167.493515][ T7134] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop1 scanned by syz.1.390 (7134) [ 167.620888][ T7156] netlink: 8 bytes leftover after parsing attributes in process `syz.2.398'. [ 168.016987][ T7134] BTRFS info (device loop1): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 168.086037][ T7134] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm [ 168.137095][ T7134] BTRFS info (device loop1): using free space tree [ 168.271498][ T7134] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR [ 168.310536][ T7134] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR [ 168.575823][ T7178] tipc: Started in network mode [ 168.672568][ T7178] tipc: Node identity 66787b29774b, cluster identity 4711 [ 168.708465][ T7134] BTRFS error (device loop1): open_ctree failed: -12 [ 168.720446][ T7178] tipc: Enabled bearer , priority 0 [ 168.755651][ T7177] tipc: Disabling bearer [ 168.959028][ T5785] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop1 scanned by udevd (5785) [ 169.121589][ T28] kauditd_printk_skb: 66 callbacks suppressed [ 169.121604][ T28] audit: type=1326 audit(1775227352.406:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7186 comm="syz.1.405" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f21f859c819 code=0x0 [ 169.590566][ T7202] program syz.2.409 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 169.938196][ T7207] loop2: detected capacity change from 0 to 512 [ 170.050337][ T7207] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 170.151680][ T7207] ext4 filesystem being mounted at /105/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 170.428253][ T28] audit: type=1800 audit(1775227353.716:656): pid=7207 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.412" name="bus" dev="loop2" ino=18 res=0 errno=0 [ 171.012118][ T5777] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 171.088801][ T7222] loop0: detected capacity change from 0 to 512 [ 171.108857][ T7222] EXT4-fs: Ignoring removed bh option [ 171.216357][ T7222] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended [ 171.260395][ T7222] EXT4-fs (loop0): 1 truncate cleaned up [ 171.288515][ T7222] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 171.346169][ T7222] EXT4-fs (loop0): shut down requested (2) [ 171.475360][ T5771] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 171.545759][ T7215] loop3: detected capacity change from 0 to 32768 [ 171.848116][ T7215] BTRFS info (device loop3): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 171.862319][ T7215] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm [ 171.875831][ T7215] BTRFS info (device loop3): using free space tree [ 172.876870][ T7215] BTRFS info (device loop3): enabling ssd optimizations [ 172.887353][ T7215] BTRFS info (device loop3): auto enabling async discard [ 172.896040][ T7248] program syz.1.420 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 173.113531][ T7254] loop0: detected capacity change from 0 to 1024 [ 173.132008][ T5766] BTRFS info (device loop3): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 173.190447][ T7254] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 173.270541][ T7254] EXT4-fs error (device loop0): ext4_find_dest_de:2115: inode #2: block 16: comm syz.0.423: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=2, rec_len=65535, size=1024 fake=0 [ 173.385617][ T7259] syzkaller0: entered promiscuous mode [ 173.394827][ T7259] syzkaller0: entered allmulticast mode [ 173.478432][ T5771] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 174.009658][ T7275] program syz.1.430 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 175.882408][ T7286] loop2: detected capacity change from 0 to 32768 [ 175.914881][ T7286] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop2 scanned by syz.2.434 (7286) [ 175.920122][ T7299] program syz.3.440 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 175.974829][ T7286] BTRFS info (device loop2): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 176.005856][ T7286] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm [ 176.041454][ T7286] BTRFS info (device loop2): using free space tree [ 176.160469][ T7286] BTRFS info (device loop2): enabling ssd optimizations [ 176.181626][ T7286] BTRFS info (device loop2): auto enabling async discard [ 176.434775][ T5777] BTRFS info (device loop2): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 177.979628][ T7339] loop3: detected capacity change from 0 to 1764 [ 178.136590][ T7341] program syz.1.449 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 178.586825][ T28] audit: type=1326 audit(1775227361.866:657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7346 comm="syz.2.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25a79c819 code=0x7ffc0000 [ 178.659348][ T7350] netlink: 8 bytes leftover after parsing attributes in process `syz.3.453'. [ 178.668493][ T7350] netlink: 20 bytes leftover after parsing attributes in process `syz.3.453'. [ 178.678374][ T28] audit: type=1326 audit(1775227361.866:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7346 comm="syz.2.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25a79c819 code=0x7ffc0000 [ 178.738503][ T28] audit: type=1326 audit(1775227361.866:659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7346 comm="syz.2.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25a79c819 code=0x7ffc0000 [ 178.769768][ T28] audit: type=1326 audit(1775227361.866:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7346 comm="syz.2.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25a79c819 code=0x7ffc0000 [ 178.810578][ T7352] loop3: detected capacity change from 0 to 512 [ 178.817274][ T28] audit: type=1326 audit(1775227361.866:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7346 comm="syz.2.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7fc25a79c819 code=0x7ffc0000 [ 178.857667][ T28] audit: type=1326 audit(1775227361.926:662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7346 comm="syz.2.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc25a75d04e code=0x7ffc0000 [ 178.926026][ T28] audit: type=1326 audit(1775227361.926:663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7346 comm="syz.2.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc25a75d04e code=0x7ffc0000 [ 178.949387][ T7352] EXT4-fs (loop3): 1 truncate cleaned up [ 178.956519][ T7352] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 179.035054][ T28] audit: type=1326 audit(1775227361.926:664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7346 comm="syz.2.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc25a75d04e code=0x7ffc0000 [ 179.101526][ T5766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 179.113217][ T28] audit: type=1326 audit(1775227361.926:665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7346 comm="syz.2.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc25a75d04e code=0x7ffc0000 [ 179.561877][ T28] audit: type=1326 audit(1775227361.946:666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7346 comm="syz.2.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc25a75d04e code=0x7ffc0000 [ 179.833207][ T7363] loop3: detected capacity change from 0 to 128 [ 180.016006][ T7363] EXT4-fs: Ignoring removed nobh option [ 180.145473][ T7363] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 180.208539][ T7363] ext4 filesystem being mounted at /131/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 180.223587][ T7345] loop1: detected capacity change from 0 to 32768 [ 180.267027][ T7345] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop1 scanned by syz.1.451 (7345) [ 180.324291][ T7345] BTRFS info (device loop1): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 180.375661][ T7345] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm [ 180.401810][ T5766] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 180.407984][ T7345] BTRFS info (device loop1): using free space tree [ 180.563153][ T7345] BTRFS info (device loop1): enabling ssd optimizations [ 180.586912][ T7345] BTRFS info (device loop1): auto enabling async discard [ 180.635521][ T7386] program syz.3.459 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 180.860188][ T7388] netlink: 8 bytes leftover after parsing attributes in process `syz.3.460'. [ 180.896257][ T5772] BTRFS info (device loop1): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 180.924782][ T7388] netlink: 20 bytes leftover after parsing attributes in process `syz.3.460'. [ 180.974890][ T7388] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 180.984235][ T7388] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 180.993419][ T7388] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 181.002309][ T7388] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 181.050681][ T7388] netlink: 8 bytes leftover after parsing attributes in process `syz.3.460'. [ 181.088257][ T7388] netlink: 20 bytes leftover after parsing attributes in process `syz.3.460'. [ 181.447706][ T7396] netlink: 16 bytes leftover after parsing attributes in process `syz.2.464'. [ 182.449098][ T7393] DRBG: could not allocate digest TFM handle: hmac(sha512) [ 182.934376][ T7420] program syz.3.468 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 183.396818][ T7434] netlink: 8 bytes leftover after parsing attributes in process `syz.1.473'. [ 183.416953][ T7434] netlink: 20 bytes leftover after parsing attributes in process `syz.1.473'. [ 183.460700][ T7434] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 183.469672][ T7434] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 183.478528][ T7434] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 183.487335][ T7434] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 183.537522][ T7434] netlink: 8 bytes leftover after parsing attributes in process `syz.1.473'. [ 183.597103][ T28] kauditd_printk_skb: 111 callbacks suppressed [ 183.597119][ T28] audit: type=1326 audit(1775227366.886:778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7435 comm="syz.2.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc25a75d04e code=0x7ffc0000 [ 183.677334][ T28] audit: type=1326 audit(1775227366.916:779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7435 comm="syz.2.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc25a75d04e code=0x7ffc0000 [ 183.714599][ T7423] loop0: detected capacity change from 0 to 32768 [ 183.731593][ T7423] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop0 scanned by syz.0.469 (7423) [ 183.755017][ T28] audit: type=1326 audit(1775227366.916:780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7435 comm="syz.2.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc25a75d04e code=0x7ffc0000 [ 183.832193][ T28] audit: type=1326 audit(1775227366.916:781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7435 comm="syz.2.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc25a75d04e code=0x7ffc0000 [ 183.836987][ T7423] BTRFS info (device loop0): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 183.860520][ T28] audit: type=1326 audit(1775227366.916:782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7435 comm="syz.2.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc25a75d04e code=0x7ffc0000 [ 183.889457][ T28] audit: type=1326 audit(1775227366.926:783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7435 comm="syz.2.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc25a75d04e code=0x7ffc0000 [ 183.912379][ T28] audit: type=1326 audit(1775227366.926:784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7435 comm="syz.2.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc25a75d04e code=0x7ffc0000 [ 183.939002][ T7423] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm [ 183.952971][ T7423] BTRFS info (device loop0): using free space tree [ 183.961728][ T28] audit: type=1326 audit(1775227366.926:785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7435 comm="syz.2.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc25a75d04e code=0x7ffc0000 [ 183.990801][ T28] audit: type=1326 audit(1775227366.936:786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7435 comm="syz.2.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc25a75d04e code=0x7ffc0000 [ 184.018998][ T28] audit: type=1326 audit(1775227366.936:787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7435 comm="syz.2.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc25a75d04e code=0x7ffc0000 [ 184.354352][ T7423] BTRFS info (device loop0): enabling ssd optimizations [ 184.367744][ T7423] BTRFS info (device loop0): auto enabling async discard [ 184.415068][ T7464] program syz.3.479 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 184.560852][ T7467] loop1: detected capacity change from 0 to 512 [ 184.649870][ T7467] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 184.662865][ T7467] ext4 filesystem being mounted at /115/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 184.843685][ T5771] BTRFS info (device loop0): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 184.868467][ T5772] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 185.131829][ T7479] loop3: detected capacity change from 0 to 512 [ 185.263002][ T7479] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 185.546510][ T5766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 185.683640][ T7490] __nla_validate_parse: 1 callbacks suppressed [ 185.683658][ T7490] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.488'. [ 186.874289][ T7496] loop1: detected capacity change from 0 to 128 [ 186.881759][ T7496] EXT4-fs: Ignoring removed nobh option [ 186.928801][ T7496] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 186.984167][ T7502] loop0: detected capacity change from 0 to 512 [ 187.023729][ T7496] ext4 filesystem being mounted at /118/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 187.077274][ T7502] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 187.114263][ T7496] EXT4-fs warning (device loop1): ext4_group_extend:1868: can't shrink FS - resize aborted [ 187.167124][ T7502] ext4 filesystem being mounted at /102/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 187.361468][ T5772] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 187.457723][ T5771] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 188.943612][ T7528] loop1: detected capacity change from 0 to 128 [ 188.956588][ T7528] EXT4-fs: Ignoring removed nobh option [ 189.000960][ T7528] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 189.017671][ T7528] ext4 filesystem being mounted at /123/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 189.079818][ T7528] EXT4-fs warning (device loop1): ext4_group_extend:1868: can't shrink FS - resize aborted [ 189.165053][ T5772] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 189.175730][ T7533] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 189.337393][ T7536] tipc: Enabled bearer , priority 0 [ 189.468033][ T7536] syzkaller0: entered promiscuous mode [ 189.504101][ T7536] syzkaller0: entered allmulticast mode [ 189.518096][ T7536] tipc: Resetting bearer [ 189.553938][ T7535] tipc: Resetting bearer [ 190.133785][ T7540] loop1: detected capacity change from 0 to 128 [ 190.355228][ T7540] FAT-fs (loop1): error, invalid access to FAT (entry 0x0fff0000) [ 190.363476][ T7540] FAT-fs (loop1): Filesystem has been set read-only [ 192.201247][ T7557] loop1: detected capacity change from 0 to 128 [ 192.209584][ T7557] EXT4-fs: Ignoring removed nobh option [ 192.274593][ T7557] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 192.316513][ T7557] ext4 filesystem being mounted at /127/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 192.482352][ T5772] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 192.580523][ T7568] program syz.1.514 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 192.707708][ T28] kauditd_printk_skb: 6 callbacks suppressed [ 192.707725][ T28] audit: type=1326 audit(1775227375.986:794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz.1.515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f859c819 code=0x7ffc0000 [ 192.746502][ T28] audit: type=1326 audit(1775227375.986:795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz.1.515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f859c819 code=0x7ffc0000 [ 192.794653][ T28] audit: type=1326 audit(1775227375.986:796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz.1.515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f859c819 code=0x7ffc0000 [ 192.852031][ T28] audit: type=1326 audit(1775227375.986:797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz.1.515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f21f859c819 code=0x7ffc0000 [ 192.874701][ T28] audit: type=1326 audit(1775227376.056:798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz.1.515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f21f855d04e code=0x7ffc0000 [ 192.934388][ T28] audit: type=1326 audit(1775227376.066:799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz.1.515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f21f855d04e code=0x7ffc0000 [ 192.974103][ T28] audit: type=1326 audit(1775227376.066:800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz.1.515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f21f855d04e code=0x7ffc0000 [ 193.003010][ T28] audit: type=1326 audit(1775227376.066:801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz.1.515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f21f855d04e code=0x7ffc0000 [ 193.030508][ T28] audit: type=1326 audit(1775227376.076:802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz.1.515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f21f855d04e code=0x7ffc0000 [ 193.058844][ T28] audit: type=1326 audit(1775227376.076:803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz.1.515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f21f855d04e code=0x7ffc0000 [ 194.068107][ T7535] tipc: Disabling bearer [ 194.080522][ T5769] tipc: Node number set to 564026918 [ 194.097131][ T7575] netlink: 'syz.1.517': attribute type 30 has an invalid length. [ 194.241291][ T7577] loop0: detected capacity change from 0 to 1024 [ 195.209752][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 195.223835][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.539546][ T7577] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 196.030602][ T5771] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 196.031570][ T7602] loop2: detected capacity change from 0 to 512 [ 196.043262][ T7603] syzkaller0: entered promiscuous mode [ 196.065113][ T7603] syzkaller0: entered allmulticast mode [ 196.079212][ T7602] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 196.093362][ T7602] ext4 filesystem being mounted at /128/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 196.248079][ T5777] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 196.549775][ T7613] program syz.3.531 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 197.582340][ T5770] Bluetooth: hci3: command 0x0406 tx timeout [ 197.588757][ T5778] Bluetooth: hci2: command 0x0406 tx timeout [ 197.594890][ T5778] Bluetooth: hci0: command 0x0406 tx timeout [ 197.601095][ T5770] Bluetooth: hci1: command 0x0406 tx timeout [ 197.792444][ T28] kauditd_printk_skb: 24 callbacks suppressed [ 197.792463][ T28] audit: type=1326 audit(1775227381.066:828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7625 comm="syz.2.538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25a79c819 code=0x7ffc0000 [ 197.846929][ T28] audit: type=1326 audit(1775227381.066:829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7625 comm="syz.2.538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25a79c819 code=0x7ffc0000 [ 197.935644][ T28] audit: type=1326 audit(1775227381.066:830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7625 comm="syz.2.538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fc25a79c819 code=0x7ffc0000 [ 197.995826][ T7632] loop2: detected capacity change from 0 to 512 [ 198.046915][ T28] audit: type=1326 audit(1775227381.066:831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7625 comm="syz.2.538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25a79c819 code=0x7ffc0000 [ 198.095948][ T28] audit: type=1326 audit(1775227381.066:832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7625 comm="syz.2.538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25a79c819 code=0x7ffc0000 [ 198.121856][ T7632] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 548) [ 198.142447][ T7632] FAT-fs (loop2): Filesystem has been set read-only [ 198.156242][ T7632] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548) [ 198.172906][ T28] audit: type=1326 audit(1775227381.216:833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7628 comm="syz.3.537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f8dd9c819 code=0x7ffc0000 [ 198.190408][ T7637] program syz.1.541 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 198.199517][ T7632] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548) [ 198.222291][ T28] audit: type=1326 audit(1775227381.216:834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7628 comm="syz.3.537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f8dd9c819 code=0x7ffc0000 [ 198.287095][ T28] audit: type=1326 audit(1775227381.216:835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7628 comm="syz.3.537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f8dd9c819 code=0x7ffc0000 [ 198.760669][ T28] audit: type=1326 audit(1775227381.216:836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7628 comm="syz.3.537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f1f8dd9c819 code=0x7ffc0000 [ 199.227135][ T28] audit: type=1326 audit(1775227381.296:837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7628 comm="syz.3.537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f1f8dd5d04e code=0x7ffc0000 [ 199.533881][ T7654] tmpfs: Bad value for 'mpol' [ 199.554537][ T7655] loop0: detected capacity change from 0 to 512 [ 199.582048][ T7655] EXT4-fs error (device loop0): ext4_orphan_get:1398: inode #11: comm syz.0.547: unexpected EA_INODE flag [ 199.601307][ T7655] EXT4-fs (loop0): Remounting filesystem read-only [ 199.626001][ T7655] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 199.722982][ T5771] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 199.914599][ T7662] netlink: 76 bytes leftover after parsing attributes in process `syz.0.550'. [ 200.154428][ T7665] loop0: detected capacity change from 0 to 512 [ 200.185305][ T7667] program syz.1.552 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 200.196892][ T7665] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 200.316456][ T7665] ------------[ cut here ]------------ [ 200.322711][ T7665] EA inode 11 i_nlink=0 [ 200.383126][ T7665] WARNING: CPU: 1 PID: 7665 at fs/ext4/xattr.c:1059 ext4_xattr_inode_update_ref+0x53c/0x590 [ 200.397843][ T7665] Modules linked in: [ 200.401782][ T7665] CPU: 1 PID: 7665 Comm: syz.0.551 Not tainted syzkaller #0 [ 200.409178][ T7665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 200.419552][ T7665] RIP: 0010:ext4_xattr_inode_update_ref+0x53c/0x590 [ 200.426166][ T7665] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 85 d5 98 ff 49 8b 37 48 c7 c7 a0 d6 de 8a 89 da e8 94 51 0a ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 ab fe ff ff e8 6e 7d 3f 08 [ 200.446285][ T7665] RSP: 0018:ffffc900055df2e0 EFLAGS: 00010246 [ 200.452676][ T7665] RAX: f8bdfc9bc6a7af00 RBX: 0000000000000000 RCX: 0000000000080000 [ 200.460915][ T7665] RDX: ffffc9000c7f9000 RSI: 0000000000021a28 RDI: 0000000000021a29 [ 200.468993][ T7665] RBP: ffffc900055df3d0 R08: ffff8880b8f28c13 R09: 1ffff110171e5182 [ 200.477158][ T7665] R10: dffffc0000000000 R11: ffffed10171e5183 R12: dffffc0000000000 [ 200.485173][ T7665] R13: ffff888057c040a8 R14: ffff888057c03eb0 R15: ffff888057c03f00 [ 200.493271][ T7665] FS: 00007fdc87df66c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 200.502336][ T7665] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 200.509022][ T7665] CR2: 000000110c2fb6ad CR3: 000000002dbb6000 CR4: 00000000003506e0 [ 200.517522][ T7665] Call Trace: [ 200.520949][ T7665] [ 200.523931][ T7665] ? ext4_xattr_list_entries+0x3d0/0x3d0 [ 200.529747][ T7665] ? __ext4_journal_ensure_credits+0x30/0x450 [ 200.535893][ T7665] ext4_xattr_inode_dec_ref_all+0x9a6/0x1040 [ 200.542066][ T7665] ? ext4_xattr_delete_inode+0xd10/0xd10 [ 200.547933][ T7665] ? __ext4_journal_ensure_credits+0x450/0x450 [ 200.554185][ T7665] ext4_xattr_delete_inode+0xb3e/0xd10 [ 200.559913][ T7665] ? up_write+0x1c3/0x410 [ 200.565142][ T7665] ? ext4_expand_extra_isize_ea+0x1e80/0x1e80 [ 200.571399][ T7665] ext4_evict_inode+0xaaf/0xea0 [ 200.576322][ T7665] ? _raw_spin_unlock+0x28/0x40 [ 200.581668][ T7665] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 200.587825][ T7665] ? do_raw_spin_unlock+0x121/0x230 [ 200.593085][ T7665] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 200.599084][ T7665] evict+0x4ca/0x8d0 [ 200.603043][ T7665] ? proc_nr_inodes+0x230/0x230 [ 200.608289][ T7665] ? do_raw_spin_unlock+0x121/0x230 [ 200.613549][ T7665] ? _raw_spin_unlock+0x28/0x40 [ 200.619395][ T7665] ? iput+0x706/0x920 [ 200.623449][ T7665] ext4_orphan_cleanup+0xbec/0x1420 [ 200.628901][ T7665] ? ext4_orphan_del+0xbf0/0xbf0 [ 200.633893][ T7665] ? ext4_register_li_request+0x183/0x940 [ 200.639852][ T7665] ? errseq_check_and_advance+0x66/0x120 [ 200.645554][ T7665] ext4_fill_super+0x5ed0/0x6790 [ 200.650673][ T7665] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 200.657997][ T7665] ? __might_sleep+0xe0/0xe0 [ 200.662656][ T7665] ? read_lock_is_recursive+0x20/0x20 [ 200.668563][ T7665] ? snprintf+0xe9/0x140 [ 200.672887][ T7665] ? down_read_killable+0x340/0x340 [ 200.678228][ T7665] ? setup_bdev_super+0x56b/0x660 [ 200.683478][ T7665] get_tree_bdev+0x3f3/0x520 [ 200.688647][ T7665] ? vfs_parse_fs_string+0x170/0x170 [ 200.694493][ T7665] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 200.700880][ T7665] ? setup_bdev_super+0x660/0x660 [ 200.705951][ T7665] ? apparmor_capable+0x137/0x1a0 [ 200.711085][ T7665] ? bpf_lsm_capable+0x9/0x10 [ 200.715814][ T7665] ? security_capable+0x89/0xb0 [ 200.721202][ T7665] vfs_get_tree+0x8c/0x280 [ 200.725671][ T7665] do_new_mount+0x24b/0xa40 [ 200.730402][ T7665] __se_sys_mount+0x2e7/0x3d0 [ 200.735135][ T7665] ? __x64_sys_mount+0xc0/0xc0 [ 200.739989][ T7665] ? lockdep_hardirqs_on+0x98/0x150 [ 200.745226][ T7665] ? __x64_sys_mount+0x20/0xc0 [ 200.750106][ T7665] do_syscall_64+0x55/0xa0 [ 200.754575][ T7665] ? clear_bhb_loop+0x40/0x90 [ 200.759336][ T7665] ? clear_bhb_loop+0x40/0x90 [ 200.764145][ T7665] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 200.770412][ T7665] RIP: 0033:0x7fdc89b9da8a [ 200.774870][ T7665] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 200.794813][ T7665] RSP: 002b:00007fdc87df5e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 200.803341][ T7665] RAX: ffffffffffffffda RBX: 00007fdc87df5ee0 RCX: 00007fdc89b9da8a [ 200.811398][ T7665] RDX: 0000200000000180 RSI: 0000200000000000 RDI: 00007fdc87df5ea0 [ 200.819467][ T7665] RBP: 0000200000000180 R08: 00007fdc87df5ee0 R09: 0000000000000000 [ 200.827950][ T7665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000000 [ 200.835957][ T7665] R13: 00007fdc87df5ea0 R14: 000000000000047a R15: 00002000000001c0 [ 200.844103][ T7665] [ 200.847276][ T7665] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 200.854580][ T7665] CPU: 1 PID: 7665 Comm: syz.0.551 Not tainted syzkaller #0 [ 200.861891][ T7665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 200.872074][ T7665] Call Trace: [ 200.875374][ T7665] [ 200.878328][ T7665] dump_stack_lvl+0x18c/0x250 [ 200.883137][ T7665] ? show_regs_print_info+0x20/0x20 [ 200.888373][ T7665] ? load_image+0x400/0x400 [ 200.892932][ T7665] panic+0x2dc/0x730 [ 200.896952][ T7665] ? bpf_jit_dump+0xd0/0xd0 [ 200.901597][ T7665] __warn+0x2e0/0x470 [ 200.905616][ T7665] ? ext4_xattr_inode_update_ref+0x53c/0x590 [ 200.911639][ T7665] ? ext4_xattr_inode_update_ref+0x53c/0x590 [ 200.917759][ T7665] report_bug+0x2be/0x4f0 [ 200.922129][ T7665] ? ext4_xattr_inode_update_ref+0x53c/0x590 [ 200.928153][ T7665] ? ext4_xattr_inode_update_ref+0x53c/0x590 [ 200.934430][ T7665] ? ext4_xattr_inode_update_ref+0x53e/0x590 [ 200.940450][ T7665] handle_bug+0xcf/0x120 [ 200.944720][ T7665] exc_invalid_op+0x1a/0x50 [ 200.949269][ T7665] asm_exc_invalid_op+0x1a/0x20 [ 200.954157][ T7665] RIP: 0010:ext4_xattr_inode_update_ref+0x53c/0x590 [ 200.960791][ T7665] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 85 d5 98 ff 49 8b 37 48 c7 c7 a0 d6 de 8a 89 da e8 94 51 0a ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 ab fe ff ff e8 6e 7d 3f 08 [ 200.980585][ T7665] RSP: 0018:ffffc900055df2e0 EFLAGS: 00010246 [ 200.986772][ T7665] RAX: f8bdfc9bc6a7af00 RBX: 0000000000000000 RCX: 0000000000080000 [ 200.994777][ T7665] RDX: ffffc9000c7f9000 RSI: 0000000000021a28 RDI: 0000000000021a29 [ 201.002783][ T7665] RBP: ffffc900055df3d0 R08: ffff8880b8f28c13 R09: 1ffff110171e5182 [ 201.010786][ T7665] R10: dffffc0000000000 R11: ffffed10171e5183 R12: dffffc0000000000 [ 201.018958][ T7665] R13: ffff888057c040a8 R14: ffff888057c03eb0 R15: ffff888057c03f00 [ 201.027072][ T7665] ? ext4_xattr_list_entries+0x3d0/0x3d0 [ 201.032765][ T7665] ? __ext4_journal_ensure_credits+0x30/0x450 [ 201.038875][ T7665] ext4_xattr_inode_dec_ref_all+0x9a6/0x1040 [ 201.044918][ T7665] ? ext4_xattr_delete_inode+0xd10/0xd10 [ 201.050592][ T7665] ? __ext4_journal_ensure_credits+0x450/0x450 [ 201.056796][ T7665] ext4_xattr_delete_inode+0xb3e/0xd10 [ 201.062302][ T7665] ? up_write+0x1c3/0x410 [ 201.066670][ T7665] ? ext4_expand_extra_isize_ea+0x1e80/0x1e80 [ 201.072794][ T7665] ext4_evict_inode+0xaaf/0xea0 [ 201.077681][ T7665] ? _raw_spin_unlock+0x28/0x40 [ 201.082583][ T7665] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 201.088551][ T7665] ? do_raw_spin_unlock+0x121/0x230 [ 201.093807][ T7665] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 201.099763][ T7665] evict+0x4ca/0x8d0 [ 201.103726][ T7665] ? proc_nr_inodes+0x230/0x230 [ 201.108627][ T7665] ? do_raw_spin_unlock+0x121/0x230 [ 201.113891][ T7665] ? _raw_spin_unlock+0x28/0x40 [ 201.118764][ T7665] ? iput+0x706/0x920 [ 201.122773][ T7665] ext4_orphan_cleanup+0xbec/0x1420 [ 201.128115][ T7665] ? ext4_orphan_del+0xbf0/0xbf0 [ 201.133067][ T7665] ? ext4_register_li_request+0x183/0x940 [ 201.138812][ T7665] ? errseq_check_and_advance+0x66/0x120 [ 201.144460][ T7665] ext4_fill_super+0x5ed0/0x6790 [ 201.149432][ T7665] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 201.155682][ T7665] ? __might_sleep+0xe0/0xe0 [ 201.160306][ T7665] ? read_lock_is_recursive+0x20/0x20 [ 201.165705][ T7665] ? snprintf+0xe9/0x140 [ 201.169983][ T7665] ? down_read_killable+0x340/0x340 [ 201.175205][ T7665] ? setup_bdev_super+0x56b/0x660 [ 201.180251][ T7665] get_tree_bdev+0x3f3/0x520 [ 201.184852][ T7665] ? vfs_parse_fs_string+0x170/0x170 [ 201.190247][ T7665] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 201.196543][ T7665] ? setup_bdev_super+0x660/0x660 [ 201.201576][ T7665] ? apparmor_capable+0x137/0x1a0 [ 201.206614][ T7665] ? bpf_lsm_capable+0x9/0x10 [ 201.211304][ T7665] ? security_capable+0x89/0xb0 [ 201.216170][ T7665] vfs_get_tree+0x8c/0x280 [ 201.220599][ T7665] do_new_mount+0x24b/0xa40 [ 201.225119][ T7665] __se_sys_mount+0x2e7/0x3d0 [ 201.229826][ T7665] ? __x64_sys_mount+0xc0/0xc0 [ 201.234620][ T7665] ? lockdep_hardirqs_on+0x98/0x150 [ 201.239916][ T7665] ? __x64_sys_mount+0x20/0xc0 [ 201.244689][ T7665] do_syscall_64+0x55/0xa0 [ 201.249177][ T7665] ? clear_bhb_loop+0x40/0x90 [ 201.253951][ T7665] ? clear_bhb_loop+0x40/0x90 [ 201.258644][ T7665] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 201.264598][ T7665] RIP: 0033:0x7fdc89b9da8a [ 201.269045][ T7665] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 201.288777][ T7665] RSP: 002b:00007fdc87df5e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 201.297212][ T7665] RAX: ffffffffffffffda RBX: 00007fdc87df5ee0 RCX: 00007fdc89b9da8a [ 201.305202][ T7665] RDX: 0000200000000180 RSI: 0000200000000000 RDI: 00007fdc87df5ea0 [ 201.313201][ T7665] RBP: 0000200000000180 R08: 00007fdc87df5ee0 R09: 0000000000000000 [ 201.321187][ T7665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000000 [ 201.329164][ T7665] R13: 00007fdc87df5ea0 R14: 000000000000047a R15: 00002000000001c0 [ 201.337167][ T7665] [ 201.340713][ T7665] Kernel Offset: disabled [ 201.345103][ T7665] Rebooting in 86400 seconds..