last executing test programs: 11.392450962s ago: executing program 1 (id=1226): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbee6, 0x8031, 0xffffffffffffffff, 0xffffe000) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) read$FUSE(0xffffffffffffffff, 0x0, 0x0) setrlimit(0x8, &(0x7f0000000080)={0xfffffffffffffffd, 0xfffffffffffffffd}) mlockall(0x7) 5.725276689s ago: executing program 0 (id=1246): r0 = socket$kcm(0x10, 0x2, 0x0) r1 = bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r1, &(0x7f00000004c0)="ac", &(0x7f0000000000)=""/10, 0x2}, 0x20) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000200)={r1, &(0x7f0000000080), &(0x7f0000000000)=""/10, 0x2}, 0x20) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000011008108090f9becdb4cb92e264831371900000069bd6efb2502eaf60d002700020400bf050005001201", 0x2e}], 0x1}, 0x0) 5.724164541s ago: executing program 3 (id=1247): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r0, 0x0) r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @dev={0xfe, 0x80, '\x00', 0x1d}, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2, 0x11, 0x0, 0x2}}}}}}}, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000000)={@local, @local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x3, 0x28, 0x0, 0x0, 0x8, 0x6, 0x0, @private=0xa010102, @local}, {{0x4e23, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2, 0x8000, 0x0, 0xfffc}}}}}}, 0x0) 5.515326482s ago: executing program 1 (id=1249): r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x201, 0x0) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r0, 0x0) bind$alg(0xffffffffffffffff, &(0x7f00000000c0)={0x26, 'hash\x00', 0x0, 0x0, 'cmac(aes-generic)\x00'}, 0x58) syz_clone(0x42164000, 0x0, 0x0, 0x0, 0x0, 0x0) 5.497585397s ago: executing program 3 (id=1250): openat$tun(0xffffffffffffff9c, &(0x7f0000001800), 0xc0241, 0x0) r0 = syz_open_dev$loop(&(0x7f00000016c0), 0x0, 0x800) ioctl$BLKROGET(r0, 0x125e, &(0x7f0000001700)) 5.334801463s ago: executing program 4 (id=1252): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000040)) r1 = socket(0x2, 0x80805, 0x0) getsockopt$IP_VS_SO_GET_TIMEOUT(r1, 0x0, 0x486, &(0x7f0000000040), &(0x7f00000000c0)=0xc) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00'}) syz_genetlink_get_family_id$batadv(&(0x7f0000000140), 0xffffffffffffffff) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r2}, 0x10) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000003c0)='net/xfrm_stat\x00') r4 = syz_open_dev$tty1(0xc, 0x4, 0x4) ioctl$KDFONTOP_SET(r4, 0x4b72, &(0x7f0000000040)={0x0, 0x4000000, 0x8, 0xd, 0x200, &(0x7f0000001500)="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"}) preadv(r3, &(0x7f00000000c0)=[{&(0x7f0000000200)=""/233, 0xe9}, {&(0x7f0000000000)=""/17, 0x11}, {&(0x7f0000000400)=""/4096, 0x1000}, {&(0x7f0000000080)=""/2, 0x2}, {&(0x7f0000001400)=""/4096, 0x1000}], 0x5, 0xfff, 0x0) r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000008000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000001500)=ANY=[@ANYBLOB="180053b12c54000000000000feffff0f18110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b7000000000000009500000000000000"], &(0x7f00000003c0)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r6}, 0x10) r7 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r7, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000200)="d8000000210081044e81f782db44b90402000000008000000000150010001400259070f409000d2000000a000e4006000000036010fab94dcf5c0468c1d67f6f94007134cf6ee05e6756cfb39b0590b4800089e408e8d8ef52b49816277cf4090000001fb791643a5e08001b14d6d930dfe1d9db22fe7c9f8775730d16a4683f1aeb4edbb57a5025ccca9e00360db701000000eafad95667e006dcdf969b3ef35ce3bb9ad809d561cace81ed0bffece0b42a9ecbee5de6cce50dd6e4edef3d939acd92954b43370e970100"/216, 0xd8}], 0x1}, 0x0) r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0xffffffffffffff22}, 0x2e) socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[@ANYRESOCT=r3], 0x38}, 0x1, 0x0, 0x0, 0x844}, 0x48810) r9 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x8040, 0x0) ioctl$PPPIOCATTCHAN(r9, 0x40047438, &(0x7f0000001480)=0x3) r10 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_group_source_req(r10, 0x29, 0x2e, &(0x7f0000000180)={0x8, {{0xa, 0x4e21, 0xa3f, @mcast1, 0xbfd}}, {{0xa, 0x4e20, 0x5, @private0={0xfc, 0x0, '\x00', 0x1}, 0x40}}}, 0x108) connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1d}}, 0x10) getsockopt$inet6_buf(r10, 0x29, 0x30, &(0x7f0000000180)=""/214, &(0x7f0000000080)=0xd6) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000400)='mm_collapse_huge_page_swapin\x00', r8, 0x0, 0x7}, 0x18) r11 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000410"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 5.243020135s ago: executing program 3 (id=1253): r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x12}}, 0x10) sendmmsg$inet(r0, &(0x7f0000004540)=[{{&(0x7f0000000040)={0x2, 0x4e22, @multicast1}, 0x10, 0x0}}, {{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000180)="15b26f226e2966667482d50703b0a8d92ccd9e69d5cc4cb3d467a670b237a9225fb56c0f7ea725dee27c4bb43bb50c6748c83b71d59f0537405dfab648c096607340fac939a2efd31cbe2f8ca29c409e87ea0974b7bceff9afef5dffd691575f5115f2f961ad488e3386036913e98181a6034febaab853a3e928b9035b0e3a8e1cb393c70f6d0448970e0af2476f8b923ee09c19deca55d58f70e8eeff55dda6381cb96afe97196c0af0a8fd450a1447a1a521e2c211fb84cbcf4aebd31298972ec6be", 0xc3}, {&(0x7f0000000d80)="7d68e6de85f9b0cbc9d710267f321ec64eab043ecad9af7e01e9463218ec45924a99867163e468d36a682fadd749caa325e685d75559a87139e02fae7271be8f55671cfd32a09896278d1941370174720838039d0989bc3394b8a4c4f4a30f0496be313d6d60fe47966c634a3ee1f659e8ef310647725bda0130d5de5028220a4cf5fc808a75694738ee26cb21302b4bba4265b845a5d5dce706d9820c6936b122f9658446d74a9016b94424971dd443a6907eb5c73b6b200e92b23f2c36a214729b0bc231511e4c", 0xc8}, {&(0x7f0000000380)="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", 0x86f}], 0x3}}], 0x2, 0x240080e4) 5.173696279s ago: executing program 0 (id=1255): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xe, 0x4, 0x4, 0x2, 0x0, 0x1, 0xffffffff}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000003200)={0x6, 0x14, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000100000000000000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bca2000000000000a6020000f8ffffffb703000018000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r1, 0x2000012, 0x0, 0x0, &(0x7f0000000c40), 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50) 5.021167524s ago: executing program 3 (id=1256): bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000d8ffffffb702000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=0x0) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000) r1 = inotify_init() r2 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0xa2) fcntl$setlease(r2, 0x400, 0x0) truncate(&(0x7f0000000040)='./file0\x00', 0x200000) close_range(r1, 0xffffffffffffffff, 0x0) 5.005869055s ago: executing program 4 (id=1257): r0 = socket$inet6(0xa, 0x3, 0x2f) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000003c0)={{{@in6=@ipv4={'\x00', '\xff\xff', @multicast2}, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x6, 0x0, 0x0, 0xa, 0x0, 0x0, 0x2c}, {0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x7}, {0xffffffff, 0x7}, 0x0, 0x0, 0x1}, {{@in=@empty, 0x0, 0x6c}, 0x0, @in6=@empty, 0x0, 0x3, 0x0, 0x2}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) 4.944541535s ago: executing program 0 (id=1258): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a31000000000c00078008000640000007010500050002000000050004000000000016000300686173683a6e65742c706f72"], 0x5c}}, 0x0) 4.834272744s ago: executing program 4 (id=1260): msgget$private(0x0, 0x90) 4.647307471s ago: executing program 4 (id=1261): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @dev={0xfe, 0x80, '\x00', 0x1d}, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2, 0x11, 0x0, 0x2}}}}}}}, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000000)={@local, @local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x3, 0x28, 0x0, 0x0, 0x8, 0x6, 0x0, @private=0xa010102, @local}, {{0x4e23, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2, 0x8000, 0x0, 0xfffc}}}}}}, 0x0) 4.576387374s ago: executing program 0 (id=1262): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d) r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/dev_mcast\x00') read$FUSE(r5, &(0x7f0000000400)={0x2020}, 0x2020) 4.420903459s ago: executing program 1 (id=1263): r0 = socket$inet(0xa, 0x801, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x589b}, 0x50) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10) syz_emit_ethernet(0x7e, &(0x7f00000001c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @multicast, @void, {@ipv6={0x86dd, @udp={0xa, 0x6, '\x00', 0x48, 0x11, 0x0, @remote, @local, {[], {0x4e1d, 0x4e20, 0x48, 0x0, @wg=@cookie={0x3, 0x0, "dc521c259b538a2bf2a113dc2eeec0a072edf20b6d59027f", "d646c098cfc27eb8549d66e7b219c2c3b85e4508546e551af9e59631718ba089"}}}}}}}, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000040)=@mangle={'mangle\x00', 0x44, 0x6, 0x3b8, 0x1f0, 0x288, 0x158, 0x0, 0x98, 0x320, 0x320, 0x320, 0x320, 0x320, 0x6, 0x0, {[{{@ip={@broadcast, @dev, 0xff, 0x0, 'pim6reg0\x00', 'ip6gre0\x00'}, 0x0, 0x70, 0x98}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0x158}}, {{@ip={@rand_addr=0x64010100, @local, 0x0, 0x0, 'pim6reg1\x00', 'veth0_virt_wifi\x00', {0xff}, {}, 0x6, 0x3, 0x40}, 0x0, 0x90, 0xc0, 0x0, {}, [@common=@socket0={{0x20}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @multicast2}}}, {{@uncond, 0x0, 0x70, 0x98}, @TTL={0x28, 'TTL\x00', 0x0, {0xfe, 0x7}}}, {{@ip={@rand_addr, @local, 0x0, 0x0, 'syzkaller0\x00', 'macvlan0\x00', {0xff}, {0xff}, 0x33, 0x3}, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28}}, {{@ip={@broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0xff, 'ip6tnl0\x00', 'batadv_slave_1\x00', {}, {0xff}}, 0x0, 0x70, 0x98}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0x4, 0x4, 0x5}, {0x0, 0x6, 0x5}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x418) 4.251332045s ago: executing program 2 (id=1265): capset(&(0x7f0000000380)={0x20080522}, &(0x7f0000000040)={0x200000, 0x40200003, 0x0, 0x6, 0x7}) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000}) 4.143132098s ago: executing program 3 (id=1266): r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x12}}, 0x10) sendmmsg$inet(r0, &(0x7f0000004540)=[{{&(0x7f0000000040)={0x2, 0x4e22, @multicast1}, 0x10, 0x0}}, {{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000180)="15b26f226e2966667482d50703b0a8d92ccd9e69d5cc4cb3d467a670b237a9225fb56c0f7ea725dee27c4bb43bb50c6748c83b71d59f0537405dfab648c096607340fac939a2efd31cbe2f8ca29c409e87ea0974b7bceff9afef5dffd691575f5115f2f961ad488e3386036913e98181a6034febaab853a3e928b9035b0e3a8e1cb393c70f6d0448970e0af2476f8b923ee09c19deca55d58f70e8eeff55dda6381cb96afe97196c0af0a8fd450a1447a1a521e2c211fb84cbcf4aebd31298972ec6be", 0xc3}, {&(0x7f0000000d80)="7d68e6de85f9b0cbc9d710267f321ec64eab043ecad9af7e01e9463218ec45924a99867163e468d36a682fadd749caa325e685d75559a87139e02fae7271be8f55671cfd32a09896278d1941370174720838039d0989bc3394b8a4c4f4a30f0496be313d6d60fe47966c634a3ee1f659e8ef310647725bda0130d5de5028220a4cf5fc808a75694738ee26cb21302b4bba4265b845a5d5dce706d9820c6936b122f9658446d74a9016b94424971dd443a6907eb5c73b6b200e92b23f2c36a214729b0bc231511e4c", 0xc8}, {&(0x7f0000000380)="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", 0x897}], 0x3}}], 0x2, 0x240080e4) 4.138362029s ago: executing program 4 (id=1267): syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000400)='./file0\x00', 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="726f6469722c73686f72746e616d653d77696e6e742c756e695f786c6174653d302c756e695f786c6174653d312c757466383d312c757466383d312c7379735f696d6d757461626c6500892c757466383d302c756e695f786c6174653d302c666c7573682c73686f72746e616d653d6d697865642c73686f72746e616d653d6c6f7765722c6e6e6f6e756d7461696c3d312c73686f72746e616d653d77696e6e742c73686f72746e616d653d6c6f7765722c757466383d31"], 0xfe, 0x2ae, &(0x7f0000000a40)="$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") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) getdents(r0, 0xfffffffffffffffd, 0x58) 2.554115696s ago: executing program 2 (id=1268): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xe, 0x4, 0x4, 0x2, 0x0, 0x1, 0xffffffff}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000003200)={0x6, 0x14, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000100000000000000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bca2000000000000a6020000f8ffffffb703000018000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r1, 0x2000012, 0x0, 0x0, &(0x7f0000000c40), 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50) 2.551289169s ago: executing program 0 (id=1269): r0 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x9c37611dc13d0d83) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x5, 0x0, 0x7fff0001}]}) fchown(r0, 0x0, 0xee00) 2.428764096s ago: executing program 3 (id=1270): bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = socket$nl_route(0x10, 0x3, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x18) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000004700)={'team0\x00', 0x0}) sendmsg$TEAM_CMD_OPTIONS_SET(r1, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f0000000100)={0x60, r2, 0x405, 0x70bd27, 0x25dfdbfe, {}, [{{0x8, 0x1, r3}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000431}, 0x4040084) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000800)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 2.33033232s ago: executing program 2 (id=1271): getpid() socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r0, &(0x7f00000007c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)=[@rights={{0x14, 0x1, 0x1, [r0]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x30, 0x40440c0}}], 0x1, 0x41) 2.329861537s ago: executing program 0 (id=1272): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000404c05680200000000000109022400010000402009040000020300000009210708000122050009058103"], 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r1, &(0x7f0000000080), &(0x7f0000000300)=""/180}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00220500000070ff"], 0x0}, 0x0) 2.267263364s ago: executing program 1 (id=1273): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r4, 0x0) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="12000000040000000400000012"], 0x48) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000ac0)=ANY=[@ANYRES32=r5, @ANYRES32, @ANYBLOB='&'], 0x10) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000048c0)={r5, &(0x7f00000047c0), &(0x7f0000004880)=@udp=r4}, 0x20) recvmmsg(r4, &(0x7f0000000b80)=[{{0x0, 0xffffffffffffff6c, 0x0, 0x0, 0x0, 0x52}, 0xa}], 0x360, 0x120, 0x0) 2.056209697s ago: executing program 2 (id=1274): r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_group_source_req(r0, 0x29, 0x12, 0x0, 0x0) 2.044870392s ago: executing program 4 (id=1275): syz_mount_image$erofs(&(0x7f0000000000), &(0x7f0000000080)='./bus\x00', 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="757365725f78617474722c61636c2c00abc39e1ba3ee498e1d8c12531462cd5519277b030853d25b421cc41e0b90996e5f28728a3bc9df609ba1a22568735bd5f06e6f25829fce8ee7fdde9d092508e3df606b9036557dfa085395e37c67337d522ef3d3a6a08578f19ed4d0753564c43e"], 0x3, 0x1bf, &(0x7f00000000c0)="$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") syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0) 1.227112053s ago: executing program 2 (id=1276): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet6(0xa, 0x3, 0x7) connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x52c, @loopback}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000340)={{{@in=@local, @in=@multicast1, 0xffff, 0x0, 0x1, 0x4, 0xa, 0x0, 0x0, 0x4}, {0x2000000000000bd1, 0xe, 0x3}, {0x81, 0x9}, 0x2000000, 0x0, 0x1}, {{@in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x8000, 0x3c}, 0x0, @in6=@empty, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0xe7}}, 0xe8) sendmmsg(r3, &(0x7f0000000480), 0x2e9, 0xffe0) 1.167846327s ago: executing program 1 (id=1277): bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000d8ffffffb702000000000000b7030000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=0x0) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000) r1 = inotify_init() r2 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0xa2) fcntl$setlease(r2, 0x400, 0x0) truncate(&(0x7f0000000040)='./file0\x00', 0x200000) close_range(r1, 0xffffffffffffffff, 0x0) 521.474461ms ago: executing program 1 (id=1278): prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) r3 = syz_io_uring_setup(0x7c77, &(0x7f0000000300)={0x0, 0x0, 0x2}, &(0x7f0000000000), &(0x7f00000000c0)) io_uring_enter(r3, 0x0, 0x0, 0x5, 0x0, 0x0) openat$uinput(0xffffffffffffff9c, 0x0, 0x2, 0x0) r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r4, 0xaf01, 0x0) 0s ago: executing program 2 (id=1279): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'ip6gretap0\x00', 0x2}) ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x1) ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x0) kernel console output (not intermixed with test programs): ve_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 92.119606][ T5828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 92.131834][ T5841] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 92.139185][ T5841] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 92.165512][ T5841] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 92.211036][ T5841] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 92.218665][ T5841] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 92.244616][ T5841] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 92.256513][ T5847] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 92.263589][ T5847] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 92.290216][ T5847] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 92.344084][ T5847] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 92.351320][ T5847] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 92.377429][ T5847] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 92.394211][ T5830] hsr_slave_0: entered promiscuous mode [ 92.401225][ T5830] hsr_slave_1: entered promiscuous mode [ 92.427666][ T5835] hsr_slave_0: entered promiscuous mode [ 92.434162][ T5835] hsr_slave_1: entered promiscuous mode [ 92.440656][ T5835] debugfs: 'hsr0' already exists in 'hsr' [ 92.446468][ T5835] Cannot create hsr debugfs directory [ 92.544399][ T5828] hsr_slave_0: entered promiscuous mode [ 92.551309][ T5828] hsr_slave_1: entered promiscuous mode [ 92.557630][ T5828] debugfs: 'hsr0' already exists in 'hsr' [ 92.563382][ T5828] Cannot create hsr debugfs directory [ 92.621894][ T5841] hsr_slave_0: entered promiscuous mode [ 92.629074][ T5841] hsr_slave_1: entered promiscuous mode [ 92.635249][ T5841] debugfs: 'hsr0' already exists in 'hsr' [ 92.641607][ T5841] Cannot create hsr debugfs directory [ 92.712947][ T5847] hsr_slave_0: entered promiscuous mode [ 92.720517][ T5847] hsr_slave_1: entered promiscuous mode [ 92.726868][ T5847] debugfs: 'hsr0' already exists in 'hsr' [ 92.732618][ T5847] Cannot create hsr debugfs directory [ 93.236386][ T5835] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 93.251613][ T5835] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 93.271287][ T5835] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 93.282837][ T5835] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 93.352545][ T5841] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 93.365624][ T5841] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 93.387704][ T5841] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 93.402560][ T5841] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 93.469059][ T5828] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 93.481758][ T5828] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 93.505009][ T5828] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 93.517292][ T5828] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 93.612792][ T5830] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 93.629434][ T5830] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 93.643778][ T5830] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 93.654624][ T5830] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 93.661889][ T5831] Bluetooth: hci2: command tx timeout [ 93.662022][ T5838] Bluetooth: hci1: command tx timeout [ 93.739154][ T5838] Bluetooth: hci0: command tx timeout [ 93.772380][ T5835] 8021q: adding VLAN 0 to HW filter on device bond0 [ 93.789218][ T5847] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 93.802945][ T5847] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 93.813881][ T5847] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 93.826129][ T5847] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 93.833272][ T5838] Bluetooth: hci3: command tx timeout [ 93.894173][ T5835] 8021q: adding VLAN 0 to HW filter on device team0 [ 93.901557][ T5838] Bluetooth: hci4: command tx timeout [ 93.934856][ T60] bridge0: port 1(bridge_slave_0) entered blocking state [ 93.942168][ T60] bridge0: port 1(bridge_slave_0) entered forwarding state [ 93.985670][ T5841] 8021q: adding VLAN 0 to HW filter on device bond0 [ 93.998233][ T60] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.005377][ T60] bridge0: port 2(bridge_slave_1) entered forwarding state [ 94.080925][ T5841] 8021q: adding VLAN 0 to HW filter on device team0 [ 94.107289][ T60] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.114470][ T60] bridge0: port 1(bridge_slave_0) entered forwarding state [ 94.125195][ T60] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.132359][ T60] bridge0: port 2(bridge_slave_1) entered forwarding state [ 94.173493][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0 [ 94.250550][ T5830] 8021q: adding VLAN 0 to HW filter on device bond0 [ 94.324105][ T5828] 8021q: adding VLAN 0 to HW filter on device team0 [ 94.335648][ T5841] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 94.365601][ T3955] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.372998][ T3955] bridge0: port 1(bridge_slave_0) entered forwarding state [ 94.401395][ T5830] 8021q: adding VLAN 0 to HW filter on device team0 [ 94.439152][ T3955] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.446382][ T3955] bridge0: port 1(bridge_slave_0) entered forwarding state [ 94.479193][ T3955] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.486414][ T3955] bridge0: port 2(bridge_slave_1) entered forwarding state [ 94.514418][ T3955] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.521660][ T3955] bridge0: port 2(bridge_slave_1) entered forwarding state [ 94.593688][ T5847] 8021q: adding VLAN 0 to HW filter on device bond0 [ 94.677049][ T5835] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 94.713631][ T5847] 8021q: adding VLAN 0 to HW filter on device team0 [ 94.743505][ T5841] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 94.760319][ T3955] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.767521][ T3955] bridge0: port 1(bridge_slave_0) entered forwarding state [ 94.800408][ T60] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.807625][ T60] bridge0: port 2(bridge_slave_1) entered forwarding state [ 95.001000][ T5835] veth0_vlan: entered promiscuous mode [ 95.080890][ T5841] veth0_vlan: entered promiscuous mode [ 95.098990][ T5835] veth1_vlan: entered promiscuous mode [ 95.119741][ T5841] veth1_vlan: entered promiscuous mode [ 95.268807][ T5830] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 95.322423][ T5841] veth0_macvtap: entered promiscuous mode [ 95.335858][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 95.351844][ T5835] veth0_macvtap: entered promiscuous mode [ 95.377792][ T5835] veth1_macvtap: entered promiscuous mode [ 95.386383][ T5841] veth1_macvtap: entered promiscuous mode [ 95.454632][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 95.494374][ T5841] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 95.510250][ T5841] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 95.521829][ T5847] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 95.544486][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 95.587039][ T1135] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.596320][ T1135] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.618614][ T1135] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.636933][ T1135] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.656339][ T1135] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.689909][ T1135] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.701073][ T1135] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.710403][ T1135] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.737070][ T5838] Bluetooth: hci2: command tx timeout [ 95.737082][ T5831] Bluetooth: hci1: command tx timeout [ 95.793156][ T5828] veth0_vlan: entered promiscuous mode [ 95.817303][ T5838] Bluetooth: hci0: command tx timeout [ 95.845386][ T5828] veth1_vlan: entered promiscuous mode [ 95.889705][ T5847] veth0_vlan: entered promiscuous mode [ 95.898418][ T5838] Bluetooth: hci3: command tx timeout [ 95.933740][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.941958][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 95.955737][ T5847] veth1_vlan: entered promiscuous mode [ 95.972375][ T5830] veth0_vlan: entered promiscuous mode [ 95.979134][ T5838] Bluetooth: hci4: command tx timeout [ 96.024826][ T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.033052][ T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.038779][ T5830] veth1_vlan: entered promiscuous mode [ 96.084448][ T3955] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.094365][ T3955] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.132801][ T3955] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.151298][ T3955] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.175019][ T5830] veth0_macvtap: entered promiscuous mode [ 96.188749][ T5828] veth0_macvtap: entered promiscuous mode [ 96.199014][ T5847] veth0_macvtap: entered promiscuous mode [ 96.221375][ T5847] veth1_macvtap: entered promiscuous mode [ 96.230259][ T5835] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 96.254458][ T5830] veth1_macvtap: entered promiscuous mode [ 96.263606][ T5828] veth1_macvtap: entered promiscuous mode [ 96.314301][ T5847] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 96.399494][ T5847] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 96.429512][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 96.443499][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 96.478122][ T5947] loop3: detected capacity change from 0 to 2048 [ 96.489032][ T5947] EXT4-fs: Ignoring removed bh option [ 96.534958][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 96.577969][ T5947] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 96.598880][ T1135] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.633822][ T1135] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.668491][ T1135] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.679048][ T1135] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.714494][ T1135] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.741094][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 96.769998][ T1135] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.786518][ T5841] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 96.799504][ T1135] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.872159][ T1135] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.898627][ T1135] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.923286][ T5956] netlink: 260 bytes leftover after parsing attributes in process `syz.2.7'. [ 96.932866][ T5956] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 96.936293][ T1135] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.969404][ T1135] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.000140][ T1135] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.275267][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.327256][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.426045][ T5964] loop2: detected capacity change from 0 to 1024 [ 97.462327][ T5964] EXT4-fs: Ignoring removed bh option [ 97.485650][ T5964] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 97.526272][ T50] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.556848][ T50] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.570348][ T50] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.581210][ T5964] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 97.582060][ T50] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.827953][ T5831] Bluetooth: hci2: command tx timeout [ 97.833735][ T5838] Bluetooth: hci1: command tx timeout [ 97.897028][ T5838] Bluetooth: hci0: command tx timeout [ 97.977187][ T5838] Bluetooth: hci3: command tx timeout [ 98.005239][ T5964] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2857: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 98.058349][ T5838] Bluetooth: hci4: command tx timeout [ 98.104957][ T50] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.135038][ T50] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.226206][ T50] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.248954][ T30] audit: type=1326 audit(1763656871.569:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5961 comm="syz.2.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 98.278456][ T50] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.288286][ T3955] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.305489][ T3955] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.319755][ T30] audit: type=1326 audit(1763656871.569:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5961 comm="syz.2.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 98.384774][ T30] audit: type=1326 audit(1763656871.569:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5961 comm="syz.2.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 98.424519][ T5970] mmap: syz.2.10 (5970) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 98.455709][ T30] audit: type=1326 audit(1763656871.569:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5961 comm="syz.2.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 98.542308][ T30] audit: type=1326 audit(1763656871.569:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5961 comm="syz.2.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 98.881872][ T5980] netlink: 'syz.0.1': attribute type 1 has an invalid length. [ 98.905236][ T5980] netlink: 'syz.0.1': attribute type 4 has an invalid length. [ 98.931493][ T5980] netlink: 9462 bytes leftover after parsing attributes in process `syz.0.1'. [ 98.957092][ T5981] bridge0: port 2(bridge_slave_1) entered disabled state [ 98.965590][ T5981] bridge0: port 1(bridge_slave_0) entered disabled state [ 99.029491][ T5981] bridge0: entered allmulticast mode [ 99.092709][ T5985] bridge_slave_1: left allmulticast mode [ 99.133667][ T5985] bridge_slave_1: left promiscuous mode [ 99.158686][ T5985] bridge0: port 2(bridge_slave_1) entered disabled state [ 99.170889][ T30] audit: type=1326 audit(1763656872.499:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5961 comm="syz.2.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 99.205544][ T5985] bridge_slave_0: left allmulticast mode [ 99.211690][ T5985] bridge_slave_0: left promiscuous mode [ 99.217914][ T30] audit: type=1326 audit(1763656872.499:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5961 comm="syz.2.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 99.258523][ T30] audit: type=1326 audit(1763656872.589:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5961 comm="syz.2.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 99.333733][ T30] audit: type=1326 audit(1763656872.589:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5961 comm="syz.2.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 99.349762][ T5985] bridge0: port 1(bridge_slave_0) entered disabled state [ 99.396706][ T30] audit: type=1326 audit(1763656872.589:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5961 comm="syz.2.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 99.440506][ T5999] loop0: detected capacity change from 0 to 1024 [ 99.484762][ T5999] EXT4-fs: Ignoring removed orlov option [ 99.525977][ T5990] netlink: 292 bytes leftover after parsing attributes in process `syz.1.15'. [ 99.554033][ T5999] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 99.672375][ T5835] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.832445][ T6005] netlink: 12 bytes leftover after parsing attributes in process `syz.4.18'. [ 99.975401][ T6007] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 100.192263][ T6007] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 100.270705][ T5828] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 100.487648][ T6007] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 100.599715][ T6007] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 100.857289][ T5838] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 100.981342][ T65] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.001992][ T65] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.093062][ T65] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.182786][ T36] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.602978][ T6038] syzkaller1: entered promiscuous mode [ 101.639617][ T6038] syzkaller1: entered allmulticast mode [ 102.067295][ T6050] loop2: detected capacity change from 0 to 512 [ 102.197329][ T6034] infiniband syz0: set active [ 102.202215][ T6034] infiniband syz0: added bond_slave_0 [ 102.230078][ T6050] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 102.285109][ T6060] netlink: 40 bytes leftover after parsing attributes in process `syz.3.39'. [ 102.306192][ T6050] ext4 filesystem being mounted at /6/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 102.311743][ T6060] netlink: 40 bytes leftover after parsing attributes in process `syz.3.39'. [ 102.453778][ T6057] loop4: detected capacity change from 0 to 4096 [ 102.500280][ T6034] RDS/IB: syz0: added [ 102.515613][ T6034] smc: adding ib device syz0 with port count 1 [ 102.527082][ T6034] smc: ib device syz0 port 1 has no pnetid [ 102.530036][ T6057] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 102.573959][ T5835] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 102.614160][ T6065] loop0: detected capacity change from 0 to 512 [ 102.663003][ T6068] netlink: 4 bytes leftover after parsing attributes in process `syz.3.42'. [ 102.768505][ T6065] EXT4-fs (loop0): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 102.981213][ T6065] EXT4-fs warning (device loop0): ext4_enable_quotas:7183: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 103.215155][ T5828] EXT4-fs (loop0): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 103.266145][ T5830] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 103.857527][ T6092] netlink: 40 bytes leftover after parsing attributes in process `syz.2.52'. [ 103.889936][ T6092] netlink: 40 bytes leftover after parsing attributes in process `syz.2.52'. [ 104.528222][ T6112] syz_tun: entered allmulticast mode [ 104.710006][ T6115] loop3: detected capacity change from 0 to 512 [ 104.718047][ T6109] syz_tun: left allmulticast mode [ 104.799658][ T6115] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.62: inode has both inline data and extents flags [ 104.896483][ T6115] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.62: couldn't read orphan inode 15 (err -117) [ 105.000897][ T6115] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 105.243873][ T5841] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.279031][ T6127] usb usb1: check_ctrlrecip: process 6127 (syz.4.63) requesting ep 01 but needs 81 [ 105.317197][ T6127] usb usb1: usbfs: process 6127 (syz.4.63) did not claim interface 0 before use [ 105.330599][ T30] kauditd_printk_skb: 272 callbacks suppressed [ 105.330616][ T30] audit: type=1326 audit(1763656878.659:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.2.68" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 105.416054][ T6132] loop2: detected capacity change from 0 to 512 [ 105.416087][ T30] audit: type=1326 audit(1763656878.689:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.2.68" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 105.444913][ T6132] EXT4-fs: Ignoring removed nomblk_io_submit option [ 105.501212][ T6132] EXT4-fs (loop2): Test dummy encryption mode enabled [ 105.514740][ T30] audit: type=1326 audit(1763656878.689:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.2.68" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 105.536982][ T6132] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 105.537002][ T6132] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 105.551753][ T6132] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=2c019, mo2=0002] [ 105.571932][ T30] audit: type=1326 audit(1763656878.689:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.2.68" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 105.597118][ T30] audit: type=1326 audit(1763656878.689:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.2.68" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 105.619412][ T30] audit: type=1326 audit(1763656878.709:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.2.68" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 105.643547][ T6132] EXT4-fs (loop2): 1 truncate cleaned up [ 105.651277][ T6132] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 105.666476][ T30] audit: type=1326 audit(1763656878.709:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.2.68" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 105.688861][ T30] audit: type=1326 audit(1763656878.709:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.2.68" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 105.732828][ T6138] netlink: 16 bytes leftover after parsing attributes in process `syz.3.70'. [ 105.766691][ T30] audit: type=1326 audit(1763656878.709:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.2.68" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 105.886701][ T30] audit: type=1326 audit(1763656878.709:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.2.68" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 105.935210][ T6140] loop0: detected capacity change from 0 to 1024 [ 105.975839][ T6140] ======================================================= [ 105.975839][ T6140] WARNING: The mand mount option has been deprecated and [ 105.975839][ T6140] and is ignored by this kernel. Remove the mand [ 105.975839][ T6140] option from the mount to silence this warning. [ 105.975839][ T6140] ======================================================= [ 106.035226][ T5835] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 106.082135][ T6140] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 106.161606][ T6140] syz.0.71 uses obsolete (PF_INET,SOCK_PACKET) [ 106.187711][ T6140] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4193: comm syz.0.71: Allocating blocks 385-513 which overlap fs metadata [ 106.230274][ T6139] EXT4-fs (loop0): pa ffff888069de13a0: logic 16, phys. 129, len 24 [ 106.239109][ T6139] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 8 [ 106.271415][ T6148] loop2: detected capacity change from 0 to 128 [ 106.315237][ T6148] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 106.328929][ T6148] ext4 filesystem being mounted at /15/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 106.491029][ T5828] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 106.527581][ T5835] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 106.849307][ T6163] netlink: 'syz.2.80': attribute type 10 has an invalid length. [ 106.876906][ T6163] netlink: 40 bytes leftover after parsing attributes in process `syz.2.80'. [ 106.912154][ T6163] batman_adv: batadv0: Adding interface: virt_wifi0 [ 106.919532][ T6163] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 106.966397][ T6167] netlink: 4 bytes leftover after parsing attributes in process `syz.2.80'. [ 106.975819][ T6163] batman_adv: batadv0: Interface activated: virt_wifi0 [ 106.997433][ T6166] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 107.409524][ T6181] netlink: 660 bytes leftover after parsing attributes in process `syz.3.87'. [ 107.754004][ T6193] Zero length message leads to an empty skb [ 108.285402][ T6205] netlink: 720 bytes leftover after parsing attributes in process `syz.3.101'. [ 108.643212][ T6210] loop3: detected capacity change from 0 to 512 [ 108.717309][ T6210] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 108.778722][ T6210] ext4 filesystem being mounted at /33/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 108.863483][ T5841] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.398130][ T6236] netlink: 48 bytes leftover after parsing attributes in process `syz.2.115'. [ 109.429430][ T6236] netlink: 48 bytes leftover after parsing attributes in process `syz.2.115'. [ 109.887318][ T6257] loop2: detected capacity change from 0 to 128 [ 109.964747][ T6259] netlink: 40 bytes leftover after parsing attributes in process `syz.3.125'. [ 109.999275][ T6259] netlink: 40 bytes leftover after parsing attributes in process `syz.3.125'. [ 110.234457][ T6268] netlink: 48 bytes leftover after parsing attributes in process `syz.1.129'. [ 110.243916][ T6268] netlink: 48 bytes leftover after parsing attributes in process `syz.1.129'. [ 110.361239][ T6271] netlink: 224 bytes leftover after parsing attributes in process `syz.3.131'. [ 110.381138][ T6271] ksmbd: Unknown IPC event: 3, ignore. [ 110.422980][ T6262] syz.2.123: attempt to access beyond end of device [ 110.422980][ T6262] loop2: rw=2049, sector=128, nr_sectors = 1 limit=128 [ 110.465829][ T6262] Buffer I/O error on dev loop2, logical block 128, lost async page write [ 110.481172][ T6257] syz.2.123: attempt to access beyond end of device [ 110.481172][ T6257] loop2: rw=2049, sector=128, nr_sectors = 1 limit=128 [ 110.494726][ T6257] Buffer I/O error on dev loop2, logical block 128, lost async page write [ 110.504405][ T6257] syz.2.123: attempt to access beyond end of device [ 110.504405][ T6257] loop2: rw=2049, sector=128, nr_sectors = 1 limit=128 [ 110.518119][ T6257] Buffer I/O error on dev loop2, logical block 128, lost async page write [ 110.768167][ T6285] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 111.165850][ T6294] netlink: 4 bytes leftover after parsing attributes in process `syz.1.140'. [ 111.452030][ T6305] loop1: detected capacity change from 0 to 1024 [ 111.590917][ T6305] __quota_error: 49 callbacks suppressed [ 111.590952][ T6305] Quota error (device loop1): do_check_range: Getting block 64 out of range 1-5 [ 111.637889][ T6305] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0 [ 111.657812][ T6305] EXT4-fs error (device loop1): ext4_acquire_dquot:6948: comm syz.1.145: Failed to acquire dquot type 0 [ 111.724541][ T6305] EXT4-fs error (device loop1): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 111.741311][ T30] audit: type=1326 audit(1763656885.069:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6309 comm="syz.2.147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 111.788372][ T6305] EXT4-fs error (device loop1): ext4_do_update_inode:5635: inode #13: comm syz.1.145: corrupted inode contents [ 111.813796][ T30] audit: type=1326 audit(1763656885.089:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6309 comm="syz.2.147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 111.875319][ T6305] EXT4-fs error (device loop1): ext4_dirty_inode:6520: inode #13: comm syz.1.145: mark_inode_dirty error [ 111.894815][ T30] audit: type=1326 audit(1763656885.099:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6309 comm="syz.2.147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 111.948167][ T6305] EXT4-fs error (device loop1): ext4_do_update_inode:5635: inode #13: comm syz.1.145: corrupted inode contents [ 111.952304][ T30] audit: type=1326 audit(1763656885.099:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6309 comm="syz.2.147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 112.011531][ T6305] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #13: comm syz.1.145: mark_inode_dirty error [ 112.044308][ T6305] EXT4-fs error (device loop1): ext4_do_update_inode:5635: inode #13: comm syz.1.145: corrupted inode contents [ 112.054307][ T30] audit: type=1326 audit(1763656885.099:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6309 comm="syz.2.147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 112.084967][ T6305] EXT4-fs error (device loop1) in ext4_orphan_del:301: Corrupt filesystem [ 112.111063][ T6305] EXT4-fs error (device loop1): ext4_do_update_inode:5635: inode #13: comm syz.1.145: corrupted inode contents [ 112.136351][ T30] audit: type=1326 audit(1763656885.099:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6309 comm="syz.2.147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=59 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 112.161060][ T6305] EXT4-fs error (device loop1): ext4_truncate:4641: inode #13: comm syz.1.145: mark_inode_dirty error [ 112.202465][ T6305] EXT4-fs error (device loop1) in ext4_process_orphan:343: Corrupt filesystem [ 112.264512][ T6305] EXT4-fs (loop1): 1 truncate cleaned up [ 112.270248][ T30] audit: type=1326 audit(1763656885.099:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6309 comm="syz.2.147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 112.270299][ T30] audit: type=1326 audit(1763656885.099:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6309 comm="syz.2.147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 112.378212][ T6319] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 112.395557][ T6305] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 112.492976][ T6319] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 112.528043][ T6305] EXT4-fs error (device loop1): ext4_acquire_dquot:6948: comm syz.1.145: Failed to acquire dquot type 0 [ 112.681785][ T5847] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 114.672062][ T6368] __nla_validate_parse: 2 callbacks suppressed [ 114.672082][ T6368] netlink: 40 bytes leftover after parsing attributes in process `syz.3.171'. [ 114.702143][ T6370] netlink: 12 bytes leftover after parsing attributes in process `syz.1.172'. [ 114.711173][ T6368] netlink: 40 bytes leftover after parsing attributes in process `syz.3.171'. [ 114.747270][ T5882] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 114.896739][ T5882] usb 3-1: device descriptor read/64, error -71 [ 116.257015][ T5882] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 116.796846][ T5882] usb 3-1: device descriptor read/64, error -71 [ 116.960405][ T5882] usb usb3-port1: attempt power cycle [ 117.376714][ T5882] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 117.634504][ T5882] usb 3-1: device not accepting address 4, error -71 [ 117.825589][ T6395] netlink: 224 bytes leftover after parsing attributes in process `syz.1.180'. [ 118.213546][ T6395] ksmbd: Unknown IPC event: 4, ignore. [ 118.632233][ T6407] netlink: 40 bytes leftover after parsing attributes in process `syz.3.184'. [ 118.668661][ T6407] netlink: 40 bytes leftover after parsing attributes in process `syz.3.184'. [ 119.377109][ T0] NOHZ tick-stop error: local softirq work is pending, handler #01!!! [ 119.386433][ T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!! [ 119.503496][ T6412] process 'syz.4.185' launched './file0' with NULL argv: empty string added [ 119.678326][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 119.687140][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 119.696884][ T0] NOHZ tick-stop error: local softirq work is pending, handler #2c0!!! [ 119.705193][ T0] NOHZ tick-stop error: local softirq work is pending, handler #2c0!!! [ 119.714828][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 119.723596][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 119.732294][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 119.741251][ T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!! [ 119.822990][ T30] kauditd_printk_skb: 15 callbacks suppressed [ 119.823008][ T30] audit: type=1326 audit(1763656893.149:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6419 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 119.934094][ T30] audit: type=1326 audit(1763656893.179:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6419 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=461 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 120.036732][ T30] audit: type=1326 audit(1763656893.179:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6419 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 120.146881][ T6432] capability: warning: `syz.1.193' uses deprecated v2 capabilities in a way that may be insecure [ 120.190548][ T30] audit: type=1326 audit(1763656893.179:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6419 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 120.255552][ T30] audit: type=1326 audit(1763656893.199:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6419 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 120.383572][ T30] audit: type=1326 audit(1763656893.219:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6419 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 120.485966][ T30] audit: type=1326 audit(1763656893.219:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6419 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 120.570035][ T30] audit: type=1326 audit(1763656893.219:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6419 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 120.656802][ T30] audit: type=1326 audit(1763656893.219:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6419 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 120.707027][ T30] audit: type=1326 audit(1763656893.219:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6419 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 120.885660][ T6456] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 120.918633][ T6456] netlink: 14 bytes leftover after parsing attributes in process `syz.4.202'. [ 120.958102][ T6456] hsr_slave_0: left promiscuous mode [ 120.964939][ T6456] hsr_slave_1: left promiscuous mode [ 120.971182][ T6459] 9p: Invalid gid '0x00000000ffffffff' [ 121.126053][ T6458] loop1: detected capacity change from 0 to 512 [ 121.209152][ T6458] EXT4-fs warning (device loop1): ext4_enable_quotas:7183: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 121.296175][ T6469] netlink: 16186 bytes leftover after parsing attributes in process `syz.4.205'. [ 121.300359][ T6458] EXT4-fs (loop1): mount failed [ 121.480302][ T6458] syz.1.203 (6458) used greatest stack depth: 17832 bytes left [ 121.664124][ T6477] netlink: 4 bytes leftover after parsing attributes in process `syz.4.208'. [ 121.687826][ T6477] netlink: 8 bytes leftover after parsing attributes in process `syz.4.208'. [ 121.978424][ T6489] loop4: detected capacity change from 0 to 128 [ 122.238452][ T6489] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 122.258841][ T6489] ext4 filesystem being mounted at /43/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 123.690947][ T6506] loop3: detected capacity change from 0 to 512 [ 123.743318][ T6506] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.219: inode has both inline data and extents flags [ 123.782831][ T6506] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.219: couldn't read orphan inode 15 (err -117) [ 123.830165][ T6506] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 123.855512][ T6506] syz_tun: entered allmulticast mode [ 123.867622][ T6505] syz_tun: left allmulticast mode [ 124.011597][ T5830] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 124.023561][ T5841] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 124.296864][ T5831] Bluetooth: hci5: command 0x1003 tx timeout [ 124.305502][ T5838] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 124.432732][ T6512] loop4: detected capacity change from 0 to 128 [ 124.532928][ T6512] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 124.566479][ T6512] ext4 filesystem being mounted at /44/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 124.667692][ T5830] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 124.997017][ T6534] xt_CT: You must specify a L4 protocol and not use inversions on it [ 125.179953][ T6545] loop4: detected capacity change from 0 to 128 [ 125.256134][ T6545] FAT-fs (loop4): Directory bread(block 32) failed [ 125.271608][ T6545] FAT-fs (loop4): Directory bread(block 33) failed [ 125.282638][ T6545] FAT-fs (loop4): Directory bread(block 34) failed [ 125.292745][ T6545] FAT-fs (loop4): Directory bread(block 35) failed [ 125.303089][ T6545] FAT-fs (loop4): Directory bread(block 36) failed [ 125.314543][ T6545] FAT-fs (loop4): Directory bread(block 37) failed [ 125.332964][ T6545] FAT-fs (loop4): Directory bread(block 38) failed [ 125.353182][ T6545] FAT-fs (loop4): Directory bread(block 39) failed [ 125.362544][ T6545] FAT-fs (loop4): Directory bread(block 40) failed [ 125.372887][ T6545] FAT-fs (loop4): Directory bread(block 41) failed [ 125.478302][ T6545] syz.4.234: attempt to access beyond end of device [ 125.478302][ T6545] loop4: rw=524288, sector=4108, nr_sectors = 4 limit=128 [ 125.497504][ T6545] syz.4.234: attempt to access beyond end of device [ 125.497504][ T6545] loop4: rw=0, sector=4108, nr_sectors = 4 limit=128 [ 125.512042][ T30] kauditd_printk_skb: 38 callbacks suppressed [ 125.512058][ T30] audit: type=1800 audit(1763656898.839:410): pid=6545 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.234" name="file1" dev="loop4" ino=1048606 res=0 errno=0 [ 125.585403][ T6552] $H: renamed from bond0 (while UP) [ 125.604643][ T6552] $H: entered promiscuous mode [ 125.610405][ T6552] bond_slave_0: entered promiscuous mode [ 125.616374][ T6552] bond_slave_1: entered promiscuous mode [ 126.040800][ T6567] loop1: detected capacity change from 0 to 128 [ 126.116135][ T6567] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 126.143736][ T6567] ext4 filesystem being mounted at /39/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 126.743731][ T6577] loop3: detected capacity change from 0 to 2048 [ 127.142195][ T6577] EXT4-fs: Ignoring removed mblk_io_submit option [ 127.256775][ T5831] Bluetooth: hci5: command 0x1003 tx timeout [ 127.263774][ T5838] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 127.283455][ T6577] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 127.320781][ T5847] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 127.352328][ T6577] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.248: bg 0: block 234: padding at end of block bitmap is not set [ 127.411988][ T6577] EXT4-fs (loop3): Remounting filesystem read-only [ 127.585768][ T5841] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 127.774543][ T6595] netlink: 4 bytes leftover after parsing attributes in process `syz.3.254'. [ 127.944934][ T6595] netlink: 4 bytes leftover after parsing attributes in process `syz.3.254'. [ 128.301348][ T6607] loop4: detected capacity change from 0 to 8192 [ 128.309985][ T6616] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.260'. [ 129.634956][ T6663] serio: Serial port ttyS3 [ 129.957188][ T6674] netlink: 16186 bytes leftover after parsing attributes in process `syz.1.272'. [ 132.956762][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.965792][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.327668][ T6731] netlink: 4 bytes leftover after parsing attributes in process `syz.2.288'. [ 134.317260][ T6746] hub 8-0:1.0: USB hub found [ 134.331981][ T6746] hub 8-0:1.0: 1 port detected [ 137.073878][ T30] audit: type=1326 audit(1763656910.389:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6774 comm="syz.1.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 137.146701][ T30] audit: type=1326 audit(1763656910.389:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6774 comm="syz.1.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 137.226711][ T30] audit: type=1326 audit(1763656910.389:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6774 comm="syz.1.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 137.278750][ T30] audit: type=1326 audit(1763656910.389:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6774 comm="syz.1.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 137.352360][ T30] audit: type=1326 audit(1763656910.389:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6774 comm="syz.1.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 137.422263][ T30] audit: type=1326 audit(1763656910.389:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6774 comm="syz.1.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=50 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 137.498419][ T30] audit: type=1326 audit(1763656910.389:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6774 comm="syz.1.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 137.628284][ T30] audit: type=1326 audit(1763656910.389:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6774 comm="syz.1.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 137.682962][ T30] audit: type=1326 audit(1763656910.389:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6774 comm="syz.1.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 137.743376][ T30] audit: type=1326 audit(1763656910.399:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6774 comm="syz.1.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 137.849200][ T6785] netlink: 'syz.2.307': attribute type 10 has an invalid length. [ 137.870522][ T6785] syz_tun: entered promiscuous mode [ 137.950179][ T6785] bond0: (slave syz_tun): Enslaving as an active interface with an up link [ 138.288754][ T6787] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 139.037558][ T6806] netlink: 8 bytes leftover after parsing attributes in process `syz.1.315'. [ 141.763409][ T6862] netlink: 16 bytes leftover after parsing attributes in process `syz.3.338'. [ 142.892571][ T30] kauditd_printk_skb: 22 callbacks suppressed [ 142.892589][ T30] audit: type=1326 audit(1763656916.219:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6871 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 143.026957][ T30] audit: type=1326 audit(1763656916.249:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6871 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=441 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 143.088277][ T30] audit: type=1326 audit(1763656916.249:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6871 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 143.178643][ T30] audit: type=1326 audit(1763656916.249:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6871 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 143.262716][ T30] audit: type=1326 audit(1763656916.249:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6871 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 143.367054][ T30] audit: type=1326 audit(1763656916.259:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6871 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 143.418086][ T30] audit: type=1326 audit(1763656916.269:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6871 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 143.471487][ T30] audit: type=1326 audit(1763656916.269:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6871 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 143.556756][ T30] audit: type=1326 audit(1763656916.269:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6871 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 143.606242][ T43] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 143.628045][ T30] audit: type=1326 audit(1763656916.269:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6871 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 143.669158][ T43] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz1] on syz0 [ 143.952230][ T6888] fido_id[6888]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 145.490831][ T6922] netlink: 248 bytes leftover after parsing attributes in process `syz.3.362'. [ 145.811598][ T6935] netlink: 224 bytes leftover after parsing attributes in process `syz.3.367'. [ 145.822523][ T6935] ksmbd: Unknown IPC event: 4, ignore. [ 146.263590][ T6951] xt_hashlimit: max too large, truncated to 1048576 [ 146.313003][ T6955] Driver unsupported XDP return value 0 on prog (id 171) dev N/A, expect packet loss! [ 146.428024][ T6957] syzkaller1: entered promiscuous mode [ 146.460479][ T6957] syzkaller1: entered allmulticast mode [ 146.810311][ T6970] netlink: 'syz.1.382': attribute type 10 has an invalid length. [ 146.872239][ T6982] netlink: 'syz.1.382': attribute type 10 has an invalid length. [ 146.919421][ T6970] team0: Failed to send options change via netlink (err -105) [ 146.935122][ T6985] loop3: detected capacity change from 0 to 1024 [ 146.958167][ T6970] team0: Port device dummy0 added [ 146.970513][ T5924] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 146.988007][ T6982] team0: Failed to send port change of device dummy0 via netlink (err -105) [ 147.009017][ T5924] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz1] on syz0 [ 147.060429][ T6982] team0: Failed to send options change via netlink (err -105) [ 147.090162][ T6982] team0: Failed to send port change of device dummy0 via netlink (err -105) [ 147.120923][ T6982] team0: Port device dummy0 removed [ 147.242521][ T6988] fido_id[6988]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 147.413092][ T6999] loop4: detected capacity change from 0 to 512 [ 147.449722][ T6999] EXT4-fs: Invalid want_extra_isize 93 [ 148.501060][ T7010] netlink: 48 bytes leftover after parsing attributes in process `syz.2.398'. [ 148.924922][ T7028] loop4: detected capacity change from 0 to 8192 [ 148.955354][ T7037] netlink: 4 bytes leftover after parsing attributes in process `syz.3.407'. [ 148.990318][ T7037] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 149.213330][ T7037] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 149.674864][ T7058] netlink: 4 bytes leftover after parsing attributes in process `syz.3.416'. [ 150.077397][ T10] IPVS: starting estimator thread 0... [ 150.196842][ T7067] IPVS: using max 23 ests per chain, 55200 per kthread [ 150.346175][ T30] kauditd_printk_skb: 27 callbacks suppressed [ 150.346192][ T30] audit: type=1326 audit(1763656923.669:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7074 comm="syz.3.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 150.483744][ T30] audit: type=1326 audit(1763656923.709:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7074 comm="syz.3.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 150.544277][ T30] audit: type=1326 audit(1763656923.709:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7074 comm="syz.3.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 150.572089][ T30] audit: type=1326 audit(1763656923.709:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7074 comm="syz.3.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=428 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 150.595285][ T30] audit: type=1326 audit(1763656923.709:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7074 comm="syz.3.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 150.653919][ T30] audit: type=1326 audit(1763656923.709:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7074 comm="syz.3.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 150.678956][ T30] audit: type=1326 audit(1763656923.709:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7074 comm="syz.3.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 150.717038][ T30] audit: type=1326 audit(1763656923.709:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7074 comm="syz.3.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 150.766512][ T30] audit: type=1326 audit(1763656923.709:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7074 comm="syz.3.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 150.795142][ T30] audit: type=1326 audit(1763656923.709:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7074 comm="syz.3.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 153.600963][ T7125] netlink: 16186 bytes leftover after parsing attributes in process `syz.1.444'. [ 153.856428][ T7128] bridge_slave_0: left allmulticast mode [ 153.876973][ T7128] bridge_slave_0: left promiscuous mode [ 153.882951][ T7128] bridge0: port 1(bridge_slave_0) entered disabled state [ 153.953678][ T7128] bridge_slave_1: left allmulticast mode [ 153.971335][ T7128] bridge_slave_1: left promiscuous mode [ 154.001597][ T7128] bridge0: port 2(bridge_slave_1) entered disabled state [ 154.059814][ T7128] bond0: (slave bond_slave_0): Releasing backup interface [ 154.105692][ T7128] bond0: (slave bond_slave_1): Releasing backup interface [ 154.144762][ T7128] team0: Port device team_slave_0 removed [ 154.175873][ T7128] team0: Port device team_slave_1 removed [ 154.194076][ T7128] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 154.213807][ T7128] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 154.252992][ T7128] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 154.266231][ T7128] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 154.289689][ T7128] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 154.381341][ T7131] team0: Mode changed to "loadbalance" [ 154.551897][ T7139] loop3: detected capacity change from 0 to 1024 [ 154.628776][ T7139] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 154.800008][ T7139] GUP no longer grows the stack in syz.3.450 (7139): 200000004000-200000005000 (200000001000) [ 154.841817][ T7139] CPU: 0 UID: 0 PID: 7139 Comm: syz.3.450 Not tainted syzkaller #0 PREEMPT(full) [ 154.841846][ T7139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 154.841870][ T7139] Call Trace: [ 154.841879][ T7139] [ 154.841889][ T7139] dump_stack_lvl+0x189/0x250 [ 154.841937][ T7139] ? __pfx_dump_stack_lvl+0x10/0x10 [ 154.841968][ T7139] ? __pfx__printk+0x10/0x10 [ 154.841988][ T7139] ? find_vma+0xe7/0x160 [ 154.842027][ T7139] __get_user_pages+0x2465/0x29f0 [ 154.842087][ T7139] ? down_read_killable+0x1bd/0x350 [ 154.842118][ T7139] __gup_longterm_locked+0xde4/0x1660 [ 154.842153][ T7139] ? sanity_check_pinned_pages+0x123a/0x1300 [ 154.842195][ T7139] gup_fast_fallback+0x1d6b/0x22d0 [ 154.842252][ T7139] ? __pfx_gup_fast_fallback+0x10/0x10 [ 154.842268][ T7139] ? __iomap_dio_rw+0xec2/0x1dc0 [ 154.842298][ T7139] ? ext4_file_write_iter+0x169c/0x1bc0 [ 154.842325][ T7139] ? do_iter_readv_writev+0x623/0x8c0 [ 154.842348][ T7139] ? vfs_writev+0x31a/0x960 [ 154.842388][ T7139] ? pin_user_pages_fast+0x4d/0xb0 [ 154.842410][ T7139] iov_iter_extract_pages+0x35f/0x5e0 [ 154.842441][ T7139] bio_iov_iter_get_pages+0x499/0x1490 [ 154.842486][ T7139] ? bio_associate_blkg+0x6d/0x230 [ 154.842521][ T7139] ? bio_associate_blkg+0x6d/0x230 [ 154.842545][ T7139] ? __pfx_bio_iov_iter_get_pages+0x10/0x10 [ 154.842581][ T7139] ? bio_alloc_bioset+0x636/0x12a0 [ 154.842618][ T7139] iomap_dio_bio_iter+0xcdc/0x14c0 [ 154.842687][ T7139] __iomap_dio_rw+0xec2/0x1dc0 [ 154.842746][ T7139] ? __pfx___iomap_dio_rw+0x10/0x10 [ 154.842800][ T7139] ? do_raw_spin_lock+0x121/0x290 [ 154.842840][ T7139] ? do_raw_spin_unlock+0x122/0x240 [ 154.842875][ T7139] iomap_dio_rw+0x45/0xb0 [ 154.842909][ T7139] ext4_file_write_iter+0x169c/0x1bc0 [ 154.842939][ T7139] ? aa_file_perm+0x139/0x1540 [ 154.842988][ T7139] ? __pfx_ext4_file_write_iter+0x10/0x10 [ 154.843034][ T7139] do_iter_readv_writev+0x623/0x8c0 [ 154.843067][ T7139] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 154.843089][ T7139] ? rcu_read_lock_any_held+0xb3/0x120 [ 154.843129][ T7139] vfs_writev+0x31a/0x960 [ 154.843162][ T7139] ? __lock_acquire+0xab9/0xd20 [ 154.843191][ T7139] ? __pfx_vfs_writev+0x10/0x10 [ 154.843237][ T7139] ? __fget_files+0x2a/0x420 [ 154.843270][ T7139] ? __fget_files+0x3a0/0x420 [ 154.843297][ T7139] ? __fget_files+0x2a/0x420 [ 154.843335][ T7139] __se_sys_pwritev2+0x179/0x290 [ 154.843365][ T7139] ? __pfx___se_sys_pwritev2+0x10/0x10 [ 154.843396][ T7139] ? do_syscall_64+0xbe/0xfa0 [ 154.843414][ T7139] ? __x64_sys_pwritev2+0x20/0xc0 [ 154.843442][ T7139] do_syscall_64+0xfa/0xfa0 [ 154.843464][ T7139] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 154.843484][ T7139] ? clear_bhb_loop+0x60/0xb0 [ 154.843508][ T7139] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 154.843528][ T7139] RIP: 0033:0x7f031778f749 [ 154.843551][ T7139] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 154.843568][ T7139] RSP: 002b:00007f03186c8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148 [ 154.843614][ T7139] RAX: ffffffffffffffda RBX: 00007f03179e5fa0 RCX: 00007f031778f749 [ 154.843630][ T7139] RDX: 0000000000000014 RSI: 0000200000000240 RDI: 0000000000000005 [ 154.843643][ T7139] RBP: 00007f0317813f91 R08: 0000000000000000 R09: 0000000000000003 [ 154.843656][ T7139] R10: 0000000000007800 R11: 0000000000000246 R12: 0000000000000000 [ 154.843669][ T7139] R13: 00007f03179e6038 R14: 00007f03179e5fa0 R15: 00007ffcb48e0298 [ 154.843706][ T7139] [ 155.445930][ T5841] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 155.750477][ T7162] bridge0: entered promiscuous mode [ 155.768767][ T7162] bridge0: port 3(macvtap1) entered blocking state [ 155.775587][ T7162] bridge0: port 3(macvtap1) entered disabled state [ 155.785005][ T7162] macvtap1: entered allmulticast mode [ 155.805635][ T7162] bridge0: entered allmulticast mode [ 155.825821][ T7162] macvtap1: left allmulticast mode [ 155.833190][ T7162] bridge0: left allmulticast mode [ 155.844729][ T7162] bridge0: left promiscuous mode [ 155.897268][ T5831] Bluetooth: hci5: command 0x1003 tx timeout [ 155.903799][ T5838] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 156.635924][ T30] kauditd_printk_skb: 247 callbacks suppressed [ 156.635943][ T30] audit: type=1326 audit(1763656929.959:737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7195 comm="syz.3.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 156.715362][ T30] audit: type=1326 audit(1763656929.959:738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7195 comm="syz.3.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 156.771116][ T30] audit: type=1326 audit(1763656929.969:739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7195 comm="syz.3.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 156.795551][ T30] audit: type=1326 audit(1763656929.969:740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7195 comm="syz.3.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 156.873989][ T30] audit: type=1326 audit(1763656929.969:741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7195 comm="syz.3.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 156.903354][ T30] audit: type=1326 audit(1763656929.979:742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7195 comm="syz.3.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 156.925953][ T30] audit: type=1326 audit(1763656929.979:743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7195 comm="syz.3.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 156.985892][ T7205] netlink: 40 bytes leftover after parsing attributes in process `syz.3.477'. [ 157.017340][ T30] audit: type=1326 audit(1763656929.979:744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7195 comm="syz.3.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 157.143583][ T30] audit: type=1326 audit(1763656929.989:745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7195 comm="syz.3.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 157.212851][ T30] audit: type=1326 audit(1763656929.989:746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7195 comm="syz.3.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 158.078981][ T7235] netlink: 40 bytes leftover after parsing attributes in process `syz.4.491'. [ 158.202643][ T7240] loop9: detected capacity change from 0 to 7 [ 158.367337][ T7241] Invalid logical block size (1) [ 159.002758][ T7244] loop4: detected capacity change from 0 to 512 [ 159.489042][ T7240] Dev loop9: unable to read RDB block 7 [ 159.519987][ T7240] loop9: unable to read partition table [ 159.536228][ T7240] loop9: partition table beyond EOD, truncated [ 159.576745][ T7240] loop_reread_partitions: partition scan of loop9 () failed (rc=-5) [ 160.036674][ T5914] usb 1-1: new full-speed USB device number 2 using dummy_hcd [ 160.196675][ T5914] usb 1-1: device descriptor read/64, error -71 [ 160.412016][ T7288] netlink: 24 bytes leftover after parsing attributes in process `syz.1.512'. [ 160.478046][ T5914] usb 1-1: new full-speed USB device number 3 using dummy_hcd [ 160.535003][ T7290] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 160.636878][ T5914] usb 1-1: device descriptor read/64, error -71 [ 160.755172][ T5914] usb usb1-port1: attempt power cycle [ 160.940514][ T7290] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 161.107606][ T7290] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 161.136774][ T5914] usb 1-1: new full-speed USB device number 4 using dummy_hcd [ 161.161343][ T5914] usb 1-1: device descriptor read/8, error -71 [ 161.250267][ T7290] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 161.439443][ T5914] usb 1-1: new full-speed USB device number 5 using dummy_hcd [ 161.477561][ T5914] usb 1-1: device descriptor read/8, error -71 [ 161.512651][ T3438] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 161.561497][ T6386] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 161.602889][ T5914] usb usb1-port1: unable to enumerate USB device [ 161.649626][ T7322] loop1: detected capacity change from 0 to 128 [ 161.656496][ T6386] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 161.697733][ T7322] FAT-fs (loop1): Directory bread(block 32) failed [ 161.704330][ T7322] FAT-fs (loop1): Directory bread(block 33) failed [ 161.716569][ T6386] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 161.725112][ T7322] FAT-fs (loop1): Directory bread(block 34) failed [ 161.732520][ T7322] FAT-fs (loop1): Directory bread(block 35) failed [ 161.742581][ T7322] FAT-fs (loop1): Directory bread(block 36) failed [ 161.750101][ T7322] FAT-fs (loop1): Directory bread(block 37) failed [ 161.776335][ T7322] FAT-fs (loop1): Directory bread(block 38) failed [ 161.791133][ T7322] FAT-fs (loop1): Directory bread(block 39) failed [ 161.798156][ T7322] FAT-fs (loop1): Directory bread(block 40) failed [ 161.804771][ T7322] FAT-fs (loop1): Directory bread(block 41) failed [ 162.151791][ T7331] netlink: 40 bytes leftover after parsing attributes in process `syz.3.530'. [ 162.161493][ T7331] netlink: 40 bytes leftover after parsing attributes in process `syz.3.530'. [ 162.300937][ T7322] syz.1.525: attempt to access beyond end of device [ 162.300937][ T7322] loop1: rw=0, sector=4108, nr_sectors = 4 limit=128 [ 162.333123][ T7322] FAT-fs (loop1): Filesystem has been set read-only [ 162.358030][ T7322] FAT-fs (loop1): error, fat_free_clusters: deleting FAT entry beyond EOF [ 162.625436][ T7341] netlink: 156 bytes leftover after parsing attributes in process `syz.4.535'. [ 163.296070][ T7350] netlink: 16186 bytes leftover after parsing attributes in process `syz.1.537'. [ 163.888410][ T7358] ip6t_srh: unknown srh invflags 4000 [ 164.360404][ T7382] netlink: 4 bytes leftover after parsing attributes in process `syz.2.547'. [ 164.455222][ T30] kauditd_printk_skb: 79 callbacks suppressed [ 164.455239][ T30] audit: type=1326 audit(1763656937.779:826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7383 comm="syz.1.549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 164.536912][ T30] audit: type=1326 audit(1763656937.819:827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7383 comm="syz.1.549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 164.610655][ T30] audit: type=1326 audit(1763656937.819:828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7383 comm="syz.1.549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 164.672161][ T30] audit: type=1326 audit(1763656937.819:829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7383 comm="syz.1.549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 164.748210][ T30] audit: type=1326 audit(1763656937.819:830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7383 comm="syz.1.549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 164.826690][ T30] audit: type=1326 audit(1763656937.819:831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7383 comm="syz.1.549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=149 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 164.916685][ T30] audit: type=1326 audit(1763656938.049:832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7383 comm="syz.1.549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 164.967145][ T7389] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.551'. [ 165.042636][ T30] audit: type=1326 audit(1763656938.049:833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7383 comm="syz.1.549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 167.317033][ T7426] netlink: 16186 bytes leftover after parsing attributes in process `syz.1.564'. [ 167.760236][ T30] audit: type=1326 audit(1763656941.089:834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7443 comm="syz.3.573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 167.796904][ T7441] netlink: 126588 bytes leftover after parsing attributes in process `syz.1.570'. [ 167.810708][ T30] audit: type=1326 audit(1763656941.109:835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7443 comm="syz.3.573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 169.763848][ T7479] netlink: 224 bytes leftover after parsing attributes in process `syz.3.584'. [ 169.774990][ T7479] ksmbd: Unknown IPC event: 4, ignore. [ 169.872500][ T7486] netlink: 48 bytes leftover after parsing attributes in process `syz.2.587'. [ 169.894471][ T7486] netlink: 48 bytes leftover after parsing attributes in process `syz.2.587'. [ 170.838367][ T7528] netlink: 224 bytes leftover after parsing attributes in process `syz.0.603'. [ 170.887986][ T7528] ksmbd: Unknown IPC event: 4, ignore. [ 171.395824][ T7533] syz_tun: entered allmulticast mode [ 171.418001][ T7530] syz_tun: left allmulticast mode [ 172.197796][ T7561] netlink: 'syz.4.618': attribute type 1 has an invalid length. [ 172.251818][ T7574] netlink: 4 bytes leftover after parsing attributes in process `syz.4.618'. [ 172.308837][ T7561] 8021q: adding VLAN 0 to HW filter on device bond1 [ 172.726647][ T30] kauditd_printk_skb: 9 callbacks suppressed [ 172.726666][ T30] audit: type=1326 audit(1763656945.979:845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7596 comm="syz.3.633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 172.841742][ T30] audit: type=1326 audit(1763656945.979:846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7596 comm="syz.3.633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 172.865855][ T30] audit: type=1326 audit(1763656945.989:847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7596 comm="syz.3.633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 172.892422][ T30] audit: type=1326 audit(1763656945.989:848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7596 comm="syz.3.633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 173.177929][ T30] audit: type=1326 audit(1763656945.989:849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7596 comm="syz.3.633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 173.456323][ T30] audit: type=1326 audit(1763656945.989:850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7596 comm="syz.3.633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 173.496112][ T30] audit: type=1326 audit(1763656945.989:851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7596 comm="syz.3.633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 173.519430][ T30] audit: type=1326 audit(1763656945.989:852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7596 comm="syz.3.633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 173.542680][ T30] audit: type=1326 audit(1763656945.989:853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7596 comm="syz.3.633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 173.624899][ T7574] bond1 (unregistering): Released all slaves [ 173.630378][ T30] audit: type=1326 audit(1763656945.989:854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7596 comm="syz.3.633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 173.785184][ T7606] syz_tun: entered allmulticast mode [ 173.820689][ T7606] syz_tun: left allmulticast mode [ 173.940695][ T7617] netlink: 16 bytes leftover after parsing attributes in process `syz.0.641'. [ 175.320673][ T7650] loop4: detected capacity change from 0 to 164 [ 175.876871][ T5995] Bluetooth: hci5: Frame reassembly failed (-84) [ 175.884254][ T5995] Bluetooth: hci5: Frame reassembly failed (-84) [ 175.897772][ T7675] netlink: 20 bytes leftover after parsing attributes in process `syz.3.665'. [ 175.954152][ T7675] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0 [ 176.302257][ T7691] loop0: detected capacity change from 0 to 128 [ 176.449138][ T7698] bond0: (slave syz_tun): Releasing backup interface [ 176.500379][ T7698] bridge_slave_0: left allmulticast mode [ 176.523120][ T7698] bridge_slave_0: left promiscuous mode [ 176.552592][ T7698] bridge0: port 1(bridge_slave_0) entered disabled state [ 176.578992][ T7698] bridge_slave_1: left allmulticast mode [ 176.591471][ T7698] bridge_slave_1: left promiscuous mode [ 176.611041][ T7698] bridge0: port 2(bridge_slave_1) entered disabled state [ 176.715948][ T7698] bond0: (slave bond_slave_0): Releasing backup interface [ 176.734806][ T7698] bond0: (slave bond_slave_1): Releasing backup interface [ 176.801838][ T7698] team0: Port device team_slave_0 removed [ 176.836088][ T7698] team0: Port device team_slave_1 removed [ 176.864369][ T7698] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 176.888367][ T7698] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 176.911982][ T7698] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 176.969309][ T7701] team0: Mode changed to "loadbalance" [ 177.570604][ T7733] netlink: 'syz.1.686': attribute type 21 has an invalid length. [ 177.579214][ T7733] netlink: 132 bytes leftover after parsing attributes in process `syz.1.686'. [ 177.896673][ T5838] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 177.896786][ T5831] Bluetooth: hci5: command 0x1003 tx timeout [ 178.182554][ T7756] netlink: 60 bytes leftover after parsing attributes in process `syz.2.692'. [ 178.201832][ T7756] IPVS: Unknown mcast interface: [ 179.205591][ T7794] netlink: 4 bytes leftover after parsing attributes in process `syz.2.707'. [ 179.293049][ T7795] netlink: 172 bytes leftover after parsing attributes in process `syz.3.708'. [ 179.335667][ T7795] smc: removing ib device syz0 [ 181.703591][ T7844] netlink: 52 bytes leftover after parsing attributes in process `syz.1.728'. [ 182.623540][ T7858] bridge0: entered promiscuous mode [ 183.143116][ T7863] loop0: detected capacity change from 0 to 164 [ 183.166370][ T7863] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 183.185985][ T7863] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 183.203116][ T7863] Symlink component flag not implemented [ 183.209850][ T7863] Symlink component flag not implemented [ 183.215781][ T7863] Symlink component flag not implemented (7) [ 183.230047][ T7863] Symlink component flag not implemented (116) [ 183.512297][ T7878] netlink: 4 bytes leftover after parsing attributes in process `syz.2.738'. [ 184.590084][ T7672] Set syz1 is full, maxelem 65536 reached [ 184.893834][ T7916] netlink: 52 bytes leftover after parsing attributes in process `syz.3.756'. [ 185.425181][ T30] kauditd_printk_skb: 39 callbacks suppressed [ 185.425199][ T30] audit: type=1326 audit(1763656958.749:894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7939 comm="syz.0.765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 185.486387][ T30] audit: type=1326 audit(1763656958.789:895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7939 comm="syz.0.765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 185.540060][ T30] audit: type=1326 audit(1763656958.789:896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7939 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 185.573652][ T30] audit: type=1326 audit(1763656958.789:897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7939 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 185.598060][ T30] audit: type=1326 audit(1763656958.789:898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7939 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 185.620108][ T30] audit: type=1326 audit(1763656958.789:899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7939 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 185.683362][ T30] audit: type=1326 audit(1763656958.789:900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7939 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 185.707455][ T30] audit: type=1326 audit(1763656958.789:901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7939 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 185.729955][ T30] audit: type=1326 audit(1763656958.789:902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7939 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 185.790293][ T30] audit: type=1326 audit(1763656958.789:903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7939 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2994b8f749 code=0x7ffc0000 [ 185.986447][ T7951] capability: warning: `syz.4.769' uses 32-bit capabilities (legacy support in use) [ 186.454490][ T7973] netlink: 64 bytes leftover after parsing attributes in process `syz.3.780'. [ 186.965993][ T7987] syzkaller1: left promiscuous mode [ 186.983065][ T7987] syzkaller1: left allmulticast mode [ 187.958893][ T8001] netlink: 28 bytes leftover after parsing attributes in process `syz.0.792'. [ 188.121000][ T8009] loop1: detected capacity change from 0 to 1024 [ 188.133304][ T8009] EXT4-fs: Ignoring removed orlov option [ 188.254375][ T8009] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 189.898523][ T8048] block device autoloading is deprecated and will be removed. [ 189.917984][ T8046] tap0: tun_chr_ioctl cmd 1074025681 [ 190.859014][ T5847] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 191.035100][ T8089] loop1: detected capacity change from 0 to 8192 [ 191.113028][ T8092] loop9: detected capacity change from 0 to 7 [ 191.711879][ T8092] Dev loop9: unable to read RDB block 7 [ 191.719926][ T8092] loop9: unable to read partition table [ 191.747025][ T8092] loop9: partition table beyond EOD, truncated [ 191.757886][ T8092] loop_reread_partitions: partition scan of loop9 () failed (rc=-5) [ 191.912075][ T8114] netlink: 56 bytes leftover after parsing attributes in process `syz.4.832'. [ 191.950990][ T8114] unsupported nla_type 52263 [ 191.982527][ T8114] loop4: detected capacity change from 0 to 512 [ 192.029733][ T8114] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 192.044806][ T8114] ext4 filesystem being mounted at /130/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 192.083943][ T8114] EXT4-fs error (device loop4): ext4_do_update_inode:5635: inode #2: comm syz.4.832: corrupted inode contents [ 192.102705][ T8114] EXT4-fs error (device loop4): ext4_dirty_inode:6520: inode #2: comm syz.4.832: mark_inode_dirty error [ 192.117466][ T8114] EXT4-fs error (device loop4): ext4_do_update_inode:5635: inode #2: comm syz.4.832: corrupted inode contents [ 192.156225][ T8114] sctp: [Deprecated]: syz.4.832 (pid 8114) Use of struct sctp_assoc_value in delayed_ack socket option. [ 192.156225][ T8114] Use struct sctp_sack_info instead [ 192.156624][ T8120] loop1: detected capacity change from 0 to 128 [ 192.200247][ T8114] EXT4-fs error (device loop4): ext4_do_update_inode:5635: inode #2: comm syz.4.832: corrupted inode contents [ 192.234467][ T8114] EXT4-fs error (device loop4): ext4_dirty_inode:6520: inode #2: comm syz.4.832: mark_inode_dirty error [ 192.267093][ T8114] EXT4-fs error (device loop4): ext4_do_update_inode:5635: inode #2: comm syz.4.832: corrupted inode contents [ 192.283279][ T8124] syz.1.831: attempt to access beyond end of device [ 192.283279][ T8124] loop1: rw=2049, sector=145, nr_sectors = 432 limit=128 [ 192.313486][ T8114] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.832: mark_inode_dirty error [ 192.330884][ T8114] EXT4-fs error (device loop4): ext4_do_update_inode:5635: inode #2: comm syz.4.832: corrupted inode contents [ 192.343385][ T8114] EXT4-fs error (device loop4): ext4_dirty_inode:6520: inode #2: comm syz.4.832: mark_inode_dirty error [ 192.372865][ T8119] syz.1.831: attempt to access beyond end of device [ 192.372865][ T8119] loop1: rw=524288, sector=145, nr_sectors = 432 limit=128 [ 192.379289][ T8123] EXT4-fs error (device loop4): ext4_do_update_inode:5635: inode #2: comm syz.4.832: corrupted inode contents [ 192.415993][ T8128] netlink: 20 bytes leftover after parsing attributes in process `syz.0.835'. [ 192.585620][ T5830] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 192.817454][ T8142] loop9: detected capacity change from 0 to 7 [ 193.104736][ T30] kauditd_printk_skb: 22 callbacks suppressed [ 193.104754][ T30] audit: type=1326 audit(1763656966.429:926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8146 comm="syz.4.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f4438f749 code=0x7ffc0000 [ 193.168835][ T8150] loop0: detected capacity change from 0 to 512 [ 193.176968][ T30] audit: type=1326 audit(1763656966.469:927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8146 comm="syz.4.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=271 compat=0 ip=0x7f4f4438f749 code=0x7ffc0000 [ 193.272604][ T8150] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 193.297129][ T8142] Dev loop9: unable to read RDB block 7 [ 193.302590][ T8150] ext4 filesystem being mounted at /177/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 193.313427][ T8142] loop9: unable to read partition table [ 193.313651][ T8142] loop9: partition table beyond EOD, truncated [ 193.366625][ T8142] loop_reread_partitions: partition scan of loop9 () failed (rc=-5) [ 193.387995][ T5924] Process accounting resumed [ 193.709083][ T5828] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 193.921224][ T8170] netlink: 8 bytes leftover after parsing attributes in process `syz.0.850'. [ 194.154066][ T8178] loop9: detected capacity change from 0 to 7 [ 194.389553][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.522747][ T5844] Dev loop9: unable to read RDB block 7 [ 194.529437][ T5844] loop9: unable to read partition table [ 194.535333][ T5844] loop9: partition table beyond EOD, truncated [ 194.883297][ T8178] Dev loop9: unable to read RDB block 7 [ 194.899126][ T8178] loop9: unable to read partition table [ 194.912917][ T8178] loop9: partition table beyond EOD, truncated [ 194.927778][ T8178] loop_reread_partitions: partition scan of loop9 () failed (rc=-5) [ 195.057217][ T8189] loop1: detected capacity change from 0 to 512 [ 195.133343][ T8204] netlink: 8 bytes leftover after parsing attributes in process `syz.0.866'. [ 195.156947][ T8189] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.860: inode has both inline data and extents flags [ 195.242877][ T8189] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.860: couldn't read orphan inode 15 (err -117) [ 195.328732][ T8189] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 195.381588][ T8189] syz_tun: entered allmulticast mode [ 195.412456][ T30] audit: type=1326 audit(1763656968.739:928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8213 comm="syz.0.869" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2994b8f749 code=0x0 [ 195.568083][ T5847] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 195.786809][ T8232] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 196.726471][ T8234] loop9: detected capacity change from 0 to 7 [ 196.812343][ T8240] loop0: detected capacity change from 0 to 1024 [ 196.819863][ T8240] EXT4-fs: Ignoring removed orlov option [ 196.874250][ T8240] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 197.111766][ T8254] netlink: 40 bytes leftover after parsing attributes in process `syz.2.882'. [ 197.267233][ T8234] Dev loop9: unable to read RDB block 7 [ 197.283351][ T8234] loop9: unable to read partition table [ 197.293443][ T8234] loop9: partition table beyond EOD, truncated [ 197.306652][ T8234] loop_reread_partitions: partition scan of loop9 () failed (rc=-5) [ 197.520882][ T8258] syz_tun: entered allmulticast mode [ 197.651057][ T8269] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 198.226538][ T5828] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 198.632592][ T8283] netlink: 40 bytes leftover after parsing attributes in process `syz.2.895'. [ 198.685875][ T8276] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 198.739287][ T8287] loop4: detected capacity change from 0 to 1024 [ 198.789246][ T8287] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 198.856281][ T8287] ext4 filesystem being mounted at /141/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 198.908006][ T8276] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 199.052834][ T8276] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 199.172131][ T8276] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 199.245855][ T30] audit: type=1326 audit(1763656972.569:929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8292 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 199.273454][ T30] audit: type=1326 audit(1763656972.569:930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8292 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 199.318955][ T30] audit: type=1326 audit(1763656972.599:931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8292 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 199.348788][ T30] audit: type=1326 audit(1763656972.599:932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8292 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 199.375189][ T30] audit: type=1326 audit(1763656972.599:933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8292 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 199.461753][ T50] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 199.483174][ T5830] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 199.502132][ T30] audit: type=1326 audit(1763656972.599:934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8292 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=227 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 199.529587][ T30] audit: type=1326 audit(199.236:935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8292 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 199.558412][ T5995] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 199.569429][ T30] audit: type=1326 audit(199.236:936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8292 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9732f8f749 code=0x7ffc0000 [ 199.660166][ T1135] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 199.722212][ T1135] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 199.924629][ T8312] netlink: 20 bytes leftover after parsing attributes in process `syz.4.902'. [ 200.327822][ T30] audit: type=1326 audit(200.276:937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8313 comm="syz.1.906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 200.512940][ T30] audit: type=1326 audit(200.306:938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8313 comm="syz.1.906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 200.534512][ T8314] loop1: detected capacity change from 0 to 512 [ 200.583008][ T8318] netlink: 40 bytes leftover after parsing attributes in process `syz.2.907'. [ 200.666696][ T8314] EXT4-fs (loop1): 1 orphan inode deleted [ 200.695507][ T1163] EXT4-fs error (device loop1): ext4_release_dquot:6984: comm kworker/u8:8: Failed to release dquot type 1 [ 200.735089][ T8314] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 200.750579][ T8323] netlink: 136 bytes leftover after parsing attributes in process `syz.3.908'. [ 200.786629][ T8323] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check. [ 201.154033][ T5847] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 201.802721][ T50] EXT4-fs error (device loop1): ext4_release_dquot:6984: comm kworker/u8:3: Failed to release dquot type 1 [ 201.847610][ T8343] netlink: 76 bytes leftover after parsing attributes in process `syz.0.915'. [ 202.297724][ T8360] netlink: 20 bytes leftover after parsing attributes in process `syz.0.919'. [ 203.052470][ T8356] 9p: Could not find request transport: f [ 203.299671][ T8371] loop9: detected capacity change from 0 to 7 [ 203.332389][ T8373] loop3: detected capacity change from 0 to 512 [ 203.407801][ T8373] EXT4-fs: Ignoring removed bh option [ 203.473827][ T8373] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 203.658653][ T8389] netlink: 12 bytes leftover after parsing attributes in process `syz.2.925'. [ 203.803543][ T8389] netlink: 20 bytes leftover after parsing attributes in process `syz.2.925'. [ 203.839455][ T8371] Dev loop9: unable to read RDB block 7 [ 203.870520][ T8371] loop9: unable to read partition table [ 203.882857][ T8371] loop9: partition table beyond EOD, truncated [ 203.921996][ T8371] loop_reread_partitions: partition scan of loop9 () failed (rc=-5) [ 204.079556][ T5841] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 205.073539][ T8407] netlink: 20 bytes leftover after parsing attributes in process `syz.2.932'. [ 205.337103][ T6013] usb 1-1: new full-speed USB device number 6 using dummy_hcd [ 205.498449][ T8396] loop1: detected capacity change from 0 to 32768 [ 205.540105][ T6013] usb 1-1: unable to get BOS descriptor set [ 205.555184][ T6013] usb 1-1: not running at top speed; connect to a high speed hub [ 205.575946][ T6013] usb 1-1: config 1 interface 0 has no altsetting 0 [ 205.585818][ T8426] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2 [ 205.619517][ T8396] XFS (loop1): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a [ 205.626521][ T6013] usb 1-1: New USB device found, idVendor=1241, idProduct=5015, bcdDevice= 0.40 [ 205.637798][ T6013] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 205.645825][ T6013] usb 1-1: Product: syz [ 205.686955][ T6013] usb 1-1: Manufacturer: syz [ 205.708181][ T6013] usb 1-1: SerialNumber: syz [ 205.744661][ T8440] loop9: detected capacity change from 0 to 7 [ 205.796179][ T8396] XFS (loop1): Ending clean mount [ 205.843407][ T5847] XFS (loop1): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a [ 206.068261][ T6013] usbhid 1-1:1.0: can't add hid device: -71 [ 206.107354][ T6013] usbhid 1-1:1.0: probe with driver usbhid failed with error -71 [ 206.143835][ T8440] Dev loop9: unable to read RDB block 7 [ 206.155105][ T6013] usb 1-1: USB disconnect, device number 6 [ 206.176926][ T8440] loop9: unable to read partition table [ 206.224530][ T8440] loop9: partition table beyond EOD, truncated [ 206.248453][ T8440] loop_reread_partitions: partition scan of loop9 () failed (rc=-5) [ 206.363481][ T8451] netlink: 4 bytes leftover after parsing attributes in process `syz.2.945'. [ 206.386304][ T8451] netlink: 12 bytes leftover after parsing attributes in process `syz.2.945'. [ 206.433485][ T8451] netlink: 12 bytes leftover after parsing attributes in process `syz.2.945'. [ 206.556383][ T8458] netlink: 20 bytes leftover after parsing attributes in process `syz.3.946'. [ 207.657982][ T8480] loop9: detected capacity change from 0 to 7 [ 208.103679][ T8480] Dev loop9: unable to read RDB block 7 [ 208.128514][ T8480] loop9: unable to read partition table [ 208.154777][ T8480] loop9: partition table beyond EOD, truncated [ 208.183524][ T8480] loop_reread_partitions: partition scan of loop9 () failed (rc=-5) [ 208.436017][ T8502] veth1_macvtap: left promiscuous mode [ 208.446095][ T8502] macsec0: entered promiscuous mode [ 208.878225][ T8521] netlink: 172 bytes leftover after parsing attributes in process `syz.0.972'. [ 210.097803][ T8547] loop0: detected capacity change from 0 to 512 [ 210.154569][ T8547] EXT4-fs: inline encryption not supported [ 210.212672][ T8547] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 210.227128][ T8547] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.983: invalid indirect mapped block 2683928664 (level 1) [ 210.243637][ T8547] EXT4-fs (loop0): 1 truncate cleaned up [ 210.251343][ T8547] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 210.508728][ T5828] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 210.776971][ T113] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 210.852797][ T8576] loop4: detected capacity change from 0 to 1024 [ 210.936347][ T8576] hfsplus: walked past end of dir [ 210.946140][ T8580] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 210.981674][ T8582] loop0: detected capacity change from 0 to 136 [ 211.005349][ T113] usb 3-1: config 0 has an invalid interface number: 64 but max is 0 [ 211.023761][ T113] usb 3-1: config 0 has an invalid descriptor of length 48, skipping remainder of the config [ 211.068488][ T8580] team0: Unable to change to the same mode the team is in [ 211.075462][ T113] usb 3-1: config 0 has no interface number 0 [ 211.125786][ T113] usb 3-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice=39.48 [ 211.166663][ T113] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 211.174780][ T113] usb 3-1: Product: syz [ 211.201557][ T113] usb 3-1: Manufacturer: syz [ 211.216901][ T113] usb 3-1: SerialNumber: syz [ 211.242181][ T113] usb 3-1: config 0 descriptor?? [ 211.710171][ T113] uvcvideo 3-1:0.64: Found UVC 0.00 device syz (046d:0823) [ 211.883424][ T5837] Bluetooth: hci1: command 0x0406 tx timeout [ 211.907020][ T5834] Bluetooth: hci2: command 0x0406 tx timeout [ 211.914312][ T5834] Bluetooth: hci3: command 0x0406 tx timeout [ 211.929321][ T5834] Bluetooth: hci0: command 0x0406 tx timeout [ 212.153879][ T113] uvcvideo 3-1:0.64: No valid video chain found. [ 212.238936][ T113] usb 3-1: USB disconnect, device number 6 [ 213.380388][ T8624] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1012'. [ 213.391849][ T8624] ksmbd: Unknown IPC event: 4, ignore. [ 214.220461][ T8632] netlink: 172 bytes leftover after parsing attributes in process `syz.1.1015'. [ 214.268201][ T8634] loop4: detected capacity change from 0 to 128 [ 214.345742][ T8634] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 214.675324][ T8643] loop1: detected capacity change from 0 to 128 [ 215.225458][ T8643] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 215.332715][ T5830] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 215.609293][ T5847] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 215.784616][ T8665] loop3: detected capacity change from 0 to 128 [ 215.850329][ T8665] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 215.853023][ T8667] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1027'. [ 215.937844][ T8669] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1027'. [ 215.966967][ T5841] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 216.037321][ T8671] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1028'. [ 216.073871][ T8671] ksmbd: Unknown IPC event: 4, ignore. [ 216.116278][ T30] kauditd_printk_skb: 38 callbacks suppressed [ 216.116295][ T30] audit: type=1326 audit(216.066:975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8672 comm="syz.1.1029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 216.184930][ T8674] loop1: detected capacity change from 0 to 512 [ 216.218372][ T30] audit: type=1326 audit(216.106:976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8672 comm="syz.1.1029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 216.293953][ T8674] EXT4-fs (loop1): 1 orphan inode deleted [ 216.310727][ T3955] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 216.333123][ T8674] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 216.347827][ T30] audit: type=1326 audit(216.116:977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8672 comm="syz.1.1029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 216.381181][ T3955] EXT4-fs error (device loop1): ext4_release_dquot:6984: comm kworker/u8:11: Failed to release dquot type 1 [ 216.394844][ T30] audit: type=1326 audit(216.116:978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8672 comm="syz.1.1029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 216.437593][ T30] audit: type=1326 audit(216.116:979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8672 comm="syz.1.1029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 216.471625][ T30] audit: type=1326 audit(216.116:980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8672 comm="syz.1.1029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 216.502226][ T5847] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 216.523283][ T1135] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 216.542612][ T1135] EXT4-fs error (device loop1): ext4_release_dquot:6984: comm kworker/u8:6: Failed to release dquot type 1 [ 216.562078][ T30] audit: type=1326 audit(216.126:981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8672 comm="syz.1.1029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 216.587618][ T30] audit: type=1326 audit(216.126:982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8672 comm="syz.1.1029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d65d8f749 code=0x7ffc0000 [ 217.039288][ T8699] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies. [ 217.053547][ T8709] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1038'. [ 217.466868][ T5831] Bluetooth: hci4: command 0x0406 tx timeout [ 217.919497][ T8716] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1044'. [ 217.962854][ T8716] ksmbd: Unknown IPC event: 4, ignore. [ 218.198280][ T8737] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1050'. [ 218.246821][ T8737] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1050'. [ 218.259273][ T8739] veth1_macvtap: left promiscuous mode [ 218.264795][ T8739] macsec0: entered promiscuous mode [ 218.312588][ T8737] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1050'. [ 218.457856][ T8748] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1056'. [ 219.004406][ T8765] ksmbd: Unknown IPC event: 4, ignore. [ 219.284375][ T8777] __nla_validate_parse: 2 callbacks suppressed [ 219.284395][ T8777] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1069'. [ 220.890091][ T113] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 221.086678][ T113] usb 3-1: Using ep0 maxpacket: 8 [ 221.247258][ T113] usb 3-1: unable to get BOS descriptor or descriptor too short [ 221.307079][ T113] usb 3-1: config 7 has an invalid interface number: 213 but max is 0 [ 221.315298][ T113] usb 3-1: config 7 has no interface number 0 [ 221.325730][ T113] usb 3-1: config 7 interface 213 altsetting 15 bulk endpoint 0x8F has invalid maxpacket 16 [ 221.406614][ T113] usb 3-1: config 7 interface 213 altsetting 15 endpoint 0xD has an invalid bInterval 128, changing to 7 [ 221.445568][ T113] usb 3-1: config 7 interface 213 altsetting 15 endpoint 0xD has invalid wMaxPacketSize 0 [ 221.473857][ T113] usb 3-1: config 7 interface 213 altsetting 15 endpoint 0xC has invalid maxpacket 1023, setting to 64 [ 221.516866][ T113] usb 3-1: config 7 interface 213 has no altsetting 0 [ 221.561935][ T113] usb 3-1: language id specifier not provided by device, defaulting to English [ 221.598698][ T113] usb 3-1: New USB device found, idVendor=15e8, idProduct=9100, bcdDevice=61.61 [ 221.645447][ T113] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 221.664598][ T113] usb 3-1: Product: syz [ 221.674726][ T113] usb 3-1: Manufacturer: syz [ 221.689869][ T113] usb 3-1: SerialNumber: syz [ 221.729405][ T8817] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 223.269751][ T113] pegasus 3-1:7.213: probe with driver pegasus failed with error -71 [ 223.317268][ T113] usb 3-1: USB disconnect, device number 7 [ 223.376459][ T30] kauditd_printk_skb: 45 callbacks suppressed [ 223.376477][ T30] audit: type=1326 audit(223.326:1028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8861 comm="syz.3.1097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 223.432870][ T30] audit: type=1326 audit(223.366:1029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8861 comm="syz.3.1097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 223.506522][ T30] audit: type=1326 audit(223.386:1030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8861 comm="syz.3.1097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 223.623887][ T30] audit: type=1326 audit(223.386:1031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8861 comm="syz.3.1097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 223.761150][ T30] audit: type=1326 audit(223.386:1032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8861 comm="syz.3.1097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 223.841617][ T30] audit: type=1326 audit(223.386:1033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8861 comm="syz.3.1097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 223.869602][ T30] audit: type=1326 audit(223.386:1034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8861 comm="syz.3.1097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 223.944744][ T8877] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1103'. [ 223.964307][ T8877] ksmbd: Unknown IPC event: 4, ignore. [ 224.100483][ T8878] loop0: detected capacity change from 0 to 1764 [ 224.290430][ T8878] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(9) [ 224.297505][ T8878] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 224.307200][ T8878] vhci_hcd vhci_hcd.0: Device attached [ 224.485719][ T30] audit: type=1326 audit(223.386:1035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8861 comm="syz.3.1097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 224.491285][ T8879] vhci_hcd: connection closed [ 224.527786][ T30] audit: type=1326 audit(223.386:1036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8861 comm="syz.3.1097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 224.561533][ T30] audit: type=1326 audit(223.386:1037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8861 comm="syz.3.1097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f031778f749 code=0x7ffc0000 [ 224.599635][ T1135] vhci_hcd vhci_hcd.0: stop threads [ 224.605470][ T1135] vhci_hcd vhci_hcd.0: release socket [ 224.629350][ T8886] netlink: 172 bytes leftover after parsing attributes in process `syz.1.1105'. [ 224.656983][ T8341] usb 34-1: SetAddress Request (2) to port 0 [ 224.676158][ T1135] vhci_hcd vhci_hcd.0: disconnect device [ 224.698209][ T8341] usb 34-1: new SuperSpeed USB device number 2 using vhci_hcd [ 224.744203][ T8341] usb 34-1: enqueue for inactive port 0 [ 225.888300][ T8341] usb usb34-port1: attempt power cycle [ 226.339785][ T8912] loop1: detected capacity change from 0 to 512 [ 226.370832][ T8912] EXT4-fs (loop1): blocks per group (255) and clusters per group (8192) inconsistent [ 226.482852][ T8341] usb usb34-port1: unable to enumerate USB device [ 228.265236][ T8955] loop3: detected capacity change from 0 to 1024 [ 228.302337][ T8955] EXT4-fs: Ignoring removed mblk_io_submit option [ 228.326665][ T8955] EXT4-fs: Ignoring removed nomblk_io_submit option [ 228.364725][ T8955] EXT4-fs: Invalid want_extra_isize 16512 [ 228.474867][ T8959] loop0: detected capacity change from 0 to 1024 [ 229.069460][ T8807] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 229.306734][ T8807] usb 4-1: Using ep0 maxpacket: 16 [ 229.324859][ T8807] usb 4-1: unable to get BOS descriptor or descriptor too short [ 229.375330][ T8807] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 229.396979][ T8807] usb 4-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 229.420758][ T8807] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 229.449341][ T8807] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 229.470599][ T8807] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 229.500263][ T8807] usb 4-1: Product: syz [ 229.509064][ T8807] usb 4-1: Manufacturer: 쒈檦ꑕೲ㐭耝맪꒶应馪뀢﹋ퟄấ✞밶翏⎲毣પ咫蝥㵔ﴶ足譹仗蒡ᒜ셤᱂눈Ɉ쐮켯䕏⦇弓︉놥䀘췩ꐇ孃ꧦ炦윂ᖤ雎 [ 229.596983][ T8807] usb 4-1: SerialNumber: syz [ 229.909068][ T8807] usb 4-1: 0:2 : does not exist [ 230.620137][ T8807] usb 4-1: USB disconnect, device number 2 [ 231.108965][ T9019] loop1: detected capacity change from 0 to 8 [ 231.281851][ T9019] SQUASHFS error: lzo decompression failed, data probably corrupt [ 231.344870][ T5844] udevd[5844]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 231.377815][ T9019] SQUASHFS error: Failed to read block 0x91: -5 [ 231.398036][ T9019] SQUASHFS error: Unable to read metadata cache entry [8f] [ 231.405313][ T9019] SQUASHFS error: Unable to read inode 0x11f [ 231.627276][ T5924] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 231.752162][ T9035] loop4: detected capacity change from 0 to 2048 [ 231.785032][ T9035] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 231.826691][ T5924] usb 1-1: Using ep0 maxpacket: 8 [ 231.852413][ T5924] usb 1-1: config 179 has an invalid interface number: 65 but max is 0 [ 231.897635][ T5924] usb 1-1: config 179 has no interface number 0 [ 231.927302][ T5924] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 231.995693][ T5924] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 232.183480][ T5924] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 232.209127][ T5924] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 232.285772][ T5924] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 232.394795][ T5924] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 232.566002][ T5924] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 232.632945][ T9026] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 232.773202][ T9049] netlink: 172 bytes leftover after parsing attributes in process `syz.4.1154'. [ 233.319706][ T905] usb 1-1: USB disconnect, device number 7 [ 233.319826][ C0] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 233.334108][ C0] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 233.542275][ T9068] xt_socket: unknown flags 0x4c [ 233.550553][ T5924] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 233.721694][ T5924] usb 5-1: New USB device found, idVendor=0403, idProduct=6010, bcdDevice=c6.98 [ 233.733751][ T5924] usb 5-1: New USB device strings: Mfr=0, Product=210, SerialNumber=57 [ 233.745109][ T5924] usb 5-1: Product: syz [ 233.750422][ T5924] usb 5-1: SerialNumber: syz [ 233.773136][ T5924] usb 5-1: config 0 descriptor?? [ 233.785676][ T5924] ftdi_sio 5-1:0.0: FTDI USB Serial Device converter detected [ 233.819162][ T5924] ftdi_sio ttyUSB0: unknown device type: 0xc698 [ 234.018312][ T5924] usb 5-1: USB disconnect, device number 2 [ 234.061312][ T5924] ftdi_sio 5-1:0.0: device disconnected [ 234.283454][ T9086] loop1: detected capacity change from 0 to 1024 [ 234.296944][ T9086] EXT4-fs: Ignoring removed orlov option [ 234.329193][ T9086] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 234.435433][ T9086] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 235.176038][ T9093] loop4: detected capacity change from 0 to 128 [ 235.231899][ T9096] loop0: detected capacity change from 0 to 512 [ 235.263523][ T9099] netlink: 'syz.3.1175': attribute type 39 has an invalid length. [ 235.274997][ T9093] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 236.070591][ T9096] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 236.151070][ T9096] EXT4-fs (loop0): group descriptors corrupted! [ 236.639123][ T5847] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 236.669952][ T5830] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 236.842397][ T9110] can0: slcan on ptm0. [ 236.915137][ T9113] loop0: detected capacity change from 0 to 256 [ 236.924935][ T9113] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 237.018713][ T9108] can0 (unregistered): slcan off ptm0. [ 237.302473][ T9123] xt_CT: You must specify a L4 protocol and not use inversions on it [ 237.422141][ T9127] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1186'. [ 237.438297][ T9127] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1186'. [ 237.616712][ T9134] loop0: detected capacity change from 0 to 1024 [ 237.637921][ T9134] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869) [ 237.694729][ T9134] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 237.762380][ T9134] EXT4-fs (loop0): invalid journal inode [ 237.779965][ T9134] EXT4-fs (loop0): can't get journal size [ 237.839427][ T9134] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 237.953620][ T9145] loop1: detected capacity change from 0 to 512 [ 237.975114][ T5828] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 238.008828][ T9145] EXT4-fs: Ignoring removed nomblk_io_submit option [ 238.015499][ T9145] EXT4-fs: Ignoring removed bh option [ 238.088028][ T9145] EXT4-fs error (device loop1): mb_free_blocks:2017: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt. [ 238.200300][ T9145] EXT4-fs error (device loop1): ext4_do_update_inode:5635: inode #11: comm syz.1.1194: corrupted inode contents [ 238.285250][ T9145] EXT4-fs error (device loop1): ext4_dirty_inode:6520: inode #11: comm syz.1.1194: mark_inode_dirty error [ 238.317401][ T9145] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.1194: invalid indirect mapped block 1 (level 1) [ 238.334347][ T9145] EXT4-fs error (device loop1): ext4_do_update_inode:5635: inode #11: comm syz.1.1194: corrupted inode contents [ 238.372287][ T9145] EXT4-fs error (device loop1) in ext4_orphan_del:301: Corrupt filesystem [ 238.421312][ T9145] EXT4-fs error (device loop1): ext4_do_update_inode:5635: inode #11: comm syz.1.1194: corrupted inode contents [ 238.481785][ T9145] EXT4-fs error (device loop1): ext4_truncate:4641: inode #11: comm syz.1.1194: mark_inode_dirty error [ 238.622229][ T9145] EXT4-fs error (device loop1) in ext4_process_orphan:343: Corrupt filesystem [ 238.637824][ T9145] EXT4-fs (loop1): 1 truncate cleaned up [ 238.655788][ T9145] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 238.742161][ T9145] EXT4-fs error (device loop1): ext4_readdir:264: inode #2: block 13: comm syz.1.1194: path /240/file0: bad entry in directory: directory entry too close to block end - offset=76, inode=16, rec_len=940, size=1024 fake=0 [ 238.882343][ T5847] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 238.936776][ T5831] Bluetooth: hci4: command 0x0406 tx timeout [ 239.046774][ T9102] usb 5-1: new full-speed USB device number 3 using dummy_hcd [ 239.172977][ T9187] loop0: detected capacity change from 0 to 2048 [ 239.200186][ T9187] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=3932051, location=3932051 [ 239.225202][ T9102] usb 5-1: not running at top speed; connect to a high speed hub [ 239.243123][ T9187] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 239.264331][ T9102] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64 [ 239.384116][ T9102] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0 [ 239.406160][ T9102] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 2015, setting to 64 [ 239.426690][ T9102] usb 5-1: language id specifier not provided by device, defaulting to English [ 239.439613][ T9102] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 239.451421][ T9102] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 239.459513][ T9102] usb 5-1: Product: syz [ 239.463702][ T9102] usb 5-1: Manufacturer: syz [ 239.468357][ T9102] usb 5-1: SerialNumber: syz [ 239.489077][ T9176] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 239.745716][ T9102] cdc_ncm 5-1:1.0: bind() failure [ 239.785431][ T9102] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found [ 239.825197][ T9102] cdc_ncm 5-1:1.1: bind() failure [ 239.863288][ T9102] usb 5-1: USB disconnect, device number 3 [ 239.954744][ T9210] loop0: detected capacity change from 0 to 1024 [ 239.981108][ T9210] EXT4-fs: Ignoring removed orlov option [ 239.997042][ T9210] EXT4-fs: Ignoring removed orlov option [ 240.070790][ T9212] netlink: 172 bytes leftover after parsing attributes in process `syz.1.1222'. [ 240.108945][ T9210] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 240.365178][ T5828] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 240.878743][ T9235] loop4: detected capacity change from 0 to 256 [ 240.890969][ T9235] vfat: Bad value for 'dmask' [ 241.336655][ T5924] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 241.767570][ T5924] usb 5-1: Using ep0 maxpacket: 32 [ 241.788164][ T5924] usb 5-1: config 0 has an invalid interface number: 217 but max is 0 [ 241.846677][ T5924] usb 5-1: config 0 has no interface number 0 [ 241.886864][ T5924] usb 5-1: config 0 interface 217 has no altsetting 0 [ 241.960701][ T5924] usb 5-1: New USB device found, idVendor=057b, idProduct=0000, bcdDevice= 2.6a [ 242.010677][ T5924] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 242.041053][ T5924] usb 5-1: Product: syz [ 242.045372][ T5924] usb 5-1: Manufacturer: syz [ 242.070862][ T5924] usb 5-1: SerialNumber: syz [ 242.091457][ T5924] usb 5-1: config 0 descriptor?? [ 245.237630][ T5924] usb-storage 5-1:0.217: USB Mass Storage device detected [ 245.250859][ T9266] Can't find ip_set type hash:net,por [ 245.455466][ T5924] usb-storage 5-1:0.217: Quirks match for vid 057b pid 0000: 1 [ 246.114712][ T5924] usb 5-1: USB disconnect, device number 4 [ 246.136218][ T9276] netlink: 'syz.0.1246': attribute type 39 has an invalid length. [ 246.151493][ T9279] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies. [ 246.504746][ T9289] netlink: 172 bytes leftover after parsing attributes in process `syz.4.1252'. [ 247.191877][ T9310] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies. [ 248.827359][ T9323] xt_TPROXY: Can be used only with -p tcp or -p udp [ 249.382768][ T9326] loop4: detected capacity change from 0 to 256 [ 249.460895][ T9326] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 249.495886][ T9334] bridge_slave_0: left allmulticast mode [ 249.549302][ T9334] bridge_slave_0: left promiscuous mode [ 249.555225][ T9334] bridge0: port 1(bridge_slave_0) entered disabled state [ 249.821715][ T9349] loop4: detected capacity change from 0 to 16 [ 249.887657][ T8807] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 250.168843][ T9349] erofs (device loop4): mounted with root inode @ nid 36. [ 250.291625][ T8807] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 250.409037][ T9334] bridge_slave_1: left allmulticast mode [ 250.494933][ T9349] page: refcount:3 mapcount:0 mapping:ffff888069e487a8 index:0x0 pfn:0x11205 [ 250.506681][ T8807] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 250.523579][ T9334] bridge_slave_1: left promiscuous mode [ 250.540800][ T9334] bridge0: port 2(bridge_slave_1) entered disabled state [ 250.567750][ T9349] memcg:ffff88807c618d40 [ 250.582748][ T8807] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 250.606081][ T9349] aops:erofs_aops ino:24 dentry name(?):"/" [ 250.630966][ T9349] flags: 0xfff20000004029(locked|uptodate|lru|private|node=0|zone=1|lastcpupid=0x7ff) [ 250.654485][ T8807] usb 1-1: New USB device found, idVendor=054c, idProduct=0268, bcdDevice= 0.00 [ 250.669860][ T9334] bond0: (slave bond_slave_0): Releasing backup interface [ 250.674622][ T9349] raw: 00fff20000004029 ffffea0001d47648 ffff88801cabaae0 ffff888069e487a8 [ 250.735600][ T9334] bond0: (slave bond_slave_1): Releasing backup interface [ 250.796708][ T9334] team0: Port device team_slave_0 removed [ 250.848602][ T9334] team0: Port device team_slave_1 removed [ 250.872272][ T9334] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 250.885398][ T8807] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 250.895625][ T9349] raw: 0000000000000000 ffff88801153fa80 00000003ffffffff ffff88807c618d40 [ 250.904433][ T9349] page dumped because: VM_BUG_ON_FOLIO(success && folio_test_uptodate(folio)) [ 250.914141][ T9349] page_owner tracks the page as allocated [ 250.921863][ T9334] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 250.922550][ T8807] usb 1-1: config 0 descriptor?? [ 250.934313][ T9349] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x140cc0(GFP_USER|__GFP_COMP), pid 9349, tgid 9347 (syz.4.1275), ts 250487834996, free_ts 250478227510 [ 251.582701][ T9349] post_alloc_hook+0x234/0x290 [ 251.593365][ T9349] get_page_from_freelist+0x2365/0x2440 [ 251.599166][ T9349] __alloc_frozen_pages_noprof+0x181/0x370 [ 251.605037][ T9349] alloc_pages_mpol+0x232/0x4a0 [ 251.610002][ T9349] alloc_pages_noprof+0xa9/0x190 [ 251.615005][ T9349] folio_alloc_noprof+0x1e/0x30 [ 251.620027][ T9349] filemap_alloc_folio_noprof+0x112/0x490 [ 251.625805][ T9349] do_read_cache_folio+0x2e2/0x590 [ 251.631042][ T9349] erofs_bread+0x46f/0x7f0 [ 251.635520][ T9349] erofs_namei+0x36b/0x1030 [ 251.640551][ T9349] erofs_lookup+0x138/0x340 [ 251.645120][ T9349] lookup_one_qstr_excl+0x131/0x360 [ 251.650773][ T9349] filename_create+0x209/0x360 [ 251.655601][ T9349] do_mkdirat+0xca/0x4b0 [ 251.660554][ T9349] __x64_sys_mkdirat+0x87/0xa0 [ 251.665648][ T9349] do_syscall_64+0xfa/0xfa0 [ 251.670373][ T9349] page last free pid 905 tgid 905 stack trace: [ 251.676921][ T9349] __free_frozen_pages+0xbc8/0xd30 [ 251.682128][ T9349] vfree+0x25a/0x400 [ 251.686080][ T9349] delayed_vfree_work+0x55/0x80 [ 251.692681][ T9349] process_one_work+0x93a/0x15e0 [ 251.708108][ T9349] worker_thread+0x9b0/0xee0 [ 251.712774][ T9349] kthread+0x711/0x8a0 [ 251.717096][ T9349] ret_from_fork+0x599/0xb30 [ 251.721731][ T9349] ret_from_fork_asm+0x1a/0x30 [ 251.730995][ T9334] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 251.747369][ T9349] ------------[ cut here ]------------ [ 251.752868][ T9349] kernel BUG at mm/filemap.c:1531! [ 251.760607][ T9349] Oops: invalid opcode: 0000 [#1] SMP KASAN PTI [ 251.766900][ T9349] CPU: 0 UID: 0 PID: 9349 Comm: syz.4.1275 Not tainted syzkaller #0 PREEMPT(full) [ 251.776210][ T9349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 251.786297][ T9349] RIP: 0010:folio_end_read+0x22e/0x230 [ 251.791810][ T9349] Code: 54 c7 ff 48 89 df 48 c7 c6 c0 84 74 8b e8 1a 93 2d ff 90 0f 0b e8 d2 54 c7 ff 48 89 df 48 c7 c6 20 7d 74 8b e8 03 93 2d ff 90 <0f> 0b 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa [ 251.811448][ T9349] RSP: 0018:ffffc9000b2bf5e8 EFLAGS: 00010246 [ 251.817563][ T9349] RAX: 9beb3cbd458f9500 RBX: ffffea0000448140 RCX: 0000000000000000 [ 251.825560][ T9349] RDX: 0000000000000006 RSI: ffffffff8d78f926 RDI: 00000000ffffffff [ 251.833557][ T9349] RBP: 0000000000000001 R08: ffffffff8f7deb77 R09: 1ffffffff1efbd6e [ 251.841555][ T9349] R10: dffffc0000000000 R11: fffffbfff1efbd6f R12: 1ffffd4000089029 [ 251.849564][ T9349] R13: 1ffffd4000089028 R14: ffffea0000448148 R15: 0000000000000008 [ 251.857567][ T9349] FS: 00007f4f453106c0(0000) GS:ffff888125eb9000(0000) knlGS:0000000000000000 [ 251.866519][ T9349] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 251.873144][ T9349] CR2: 00007f43dea00218 CR3: 0000000077026000 CR4: 00000000003526f0 [ 251.881146][ T9349] Call Trace: [ 251.884797][ T9349] [ 251.887751][ T9349] ? __pfx_iomap_bio_submit_read+0x10/0x10 [ 251.893592][ T9349] iomap_read_folio+0x373/0x580 [ 251.898493][ T9349] ? __pfx_iomap_read_folio+0x10/0x10 [ 251.903918][ T9349] ? __folio_batch_add_and_move+0x192/0xc60 [ 251.909857][ T9349] erofs_read_folio+0x12c/0x2e0 [ 251.914737][ T9349] ? __pfx_erofs_read_folio+0x10/0x10 [ 251.920129][ T9349] ? __folio_batch_add_and_move+0x768/0xc60 [ 251.926083][ T9349] ? __pfx_lru_add+0x10/0x10 [ 251.930710][ T9349] ? __pfx___folio_batch_add_and_move+0x10/0x10 [ 251.936977][ T9349] filemap_read_folio+0x117/0x380 [ 251.942031][ T9349] ? __pfx_erofs_read_folio+0x10/0x10 [ 251.947420][ T9349] ? __pfx_filemap_read_folio+0x10/0x10 [ 251.952975][ T9349] ? filemap_add_folio+0x35f/0x540 [ 251.958102][ T9349] do_read_cache_folio+0x358/0x590 [ 251.963238][ T9349] ? __pfx_erofs_read_folio+0x10/0x10 [ 251.968631][ T9349] erofs_bread+0x46f/0x7f0 [ 251.973068][ T9349] ? validate_chain+0x897/0x2130 [ 251.978036][ T9349] erofs_namei+0x36b/0x1030 [ 251.982561][ T9349] ? __pfx_erofs_namei+0x10/0x10 [ 251.987509][ T9349] ? do_raw_spin_lock+0x121/0x290 [ 251.992553][ T9349] erofs_lookup+0x138/0x340 [ 251.997098][ T9349] lookup_one_qstr_excl+0x131/0x360 [ 252.002427][ T9349] filename_create+0x209/0x360 [ 252.007198][ T9349] ? __pfx_filename_create+0x10/0x10 [ 252.012494][ T9349] do_mkdirat+0xca/0x4b0 [ 252.016751][ T9349] ? __pfx_do_mkdirat+0x10/0x10 [ 252.021620][ T9349] ? getname_flags+0x1e5/0x540 [ 252.026403][ T9349] __x64_sys_mkdirat+0x87/0xa0 [ 252.031260][ T9349] do_syscall_64+0xfa/0xfa0 [ 252.035770][ T9349] ? irqentry_exit+0x10f/0x640 [ 252.040554][ T9349] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 252.046630][ T9349] ? clear_bhb_loop+0x60/0xb0 [ 252.051338][ T9349] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 252.057236][ T9349] RIP: 0033:0x7f4f4438de97 [ 252.061683][ T9349] Code: 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 252.081305][ T9349] RSP: 002b:00007f4f4530fe68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102 [ 252.089739][ T9349] RAX: ffffffffffffffda RBX: 00007f4f4530fef0 RCX: 00007f4f4438de97 [ 252.097720][ T9349] RDX: 00000000000001ff RSI: 0000200000000440 RDI: 00000000ffffff9c [ 252.105697][ T9349] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 252.113670][ T9349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000440 [ 252.121644][ T9349] R13: 00007f4f4530feb0 R14: 0000000000000000 R15: 0000000000000000 [ 252.129651][ T9349] [ 252.132696][ T9349] Modules linked in: [ 252.138013][ T9349] ---[ end trace 0000000000000000 ]--- [ 252.160105][ T9349] RIP: 0010:folio_end_read+0x22e/0x230 [ 252.166037][ T9349] Code: 54 c7 ff 48 89 df 48 c7 c6 c0 84 74 8b e8 1a 93 2d ff 90 0f 0b e8 d2 54 c7 ff 48 89 df 48 c7 c6 20 7d 74 8b e8 03 93 2d ff 90 <0f> 0b 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa [ 252.171817][ T9336] team0: Mode changed to "loadbalance" [ 252.193158][ T9349] RSP: 0018:ffffc9000b2bf5e8 EFLAGS: 00010246 [ 252.200497][ T9349] RAX: 9beb3cbd458f9500 RBX: ffffea0000448140 RCX: 0000000000000000 [ 252.215027][ T9349] RDX: 0000000000000006 RSI: ffffffff8d78f926 RDI: 00000000ffffffff [ 252.224364][ T9349] RBP: 0000000000000001 R08: ffffffff8f7deb77 R09: 1ffffffff1efbd6e [ 252.232929][ T9349] R10: dffffc0000000000 R11: fffffbfff1efbd6f R12: 1ffffd4000089029 [ 252.242237][ T9349] R13: 1ffffd4000089028 R14: ffffea0000448148 R15: 0000000000000008 [ 252.250758][ T9349] FS: 00007f4f453106c0(0000) GS:ffff888125fb9000(0000) knlGS:0000000000000000 [ 252.596310][ T8807] sony 0003:054C:0268.0003: unknown main item tag 0x7 [ 252.637333][ T8807] sony 0003:054C:0268.0003: unexpected long global item [ 252.650276][ T9349] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 252.678659][ T8807] sony 0003:054C:0268.0003: parse failed [ 252.684749][ T9349] CR2: 000055555d50e808 CR3: 0000000077026000 CR4: 00000000003526f0 [ 252.692957][ T8807] sony 0003:054C:0268.0003: probe with driver sony failed with error -22 [ 252.701973][ T9349] Kernel panic - not syncing: Fatal exception [ 252.708417][ T9349] Kernel Offset: disabled [ 252.712746][ T9349] Rebooting in 86400 seconds..