last executing test programs: 11.860034926s ago: executing program 1 (id=2): r0 = memfd_create(&(0x7f00000008c0)='\x103q}2\x9a\xce\xaf\x03\xdfyR8\xf4\x1c\bi\xe4^\xd5\xfd\xa9\r\xac7R\x94\xaf\xbb\xdcM\x90k\xd6\x05\r\x84\x87\x1e?\x10\x95SWFO{\x1f\x1b!\xd5\x991D\x1c\b\x8c`\xeaSA\x90m\xb6&\xd0\xf1\xb3\xed:\x82\xbd\xe3i|B\xe2ar\x04R%[k\x0f\xfdV\xacL\x1f\x9d\x00\x00\xc5\xb8$\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\r\xd6h\x80\x8fQ|\xf5d\x10\x10\xd7\t\x00\x00\x00\x00\x00\x00\x00<\xfeeS\xb2l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfaa\xd3\xf1\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7~x\xb8vo\xe6\x15@\xc9\"CY\x11\xb9u\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D4E^7%8\x94y\x90\xf0l\xa0\'L%\xd4\xda\xee\x81\x98\xcc\xfd\xa2\x89$\x9by\xf1\xbb\x01\xb7\xcd\xbf\x99\x1f\x90@b\x03\xb3\xe0CfU\x16{\xbey\xa1cs\x96U\x11\xdb*\xdf\xcdG\xc7z\x85\x8aE\xf7\xd5\x9dAj\xe3\xfb\xc4\xa0\x14\x87\x19\x17\xed\xd1\x185%Q%\x81\xfaK\x82\xec=\xa3\xb8~\xb6O\xbd\x19*\xdb\x1c\x10\xa4\x8dI\xbd\xc1\xceG\xd0h\xa1\xab:dP\xb6\xa0BR\xbe\x03\xac\xd9\x87\x00@\x80\x94\xd88\xc9\x03\x86P\x8d\x12\\\xf9\x00T\x8f\xcc\x7fF\xb5\xea\xa6\xc1\x9d\xac\x89\xc9\xa1tuJw\xee\x1a\xe73\xa8\xadS\xd1\x11#d\xc2\xcfdj\x9ec\x93vw\x85\r|\xf0\xa6\xd5K\x90*_3\x89\v\xab\x04ih\x12\x93\xc5m\x8f~{\xe5\x85\xa5g\x00\x00\x00\xe45Q\xab%\xa8[\xf3\x17\x94\xf8\xdfq\xff\xd2?\xafW\xde\x1bW]\x1f\aaV\xc5\xc82*\xc7\xc5\"C}L\x10e\xc6\x90\xc0\xf9z\xb6+/d\x86\xf2\xbe\xc9:u\t\\e\x05)\xe4\xd2\xc4\x1a\xc9\xac\xdb\x925\x02\x94@\xa2\xe1\xee\x16\xb4\x98\xff\x0f\xbb\xb2\x81\xcf\x13g6l\xcc\xc8\x02\v\xa2\xb2\xf6\xbf@d\xcecC\x9fVz\xf4\x14\xa5\x8b|\xe1\xc0\xfa3X\xf4\xd9L\xe6\x8f\x9dy\x0fX.\xc5EQ\xd1/\xa1\xd0\x03>\xf0\x90\x13B\xe2\x97\x8b\"\xf7\"\xecX\x92\xab\xbc^\xb2\x80@\xcc+\xbbp\xdc|N\xd3[=G\xb2\xe1\x9c\xc5\x81y\x84\xef\xacQ\x01\xdd\xe7<\xb8\xf1Hn\x86\xa6\xe3\x18N\x19\"[-\xdb\xef\xc3\xe0\xa8}9q\x92~}M\xceA\xe1)\a\xf0p\xa3\x8dkCvo\x85N(\xdd%DP\x88FW\xb5\x97\xe7\xb8}\xb6/\x95\xb0\xb9\xc9\xb1=\ac\x91\x1d,\xd2\xf5g\xfd\x97X\x1e[\x84\x7f\bO\x16\x84\xefa\xd1\xb3\xf7\\g`\x026\x1f\x89/\x01l\xc1%\xda\xa1:\x99\xf1,\x86f\xe1\xb6\x83\x06\xdd\x91{x\xa1P\xd7\x1d\xa9c\xde\x7f\x8fJ\xae\xf1\xc3\x81@\x1e\x93\xaed-X\xd2\xa7e\xa0\xb3\x16*\xa5\xb1\xd3\x8d\xa4\xf2\xe5\xa2\xe7A\x19\xf4\xa92ok\xf2\xd2\xc74\t*\xb67{#J\x1b\'\xbb\x9b\x99\xda^\x1e\xf6\x03\x9316\xb5T\xbb\xb2\x93\x1b\xfaj\x00\xe8i\x85\xd2\x05!\x87Q\xe5\xbdZ\xcc\x98\xcbY]0\xf7\fl!\x00<', 0x1) ftruncate(r0, 0x800799c) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e23, 0xffffffff, @ipv4={'\x00', '\xff\xff', @remote}, 0x9}, 0x1c) sendfile(r1, r0, 0x0, 0xfeff) 11.667475407s ago: executing program 1 (id=8): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x210000, &(0x7f0000002f40)={[{@nodelalloc}, {@dioread_lock}, {@barrier_val={'barrier', 0x3d, 0x4}}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@errors_remount}, {@stripe={'stripe', 0x3d, 0x5}}, {@bh}, {@init_itable}]}, 0xfc, 0x56f, &(0x7f0000003780)="$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") syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000000)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) syz_mount_image$fuse(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x8820, &(0x7f0000000240)=ANY=[], 0x1, 0x0, 0x0) unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0) 11.080498131s ago: executing program 1 (id=10): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x20040, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = ioctl$KVM_GET_STATS_FD_cpu(r2, 0xaece) preadv(r3, &(0x7f0000000100)=[{&(0x7f00000001c0)=""/5, 0xffffffb3}], 0x1, 0x4, 0x7f) 9.763158278s ago: executing program 1 (id=12): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000340)={0xffff1000, 0x14000}) close(r1) 9.526858492s ago: executing program 32 (id=12): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000340)={0xffff1000, 0x14000}) close(r1) 3.74490261s ago: executing program 0 (id=35): syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x810, &(0x7f00000018c0)=ANY=[], 0xfd, 0x1501, &(0x7f00000002c0)="$eJzs3Am4T1X3OPC19t6H62b4JpnP2uvwTYZNkoSSZEiSJCRzQpIkSZK4ZEpCEjLeJHPInG665nnInHTzSpIkJCTZ/+c2/P16h5/3fX/9/vq/d32e5zz2cs7aZ+27nu89w/Pc79ddh1VvVKNKfWaGf4f+bYC//JMEAAkAMBAAcgBAAABlc5bNmb4/i8akf+sk4n9JgxlXugJxJUn/Mzbpf8Ym/c/YpP8Zm/Q/Y5P+Z2zS/4xN+i9EhjYr39WyZdxN3v//f079T5Ll+p8h4D/aIf3/T6P/paOl/xmb9D9jk/5nbNL/jCy40gWIK0w+/xmb9F+IDO0Pf6e84dyVfqct27+wCSGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQ/w+c85cYAPhtfKXrEkIIIYQQQgghxB/Hv3ulKxBCCCGEEEIIIcT/PgQFGgwEkAkyQwJkgUS4CrJCNsgOOSAGV0NOuAZywbWQG/JAXsgH+aEAFIQQCCwwRFAICkMcroMicD0UhWJQHEqAg5JQCm6A0nAjlIGboCzcDOXgFigPFX4+Z7rboTLcAVXgTqgK1aA61IC7oCbcDbXgHqgN90IduA/qwv1QDx6A+tAAGsKD0AgegsbQBJpCM2gOLaDlZfKTc/y9/OehB7wAPaEXJEFv6AMvQl/oB/1hAAyEl2AQvAyD4RUYAkNhGLwKw+E1GAGvw0gYBaPhDRgDY2EcjIcJMBGS4U2YBG/BZHj7oWwwFabBdJgBM2EWvAOzYQ7MhXdhHsyHBZCcZREshiXwHiyF9yEFPoBl8CGkwnJYASthFayGNbAW1sF62AAbYRNshi2wFbbBR7AddsBO2AW7YQ/shY9hH3wC++FTSMPP/sX8s7/Ph24ICKhQoUGDmTATJmACJmIiZsWsmB2zYwxjmBNzYi7MhbkxN+bFvJiE+bEgFkRCQkbGQlgI4xjHIlgEi2JRLI7F0aHDUlgKS+ONWAbLYFksi+WwHJbHClgBb8VbsRJWwspYGatgFayKVbE6Vse78C68G2thLayNtbEO1sG6WBfrYT2sj/WxITbERtgIG2NjbIpNsTk2x5bYElthK2yNrbEttsV22A7bY3vsgB2wI3bETtgJO2Nn7IJdsCt2xW74HD6Hz+Pz+AK+gL2wquqNfbAP9sW+2B8H4AB8CQfhy/gyvoJDcCgOw1fxVXwNR+AZHImjcDSOxkpqLI7D8chqIiZjMmaGSTgZJ+MUnIpTcTrOwJk4C2fhbJyDc/BdnIfzcT4uxIW4GJfgElyK72MKpuAyPIupuBxX4EpchatxFa7FdbgWN+BG3ICbcTNuxa34EX6EO3AH7sJduAf34Mf4MX6Cn+AQTMM0PIAH8CAexEN4CA/jYTyCR/AoHsVjeAyP43E8gSfxFJ7E03gaz+BZPAcA5/E8XsALeBEvpn/4VTqjjMqkMqkElaASVaLKqrKq7Cq7iqmYyqlyqlwql8qtcqu8Kq/Kr/KrgqqgIkWKVaQKqUIqruKqiCqiiqqiqrgqrpxyqpQqpUqr0qqMKqPKqptVOXWLKq8qqDbuVnWrqqTausrqDlVFVVFVVTVVXdVQNVRNVVPVUrVUbVVb1VF1VF11v6qnemN/bKDSO9NIDcXGahg2Vc1Uc9VCvYYPq1ZqBLZWbVRb9agahSOxvWrlOqgnVEc1Djupp9R4fFp1UROxq3pWdVPPqe7qedVDtXY9VS81BXurPmo69lX9VH81QM3Gaiq9Y9XVK+r5zEPVMPWqWoyvqRHqdTVSjVKj1RtqjBqrxqnxaoKaqJLVm2qSektNVm+rKWqqmqamqxlqppql3lGz1Rw1V72r5qn5aoFaqBapxWqJek8tVe+rFPWBWqY+VKlquVqhVqpVarVao9aqdWq92qA2qk1qs9qitqpt6iO1Xe1QO9UutVvtUXvVx2qf+kTtV5+qNPWZOqD+og6qz9Uh9YU6rL5UR9RX6qj6Wh1T36jj6lt1Qp1Up9R36rT6Xp1RZ9U59YM6r35UF9RP6qLyCjRqpbU2OtCZdGadoLPoRH2Vzqqz6ew6h47pq3VOfY3Opa/VuXUendfk0/l1AV1Qh5q01awjXUgX1nF9nS6ir9dFdTFdXJfQTpfUpfQNurS+UZfRN+my+mZdTt+iy+sKuqIHfZuupG/XlfUduoq+U1fV1XR1XUPfpWvqu3UtfY+ure/VdfR9uq6+X9fTD+j6uoFuqB/UjfRDurFuopvqZrq5bqFb6od1K/2Ibq3b6Lb6Ud1OP6bb68d1B/2E7qif1J30U7qzflp30c/orvpZ3U0/p7vrn/RF7XVP3Usn6d66j35R99X9dH89QA/UL+lB+mU9WL+ih+iheph+VQ/Xr+kR+nU9Uo/So/Ubeoweq8fp8XqCnqiT9Zt6kn5LT9Zv6yl6qp6mp+sZeqbu/+tMc/+J/Lf+Tv7gn8++VW/TH+nteofeqXfp3XqP3qv36n16n96v9+s0naYP6AP6oD6oD+lD+rA+rI/oI/qoPqqP6WP6uD6uT+iT+gf9nT6tv9dn9Fl9Vv+gz+vz+sKvPwMwaJTRxpjAZDKZTYLJYhLNVSaryWaymxwmZq42Oc01Jpe51uQ2eUxek8/kNwVMQRMaMtawiUwhU9jEzXWmiLneFDXFTHFTwjhT0pQyN/yP8y9XX0vT0rQyrUxr09q0NW1NO9POtDftTQfTwXQ0HU0n08l0Np1NF9PFdDVdTTfTzXQ33U0P08P0ND1NkkkyfcyLpq/pZ/qbAWageckMMoPMYDPYDDFDzDAzzAw3w80IM8KMNCPNaDPajDFjzDgzzkwwE0yyz2EmmUlmsplsppgpZtrAHGaGmWFmmVlmtplt5pq5Zp6ZZxaYBWaRWWSWmCVmqVlqUkyKWWaWmVSz3Cw3K81Ks9qsNmvNWrPerDcbzUaz2Ww2qWab2Wa2m+1mp9lpdpvdZq/Za/aZfWa/2W/STJo5YA6Yg+agOWQOmcPmsDlijpij5qg5Zo6Z4+a4OWFOmFPmlDltTpsz5ow5Z86Z8+a8uWAumIvmYvptX6ACFZjABJmCTEFCkBAkBolB1iBrkD3IHsSCWJAzyBnkCq4Ncgd5grxBviB/UCAoGIQBBTbgIAoKBYWDeHBdUCS4PigaFAuKByUCF5QMSgU3BKWDG4MywU1B2eDmoFxwS1A+qBBUDG4NbgsqBbcHlYM7girBnUHVoFpQPagR3BXUDO4OagX3BLWDe4M6wX1B3eD+oF7wQFA/aBA0DB4MGgUPBY2DJkHToFnQPGgRtPxD5/f+TJ5HXM+wV5gU9g77hC+GfcN+Yf9wQDgwfCkcFL4cDg5fCYeEQ8Nh4avh8PC1cET4ejgyHBWODt8Ix4Rjw3Hh+HBCODFMDt8MJ4VvhZPDt8Mp4dRwWjA9nBHODGeF74Szwznh3PDdcF44P1wQLgwXhYtD/OWWGFLCD8Jl4Ydharg8XBGuDFeFq8M14dpwXbg+3BBuDDeFm8sO+uXQcHu4I9wZ7gp3h3vCveHH4b7wk3B/+GmYFn4WHgj/Eh4MPw8PhV+Eh8MvwyPhV+HR8OvwWPhNeDz8NjwRngxPhd+Fp8PvwzPh2fBc+EN4PvwxvBD+FF4MffrNffrlnQwZykSZKIESKJESKStlpeyUnWIUo5yUk3JRLspNuSkv5aX8lJ8KUkFKx8RUiApRnOJUhIpQUSpKxak4OXJUikpRaSpNZagMlaWyVI7KUXkqTxWpIt1Gt9HtdDvdQXfQnXQnVaNqVINqUE2qSbWoFtWm2lSH6lBdqkv1qB7Vp/rUkBpSI2pEjakxNaWm1JyaU0tqSa2oFbWm1tSW2lI7akftqT11oA7UkTpSJ+pEnakzdaEu1JW6UjfqRt2pO/WgHtSTelISJVEf6kN9qS/1p/40kAbSIBpEg2kwDaEhNIyG0XAaTiNoBI2kUTSa3qAxNJbG0XiaQBMpmZJpEk2iyTSZptAUmkbTaAbNoFk0i2bTbJpLc2kezaMFtIAW0SJaQktoKS2lFEqhZbSMUimVVtAKWkWraA2toXW0jjbQBtpEm2gLbaFttI2203baSTtpN+2mvbSX9tE+2k/7KY3S6AAdoIN0kA7RITpMh+kIHaGjdJSO0TE6TsfpBJ2gU3SKTtNpOkNn6Bydo/P0I12gn+gieUqwWWyivcpmtdlsdpvD/nWc1+az+W0BW9CGNrfN87uYrLVFbTFb3Jawzpa0pewNfxOXtxVsRXurvc1Wsrfbyra8zQL/Na5p77a17D22tr3X1rB3/S6uY++zde1Dtp5tYuvbZrahbWEb2YdsY9vENrXNbHPbwrazj9n29nHbwT5hO9on/yZeat+36+x6u8FutPvsJ/ac/cEetV/b8/ZH29P2sgPtS3aQfdkOtq/YIXbo72MAO9q+YcfYsXacHW8n2Il/E0+z0+0MO9POsu/Y2XbO38RL7Ht2nk2xC+xCu8gu/jlOrynFfmCX2Q9tql1uV9iVdpVdbdfYtf+31pV2s91it9q99mO73e6wO+0uu9vu+TlOX8d++6lNs5/ZI/Yre9B+bg/ZY/aw/fLnOH19x+w39rj91p6wJ+0p+509bb+3Z+zZn9efvvbv7E/2ovUWGFmxZsMBZ+LMnMBZOJGv4qycjbNzDo7x1ZyTr+FcfC3n5jycl/Nxfi7ABTlkYsvMERfiwhzn67gIX89FuRgX5xLsuCSX4hu4NN/IZfgmLss3czm+hctzBa7It/JtXIlv58p8B1fhO7kqV+PqXIPv4pp8N9fie7g238t1+D6uy/dzPX6A63MDbsgPciN+iBtzE27Kzbg5t+CW/DC34ke4Nbfhtvwot+PHuD0/zh34Ce7IT3Infoo789PchZ/hrvwsd+PnuDs/zz34Be7JvTiJe3MffpH7cj/uzwN4IL/Eg/hlHsyv8BAeysP4VR7Or/EIfp1H8igezW/wGB7L43g8T+CJnMxv8iR+iyfz2zyFp/I0ns4zeCbP4nd4Ns/hufwuz+P5vIAX8iJezEv4PV7K73MKf8DL+ENO5eW8glfyKl7Na3gtr+P1vIE38ibezFt4K2/jj3g77+CdvIt38x7eyx/zPv6E9/OnnMaf8QH+Cx/kz/kQf8GH+Us+wl/xUf6aj/E3fJy/5RN8kk/xd3yav+czfJbP8Q98nn/kC/wTX2TPEGGkIh2ZKIgyRZmjhChLlBhdFWWNskXZoxxRLLo6yhldE+WKro1yR3mivFG+KH9UICoYhRFFNuIoigpFhaN4dF1UJLo+KhoVi4pHJSIXlYxKRTdEpaMbozLRTVHZ6OaoXHRLVD6qEFWMbo1uiypFt0eVozuiKtGdUdWoWlQ9qhHdFdWM7o5qRfdEtaN7ozLRfVHd6P6oXvRAVD9qEDWMHowaRQ9FjaMmUdOoWdQ8ahG1jB6OWkWPRK2jNlHb6NGoXfRY1D56POoQPRF1jJ68tL9Y8MvV9K/2J0W9I/3rG7J79KL44viS+HvxpfH34ynxD+LL4h/GU+PL4yviK+Or4qvja+Jr4+vi6+Mb4hvjm+Kb41viW+Pe18gMDtMfhMG4wGVymV2Cy+IS3VUuq8vmsrscLuaudjndNS6Xu9bldnlcXpfP5XcFXEEXOnLWsYtcIVfYxd11roi73hV1xVxxV8I5V9KVci1cS9fStXKPuNaujWvrHnWPusfcY+7xhF8Ld53cU66ze9p1cc+4Z9yzrpt7znV3z7se7gXX0/VySS7J9XF9XF/X1/V3/d1AN9ANcoPcYDfYDXFD3DA3zA13w90IN8KNdCPdaDfajXFj3Dg3zk1wE1yyS3aT3CQ32U12U9wUN81NczPcDDfLzXKz3Ww3181189w8t8AtcIvcIrfELXFL3VKX4lLcMrfMpbpUt8KtcKvcKrfGrXHr3Dq3wW1wm9wmt8VtcdvcNrfdbXc73U632+12e91et8/tc/vdfpfm0twBd8AddAfdIfeFO+y+dEfcV+6o+9odc9+44+5bd8KddKec16fd9+6MO+vOuR/cefeju+B+chedd8mxN2OTYm/FJsfejk2JTY1Ni02PzYjNjM2KvRObHZsTmxt7NzYvNj+2ILYwtii2OLYk9l5saez9WErsg9iy2Iex1Njy2IrYytiq2OqY9wW2R76QL+zj/jpfxF/vi/pivrgv4Z0v6Uv5G3xpf6Mv42/yZf3Nvpy/xZf3FXxF38Q39c18c9/Ct/QP+1b+Ed/at/Ft/aO+nX/Mt/eP+w7+Cd/RP+k7+ad8Z/+07+Kf8V39s/N/7bLv4V/wPX0vn+R7+z7+Rd/X9/P9/QA/0L/kB/mX/WD/ih/ih/ph/lU/3L/mR/jX/Ug/yo/2b/gxfqwf58f7CX6iT/Zv+kn+LT/Zv+2n+Kl+mp/uZ/iZfpZ/x8/2c/xc/66f5+f7BX6hX+QX+yX+Pb/Uv+9T/Ad+mf/Qp/rlfoVf6Vf51X6NX+vX+fV+g9/oN/nNfovf6rf5j/x2v8Pv9Lv8br/H7/Uf+33+E7/ff+rT/Gf+gP+LP+g/94f8F/6w/9If8V/5o/5rf8x/44/7b/0Jf9Kf8t/50/57f8af9ef8D/68/9Ff8D/5i/I3a0IIIYQQ/xR9mf29/87/qV+3dH0AINuOfIf/es5NuX8Z91P7OsYA4IleXRv8tjVokJSU9OuxqRqCwgsBIHYp/+fvH/g1Xg5t4THoAG2g9N+tr5+q+PN93383f/xmgESALL/lpD8eJcJfz3/jP5i/yXt8ufkXAhQtfCkn/US/xZfmL/MP5t/T7jLzZ/k8GaD1f8nJCpfiS/OXgkfgSejwuyOFEEIIIYQQQohf9FPnu13u+Tb9+Ty/uZSTGS7Fl3s+v4zKf8QahBBCCCGEEEII8d97+rnujz/coUObzv/Jg8x/jjL+BAMEgD9BGTL48w+u9G8mIYQQQgghxB/t0k3/la5ECCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYTIuP79bwhT//TBV3qNQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghxJX2fwIAAP//5g1V0w==") truncate(&(0x7f0000000140)='./file2\x00', 0x63fc) r0 = open(&(0x7f0000000240)='./file2\x00', 0x145142, 0x0) sendfile(r0, r0, 0x0, 0xf000) 3.40519494s ago: executing program 0 (id=36): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 3.270410548s ago: executing program 0 (id=37): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)={0x84, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x3c, 0xe, {{{}, {}, @broadcast, @device_b, @from_mac=@broadcast}, 0x3, @random=0x7, 0x1, @void, @void, @void, @val={0x4, 0x6, {0xf0, 0x2, 0x7f, 0xa706}}, @val={0x6, 0x2, 0x6}, @void, @void, @void, @void, @void, @val={0x72, 0x6}, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x14, 0xf, [@random={0xbf, 0xe, "f5a53625db45f2224d479b6dfe90"}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x84}, 0x1, 0x0, 0x0, 0x20004090}, 0x0) 2.286836105s ago: executing program 3 (id=40): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x68, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x2b, 0xe, {{{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x1, @void, @void, @val={0x3, 0x1, 0x28}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}, @NL80211_ATTR_HIDDEN_SSID={0x8, 0x7e, 0x1}, @NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x6}]}, 0x68}}, 0x0) 2.246259258s ago: executing program 0 (id=41): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80b00, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000bc0)={0x2, 0x0, @ioapic={0x33325000, 0x40b, 0xa, 0xfffffffc, 0x0, [{0xc, 0x6, 0x6, '\x00', 0xb4}, {0x83, 0x7, 0x4, '\x00', 0x4b}, {0xfc, 0xe, 0x7, '\x00', 0xf8}, {0x0, 0xd, 0x40, '\x00', 0x7}, {0x8, 0x10, 0x8, '\x00', 0xa8}, {0x2, 0x9, 0x6, '\x00', 0xff}, {0x6, 0xe, 0x47, '\x00', 0x6}, {0x5, 0x8c, 0x4, '\x00', 0xe9}, {0xe, 0x4, 0x8, '\x00', 0x1}, {0x5, 0x7, 0x6, '\x00', 0x4}, {0x2, 0x69, 0x15, '\x00', 0x8}, {0xe, 0x7, 0x6, '\x00', 0x7}, {0x4, 0x8a, 0x80, '\x00', 0xdd}, {0x3, 0xf1, 0x6, '\x00', 0x9}, {0x7, 0x65, 0xb, '\x00', 0xfd}, {0x6, 0x9b, 0x19, '\x00', 0x5}, {0x7, 0x2, 0x24, '\x00', 0xa}, {0xef, 0x6, 0x9, '\x00', 0x4}, {0xf, 0x6, 0x6, '\x00', 0x9}, {0x9, 0x3, 0x3, '\x00', 0x4}, {0x1, 0x3, 0x7, '\x00', 0x4}, {0xd, 0x40, 0x7, '\x00', 0x9}, {0xfe, 0xfd, 0x7, '\x00', 0xff}, {0x92, 0x6, 0xfa}]}}) 1.912129127s ago: executing program 3 (id=43): syz_emit_ethernet(0x46, &(0x7f0000000000)={@broadcast, @empty, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "120008", 0x10, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x1, 0x0, 0x2}}}}}}, 0x0) setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xa, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000880)={@link_local, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "01044a", 0x18, 0x3a, 0xff, @ipv4={'\x00', '\xff\xff', @broadcast}, @local, {[], @ndisc_na={0x88, 0x0, 0x0, 0x0, '\x00', @remote}}}}}}, 0x0) 1.829061652s ago: executing program 0 (id=44): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c) listen(r0, 0x3) setsockopt$inet6_int(r0, 0x29, 0x4b, &(0x7f0000000000)=0x10000, 0x4) syz_emit_ethernet(0x3a, &(0x7f0000000040)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1a}, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x65, 0x0, 0x2, 0x6, 0x0, @rand_addr=0x64010101, @remote, {[@timestamp_addr={0x44, 0x4, 0xe9, 0x1, 0x8}]}}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2, 0xffff, 0x0, 0x3}}}}}}, 0x0) 1.632761994s ago: executing program 3 (id=45): socket$inet_udp(0x2, 0x2, 0x0) r0 = syz_io_uring_setup(0x10a, &(0x7f0000000140)={0x0, 0x5883, 0x0, 0x0, 0xfffffdfc}, &(0x7f0000000040)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x3}}) io_uring_enter(r0, 0x3516, 0x0, 0x0, 0x0, 0x0) 1.591721516s ago: executing program 0 (id=46): syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000600)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6469725f726573765f6c6576656c3d30303030303030303030303030303030303030332c726573765f6c6576656c3d30303030303030303030303030303030303030362c636f686572656e63793d66756c6c2c6c6f63616c666c6f636b732c636f686572656e63793d66756c6c2c6e6f61636c2c004c98065b85e5b137d63b2211c62c402045083da9bddc3b0d88d44ecd24ba5288d428197284f332858b83349af2c7646f1e07e91120d7f23ce20389bbc031d81d654f1ca08f61c92d90e6ea478843c1ad942c7c257f9ff5348dd038e947775991ad90f8861dada21d5fa2de7042b5e2cbbcd1ada2b568e375812eb0bc448e68eda4c70cf1d5adf566142ed45924fe72a1eb1a914faf754b9d94bf0fdc1f98c708bd89940b5ef96e328240c39559b35bc83c15c15104f3b3fe1945f0278c34e2399dadcd9776ac659afcbb239569140ab408ad87f15b353941"], 0x1, 0x442a, &(0x7f0000004480)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000200), 0xfea7) mkdirat(0xffffffffffffff9c, &(0x7f00000006c0)='./file1\x00', 0x0) setxattr$trusted_overlay_upper(&(0x7f0000000340)='./file1\x00', &(0x7f0000000000), &(0x7f0000000400)=ANY=[], 0x841, 0x0) 1.478824303s ago: executing program 2 (id=47): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f00000003c0)=@x86={0x1, 0xe, 0x0, 0x0, 0xe, 0x7f, 0x2, 0xc5, 0x6, 0x7f, 0x1, 0x2, 0x0, 0x1, 0x4, 0x7, 0xf, 0x51, 0x6, '\x00', 0x5, 0x800}) ioctl$KVM_SET_GUEST_DEBUG_x86(r2, 0x4048ae9b, &(0x7f0000000080)={0xe0003, 0x0, {[0xffffffffffffffff, 0x1f8, 0x7a8d, 0xffffffffefffff15, 0x2000000003, 0x4, 0x4, 0xfc9]}}) 1.324158822s ago: executing program 3 (id=48): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0) r1 = dup(r0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x28011, r1, 0x0) madvise(&(0x7f00002e5000/0x400000)=nil, 0x400000, 0xf) madvise(&(0x7f0000000000/0x800000)=nil, 0x800002, 0xe) 1.124313834s ago: executing program 2 (id=49): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000900)={0x40, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @action={{{}, {}, @device_b}, @sp_mp_open={0xf, 0x1, {0xa8, {}, @void, @void}}}}]}, 0x40}}, 0x0) 914.350916ms ago: executing program 2 (id=50): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c) listen(r0, 0x0) syz_emit_ethernet(0x5e, &(0x7f00000002c0)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x5a}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "f900f5", 0x28, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0xa, 0x2, 0x0, 0x0, 0x0, {[@fastopen={0x1e, 0x12, "3023afebe3a751292bba453e7b77a1f4"}]}}}}}}}}, 0x0) 670.80774ms ago: executing program 2 (id=51): r0 = socket$inet6_dccp(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000340)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) listen(r0, 0x3) 468.743552ms ago: executing program 2 (id=52): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x200000000000011, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'team0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000240)=ANY=[@ANYBLOB="3c000000100005ff04000000000000000000004a", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b00010062617461647600000400028008000a00", @ANYRES32=r2], 0x3c}}, 0x0) 388.761897ms ago: executing program 3 (id=53): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc048aeca, &(0x7f0000000080)={0x3, 0x0, [{0xaaa, 0x0, 0x1}, {0x174, 0x0, 0x9}, {0xb70, 0x0, 0x2}]}) 117.792233ms ago: executing program 3 (id=54): r0 = socket$inet_sctp(0x2, 0x5, 0x84) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000300)={0x0, 0x10, &(0x7f0000000100)=[@in={0x2, 0x4e20, @private=0xa010103}]}, &(0x7f0000000380)=0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000000)={0x1, [0x0]}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000002c0)={r2, 0x9}, 0x8) 0s ago: executing program 2 (id=55): r0 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) sendmsg$IPCTNL_MSG_TIMEOUT_DELETE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)={0x14, 0x2, 0x8, 0x5, 0x0, 0x0, {0x3, 0x0, 0x3}}, 0x14}, 0x1, 0x0, 0x0, 0x41}, 0x80) setsockopt$sock_int(r0, 0x1, 0x21, &(0x7f0000000000)=0xfffffffe, 0x4) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000040)=@ethtool_link_settings={0x2, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x4c, 0xf3, 0x8, [0x0, 0x0, 0x0, 0xc, 0x5, 0x0, 0x0, 0x40000002]}}) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.244' (ED25519) to the list of known hosts. [ 63.869654][ T5750] cgroup: Unknown subsys name 'net' [ 64.002671][ T5750] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 65.406134][ T5750] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 66.801473][ T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 66.812064][ T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 66.820768][ T51] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 66.855996][ T51] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 66.864471][ T5773] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 66.876350][ T51] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 66.884908][ T5774] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 66.884922][ T5773] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 66.902553][ T5774] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 66.902553][ T5775] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 66.910279][ T5774] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 66.924903][ T5774] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 66.924905][ T5775] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 66.933522][ T5775] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 66.947618][ T5773] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 66.948444][ T5774] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 66.955053][ T5773] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 66.963119][ T5774] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 66.969416][ T5775] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 66.976856][ T5774] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 66.988688][ T5775] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 66.998551][ T5774] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 67.005700][ T5774] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 67.026617][ T5082] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 67.441375][ T5761] chnl_net:caif_netlink_parms(): no params data found [ 67.523735][ T5764] chnl_net:caif_netlink_parms(): no params data found [ 67.533608][ T5762] chnl_net:caif_netlink_parms(): no params data found [ 67.548010][ T5763] chnl_net:caif_netlink_parms(): no params data found [ 67.613551][ T5761] bridge0: port 1(bridge_slave_0) entered blocking state [ 67.621511][ T5761] bridge0: port 1(bridge_slave_0) entered disabled state [ 67.629008][ T5761] bridge_slave_0: entered allmulticast mode [ 67.635857][ T5761] bridge_slave_0: entered promiscuous mode [ 67.678665][ T5761] bridge0: port 2(bridge_slave_1) entered blocking state [ 67.686285][ T5761] bridge0: port 2(bridge_slave_1) entered disabled state [ 67.693482][ T5761] bridge_slave_1: entered allmulticast mode [ 67.701029][ T5761] bridge_slave_1: entered promiscuous mode [ 67.778230][ T5761] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 67.791171][ T5761] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 67.800803][ T5764] bridge0: port 1(bridge_slave_0) entered blocking state [ 67.809053][ T5764] bridge0: port 1(bridge_slave_0) entered disabled state [ 67.816354][ T5764] bridge_slave_0: entered allmulticast mode [ 67.823108][ T5764] bridge_slave_0: entered promiscuous mode [ 67.857612][ T5764] bridge0: port 2(bridge_slave_1) entered blocking state [ 67.864894][ T5764] bridge0: port 2(bridge_slave_1) entered disabled state [ 67.872489][ T5764] bridge_slave_1: entered allmulticast mode [ 67.879325][ T5764] bridge_slave_1: entered promiscuous mode [ 67.928687][ T5763] bridge0: port 1(bridge_slave_0) entered blocking state [ 67.937337][ T5763] bridge0: port 1(bridge_slave_0) entered disabled state [ 67.944501][ T5763] bridge_slave_0: entered allmulticast mode [ 67.951419][ T5763] bridge_slave_0: entered promiscuous mode [ 67.959638][ T5762] bridge0: port 1(bridge_slave_0) entered blocking state [ 67.967296][ T5762] bridge0: port 1(bridge_slave_0) entered disabled state [ 67.974446][ T5762] bridge_slave_0: entered allmulticast mode [ 67.982129][ T5762] bridge_slave_0: entered promiscuous mode [ 67.990205][ T5762] bridge0: port 2(bridge_slave_1) entered blocking state [ 67.997707][ T5762] bridge0: port 2(bridge_slave_1) entered disabled state [ 68.005057][ T5762] bridge_slave_1: entered allmulticast mode [ 68.012086][ T5762] bridge_slave_1: entered promiscuous mode [ 68.021818][ T5761] team0: Port device team_slave_0 added [ 68.030396][ T5761] team0: Port device team_slave_1 added [ 68.039290][ T5764] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 68.048687][ T5763] bridge0: port 2(bridge_slave_1) entered blocking state [ 68.056018][ T5763] bridge0: port 2(bridge_slave_1) entered disabled state [ 68.063189][ T5763] bridge_slave_1: entered allmulticast mode [ 68.071970][ T5763] bridge_slave_1: entered promiscuous mode [ 68.107268][ T5762] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 68.118588][ T5764] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 68.159391][ T5762] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 68.187591][ T5763] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 68.200653][ T5763] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 68.210641][ T5761] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 68.217806][ T5761] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.243802][ T5761] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 68.265632][ T5764] team0: Port device team_slave_0 added [ 68.281398][ T5761] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 68.288863][ T5761] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.315031][ T5761] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 68.341879][ T5762] team0: Port device team_slave_0 added [ 68.350136][ T5764] team0: Port device team_slave_1 added [ 68.384052][ T5764] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 68.391256][ T5764] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.417870][ T5764] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 68.441072][ T5762] team0: Port device team_slave_1 added [ 68.451611][ T5763] team0: Port device team_slave_0 added [ 68.458409][ T5764] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 68.465371][ T5764] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.492128][ T5764] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 68.528886][ T5763] team0: Port device team_slave_1 added [ 68.557442][ T5761] hsr_slave_0: entered promiscuous mode [ 68.564270][ T5761] hsr_slave_1: entered promiscuous mode [ 68.587002][ T5762] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 68.593973][ T5762] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.620052][ T5762] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 68.641056][ T5762] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 68.648276][ T5762] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.674369][ T5762] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 68.717976][ T5763] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 68.725055][ T5763] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.751101][ T5763] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 68.764264][ T5763] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 68.771350][ T5763] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.797642][ T5763] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 68.822038][ T5764] hsr_slave_0: entered promiscuous mode [ 68.828645][ T5764] hsr_slave_1: entered promiscuous mode [ 68.834881][ T5764] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 68.843136][ T5764] Cannot create hsr debugfs directory [ 68.897368][ T5762] hsr_slave_0: entered promiscuous mode [ 68.903812][ T5762] hsr_slave_1: entered promiscuous mode [ 68.910575][ T5762] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 68.918468][ T5762] Cannot create hsr debugfs directory [ 69.025054][ T5763] hsr_slave_0: entered promiscuous mode [ 69.031556][ T5763] hsr_slave_1: entered promiscuous mode [ 69.038439][ T5763] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 69.046075][ T5763] Cannot create hsr debugfs directory [ 69.056902][ T5767] Bluetooth: hci1: command tx timeout [ 69.056914][ T5082] Bluetooth: hci3: command tx timeout [ 69.057155][ T5082] Bluetooth: hci2: command tx timeout [ 69.062585][ T5767] Bluetooth: hci0: command tx timeout [ 69.352236][ T5761] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 69.366377][ T5761] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 69.377007][ T5761] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 69.387670][ T5761] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 69.446833][ T5764] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 69.467825][ T5764] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 69.486991][ T5764] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 69.498636][ T5764] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 69.572861][ T5762] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 69.585149][ T5762] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 69.594514][ T5762] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 69.606546][ T5762] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 69.703574][ T5763] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 69.731214][ T5763] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 69.741317][ T5763] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 69.768723][ T5763] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 69.791985][ T5764] 8021q: adding VLAN 0 to HW filter on device bond0 [ 69.831934][ T5764] 8021q: adding VLAN 0 to HW filter on device team0 [ 69.845665][ T5761] 8021q: adding VLAN 0 to HW filter on device bond0 [ 69.865319][ T5761] 8021q: adding VLAN 0 to HW filter on device team0 [ 69.887622][ T4375] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.894921][ T4375] bridge0: port 1(bridge_slave_0) entered forwarding state [ 69.927853][ T4375] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.935094][ T4375] bridge0: port 1(bridge_slave_0) entered forwarding state [ 69.944580][ T4375] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.951710][ T4375] bridge0: port 2(bridge_slave_1) entered forwarding state [ 69.979024][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.986146][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 70.104428][ T5762] 8021q: adding VLAN 0 to HW filter on device bond0 [ 70.139695][ T5761] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 70.183078][ T5762] 8021q: adding VLAN 0 to HW filter on device team0 [ 70.218406][ T2935] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.225580][ T2935] bridge0: port 1(bridge_slave_0) entered forwarding state [ 70.255598][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.262803][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 70.282087][ T5763] 8021q: adding VLAN 0 to HW filter on device bond0 [ 70.391432][ T5763] 8021q: adding VLAN 0 to HW filter on device team0 [ 70.428220][ T41] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.435362][ T41] bridge0: port 1(bridge_slave_0) entered forwarding state [ 70.495353][ T4375] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.502616][ T4375] bridge0: port 2(bridge_slave_1) entered forwarding state [ 70.638762][ T5761] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 70.717620][ T5764] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 70.741390][ T5762] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 70.857365][ T5762] veth0_vlan: entered promiscuous mode [ 70.871392][ T5764] veth0_vlan: entered promiscuous mode [ 70.879725][ T5761] veth0_vlan: entered promiscuous mode [ 70.905298][ T5764] veth1_vlan: entered promiscuous mode [ 70.918579][ T5762] veth1_vlan: entered promiscuous mode [ 70.935537][ T5761] veth1_vlan: entered promiscuous mode [ 70.986896][ T5762] veth0_macvtap: entered promiscuous mode [ 71.012652][ T5763] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 71.031076][ T5762] veth1_macvtap: entered promiscuous mode [ 71.044000][ T5761] veth0_macvtap: entered promiscuous mode [ 71.055564][ T5761] veth1_macvtap: entered promiscuous mode [ 71.094203][ T5762] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 71.107437][ T5764] veth0_macvtap: entered promiscuous mode [ 71.124772][ T5762] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 71.134559][ T5764] veth1_macvtap: entered promiscuous mode [ 71.136987][ T5767] Bluetooth: hci0: command tx timeout [ 71.141931][ T5773] Bluetooth: hci2: command tx timeout [ 71.145705][ T5767] Bluetooth: hci1: command tx timeout [ 71.151165][ T5773] Bluetooth: hci3: command tx timeout [ 71.180264][ T5762] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.190726][ T5762] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.199996][ T5762] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.209056][ T5762] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.225362][ T5761] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 71.237314][ T5761] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.249417][ T5761] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 71.281165][ T5761] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 71.292646][ T5761] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.304301][ T5761] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 71.314624][ T5764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 71.328969][ T5764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.339299][ T5764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 71.352326][ T5764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.363749][ T5764] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 71.384987][ T5763] veth0_vlan: entered promiscuous mode [ 71.401070][ T5761] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.410161][ T5761] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.420228][ T5761] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.429115][ T5761] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.491695][ T5763] veth1_vlan: entered promiscuous mode [ 71.509123][ T5764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 71.520416][ T5764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.530759][ T5764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 71.543033][ T5764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.554763][ T5764] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 71.579589][ T5764] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.591693][ T5764] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.602497][ T5764] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.612111][ T5764] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.697961][ T41] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 71.708612][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.715172][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.729024][ T4375] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 71.737348][ T41] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 71.743780][ T4375] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 71.779976][ T5763] veth0_macvtap: entered promiscuous mode [ 71.808015][ T5763] veth1_macvtap: entered promiscuous mode [ 71.825544][ T4375] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 71.834383][ T4375] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 71.885213][ T78] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 71.895695][ T5763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 71.906980][ T78] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 71.914356][ T5763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.924845][ T5763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 71.935477][ T5763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.946425][ T5763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 71.957225][ T5763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.982940][ T5763] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 72.006973][ T78] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.014833][ T78] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.025080][ T5763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 72.053689][ T5763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.064011][ T5763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 72.075521][ T5763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.085559][ T5763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 72.096729][ T5763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.107864][ T5763] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 72.121496][ T5763] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.130528][ T5763] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.140386][ T5763] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.149342][ T5763] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.206493][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.223308][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.400028][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.429226][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.530301][ T3504] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.535348][ T5856] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 72.575395][ T3504] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.838030][ T5865] syz.1.2[5865]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 72.863764][ T5865] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 73.073859][ T5871] loop1: detected capacity change from 0 to 1024 [ 73.087192][ T5869] syzkaller1: entered promiscuous mode [ 73.092724][ T5869] syzkaller1: entered allmulticast mode [ 73.092926][ T5871] EXT4-fs: Ignoring removed bh option [ 73.144037][ T5871] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 73.216318][ T5773] Bluetooth: hci3: command tx timeout [ 73.221786][ T5773] Bluetooth: hci1: command tx timeout [ 73.228229][ T5082] Bluetooth: hci2: command tx timeout [ 73.228311][ T5767] Bluetooth: hci0: command tx timeout [ 73.266732][ T5871] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 73.462036][ T5871] EXT4-fs error (device loop1): ext4_find_dest_de:2115: inode #12: block 7: comm syz.1.8: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0 [ 73.487217][ T5871] EXT4-fs (loop1): Remounting filesystem read-only [ 73.494359][ T5871] overlayfs: cleanup of 'index/#4' failed (-5) [ 73.559807][ T5867] loop2: detected capacity change from 0 to 32768 [ 73.585413][ T5867] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.6 (5867) [ 73.660631][ T5867] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 73.676532][ T5848] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 73.701159][ T5867] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 73.718676][ T5867] BTRFS info (device loop2): trying to use backup root at mount time [ 73.728111][ T5867] BTRFS info (device loop2): setting nodatasum [ 73.734322][ T5867] BTRFS info (device loop2): enabling auto defrag [ 73.741553][ T5867] BTRFS info (device loop2): max_inline at 0 [ 73.750994][ T5867] BTRFS info (device loop2): using free space tree [ 73.886510][ T5867] BTRFS info (device loop2): auto enabling async discard [ 73.895863][ T5848] usb 4-1: Using ep0 maxpacket: 8 [ 73.911877][ T5848] usb 4-1: config 179 has an invalid interface number: 65 but max is 0 [ 73.922871][ T5848] usb 4-1: config 179 has no interface number 0 [ 73.929767][ T5848] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 73.941130][ T5848] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 73.952447][ T5848] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 73.963686][ T5848] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 73.975146][ T5848] usb 4-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 73.988472][ T5848] usb 4-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 73.997593][ T5848] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 74.026778][ T5876] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 74.167252][ T5761] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 74.422409][ T5848] input: Generic X-Box pad as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:179.65/input/input5 [ 74.662970][ C0] xpad 4-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 74.663009][ T1560] usb 4-1: USB disconnect, device number 2 [ 74.677679][ C0] xpad 4-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 74.686561][ T1560] xpad 4-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19 [ 74.742641][ T5763] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.801256][ T78] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 75.210374][ T5902] netlink: 12 bytes leftover after parsing attributes in process `syz.0.15'. [ 75.296847][ T5767] Bluetooth: hci3: command tx timeout [ 75.296902][ T5773] Bluetooth: hci1: command tx timeout [ 75.302299][ T5767] Bluetooth: hci2: command tx timeout [ 75.359723][ T5899] loop2: detected capacity change from 0 to 32768 [ 75.372074][ T5899] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.13 (5899) [ 75.430704][ T5899] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 75.472904][ T5899] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 75.499272][ T5899] BTRFS info (device loop2): setting incompat feature flag for COMPRESS_LZO (0x8) [ 75.539437][ T5899] BTRFS info (device loop2): use lzo compression, level 0 [ 75.576413][ T5899] BTRFS info (device loop2): using free space tree [ 75.671556][ T5082] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 75.681535][ T5082] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 75.695041][ T5082] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 75.704194][ T5082] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 75.713038][ T5082] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 75.720735][ T5082] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 75.787962][ T5899] BTRFS info (device loop2): enabling ssd optimizations [ 75.794962][ T5899] BTRFS info (device loop2): auto enabling async discard [ 76.129228][ T78] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 76.262620][ T5906] loop3: detected capacity change from 0 to 32768 [ 76.284600][ T5761] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 76.319390][ T5906] (syz.3.17,5906,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 76.379478][ T5906] (syz.3.17,5906,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 76.499549][ T5927] loop0: detected capacity change from 0 to 32768 [ 76.514165][ T5927] ======================================================= [ 76.514165][ T5927] WARNING: The mand mount option has been deprecated and [ 76.514165][ T5927] and is ignored by this kernel. Remove the mand [ 76.514165][ T5927] option from the mount to silence this warning. [ 76.514165][ T5927] ======================================================= [ 76.564083][ T5906] JBD2: Ignoring recovery information on journal [ 76.591489][ T78] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 76.663646][ T5927] JBD2: Ignoring recovery information on journal [ 76.677091][ T5906] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 76.739752][ T78] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 76.885163][ T5927] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 77.003022][ T5908] chnl_net:caif_netlink_parms(): no params data found [ 77.362170][ T5762] ocfs2: Unmounting device (7,3) on (node local) [ 77.488812][ T5937] loop2: detected capacity change from 0 to 32768 [ 77.498080][ T5937] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop2 scanned by syz.2.19 (5937) [ 77.512497][ T5764] ocfs2: Unmounting device (7,0) on (node local) [ 77.567031][ T5908] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.574218][ T5908] bridge0: port 1(bridge_slave_0) entered disabled state [ 77.585449][ T5937] BTRFS info (device loop2): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 77.625913][ T5937] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm [ 77.646042][ T5908] bridge_slave_0: entered allmulticast mode [ 77.653331][ T5908] bridge_slave_0: entered promiscuous mode [ 77.666526][ T5937] BTRFS info (device loop2): turning off barriers [ 77.673031][ T5937] BTRFS info (device loop2): enabling ssd optimizations [ 77.718169][ T5908] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.725429][ T5908] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.735889][ T5937] BTRFS info (device loop2): using spread ssd allocation scheme [ 77.746368][ T5937] BTRFS info (device loop2): enabling auto defrag [ 77.752832][ T5937] BTRFS info (device loop2): not using ssd optimizations [ 77.787656][ T5773] Bluetooth: hci0: command tx timeout [ 77.816865][ T5937] BTRFS info (device loop2): not using spread ssd allocation scheme [ 77.836874][ T5908] bridge_slave_1: entered allmulticast mode [ 77.844208][ T5908] bridge_slave_1: entered promiscuous mode [ 77.899584][ T5937] BTRFS info (device loop2): ignoring data csums [ 77.921874][ T5937] BTRFS info (device loop2): force zlib compression, level 3 [ 77.937521][ T5950] mmap: syz.3.20 (5950) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 77.952087][ T5937] BTRFS info (device loop2): enabling ssd optimizations [ 77.965858][ T5937] BTRFS info (device loop2): using spread ssd allocation scheme [ 77.973563][ T5937] BTRFS info (device loop2): using free space tree [ 78.298205][ T5773] Bluetooth: hci2: Malformed LE Event: 0x1b [ 78.534723][ T5908] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.575700][ T5980] loop0: detected capacity change from 0 to 2048 [ 78.587159][ T5937] BTRFS warning (device loop2: state C): failed to trim 1 block group(s), last error -512 [ 78.622901][ T5977] BTRFS warning (device loop2: state C): failed to trim 2 block group(s), last error -512 [ 78.683612][ T5908] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.765048][ T5980] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 78.787151][ T5937] BTRFS warning (device loop2: state C): failed to trim 1 device(s), last error -512 [ 78.798031][ T5977] BTRFS warning (device loop2: state C): failed to trim 1 device(s), last error -512 [ 78.892966][ T28] audit: type=1804 audit(1769050827.916:2): pid=5980 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.23" name="/newroot/6/file1/file1" dev="loop0" ino=15 res=1 errno=0 [ 78.931503][ T5761] BTRFS info (device loop2: state C): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 78.967150][ T5764] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.989426][ T5908] team0: Port device team_slave_0 added [ 79.123117][ T5908] team0: Port device team_slave_1 added [ 79.312558][ T5908] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 79.322071][ T5908] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.355326][ T5908] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 79.454576][ T5908] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 79.474280][ T5908] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.522142][ T5908] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 79.660908][ T5908] hsr_slave_0: entered promiscuous mode [ 79.678972][ T5908] hsr_slave_1: entered promiscuous mode [ 79.689288][ T5908] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 79.698642][ T5908] Cannot create hsr debugfs directory [ 79.840299][ T6006] capability: warning: `syz.2.29' uses deprecated v2 capabilities in a way that may be insecure [ 79.856022][ T5773] Bluetooth: hci0: command tx timeout [ 79.900146][ T6006] loop2: detected capacity change from 0 to 512 [ 80.032893][ T6006] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 80.049013][ T6006] ext4 filesystem being mounted at /8/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 80.221975][ T5761] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.488281][ T78] hsr_slave_0: left promiscuous mode [ 80.502856][ T78] hsr_slave_1: left promiscuous mode [ 80.532905][ T78] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 80.548059][ T78] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 80.567546][ T78] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 80.575587][ T78] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 80.584720][ T78] bridge_slave_1: left allmulticast mode [ 80.593713][ T78] bridge_slave_1: left promiscuous mode [ 80.601207][ T78] bridge0: port 2(bridge_slave_1) entered disabled state [ 80.614848][ T78] bridge_slave_0: left allmulticast mode [ 80.622515][ T78] bridge_slave_0: left promiscuous mode [ 80.628794][ T78] bridge0: port 1(bridge_slave_0) entered disabled state [ 80.722548][ T78] veth1_macvtap: left promiscuous mode [ 80.728669][ T78] veth0_macvtap: left promiscuous mode [ 80.738865][ T78] veth1_vlan: left promiscuous mode [ 80.749594][ T78] veth0_vlan: left promiscuous mode [ 80.941775][ T6039] loop0: detected capacity change from 0 to 256 [ 80.974762][ T6039] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 81.077701][ T28] audit: type=1800 audit(1769050830.106:3): pid=6039 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.35" name="file2" dev="loop0" ino=1048592 res=0 errno=0 [ 81.144742][ T6039] exFAT-fs (loop0): error, broken FAT chain. [ 81.162062][ T6039] exFAT-fs (loop0): Filesystem has been set read-only [ 81.169532][ T6039] exFAT-fs (loop0): error, failed to bmap (inode : ffff8880616607e0 iblock : 24, err : -5) [ 81.642905][ T78] team0 (unregistering): Port device team_slave_1 removed [ 81.718552][ T78] team0 (unregistering): Port device team_slave_0 removed [ 81.760464][ T78] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 81.805098][ T78] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 81.941237][ T9] cfg80211: failed to load regulatory.db [ 81.947096][ T5773] Bluetooth: hci0: command tx timeout [ 82.118720][ T78] bond0 (unregistering): Released all slaves [ 82.470617][ T5908] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 82.498110][ T5908] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 82.528311][ T5908] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 82.665881][ T5908] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 82.991191][ T5908] 8021q: adding VLAN 0 to HW filter on device bond0 [ 83.073611][ T5908] 8021q: adding VLAN 0 to HW filter on device team0 [ 83.146432][ T1137] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.153607][ T1137] bridge0: port 1(bridge_slave_0) entered forwarding state [ 83.194994][ T1137] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.203001][ T1137] bridge0: port 2(bridge_slave_1) entered forwarding state [ 83.893682][ T5908] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 84.016761][ T5773] Bluetooth: hci0: command tx timeout [ 84.100736][ T6084] loop0: detected capacity change from 0 to 32768 [ 84.152553][ T6084] JBD2: Ignoring recovery information on journal [ 84.335640][ T6084] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 84.461098][ T6121] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 84.503253][ T6121] team0: Port device batadv1 added [ 84.699552][ T6084] [ 84.701926][ T6084] ====================================================== [ 84.708954][ T6084] WARNING: possible circular locking dependency detected [ 84.716001][ T6084] syzkaller #0 Not tainted [ 84.720425][ T6084] ------------------------------------------------------ [ 84.727449][ T6084] syz.0.46/6084 is trying to acquire lock: [ 84.733267][ T6084] ffff8880616942d8 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#8){+.+.}-{3:3}, at: ocfs2_xattr_set+0xba4/0x13e0 [ 84.739867][ T5908] veth0_vlan: entered promiscuous mode [ 84.745468][ T6084] [ 84.745468][ T6084] but task is already holding lock: [ 84.745476][ T6084] ffff88805b56ce38 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_xattr_set+0x476/0x13e0 [ 84.768236][ T6084] [ 84.768236][ T6084] which lock already depends on the new lock. [ 84.768236][ T6084] [ 84.778650][ T6084] [ 84.778650][ T6084] the existing dependency chain (in reverse order) is: [ 84.787654][ T6084] [ 84.787654][ T6084] -> #4 (&oi->ip_xattr_sem){++++}-{3:3}: [ 84.795460][ T6084] down_read+0x46/0x2e0 [ 84.800222][ T6084] ocfs2_init_acl+0x30a/0x770 [ 84.805409][ T6084] ocfs2_mknod+0x140f/0x2300 [ 84.810513][ T6084] ocfs2_create+0x196/0x430 [ 84.815525][ T6084] path_openat+0x12a0/0x3230 [ 84.820620][ T6084] do_filp_open+0x1f5/0x430 [ 84.825628][ T6084] do_sys_openat2+0x134/0x1d0 [ 84.830815][ T6084] __x64_sys_openat+0x139/0x160 [ 84.836175][ T6084] do_syscall_64+0x55/0xa0 [ 84.841106][ T6084] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 84.847512][ T6084] [ 84.847512][ T6084] -> #3 (&journal->j_trans_barrier){.+.+}-{3:3}: [ 84.856013][ T6084] down_read+0x46/0x2e0 [ 84.860685][ T6084] ocfs2_start_trans+0x3a8/0x6f0 [ 84.866154][ T6084] ocfs2_modify_bh+0xe4/0x4c0 [ 84.871342][ T6084] ocfs2_local_read_info+0x1445/0x1800 [ 84.877313][ T6084] dquot_load_quota_sb+0x757/0xb80 [ 84.882954][ T6084] dquot_load_quota_inode+0x2dc/0x5d0 [ 84.888837][ T6084] ocfs2_enable_quotas+0x1c9/0x490 [ 84.894629][ T6084] ocfs2_fill_super+0x417d/0x5010 [ 84.900168][ T6084] mount_bdev+0x221/0x2d0 [ 84.905026][ T6084] legacy_get_tree+0xea/0x180 [ 84.910225][ T6084] vfs_get_tree+0x8c/0x280 [ 84.915153][ T6084] do_new_mount+0x24b/0xa40 [ 84.920173][ T6084] __se_sys_mount+0x2e7/0x3d0 [ 84.925359][ T6084] do_syscall_64+0x55/0xa0 [ 84.930285][ T6084] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 84.936686][ T6084] [ 84.936686][ T6084] -> #2 (sb_internal#3){.+.+}-{0:0}: [ 84.944152][ T6084] ocfs2_start_trans+0x2a9/0x6f0 [ 84.949598][ T6084] ocfs2_mknod+0xf1d/0x2300 [ 84.954608][ T6084] ocfs2_create+0x196/0x430 [ 84.959619][ T6084] path_openat+0x12a0/0x3230 [ 84.964716][ T6084] do_filp_open+0x1f5/0x430 [ 84.969725][ T6084] do_sys_openat2+0x134/0x1d0 [ 84.974998][ T6084] __x64_sys_openat+0x139/0x160 [ 84.980358][ T6084] do_syscall_64+0x55/0xa0 [ 84.985285][ T6084] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 84.991699][ T6084] [ 84.991699][ T6084] -> #1 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5){+.+.}-{3:3}: [ 85.002204][ T6084] down_write+0x97/0x200 [ 85.006963][ T6084] ocfs2_reserve_local_alloc_bits+0x120/0x2600 [ 85.013638][ T6084] ocfs2_reserve_clusters_with_limit+0x1ba/0xc20 [ 85.020482][ T6084] __ocfs2_move_extents_range+0x1642/0x35d0 [ 85.026886][ T6084] ocfs2_move_extents+0x3a7/0x9a0 [ 85.032422][ T6084] ocfs2_ioctl_move_extents+0x527/0x6c0 [ 85.038479][ T6084] ocfs2_ioctl+0x199/0x7e0 [ 85.043414][ T6084] __se_sys_ioctl+0xfd/0x170 [ 85.048529][ T6084] do_syscall_64+0x55/0xa0 [ 85.053479][ T6084] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 85.059892][ T6084] [ 85.059892][ T6084] -> #0 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#8){+.+.}-{3:3}: [ 85.070398][ T6084] __lock_acquire+0x2df1/0x7d40 [ 85.075765][ T6084] lock_acquire+0x19e/0x420 [ 85.080788][ T6084] down_write+0x97/0x200 [ 85.085551][ T6084] ocfs2_xattr_set+0xba4/0x13e0 [ 85.090910][ T6084] __vfs_setxattr+0x431/0x470 [ 85.096103][ T6084] __vfs_setxattr_noperm+0x12d/0x5e0 [ 85.101893][ T6084] vfs_setxattr+0x16b/0x2f0 [ 85.106903][ T6084] path_setxattr+0x3f3/0x5d0 [ 85.112009][ T6084] __x64_sys_setxattr+0xbb/0xd0 [ 85.117366][ T6084] do_syscall_64+0x55/0xa0 [ 85.122289][ T6084] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 85.128782][ T6084] [ 85.128782][ T6084] other info that might help us debug this: [ 85.128782][ T6084] [ 85.139119][ T6084] Chain exists of: [ 85.139119][ T6084] &ocfs2_sysfile_lock_key[args->fi_sysfile_type]#8 --> &journal->j_trans_barrier --> &oi->ip_xattr_sem [ 85.139119][ T6084] [ 85.156096][ T6084] Possible unsafe locking scenario: [ 85.156096][ T6084] [ 85.163541][ T6084] CPU0 CPU1 [ 85.168902][ T6084] ---- ---- [ 85.174254][ T6084] lock(&oi->ip_xattr_sem); [ 85.178831][ T6084] lock(&journal->j_trans_barrier); [ 85.186628][ T6084] lock(&oi->ip_xattr_sem); [ 85.193810][ T6084] lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#8); [ 85.201101][ T6084] [ 85.201101][ T6084] *** DEADLOCK *** [ 85.201101][ T6084] [ 85.209237][ T6084] 3 locks held by syz.0.46/6084: [ 85.214157][ T6084] #0: ffff88807e42e418 (sb_writers#15){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90 [ 85.223382][ T6084] #1: ffff88805b56d118 (&sb->s_type->i_mutex_key#21){+.+.}-{3:3}, at: vfs_setxattr+0x144/0x2f0 [ 85.233817][ T6084] #2: ffff88805b56ce38 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_xattr_set+0x476/0x13e0 [ 85.243721][ T6084] [ 85.243721][ T6084] stack backtrace: [ 85.249611][ T6084] CPU: 1 PID: 6084 Comm: syz.0.46 Not tainted syzkaller #0 [ 85.256792][ T6084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 85.266847][ T6084] Call Trace: [ 85.270122][ T6084] [ 85.273039][ T6084] dump_stack_lvl+0x18c/0x250 [ 85.277715][ T6084] ? load_image+0x400/0x400 [ 85.282209][ T6084] ? show_regs_print_info+0x20/0x20 [ 85.287403][ T6084] ? print_circular_bug+0x12b/0x1a0 [ 85.292594][ T6084] check_noncircular+0x2fc/0x400 [ 85.297524][ T6084] ? look_up_lock_class+0x75/0x140 [ 85.302629][ T6084] ? print_deadlock_bug+0x5d0/0x5d0 [ 85.307818][ T6084] ? lockdep_lock+0xf5/0x230 [ 85.312400][ T6084] ? lockdep_unlock+0x146/0x2e0 [ 85.317242][ T6084] ? _find_first_zero_bit+0xd3/0x100 [ 85.322514][ T6084] __lock_acquire+0x2df1/0x7d40 [ 85.327360][ T6084] ? ocfs2_inode_lock_full_nested+0xcdf/0x1b70 [ 85.333503][ T6084] ? _raw_spin_unlock+0x40/0x40 [ 85.338343][ T6084] ? verify_lock_unused+0x140/0x140 [ 85.343529][ T6084] ? stack_trace_save+0xaa/0x100 [ 85.348461][ T6084] lock_acquire+0x19e/0x420 [ 85.352953][ T6084] ? ocfs2_xattr_set+0xba4/0x13e0 [ 85.357991][ T6084] ? __might_sleep+0xe0/0xe0 [ 85.362570][ T6084] ? read_lock_is_recursive+0x20/0x20 [ 85.367947][ T6084] ? _raw_spin_unlock+0x28/0x40 [ 85.372788][ T6084] ? ocfs2_inode_lock_tracker+0x437/0x700 [ 85.378498][ T6084] ? ocfs2_xattr_block_find+0x15b/0x4d0 [ 85.384033][ T6084] down_write+0x97/0x200 [ 85.388270][ T6084] ? ocfs2_xattr_set+0xba4/0x13e0 [ 85.393281][ T6084] ? down_read_killable+0x340/0x340 [ 85.398467][ T6084] ? ocfs2_xattr_ibody_find+0xcb/0x7c0 [ 85.403981][ T6084] ocfs2_xattr_set+0xba4/0x13e0 [ 85.408827][ T6084] ? __ocfs2_xattr_set_handle+0xf40/0xf40 [ 85.414548][ T6084] ? __lock_acquire+0x1347/0x7d40 [ 85.419562][ T6084] ? verify_lock_unused+0x140/0x140 [ 85.424756][ T6084] ? ____kasan_slab_free+0x126/0x1e0 [ 85.430078][ T6084] ? aa_get_newest_label+0xfd/0x5c0 [ 85.435267][ T6084] ? end_current_label_crit_section+0x170/0x170 [ 85.441502][ T6084] ? posix_xattr_acl+0x93/0xb0 [ 85.446248][ T6084] ? ocfs2_xattr_trusted_get+0x40/0x40 [ 85.451789][ T6084] __vfs_setxattr+0x431/0x470 [ 85.456462][ T6084] __vfs_setxattr_noperm+0x12d/0x5e0 [ 85.461737][ T6084] vfs_setxattr+0x16b/0x2f0 [ 85.466241][ T6084] ? xattr_permission+0x470/0x470 [ 85.471271][ T6084] ? __mnt_want_write+0x223/0x2a0 [ 85.476307][ T6084] ? path_setxattr+0x3a1/0x5d0 [ 85.481068][ T6084] path_setxattr+0x3f3/0x5d0 [ 85.485652][ T6084] ? simple_xattrs_free+0x150/0x150 [ 85.490850][ T6084] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 85.496916][ T6084] ? lock_chain_count+0x20/0x20 [ 85.501763][ T6084] __x64_sys_setxattr+0xbb/0xd0 [ 85.506800][ T6084] do_syscall_64+0x55/0xa0 [ 85.511244][ T6084] ? clear_bhb_loop+0x40/0x90 [ 85.516044][ T6084] ? clear_bhb_loop+0x40/0x90 [ 85.520713][ T6084] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 85.526596][ T6084] RIP: 0033:0x7f7e6679acb9 [ 85.531011][ T6084] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 85.550604][ T6084] RSP: 002b:00007f7e67693028 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc [ 85.559006][ T6084] RAX: ffffffffffffffda RBX: 00007f7e66a15fa0 RCX: 00007f7e6679acb9 [ 85.566966][ T6084] RDX: 0000200000000400 RSI: 0000200000000000 RDI: 0000200000000340 [ 85.574934][ T6084] RBP: 00007f7e66808bf7 R08: 0000000000000000 R09: 0000000000000000 [ 85.582893][ T6084] R10: 0000000000000841 R11: 0000000000000246 R12: 0000000000000000 [ 85.590855][ T6084] R13: 00007f7e66a16038 R14: 00007f7e66a15fa0 R15: 00007ffd43383e38 [ 85.598824][ T6084] [ 85.622695][ T5908] veth1_vlan: entered promiscuous mode [ 85.649432][ T5908] veth0_macvtap: entered promiscuous mode [ 85.658973][ T5908] veth1_macvtap: entered promiscuous mode [ 85.714520][ T5908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 85.735816][ T5908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 85.755915][ T5908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 85.773040][ T5908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 85.788495][ T5908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 85.799342][ T5908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 85.812215][ T5908] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 85.829043][ T5908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 85.853780][ T5908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 85.868711][ T5908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 85.879268][ T5908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 85.889964][ T5908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 85.900667][ T5908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 85.911107][ T5764] ocfs2: Unmounting device (7,0) on (node local) [ 85.911879][ T5908] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 85.969383][ T5908] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.982885][ T5908] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.994644][ T5908] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.003577][ T5908] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.064977][ T5908] ieee80211 phy11: Selected rate control algorithm 'minstrel_ht' [ 86.097186][ T78] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.099134][ T5908] ieee80211 phy12: Selected rate control algorithm 'minstrel_ht' [ 86.105162][ T78] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.144462][ T78] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.156744][ T78] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50