last executing test programs: 14m19.374274131s ago: executing program 32 (id=701): syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x88, &(0x7f00000005c0)={[{@nogrpid}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@nobarrier}, {@nodiscard}, {@quota}]}, 0x3, 0x438, &(0x7f0000000d80)="$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") pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x100dfd, 0x2, 0x0) syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0) pipe2$9p(0x0, 0x800) getresuid(&(0x7f0000000800), 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000700)='mounts\x00') read$FUSE(r0, &(0x7f0000003980)={0x2020}, 0x2020) 9m27.842675238s ago: executing program 33 (id=2290): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcc3, 0x2, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) 8m12.494219278s ago: executing program 5 (id=2719): setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000280)=[@in={0x2, 0x4e21, @loopback}], 0x10) sendmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @loopback}, 0x10, &(0x7f0000000080)=[{&(0x7f0000000000)="fd", 0x1}], 0x1, 0x0, 0x0, 0x804c044}, 0x881) r0 = dup(0xffffffffffffffff) setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f0000000040)={0x9, 0x5, 0x2, 0x400007}, 0x10) setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000100)={0x0, 0x0, 0x20}, 0xc) write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r0, &(0x7f0000000180)={0x4, 0x8, 0xfa00, {0xffffffffffffffff, 0x4}}, 0x29fdf) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000001340)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x4880}, 0x4008000) write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r0, &(0x7f00000000c0)={0x4, 0x8, 0xfa00, {0xffffffffffffffff, 0x5}}, 0xfd87) 8m11.748797827s ago: executing program 5 (id=2721): syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x200000, &(0x7f0000000040)={[{@grpquota}]}, 0x1, 0xbaf, &(0x7f0000002f00)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.numa_stat\x00', 0x275a, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0x8004587d, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x3, 0x40, 0x0, 0x7ff}) ftruncate(r0, 0x0) 8m9.678842553s ago: executing program 5 (id=2729): syz_emit_ethernet(0x4a, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaa"], 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x8, 0xf, &(0x7f0000000200)=ANY=[@ANYRESDEC, @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7020000000000008500000051000000bf0900000000000055"], 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94) r0 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x2001) write$tun(0xffffffffffffffff, &(0x7f0000000040)=ANY=[@ANYBLOB="020304000100090104006bd648c6000c2f01fe"], 0x1043) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_misc(r1, &(0x7f0000000040), 0xe09) ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xe, 0x1c, "fee8a2ab789fd1e00d96072000001ea89de2b7fb00b323668809811b850001000000000000000300000000485b1ad5000002000000000000000000e6ffffff00", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c524ef45f819e01177d3d458dd4992861ac00", "f4bd000000801900", [0x0, 0x2000000000001]}}) 8m8.502616333s ago: executing program 5 (id=2733): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x1001a, &(0x7f0000000240)={[{@jqfmt_vfsv1}, {@resuid={'resuid', 0x3d, 0xee01}}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@block_validity}, {@jqfmt_vfsv1}]}, 0x1, 0x42e, &(0x7f0000000940)="$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") syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x8004587d, &(0x7f0000000080)={@desc={0x1, 0x0, @desc2}}) syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_KEY(0xffffffffffffffff, 0x0, 0x80) sendmsg$NL80211_CMD_ASSOCIATE(r0, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000000)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) 8m7.469865194s ago: executing program 5 (id=2736): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000280)={0x0, 0x5, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xd, 0x1, 0x4}, 0xe) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000240)=0x10) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, 0x0, &(0x7f0000000200)) 8m6.60427367s ago: executing program 5 (id=2740): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) r3 = socket(0x400000000010, 0x3, 0x0) r4 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000006080)=@newtfilter={0x38, 0x2c, 0xd2b, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x1}, {}, {0xe, 0x1}}, [@filter_kind_options=@f_fw={{0x7}, {0xc, 0x2, [@TCA_FW_CLASSID={0x8, 0x1, {0x0, 0x6}}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x893}, 0x24040084) 8m4.62526493s ago: executing program 34 (id=2740): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) r3 = socket(0x400000000010, 0x3, 0x0) r4 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000006080)=@newtfilter={0x38, 0x2c, 0xd2b, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x1}, {}, {0xe, 0x1}}, [@filter_kind_options=@f_fw={{0x7}, {0xc, 0x2, [@TCA_FW_CLASSID={0x8, 0x1, {0x0, 0x6}}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x893}, 0x24040084) 7m31.444675601s ago: executing program 6 (id=2849): r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0) madvise(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x15) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x4008af10, &(0x7f0000000400)) 7m30.165380708s ago: executing program 6 (id=2855): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x5, 0x4, 0x4, 0xa, 0x40}, 0x50) write$RDMA_USER_CM_CMD_MIGRATE_ID(0xffffffffffffffff, 0x0, 0x0) close(0x3) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0x8, 0x6, 0x1}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x1000c16, &(0x7f0000000500), 0xff, 0x260, &(0x7f0000000980)="$eJzs3U9IHFccB/DfzO7Wqkux7aVQ+gdKKa0g9lboxV5aEIpIKYW2YCmllxYtWKU37SmXHJJjSIKnXCTkFpNj8CK5JARyMokHcwkkkkMkhySwYXcU/LOJxl13gvP5wDoz+ub93jDzfSPiMAEUVl9EDEVEKSL6I6ISEcnWBh9nn76NzbnupbGIWu2Hh0mjXbad2dyvNyJmI+KriFhMk/irHDG98Mvq4+XvPjs+Vfn03MLP3R09yA1rqyvfr58dOXZx+Mvp6zfvjyQxFNVtx9V+SZPvlZOIdw6j2GsiKec9AvZj9L8Lt+q5fzciPmnkvxJpZCfvxOQbi5X44syL9j354Mb7nRwr0H61WqV+D5ytAYWTRkQ1knQgIrL1NB0YyH6Hv13qSf+emPy3/8+JqfE/8p6pgHapRqx8e7nrUu+O/N8rZfkHjqjsj1IrP47O36mvrJfyHhDQER9ki/r9v/+3mc9D/qFw5B+KS/6huOQfikv+4ehp9v+mzcg/FJf8Q3HJPxSX/ENxHTj/p54d3qCAjtiafwCgWGpdB3pquP0PIgMdl/f8AwAAAAAAAAAAAAAAAAAA7DbXvTS2+WlPj+U9W1w9HbH2TdZ0d/1S433EEW82vvY8Srb1mOyrwsv9+lGLHbTofM5PX791N9/61z7Mt/7MeMTs/xExWC43rr1tF1Sycf0d3Nt7/Lzye4sFXtHOdwN8/VNn6+/0dD7f+sPLEVfq889gs/knjfcay+bzT7V+/lqs/8+TFjsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACgY54HAAD//7UiauA=") bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10) 7m28.885735033s ago: executing program 6 (id=2860): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) close(0x3) r1 = socket$inet_sctp(0x2, 0x5, 0x84) connect$inet(r1, &(0x7f0000000080)={0x2, 0x4e24, @private=0xa010100}, 0x10) sendmmsg$inet_sctp(r1, &(0x7f0000001f00)=[{&(0x7f0000000000)=@in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000100)=[{&(0x7f0000000040)="ca", 0x1}], 0x1, 0x0, 0x0, 0x4000414}], 0x1, 0x10) setsockopt(r0, 0x84, 0x7f, &(0x7f0000000080), 0x0) 7m26.522552353s ago: executing program 6 (id=2866): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) syz_mount_image$fuse(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x4002, 0x0, 0x1, 0x0, 0x0) syz_mount_image$fuse(0x0, &(0x7f0000000040)='./bus\x00', 0x3010009, 0x0, 0x1, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0) mount$overlay(0x0, &(0x7f0000000400)='./bus\x00', &(0x7f0000000b80), 0x200008, &(0x7f0000000380)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) mount$overlay(0x0, &(0x7f0000000340)='./bus\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000000)={[{@lowerdir={'lowerdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file0/file0'}}, {@workdir={'workdir', 0x3d, './file1'}}]}) syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f00000002c0)='./bus\x00', 0x322020, &(0x7f0000000380)=ANY=[], 0x1, 0x0, 0x0) sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4040090}, 0x2400c8c1) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x80, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40086602, &(0x7f0000000000)) 7m24.818129788s ago: executing program 6 (id=2870): mkdir(&(0x7f0000000000)='./file1\x00', 0x74) mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0]) mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) r0 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) r1 = open(0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) 7m21.218064522s ago: executing program 6 (id=2885): r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_int(r0, 0x29, 0x24, &(0x7f0000000000)=0x400, 0x4) syz_emit_ethernet(0x46, &(0x7f0000000080)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaabb86dd6012000800103afffe8000000000000000000000000000bbff020000000000000000000000000001"], 0x0) 7m18.380520761s ago: executing program 35 (id=2885): r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_int(r0, 0x29, 0x24, &(0x7f0000000000)=0x400, 0x4) syz_emit_ethernet(0x46, &(0x7f0000000080)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaabb86dd6012000800103afffe8000000000000000000000000000bbff020000000000000000000000000001"], 0x0) 7m0.792381801s ago: executing program 2 (id=2939): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) shutdown(r0, 0x1) bind$inet6(r0, 0x0, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0xfffffff1, @empty, 0x2}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x8, @empty, 0x9f}, 0x1c) 6m59.498416912s ago: executing program 2 (id=2942): mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000007, 0x40032, 0xffffffffffffffff, 0x40000000) r0 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c) prctl$PR_MCE_KILL(0x21, 0x1, 0x1) syz_clone3(&(0x7f00000004c0)={0x84004400, 0x0, 0x0, 0x0, {0x11}, 0x0, 0x0, 0x0, 0x0}, 0x58) madvise(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x64) 6m57.09060797s ago: executing program 2 (id=2949): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000040)='cpuset.sched_relax_domain_level\x00', 0x2, 0x0) sendfile(r1, r1, 0x0, 0x10000000001) openat(0xffffffffffffffff, &(0x7f0000000440)='./file0\x00', 0x42, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r2, &(0x7f0000000080)={0x2, 0x0, @empty}, 0x10) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000280)={'veth0_to_bond\x00', {0x2, 0x4e21, @rand_addr=0x401}}) syz_emit_ethernet(0x46, &(0x7f0000000200)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x0, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @loopback, @loopback}, "00186371ae9b1c03"}}}}}, 0x0) 6m56.26469505s ago: executing program 2 (id=2951): syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000300)={[{@noload}, {@bsdgroups}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@init_itable}, {@errors_remount}, {@noinit_itable}, {@lazytime}]}, 0x2, 0x44a, &(0x7f0000000400)="$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") socket$inet6_tcp(0xa, 0x1, 0x0) sendmsg$AUDIT_TRIM(0xffffffffffffffff, 0x0, 0x40) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000008300), 0x2, 0x0) mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000002100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) syz_fuse_handle_req(r1, &(0x7f00000021c0), 0x2000, &(0x7f00000041c0)={&(0x7f00000001c0)={0x50, 0x0, 0x0, {0x7, 0x29, 0x7, 0x2100039, 0x0, 0x0, 0x1, 0x57, 0x0, 0x0, 0x2}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_fuse_handle_req(r1, &(0x7f0000006300)="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", 0x2000, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78, 0x0, 0x0, {0x1, 0x7, 0x0, {0x0, 0xffffffffffffffb3, 0xbdd7, 0x400, 0x4, 0x80000000, 0x9d1e, 0x2000004, 0x44, 0x6000, 0x9, 0x0, 0xffffffffffffffff, 0x5fffffff, 0x2}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) sendmmsg$unix(r0, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40080}}], 0x1, 0x0) setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0) lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000280)=ANY=[], 0x0, 0x11) 6m54.882538883s ago: executing program 2 (id=2956): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r0, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) sendto$inet6(r0, &(0x7f0000000400)="cd", 0x1, 0x8010, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback, 0xfffffffe}, 0x1c) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000080)={0x0, 0x100}, &(0x7f0000000380)=0x8) 6m53.999107165s ago: executing program 2 (id=2958): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x5, 0x4, 0x4, 0xa, 0x40}, 0x50) write$RDMA_USER_CM_CMD_MIGRATE_ID(0xffffffffffffffff, 0x0, 0x0) close(0x3) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0x8, 0x6, 0x1}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x1000c16, &(0x7f0000000500), 0xff, 0x260, &(0x7f0000000980)="$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") r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10) 6m50.958914331s ago: executing program 36 (id=2958): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x5, 0x4, 0x4, 0xa, 0x40}, 0x50) write$RDMA_USER_CM_CMD_MIGRATE_ID(0xffffffffffffffff, 0x0, 0x0) close(0x3) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0x8, 0x6, 0x1}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x1000c16, &(0x7f0000000500), 0xff, 0x260, &(0x7f0000000980)="$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") r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10) 3m25.713472568s ago: executing program 4 (id=3830): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000a40)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r0], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0857f9f582f0300000000001000", 0x0, 0x2e00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 3m24.894455207s ago: executing program 4 (id=3833): mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x6, 0x3, &(0x7f0000000bc0)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000001c0)={r0, 0x0, 0xffc9, 0x0, &(0x7f0000002d40)="b3070d5b19aa16a7489474168245f80bbfa179c79d3bffb79761ab0d8e009e9b42b881f247de05b072442debf7bc0ed4b393a763a2bf3d12b851fd541f7a7169bf1fbd1640409fb8f29f118ac55c111bb188b49c7bdb0b55d9b03ef63529493d44c4617aa69a7fe28b6438a324f15e3eb21a0f5a233ee9e9071b7d746b5ee5ec93c8f26de857054995b60874a9d27726d9c069ab61a1623c8951aeaabe0e5d7538f7dbd8bd0628798f4622ee0f72d66106093500348e147e9dcee5dae63af07a6fb007e4cf9d6d6359a252aa81ec8a9caefdcb28f79094b5cab4e154a22c44bf971c039f2d566c4aec66cebca90bfe16ada4b03ffc7e90b023eec64cce3c0351597828adc485980b2aaddd930e4e424e2d0314f7fe17c3092ec5f5e54b39844e714661ac9edf447a2e3dc89f110e54528a4e22d8a86585b4601028b2bbbb4f70b7ac3b6c7129d4d0c8ce0b02c3c1f5e4128a6d315002443ac28bdb0c9d7abe3e4286ec1055688ec813b9979121e900aea3693b9c8b427bb69576362dfb258f8df59e0dbefd7034c1e887a06731e1cc25113331eab4b0d022a63107f774b4a631fa71e16e290881c25fe6af9775fd65359e2af043ec9caad726b0ce923e3c6ef9d081f967e8ef34ef0329b1c84b7bf024bda4cfda93debe4ba05de3e1728c8e22cb844c74f8d769929e6295a16bea0c50727fa33b3c10d2e53e66b20761d9fc6ef5f24b311ff8a4239f81fba4a808a08785c8cb22ac1c4a06f7b3ce232806dfb41c5aa694cf55b9872aa2c53175a76a3427dbb5c00c15ed62686a048edba6bff31ef1a84d711eddc76a4db44c880f26a79da84b9f9cfaaf909267b67a9c853ea9eb1fe586db67a98dcf37a15d5295857ee0bb4e8a4b551f2629bfc72592c0854266245b837a91f3eefbc2612ee909fa43209d02af7d3b83ec13e5dbbfe1a34a8b45ce49722a5369c3c1b8bccd5386cf57baae0d5c4a355d5a729ddce5c0be3aaafaffa497dd6b7f363b5e53f3849c7a2013e0db1ca5d2d93b0a809d1c27306883edaf11b73199275301a9d28cb3e9b267e3342fad165a13f3e44d0d53afc95f44474d5761416489612b6054c17a383a03782bf380bf347742f2845be2df988310378dad9bbf1980a4a84a5e4f10b3a28db2e7829e25640b833b0cf6675eba6601502a7ae3177860dac93726ad9adabc6d98ce30a4cb01ce01b6309982898b617f20c55510253405d93e70fbc4c9ded36bacff16e49d9f70d852c41cec96d6e4f6c44167ed6990d04e63f15fd934e6120f9189fd04e8ff4554fe23751dea387ab1ef5b0973d9510c4cbb1fe89f80d7875c16b2ff9a746f8e2b4e9dc5594712c511dea6bf63c4d9fd7114092ffdcfc16dde14359b2fda592214ad728b4e19132970be209ed98dda93c1c3abe8cffef35679b61e9ac56802bbce8509a047415a1badd9c4a359b6971d73d994e5825115fffd6f389144fdec3bb012f9f392fee8310a847192dc6ff4247a6ba44ca75ed0bc40b50767407a7d6420018b2bd1dc9ed66e11fe5c7b768ff7aae6d1ae62516a0ad980f366b6f3ea5d9e407b3e88869749b15fe400509d70256d82b2d5428b2912e648ebe7022d6f3bfc8d0c9423cba893efc65394e63a56269b7a17f69294000b0bd27902730356f238b868803b7ff4da31013ad66e22c5c7afa1b370fd2d10e0175a3bfba66d88e29fb371998424be80737bfb38db011efc5d63f0fa17efcd90a5cd2d310ab8e4ff2631dc2fc2be5404d4026fb916c1cd481dd70ea1755813574a0ec1d01b1411c7a7a69f6ac972487f9b470090c419d1c57d8641d6f4cd10b1d55ce621ed8e14f28f11b579a6408bbff9fc13cf6fb07c22770e65ed772e790844ea608e38ae48302efb09c173d8c653aaf0c6be98d9a2d166c9d318dfbb8f06b9a241ac72d68a82dbf7f3255e2cb0af5227d854a71b7d4c89fe943db9c0c19ac1dd5264bf8515b217f1de94b5da0f3a4a73f587a71bad13e447eb5ca4d76d3645d749f2ba4b46da62a7717e544cfb025b364c5d19ec6330bc6fdf161a153c61720031dfa170f0c77de03b36fa898e8f00dcb04c21db7362200fae366363f82a2d7292e0d67b72f64e227fdd91edd3c455e7341a9a9b8832631891b563a8d064955d0074a216062147414c2c8badd2c547a51734a96c215d82c68f3eeba0f9a4954e479a0534a8fd131a4b9b1d069322907c1b49e5c68b86079841b34867ae69d42f9843a9c9d290d0ea9ab4068a58e9c76588391b12420af3d9e3d8bf672f3f0ac88a8c269a9570576f6a1a5a39d63cdf7e459a620af3fe5b6fdc7576732bae1f8ab81d5294562d5e82f1273ba1f2cc1f336f2ed3b4a9901dbb3e86f3859750ef51db3601247fcd157072bc3843aedb474433c4694942f1c13356d4cfbf56d5834f9c0250044a017137ae689db25feec05600827c11955e492fb67dc2239b75d7ecc3b279901670ef2ca4d2010cf7e8f08107781b2da20d716619117191f8df96cfe9a81ef18ec0ebcc99cc3558830265d0346f9767ddb6c2fbb2495a9b8ee91f82a1bea2324ec011f45f1462aa216c209186229c233006600414628beb9738efbdad2601cac6b2b7e4c803719d6b826c44e9ae057711f067de8b0f0d1ae2a2f78936a44e2dd9e9b19244ad4b07e6cb870b594fa6f86012f699455ee86aebab98c69f332876fd820f11e982b6023325ab335a28cdceb7ce3bc4706856b4aa37b67fc1a7dc1ce4d88b277db25ebad94140b6107310a4f6e597e8895277c749687e89f0a69bf3cb1de8b459b400806fa8fc5ba4441dce50d3ff057467285e4c21cb12bac00791c3ad4f27c46c58d15de6e9cd746acd26a4fbb7da8849aa6f423dbf3974c1c4610804b5e3e46d5d6d945415e22c039481224a30cbe2b3e271b9f50297afd5df882e5b96fe31acd3e92b8fc5d0cec29915946fd0c02bc2775ad54edfb2715c9e0e197e28e0e1a6505fafec1f24d848c18afc2acb48992cab420200e06db88bc50b985932b40b16bddfdf29480fbddf106f8a5caf40d0304e45ab7c19cea65e834ef6742c413563657b8d7c27b30f85fab4fc041b50c532ea646b0755437603f1a05f87b8d67976f3ae9e729c3fb8ddb91f26d7b26f003c1a8efae40acb42360ea5144d550203e38c4e0329e6c42353b08ef1278dc529cf272b2f8e32b578f6d874fbae55f12db0081a2a6b543a418e74b121e1698eadb8f1ef214d38c403768f4df4b96b2a97c18c584b8a81f3fedd0b0653c9380bb7b42db34217a4b2e57c07de829381de337f65415f794c02192ce775e6788b4d7bf3d06f5e027b89824853b086839c75932dcf6f43c5cfe72b8d89401c8ae441f15337483e46bb09cdf6394f4be8f66415cf842f4567d114dc50f3a2c15b54e4fe65b24bc9ffabe9ce60115f309b510f5433da6fb2cc0d9ff04282b355567841a4c04ffcb47d39d5da114fc167b4e8e35437cf55e7d84b3ef27c7a0390c76643e58691d55196fbd2e3070a9308d76af61c4b43005981ef641be82f6eb80ae69a60ec4e78f99cef86f84bc9ad1101397648dfd15b51dac18cdd46c58f433772c6598364b351e1ea15e21eaa5889ad09e6400c72cb3162034838141a86338ca2f47d0f88d6c0ca13729999d0d7233c7d91bfb8359c5b3e7248f6034a57b28299f6465cddb2622a8c07c221beaa2236a04fb9d3c52e5548d0f0f4506ff8ab3d5e24be3d9d11ac02ff44a8efef9145d16ec9af4fc0cb9d5428e70c62785c9a7bb3d818f7403d2547ff80e9bcd922fe58598590d14eddda8fd07aac6776a6ce015c7dd2cc8eafbd927f7ffc8f519b327e3759e7f41ffee8d4a2121d9b9b4ceb32fd820fff7ad156c74604cab787135cc27b715aa26671fe99a5b9b2f47694f0b8183a266a90ef7c724f95c39e3725e2e54c1bfec568dbf42150ff0cf200c6b22d52ffa932443d62a61e3890cee62516fb0dec3c4d310225ee20a3f29b3dd12f3b1d09225a9a6caf3c2e467f47b92ed3888ea6d7095d8c00a78f36c64a28c2feb102a661e7e4642b8ef4eb3fce7846060873c6a64f76081eb765cd9537d2e08c8bc44d07abc3e77b8e0dd366849d63b11667f5e64b96e89b2ef5fe21b4f5425a7ddc257ddd0202e241060e641341faf01b5ae6577e399fb7714a19add131bf9a89a5d5796140ade0561952c3ff17fc2a6a76efaaa13bd1758d79aa0c85cf6d2617c028ac1f3d5e45a4dd6f0957ebe735e1971251942ebf3927db2254bd5a496eb0a77ad70ced2f70aa837319c454a73041c76c6e01da43bb891140d845528c7c5a26f0dc4dc21d592ef72a105cb3677b9a11a63678882b16aee511b40bd177ec7d3ef272ce23839920c104aafc2f46a99a313a54655bf3ed9fa1492fafb57239ba23ef9325825728ef2d878290f83ac338284b863342353eec1bd132055ebb7d79cecd490b02c8e909cc47ec408f5b8d9571055a7976f54a7ed746e7800ad1f0540ae4046e2256b3afa18f98f28b197ed80f9cdeb2795e41558afd12ae6af37c8911a14235319bca43790c3b6b7b53f63ad85fa83f8f96f5b0460da232f7c239888f352d47b2e8d475d1229afb17143e95e06f786cebdab36d8ce9d281b48562e8b9b00991d1530639a8c5df2ddf58a2c836384b25eac8bf41252fdb8f6a22a88cbe9939fdb098d53a090ecf29e1840bb3b40ee5fc4cabf1fb4014c6aca89f9a781d21a5b14adef25cb2afc83c1f2e3a68ee9994d93f211d3eda73f921911ffec1d558a5e555d8663d3464e866d4985785d621b5fb01767978ee3a7a8356ab681537d17eca71a5dc5d25ab9f182a75b68b650b1a7b0e27b70aacbfe32912bf97ab9e9360f4e6263178c4568da1aede597ffae2ee62fa22fd42e667dac1b48acb807e7083c216a5ec3541cacb8af570fbf050b8f0b93d4f532f110f430d4b08dfbb88e00a6c260a240384ac924096a9d9a17e7580c3304e16ca73f3d6903d72921bba5e4c7a6fce1cb97cf0fc137ba4a1bdcf112e423188c55152559610ed7ae1479db0998bd3cb1ed893e82ff38c958d1e7c693a74ce26254ee515939f96089ccbdc602e225b914fce6b4a6cb193de80328b6eb5d4708405cd7f076d23858ddee1e2c5a68209b0cca0b2f3384dc9c161c62d43597f291162787d0caa3af350f37e76b26e77185aa570a3ff962debd2467abc6e4a06f58753c26edab7718f17f2f57ed7d93dfea748780f57bb1270bb59c9e5f3f9bce8d3c5d2c2f3054313e7987c6e8d0771b923122bc969f7d3fc78c2f3cb04a4c6f75592070773cf2a4573e9c9bd9ac3f28226581f76fd4fd369d99e50c0e35a81617089fb496b2c9c1186fde48682e4a319e4feb7590ce561a9bc4aa1b89910c6d9b124a7b68e9f6706f82eb35e12465fdefccc3e5d8dc11264e3b5baa746ef2822c97b65e6361b26b6c51d1d54a9b1ed5da29bf7717f11abb3d59d7c3b54cd1afd0effdbb73dcb2037f6c73ae29400862877bdae935e354c7b275615192eeb904ac8f1f2d08e83a370714e205f66400a17fe4b6b864d358cbffe04a78d5baeba230956e68569ac3fcd854b639b612095e4e7e405713616d69fca80e18f13b1185f1be523ec08794d326e7c2e218ad94e954e10fa37aa5adadc6a6d6e9e238909e7329b016543ec4e7e648efac549cf156bd4b2b7b3a78cfa9ffcfe4fd5d715d11a3a3105df5a27619200843de421d840a893e94e52d70ddb7a6b06f8c675e4dec51726e41e34cd9aeb753cc8123b5b276cc6e76671821994d802e87e6b4ecc84af312bdd4d7d310e89989a0fe976fba8a48bb71655197adceb140de613d1652e9d61d54bea56573c75ace8403cc5c05e637e225327323bd9e0ac1f8bf933625f07ccd7769235a005c0c738e84225c07651220711e991534cd58c2b1f5a5cecdbfc5feed7f5feb119a064a8bc93b6e680e742c0ba33f27059ca62c192983bcb075211db531d7c4cf85ca7a4f833c01ec1bddca9e4072dc854a7db6788bac2f03a86951621c75b0b5827d3f92f9ffd20633a7d2cd55441fe9fcd1658b4f4799caf995a4cd7aa829dd2e24f40", &(0x7f0000000040), 0x3, 0x0, 0x33, 0x6f, &(0x7f0000000100)="46cc00117877b1d08f679b92d46ce23b736d0feb470f4e1d46f158db88cf3de81ac77bccb45147c5d8b3964b10d7310feec810", &(0x7f0000000240)="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", 0x2, 0x0, 0x7ffc}, 0x21) 3m23.970789528s ago: executing program 4 (id=3836): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet6_int(r0, 0x29, 0x21, &(0x7f0000000040)=0x14, 0x4) sendmmsg$inet6(r0, &(0x7f0000000440)=[{{&(0x7f0000000000)={0xa, 0x4e26, 0x100000, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x1e}, 0x1c, &(0x7f0000000580)=[{&(0x7f00000000c0)="207dd559722cc57dc74b15384a79387d57ee0426193788e1ff2237f9d1e72a068c5e29", 0x23}], 0x1}}, {{&(0x7f0000000080)={0xa, 0x10, 0x9, @rand_addr=' \x01\x00', 0x8}, 0x1c, &(0x7f00000002c0)=[{&(0x7f0000000140)="c19eb393e0c0", 0x6}], 0x1}}], 0x2, 0x200400c0) 3m22.746841774s ago: executing program 4 (id=3839): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x1001a, &(0x7f0000000240)={[{@jqfmt_vfsv1}, {@resuid={'resuid', 0x3d, 0xee01}}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@block_validity}, {@jqfmt_vfsv1}]}, 0x1, 0x42e, &(0x7f0000000940)="$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") syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000000)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) syz_mount_image$fuse(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x8820, &(0x7f0000000240)=ANY=[], 0x1, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0) 3m20.80651678s ago: executing program 4 (id=3845): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000280)={0xa, 0x4e22, 0x9, @loopback, 0x6}, 0x1c) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0x23, @loopback, 0x23}, 0x1c) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x5c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_EXPR={0x20, 0x11, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0xfffff274}]}}}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40) sendmmsg$inet6(r0, &(0x7f00000000c0)=[{{0x0, 0x0, &(0x7f0000003640)=[{&(0x7f0000000540)="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", 0x116}], 0x1}}], 0x1, 0x4000001) 3m19.69041006s ago: executing program 4 (id=3849): mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0) chroot(&(0x7f0000000a40)='./file0\x00') move_mount(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x200) 3m15.866312694s ago: executing program 37 (id=3849): mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0) chroot(&(0x7f0000000a40)='./file0\x00') move_mount(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x200) 2m15.473571989s ago: executing program 0 (id=4095): r0 = socket(0x2, 0x80805, 0x0) sendmmsg$inet_sctp(r0, &(0x7f0000001a40)=[{&(0x7f0000000000)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, 0x0}], 0x1, 0x0) r1 = socket$inet(0x2, 0x80001, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000080)={r2, 0x7}, 0x8) 2m14.554030723s ago: executing program 0 (id=4100): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x12, &(0x7f0000000040)=ANY=[@ANYBLOB="180200000000000000000000000031d0851000000600000018040000", @ANYRES32=0x0], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x49, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xecc}, 0x94) 2m13.764622847s ago: executing program 0 (id=4104): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x8000002) r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000004c0)={'macvlan1\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="480000001000010025bd7100fddbdf2500000000", @ANYRES32=r1], 0x48}, 0x1, 0x0, 0x0, 0x4004855}, 0x4840) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x26008094}, 0x4008000) 2m12.828237156s ago: executing program 0 (id=4108): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x60, 0x30, 0x1, 0x0, 0x0, {}, [{0x4c, 0x1, [@m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{}, 0x7c}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x800}, 0x40000) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) socket$nl_generic(0x10, 0x3, 0x10) chdir(&(0x7f0000000300)='./file0\x00') openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000001540)={0x40, 0x0, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_TAGLST={0xc, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x4}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x14, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa4ef}]}, {0x4}]}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x800}, 0x24008000) r1 = socket$inet_sctp(0x2, 0x5, 0x84) bind$inet(r1, &(0x7f0000000480)={0x2, 0x4e22, @empty}, 0x10) sendto$inet(r1, &(0x7f00000004c0)="ab", 0xff04, 0xc0, &(0x7f00000001c0)={0x2, 0x4e22, @local}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f00000000c0), 0x10}, 0x94) timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000)) openat$sysctl(0xffffffffffffff9c, 0x0, 0x1, 0x0) 2m4.774372701s ago: executing program 0 (id=4135): r0 = socket(0x10, 0x80002, 0x0) socket(0x200000000000011, 0x2, 0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge_slave_1\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x5d56879bffda847b, &(0x7f0000000100)={&(0x7f0000000180)=@RTM_NEWMDB={0x38, 0x54, 0xe5, 0x70bd2a, 0xffffffff, {}, [@MDBA_SET_ENTRY={0x20, 0x1, {r2, 0x1, 0x3, 0x3, {@ip4=@loopback}}}]}, 0x38}}, 0x0) sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0) 2m3.744610009s ago: executing program 0 (id=4139): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00') sendfile(r2, r3, 0x0, 0xc01) r4 = socket(0x10, 0x803, 0x0) write(r4, 0x0, 0x0) r5 = openat$vimc0(0xffffff9c, &(0x7f0000000180), 0x2, 0x0) ioctl$VIDIOC_STREAMOFF(r5, 0x40045613, &(0x7f0000000280)=0x8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @pix={0x434c, 0x8, 0x584e4f53, 0x4, 0x2, 0x7, 0x0, 0x5, 0x1, 0x4, 0x2, 0x7}}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8) r7 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r7, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) syz_emit_ethernet(0xbe, &(0x7f0000000000)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x23}, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698d0a881c51852e4451b57d037ad3c045942824251d7d17b5191584bcd4fbe40a23424d", "bcfd56f1375461caaa2f19935e6996c7096ffeeb0300000000000064", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x2003}, 0x94) r8 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000200)='syzkaller\x00', 0x9}, 0x94) ioctl$BTRFS_IOC_SCRUB(r1, 0xc400941b, &(0x7f0000000900)={0x0, 0xd, 0x5, 0x1}) ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f0000000d40)={0x1, 0x0, {0x5, @struct={0x3, 0x8}, 0x0, 0x8, 0x7ff, 0x6, 0x80, 0x9, 0x0, @struct={0x0, 0xffff}, 0x161, 0xffffffff, [0xfffffffffffffffe, 0x4, 0x4, 0x4, 0x8, 0xa8]}, {0xffffffffffffffff, @usage=0xaa, 0x0, 0x5, 0x5, 0xfffffffffffffff0, 0x10000, 0x3, 0x400, @struct={0x1c, 0xfffffff2}, 0xfffffff8, 0x10001, [0x8000000000000000, 0x1000, 0x3, 0x7, 0x2, 0x7fffffff]}, {0x78c0, @struct={0x2, 0x6}, r9, 0x9, 0x9, 0x1, 0x20, 0x51, 0xc, @usage=0x9, 0x2, 0x7, [0x40, 0x3, 0x4d9, 0x8000000000000000, 0x31e6, 0x7]}, {0x501, 0x0, 0x4}}) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r8, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) recvmmsg(r7, &(0x7f00000024c0)=[{{0x0, 0x0, &(0x7f0000000d00)=[{&(0x7f0000000800)=""/245, 0xf5}], 0x1}, 0x9}], 0x1, 0x10000, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r10, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xa}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0) 1m48.211189799s ago: executing program 38 (id=4139): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00') sendfile(r2, r3, 0x0, 0xc01) r4 = socket(0x10, 0x803, 0x0) write(r4, 0x0, 0x0) r5 = openat$vimc0(0xffffff9c, &(0x7f0000000180), 0x2, 0x0) ioctl$VIDIOC_STREAMOFF(r5, 0x40045613, &(0x7f0000000280)=0x8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @pix={0x434c, 0x8, 0x584e4f53, 0x4, 0x2, 0x7, 0x0, 0x5, 0x1, 0x4, 0x2, 0x7}}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8) r7 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r7, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) syz_emit_ethernet(0xbe, &(0x7f0000000000)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x23}, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698d0a881c51852e4451b57d037ad3c045942824251d7d17b5191584bcd4fbe40a23424d", "bcfd56f1375461caaa2f19935e6996c7096ffeeb0300000000000064", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x2003}, 0x94) r8 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000200)='syzkaller\x00', 0x9}, 0x94) ioctl$BTRFS_IOC_SCRUB(r1, 0xc400941b, &(0x7f0000000900)={0x0, 0xd, 0x5, 0x1}) ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f0000000d40)={0x1, 0x0, {0x5, @struct={0x3, 0x8}, 0x0, 0x8, 0x7ff, 0x6, 0x80, 0x9, 0x0, @struct={0x0, 0xffff}, 0x161, 0xffffffff, [0xfffffffffffffffe, 0x4, 0x4, 0x4, 0x8, 0xa8]}, {0xffffffffffffffff, @usage=0xaa, 0x0, 0x5, 0x5, 0xfffffffffffffff0, 0x10000, 0x3, 0x400, @struct={0x1c, 0xfffffff2}, 0xfffffff8, 0x10001, [0x8000000000000000, 0x1000, 0x3, 0x7, 0x2, 0x7fffffff]}, {0x78c0, @struct={0x2, 0x6}, r9, 0x9, 0x9, 0x1, 0x20, 0x51, 0xc, @usage=0x9, 0x2, 0x7, [0x40, 0x3, 0x4d9, 0x8000000000000000, 0x31e6, 0x7]}, {0x501, 0x0, 0x4}}) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r8, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) recvmmsg(r7, &(0x7f00000024c0)=[{{0x0, 0x0, &(0x7f0000000d00)=[{&(0x7f0000000800)=""/245, 0xf5}], 0x1}, 0x9}], 0x1, 0x10000, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r10, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xa}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0) 13.535199444s ago: executing program 7 (id=4500): prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) r2 = epoll_create1(0x80000) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000180)={0x2000101c}) epoll_pwait(r2, &(0x7f00000000c0)=[{}], 0x1, 0x80000000, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 12.312485654s ago: executing program 7 (id=4505): ioprio_get$pid(0x3, 0x0) 11.710874908s ago: executing program 7 (id=4506): r0 = socket(0x10, 0x80002, 0x0) r1 = socket(0x200000000000011, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) r3 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'bridge_slave_1\x00'}) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=@RTM_NEWMDB={0x18, 0x54, 0xe5, 0x70bd2a, 0xffffffff, {0x7, r2}}, 0x18}}, 0x0) sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0) 10.775057458s ago: executing program 7 (id=4510): socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) 9.881150258s ago: executing program 7 (id=4512): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000900)=[@in={0x2, 0x4e23, @loopback}, @in6={0xa, 0x0, 0x0, @loopback, 0x7ff}], 0x2c) sendto$inet6(r0, &(0x7f00000009c0)='\\', 0x1, 0x20000081, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback, 0x5}, 0x1c) setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000580)={0x41, 0x80, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x8}, 0xe) recvmmsg(r0, &(0x7f0000000800), 0x0, 0x0, 0x0) 9.624553282s ago: executing program 9 (id=4515): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000280)={0x1c, 0x5e, 0x1, 0x4, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64=0x8000000000000001}]}, 0x1c}], 0x1}, 0x0) 8.610122327s ago: executing program 7 (id=4517): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = dup(0xffffffffffffffff) sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0) r4 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c) unlink(0x0) bind$inet6(r4, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendto$inet6(r4, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) socket$nl_netfilter(0x10, 0x3, 0xc) r5 = syz_open_dev$I2C(&(0x7f0000000040), 0x0, 0x0) ioctl$I2C_SMBUS(r5, 0x720, &(0x7f0000000000)={0x0, 0x0, 0x3, &(0x7f00000000c0)={0x19, "90f50180e64f61909103f1fbbc2b81c9f144d76e44c700100000e52829e7cb8393"}}) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x79, 0x11, 0xa8}, [@ldst={0x5}], {0x95, 0x0, 0x74}}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x48) 7.452550051s ago: executing program 9 (id=4520): r0 = socket(0x10, 0x80002, 0x0) r1 = socket(0x200000000000011, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) r3 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'bridge_slave_1\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x5d56879bffda847b, &(0x7f0000000100)={&(0x7f0000000180)=@RTM_NEWMDB={0x38, 0x54, 0xe5, 0x70bd2a, 0xffffffff, {0x7, r2}, [@MDBA_SET_ENTRY={0x20, 0x1, {r4, 0x1, 0x3, 0x3, {@ip4=@loopback}}}]}, 0x38}}, 0x0) sendmmsg$alg(r0, 0x0, 0x0, 0x0) 5.847818724s ago: executing program 8 (id=4523): write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0xfffffd2c) r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0) r1 = syz_io_uring_setup(0xcaf, &(0x7f0000000100)={0x0, 0xb601, 0x1, 0x5, 0x9c3}, &(0x7f00000001c0)=0x0, &(0x7f00000000c0)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r0, 0xc000000, &(0x7f0000000000), 0x0, 0x1e}) io_uring_enter(r1, 0x847ba, 0x0, 0xe, 0x0, 0x0) 5.562752519s ago: executing program 9 (id=4524): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000002c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x30, 0x0, 0x1, 0x2, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_STA_PLINK_ACTION={0x5, 0x19, 0x1}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000840}, 0x4000000) 5.517754005s ago: executing program 1 (id=4525): r0 = socket(0xa, 0x5, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000280)={0xa, 0x4e22, 0x9, @loopback, 0x6}, 0x1c) setsockopt$sock_int(r1, 0x1, 0x2e, 0x0, 0x0) connect$inet6(r1, &(0x7f0000000140)={0xa, 0x4e22, 0x23, @loopback, 0x23}, 0x1c) close(0x3) r2 = dup(r1) read$FUSE(r2, &(0x7f00000075c0)={0x2020}, 0x2020) sendto$inet6(r0, &(0x7f0000000040)='\x00', 0x1, 0x44004, &(0x7f0000000100)={0xa, 0x4e24, 0xb, @loopback, 0xc5f}, 0x1c) 5.219772347s ago: executing program 3 (id=4526): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_RES_CQ_GET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x10, 0x1418, 0x1, 0x0, 0x25dfdbfc}, 0x10}, 0x1, 0x0, 0x0, 0x4008885}, 0x0) 4.89064254s ago: executing program 8 (id=4527): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000900)=[@in={0x2, 0x4e23, @loopback}, @in6={0xa, 0x0, 0x0, @loopback, 0x7ff}], 0x2c) sendto$inet6(r0, &(0x7f00000009c0)='\\', 0x1, 0x20000081, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback, 0x5}, 0x1c) setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000580)={0x41, 0x80, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x8}, 0xe) recvmmsg(r0, &(0x7f0000000800), 0x0, 0x0, 0x0) 4.531375851s ago: executing program 1 (id=4528): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000a40)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000011000000850000001500000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x2e00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) 4.440768336s ago: executing program 3 (id=4529): sched_setattr(0x0, 0x0, 0x0) ioprio_get$pid(0x3, 0x0) 4.189090595s ago: executing program 9 (id=4530): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x2, 0x301, 0x0, 0x0, {0x7, 0x0, 0x9}}, 0x14}, 0x1, 0x0, 0x0, 0x20000050}, 0x4c844) 3.778442259s ago: executing program 1 (id=4531): socket$inet_icmp(0x2, 0x2, 0x1) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19) syz_open_procfs(0x0, 0x0) r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_SYS_SET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x10, 0x1407, 0x1, 0x70bd2a, 0x25dfdbfe}, 0x10}, 0x1, 0x0, 0x0, 0x4000}, 0x10) r1 = socket(0x80000000000000a, 0x1, 0x0) setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000080)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108) socket$inet6(0xa, 0x80002, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000040)) sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xb112a9ec4e683601}, {0xfff3}}}, 0x24}}, 0x0) setsockopt$inet6_group_source_req(r1, 0x29, 0x2f, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108) r3 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg$unix(r3, &(0x7f0000002a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000800)={0xffffffffffffffff}) ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f0000000100)={'netdevsim0\x00', &(0x7f0000000040)=@ethtool_ringparam={0x33, 0x7f, 0x20000a2e, 0x0, 0x0, 0x3, 0x2000000, 0x0, 0x3000000}}) 3.726557905s ago: executing program 3 (id=4532): r0 = socket$inet6(0xa, 0x3, 0x88) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0) syz_emit_ethernet(0x83, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030486dd601b8b97004d88c19e9ace5ffb2e9fc603dd282100000002ff0200"/51], 0x0) 3.359788575s ago: executing program 8 (id=4533): sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB="30000000010800000267ca182c14000200fe"], 0x30}}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000580)={0x1ff, 0x0, 0x1000, 0x1000, &(0x7f0000456000/0x1000)=nil}) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000000080000004d564b00"]) 3.080203485s ago: executing program 3 (id=4534): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0xffffffffffffffff, 0x70bd25, 0x25dfd9fe, {0x0, 0x0, 0x0, 0x0, 0x2017, 0x2021}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MACADDR_MODE={0x8, 0x3, 0x3}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x1}, 0x8000002) r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000004c0)={'macvlan1\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB, @ANYRES32=r1], 0x48}, 0x1, 0x0, 0x0, 0x4004855}, 0x4840) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x26008094}, 0x4008000) 2.907820113s ago: executing program 9 (id=4535): r0 = socket(0x10, 0x80002, 0x0) r1 = socket(0x200000000000011, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) r3 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'bridge_slave_1\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x5d56879bffda847b, &(0x7f0000000100)={&(0x7f0000000180)=@RTM_NEWMDB={0x38, 0x54, 0xe5, 0x70bd2a, 0xffffffff, {0x7, r2}, [@MDBA_SET_ENTRY={0x20, 0x1, {r4, 0x1, 0x3, 0x3, {@ip4=@loopback}}}]}, 0x38}}, 0x0) sendmmsg$alg(r0, 0x0, 0x0, 0x0) 2.38053603s ago: executing program 3 (id=4536): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x7, 0x3, &(0x7f0000001780)) r0 = syz_io_uring_setup(0x34b7, &(0x7f0000000000)={0x0, 0x0, 0x30c0, 0x0, 0x28}, 0x0, 0x0) io_uring_register$IORING_REGISTER_ENABLE_RINGS(r0, 0xc, 0xf0, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000380)='clear_refs\x00') writev(r1, &(0x7f0000000100)=[{&(0x7f0000000000)='4', 0x1}], 0x1) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 2.248896006s ago: executing program 1 (id=4537): write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0xfffffd2c) r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0) r1 = syz_io_uring_setup(0xcaf, &(0x7f0000000100)={0x0, 0xb601, 0x1, 0x5, 0x9c3}, &(0x7f00000001c0)=0x0, &(0x7f00000000c0)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r0, 0xc000000, &(0x7f0000000000), 0x0, 0x1e}) io_uring_enter(r1, 0x847ba, 0x0, 0xe, 0x0, 0x0) 2.016799262s ago: executing program 8 (id=4538): r0 = socket(0xa, 0x5, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000280)={0xa, 0x4e22, 0x9, @loopback, 0x6}, 0x1c) setsockopt$sock_int(r1, 0x1, 0x2e, &(0x7f0000000080)=0x40, 0x4) connect$inet6(r1, 0x0, 0x0) close(0x3) r2 = dup(r1) read$FUSE(r2, &(0x7f00000075c0)={0x2020}, 0x2020) sendto$inet6(r0, &(0x7f0000000040)='\x00', 0x1, 0x44004, &(0x7f0000000100)={0xa, 0x4e24, 0xb, @loopback, 0xc5f}, 0x1c) 1.398804409s ago: executing program 9 (id=4539): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = dup(0xffffffffffffffff) sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0) r3 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c) unlink(0x0) bind$inet6(r3, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendto$inet6(r3, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) socket$nl_netfilter(0x10, 0x3, 0xc) r4 = syz_open_dev$I2C(&(0x7f0000000040), 0x0, 0x0) ioctl$I2C_SMBUS(r4, 0x720, &(0x7f0000000000)={0x0, 0x0, 0x3, &(0x7f00000000c0)={0x19, "90f50180e64f61909103f1fbbc2b81c9f144d76e44c700100000e52829e7cb8393"}}) syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000340)=0xfffffffc, 0x0, 0x4) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) 1.344233891s ago: executing program 3 (id=4540): sched_setscheduler(0x0, 0x2, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) r2 = epoll_create1(0x80000) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000180)={0x2000101c}) epoll_pwait(r2, &(0x7f00000000c0)=[{}], 0x1, 0x80000000, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 1.298442908s ago: executing program 1 (id=4541): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000a40)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000011000000850000001500000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x7, 0x0, &(0x7f0000000100)="e0857f9f582f03", 0x0, 0x2e00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) 1.123144321s ago: executing program 8 (id=4542): sched_setattr(0x0, 0x0, 0x0) ioprio_get$pid(0x3, 0x0) 580.048727ms ago: executing program 1 (id=4543): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000900)=[@in={0x2, 0x4e23, @loopback}, @in6={0xa, 0x0, 0x0, @loopback, 0x7ff}], 0x2c) sendto$inet6(r0, &(0x7f00000009c0)='\\', 0x1, 0x20000081, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback, 0x5}, 0x1c) setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000580)={0x41, 0x80, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x8}, 0xe) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0}, 0x8393}], 0x1, 0x0, 0x0) 0s ago: executing program 8 (id=4544): r0 = socket$inet6(0xa, 0x3, 0x88) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0) syz_emit_ethernet(0x83, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030486dd601b8b97004d88c19e9ace5ffb2e9fc603dd282100000002ff0200"/51], 0x0) kernel console output (not intermixed with test programs): to HW filter on device bond0 [ 769.948015][T13342] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 770.082863][T13236] 8021q: adding VLAN 0 to HW filter on device team0 [ 770.124794][T13345] loop6: detected capacity change from 0 to 512 [ 770.174183][ T4561] bridge0: port 1(bridge_slave_0) entered blocking state [ 770.181812][ T4561] bridge0: port 1(bridge_slave_0) entered forwarding state [ 770.297020][ T5096] bridge0: port 2(bridge_slave_1) entered blocking state [ 770.304641][ T5096] bridge0: port 2(bridge_slave_1) entered forwarding state [ 772.533322][T13236] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 772.580959][ T1866] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 772.763154][ T1866] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 773.004404][ T1866] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 773.224612][ T1866] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 773.409755][T13387] loop6: detected capacity change from 0 to 512 [ 773.669999][T13387] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 773.958173][ T1866] bridge_slave_1: left allmulticast mode [ 773.964059][ T1866] bridge_slave_1: left promiscuous mode [ 773.972645][ T1866] bridge0: port 2(bridge_slave_1) entered disabled state [ 774.134947][ T1866] bridge_slave_0: left allmulticast mode [ 774.143033][ T1866] bridge_slave_0: left promiscuous mode [ 774.149940][ T1866] bridge0: port 1(bridge_slave_0) entered disabled state [ 774.329877][T12218] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 775.255320][ T1866] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 775.339936][ T1866] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 775.365431][ T1866] bond0 (unregistering): Released all slaves [ 775.782066][ T3602] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 775.790419][ T3602] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 776.141608][T13419] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2800'. [ 776.225406][T13422] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2802'. [ 776.367332][ T3602] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 776.375427][ T3602] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 776.589792][ T1866] hsr_slave_0: left promiscuous mode [ 776.619472][ T1866] hsr_slave_1: left promiscuous mode [ 776.627809][ T1866] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 776.635349][ T1866] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 776.741314][ T1866] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 776.749136][ T1866] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 776.874484][ T1866] veth1_macvtap: left promiscuous mode [ 776.880523][ T1866] veth0_macvtap: left promiscuous mode [ 776.886351][ T1866] veth1_vlan: left promiscuous mode [ 776.892572][ T1866] veth0_vlan: left promiscuous mode [ 776.951609][T13426] loop6: detected capacity change from 0 to 512 [ 777.125618][T13426] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 777.416003][T13432] loop2: detected capacity change from 0 to 512 [ 777.552686][T13432] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.2711: casefold flag without casefold feature [ 777.641406][T13432] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.2711: couldn't read orphan inode 15 (err -117) [ 777.741280][T13432] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 778.526831][ T1866] team0 (unregistering): Port device team_slave_1 removed [ 778.779722][ T1866] team0 (unregistering): Port device team_slave_0 removed [ 779.067066][T13453] overlayfs: failed to resolve './file0': -2 [ 779.535155][T13148] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 779.595213][T12218] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 779.823816][T13236] veth0_vlan: entered promiscuous mode [ 779.951479][T13236] veth1_vlan: entered promiscuous mode [ 780.185264][T13461] loop2: detected capacity change from 0 to 512 [ 780.230446][T13461] ext4: Unknown parameter 'nouser_xattr' [ 780.391195][T13236] veth0_macvtap: entered promiscuous mode [ 780.459800][T13236] veth1_macvtap: entered promiscuous mode [ 780.822529][T13236] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 780.882260][T13236] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 781.077518][ T3736] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 781.129331][ T3736] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 781.185827][ T1866] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 781.262899][ T1866] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 781.650088][T13477] loop6: detected capacity change from 0 to 512 [ 782.134537][T13477] EXT4-fs (loop6): 1 orphan inode deleted [ 782.143693][T13477] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 782.174570][T12415] Quota error (device loop6): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 782.188279][T12415] EXT4-fs error (device loop6): ext4_release_dquot:6969: comm kworker/u8:0: Failed to release dquot type 1 [ 782.302701][T13477] ext4 filesystem being mounted at /76/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 782.516925][T13477] EXT4-fs error (device loop6): ext4_lookup:1791: inode #2: comm syz.6.2816: deleted inode referenced: 16 [ 782.755782][T13494] overlayfs: failed to resolve './file0': -2 [ 782.793771][T13492] loop2: detected capacity change from 0 to 512 [ 783.024110][T13492] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 783.200001][T12218] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 783.700384][T13148] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 786.096261][T13546] overlayfs: failed to resolve './file0': -2 [ 787.897137][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 787.903935][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 788.791050][T13593] loop2: detected capacity change from 0 to 512 [ 788.837741][T13593] EXT4-fs: Ignoring removed mblk_io_submit option [ 788.879034][T13594] loop6: detected capacity change from 0 to 512 [ 788.933067][T13593] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 789.001652][T13594] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 789.073041][T13593] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a043c11c, mo2=0002] [ 789.137431][T13593] System zones: 1-12 [ 789.339857][T13593] EXT4-fs error (device loop2): ext4_iget_extra_inode:5104: inode #15: comm syz.2.2846: corrupted in-inode xattr: e_value size too large [ 789.418356][T13593] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.2846: couldn't read orphan inode 15 (err -117) [ 789.440001][T13593] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 789.517560][ T5096] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 789.525702][ T5096] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 789.637734][T12218] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 789.776879][T13593] EXT4-fs warning (device loop2): dx_probe:801: inode #2: comm syz.2.2846: Unrecognised inode hash code 4 [ 789.798007][T13593] EXT4-fs warning (device loop2): dx_probe:934: inode #2: comm syz.2.2846: Corrupt directory, running e2fsck is recommended [ 789.853236][ T3736] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 789.861598][ T3736] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 789.890081][T13593] EXT4-fs warning (device loop2): dx_probe:801: inode #2: comm syz.2.2846: Unrecognised inode hash code 4 [ 789.902244][T13593] EXT4-fs warning (device loop2): dx_probe:934: inode #2: comm syz.2.2846: Corrupt directory, running e2fsck is recommended [ 790.531960][T13148] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 791.316084][T13624] loop6: detected capacity change from 0 to 128 [ 791.402396][T13624] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 791.480442][T13624] ext4 filesystem being mounted at /85/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 792.225113][T12218] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 792.425901][T12219] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 792.449129][T12219] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 792.463712][T12219] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 792.516723][T12219] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 792.551072][T12219] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 793.177348][ T1151] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 793.266090][T13647] loop2: detected capacity change from 0 to 512 [ 793.376845][T13647] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349) [ 793.449141][ T1151] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 793.519068][T13647] EXT4-fs (loop2): orphan cleanup on readonly fs [ 793.549239][T13647] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:517: comm syz.2.2861: Block bitmap for bg 0 marked uninitialized [ 793.578629][T13647] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 793.595128][T13647] EXT4-fs (loop2): 1 orphan inode deleted [ 793.603503][T13647] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 793.653973][ T1151] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 793.758551][T13647] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended [ 793.863200][ T1151] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 793.875255][T13647] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 793.924100][T13653] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:517: comm syz.2.2861: Block bitmap for bg 0 marked uninitialized [ 794.000856][T13653] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:517: comm syz.2.2861: Block bitmap for bg 0 marked uninitialized [ 794.138532][T13653] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:517: comm syz.2.2861: Block bitmap for bg 0 marked uninitialized [ 794.242780][T13653] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:517: comm syz.2.2861: Block bitmap for bg 0 marked uninitialized [ 794.368224][T13653] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:517: comm syz.2.2861: Block bitmap for bg 0 marked uninitialized [ 794.619701][T13653] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:517: comm syz.2.2861: Block bitmap for bg 0 marked uninitialized [ 794.690136][T12219] Bluetooth: hci2: command tx timeout [ 794.918072][ T1151] bridge_slave_1: left allmulticast mode [ 794.923927][ T1151] bridge_slave_1: left promiscuous mode [ 794.930798][ T1151] bridge0: port 2(bridge_slave_1) entered disabled state [ 795.104652][ T1151] bridge_slave_0: left allmulticast mode [ 795.112339][ T1151] bridge_slave_0: left promiscuous mode [ 795.119608][ T1151] bridge0: port 1(bridge_slave_0) entered disabled state [ 795.297394][T13148] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 795.340768][T13666] overlayfs: fs on './bus' does not support file handles, falling back to index=off,nfs_export=off. [ 795.352430][T13666] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 796.199003][ T1151] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 796.282700][ T1151] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 796.364706][ T1151] bond0 (unregistering): Released all slaves [ 796.738306][T12219] Bluetooth: hci2: command tx timeout [ 797.338788][T13639] chnl_net:caif_netlink_parms(): no params data found [ 797.527984][ T1151] hsr_slave_0: left promiscuous mode [ 797.557666][ T1151] hsr_slave_1: left promiscuous mode [ 797.565645][ T1151] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 797.574208][ T1151] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 797.659488][ T1151] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 797.667241][ T1151] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 797.784682][ T1151] veth1_macvtap: left promiscuous mode [ 797.791112][ T1151] veth0_macvtap: left promiscuous mode [ 797.797051][ T1151] veth1_vlan: left promiscuous mode [ 797.802845][ T1151] veth0_vlan: left promiscuous mode [ 798.749192][ T1151] team0 (unregistering): Port device team_slave_1 removed [ 798.817415][T12219] Bluetooth: hci2: command tx timeout [ 798.865696][ T1151] team0 (unregistering): Port device team_slave_0 removed [ 800.301260][ T1151] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 800.465422][ T1151] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 800.650502][ T1151] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 800.823807][ T1151] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 800.897495][T12219] Bluetooth: hci2: command tx timeout [ 801.483775][ T1151] bridge_slave_1: left allmulticast mode [ 801.489815][ T1151] bridge_slave_1: left promiscuous mode [ 801.496436][ T1151] bridge0: port 2(bridge_slave_1) entered disabled state [ 801.543771][ T1151] bridge_slave_0: left allmulticast mode [ 801.554847][ T1151] bridge_slave_0: left promiscuous mode [ 801.561798][ T1151] bridge0: port 1(bridge_slave_0) entered disabled state [ 802.078944][ T1151] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 802.129022][ T1151] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 802.165198][ T1151] bond0 (unregistering): Released all slaves [ 802.331275][T13639] bridge0: port 1(bridge_slave_0) entered blocking state [ 802.339200][T13639] bridge0: port 1(bridge_slave_0) entered disabled state [ 802.346883][T13639] bridge_slave_0: entered allmulticast mode [ 802.358638][T13639] bridge_slave_0: entered promiscuous mode [ 802.508054][T13639] bridge0: port 2(bridge_slave_1) entered blocking state [ 802.515708][T13639] bridge0: port 2(bridge_slave_1) entered disabled state [ 802.524675][T13639] bridge_slave_1: entered allmulticast mode [ 802.534514][T13639] bridge_slave_1: entered promiscuous mode [ 802.984685][T13639] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 803.079746][ T1151] hsr_slave_0: left promiscuous mode [ 803.107894][ T1151] hsr_slave_1: left promiscuous mode [ 803.115928][ T1151] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 803.124032][ T1151] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 803.180220][ T1151] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 803.190535][ T1151] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 803.357777][ T1151] veth1_macvtap: left promiscuous mode [ 803.363683][ T1151] veth0_macvtap: left promiscuous mode [ 803.369742][ T1151] veth1_vlan: left promiscuous mode [ 803.375277][ T1151] veth0_vlan: left promiscuous mode [ 804.288678][ T5813] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 804.299596][ T5813] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 804.317024][ T5813] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 804.381975][ T5813] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 804.433467][ T5813] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 805.065617][ T1151] team0 (unregistering): Port device team_slave_1 removed [ 805.109477][ T1151] team0 (unregistering): Port device team_slave_0 removed [ 805.517649][T13639] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 806.140518][T13639] team0: Port device team_slave_0 added [ 806.251666][T13639] team0: Port device team_slave_1 added [ 806.509639][ T5813] Bluetooth: hci4: command tx timeout [ 806.660935][T13639] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 806.672201][T13639] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 806.700325][T13639] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 806.939275][T13639] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 806.946506][T13639] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 806.978330][T13639] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 807.556064][T13639] hsr_slave_0: entered promiscuous mode [ 807.566667][T13639] hsr_slave_1: entered promiscuous mode [ 807.575958][T13639] debugfs: 'hsr0' already exists in 'hsr' [ 807.582154][T13639] Cannot create hsr debugfs directory [ 808.030540][T13748] chnl_net:caif_netlink_parms(): no params data found [ 808.578499][ T5813] Bluetooth: hci4: command tx timeout [ 808.826901][T13791] tap0: tun_chr_ioctl cmd 1074025681 [ 809.085296][T13639] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 809.319342][T13639] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 809.584467][T13639] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 809.609859][T13800] loop7: detected capacity change from 0 to 512 [ 809.726904][T13800] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349) [ 809.800579][T13800] EXT4-fs (loop7): orphan cleanup on readonly fs [ 809.824296][T13800] EXT4-fs error (device loop7): ext4_read_block_bitmap_nowait:517: comm syz.7.2905: Block bitmap for bg 0 marked uninitialized [ 809.861163][T13800] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 809.944586][T13800] EXT4-fs (loop7): 1 orphan inode deleted [ 809.952957][T13800] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 809.964061][T13639] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 810.183731][T13748] bridge0: port 1(bridge_slave_0) entered blocking state [ 810.193025][T13748] bridge0: port 1(bridge_slave_0) entered disabled state [ 810.201003][T13748] bridge_slave_0: entered allmulticast mode [ 810.210960][T13748] bridge_slave_0: entered promiscuous mode [ 810.274254][T13236] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 810.341514][T13748] bridge0: port 2(bridge_slave_1) entered blocking state [ 810.353877][T13748] bridge0: port 2(bridge_slave_1) entered disabled state [ 810.362746][T13748] bridge_slave_1: entered allmulticast mode [ 810.372383][T13748] bridge_slave_1: entered promiscuous mode [ 810.573368][T13814] loop2: detected capacity change from 0 to 164 [ 810.660542][ T5813] Bluetooth: hci4: command tx timeout [ 811.014163][T13639] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 811.107654][T13748] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 811.149516][T13639] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 811.238459][T13748] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 811.305078][T13639] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 811.439799][T13821] loop2: detected capacity change from 0 to 512 [ 811.589250][T13639] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 811.626794][T13748] team0: Port device team_slave_0 added [ 811.648764][T13748] team0: Port device team_slave_1 added [ 811.717984][T13821] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.2911: casefold flag without casefold feature [ 811.767500][T13821] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.2911: couldn't read orphan inode 15 (err -117) [ 811.801722][T13821] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 812.064020][T13748] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 812.072851][T13748] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 812.101357][T13748] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 812.219971][T13748] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 812.228426][T13748] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 812.254786][T13748] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 812.760432][ T5813] Bluetooth: hci4: command tx timeout [ 812.850733][T13748] hsr_slave_0: entered promiscuous mode [ 812.860959][T13748] hsr_slave_1: entered promiscuous mode [ 812.869807][T13748] debugfs: 'hsr0' already exists in 'hsr' [ 812.875695][T13748] Cannot create hsr debugfs directory [ 813.032062][T13836] overlayfs: failed to clone upperpath [ 813.102733][T13148] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 813.476898][ T3475] bridge_slave_1: left allmulticast mode [ 813.484602][ T3475] bridge_slave_1: left promiscuous mode [ 813.491457][ T3475] bridge0: port 2(bridge_slave_1) entered disabled state [ 813.556983][ T3475] bridge_slave_0: left allmulticast mode [ 813.562974][ T3475] bridge_slave_0: left promiscuous mode [ 813.570048][ T3475] bridge0: port 1(bridge_slave_0) entered disabled state [ 814.225120][ T3475] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 814.281186][ T3475] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 814.335669][ T3475] bond0 (unregistering): Released all slaves [ 815.302079][ T3475] hsr_slave_0: left promiscuous mode [ 815.328211][ T3475] hsr_slave_1: left promiscuous mode [ 815.335976][ T3475] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 815.343780][ T3475] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 815.380821][ T3475] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 815.388619][ T3475] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 815.453331][ T3475] veth1_macvtap: left promiscuous mode [ 815.461157][ T3475] veth0_macvtap: left promiscuous mode [ 815.467011][ T3475] veth1_vlan: left promiscuous mode [ 815.473814][ T3475] veth0_vlan: left promiscuous mode [ 816.911721][T13871] loop2: detected capacity change from 0 to 512 [ 817.195928][T13871] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 817.209579][T13871] ext4 filesystem being mounted at /28/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 817.470954][T13639] 8021q: adding VLAN 0 to HW filter on device bond0 [ 817.785031][T13748] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 817.906246][T13639] 8021q: adding VLAN 0 to HW filter on device team0 [ 817.922548][T13748] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 817.935884][T13148] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 818.021715][ T1151] bridge0: port 1(bridge_slave_0) entered blocking state [ 818.029259][ T1151] bridge0: port 1(bridge_slave_0) entered forwarding state [ 818.048780][T13748] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 818.070522][T13883] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2933'. [ 818.163491][ T1151] bridge0: port 2(bridge_slave_1) entered blocking state [ 818.171206][ T1151] bridge0: port 2(bridge_slave_1) entered forwarding state [ 818.228230][T13748] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 819.441834][T13895] loop2: detected capacity change from 0 to 128 [ 819.629985][T13895] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 819.748728][T13895] ext4 filesystem being mounted at /30/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 819.955703][T13903] loop7: detected capacity change from 0 to 512 [ 819.991009][T13748] 8021q: adding VLAN 0 to HW filter on device bond0 [ 820.152344][T13903] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 820.184955][T13748] 8021q: adding VLAN 0 to HW filter on device team0 [ 820.285883][T13148] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 820.344147][ T1866] bridge0: port 1(bridge_slave_0) entered blocking state [ 820.351849][ T1866] bridge0: port 1(bridge_slave_0) entered forwarding state [ 820.479347][ T1866] bridge0: port 2(bridge_slave_1) entered blocking state [ 820.486924][ T1866] bridge0: port 2(bridge_slave_1) entered forwarding state [ 820.812813][T13236] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 821.386087][T13639] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 822.100591][T13639] veth0_vlan: entered promiscuous mode [ 822.242975][T13639] veth1_vlan: entered promiscuous mode [ 822.271360][T13927] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2944'. [ 822.655026][T13639] veth0_macvtap: entered promiscuous mode [ 822.771473][T13639] veth1_macvtap: entered promiscuous mode [ 822.982493][T13639] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 823.069281][T13639] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 823.236425][ T3736] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 823.287858][ T3736] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 823.296880][ T3736] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 823.434691][ T3736] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 823.524372][T13748] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 825.125617][T13960] loop2: detected capacity change from 0 to 512 [ 825.314262][T13960] EXT4-fs error (device loop2): ext4_iget_extra_inode:5104: inode #15: comm syz.2.2951: corrupted in-inode xattr: e_value size too large [ 825.407871][T13960] EXT4-fs (loop2): Remounting filesystem read-only [ 825.416641][T13960] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 825.979778][T13975] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2954'. [ 826.542826][T13748] veth0_vlan: entered promiscuous mode [ 826.684423][T13748] veth1_vlan: entered promiscuous mode [ 826.829135][T13148] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 826.829467][ T5096] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 827.084209][ T5096] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 827.281054][ T5096] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 827.468081][ T5096] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 827.525583][T13748] veth0_macvtap: entered promiscuous mode [ 827.650796][T13748] veth1_macvtap: entered promiscuous mode [ 828.118117][T13748] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 828.142566][ T5096] bridge_slave_1: left allmulticast mode [ 828.149361][ T5096] bridge_slave_1: left promiscuous mode [ 828.155881][ T5096] bridge0: port 2(bridge_slave_1) entered disabled state [ 828.261182][ T5096] bridge_slave_0: left allmulticast mode [ 828.268727][ T5096] bridge_slave_0: left promiscuous mode [ 828.276580][ T5096] bridge0: port 1(bridge_slave_0) entered disabled state [ 828.958817][ T5096] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 829.007629][ T5096] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 829.032795][ T5096] bond0 (unregistering): Released all slaves [ 829.161234][T13748] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 829.270946][ T1866] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 829.477523][ T4561] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 829.486533][ T4561] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 829.700888][ T3602] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 829.811489][ T5096] hsr_slave_0: left promiscuous mode [ 829.839887][ T5096] hsr_slave_1: left promiscuous mode [ 829.848567][ T5096] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 829.856143][ T5096] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 829.909946][ T5096] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 829.917766][ T5096] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 829.978131][ T5096] veth1_macvtap: left promiscuous mode [ 829.983878][ T5096] veth0_macvtap: left promiscuous mode [ 829.990130][ T5096] veth1_vlan: left promiscuous mode [ 829.995643][ T5096] veth0_vlan: left promiscuous mode [ 830.385098][T14006] loop7: detected capacity change from 0 to 512 [ 830.545274][T14006] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 830.558569][T14006] ext4 filesystem being mounted at /36/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 830.874563][T14012] overlayfs: failed to clone upperpath [ 830.898318][T13236] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 831.107615][ T5096] team0 (unregistering): Port device team_slave_1 removed [ 831.149210][ T5096] team0 (unregistering): Port device team_slave_0 removed [ 831.297305][T12219] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 831.309561][T12219] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 831.319363][T12219] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 831.333316][T12219] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 831.359194][T12219] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 833.116213][T14034] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 833.274237][T14014] chnl_net:caif_netlink_parms(): no params data found [ 833.569527][T12219] Bluetooth: hci3: command tx timeout [ 833.760223][ T3602] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 833.769366][ T3602] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 834.035908][T14052] sock: sock_timestamping_bind_phc: sock not bind to device [ 834.086703][ T3602] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 834.095042][ T3602] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 834.321531][T14057] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2969'. [ 834.801700][T14064] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2970'. [ 835.451497][T14014] bridge0: port 1(bridge_slave_0) entered blocking state [ 835.459733][T14014] bridge0: port 1(bridge_slave_0) entered disabled state [ 835.467795][T14014] bridge_slave_0: entered allmulticast mode [ 835.477626][T14014] bridge_slave_0: entered promiscuous mode [ 835.618599][T12219] Bluetooth: hci3: command tx timeout [ 835.632426][T14014] bridge0: port 2(bridge_slave_1) entered blocking state [ 835.642574][T14014] bridge0: port 2(bridge_slave_1) entered disabled state [ 835.655840][T14014] bridge_slave_1: entered allmulticast mode [ 835.666003][T14014] bridge_slave_1: entered promiscuous mode [ 836.031892][T14014] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 836.123312][T14014] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 836.569749][T14014] team0: Port device team_slave_0 added [ 836.648592][T14014] team0: Port device team_slave_1 added [ 837.021172][T14014] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 837.028705][T14014] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 837.055570][T14014] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 837.263006][T14014] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 837.271524][T14014] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 837.305744][T14014] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 837.493937][T14104] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2980'. [ 837.719521][T12219] Bluetooth: hci3: command tx timeout [ 837.822048][T14014] hsr_slave_0: entered promiscuous mode [ 837.839767][T14014] hsr_slave_1: entered promiscuous mode [ 839.266887][ T3475] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 839.275135][ T3475] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 839.491963][T14014] netdevsim netdevsim9 netdevsim0: renamed from eth0 [ 839.579118][T14014] netdevsim netdevsim9 netdevsim1: renamed from eth1 [ 839.657889][ T4561] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 839.665922][ T4561] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 839.700036][T14014] netdevsim netdevsim9 netdevsim2: renamed from eth2 [ 839.779713][T12219] Bluetooth: hci3: command tx timeout [ 839.826637][T14014] netdevsim netdevsim9 netdevsim3: renamed from eth3 [ 841.042572][T14148] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2992'. [ 841.515648][T14155] loop7: detected capacity change from 0 to 512 [ 841.549511][T14014] 8021q: adding VLAN 0 to HW filter on device bond0 [ 841.558598][T14155] EXT4-fs: Ignoring removed oldalloc option [ 841.604794][T14155] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode [ 841.664940][T14155] EXT4-fs (loop7): corrupt root inode, run e2fsck [ 841.672843][T14155] EXT4-fs (loop7): mount failed [ 841.782902][T14014] 8021q: adding VLAN 0 to HW filter on device team0 [ 841.904358][ T4561] bridge0: port 1(bridge_slave_0) entered blocking state [ 841.912161][ T4561] bridge0: port 1(bridge_slave_0) entered forwarding state [ 842.066353][ T4561] bridge0: port 2(bridge_slave_1) entered blocking state [ 842.074036][ T4561] bridge0: port 2(bridge_slave_1) entered forwarding state [ 842.735163][T14172] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2999'. [ 843.226144][T14174] loop8: detected capacity change from 0 to 512 [ 843.570125][T14174] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 843.584334][T14174] ext4 filesystem being mounted at /3/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 844.303748][T13748] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 844.543111][T14014] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 844.590411][T14194] netlink: 96 bytes leftover after parsing attributes in process `syz.7.3005'. [ 844.804818][T14201] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3006'. [ 845.239566][T14207] loop7: detected capacity change from 0 to 512 [ 845.256610][T14207] EXT4-fs: Ignoring removed oldalloc option [ 845.323130][T14207] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode [ 845.381948][T14207] EXT4-fs (loop7): corrupt root inode, run e2fsck [ 845.388996][T14207] EXT4-fs (loop7): mount failed [ 846.274340][T14221] loop7: detected capacity change from 0 to 512 [ 846.561250][T14221] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 846.574523][T14221] ext4 filesystem being mounted at /53/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 847.231019][T13236] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 847.403658][T14014] veth0_vlan: entered promiscuous mode [ 847.592788][T14014] veth1_vlan: entered promiscuous mode [ 848.071091][T14014] veth0_macvtap: entered promiscuous mode [ 848.102679][T14244] netlink: 'syz.7.3016': attribute type 4 has an invalid length. [ 848.135440][T14014] veth1_macvtap: entered promiscuous mode [ 848.186264][T14245] loop8: detected capacity change from 0 to 512 [ 848.287776][T14245] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode [ 848.404457][T14245] EXT4-fs error (device loop8): ext4_free_branches:1023: inode #16: comm syz.8.3017: invalid indirect mapped block 4294967295 (level 0) [ 848.489751][T14014] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 848.525908][T14245] EXT4-fs (loop8): Remounting filesystem read-only [ 848.532623][T14251] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3019'. [ 848.629789][T14014] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 848.653366][T14245] EXT4-fs (loop8): 1 orphan inode deleted [ 848.663615][T14245] EXT4-fs (loop8): 1 truncate cleaned up [ 848.673359][T14245] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 848.819622][ T5096] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 848.882055][ T3736] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 848.967191][ T3736] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 849.009391][ T3736] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 849.093220][T14255] loop7: detected capacity change from 0 to 512 [ 849.140102][T14255] EXT4-fs: Ignoring removed oldalloc option [ 849.189128][T14255] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode [ 849.330527][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 849.337814][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 849.384337][T14255] EXT4-fs (loop7): corrupt root inode, run e2fsck [ 849.391729][T14255] EXT4-fs (loop7): mount failed [ 849.586273][T13748] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 850.970561][T14280] loop3: detected capacity change from 0 to 128 [ 851.215575][T14280] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 851.316250][T14280] ext4 filesystem being mounted at /15/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 851.479589][T14289] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3030'. [ 851.973126][T13639] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 852.531091][T14299] loop8: detected capacity change from 0 to 512 [ 852.600910][T14299] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode [ 852.862922][T14299] EXT4-fs error (device loop8): ext4_free_branches:1023: inode #16: comm syz.8.3033: invalid indirect mapped block 4294967295 (level 0) [ 852.948383][T14299] EXT4-fs (loop8): Remounting filesystem read-only [ 853.117494][T14299] EXT4-fs (loop8): 1 orphan inode deleted [ 853.124467][T14299] EXT4-fs (loop8): 1 truncate cleaned up [ 853.133539][T14299] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 854.052465][T13748] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 855.096315][T14333] loop7: detected capacity change from 0 to 2364 [ 855.170949][T14333] iso9660: Bad value for 'sbsector' [ 856.181995][T14354] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 856.191256][T14354] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 856.596878][T14359] loop3: detected capacity change from 0 to 512 [ 856.719184][T14359] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 856.729791][T14359] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 856.862600][T14359] EXT4-fs (loop3): 1 truncate cleaned up [ 856.870764][T14359] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 857.157473][T14359] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000. [ 857.597012][T13639] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 858.342617][ T3475] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 858.351544][ T3475] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 858.766746][ T3760] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 858.775425][ T3760] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 858.805066][T14387] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3055'. [ 859.204731][T14392] loop7: detected capacity change from 0 to 512 [ 859.277965][T14392] EXT4-fs (loop7): blocks per group (255) and clusters per group (8192) inconsistent [ 859.309429][T14394] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 859.318674][T14394] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 859.790084][T14398] loop9: detected capacity change from 0 to 512 [ 859.954415][T14398] EXT4-fs error (device loop9): ext4_orphan_get:1392: inode #15: comm syz.9.2959: iget: bad i_size value: 38620345925642 [ 860.097897][T14398] EXT4-fs error (device loop9): ext4_orphan_get:1397: comm syz.9.2959: couldn't read orphan inode 15 (err -117) [ 860.229762][T14398] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 861.012104][T14014] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 861.331698][T14401] loop8: detected capacity change from 0 to 8192 [ 861.781542][ T5813] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 861.801110][ T5813] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 861.816188][ T5813] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 861.870318][ T5813] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 861.895202][ T5813] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 863.639457][T14442] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 863.648671][T14442] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 863.771035][T14448] loop7: detected capacity change from 0 to 512 [ 864.020425][T14448] EXT4-fs error (device loop7): ext4_iget_extra_inode:5104: inode #15: comm syz.7.3070: corrupted in-inode xattr: invalid ea_ino [ 864.028369][ T5813] Bluetooth: hci5: command tx timeout [ 864.183686][T14448] EXT4-fs error (device loop7): ext4_orphan_get:1397: comm syz.7.3070: couldn't read orphan inode 15 (err -117) [ 864.279607][T14448] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 864.782306][T14422] chnl_net:caif_netlink_parms(): no params data found [ 865.178355][T13236] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 866.097656][ T5813] Bluetooth: hci5: command tx timeout [ 867.209800][T14490] overlayfs: missing 'lowerdir' [ 867.433333][T14422] bridge0: port 1(bridge_slave_0) entered blocking state [ 867.445139][T14422] bridge0: port 1(bridge_slave_0) entered disabled state [ 867.460752][T14422] bridge_slave_0: entered allmulticast mode [ 867.470659][T14422] bridge_slave_0: entered promiscuous mode [ 867.650050][T14422] bridge0: port 2(bridge_slave_1) entered blocking state [ 867.657938][T14422] bridge0: port 2(bridge_slave_1) entered disabled state [ 867.665694][T14422] bridge_slave_1: entered allmulticast mode [ 867.675441][T14422] bridge_slave_1: entered promiscuous mode [ 867.973467][T14422] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 868.051771][T14422] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 868.197458][ T5813] Bluetooth: hci5: command tx timeout [ 868.331745][T14422] team0: Port device team_slave_0 added [ 868.469275][T14422] team0: Port device team_slave_1 added [ 868.912881][T14422] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 868.920507][T14422] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 868.948854][T14422] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 869.183315][T14422] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 869.190999][T14422] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 869.217499][T14422] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 869.602927][T14503] loop3: detected capacity change from 0 to 8192 [ 869.906273][T14523] loop9: detected capacity change from 0 to 128 [ 869.940270][T14422] hsr_slave_0: entered promiscuous mode [ 869.953936][T14422] hsr_slave_1: entered promiscuous mode [ 869.962908][T14422] debugfs: 'hsr0' already exists in 'hsr' [ 869.969010][T14422] Cannot create hsr debugfs directory [ 870.041261][T14523] FAT-fs (loop9): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 870.125128][T14523] FAT-fs (loop9): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 870.263882][ T5813] Bluetooth: hci5: command tx timeout [ 870.966477][ T3760] FAT-fs (loop9): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 872.555251][T14547] loop7: detected capacity change from 0 to 512 [ 872.772560][T14547] EXT4-fs error (device loop7): ext4_orphan_get:1418: comm syz.7.3101: bad orphan inode 15 [ 872.920129][T14547] ext4_test_bit(bit=14, block=5) = 0 [ 872.932509][T14547] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 873.461860][T13236] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 873.486122][T14422] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 873.662340][T14422] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 873.789666][T14422] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 873.895542][T14422] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 874.801460][T14560] loop9: detected capacity change from 0 to 8192 [ 875.516353][T14422] 8021q: adding VLAN 0 to HW filter on device bond0 [ 875.832815][T14422] 8021q: adding VLAN 0 to HW filter on device team0 [ 876.041611][ T1151] bridge0: port 1(bridge_slave_0) entered blocking state [ 876.049276][ T1151] bridge0: port 1(bridge_slave_0) entered forwarding state [ 876.202787][ T1151] bridge0: port 2(bridge_slave_1) entered blocking state [ 876.210414][ T1151] bridge0: port 2(bridge_slave_1) entered forwarding state [ 876.973271][T14597] loop7: detected capacity change from 0 to 256 [ 877.605557][T14597] FAT-fs (loop7): Directory bread(block 64) failed [ 877.613097][T14597] FAT-fs (loop7): Directory bread(block 65) failed [ 877.621599][T14597] FAT-fs (loop7): Directory bread(block 66) failed [ 877.634839][T14597] FAT-fs (loop7): Directory bread(block 67) failed [ 877.643818][T14597] FAT-fs (loop7): Directory bread(block 68) failed [ 877.650728][T14597] FAT-fs (loop7): Directory bread(block 69) failed [ 877.657939][T14597] FAT-fs (loop7): Directory bread(block 70) failed [ 877.664664][T14597] FAT-fs (loop7): Directory bread(block 71) failed [ 877.671758][T14597] FAT-fs (loop7): Directory bread(block 72) failed [ 877.678611][T14597] FAT-fs (loop7): Directory bread(block 73) failed [ 879.189765][T14422] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 880.256275][T14619] loop7: detected capacity change from 0 to 8192 [ 882.097649][T12219] Bluetooth: hci1: command 0x0406 tx timeout [ 882.993543][T14422] veth0_vlan: entered promiscuous mode [ 883.171534][T14422] veth1_vlan: entered promiscuous mode [ 883.621303][T14422] veth0_macvtap: entered promiscuous mode [ 883.782803][T14422] veth1_macvtap: entered promiscuous mode [ 883.823574][T14685] loop9: detected capacity change from 0 to 128 [ 884.049727][T14685] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 884.085479][T14422] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 884.198666][T14685] ext4 filesystem being mounted at /20/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 884.239100][T14422] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 884.356532][ T5096] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 884.437593][ T5096] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 884.456094][T14685] fscrypt (loop9, inode 12): Direct key flag not allowed with different contents and filenames modes [ 884.477282][ T5096] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 884.548754][ T5096] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 885.127736][T14014] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 885.696497][T14708] loop9: detected capacity change from 0 to 256 [ 885.941325][T14708] FAT-fs (loop9): error, fat_free: invalid cluster chain (i_pos 196) [ 885.949906][T14708] FAT-fs (loop9): Filesystem has been set read-only [ 886.437926][T14014] FAT-fs (loop9): error, fat_free: invalid cluster chain (i_pos 196) [ 887.029219][T14724] sctp: [Deprecated]: syz.7.3151 (pid 14724) Use of struct sctp_assoc_value in delayed_ack socket option. [ 887.029219][T14724] Use struct sctp_sack_info instead [ 887.126278][T14725] loop8: detected capacity change from 0 to 128 [ 891.264915][T14777] program syz.3.3165 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 892.619245][T14791] loop8: detected capacity change from 0 to 512 [ 892.691287][T14791] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349) [ 892.763297][T14791] EXT4-fs (loop8): orphan cleanup on readonly fs [ 892.786107][T14791] EXT4-fs error (device loop8): ext4_read_block_bitmap_nowait:517: comm syz.8.3169: Block bitmap for bg 0 marked uninitialized [ 892.894443][T14791] EXT4-fs error (device loop8) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 892.918032][T14791] EXT4-fs (loop8): 1 orphan inode deleted [ 892.925967][T14791] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 893.081043][T14791] EXT4-fs (loop8): warning: mounting fs with errors, running e2fsck is recommended [ 893.208743][T14791] EXT4-fs (loop8): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 893.518794][ T5096] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 893.526852][ T5096] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 893.833690][ T5096] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 893.841858][ T5096] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 893.885124][T13748] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 894.428695][T14812] overlayfs: overlapping lowerdir path [ 895.348646][T14824] loop7: detected capacity change from 0 to 1024 [ 895.431710][T14824] EXT4-fs: Ignoring removed bh option [ 895.677912][T14824] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 895.812000][T14834] loop3: detected capacity change from 0 to 128 [ 895.908372][ T30] audit: type=1800 audit(1754814501.201:8): pid=14834 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.3178" name="bus" dev="loop3" ino=1048654 res=0 errno=0 [ 896.176545][T14837] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3180'. [ 896.218255][T14835] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3180'. [ 896.391412][T13236] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 896.901548][T14840] loop9: detected capacity change from 0 to 512 [ 897.012219][T14840] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349) [ 897.145502][T14840] EXT4-fs (loop9): orphan cleanup on readonly fs [ 897.196475][T14847] loop4: detected capacity change from 0 to 164 [ 897.209258][T14840] EXT4-fs error (device loop9): ext4_read_block_bitmap_nowait:517: comm syz.9.3182: Block bitmap for bg 0 marked uninitialized [ 897.239107][T14840] EXT4-fs error (device loop9) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 897.255449][T14840] EXT4-fs (loop9): 1 orphan inode deleted [ 897.263610][T14840] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 897.399035][T14840] EXT4-fs (loop9): warning: mounting fs with errors, running e2fsck is recommended [ 897.453599][T14840] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 897.505755][T14853] EXT4-fs error (device loop9): ext4_read_block_bitmap_nowait:517: comm syz.9.3182: Block bitmap for bg 0 marked uninitialized [ 897.582773][T14853] EXT4-fs error (device loop9): ext4_read_block_bitmap_nowait:517: comm syz.9.3182: Block bitmap for bg 0 marked uninitialized [ 897.682665][T14853] EXT4-fs error (device loop9): ext4_read_block_bitmap_nowait:517: comm syz.9.3182: Block bitmap for bg 0 marked uninitialized [ 897.775801][T14853] EXT4-fs error (device loop9): ext4_read_block_bitmap_nowait:517: comm syz.9.3182: Block bitmap for bg 0 marked uninitialized [ 897.878462][T14853] EXT4-fs error (device loop9): ext4_read_block_bitmap_nowait:517: comm syz.9.3182: Block bitmap for bg 0 marked uninitialized [ 897.952820][T14853] EXT4-fs error (device loop9): ext4_read_block_bitmap_nowait:517: comm syz.9.3182: Block bitmap for bg 0 marked uninitialized [ 898.209336][T14857] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 898.223194][T14857] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 898.706460][T14014] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 900.678584][T14881] loop9: detected capacity change from 0 to 1024 [ 901.070337][T14881] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 901.090079][T14881] ext4 filesystem being mounted at /30/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 901.780902][T14014] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 902.458681][T14907] overlayfs: missing 'lowerdir' [ 902.806947][T14911] loop3: detected capacity change from 0 to 512 [ 902.887954][T14911] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 903.197648][T14911] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #16: comm syz.3.3204: invalid indirect mapped block 4294967295 (level 0) [ 903.234002][T14914] loop7: detected capacity change from 0 to 256 [ 903.260214][T14911] EXT4-fs (loop3): Remounting filesystem read-only [ 903.339171][T14911] EXT4-fs (loop3): 1 orphan inode deleted [ 903.345125][T14911] EXT4-fs (loop3): 1 truncate cleaned up [ 903.354473][T14911] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 903.401019][T14918] loop8: detected capacity change from 0 to 512 [ 903.471691][T14918] EXT4-fs: Ignoring removed mblk_io_submit option [ 903.510947][T14918] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem [ 903.561177][ T30] audit: type=1800 audit(1754814508.871:9): pid=14914 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.3205" name="file1" dev="loop7" ino=1048655 res=0 errno=0 [ 903.586148][T14914] FAT-fs (loop7): error, clusters badly computed (0 != 128) [ 903.594331][T14914] FAT-fs (loop7): Filesystem has been set read-only [ 903.601393][T14914] FAT-fs (loop7): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 903.678685][T14918] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a043c11c, mo2=0002] [ 903.722247][T14921] loop4: detected capacity change from 0 to 512 [ 903.806908][T14918] System zones: 1-12 [ 903.829518][T14921] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 903.872616][T13639] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 903.907378][T14918] EXT4-fs error (device loop8): ext4_iget_extra_inode:5104: inode #15: comm syz.8.3206: corrupted in-inode xattr: e_value size too large [ 904.012149][T14918] EXT4-fs error (device loop8): ext4_orphan_get:1397: comm syz.8.3206: couldn't read orphan inode 15 (err -117) [ 904.098796][T14918] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 905.079014][T13748] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 905.171941][T14933] loop9: detected capacity change from 0 to 1024 [ 905.499008][T14936] loop4: detected capacity change from 0 to 512 [ 905.535831][T14933] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 905.549586][T14933] ext4 filesystem being mounted at /33/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 905.781399][T14936] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 905.798472][T14936] ext4 filesystem being mounted at /6/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 906.226881][T14014] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 906.566632][T14422] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 906.907469][T14947] bridge0: port 2(bridge_slave_1) entered disabled state [ 907.039023][T14954] overlayfs: missing 'lowerdir' [ 907.560068][T14960] loop9: detected capacity change from 0 to 512 [ 907.682153][T14960] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode [ 907.873162][T14960] EXT4-fs error (device loop9): ext4_free_branches:1023: inode #16: comm syz.9.3219: invalid indirect mapped block 4294967295 (level 0) [ 907.978099][T14960] EXT4-fs (loop9): Remounting filesystem read-only [ 907.985738][T14960] EXT4-fs (loop9): 1 orphan inode deleted [ 907.992031][T14960] EXT4-fs (loop9): 1 truncate cleaned up [ 908.000715][T14960] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 908.522204][T14969] loop3: detected capacity change from 0 to 512 [ 908.611250][T14972] loop8: detected capacity change from 0 to 512 [ 908.801074][T14969] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 908.804557][T14972] EXT4-fs: Ignoring removed mblk_io_submit option [ 908.814267][T14969] ext4 filesystem being mounted at /63/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 908.932982][T14014] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 908.944933][T14972] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem [ 909.103789][T14972] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a043c11c, mo2=0002] [ 909.232372][T14972] System zones: 1-12 [ 909.262500][T14972] EXT4-fs error (device loop8): ext4_iget_extra_inode:5104: inode #15: comm syz.8.3223: corrupted in-inode xattr: e_value size too large [ 909.348570][T14972] EXT4-fs error (device loop8): ext4_orphan_get:1397: comm syz.8.3223: couldn't read orphan inode 15 (err -117) [ 909.490206][T14972] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 909.820138][T13639] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 910.156990][T13748] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 910.508989][T14991] loop3: detected capacity change from 0 to 256 [ 910.565764][T14991] vfat: Bad value for 'fmask' [ 910.789914][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 910.796565][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 911.323109][T15001] overlayfs: missing 'lowerdir' [ 911.379491][T14999] loop9: detected capacity change from 0 to 512 [ 911.539119][T14999] EXT4-fs error (device loop9): ext4_orphan_get:1392: inode #15: comm syz.9.3230: iget: bad i_size value: 38620345925642 [ 911.656166][T14999] EXT4-fs error (device loop9): ext4_orphan_get:1397: comm syz.9.3230: couldn't read orphan inode 15 (err -117) [ 911.720158][T14999] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 911.881281][T14999] EXT4-fs error (device loop9): ext4_lookup:1787: inode #15: comm syz.9.3230: iget: bad i_size value: 38620345925642 [ 911.941455][T14999] EXT4-fs error (device loop9): ext4_lookup:1787: inode #15: comm syz.9.3230: iget: bad i_size value: 38620345925642 [ 912.148203][T14999] EXT4-fs error (device loop9): ext4_lookup:1787: inode #15: comm syz.9.3230: iget: bad i_size value: 38620345925642 [ 912.350069][T14999] EXT4-fs error (device loop9): ext4_lookup:1787: inode #15: comm syz.9.3230: iget: bad i_size value: 38620345925642 [ 912.530599][T14999] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 913.575931][T15029] fuse: Bad value for 'fd' [ 915.273765][T15047] overlayfs: missing 'workdir' [ 916.186319][T15054] loop3: detected capacity change from 0 to 1024 [ 916.247415][T15054] EXT4-fs: Ignoring removed nobh option [ 916.253554][T15054] EXT4-fs: Ignoring removed bh option [ 916.315538][T15061] fuse: Bad value for 'fd' [ 916.420156][T15054] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 917.233769][T13639] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 917.925306][T15082] loop3: detected capacity change from 0 to 512 [ 917.938830][T12219] Bluetooth: hci2: command 0x0406 tx timeout [ 918.032642][T15082] EXT4-fs: Ignoring removed mblk_io_submit option [ 918.115196][T15082] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 918.231905][T15082] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a043c11c, mo2=0002] [ 918.351651][T15082] System zones: 1-12 [ 918.397677][T15082] EXT4-fs error (device loop3): ext4_iget_extra_inode:5104: inode #15: comm syz.3.3255: corrupted in-inode xattr: e_value size too large [ 918.476713][T15082] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.3255: couldn't read orphan inode 15 (err -117) [ 918.593831][T15082] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 918.834376][T15082] EXT4-fs warning (device loop3): dx_probe:801: inode #2: comm syz.3.3255: Unrecognised inode hash code 4 [ 918.846534][T15082] EXT4-fs warning (device loop3): dx_probe:934: inode #2: comm syz.3.3255: Corrupt directory, running e2fsck is recommended [ 919.256869][T13639] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 919.461492][T15099] fuse: Bad value for 'group_id' [ 919.466691][T15099] fuse: Bad value for 'group_id' [ 920.644176][T15113] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 920.668131][T15112] loop8: detected capacity change from 0 to 128 [ 921.919944][T15129] loop8: detected capacity change from 0 to 512 [ 921.980977][T15129] EXT4-fs: Ignoring removed mblk_io_submit option [ 922.039029][T15129] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem [ 922.105763][T15129] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a043c11c, mo2=0002] [ 922.128922][T15129] System zones: 1-12 [ 922.227854][T15129] EXT4-fs error (device loop8): ext4_iget_extra_inode:5104: inode #15: comm syz.8.3271: corrupted in-inode xattr: e_value size too large [ 922.338031][T15129] EXT4-fs error (device loop8): ext4_orphan_get:1397: comm syz.8.3271: couldn't read orphan inode 15 (err -117) [ 922.449612][T15129] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 922.718600][T15129] EXT4-fs warning (device loop8): dx_probe:801: inode #2: comm syz.8.3271: Unrecognised inode hash code 4 [ 922.730594][T15129] EXT4-fs warning (device loop8): dx_probe:934: inode #2: comm syz.8.3271: Corrupt directory, running e2fsck is recommended [ 923.491347][T13748] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 923.881578][T15154] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 924.684919][T15165] loop8: detected capacity change from 0 to 512 [ 924.685166][T15164] loop4: detected capacity change from 0 to 512 [ 924.818021][T15165] EXT4-fs (loop8): mounting ext2 file system using the ext4 subsystem [ 925.015703][T15164] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3282: bg 0: block 248: padding at end of block bitmap is not set [ 925.071168][T15164] Quota error (device loop4): write_blk: dquota write failed [ 925.079295][T15164] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 925.089760][T15164] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.3282: Failed to acquire dquot type 1 [ 925.108021][T15165] EXT4-fs error (device loop8): ext4_orphan_get:1418: comm syz.8.3281: bad orphan inode 15 [ 925.192617][T15165] ext4_test_bit(bit=14, block=18) = 1 [ 925.198565][T15165] is_bad_inode(inode)=0 [ 925.202959][T15165] NEXT_ORPHAN(inode)=1023 [ 925.207645][T15165] max_ino=32 [ 925.211004][T15165] i_nlink=0 [ 925.216303][T15165] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0009-000000000000 r/w without journal. Quota mode: none. [ 925.254724][T15164] EXT4-fs (loop4): 1 truncate cleaned up [ 925.313656][T15165] ext2 filesystem being mounted at /67/qY3aK supports timestamps until 2038-01-19 (0x7fffffff) [ 925.340650][T15164] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 925.360744][T15164] ext4 filesystem being mounted at /22/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 925.579612][T15164] EXT4-fs error (device loop4): ext4_lookup:1791: inode #2: comm syz.4.3282: deleted inode referenced: 12 [ 926.021466][T13748] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0009-000000000000. [ 926.245522][T14422] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 926.292133][T15185] loop7: detected capacity change from 0 to 512 [ 926.368680][T15185] EXT4-fs: Ignoring removed mblk_io_submit option [ 926.513831][T15185] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem [ 926.668686][T15185] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a043c11c, mo2=0002] [ 926.785453][T15190] loop8: detected capacity change from 0 to 256 [ 926.846620][T15185] System zones: 1-12 [ 926.873343][T15185] EXT4-fs error (device loop7): ext4_iget_extra_inode:5104: inode #15: comm syz.7.3287: corrupted in-inode xattr: e_value size too large [ 926.912358][T15185] EXT4-fs error (device loop7): ext4_orphan_get:1397: comm syz.7.3287: couldn't read orphan inode 15 (err -117) [ 927.005852][T15185] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 927.433218][T15185] EXT4-fs warning (device loop7): dx_probe:801: inode #2: comm syz.7.3287: Unrecognised inode hash code 4 [ 927.445236][T15185] EXT4-fs warning (device loop7): dx_probe:934: inode #2: comm syz.7.3287: Corrupt directory, running e2fsck is recommended [ 927.551402][T15197] EXT4-fs warning (device loop7): dx_probe:801: inode #2: comm syz.7.3287: Unrecognised inode hash code 4 [ 927.562577][T15190] FAT-fs (loop8): Directory bread(block 64) failed [ 927.563779][T15197] EXT4-fs warning (device loop7): dx_probe:934: inode #2: comm syz.7.3287: Corrupt directory, running e2fsck is recommended [ 927.569826][T15190] FAT-fs (loop8): Directory bread(block 65) failed [ 927.590251][T15190] FAT-fs (loop8): Directory bread(block 66) failed [ 927.597139][T15190] FAT-fs (loop8): Directory bread(block 67) failed [ 927.609885][T15190] FAT-fs (loop8): Directory bread(block 68) failed [ 927.616583][T15190] FAT-fs (loop8): Directory bread(block 69) failed [ 927.625629][T15190] FAT-fs (loop8): Directory bread(block 70) failed [ 927.632477][T15190] FAT-fs (loop8): Directory bread(block 71) failed [ 927.639560][T15190] FAT-fs (loop8): Directory bread(block 72) failed [ 927.646268][T15190] FAT-fs (loop8): Directory bread(block 73) failed [ 927.727841][T15200] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 928.149945][T13236] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 928.183985][ T5813] Bluetooth: hci4: command 0x0406 tx timeout [ 930.245754][T15231] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 933.915715][T15285] loop8: detected capacity change from 0 to 512 [ 934.289610][T15285] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 934.302740][T15285] ext4 filesystem being mounted at /76/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 934.459160][T15297] overlayfs: failed to resolve './cgroup': -2 [ 937.470461][ T5166] udevd[5166]: worker [13395] terminated by signal 33 (Unknown signal 33) [ 937.539759][ T5166] udevd[5166]: worker [13395] failed while handling '/devices/virtual/block/loop4' [ 937.645643][T15339] fuse: Bad value for 'fd' [ 937.860121][T13748] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 938.343473][T15350] fuse: Bad value for 'fd' [ 939.813784][T15377] fuse: Bad value for 'fd' [ 941.226754][T15397] loop8: detected capacity change from 0 to 128 [ 941.333778][T15400] fuse: Bad value for 'fd' [ 941.418100][T15397] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 941.491590][T15402] loop4: detected capacity change from 0 to 1024 [ 941.517672][T15397] ext4 filesystem being mounted at /81/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 941.583877][T15402] EXT4-fs: Ignoring removed nobh option [ 941.590105][T15402] EXT4-fs: Ignoring removed bh option [ 941.796312][T15402] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 941.903087][T13748] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 942.189403][T15413] fuse: Bad value for 'fd' [ 942.772617][T14422] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 943.013236][T15421] No control pipe specified [ 944.006692][T15438] loop4: detected capacity change from 0 to 128 [ 944.145853][T15438] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 944.264546][T15438] ext4 filesystem being mounted at /42/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 944.503006][T15447] fuse: Bad value for 'fd' [ 944.856813][T14422] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 946.315711][T15470] No control pipe specified [ 946.405022][T15459] loop4: detected capacity change from 0 to 8192 [ 947.653962][T15485] fuse: Bad value for 'fd' [ 949.359429][T15509] No control pipe specified [ 950.822157][T15531] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 950.829847][T15531] overlayfs: failed to set xattr on upper [ 950.835853][T15531] overlayfs: ...falling back to redirect_dir=nofollow. [ 950.843140][T15531] overlayfs: ...falling back to index=off. [ 950.852905][T15531] overlayfs: ...falling back to uuid=null. [ 953.778296][T12219] Bluetooth: hci3: command 0x0406 tx timeout [ 953.977780][T15567] loop4: detected capacity change from 0 to 2048 [ 954.248886][T15567] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 954.354765][T15570] overlayfs: failed to clone upperpath [ 954.490569][T15567] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters [ 954.621774][T15567] overlayfs: failed to verify upper root origin [ 955.159921][T14422] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 955.750851][T15591] overlayfs: failed to clone upperpath [ 956.732232][T15605] loop4: detected capacity change from 0 to 512 [ 957.008193][T15605] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.3441: casefold flag without casefold feature [ 957.133156][T15605] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.3441: couldn't read orphan inode 15 (err -117) [ 957.264837][T15605] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 957.463214][T15614] overlayfs: failed to clone upperpath [ 957.552506][T15620] fuse: Unknown parameter 'group_i00000000000000000000' [ 958.692004][T14422] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 959.045928][T15638] overlayfs: failed to clone upperpath [ 959.265550][T15643] loop4: detected capacity change from 0 to 512 [ 959.504694][T15648] netlink: 24 bytes leftover after parsing attributes in process `syz.8.3455'. [ 959.621499][T15643] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 959.635870][T15643] ext4 filesystem being mounted at /53/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 959.841020][T15643] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 960.078033][T15657] overlayfs: failed to clone upperpath [ 960.522913][T15660] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 960.529470][T14422] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 960.530670][T15660] overlayfs: failed to set xattr on upper [ 960.545166][T15660] overlayfs: ...falling back to redirect_dir=nofollow. [ 960.552399][T15660] overlayfs: ...falling back to index=off. [ 960.558533][T15660] overlayfs: ...falling back to uuid=null. [ 960.623130][T15662] fuse: Bad value for 'fd' [ 963.492412][T15695] loop8: detected capacity change from 0 to 128 [ 963.662222][T15698] overlayfs: failed to clone upperpath [ 963.819944][T15695] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 963.949805][T15695] ext4 filesystem being mounted at /101/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 964.122721][T15703] overlayfs: failed to clone upperpath [ 964.511938][T13748] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 966.374214][T15738] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 966.381717][T15738] overlayfs: failed to set xattr on upper [ 966.387830][T15738] overlayfs: ...falling back to redirect_dir=nofollow. [ 966.394822][T15738] overlayfs: ...falling back to index=off. [ 966.401028][T15738] overlayfs: ...falling back to uuid=null. [ 967.028335][T15749] fuse: Bad value for 'fd' [ 967.400541][T15756] overlayfs: failed to clone upperpath [ 967.908336][T15764] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3493'. [ 968.824361][T15775] loop8: detected capacity change from 0 to 1024 [ 968.905900][T15775] EXT4-fs: Ignoring removed nobh option [ 968.912109][T15775] EXT4-fs: Ignoring removed bh option [ 969.121624][T15775] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 969.143225][T11987] kernel write not supported for file bpf-prog (pid: 11987 comm: kworker/1:1) [ 969.739393][T13748] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 970.648598][T15805] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3507'. [ 970.692317][T15807] overlayfs: failed to clone upperpath [ 970.704478][T15803] loop8: detected capacity change from 0 to 512 [ 970.843272][T15803] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 970.857504][T15803] ext4 filesystem being mounted at /107/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 970.982374][T15803] EXT4-fs error (device loop8): ext4_xattr_block_get:593: inode #15: comm syz.8.3509: corrupted xattr block 33: overlapping e_value [ 971.416415][T13748] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 972.088020][T15824] loop4: detected capacity change from 0 to 1024 [ 972.210957][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 972.217756][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 972.265387][T15824] EXT4-fs: Ignoring removed nobh option [ 972.271475][T15824] EXT4-fs: Ignoring removed bh option [ 972.566848][T15824] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 973.294983][T14422] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 973.329616][T15846] netlink: 28 bytes leftover after parsing attributes in process `syz.9.3521'. [ 975.231198][T15871] loop8: detected capacity change from 0 to 1024 [ 975.426952][T15871] EXT4-fs (loop8): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 975.441487][T15871] ext4 filesystem being mounted at /111/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 975.652145][T15881] bridge0: port 2(bridge_slave_1) entered disabled state [ 975.662419][T15881] bridge0: port 1(bridge_slave_0) entered disabled state [ 975.808467][T15885] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3536'. [ 976.169941][T13748] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 978.331129][T15922] bond0: (slave macvlan2): Error -98 calling set_mac_address [ 978.731521][T15926] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3551'. [ 979.217935][T15932] overlayfs: failed to clone upperpath [ 980.050351][T15944] fuse: Bad value for 'group_id' [ 980.055514][T15944] fuse: Bad value for 'group_id' [ 980.828904][T15960] overlayfs: failed to clone upperpath [ 981.089230][T15966] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3566'. [ 982.503411][T15984] fuse: Bad value for 'group_id' [ 982.509136][T15984] fuse: Bad value for 'group_id' [ 983.826552][T16001] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3580'. [ 984.498836][T12219] Bluetooth: hci5: command 0x0406 tx timeout [ 985.300115][T16019] fuse: Bad value for 'group_id' [ 985.305378][T16019] fuse: Bad value for 'group_id' [ 986.243741][T16037] netlink: 'syz.8.3593': attribute type 16 has an invalid length. [ 986.252112][T16037] netlink: 20 bytes leftover after parsing attributes in process `syz.8.3593'. [ 986.321352][T16033] loop4: detected capacity change from 0 to 1024 [ 986.401900][T16033] EXT4-fs: Ignoring removed nobh option [ 986.409287][T16033] EXT4-fs: Ignoring removed bh option [ 986.621879][T16033] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 987.020982][T16033] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 15: block 225:freeing already freed block (bit 14); block bitmap corrupt. [ 987.566371][T14422] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 988.698858][T16074] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 988.706187][T16074] overlayfs: failed to set xattr on upper [ 988.713467][T16074] overlayfs: ...falling back to redirect_dir=nofollow. [ 988.720611][T16074] overlayfs: ...falling back to index=off. [ 988.726560][T16074] overlayfs: ...falling back to uuid=null. [ 989.200763][T16080] netlink: 'syz.7.3608': attribute type 16 has an invalid length. [ 989.209176][T16080] netlink: 20 bytes leftover after parsing attributes in process `syz.7.3608'. [ 989.754928][T16088] fuse: Bad value for 'fd' [ 990.170567][T16095] overlayfs: failed to clone upperpath [ 991.672698][T16114] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3621'. [ 992.339171][T16123] netlink: 'syz.8.3624': attribute type 16 has an invalid length. [ 992.348207][T16123] netlink: 20 bytes leftover after parsing attributes in process `syz.8.3624'. [ 992.451724][T16125] fuse: Bad value for 'fd' [ 995.188110][T16163] netlink: 20 bytes leftover after parsing attributes in process `syz.9.3641'. [ 996.422814][T16176] loop8: detected capacity change from 0 to 512 [ 996.527675][T16176] EXT4-fs (loop8): Test dummy encryption mode enabled [ 996.534789][T16176] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode [ 996.697790][T16176] EXT4-fs error (device loop8): ext4_orphan_get:1418: comm syz.8.3647: bad orphan inode 131083 [ 996.799241][T16176] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 997.880579][T16176] fscrypt: AES-256-CBC-CTS using implementation "cts(cbc(ecb(aes-fixed-time)))" [ 998.168079][T16176] fscrypt (loop8): Missing crypto API support for AES-256-XTS (API name: "xts(aes)") [ 998.723453][T13748] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1001.423783][T16243] loop4: detected capacity change from 0 to 1024 [ 1001.492651][T16243] EXT4-fs: Ignoring removed mblk_io_submit option [ 1001.695927][T16251] loop8: detected capacity change from 0 to 256 [ 1001.735960][T16243] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1002.328666][T14422] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1004.634031][T16293] loop8: detected capacity change from 0 to 1024 [ 1004.789698][T16293] EXT4-fs (loop8): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 1005.140762][T16293] EXT4-fs error (device loop8): ext4_read_block_bitmap_nowait:483: comm syz.8.3686: Invalid block bitmap block 0 in block_group 0 [ 1005.234015][T16293] Quota error (device loop8): write_blk: dquota write failed [ 1005.242083][T16293] Quota error (device loop8): qtree_write_dquot: Error -117 occurred while creating quota [ 1005.252626][T16293] EXT4-fs error (device loop8): ext4_acquire_dquot:6933: comm syz.8.3686: Failed to acquire dquot type 0 [ 1005.388403][T16293] EXT4-fs error (device loop8): ext4_free_blocks:6696: comm syz.8.3686: Freeing blocks not in datazone - block = 0, count = 4096 [ 1005.538477][T16293] EXT4-fs error (device loop8): ext4_read_inode_bitmap:139: comm syz.8.3686: Invalid inode bitmap blk 0 in block_group 0 [ 1005.608595][ T4561] Quota error (device loop8): do_check_range: Getting block 0 out of range 1-7 [ 1005.618410][ T4561] EXT4-fs error (device loop8): ext4_release_dquot:6969: comm kworker/u8:25: Failed to release dquot type 0 [ 1005.652246][T16293] EXT4-fs error (device loop8) in ext4_free_inode:361: Corrupt filesystem [ 1005.737367][T16293] EXT4-fs (loop8): 1 orphan inode deleted [ 1005.745288][T16293] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1006.191154][T16312] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3690'. [ 1006.639634][T13748] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1008.769169][T16344] loop4: detected capacity change from 0 to 128 [ 1011.205740][T16360] loop8: detected capacity change from 0 to 8192 [ 1011.846937][T16378] overlayfs: failed to resolve './file1': -2 [ 1012.889532][T16390] fuse: Unknown parameter 'grou00000000000000000000' [ 1012.981361][T16394] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3722'. [ 1013.254947][T16396] loop8: detected capacity change from 0 to 512 [ 1013.371318][T16396] EXT4-fs: Ignoring removed i_version option [ 1013.508312][T16396] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1013.759406][T16396] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1013.772541][T16396] ext4 filesystem being mounted at /148/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1014.627680][T13748] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1015.596053][T16423] loop8: detected capacity change from 0 to 512 [ 1015.885622][T16423] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 1015.978906][T16423] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e12c, mo2=0002] [ 1016.038504][T16423] System zones: 1-12 [ 1016.043440][T16423] EXT4-fs (loop8): orphan cleanup on readonly fs [ 1016.128642][T16423] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.3730: bg 0: block 361: padding at end of block bitmap is not set [ 1016.222171][T16423] EXT4-fs (loop8): Remounting filesystem read-only [ 1016.307669][T16423] EXT4-fs (loop8): 1 truncate cleaned up [ 1016.315394][T16423] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 1016.600478][T16441] fuse: Unknown parameter 'group_i00000000000000000000' [ 1016.984269][T13748] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 1017.434411][T16455] fuse: Unknown parameter 'use0x0000000000000000' [ 1018.883321][T16481] fuse: Unknown parameter 'group_i00000000000000000000' [ 1020.801091][T16505] tmpfs: Bad value for 'size' [ 1021.583641][T16513] fuse: Unknown parameter 'group_i00000000000000000000' [ 1022.974889][T16532] syzkaller0: tun_chr_ioctl cmd 1074025677 [ 1022.985484][T16532] syzkaller0: linktype set to 768 [ 1023.321354][T16539] tmpfs: Bad value for 'size' [ 1023.900607][T16550] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3779'. [ 1028.170642][T16600] sctp: failed to load transform for md5: -2 [ 1029.344774][T16628] vlan0: entered promiscuous mode [ 1029.354391][T16628] team0: Device vlan0 is up. Set it down before adding it as a team port [ 1030.247406][T16635] netlink: 'syz.8.3808': attribute type 21 has an invalid length. [ 1031.142829][T16645] fuse: Bad value for 'user_id' [ 1031.148327][T16645] fuse: Bad value for 'user_id' [ 1031.995701][T16658] loop8: detected capacity change from 0 to 512 [ 1032.134243][T16658] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode [ 1032.343429][T16658] EXT4-fs (loop8): 1 truncate cleaned up [ 1032.351617][T16658] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1032.880915][T13748] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1033.662386][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 1033.669360][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 1035.250687][T16698] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3828'. [ 1035.743379][T16704] loop7: detected capacity change from 0 to 7 [ 1035.858766][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3 [ 1035.868243][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 1035.997942][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3 [ 1036.007401][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 1036.021223][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3 [ 1036.030880][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 1036.078047][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3 [ 1036.087829][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 1036.105846][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3 [ 1036.115295][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 1036.194593][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3 [ 1036.204301][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 1036.235805][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3 [ 1036.245483][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 1036.253803][T16704] ldm_validate_partition_table(): Disk read failed. [ 1036.273749][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3 [ 1036.283196][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 1036.338452][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3 [ 1036.348070][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 1036.357380][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3 [ 1036.366751][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 1036.446862][T16704] Dev loop7: unable to read RDB block 0 [ 1036.486929][T16704] loop7: unable to read partition table [ 1036.496013][T16704] loop7: partition table beyond EOD, truncated [ 1036.503443][T16704] loop_reread_partitions: partition scan of loop7 (Cj̖P=ý?}X %`ր{֐ȵ4FLQk݊) failed (rc=-5) [ 1038.788724][T16738] loop4: detected capacity change from 0 to 512 [ 1038.888454][T16738] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 1039.097890][T16738] EXT4-fs (loop4): 1 truncate cleaned up [ 1039.105696][T16738] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1039.200248][T16742] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3841'. [ 1040.163846][T16754] fuse: Bad value for 'fd' [ 1041.139356][T14422] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1041.292692][ T1866] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1041.544452][ T1866] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1041.792742][ T1866] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1042.079513][ T1866] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1042.952337][ T1866] bridge_slave_1: left allmulticast mode [ 1042.958463][ T1866] bridge_slave_1: left promiscuous mode [ 1042.965143][ T1866] bridge0: port 2(bridge_slave_1) entered disabled state [ 1043.018411][ T1866] bridge_slave_0: left allmulticast mode [ 1043.024269][ T1866] bridge_slave_0: left promiscuous mode [ 1043.031171][ T1866] bridge0: port 1(bridge_slave_0) entered disabled state [ 1043.574503][ T1866] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1043.638932][ T1866] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1043.681466][ T1866] bond0 (unregistering): Released all slaves [ 1044.267208][ T1866] hsr_slave_0: left promiscuous mode [ 1044.287668][ T1866] hsr_slave_1: left promiscuous mode [ 1044.295893][ T1866] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1044.303881][ T1866] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1044.340089][ T1866] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1044.347960][ T1866] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1044.408843][ T1866] veth1_macvtap: left promiscuous mode [ 1044.414586][ T1866] veth0_macvtap: left promiscuous mode [ 1044.423018][ T1866] veth1_vlan: left promiscuous mode [ 1045.531229][ T1866] team0 (unregistering): Port device team_slave_1 removed [ 1045.699307][ T1866] team0 (unregistering): Port device team_slave_0 removed [ 1045.731906][T16801] loop8: detected capacity change from 0 to 128 [ 1045.953779][T16801] FAT-fs (loop8): bogus number of reserved sectors [ 1045.960841][T16801] FAT-fs (loop8): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero [ 1045.970683][T16801] FAT-fs (loop8): Can't find a valid FAT filesystem [ 1047.177272][T12219] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 1047.187707][T12219] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 1047.226580][T12219] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 1047.284954][T12219] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 1047.336702][T12219] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 1049.461453][T12219] Bluetooth: hci0: command tx timeout [ 1049.913060][T16806] chnl_net:caif_netlink_parms(): no params data found [ 1049.927800][T16842] loop8: detected capacity change from 0 to 128 [ 1050.287964][T16842] loop8: detected capacity change from 0 to 256 [ 1050.681782][T16850] netlink: 24 bytes leftover after parsing attributes in process `syz.9.3869'. [ 1051.547144][T12219] Bluetooth: hci0: command tx timeout [ 1052.383858][T16806] bridge0: port 1(bridge_slave_0) entered blocking state [ 1052.391774][T16806] bridge0: port 1(bridge_slave_0) entered disabled state [ 1052.399774][T16806] bridge_slave_0: entered allmulticast mode [ 1052.409808][T16806] bridge_slave_0: entered promiscuous mode [ 1052.607997][T16806] bridge0: port 2(bridge_slave_1) entered blocking state [ 1052.615555][T16806] bridge0: port 2(bridge_slave_1) entered disabled state [ 1052.623978][T16806] bridge_slave_1: entered allmulticast mode [ 1052.643096][T16806] bridge_slave_1: entered promiscuous mode [ 1053.277764][T16806] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1053.421906][T16806] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1053.617683][T12219] Bluetooth: hci0: command tx timeout [ 1053.754755][T16806] team0: Port device team_slave_0 added [ 1053.845925][T16806] team0: Port device team_slave_1 added [ 1054.001527][T16887] loop8: detected capacity change from 0 to 128 [ 1054.264550][T16887] loop8: detected capacity change from 0 to 256 [ 1054.364959][T16806] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1054.375752][T16806] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1054.402885][T16806] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1054.631529][T16806] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1054.639367][T16806] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1054.666499][T16806] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1055.271965][T16893] overlayfs: missing 'lowerdir' [ 1055.548674][T16806] hsr_slave_0: entered promiscuous mode [ 1055.559215][T16806] hsr_slave_1: entered promiscuous mode [ 1055.568068][T16806] debugfs: 'hsr0' already exists in 'hsr' [ 1055.573959][T16806] Cannot create hsr debugfs directory [ 1055.706462][T12219] Bluetooth: hci0: command tx timeout [ 1056.596415][T16894] loop8: detected capacity change from 0 to 8192 [ 1060.016301][T16806] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1060.088940][T16806] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1060.189061][T16806] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1060.269072][T16806] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1062.027455][T16806] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1062.121210][T16806] 8021q: adding VLAN 0 to HW filter on device team0 [ 1062.234728][ T3602] bridge0: port 1(bridge_slave_0) entered blocking state [ 1062.242341][ T3602] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1062.265618][ T3602] bridge0: port 2(bridge_slave_1) entered blocking state [ 1062.273214][ T3602] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1065.141358][T16991] loop8: detected capacity change from 0 to 512 [ 1065.207629][T16991] EXT4-fs (loop8): blocks per group (255) and clusters per group (8192) inconsistent [ 1065.483691][T16806] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1066.122311][T16806] veth0_vlan: entered promiscuous mode [ 1066.371242][T16806] veth1_vlan: entered promiscuous mode [ 1066.802717][T16806] veth0_macvtap: entered promiscuous mode [ 1066.885439][T16806] veth1_macvtap: entered promiscuous mode [ 1067.169416][T16806] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1067.270949][T16806] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1067.412194][ T3736] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1067.489182][ T3736] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1067.657480][ T5096] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1067.670590][T13349] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1070.995508][T17053] overlayfs: failed to clone upperpath [ 1073.915606][T17094] overlayfs: failed to clone upperpath [ 1076.385067][ T3736] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1076.394903][ T3736] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1076.765105][T13349] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1076.773453][T13349] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1077.570201][T17137] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3854'. [ 1077.789423][T17144] overlayfs: failed to clone upperpath [ 1078.162725][T17148] overlayfs: failed to resolve './cgroup': -2 [ 1078.289721][T17148] overlayfs: failed to clone upperpath [ 1080.133648][T17180] loop0: detected capacity change from 0 to 512 [ 1080.239415][T17180] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 1080.395021][T17180] EXT4-fs (loop0): 1 truncate cleaned up [ 1080.403226][T17180] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1081.146763][T16806] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1083.263450][T17222] loop0: detected capacity change from 0 to 128 [ 1083.470106][T17222] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1083.599969][T17222] ext4 filesystem being mounted at /5/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1085.160070][T16806] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1086.465713][T17275] loop8: detected capacity change from 0 to 512 [ 1086.790673][T17275] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1086.804333][T17275] ext4 filesystem being mounted at /212/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1087.018263][T17275] EXT4-fs error (device loop8): ext4_readdir:264: inode #12: block 32: comm syz.8.4005: path /212/file0/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=12, rec_len=106, size=2048 fake=1 [ 1087.564564][T13748] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1090.564330][T17333] loop8: detected capacity change from 0 to 512 [ 1090.617844][T17333] EXT4-fs: Ignoring removed oldalloc option [ 1090.678649][T17333] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode [ 1090.854391][T17333] EXT4-fs (loop8): 1 truncate cleaned up [ 1090.863824][T17333] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1091.566694][T13748] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1094.042415][T17386] fuse: Bad value for 'fd' [ 1095.120002][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 1095.128807][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 1096.271746][T17423] fuse: Bad value for 'fd' [ 1096.803065][ T30] audit: type=1326 audit(1754814702.111:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17427 comm="syz.0.4066" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 1096.826600][ T30] audit: type=1326 audit(1754814702.111:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17427 comm="syz.0.4066" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf703e567 code=0x7ffc0000 [ 1096.946632][ T5166] udevd[5166]: worker [14432] terminated by signal 33 (Unknown signal 33) [ 1096.997877][ T5166] udevd[5166]: worker [14432] failed while handling '/devices/virtual/block/loop8' [ 1097.090197][ T30] audit: type=1326 audit(1754814702.171:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17427 comm="syz.0.4066" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 1097.112804][ T30] audit: type=1326 audit(1754814702.171:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17427 comm="syz.0.4066" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 1097.277914][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 1097.688005][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 1098.258024][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 1098.714949][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 1099.329085][ T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!! [ 1099.738197][ T0] NOHZ tick-stop error: local softirq work is pending, handler #c0!!! [ 1100.736785][T17467] fuse: Unknown parameter '0x0000000000000003' [ 1103.383311][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 1103.410184][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 1103.859175][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 1104.261058][T17503] netlink: 40 bytes leftover after parsing attributes in process `syz.0.4092'. [ 1105.098481][T17509] fuse: Unknown parameter '0x0000000000000003' [ 1107.690641][T17537] netlink: 40 bytes leftover after parsing attributes in process `syz.0.4104'. [ 1107.916251][T17539] fuse: Unknown parameter '0x0000000000000003' [ 1112.095528][T17594] overlayfs: failed to clone upperpath [ 1112.637965][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 1116.858440][T17608] could not allocate digest TFM handle rmd256 [ 1118.899499][T17645] netlink: 'syz.8.4142': attribute type 12 has an invalid length. [ 1120.800279][ T30] audit: type=1326 audit(1754814725.211:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17651 comm="syz.9.4143" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 1120.822854][ T30] audit: type=1326 audit(1754814725.211:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17651 comm="syz.9.4143" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 1120.847630][ T30] audit: type=1326 audit(1754814725.211:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17651 comm="syz.9.4143" exe="/root/syz-executor" sig=0 arch=40000003 syscall=393 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 1120.870472][ T30] audit: type=1326 audit(1754814725.211:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17651 comm="syz.9.4143" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 1120.892671][ T30] audit: type=1326 audit(1754814725.221:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17651 comm="syz.9.4143" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 1120.915066][ T30] audit: type=1326 audit(1754814725.221:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17651 comm="syz.9.4143" exe="/root/syz-executor" sig=0 arch=40000003 syscall=394 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 1120.938729][ T30] audit: type=1326 audit(1754814725.221:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17651 comm="syz.9.4143" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 1120.961479][ T30] audit: type=1326 audit(1754814725.221:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17651 comm="syz.9.4143" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 1120.984381][ T30] audit: type=1326 audit(1754814725.221:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17651 comm="syz.9.4143" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 1121.006739][ T30] audit: type=1326 audit(1754814725.231:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17651 comm="syz.9.4143" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 1125.971630][T17703] fuse: Unknown parameter 'fd0x0000000000000003' [ 1126.984627][T17710] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1127.407983][T17710] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1127.680750][T17710] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1128.071826][T17710] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1128.563048][ T4561] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1128.603291][ T5096] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1128.656641][ T5096] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1128.732593][ T5096] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1129.252358][T17729] netlink: 32 bytes leftover after parsing attributes in process `syz.7.4169'. [ 1130.199415][T17740] fuse: Unknown parameter 'fd0x0000000000000003' [ 1130.774032][T17734] syz.8.4171 (17734) used greatest stack depth: 2344 bytes left [ 1134.205554][ T5813] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 1134.218372][ T5813] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 1134.230424][ T5813] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 1134.252923][ T5813] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 1134.264831][ T5813] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 1135.362308][T17798] wlan0 speed is unknown, defaulting to 1000 [ 1135.372271][T17798] wlan0 speed is unknown, defaulting to 1000 [ 1135.380380][T17798] wlan0 speed is unknown, defaulting to 1000 [ 1135.421427][T17798] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 1135.554943][T17798] wlan0 speed is unknown, defaulting to 1000 [ 1135.564454][T17798] wlan0 speed is unknown, defaulting to 1000 [ 1135.581933][T17798] wlan0 speed is unknown, defaulting to 1000 [ 1135.593345][T17798] wlan0 speed is unknown, defaulting to 1000 [ 1135.602573][T17798] wlan0 speed is unknown, defaulting to 1000 [ 1135.611659][T17798] wlan0 speed is unknown, defaulting to 1000 [ 1135.620929][T17798] wlan0 speed is unknown, defaulting to 1000 [ 1135.748280][T17780] chnl_net:caif_netlink_parms(): no params data found [ 1136.338705][T12219] Bluetooth: hci5: command tx timeout [ 1137.000879][T17817] overlayfs: failed to clone upperpath [ 1138.411532][T17780] bridge0: port 1(bridge_slave_0) entered blocking state [ 1138.420096][T17780] bridge0: port 1(bridge_slave_0) entered disabled state [ 1138.427927][T17780] bridge_slave_0: entered allmulticast mode [ 1138.436132][T17780] bridge_slave_0: entered promiscuous mode [ 1138.452391][T12219] Bluetooth: hci5: command tx timeout [ 1138.482815][T17780] bridge0: port 2(bridge_slave_1) entered blocking state [ 1138.490662][T17780] bridge0: port 2(bridge_slave_1) entered disabled state [ 1138.498477][T17780] bridge_slave_1: entered allmulticast mode [ 1138.507182][T17780] bridge_slave_1: entered promiscuous mode [ 1138.808177][T17780] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1138.927463][T17780] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1139.524418][T17780] team0: Port device team_slave_0 added [ 1139.591145][T17780] team0: Port device team_slave_1 added [ 1140.076678][T17780] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1140.086873][T17780] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1140.114259][T17780] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1140.424231][T17780] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1140.431683][T17780] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1140.458964][T17780] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1140.514909][T12219] Bluetooth: hci5: command tx timeout [ 1140.813367][T17780] hsr_slave_0: entered promiscuous mode [ 1140.822586][T17780] hsr_slave_1: entered promiscuous mode [ 1140.831142][T17780] debugfs: 'hsr0' already exists in 'hsr' [ 1140.837305][T17780] Cannot create hsr debugfs directory [ 1142.579351][T12219] Bluetooth: hci5: command tx timeout [ 1144.842095][T17780] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 1145.048902][T17780] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 1145.152791][T17780] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 1145.268180][T17780] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 1147.129040][T17780] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1147.372744][T17780] 8021q: adding VLAN 0 to HW filter on device team0 [ 1147.512877][ T1866] bridge0: port 1(bridge_slave_0) entered blocking state [ 1147.520338][ T1866] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1147.686267][ T1866] bridge0: port 2(bridge_slave_1) entered blocking state [ 1147.693745][ T1866] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1148.135497][T17780] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1150.877650][ T30] kauditd_printk_skb: 25 callbacks suppressed [ 1150.877731][ T30] audit: type=1326 audit(1754814756.161:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17944 comm="syz.3.4237" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000 [ 1150.907793][ T30] audit: type=1326 audit(1754814756.161:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17944 comm="syz.3.4237" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000 [ 1150.930412][ T30] audit: type=1326 audit(1754814756.241:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17944 comm="syz.3.4237" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70ae539 code=0x7ffc0000 [ 1150.955004][ T30] audit: type=1326 audit(1754814756.241:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17944 comm="syz.3.4237" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000 [ 1150.978240][ T30] audit: type=1326 audit(1754814756.241:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17944 comm="syz.3.4237" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000 [ 1150.994044][T17780] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1151.437723][ T30] audit: type=1326 audit(1754814756.381:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17944 comm="syz.3.4237" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70ae539 code=0x7ffc0000 [ 1151.462555][ T30] audit: type=1326 audit(1754814756.381:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17944 comm="syz.3.4237" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000 [ 1151.485854][ T30] audit: type=1326 audit(1754814756.381:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17944 comm="syz.3.4237" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000 [ 1151.508450][ T30] audit: type=1326 audit(1754814756.381:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17944 comm="syz.3.4237" exe="/root/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf70ae539 code=0x7ffc0000 [ 1151.530761][ T30] audit: type=1326 audit(1754814756.381:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17944 comm="syz.3.4237" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000 [ 1152.182855][T17780] veth0_vlan: entered promiscuous mode [ 1152.310777][T17780] veth1_vlan: entered promiscuous mode [ 1152.745634][T17780] veth0_macvtap: entered promiscuous mode [ 1152.851155][T17780] veth1_macvtap: entered promiscuous mode [ 1153.213530][T17780] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1153.339583][T17780] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1153.432889][ T3475] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1153.528694][ T3475] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1153.575531][ T3475] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1153.634678][ T3475] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1156.089062][ T4561] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1156.352594][ T4561] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1156.383264][T17996] fuse: Bad value for 'fd' [ 1156.536708][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 1156.544045][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 1156.674062][ T4561] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1156.945416][ T4561] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1157.452742][ T4561] bridge_slave_1: left allmulticast mode [ 1157.460430][ T4561] bridge_slave_1: left promiscuous mode [ 1157.467344][ T4561] bridge0: port 2(bridge_slave_1) entered disabled state [ 1157.756426][ T4561] bridge_slave_0: left allmulticast mode [ 1157.763186][ T4561] bridge_slave_0: left promiscuous mode [ 1157.769881][ T4561] bridge0: port 1(bridge_slave_0) entered disabled state [ 1157.834171][T18009] loop8: detected capacity change from 0 to 128 [ 1157.941382][T18009] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1157.997939][T18009] ext4 filesystem being mounted at /267/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1158.997312][ T4561] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1159.109582][ T4561] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1159.135316][ T4561] bond0 (unregistering): Released all slaves [ 1160.101921][T13748] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1160.427728][ T4561] hsr_slave_0: left promiscuous mode [ 1160.477128][ T4561] hsr_slave_1: left promiscuous mode [ 1160.485306][ T4561] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1160.493090][ T4561] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1160.628963][ T4561] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1160.636534][ T4561] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1160.800408][ T4561] veth1_macvtap: left promiscuous mode [ 1160.806158][ T4561] veth0_macvtap: left promiscuous mode [ 1160.813553][ T4561] veth1_vlan: left promiscuous mode [ 1160.819223][ T4561] veth0_vlan: left promiscuous mode [ 1162.355546][ T4561] team0 (unregistering): Port device team_slave_1 removed [ 1162.467290][ T4561] team0 (unregistering): Port device team_slave_0 removed [ 1164.268558][T18082] 9pnet_virtio: no channels available for device syz [ 1165.515843][ T1151] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1165.525167][ T1151] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1165.845816][ T3736] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1165.854257][ T3736] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1166.526747][T18123] loop8: detected capacity change from 0 to 128 [ 1166.572583][T18118] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4182'. [ 1166.930633][T18123] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1167.083457][T18123] ext4 filesystem being mounted at /273/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1169.836563][T13748] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1171.622721][ T30] kauditd_printk_skb: 13 callbacks suppressed [ 1171.622798][ T30] audit: type=1326 audit(1754814776.901:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18170 comm="syz.9.4305" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 1172.817119][ T30] audit: type=1326 audit(1754814776.991:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18170 comm="syz.9.4305" exe="/root/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 1172.840323][ T30] audit: type=1326 audit(1754814776.991:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18170 comm="syz.9.4305" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 1172.865767][ T30] audit: type=1326 audit(1754814777.001:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18170 comm="syz.9.4305" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 1172.889383][ T30] audit: type=1326 audit(1754814777.001:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18170 comm="syz.9.4305" exe="/root/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 1172.911799][ T30] audit: type=1326 audit(1754814777.001:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18170 comm="syz.9.4305" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 1172.934714][ T30] audit: type=1326 audit(1754814777.041:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18170 comm="syz.9.4305" exe="/root/syz-executor" sig=0 arch=40000003 syscall=297 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 1172.959336][ T30] audit: type=1326 audit(1754814777.041:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18170 comm="syz.9.4305" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 1172.983591][ T30] audit: type=1326 audit(1754814777.051:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18170 comm="syz.9.4305" exe="/root/syz-executor" sig=0 arch=40000003 syscall=292 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 1173.005984][ T30] audit: type=1326 audit(1754814777.051:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18170 comm="syz.9.4305" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 1176.631779][T18221] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms) [ 1176.649255][T18221] bridge0: port 2(bridge_slave_1) entered disabled state [ 1176.657421][T18221] bridge0: port 1(bridge_slave_0) entered disabled state [ 1179.471801][T18261] overlayfs: failed to clone upperpath [ 1188.495317][T18359] netlink: 28 bytes leftover after parsing attributes in process `syz.7.4370'. [ 1190.883983][ T30] kauditd_printk_skb: 6 callbacks suppressed [ 1190.884062][ T30] audit: type=1326 audit(1754814796.191:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18387 comm="syz.3.4380" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000 [ 1191.026097][ T30] audit: type=1326 audit(1754814796.231:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18387 comm="syz.3.4380" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000 [ 1191.049886][ T30] audit: type=1326 audit(1754814796.251:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18387 comm="syz.3.4380" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ae539 code=0x7ffc0000 [ 1191.072805][ T30] audit: type=1326 audit(1754814796.251:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18387 comm="syz.3.4380" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000 [ 1191.098312][ T30] audit: type=1326 audit(1754814796.251:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18387 comm="syz.3.4380" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000 [ 1191.122751][ T30] audit: type=1326 audit(1754814796.261:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18387 comm="syz.3.4380" exe="/root/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf70ae539 code=0x7ffc0000 [ 1191.145650][ T30] audit: type=1326 audit(1754814796.261:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18387 comm="syz.3.4380" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000 [ 1191.168011][ T30] audit: type=1326 audit(1754814796.261:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18387 comm="syz.3.4380" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000 [ 1192.147650][T18395] IPVS: length: 139 != 8 [ 1193.955640][T18433] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4393'. [ 1196.609298][T18455] tipc: Started in network mode [ 1196.614583][T18455] tipc: Node identity ac1414aa, cluster identity 4711 [ 1196.623555][T18455] tipc: Enabled bearer , priority 10 [ 1197.285435][T18466] tipc: Enabled bearer , priority 0 [ 1198.299114][ T1598] tipc: Node number set to 2886997162 [ 1199.859768][ C1] vcan0: j1939_tp_rxtimer: 0xffff88804e8dc600: rx timeout, send abort [ 1199.871292][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88804e8dc600: 0x3ff02: (3) A timeout occurred and this is the connection abort to close the session. [ 1199.894491][ C1] vcan0: j1939_tp_rxtimer: 0xffff88804e8dd400: rx timeout, send abort [ 1199.904378][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88804e8dd400: 0x3fe01: (3) A timeout occurred and this is the connection abort to close the session. [ 1205.078656][T18567] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4442'. [ 1205.091980][T18567] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4442'. [ 1206.087691][ T30] audit: type=1326 audit(1754814811.391:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18575 comm="syz.7.4446" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70be539 code=0x0 [ 1206.658192][T11989] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 1206.797776][T18585] warning: `syz.8.4449' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 1206.890970][T11989] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 1206.902455][T11989] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 1206.912818][T11989] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 1206.922257][T11989] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1207.074387][T18580] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 1207.171588][T11989] usb 2-1: Quirk or no altset; falling back to MIDI 1.0 [ 1207.673397][T11989] usb 2-1: USB disconnect, device number 2 [ 1207.874440][T17875] udevd[17875]: setting mode of /dev/midi3 to 020660 failed: No such file or directory [ 1207.948449][T17875] udevd[17875]: setting owner of /dev/midi3 to uid=0, gid=29 failed: No such file or directory [ 1208.163891][T18599] udevd[18599]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1209.113769][T18615] netlink: 96 bytes leftover after parsing attributes in process `syz.1.4458'. [ 1218.441464][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 1218.448118][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 1221.720911][T18708] overlayfs: missing 'lowerdir' [ 1227.271930][T18753] overlayfs: missing 'lowerdir' [ 1228.305798][T18766] usb usb1: usbfs: process 18766 (syz.1.4501) did not claim interface 0 before use [ 1230.038373][T18788] netlink: 23 bytes leftover after parsing attributes in process `syz.8.4507'. [ 1234.270464][T18828] netlink: 23 bytes leftover after parsing attributes in process `syz.8.4521'. [ 1237.518891][T18862] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4531'. [ 1237.630336][T18862] netdevsim netdevsim1: Direct firmware load for . [ 1237.630336][T18862] failed with error -2 [ 1237.641768][T18862] netdevsim netdevsim1: Falling back to sysfs fallback for: . [ 1237.641768][T18862] [ 1238.270825][T18871] netlink: 23 bytes leftover after parsing attributes in process `syz.3.4534'. [ 1241.546397][T18905] ===================================================== [ 1241.553900][T18905] BUG: KMSAN: uninit-value in sctp_inq_pop+0x14dc/0x19e0 [ 1241.564407][T18905] sctp_inq_pop+0x14dc/0x19e0 [ 1241.570942][T18905] sctp_assoc_bh_rcv+0x1a0/0xbc0 [ 1241.576092][T18905] sctp_inq_push+0x2a3/0x350 [ 1241.581007][T18905] sctp_backlog_rcv+0x3c7/0xda0 [ 1241.586050][T18905] sk_backlog_rcv+0x142/0x420 [ 1241.591051][T18905] __release_sock+0x1d3/0x330 [ 1241.595923][T18905] release_sock+0x6b/0x270 [ 1241.600841][T18905] sctp_wait_for_connect+0x458/0x820 [ 1241.606325][T18905] sctp_sendmsg_to_asoc+0x223a/0x2260 [ 1241.611995][T18905] sctp_sendmsg+0x3910/0x49f0 [ 1241.616837][T18905] inet_sendmsg+0x269/0x2a0 [ 1241.622541][T18905] __sock_sendmsg+0x278/0x3d0 [ 1241.627568][T18905] __sys_sendto+0x593/0x720 [ 1241.632207][T18905] __ia32_sys_sendto+0x12f/0x200 [ 1241.637441][T18905] ia32_sys_call+0x2141/0x4310 [ 1241.642369][T18905] __do_fast_syscall_32+0xb0/0x150 [ 1241.647954][T18905] do_fast_syscall_32+0x38/0x80 [ 1241.652990][T18905] do_SYSENTER_32+0x1f/0x30 [ 1241.658068][T18905] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1241.667884][T18905] [ 1241.670293][T18905] Uninit was stored to memory at: [ 1241.675498][T18905] sctp_inq_pop+0x144a/0x19e0 [ 1241.681476][T18905] sctp_assoc_bh_rcv+0x1a0/0xbc0 [ 1241.686638][T18905] sctp_inq_push+0x2a3/0x350 [ 1241.691701][T18905] sctp_backlog_rcv+0x3c7/0xda0 [ 1241.696751][T18905] sk_backlog_rcv+0x142/0x420 [ 1241.701777][T18905] __release_sock+0x1d3/0x330 [ 1241.706635][T18905] release_sock+0x6b/0x270 [ 1241.711359][T18905] sctp_wait_for_connect+0x458/0x820 [ 1241.716839][T18905] sctp_sendmsg_to_asoc+0x223a/0x2260 [ 1241.722519][T18905] sctp_sendmsg+0x3910/0x49f0 [ 1241.727531][T18905] inet_sendmsg+0x269/0x2a0 [ 1241.732188][T18905] __sock_sendmsg+0x278/0x3d0 [ 1241.737215][T18905] __sys_sendto+0x593/0x720 [ 1241.741891][T18905] __ia32_sys_sendto+0x12f/0x200 [ 1241.747229][T18905] ia32_sys_call+0x2141/0x4310 [ 1241.752128][T18905] __do_fast_syscall_32+0xb0/0x150 [ 1241.757535][T18905] do_fast_syscall_32+0x38/0x80 [ 1241.765603][T18905] do_SYSENTER_32+0x1f/0x30 [ 1241.771382][T18905] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1241.778059][T18905] [ 1241.780456][T18905] Uninit was created at: [ 1241.785049][T18905] __kmalloc_node_track_caller_noprof+0x96d/0x12f0 [ 1241.791921][T18905] kmalloc_reserve+0x22f/0x4b0 [ 1241.796977][T18905] __alloc_skb+0x347/0x7d0 [ 1241.801563][T18905] sctp_packet_transmit+0x18a1/0x46d0 [ 1241.807267][T18905] sctp_outq_flush+0x1c7d/0x67c0 [ 1241.812370][T18905] sctp_outq_uncork+0x9e/0xc0 [ 1241.817375][T18905] sctp_do_sm+0x8c8e/0x9720 [ 1241.822085][T18905] sctp_assoc_bh_rcv+0x88b/0xbc0 [ 1241.827357][T18905] sctp_inq_push+0x2a3/0x350 [ 1241.832131][T18905] sctp_backlog_rcv+0x3c7/0xda0 [ 1241.837255][T18905] sk_backlog_rcv+0x142/0x420 [ 1241.842177][T18905] __release_sock+0x1d3/0x330 [ 1241.847292][T18905] release_sock+0x6b/0x270 [ 1241.851899][T18905] sctp_wait_for_connect+0x458/0x820 [ 1241.858444][T18905] sctp_sendmsg_to_asoc+0x223a/0x2260 [ 1241.863991][T18905] sctp_sendmsg+0x3910/0x49f0 [ 1241.872437][T18905] inet_sendmsg+0x269/0x2a0 [ 1241.878152][T18905] __sock_sendmsg+0x278/0x3d0 [ 1241.883004][T18905] __sys_sendto+0x593/0x720 [ 1241.887776][T18905] __ia32_sys_sendto+0x12f/0x200 [ 1241.892865][T18905] ia32_sys_call+0x2141/0x4310 [ 1241.897903][T18905] __do_fast_syscall_32+0xb0/0x150 [ 1241.903196][T18905] do_fast_syscall_32+0x38/0x80 [ 1241.908383][T18905] do_SYSENTER_32+0x1f/0x30 [ 1241.913094][T18905] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1241.919744][T18905] [ 1241.922208][T18905] CPU: 0 UID: 0 PID: 18905 Comm: syz.9.4539 Not tainted 6.16.0-syzkaller-12256-g561c80369df0 #0 PREEMPT(none) [ 1241.934199][T18905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1241.944526][T18905] ===================================================== [ 1241.951859][T18905] Disabling lock debugging due to kernel taint [ 1241.958222][T18905] Kernel panic - not syncing: kmsan.panic set ... [ 1241.964767][T18905] CPU: 0 UID: 0 PID: 18905 Comm: syz.9.4539 Tainted: G B 6.16.0-syzkaller-12256-g561c80369df0 #0 PREEMPT(none) [ 1241.978255][T18905] Tainted: [B]=BAD_PAGE [ 1241.982487][T18905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1241.992667][T18905] Call Trace: [ 1241.996054][T18905] [ 1241.999067][T18905] __dump_stack+0x26/0x30 [ 1242.003571][T18905] dump_stack_lvl+0x53/0x270 [ 1242.008350][T18905] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1242.014383][T18905] dump_stack+0x1e/0x25 [ 1242.018736][T18905] vpanic+0x361/0xc50 [ 1242.022943][T18905] panic+0x15d/0x160 [ 1242.027081][T18905] kmsan_report+0x31c/0x320 [ 1242.031790][T18905] ? __msan_warning+0x1b/0x30 [ 1242.036629][T18905] ? sctp_inq_pop+0x14dc/0x19e0 [ 1242.041669][T18905] ? sctp_assoc_bh_rcv+0x1a0/0xbc0 [ 1242.046998][T18905] ? sctp_inq_push+0x2a3/0x350 [ 1242.051946][T18905] ? sctp_backlog_rcv+0x3c7/0xda0 [ 1242.057155][T18905] ? sk_backlog_rcv+0x142/0x420 [ 1242.062229][T18905] ? __release_sock+0x1d3/0x330 [ 1242.067289][T18905] ? release_sock+0x6b/0x270 [ 1242.072101][T18905] ? sctp_wait_for_connect+0x458/0x820 [ 1242.077736][T18905] ? sctp_sendmsg_to_asoc+0x223a/0x2260 [ 1242.083495][T18905] ? sctp_sendmsg+0x3910/0x49f0 [ 1242.088525][T18905] ? inet_sendmsg+0x269/0x2a0 [ 1242.093358][T18905] ? __sock_sendmsg+0x278/0x3d0 [ 1242.098389][T18905] ? __sys_sendto+0x593/0x720 [ 1242.103219][T18905] ? __ia32_sys_sendto+0x12f/0x200 [ 1242.108481][T18905] ? ia32_sys_call+0x2141/0x4310 [ 1242.113581][T18905] ? __do_fast_syscall_32+0xb0/0x150 [ 1242.119038][T18905] ? do_fast_syscall_32+0x38/0x80 [ 1242.124242][T18905] ? do_SYSENTER_32+0x1f/0x30 [ 1242.129115][T18905] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1242.135805][T18905] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1242.142496][T18905] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 1242.148817][T18905] ? kmsan_get_metadata+0xfb/0x160 [ 1242.154103][T18905] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 1242.160672][T18905] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 1242.166995][T18905] ? kmsan_get_metadata+0xfb/0x160 [ 1242.172278][T18905] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1242.178290][T18905] ? kmsan_get_metadata+0xfb/0x160 [ 1242.183600][T18905] __msan_warning+0x1b/0x30 [ 1242.188280][T18905] sctp_inq_pop+0x14dc/0x19e0 [ 1242.193195][T18905] sctp_assoc_bh_rcv+0x1a0/0xbc0 [ 1242.198350][T18905] ? kmsan_get_metadata+0xfb/0x160 [ 1242.203734][T18905] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1242.209785][T18905] ? __pfx_sctp_assoc_bh_rcv+0x10/0x10 [ 1242.215453][T18905] sctp_inq_push+0x2a3/0x350 [ 1242.220262][T18905] sctp_backlog_rcv+0x3c7/0xda0 [ 1242.225315][T18905] ? kmsan_get_metadata+0xfb/0x160 [ 1242.230675][T18905] ? __pfx_sctp_backlog_rcv+0x10/0x10 [ 1242.236270][T18905] sk_backlog_rcv+0x142/0x420 [ 1242.241217][T18905] __release_sock+0x1d3/0x330 [ 1242.246129][T18905] release_sock+0x6b/0x270 [ 1242.250769][T18905] sctp_wait_for_connect+0x458/0x820 [ 1242.256285][T18905] ? __pfx_autoremove_wake_function+0x10/0x10 [ 1242.262689][T18905] sctp_sendmsg_to_asoc+0x223a/0x2260 [ 1242.268246][T18905] ? kmsan_get_metadata+0xfb/0x160 [ 1242.273550][T18905] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1242.279594][T18905] sctp_sendmsg+0x3910/0x49f0 [ 1242.284459][T18905] ? kmsan_save_stack_with_flags+0x50/0x60 [ 1242.290575][T18905] ? __pfx_sctp_sendmsg+0x10/0x10 [ 1242.295807][T18905] inet_sendmsg+0x269/0x2a0 [ 1242.300493][T18905] __sock_sendmsg+0x278/0x3d0 [ 1242.305415][T18905] __sys_sendto+0x593/0x720 [ 1242.310088][T18905] ? do_futex+0x3a1/0x480 [ 1242.314690][T18905] ? kmsan_get_metadata+0xfb/0x160 [ 1242.319982][T18905] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1242.326040][T18905] __ia32_sys_sendto+0x12f/0x200 [ 1242.331199][T18905] ia32_sys_call+0x2141/0x4310 [ 1242.336138][T18905] __do_fast_syscall_32+0xb0/0x150 [ 1242.341516][T18905] do_fast_syscall_32+0x38/0x80 [ 1242.346605][T18905] do_SYSENTER_32+0x1f/0x30 [ 1242.351307][T18905] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1242.357788][T18905] RIP: 0023:0xf7f66539 [ 1242.361920][T18905] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 1242.381647][T18905] RSP: 002b:00000000f502155c EFLAGS: 00000206 ORIG_RAX: 0000000000000171 [ 1242.390256][T18905] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080847fff [ 1242.398314][T18905] RDX: 000000000000fee4 RSI: 0000000000000000 RDI: 000000008005ffe4 [ 1242.406367][T18905] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000 [ 1242.414408][T18905] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 1242.422458][T18905] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1242.430517][T18905] [ 1242.434061][T18905] Kernel Offset: disabled [ 1242.438502][T18905] Rebooting in 86400 seconds..