last executing test programs: 11.65969182s ago: executing program 0 (id=950): r0 = socket$inet(0x2, 0x2, 0x1) sendmsg$inet(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f0000000180)="2d0000008058", 0x6}], 0x2, &(0x7f0000000100)=ANY=[], 0x40}, 0x4004814) 11.51357773s ago: executing program 0 (id=952): syz_mount_image$ext4(&(0x7f0000000340)='ext4\x00', &(0x7f0000000980)='./file0\x00', 0x3000010, &(0x7f0000000100)={[{@jqfmt_vfsv0}, {@nobh}]}, 0x1, 0x519, &(0x7f00000009c0)="$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") symlink(&(0x7f0000001000)='./file0\x00', 0x0) unlinkat(0xffffffffffffff9c, &(0x7f0000000480)='./file1\x00', 0x0) 11.246088142s ago: executing program 0 (id=955): socket$nl_generic(0x10, 0x3, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48) mkdirat(0xffffffffffffff9c, 0x0, 0x1c0) mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x1c0) r3 = landlock_create_ruleset(&(0x7f0000000180)={0x100}, 0x18, 0x0) openat$dir(0xffffffffffffff9c, 0x0, 0x200000, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0x200000, 0x0) landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r3, 0x1, 0x0, 0x0) landlock_restrict_self(r3, 0x0) close(r3) mknodat(0xffffffffffffff9c, &(0x7f0000000380)='./file1/file0\x00', 0x81c0, 0x0) 9.833321291s ago: executing program 0 (id=958): timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=0x0) fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) r1 = syz_clone(0x20000011, 0x0, 0x0, 0x0, 0x0, 0x0) wait4(r1, 0x0, 0x2, 0x0) 9.371799783s ago: executing program 0 (id=964): syz_open_dev$sndctrl(0x0, 0x1ff, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2d, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = socket$rxrpc(0x21, 0x2, 0xa) setsockopt$RXRPC_SECURITY_KEY(r2, 0x110, 0x1, &(0x7f0000000300)='GPL\x00', 0x4) 4.739714771s ago: executing program 3 (id=976): sendmsg$netlink(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000040)=ANY=[], 0x118}], 0x1, 0x0, 0x0, 0x1}, 0x0) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000140)={0x0, 0x1c, &(0x7f0000000200)=[@in6={0xa, 0x4e20, 0x4, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}}]}, &(0x7f0000000180)=0x10) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000000)={0x1, [0x0]}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x84, 0x0, 0x0) 3.591860419s ago: executing program 3 (id=982): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006280)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)) r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$AUDIT_TRIM(r0, 0x0, 0x4) openat$sndseq(0xffffff9c, &(0x7f0000000040), 0x200040) socket$inet_udp(0x2, 0x2, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080)='tmpfs\x00', 0x0, &(0x7f00000001c0)='grpquota') creat(&(0x7f0000000440)='./file0/file0\x00', 0x188) mmap(&(0x7f0000004000/0x3000)=nil, 0x3000, 0x1000007, 0x2172, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil) mkdir(&(0x7f0000000440)='./file1\x00', 0x82) mount(0x0, &(0x7f0000000280)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f00000001c0)='usrquota') r1 = getpid() r2 = syz_pidfd_open(r1, 0x0) setns(r2, 0x24020000) umount2(&(0x7f0000000040)='.\x00', 0x2) 2.793521643s ago: executing program 3 (id=984): socket$nl_generic(0x10, 0x3, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48) mkdirat(0xffffffffffffff9c, 0x0, 0x1c0) mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x1c0) r3 = landlock_create_ruleset(&(0x7f0000000180)={0x100}, 0x18, 0x0) openat$dir(0xffffffffffffff9c, 0x0, 0x200000, 0x0) r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0x200000, 0x0) landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r3, 0x1, &(0x7f0000000340)={0x100, r4}, 0x0) landlock_restrict_self(r3, 0x0) close(r3) mknodat(0xffffffffffffff9c, 0x0, 0x81c0, 0x0) 2.712069874s ago: executing program 2 (id=985): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000280)={0x3c, r1, 0x101, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0x5, 0x34, @random='n'}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x98a}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x7}], @NL80211_ATTR_BSS_BASIC_RATES={0x7, 0x24, [{0x30}, {0x2}, {0x12}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x4800) 2.495989845s ago: executing program 2 (id=986): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x210000, &(0x7f0000000500)={[{@user_xattr}, {@noquota}, {@dioread_nolock}, {@jqfmt_vfsv1}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x70}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7b4}}, {@stripe={'stripe', 0x3d, 0x20}}, {@bsdgroups}, {@max_batch_time={'max_batch_time', 0x3d, 0x3fe}}, {@inlinecrypt}, {@noinit_itable}]}, 0x3, 0x589, &(0x7f00000007c0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x3, 0x2f0}}, 0x28) 1.66489389s ago: executing program 1 (id=987): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r1}, 0x10) quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0) 1.58356679s ago: executing program 3 (id=988): syz_usb_connect(0x2, 0x3d, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000a6ff0540cdabeecdb9050000000109022b00010000000009040000020103510009058313000000000007250178"], 0x0) 1.519826291s ago: executing program 2 (id=989): socket$vsock_stream(0x28, 0x1, 0x0) syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x8802, 0x0, 0x1, 0x0, 0x0) pipe2$9p(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff0180000008003950323030302e75"], 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000002c0), 0x4000, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2]) chdir(&(0x7f0000000100)='./file0\x00') openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='rdma.current\x00', 0x275a, 0x0) 1.361406362s ago: executing program 0 (id=990): sendmsg$netlink(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000040)=ANY=[], 0x118}], 0x1, 0x0, 0x0, 0x1}, 0x0) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000140)={0x0, 0x1c, &(0x7f0000000200)=[@in6={0xa, 0x4e20, 0x4, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}}]}, &(0x7f0000000180)=0x10) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000000)={0x1, [0x0]}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x84, 0x0, 0x0) 1.356176062s ago: executing program 1 (id=991): socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={0xffffffffffffffff}) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_STATION(r1, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000280)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="cf0400000000000000001300000008000300", @ANYRES32=r3, @ANYBLOB="040013000a00060008021100000100000600100080050000060012000000000005"], 0x44}, 0x1, 0x0, 0x0, 0xc0}, 0x0) 1.271161862s ago: executing program 2 (id=992): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006280)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)) r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$AUDIT_TRIM(r0, 0x0, 0x4) openat$sndseq(0xffffff9c, &(0x7f0000000040), 0x200040) socket$inet_udp(0x2, 0x2, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080)='tmpfs\x00', 0x0, &(0x7f00000001c0)='grpquota') creat(&(0x7f0000000440)='./file0/file0\x00', 0x188) mmap(&(0x7f0000004000/0x3000)=nil, 0x3000, 0x1000007, 0x2172, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil) mkdir(&(0x7f0000000440)='./file1\x00', 0x82) mount(0x0, &(0x7f0000000280)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f00000001c0)='usrquota') r1 = getpid() r2 = syz_pidfd_open(r1, 0x0) setns(r2, 0x24020000) umount2(&(0x7f0000000040)='.\x00', 0x2) 1.248171313s ago: executing program 1 (id=993): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000140), 0x1, 0x4fa, &(0x7f0000000ac0)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLCSFUCdEjSG1I3CiKHUexU5rQQ3rmikQlTnDkD+DcE3cuCG5cygGJHxGoQeLg1YwnqZvaTdQkdhR/PtJo3ps39fe9pvNe/U3iF8DQuhoRuxExFhF3I2I6u57LjvisfST3Pdt7uLS/93ApF63W7X/l0vbkWnT8mcSV7DWLEfGj70X8NPdy3Mb2ztpitVrZzOqzzdrGbGN758ZqbXGlslJZL5cX5hfmPrn5cfnMxvpebSwrffXpH3e/9fOkW1PZlc5xnKX20AuHcRKjEfGD8wg2ACPZeMYG3RFeSz4i3o6I99PnfzpG0q8mAHCZtVrT0ZrurAMAl10+zYHl8qUsFzAV+Xyp1M7hvROT+Wq90bx+r761vtzOlc1EIX9vtVqZy3KFM1HIJfX5tPy8Xj5SvxkRb0XEL8cn0nppqV5dHuR/fABgiF05sv7/d7y9/gMAl1xx0B0AAPrO+g8Aw8f6DwDDx/oPAMOnvf5PDLobAEAfef8PAMPH+g8AQ+WHt24lR2s/+/zr5fvbW2v1+zeWK421Um1rqbRU39wordTrK+ln9tSOe71qvb4x/1FsPZj59kajOdvY3rlTq2+tN++kn+t9p1JI79rtw8gAgF7eeu/JX3LJivzpRHpEx14OhYH2DDhv+UF3ABiYkUF3ABgYu33B8DrFe3zpAbgkumzR+4Jit18QarVarfPrEnDOrn1J/h+GVUf+308Bw5CR/4fhJf8Pw6vVyp10z/846Y0AwMUmxw/0+P7/29n5d9k3B36yfPSOx+fZKwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALjYDvb/LWV7gU9FPl8qRbwRETNRyN1brVbmIuLNiPjzeGE8qc8PuM8AwGnl/57L9v+6Nv3h1AtN7145LI5FxM9+fftXDxabzc0/RYzl/j1+cL35OLte7n/vAYDjHazT6bnjjfyzvYdLB0c/+/OP70ZEsR1/f28s9g/jj8Zoei5GISIm/5PL6m25jtzFaew+iogvdht/LqbSHEh759Oj8ZPYb/Q1fv6F+Pm0rX1O/i6+cAZ9gWHzJJl/Puv2/OXjanru/vwX0xnq9LL5L3mppf10Dnwe/2D+G+kx/109aYyP/vD9dmni5bZHEV8ejTiIvd8x/xzEz/WI/+EJ4//1K+++36ut9ZuIa9E9fmes2WZtY7axvXNjtba4UlmprJfLC/MLc5/c/Lg8m+aoZ3uvBv/89PqbvdqS8U/2iF88ZvxfP+H4f/v/uz/+2ivif/ODbvHz8c4r4idr4jdOGH9x8vfFXm1J/OUe4z/u63/9hPGf/m3npW3DAYDBaWzvrC1Wq5VNBYWLX0j+yV6AbnQtfKdfscaie9MvPmg/00eaWq3XitVrxjiLrBtwERw+9BHxv0F3BgAAAAAAAAAAAAAA6Kofv7E06DECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABweX0eAAD//19xzyM=") bpf$MAP_CREATE(0x0, 0x0, 0x48) syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000480)='./bus\x00', 0x10, &(0x7f0000000680)={[{@test_dummy_encryption}, {@nobarrier}, {@noload}]}, 0x3, 0x475, &(0x7f0000001240)="$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") syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x20020c0, 0x0, 0x1, 0x0, &(0x7f0000001a00)) chdir(&(0x7f0000000140)='./bus\x00') symlink(&(0x7f0000000080)='.\x00', &(0x7f0000000240)='./file0\x00') r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000180)=@loop={'/dev/loop', 0x0}, 0x0, 0x0) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r1, 0x0) sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008004}, 0x4) unlinkat(r0, &(0x7f0000001e40)='./file0\x00', 0x0) 1.171981713s ago: executing program 1 (id=994): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000280)={0x3c, r1, 0x101, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0x5, 0x34, @random='n'}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x98a}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x7}], @NL80211_ATTR_BSS_BASIC_RATES={0x7, 0x24, [{0x30}, {0x2}, {0x12}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x4800) 1.171768703s ago: executing program 2 (id=995): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000001c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xchacha20\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd301e5a47b2f3caa73dcd2a6a370554375a", 0x20) r1 = accept4(r0, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f00000098c0)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000240)=""/28, 0x1c}, {&(0x7f0000000700)=""/216, 0xd8}], 0x2}, 0x80000003}], 0x1, 0x40000121, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000b40)=@newqdisc={0x24, 0x24, 0x0, 0x3}, 0x24}}, 0x0) 1.115471994s ago: executing program 1 (id=996): socket$nl_generic(0x10, 0x3, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48) mkdirat(0xffffffffffffff9c, 0x0, 0x1c0) mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x1c0) r3 = landlock_create_ruleset(&(0x7f0000000180)={0x100}, 0x18, 0x0) openat$dir(0xffffffffffffff9c, 0x0, 0x200000, 0x0) r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0x200000, 0x0) landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r3, 0x1, &(0x7f0000000340)={0x100, r4}, 0x0) landlock_restrict_self(r3, 0x0) close(r3) mknodat(0xffffffffffffff9c, 0x0, 0x81c0, 0x0) 903.906874ms ago: executing program 3 (id=997): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x4) write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff"], 0x15) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000000000000d000000010000000100000205003b2c01000000030000000500000000000000000000000000000001"]) 899.892515ms ago: executing program 3 (id=998): syz_open_dev$sndctrl(0x0, 0x1ff, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2d, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$rxrpc(0x21, 0x2, 0xa) setsockopt$RXRPC_SECURITY_KEY(r3, 0x110, 0x1, &(0x7f0000000300)='GPL\x00', 0x4) 81.71289ms ago: executing program 1 (id=999): syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000640)='./file0\x00', 0x3000000, &(0x7f0000000080)=ANY=[@ANYRES64=0x0], 0x1, 0x5f7, &(0x7f0000000c80)="$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") syz_emit_ethernet(0x0, 0x0, 0x0) syz_emit_ethernet(0x0, 0x0, 0x0) munmap(&(0x7f0000001000/0x3000)=nil, 0x3000) r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file2\x00', 0x1e5042, 0x48) write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0x32600) 0s ago: executing program 2 (id=1000): semop(0x0, &(0x7f00000001c0)=[{0x0, 0x8, 0x1800}, {0x0, 0x5, 0x1000}, {0x1, 0xe2c, 0x1800}, {0x4, 0x81, 0x800}], 0x4) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.164' (ED25519) to the list of known hosts. [ 71.829145][ T5778] cgroup: Unknown subsys name 'net' [ 71.993596][ T5778] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 73.738303][ T5778] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 75.262783][ T5790] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 75.272631][ T5790] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 75.280825][ T5790] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 75.289523][ T5790] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 75.297705][ T5790] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 75.297782][ T5793] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 75.305081][ T5790] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 75.314089][ T5793] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 75.328054][ T5793] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 75.343351][ T5793] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 75.351458][ T5793] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 75.359476][ T5793] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 75.417105][ T52] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 75.426045][ T52] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 75.434035][ T52] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 75.434347][ T5105] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 75.450718][ T5105] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 75.459874][ T52] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 75.467650][ T5105] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 75.475370][ T5105] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 75.483374][ T5105] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 75.492639][ T5105] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 75.501374][ T5105] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 75.509303][ T5105] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 75.872752][ T5791] chnl_net:caif_netlink_parms(): no params data found [ 75.917533][ T5788] chnl_net:caif_netlink_parms(): no params data found [ 75.989336][ T5797] chnl_net:caif_netlink_parms(): no params data found [ 76.141914][ T5795] chnl_net:caif_netlink_parms(): no params data found [ 76.153616][ T5791] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.161089][ T5791] bridge0: port 1(bridge_slave_0) entered disabled state [ 76.169824][ T5791] bridge_slave_0: entered allmulticast mode [ 76.177479][ T5791] bridge_slave_0: entered promiscuous mode [ 76.231423][ T5791] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.238981][ T5791] bridge0: port 2(bridge_slave_1) entered disabled state [ 76.246264][ T5791] bridge_slave_1: entered allmulticast mode [ 76.253033][ T5791] bridge_slave_1: entered promiscuous mode [ 76.260989][ T5797] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.268350][ T5797] bridge0: port 1(bridge_slave_0) entered disabled state [ 76.275501][ T5797] bridge_slave_0: entered allmulticast mode [ 76.283012][ T5797] bridge_slave_0: entered promiscuous mode [ 76.321707][ T5797] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.329110][ T5797] bridge0: port 2(bridge_slave_1) entered disabled state [ 76.336403][ T5797] bridge_slave_1: entered allmulticast mode [ 76.343204][ T5797] bridge_slave_1: entered promiscuous mode [ 76.361777][ T5788] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.369086][ T5788] bridge0: port 1(bridge_slave_0) entered disabled state [ 76.377122][ T5788] bridge_slave_0: entered allmulticast mode [ 76.383913][ T5788] bridge_slave_0: entered promiscuous mode [ 76.391775][ T5788] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.399112][ T5788] bridge0: port 2(bridge_slave_1) entered disabled state [ 76.406725][ T5788] bridge_slave_1: entered allmulticast mode [ 76.413523][ T5788] bridge_slave_1: entered promiscuous mode [ 76.493788][ T5791] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 76.505686][ T5797] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 76.518842][ T5797] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 76.530133][ T5788] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 76.543761][ T5788] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 76.553292][ T5795] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.561339][ T5795] bridge0: port 1(bridge_slave_0) entered disabled state [ 76.568645][ T5795] bridge_slave_0: entered allmulticast mode [ 76.575407][ T5795] bridge_slave_0: entered promiscuous mode [ 76.584704][ T5791] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 76.622215][ T5795] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.629596][ T5795] bridge0: port 2(bridge_slave_1) entered disabled state [ 76.637539][ T5795] bridge_slave_1: entered allmulticast mode [ 76.644395][ T5795] bridge_slave_1: entered promiscuous mode [ 76.711761][ T5791] team0: Port device team_slave_0 added [ 76.721726][ T5797] team0: Port device team_slave_0 added [ 76.732238][ T5797] team0: Port device team_slave_1 added [ 76.740743][ T5788] team0: Port device team_slave_0 added [ 76.750275][ T5788] team0: Port device team_slave_1 added [ 76.764563][ T5795] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 76.775358][ T5791] team0: Port device team_slave_1 added [ 76.803218][ T5795] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 76.884299][ T5791] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 76.892454][ T5791] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 76.918625][ T5791] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 76.930777][ T5797] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 76.937966][ T5797] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 76.964692][ T5797] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 76.977674][ T5788] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 76.984706][ T5788] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 77.011008][ T5788] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 77.025269][ T5795] team0: Port device team_slave_0 added [ 77.035248][ T5795] team0: Port device team_slave_1 added [ 77.041926][ T5791] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 77.049108][ T5791] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 77.075104][ T5791] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 77.092995][ T5797] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 77.100201][ T5797] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 77.126682][ T5797] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 77.146538][ T5788] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 77.153541][ T5788] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 77.179642][ T5788] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 77.251785][ T5795] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 77.258851][ T5795] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 77.285081][ T5795] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 77.298341][ T5795] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 77.305334][ T5795] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 77.331656][ T5795] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 77.399643][ T5791] hsr_slave_0: entered promiscuous mode [ 77.407650][ T5791] hsr_slave_1: entered promiscuous mode [ 77.419110][ T5797] hsr_slave_0: entered promiscuous mode [ 77.425997][ T5105] Bluetooth: hci1: command tx timeout [ 77.427867][ T5797] hsr_slave_1: entered promiscuous mode [ 77.431918][ T5790] Bluetooth: hci0: command tx timeout [ 77.443539][ T5797] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 77.451630][ T5797] Cannot create hsr debugfs directory [ 77.475227][ T5788] hsr_slave_0: entered promiscuous mode [ 77.481716][ T5788] hsr_slave_1: entered promiscuous mode [ 77.489929][ T5788] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 77.497988][ T5788] Cannot create hsr debugfs directory [ 77.575935][ T5790] Bluetooth: hci2: command tx timeout [ 77.581628][ T5790] Bluetooth: hci3: command tx timeout [ 77.643125][ T5795] hsr_slave_0: entered promiscuous mode [ 77.649481][ T5795] hsr_slave_1: entered promiscuous mode [ 77.655535][ T5795] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 77.663425][ T5795] Cannot create hsr debugfs directory [ 77.938257][ T5797] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 77.977013][ T5797] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 77.987952][ T5797] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 78.004484][ T5797] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 78.080430][ T5791] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 78.096280][ T5791] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 78.109323][ T5791] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 78.121373][ T5791] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 78.203529][ T5788] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 78.242613][ T5788] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 78.253919][ T5788] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 78.287481][ T5788] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 78.324942][ T5795] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 78.349427][ T5795] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 78.359855][ T5795] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 78.379087][ T5795] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 78.456141][ T5797] 8021q: adding VLAN 0 to HW filter on device bond0 [ 78.517793][ T5797] 8021q: adding VLAN 0 to HW filter on device team0 [ 78.560129][ T3462] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.567644][ T3462] bridge0: port 1(bridge_slave_0) entered forwarding state [ 78.592328][ T50] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.599660][ T50] bridge0: port 2(bridge_slave_1) entered forwarding state [ 78.619393][ T5791] 8021q: adding VLAN 0 to HW filter on device bond0 [ 78.678895][ T5791] 8021q: adding VLAN 0 to HW filter on device team0 [ 78.708028][ T5795] 8021q: adding VLAN 0 to HW filter on device bond0 [ 78.720182][ T60] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.727338][ T60] bridge0: port 1(bridge_slave_0) entered forwarding state [ 78.748790][ T42] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.756001][ T42] bridge0: port 2(bridge_slave_1) entered forwarding state [ 78.769865][ T5788] 8021q: adding VLAN 0 to HW filter on device bond0 [ 78.804904][ T5795] 8021q: adding VLAN 0 to HW filter on device team0 [ 78.829363][ T5788] 8021q: adding VLAN 0 to HW filter on device team0 [ 78.857097][ T60] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.864285][ T60] bridge0: port 1(bridge_slave_0) entered forwarding state [ 78.898997][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.906234][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 78.924622][ T50] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.931825][ T50] bridge0: port 1(bridge_slave_0) entered forwarding state [ 78.960771][ T60] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.968104][ T60] bridge0: port 2(bridge_slave_1) entered forwarding state [ 79.131523][ T5795] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 79.291349][ T5797] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 79.470401][ T5797] veth0_vlan: entered promiscuous mode [ 79.493608][ T5797] veth1_vlan: entered promiscuous mode [ 79.507064][ T5790] Bluetooth: hci1: command tx timeout [ 79.507443][ T5105] Bluetooth: hci0: command tx timeout [ 79.614280][ T5791] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 79.632700][ T5797] veth0_macvtap: entered promiscuous mode [ 79.655469][ T5797] veth1_macvtap: entered promiscuous mode [ 79.656126][ T5105] Bluetooth: hci2: command tx timeout [ 79.661615][ T5790] Bluetooth: hci3: command tx timeout [ 79.683956][ T5797] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 79.698152][ T5797] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 79.725665][ T5797] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.735330][ T5797] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.745544][ T5797] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.755371][ T5797] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.779644][ T5795] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 79.813354][ T5788] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 79.842925][ T5791] veth0_vlan: entered promiscuous mode [ 79.890935][ T5791] veth1_vlan: entered promiscuous mode [ 79.965373][ T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 79.977532][ T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 80.043607][ T5791] veth0_macvtap: entered promiscuous mode [ 80.072257][ T5791] veth1_macvtap: entered promiscuous mode [ 80.081960][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 80.093061][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 80.104452][ T5795] veth0_vlan: entered promiscuous mode [ 80.112653][ T5788] veth0_vlan: entered promiscuous mode [ 80.147545][ T5788] veth1_vlan: entered promiscuous mode [ 80.185586][ T5791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 80.209091][ T5791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.221050][ T5791] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 80.233517][ T5795] veth1_vlan: entered promiscuous mode [ 80.260211][ T5791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 80.306126][ T5791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.320608][ T5791] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 80.334805][ T5870] syz.0.1[5870]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 80.348178][ T5870] loop0: detected capacity change from 0 to 16 [ 80.364415][ T5870] erofs: (device loop0): mounted with root inode @ nid 36. [ 80.391776][ T5788] veth0_macvtap: entered promiscuous mode [ 80.408746][ T5791] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.426045][ T5791] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.439675][ T5791] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.448806][ T5791] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.512514][ T5788] veth1_macvtap: entered promiscuous mode [ 80.542662][ T5795] veth0_macvtap: entered promiscuous mode [ 80.559261][ T5872] Bluetooth: MGMT ver 1.22 [ 80.589241][ T5795] veth1_macvtap: entered promiscuous mode [ 80.653267][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 80.670157][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.689398][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 80.700878][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.711600][ T5875] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 80.714143][ T5788] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 80.753361][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 80.766858][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.777135][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 80.788931][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.801805][ T5788] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 80.826687][ T5788] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.835428][ T5788] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.850485][ T5788] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.865414][ T5788] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.931942][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 80.945216][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.958622][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 80.975383][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.987201][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 81.017891][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.034137][ T5795] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 81.053028][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.072946][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.105506][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 81.113148][ T5883] loop0: detected capacity change from 0 to 1024 [ 81.123268][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.125677][ T5883] hfsplus: unable to parse mount options [ 81.141377][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 81.152170][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.162599][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 81.173489][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.189166][ T5795] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 81.217467][ T5783] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 81.232373][ T5883] loop0: detected capacity change from 0 to 1024 [ 81.241954][ T5883] hfsplus: unable to parse mount options [ 81.252775][ T5795] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.269818][ T5795] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.289027][ T5795] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.316038][ T5795] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.382125][ T1329] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.421986][ T1329] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.518370][ T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.545687][ T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.576060][ T5790] Bluetooth: hci1: command tx timeout [ 81.577023][ T5105] Bluetooth: hci0: command tx timeout [ 81.641695][ T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.672291][ T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.716800][ T5889] futex_wake_op: syz.3.4 tries to shift op by 144; fix this program [ 81.726668][ T1329] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.734536][ T1329] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.738538][ T5105] Bluetooth: hci2: command tx timeout [ 81.744953][ T5790] Bluetooth: hci3: command tx timeout [ 81.816915][ T5849] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 81.841487][ T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.861078][ T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.930017][ T5891] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3'. [ 81.971396][ T5891] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3'. [ 82.044497][ T5893] loop3: detected capacity change from 0 to 2048 [ 82.064982][ T5849] usb 1-1: config 0 has an invalid interface number: 120 but max is 0 [ 82.080640][ T5849] usb 1-1: config 0 has no interface number 0 [ 82.103054][ T5849] usb 1-1: New USB device found, idVendor=16e3, idProduct=f9e9, bcdDevice= 0.58 [ 82.127965][ T5893] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 82.146260][ T5849] usb 1-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3 [ 82.168887][ T5849] usb 1-1: Product: syz [ 82.173133][ T5849] usb 1-1: SerialNumber: syz [ 82.178268][ T5893] UDF-fs: Scanning with blocksize 512 failed [ 82.196475][ T5895] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 82.244557][ T5849] usb 1-1: config 0 descriptor?? [ 82.276103][ T5893] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 82.318790][ T5849] input: syz as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.120/input/input5 [ 82.347747][ T5898] 9pnet: p9_errstr2errno: server reported unknown error 1844674 [ 82.515643][ C0] usbtouchscreen 1-1:0.120: usbtouch_irq - usb_submit_urb failed with result: -19 [ 82.527745][ T5867] usb 1-1: USB disconnect, device number 2 [ 82.769157][ T5906] netlink: 28 bytes leftover after parsing attributes in process `syz.1.11'. [ 83.015874][ T27] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 83.146199][ T5849] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 83.217156][ T27] usb 3-1: Using ep0 maxpacket: 32 [ 83.224975][ T27] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 83.246408][ T27] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 83.266055][ T27] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 83.288449][ T27] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 83.320758][ T27] usb 3-1: config 0 descriptor?? [ 83.343341][ T27] hub 3-1:0.0: USB hub found [ 83.354757][ T5849] usb 2-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36 [ 83.383190][ T5849] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 83.393542][ T5849] usb 2-1: Product: syz [ 83.401803][ T5849] usb 2-1: Manufacturer: syz [ 83.409098][ T5849] usb 2-1: SerialNumber: syz [ 83.428970][ T5849] usb 2-1: config 0 descriptor?? [ 83.450175][ T5849] ch341 2-1:0.0: ch341-uart converter detected [ 83.538527][ T5918] loop0: detected capacity change from 0 to 1024 [ 83.547232][ T27] hub 3-1:0.0: 1 port detected [ 83.548535][ T5918] EXT4-fs: Ignoring removed nomblk_io_submit option [ 83.605143][ T5918] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 83.657516][ T5790] Bluetooth: hci0: command tx timeout [ 83.657529][ T5105] Bluetooth: hci1: command tx timeout [ 83.676159][ T5849] usb 2-1: failed to receive control message: -71 [ 83.683031][ T5849] ch341-uart: probe of ttyUSB0 failed with error -71 [ 83.694874][ T5849] usb 2-1: USB disconnect, device number 2 [ 83.709727][ T5849] ch341 2-1:0.0: device disconnected [ 83.762056][ T27] hub 3-1:0.0: hub_hub_status failed (err = -71) [ 83.778846][ T27] hub 3-1:0.0: config failed, can't get hub status (err -71) [ 83.795433][ T5797] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.805139][ T27] usbhid 3-1:0.0: can't add hid device: -71 [ 83.811673][ T27] usbhid: probe of 3-1:0.0 failed with error -71 [ 83.819227][ T5105] Bluetooth: hci2: command tx timeout [ 83.819274][ T5105] Bluetooth: hci3: command tx timeout [ 83.857798][ T27] usb 3-1: USB disconnect, device number 2 [ 84.117239][ T5930] loop3: detected capacity change from 0 to 256 [ 84.147781][ T5930] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 84.426927][ T5932] loop0: detected capacity change from 0 to 2048 [ 84.450250][ T5932] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 84.528151][ T5932] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 84.915140][ T5948] loop1: detected capacity change from 0 to 128 [ 85.665523][ T5948] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 85.757669][ T5948] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 86.300657][ T5797] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 86.465664][ T5957] ======================================================= [ 86.465664][ T5957] WARNING: The mand mount option has been deprecated and [ 86.465664][ T5957] and is ignored by this kernel. Remove the mand [ 86.465664][ T5957] option from the mount to silence this warning. [ 86.465664][ T5957] ======================================================= [ 86.519773][ T5961] netlink: 28 bytes leftover after parsing attributes in process `syz.0.30'. [ 86.655850][ T8] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 86.825980][ T5829] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 86.869856][ T8] usb 3-1: Using ep0 maxpacket: 32 [ 86.876671][ T8] usb 3-1: config 0 has an invalid interface number: 85 but max is 0 [ 86.884775][ T8] usb 3-1: config 0 has no interface number 0 [ 86.891046][ T8] usb 3-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 86.902080][ T8] usb 3-1: config 0 interface 85 altsetting 7 endpoint 0x82 has invalid wMaxPacketSize 0 [ 86.926516][ T8] usb 3-1: config 0 interface 85 has no altsetting 0 [ 86.952243][ T8] usb 3-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72 [ 86.965133][ T8] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 86.974546][ T8] usb 3-1: Product: syz [ 86.978878][ T8] usb 3-1: Manufacturer: syz [ 86.983509][ T8] usb 3-1: SerialNumber: syz [ 86.990872][ T8] usb 3-1: config 0 descriptor?? [ 87.026331][ T789] cfg80211: failed to load regulatory.db [ 87.039683][ T5829] usb 1-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36 [ 87.049492][ T5829] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 87.057760][ T5829] usb 1-1: Product: syz [ 87.061967][ T5829] usb 1-1: Manufacturer: syz [ 87.067054][ T5829] usb 1-1: SerialNumber: syz [ 87.074174][ T5829] usb 1-1: config 0 descriptor?? [ 87.081953][ T5829] ch341 1-1:0.0: ch341-uart converter detected [ 87.127786][ T5849] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 87.286223][ T5829] usb 1-1: failed to receive control message: -71 [ 87.304639][ T5829] ch341-uart: probe of ttyUSB0 failed with error -71 [ 87.329679][ T5829] usb 1-1: USB disconnect, device number 3 [ 87.352273][ T5829] ch341 1-1:0.0: device disconnected [ 87.357919][ T5849] usb 2-1: Using ep0 maxpacket: 8 [ 87.366578][ T5849] usb 2-1: config 1 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 87.384626][ T5849] usb 2-1: config 1 interface 0 has no altsetting 0 [ 87.404485][ T8] appletouch 3-1:0.85: Failed to request geyser raw mode [ 87.417934][ T5849] usb 2-1: New USB device found, idVendor=0c45, idProduct=760b, bcdDevice= 0.40 [ 87.428079][ T8] appletouch: probe of 3-1:0.85 failed with error -5 [ 87.436826][ T5849] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 87.447766][ T5849] usb 2-1: Product: syz [ 87.452097][ T5849] usb 2-1: Manufacturer: syz [ 87.457588][ T5849] usb 2-1: SerialNumber: syz [ 87.465139][ T8] usb 3-1: USB disconnect, device number 3 [ 87.575515][ T5970] loop3: detected capacity change from 0 to 512 [ 87.630305][ T5970] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 87.645472][ T5970] ext4 filesystem being mounted at /9/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 87.726433][ T5849] usbhid 2-1:1.0: can't add hid device: -71 [ 87.732509][ T5849] usbhid: probe of 2-1:1.0 failed with error -71 [ 87.760527][ T5970] EXT4-fs (loop3): shut down requested (1) [ 87.786247][ T5849] usb 2-1: USB disconnect, device number 3 [ 88.239560][ T5982] loop0: detected capacity change from 0 to 128 [ 88.304124][ T5982] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 88.349414][ T5982] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 89.122552][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 89.467597][ T5990] loop2: detected capacity change from 0 to 2048 [ 89.476865][ T5990] ext2: Unknown parameter 'nouser_xattr' [ 89.732206][ T5996] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 89.781856][ T5997] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 89.882051][ T5995] netlink: 28 bytes leftover after parsing attributes in process `syz.0.44'. [ 90.202203][ T5990] loop2: detected capacity change from 0 to 1024 [ 90.366309][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 90.394986][ T5780] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 90.460588][ T6004] Bluetooth: MGMT ver 1.22 [ 90.548893][ T6006] netlink: 16 bytes leftover after parsing attributes in process `syz.1.45'. [ 90.856895][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 91.069427][ T6009] loop3: detected capacity change from 0 to 1024 [ 91.069977][ T5780] usb 1-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36 [ 91.159488][ T5780] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 91.167950][ T5780] usb 1-1: Product: syz [ 91.172159][ T5780] usb 1-1: Manufacturer: syz [ 91.177380][ T5780] usb 1-1: SerialNumber: syz [ 91.194988][ T5780] usb 1-1: config 0 descriptor?? [ 91.201968][ T6009] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 91.227406][ T5780] ch341 1-1:0.0: ch341-uart converter detected [ 91.286517][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 91.666068][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 91.674870][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 92.149866][ T0] NOHZ tick-stop error: local softirq work is pending, handler #0c!!! [ 92.319973][ T5780] usb 1-1: failed to receive control message: -71 [ 92.330962][ T5780] ch341-uart: probe of ttyUSB0 failed with error -71 [ 92.349393][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 92.358868][ T0] NOHZ tick-stop error: local softirq work is pending, handler #01!!! [ 92.367289][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 92.376968][ T5780] usb 1-1: USB disconnect, device number 4 [ 92.516516][ T5780] ch341 1-1:0.0: device disconnected [ 92.535841][ T5105] Bluetooth: hci2: command 0x0401 tx timeout [ 92.575086][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 92.796170][ T5790] Bluetooth: hci2: Opcode 0x0401 failed: -110 [ 92.964310][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 93.600260][ T6025] loop3: detected capacity change from 0 to 128 [ 93.621048][ T6025] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 93.643895][ T6025] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 94.809315][ T6037] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 95.722327][ T6043] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 95.934224][ T6044] netlink: 8 bytes leftover after parsing attributes in process `syz.2.51'. [ 95.979550][ T6044] netlink: 4 bytes leftover after parsing attributes in process `syz.2.51'. [ 96.110428][ T6056] loop0: detected capacity change from 0 to 1024 [ 96.156899][ T6059] loop3: detected capacity change from 0 to 512 [ 96.203399][ T6056] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 96.317514][ T6059] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 96.491226][ T6059] ext4 filesystem being mounted at /15/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 96.551509][ T6059] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #2: comm syz.3.59: corrupted inode contents [ 97.184905][ T5797] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 97.196713][ T6059] EXT4-fs error (device loop3): ext4_dirty_inode:6120: inode #2: comm syz.3.59: mark_inode_dirty error [ 97.198460][ T6072] netlink: 12 bytes leftover after parsing attributes in process `syz.1.60'. [ 97.260555][ T6059] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #2: comm syz.3.59: corrupted inode contents [ 97.337104][ T6059] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #2: comm syz.3.59: mark_inode_dirty error [ 97.487240][ T8] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 97.647618][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 97.713851][ T8] usb 2-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36 [ 97.733203][ T8] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 97.765836][ T8] usb 2-1: Product: syz [ 97.770079][ T8] usb 2-1: Manufacturer: syz [ 97.774707][ T8] usb 2-1: SerialNumber: syz [ 97.818539][ T8] usb 2-1: config 0 descriptor?? [ 97.840487][ T8] ch341 2-1:0.0: ch341-uart converter detected [ 98.043647][ T8] usb 2-1: failed to receive control message: -71 [ 98.071047][ T8] ch341-uart: probe of ttyUSB0 failed with error -71 [ 98.098076][ T8] usb 2-1: USB disconnect, device number 4 [ 98.109556][ T8] ch341 2-1:0.0: device disconnected [ 98.496713][ T6101] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 99.133568][ T6103] netlink: 64 bytes leftover after parsing attributes in process `syz.3.65'. [ 99.727027][ T6111] loop2: detected capacity change from 0 to 1024 [ 99.861599][ T6111] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 100.867588][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 101.308032][ T6127] fuse: Bad value for 'fd' [ 101.494257][ T6130] netlink: 12 bytes leftover after parsing attributes in process `syz.0.74'. [ 101.874237][ T6134] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 102.593174][ T5780] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 102.805962][ T5780] usb 1-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36 [ 102.815093][ T5780] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 102.856828][ T5780] usb 1-1: Product: syz [ 102.862399][ T5780] usb 1-1: Manufacturer: syz [ 102.875885][ T5780] usb 1-1: SerialNumber: syz [ 103.051078][ T5780] usb 1-1: config 0 descriptor?? [ 104.348295][ T5780] ch341 1-1:0.0: ch341-uart converter detected [ 104.531148][ T5780] usb 1-1: failed to receive control message: -71 [ 104.540311][ T5780] ch341-uart: probe of ttyUSB0 failed with error -71 [ 104.551165][ T5780] usb 1-1: USB disconnect, device number 5 [ 104.558545][ T5780] ch341 1-1:0.0: device disconnected [ 104.668563][ T6156] warning: `syz.0.83' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 104.813559][ T6161] netlink: 168 bytes leftover after parsing attributes in process `syz.3.85'. [ 104.836193][ T6161] unsupported nlmsg_type 40 [ 105.040981][ T6162] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 105.058387][ T6162] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 105.131543][ T6162] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 105.142288][ T6167] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 105.340324][ T6162] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 105.988982][ T6170] loop1: detected capacity change from 0 to 256 [ 106.049432][ T6170] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 106.108887][ T6162] syz.3.85 (6162) used greatest stack depth: 20680 bytes left [ 106.233597][ T6176] netlink: 12 bytes leftover after parsing attributes in process `syz.3.91'. [ 106.536007][ T9] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 106.572508][ T5790] Bluetooth: Wrong link type (-57) [ 106.704016][ T6182] vhci_hcd: Failed attach request for unsupported USB speed: super-speed-plus [ 106.761723][ T9] usb 4-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36 [ 106.782062][ T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 106.824987][ T9] usb 4-1: Product: syz [ 106.845024][ T9] usb 4-1: Manufacturer: syz [ 106.859579][ T9] usb 4-1: SerialNumber: syz [ 106.871376][ T6182] smc: net device ip6_vti0 applied user defined pnetid SYZ1 [ 106.888713][ T9] usb 4-1: config 0 descriptor?? [ 106.914642][ T9] ch341 4-1:0.0: ch341-uart converter detected [ 107.123205][ T9] usb 4-1: failed to receive control message: -71 [ 107.140142][ T9] ch341-uart: probe of ttyUSB0 failed with error -71 [ 107.170697][ T9] usb 4-1: USB disconnect, device number 2 [ 107.188460][ T9] ch341 4-1:0.0: device disconnected [ 108.373755][ T6197] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 109.439939][ T6202] veth1_macvtap: entered allmulticast mode [ 109.487067][ T6204] loop1: detected capacity change from 0 to 256 [ 109.554915][ T23] libceph: connect (1)[c::]:6789 error -101 [ 109.562209][ T6204] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 109.563929][ T23] libceph: mon0 (1)[c::]:6789 connect error [ 109.606490][ T23] libceph: connect (1)[c::]:6789 error -101 [ 109.612606][ T23] libceph: mon0 (1)[c::]:6789 connect error [ 109.795964][ T6202] ceph: No mds server is up or the cluster is laggy [ 109.976826][ T23] libceph: connect (1)[c::]:6789 error -101 [ 110.005578][ T23] libceph: mon0 (1)[c::]:6789 connect error [ 111.560577][ T6216] sched: RT throttling activated [ 111.933918][ T6221] workqueue: Failed to create a rescuer kthread for wq "xfs-blockgc/nullb0": -EINTR [ 112.260180][ T6233] netlink: 12 bytes leftover after parsing attributes in process `syz.0.103'. [ 112.630853][ C1] Illegal XDP return value 16128 on prog (id 22) dev lo, expect packet loss! [ 112.776025][ T9] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 112.800703][ T6238] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 113.019044][ T9] usb 1-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36 [ 113.054763][ T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 113.081713][ T6245] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 113.128893][ T9] usb 1-1: Product: syz [ 113.133593][ T9] usb 1-1: Manufacturer: syz [ 113.184546][ T9] usb 1-1: SerialNumber: syz [ 113.224409][ T9] usb 1-1: config 0 descriptor?? [ 113.256323][ T9] ch341 1-1:0.0: ch341-uart converter detected [ 113.817543][ T9] usb 1-1: failed to receive control message: -71 [ 113.834417][ T9] ch341-uart: probe of ttyUSB0 failed with error -71 [ 113.868241][ T9] usb 1-1: USB disconnect, device number 6 [ 113.890880][ T9] ch341 1-1:0.0: device disconnected [ 114.115508][ T5790] Bluetooth: hci2: unexpected event for opcode 0x0c7b [ 115.186001][ T6263] blktrace: Concurrent blktraces are not allowed on loop3 [ 115.492431][ T6265] netlink: 172 bytes leftover after parsing attributes in process `syz.0.116'. [ 115.845564][ T6276] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 116.756451][ T6283] netlink: 12 bytes leftover after parsing attributes in process `syz.2.122'. [ 117.021610][ T5790] Bluetooth: Wrong link type (-57) [ 117.085985][ T9] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 117.344431][ T9] usb 3-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36 [ 117.360056][ T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 117.376116][ T9] usb 3-1: Product: syz [ 117.385878][ T9] usb 3-1: Manufacturer: syz [ 117.391003][ T9] usb 3-1: SerialNumber: syz [ 117.408820][ T9] usb 3-1: config 0 descriptor?? [ 117.428461][ T9] ch341 3-1:0.0: ch341-uart converter detected [ 117.643086][ T9] usb 3-1: failed to receive control message: -71 [ 117.656087][ T9] ch341-uart: probe of ttyUSB0 failed with error -71 [ 117.686593][ T9] usb 3-1: USB disconnect, device number 4 [ 117.716563][ T9] ch341 3-1:0.0: device disconnected [ 118.648266][ T6311] blktrace: Concurrent blktraces are not allowed on loop3 [ 118.845573][ T6308] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 119.344530][ T6320] netlink: 12 bytes leftover after parsing attributes in process `syz.0.135'. [ 120.912117][ T6336] netlink: 16 bytes leftover after parsing attributes in process `syz.0.139'. [ 121.339150][ T6347] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 121.356383][ T5790] Bluetooth: hci1: link tx timeout [ 121.362726][ T5790] Bluetooth: hci1: killing stalled connection 10:aa:aa:aa:aa:aa [ 122.021154][ T6340] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 122.093917][ T6349] netlink: 12 bytes leftover after parsing attributes in process `syz.3.144'. [ 122.123863][ T6349] Zero length message leads to an empty skb [ 122.218064][ T6340] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 122.372621][ T6340] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 122.536988][ T6340] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 122.759669][ T6340] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 122.787424][ T6360] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 122.801038][ T6340] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 122.832152][ T6340] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 122.855436][ T6340] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 123.008467][ T6366] netlink: 16 bytes leftover after parsing attributes in process `syz.3.154'. [ 123.376251][ T6371] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 123.445655][ T5105] Bluetooth: hci1: command 0x0406 tx timeout [ 123.452069][ T5793] Bluetooth: hci3: link tx timeout [ 123.458611][ T5793] Bluetooth: hci3: killing stalled connection 10:aa:aa:aa:aa:aa [ 123.974454][ T6375] process 'syz.2.155' launched './file1' with NULL argv: empty string added [ 124.366777][ T789] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 125.037199][ T789] usb 2-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 125.073985][ T789] usb 2-1: config 0 interface 0 has no altsetting 0 [ 125.144139][ T789] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 125.180764][ T789] usb 2-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 125.215850][ T789] usb 2-1: Product: syz [ 125.234870][ T789] usb 2-1: Manufacturer: syz [ 125.256646][ T789] usb 2-1: SerialNumber: syz [ 125.296763][ T789] usb 2-1: config 0 descriptor?? [ 125.351756][ T789] usb 2-1: selecting invalid altsetting 0 [ 125.546911][ T6389] netlink: 12 bytes leftover after parsing attributes in process `syz.2.159'. [ 125.579401][ T5790] Bluetooth: hci3: command 0x0406 tx timeout [ 125.693335][ T6368] usb 2-1: cannot submit urb 0, error -2: endpoint not enabled [ 125.741161][ T5909] usb 2-1: USB disconnect, device number 5 [ 126.650692][ T6402] 9pnet_virtio: no channels available for device syz [ 126.692815][ T6402] (null): rxe_set_mtu: Set mtu to 1024 [ 126.885856][ T6404] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 128.412153][ T6402] infiniband syz2: set down [ 128.417105][ T6402] infiniband syz2: added ipvlan0 [ 129.249640][ T6402] RDS/IB: syz2: added [ 129.254575][ T6402] smc: adding ib device syz2 with port count 1 [ 129.261097][ T6402] smc: ib device syz2 port 1 has pnetid SYZ1 (user defined) [ 131.332084][ T5105] Bluetooth: hci0: unexpected event 0x03 length: 1 < 11 [ 131.520984][ T6435] netlink: 12 bytes leftover after parsing attributes in process `syz.2.174'. [ 133.082651][ T5105] Bluetooth: hci0: unexpected event 0x03 length: 1 < 11 [ 133.123798][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.130950][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.178971][ T6462] bridge_slave_0: left allmulticast mode [ 133.184904][ T6462] bridge_slave_0: left promiscuous mode [ 133.193549][ T6462] bridge0: port 1(bridge_slave_0) entered disabled state [ 133.214524][ T6462] bridge_slave_1: left allmulticast mode [ 133.221911][ T6462] bridge_slave_1: left promiscuous mode [ 133.245152][ T6462] bridge0: port 2(bridge_slave_1) entered disabled state [ 133.292009][ T6462] bond0: (slave bond_slave_0): Releasing backup interface [ 133.330146][ T6462] bond0: (slave bond_slave_1): Releasing backup interface [ 133.397616][ T6462] team0: Port device team_slave_0 removed [ 133.468774][ T6462] team0: Port device team_slave_1 removed [ 133.493935][ T6462] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 133.517336][ T6462] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 133.535611][ T6462] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 133.552390][ T6462] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 133.766470][ T6472] netlink: 12 bytes leftover after parsing attributes in process `syz.1.188'. [ 134.304053][ T6486] fuse: Bad value for 'fd' [ 135.422316][ T5105] Bluetooth: hci3: ACL packet for unknown connection handle 200 [ 135.691507][ T6511] netlink: 12 bytes leftover after parsing attributes in process `syz.0.204'. [ 137.419414][ T6544] netlink: 12 bytes leftover after parsing attributes in process `syz.1.217'. [ 137.505862][ T5105] Bluetooth: hci2: command 0x0401 tx timeout [ 137.523516][ T6545] capability: warning: `syz.2.212' uses deprecated v2 capabilities in a way that may be insecure [ 138.095945][ T28] audit: type=1326 audit(1762238087.947:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6551 comm="syz.1.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff86df8f6c9 code=0x7ffc0000 [ 138.128778][ T28] audit: type=1326 audit(1762238087.977:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6551 comm="syz.1.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff86df8f6c9 code=0x7ffc0000 [ 138.174917][ T28] audit: type=1326 audit(1762238087.987:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6551 comm="syz.1.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff86df8f6c9 code=0x7ffc0000 [ 138.232492][ T28] audit: type=1326 audit(1762238087.987:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6551 comm="syz.1.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff86df8f6c9 code=0x7ffc0000 [ 138.290146][ T28] audit: type=1326 audit(1762238087.987:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6551 comm="syz.1.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff86df8f6c9 code=0x7ffc0000 [ 138.332217][ T28] audit: type=1326 audit(1762238088.007:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6551 comm="syz.1.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7ff86df8f6c9 code=0x7ffc0000 [ 138.375199][ T28] audit: type=1326 audit(1762238088.007:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6551 comm="syz.1.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff86df8f6c9 code=0x7ffc0000 [ 138.434175][ T28] audit: type=1326 audit(1762238088.007:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6551 comm="syz.1.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff86df8f6c9 code=0x7ffc0000 [ 138.494109][ T28] audit: type=1326 audit(1762238088.007:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6551 comm="syz.1.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7ff86df8f6c9 code=0x7ffc0000 [ 138.544908][ T28] audit: type=1326 audit(1762238088.007:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6551 comm="syz.1.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff86df8f6c9 code=0x7ffc0000 [ 139.061092][ T5105] Bluetooth: Unexpected start frame (len 12) [ 139.990693][ T6576] netlink: 12 bytes leftover after parsing attributes in process `syz.3.227'. [ 140.495529][ T5105] Bluetooth: hci2: unexpected event 0x03 length: 1 < 11 [ 141.036959][ T5105] Bluetooth: Unexpected start frame (len 12) [ 141.565195][ T5105] Bluetooth: hci3: unexpected event for opcode 0x0000 [ 142.215994][ T5105] Bluetooth: hci2: command 0x0401 tx timeout [ 142.484756][ T5105] Bluetooth: hci2: unexpected event 0x03 length: 1 < 11 [ 142.620734][ T6617] netlink: 12 bytes leftover after parsing attributes in process `syz.1.243'. [ 143.682394][ T5105] Bluetooth: Unexpected start frame (len 12) [ 144.325784][ T5105] Bluetooth: hci2: command 0x0401 tx timeout [ 144.686770][ T5105] Bluetooth: hci2: unexpected event 0x03 length: 1 < 11 [ 145.096930][ T6642] netlink: 12 bytes leftover after parsing attributes in process `syz.2.255'. [ 145.118285][ T5105] Bluetooth: hci3: unexpected event for opcode 0x0000 [ 145.348675][ T6646] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 145.708583][ T5105] Bluetooth: Unexpected start frame (len 12) [ 146.456221][ T5105] Bluetooth: hci2: command 0x0401 tx timeout [ 146.919255][ T5105] Bluetooth: hci2: unexpected event for opcode 0x0c7b [ 146.935503][ T6666] netlink: 8 bytes leftover after parsing attributes in process `syz.0.264'. [ 148.383617][ T6677] netlink: 12 bytes leftover after parsing attributes in process `syz.1.267'. [ 148.629809][ T6652] Process accounting resumed [ 149.467980][ T5105] Bluetooth: Unexpected start frame (len 12) [ 150.987798][ T5790] Bluetooth: Unexpected start frame (len 12) [ 151.219442][ T5105] Bluetooth: Unexpected start frame (len 12) [ 151.916479][ T6725] 9pnet_virtio: no channels available for device syz [ 152.037389][ T6729] netlink: 12 bytes leftover after parsing attributes in process `syz.2.286'. [ 153.546132][ T5790] Bluetooth: Unexpected start frame (len 12) [ 154.477309][ T6752] netlink: 12 bytes leftover after parsing attributes in process `syz.0.297'. [ 154.888959][ T5790] Bluetooth: Unexpected start frame (len 12) [ 155.606055][ T6768] netlink: 76 bytes leftover after parsing attributes in process `syz.0.302'. [ 155.660896][ T5790] Bluetooth: min 16105 > max 7 [ 155.780007][ T6772] bridge_slave_0: left allmulticast mode [ 155.799379][ T6772] bridge_slave_0: left promiscuous mode [ 155.815279][ T6772] bridge0: port 1(bridge_slave_0) entered disabled state [ 155.839336][ T6772] bridge_slave_1: left allmulticast mode [ 155.855913][ T6772] bridge_slave_1: left promiscuous mode [ 155.868912][ T6772] bridge0: port 2(bridge_slave_1) entered disabled state [ 155.885681][ T6772] bond0: (slave bond_slave_0): Releasing backup interface [ 155.929501][ T6772] bond0: (slave bond_slave_1): Releasing backup interface [ 155.988549][ T6772] team0: Port device team_slave_0 removed [ 156.020793][ T6772] team0: Port device team_slave_1 removed [ 156.043226][ T6772] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 156.056181][ T6772] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 156.075379][ T6772] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 156.097916][ T6772] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 156.370187][ T6787] team0: Device gtp0 is of different type [ 157.051693][ T5790] Bluetooth: Unexpected start frame (len 12) [ 157.746792][ T5790] Bluetooth: hci1: command 0x0406 tx timeout [ 158.216984][ T6832] mmap: syz.2.323 (6832) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 158.904464][ T5790] Bluetooth: Unexpected start frame (len 12) [ 160.033216][ T6852] team_slave_0: entered promiscuous mode [ 160.039158][ T6852] team_slave_1: entered promiscuous mode [ 160.071205][ T6852] macsec1: entered promiscuous mode [ 160.090783][ T6852] team0: entered promiscuous mode [ 160.116831][ T6852] macsec1: entered allmulticast mode [ 160.136795][ T6852] team0: entered allmulticast mode [ 160.171289][ T6852] team_slave_0: entered allmulticast mode [ 160.209567][ T6852] team_slave_1: entered allmulticast mode [ 160.241843][ T6852] team0: Device macsec1 is already an upper device of the team interface [ 160.275139][ T6852] team0: left allmulticast mode [ 160.293973][ T6852] team_slave_0: left allmulticast mode [ 160.301000][ T6852] team_slave_1: left allmulticast mode [ 160.313197][ T6852] team0: left promiscuous mode [ 160.336908][ T6852] team_slave_0: left promiscuous mode [ 160.342415][ T6852] team_slave_1: left promiscuous mode [ 161.368418][ T5790] Bluetooth: Unexpected start frame (len 12) [ 162.352177][ T5790] Bluetooth: Unexpected start frame (len 12) [ 162.360064][ T5790] Bluetooth: hci0: link tx timeout [ 162.368073][ T5790] Bluetooth: hci0: killing stalled connection 10:aa:aa:aa:aa:aa [ 162.379620][ T5790] Bluetooth: hci0: link tx timeout [ 162.384905][ T5790] Bluetooth: hci0: killing stalled connection 11:aa:aa:aa:aa:aa [ 163.400233][ T6908] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 163.417780][ T5105] Bluetooth: Unexpected start frame (len 12) [ 164.465911][ T5105] Bluetooth: hci0: command 0x0406 tx timeout [ 165.013053][ T6933] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 165.061664][ T5105] Bluetooth: Unexpected start frame (len 12) [ 166.282606][ T6943] netlink: 8 bytes leftover after parsing attributes in process `syz.1.362'. [ 166.300175][ T6943] netlink: 'syz.1.362': attribute type 5 has an invalid length. [ 166.325882][ T6943] netlink: 20 bytes leftover after parsing attributes in process `syz.1.362'. [ 166.441148][ T6943] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 256 - 0 [ 166.473661][ T6943] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 256 - 0 [ 166.483118][ T6943] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 256 - 0 [ 166.492956][ T6943] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 256 - 0 [ 166.502154][ T6943] geneve2: entered promiscuous mode [ 166.508880][ T6943] geneve2: entered allmulticast mode [ 166.615850][ T5105] Bluetooth: hci0: command 0x0406 tx timeout [ 167.470889][ T5790] Bluetooth: Wrong link type (-57) [ 168.295896][ T5790] Bluetooth: Unexpected start frame (len 12) [ 169.176479][ T6973] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 170.158167][ T5790] Bluetooth: hci2: unexpected event 0x03 length: 1 < 11 [ 170.636260][ T5790] Bluetooth: Unexpected start frame (len 12) [ 171.554421][ T6995] netlink: 32 bytes leftover after parsing attributes in process `syz.1.379'. [ 171.563585][ T6995] netlink: 48 bytes leftover after parsing attributes in process `syz.1.379'. [ 172.442375][ T6995] netlink: 48 bytes leftover after parsing attributes in process `syz.1.379'. [ 172.701485][ T7004] netlink: 12 bytes leftover after parsing attributes in process `syz.3.382'. [ 173.166844][ T7012] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 173.676157][ T5105] Bluetooth: Unexpected start frame (len 12) [ 173.700442][ T5105] Bluetooth: hci2: link tx timeout [ 173.706599][ T5105] Bluetooth: hci2: killing stalled connection 10:aa:aa:aa:aa:aa [ 173.716500][ T5105] Bluetooth: hci2: link tx timeout [ 173.721660][ T5105] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa [ 174.079956][ T5105] Bluetooth: hci2: unexpected event 0x03 length: 1 < 11 [ 175.825814][ T5105] Bluetooth: hci2: command 0x0401 tx timeout [ 176.365382][ T7048] netlink: 12 bytes leftover after parsing attributes in process `syz.0.397'. [ 177.260346][ T5790] Bluetooth: hci2: ACL packet for unknown connection handle 201 [ 177.895846][ T5105] Bluetooth: hci2: command 0x0401 tx timeout [ 179.775267][ T5105] Bluetooth: hci2: ACL packet for unknown connection handle 201 [ 180.824360][ T7095] tipc: Enabling of bearer rejected, failed to enable media [ 182.991627][ T7112] veth0: entered promiscuous mode [ 184.270230][ T7119] fuse: Bad value for 'fd' [ 184.377702][ T7116] veth0: left promiscuous mode [ 184.598929][ T5105] Bluetooth: hci0: ACL packet for unknown connection handle 201 [ 185.019895][ T5105] Bluetooth: Unexpected start frame (len 12) [ 186.196133][ T5105] Bluetooth: Unexpected start frame (len 12) [ 186.913128][ T5105] Bluetooth: hci0: ACL packet for unknown connection handle 201 [ 187.010445][ T7157] netlink: 12 bytes leftover after parsing attributes in process `syz.2.431'. [ 187.376658][ T5105] Bluetooth: Unexpected start frame (len 12) [ 188.148627][ T7166] netlink: 16 bytes leftover after parsing attributes in process `syz.2.434'. [ 188.690033][ T7176] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6erspan0 [ 188.981637][ T7181] overlayfs: failed to clone upperpath [ 190.221911][ T5105] Bluetooth: hci0: ACL packet for unknown connection handle 201 [ 191.108545][ T7194] netlink: 12 bytes leftover after parsing attributes in process `syz.3.442'. [ 191.249662][ T7198] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 191.276173][ T5105] Bluetooth: Unexpected start frame (len 12) [ 192.175221][ T7212] overlayfs: failed to clone lowerpath [ 192.330087][ T5105] Bluetooth: hci0: unexpected event for opcode 0x0c12 [ 192.417629][ T7218] netlink: 16 bytes leftover after parsing attributes in process `syz.2.453'. [ 193.316084][ T7224] netlink: 16 bytes leftover after parsing attributes in process `syz.2.455'. [ 194.546940][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.553471][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.268201][ T7242] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 195.295435][ T5105] Bluetooth: Unexpected start frame (len 12) [ 195.301909][ T5105] Bluetooth: hci1: link tx timeout [ 195.307149][ T5105] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa [ 195.604907][ T5790] Bluetooth: hci0: ACL packet for unknown connection handle 201 [ 197.346476][ T5105] Bluetooth: hci1: command 0x0406 tx timeout [ 198.486386][ T5105] Bluetooth: hci1: ACL packet for unknown connection handle 201 [ 199.390739][ T7280] bridge_slave_0: left allmulticast mode [ 199.399337][ T7280] bridge_slave_0: left promiscuous mode [ 199.405376][ T7280] bridge0: port 1(bridge_slave_0) entered disabled state [ 199.432440][ T7280] bridge_slave_1: left allmulticast mode [ 199.448827][ T7280] bridge_slave_1: left promiscuous mode [ 199.469341][ T7280] bridge0: port 2(bridge_slave_1) entered disabled state [ 199.497403][ T7280] bond0: (slave bond_slave_0): Releasing backup interface [ 199.538480][ T7280] bond0: (slave bond_slave_1): Releasing backup interface [ 199.604191][ T7280] team0: Port device team_slave_0 removed [ 199.685206][ T7280] team0: Port device team_slave_1 removed [ 199.694924][ T7280] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 199.708499][ T7280] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 199.720915][ T7280] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 199.730334][ T7280] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 199.809931][ T7282] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 199.857176][ T5105] Bluetooth: Unexpected start frame (len 12) [ 200.620269][ T5105] Bluetooth: hci0: ACL packet for unknown connection handle 201 [ 201.174003][ T7310] netlink: 16 bytes leftover after parsing attributes in process `syz.0.487'. [ 202.922063][ T7333] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 203.777099][ T7346] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6erspan0 [ 204.826357][ T7355] 9pnet_virtio: no channels available for device syz [ 205.425885][ T7354] (null): rxe_set_mtu: Set mtu to 1024 [ 205.431809][ T7354] rdma_rxe: rxe_newlink: failed to add ipvlan0 [ 207.735467][ T5105] Bluetooth: hci2: ACL packet for unknown connection handle 201 [ 208.938676][ T7381] netlink: 'syz.1.515': attribute type 4 has an invalid length. [ 209.047151][ T7382] netlink: 'syz.1.515': attribute type 4 has an invalid length. [ 209.272508][ T7388] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 209.356800][ T5105] Bluetooth: hci1: ACL packet for unknown connection handle 201 [ 209.906367][ T7397] 9pnet_virtio: no channels available for device syz [ 209.938332][ T7397] syz2: rxe_newlink: already configured on ipvlan0 [ 213.049172][ T7420] xt_TCPMSS: Only works on TCP SYN packets [ 214.105254][ T5105] Bluetooth: hci0: ACL packet for unknown connection handle 201 [ 214.894558][ T7422] netlink: 28 bytes leftover after parsing attributes in process `syz.3.529'. [ 215.274646][ T7448] netlink: 88 bytes leftover after parsing attributes in process `syz.2.539'. [ 215.284730][ T7448] netlink: 48 bytes leftover after parsing attributes in process `syz.2.539'. [ 216.113598][ T5105] Bluetooth: hci2: ACL packet for unknown connection handle 201 [ 217.233578][ T7467] netlink: 28 bytes leftover after parsing attributes in process `syz.3.545'. [ 219.570340][ T7494] netlink: 28 bytes leftover after parsing attributes in process `syz.3.557'. [ 220.020369][ T7508] netlink: 'syz.3.561': attribute type 4 has an invalid length. [ 220.163227][ T7509] netlink: 'syz.3.561': attribute type 4 has an invalid length. [ 221.147520][ T7528] netlink: 28 bytes leftover after parsing attributes in process `syz.1.569'. [ 222.476647][ T7547] netlink: 28 bytes leftover after parsing attributes in process `syz.3.578'. [ 222.668487][ T7560] bridge_slave_0: left allmulticast mode [ 222.674251][ T7560] bridge_slave_0: left promiscuous mode [ 222.680698][ T7560] bridge0: port 1(bridge_slave_0) entered disabled state [ 222.694591][ T7560] bridge_slave_1: left allmulticast mode [ 222.701579][ T7560] bridge_slave_1: left promiscuous mode [ 222.710100][ T7560] bridge0: port 2(bridge_slave_1) entered disabled state [ 222.723756][ T7560] bond0: (slave bond_slave_0): Releasing backup interface [ 222.745602][ T7560] bond0: (slave bond_slave_1): Releasing backup interface [ 222.801822][ T7560] team0: Port device team_slave_0 removed [ 222.821711][ T7560] team0: Port device team_slave_1 removed [ 223.659093][ T7579] (null): rxe_set_mtu: Set mtu to 1024 [ 223.669638][ T7579] rdma_rxe: rxe_newlink: failed to add ipvlan0 [ 224.169295][ T7580] netlink: 28 bytes leftover after parsing attributes in process `syz.0.590'. [ 224.884564][ T7609] 9pnet_virtio: no channels available for device syz [ 224.903427][ T7609] (null): rxe_set_mtu: Set mtu to 1024 [ 224.910447][ T7609] rdma_rxe: rxe_newlink: failed to add ipvlan0 [ 227.025564][ T5105] Bluetooth: hci2: ACL packet for unknown connection handle 201 [ 227.900404][ T7632] netlink: 28 bytes leftover after parsing attributes in process `syz.1.608'. [ 228.956228][ T7646] 9pnet_virtio: no channels available for device syz [ 228.975133][ T7646] (null): rxe_set_mtu: Set mtu to 1024 [ 228.983184][ T7646] rdma_rxe: rxe_newlink: failed to add ipvlan0 [ 229.956061][ T5105] Bluetooth: hci2: ACL packet for unknown connection handle 201 [ 231.978731][ T7675] netlink: 28 bytes leftover after parsing attributes in process `syz.2.622'. [ 233.763636][ T7691] 9pnet_virtio: no channels available for device syz [ 233.779350][ T7691] syz2: rxe_newlink: already configured on ipvlan0 [ 236.066543][ T5105] Bluetooth: hci0: ACL packet for unknown connection handle 201 [ 237.279284][ T7703] netlink: 28 bytes leftover after parsing attributes in process `syz.0.636'. [ 238.576481][ T7727] 9pnet_virtio: no channels available for device syz [ 239.005893][ T7728] (null): rxe_set_mtu: Set mtu to 1024 [ 239.011610][ T7728] rdma_rxe: rxe_newlink: failed to add ipvlan0 [ 240.767398][ T5105] Bluetooth: hci0: ACL packet for unknown connection handle 201 [ 242.133233][ T7763] netlink: 40 bytes leftover after parsing attributes in process `syz.3.655'. [ 242.211654][ T7764] netlink: 28 bytes leftover after parsing attributes in process `syz.2.650'. [ 242.409868][ T7766] 9pnet_virtio: no channels available for device syz [ 242.418960][ T7766] syz2: rxe_newlink: already configured on ipvlan0 [ 243.935775][ T5105] Bluetooth: hci1: ACL packet for unknown connection handle 201 [ 246.536466][ T5105] Bluetooth: hci2: ACL packet for unknown connection handle 201 [ 246.939836][ T7805] netlink: 40 bytes leftover after parsing attributes in process `syz.2.669'. [ 247.034874][ T7801] netlink: 28 bytes leftover after parsing attributes in process `syz.0.668'. [ 248.557463][ T5105] Bluetooth: hci1: ACL packet for unknown connection handle 201 [ 248.722921][ T7835] netlink: 40 bytes leftover after parsing attributes in process `syz.3.681'. [ 249.273766][ T7847] netlink: 28 bytes leftover after parsing attributes in process `syz.2.680'. [ 250.210201][ T5105] Bluetooth: hci1: ACL packet for unknown connection handle 201 [ 251.072116][ T7870] netlink: 24 bytes leftover after parsing attributes in process `syz.2.694'. [ 251.995098][ T7878] netlink: 28 bytes leftover after parsing attributes in process `syz.1.696'. [ 253.415708][ T5105] Bluetooth: hci2: ACL packet for unknown connection handle 201 [ 253.587289][ T7899] netlink: 24 bytes leftover after parsing attributes in process `syz.2.705'. [ 254.037859][ T28] kauditd_printk_skb: 113 callbacks suppressed [ 254.037875][ T28] audit: type=1326 audit(1762238203.897:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7908 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff86df8f6c9 code=0x7ffc0000 [ 254.121258][ T28] audit: type=1326 audit(1762238203.897:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7908 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7ff86df8f6c9 code=0x7ffc0000 [ 254.323226][ T28] audit: type=1326 audit(1762238203.897:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7908 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff86df8f6c9 code=0x7ffc0000 [ 254.488580][ T28] audit: type=1326 audit(1762238203.897:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7908 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7ff86df8f6c9 code=0x7ffc0000 [ 254.577627][ T28] audit: type=1326 audit(1762238203.907:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7908 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff86df8f6c9 code=0x7ffc0000 [ 254.607967][ T28] audit: type=1326 audit(1762238203.907:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7908 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff86df8f6c9 code=0x7ffc0000 [ 254.897850][ T28] audit: type=1326 audit(1762238203.907:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7908 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff86df8f6c9 code=0x7ffc0000 [ 255.142929][ T28] audit: type=1326 audit(1762238203.907:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7908 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff86df8f6c9 code=0x7ffc0000 [ 255.220912][ T28] audit: type=1326 audit(1762238203.907:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7908 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff86df8f6c9 code=0x7ffc0000 [ 255.298468][ T28] audit: type=1326 audit(1762238203.907:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7908 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff86df8f6c9 code=0x7ffc0000 [ 256.284807][ T5105] Bluetooth: hci2: ACL packet for unknown connection handle 201 [ 256.293864][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.300639][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.742820][ T7937] netlink: 24 bytes leftover after parsing attributes in process `syz.1.718'. [ 259.593373][ T7971] netlink: 8 bytes leftover after parsing attributes in process `syz.1.731'. [ 260.406153][ T5105] Bluetooth: hci0: ACL packet for unknown connection handle 201 [ 262.076006][ T8004] 9pnet_virtio: no channels available for device syz [ 262.755885][ T8004] (null): rxe_set_mtu: Set mtu to 1024 [ 262.761591][ T8004] rdma_rxe: rxe_newlink: failed to add ipvlan0 [ 266.255182][ T8024] netlink: 28 bytes leftover after parsing attributes in process `syz.3.751'. [ 269.120704][ T8063] netlink: 28 bytes leftover after parsing attributes in process `syz.0.767'. [ 269.834081][ T5105] Bluetooth: Unexpected start frame (len 12) [ 271.534580][ T8104] bridge0: vlan filtering disabled, automatically disabling multicast vlan snooping [ 271.727288][ T8099] netlink: 28 bytes leftover after parsing attributes in process `syz.3.779'. [ 272.236081][ T5105] Bluetooth: Unexpected start frame (len 12) [ 272.630292][ T8118] netlink: 64 bytes leftover after parsing attributes in process `syz.2.785'. [ 272.639402][ T8114] netlink: 40 bytes leftover after parsing attributes in process `syz.1.784'. [ 272.648471][ T8118] netlink: 12 bytes leftover after parsing attributes in process `syz.2.785'. [ 272.677094][ T8118] netlink: 8 bytes leftover after parsing attributes in process `syz.2.785'. [ 275.118371][ T8133] netlink: 28 bytes leftover after parsing attributes in process `syz.1.791'. [ 275.786195][ T5105] Bluetooth: Unexpected start frame (len 12) [ 276.226666][ T8156] sch_tbf: burst 32855 is lower than device lo mtu (65550) ! [ 276.850923][ T8163] netlink: 28 bytes leftover after parsing attributes in process `syz.1.804'. [ 277.487100][ T5105] Bluetooth: hci0: ACL packet for unknown connection handle 201 [ 277.511313][ T8179] 9pnet: p9_errstr2errno: server reported unknown error cnux [ 277.838294][ T8189] netlink: 8 bytes leftover after parsing attributes in process `syz.0.814'. [ 278.338828][ T8196] netlink: 28 bytes leftover after parsing attributes in process `syz.2.818'. [ 278.948975][ T5105] Bluetooth: hci2: ACL packet for unknown connection handle 201 [ 279.933358][ T8245] netlink: 28 bytes leftover after parsing attributes in process `syz.0.833'. [ 280.813326][ T8270] netlink: 28 bytes leftover after parsing attributes in process `syz.2.849'. [ 280.886319][ T8275] sit0: entered promiscuous mode [ 280.924345][ T8275] netlink: 'syz.0.850': attribute type 1 has an invalid length. [ 280.955334][ T8275] netlink: 1 bytes leftover after parsing attributes in process `syz.0.850'. [ 281.320662][ T8287] netlink: 4 bytes leftover after parsing attributes in process `syz.3.857'. [ 282.087062][ T8297] netlink: 28 bytes leftover after parsing attributes in process `syz.2.861'. [ 283.909940][ T8328] netlink: 4 bytes leftover after parsing attributes in process `syz.0.872'. [ 283.989449][ T8335] netlink: 4 bytes leftover after parsing attributes in process `syz.0.875'. [ 284.666405][ T8332] netlink: 28 bytes leftover after parsing attributes in process `syz.2.873'. [ 284.877591][ T28] kauditd_printk_skb: 13 callbacks suppressed [ 284.877607][ T28] audit: type=1326 audit(1762238234.737:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8346 comm="syz.2.879" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb54bb8f6c9 code=0x0 [ 287.746085][ T8373] netlink: 28 bytes leftover after parsing attributes in process `syz.2.888'. [ 289.545787][ T8412] netlink: 28 bytes leftover after parsing attributes in process `syz.0.903'. [ 293.010169][ T8450] netlink: 28 bytes leftover after parsing attributes in process `syz.1.916'. [ 294.989887][ T8492] netlink: 28 bytes leftover after parsing attributes in process `syz.3.933'. [ 299.554277][ T8534] 9pnet_virtio: no channels available for device syz [ 299.563791][ T8534] (null): rxe_set_mtu: Set mtu to 1024 [ 299.569676][ T8534] rdma_rxe: rxe_newlink: failed to add ipvlan0 [ 300.255535][ T8545] raw_sendmsg: syz.1.954 forgot to set AF_INET. Fix it! [ 304.726131][ T8599] 9pnet_virtio: no channels available for device syz [ 305.264828][ T8599] (null): rxe_set_mtu: Set mtu to 1024 [ 305.279791][ T8599] rdma_rxe: rxe_newlink: failed to add ipvlan0 [ 306.823897][ T8613] netlink: 28 bytes leftover after parsing attributes in process `syz.2.974'. [ 307.132877][ T8618] netlink: 8 bytes leftover after parsing attributes in process `syz.2.977'. [ 311.175853][ T50] wlan1: Trigger new scan to find an IBSS to join [ 311.479051][ T11] ------------[ cut here ]------------ [ 311.485091][ T11] no supported rates for sta (null) (0xffffffff, band 0) in rate_mask 0xffffffff with flags 0x40 [ 311.496455][ T11] WARNING: CPU: 0 PID: 11 at net/mac80211/rate.c:385 __rate_control_send_low+0x635/0x880 [ 311.506376][ T11] Modules linked in: [ 311.510320][ T11] CPU: 0 PID: 11 Comm: kworker/u4:0 Not tainted syzkaller #0 [ 311.517778][ T11] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 311.527929][ T11] Workqueue: events_unbound cfg80211_wiphy_work [ 311.534324][ T11] RIP: 0010:__rate_control_send_low+0x635/0x880 [ 311.540687][ T11] Code: 30 42 0f b6 04 28 84 c0 0f 85 e6 01 00 00 41 8b 0e 48 c7 c7 60 9f be 8b 48 8b 74 24 10 44 8b 44 24 1c 45 89 e1 e8 cb 55 69 f7 <0f> 0b e9 78 fe ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 03 fa ff [ 311.560440][ T11] RSP: 0018:ffffc90000107380 EFLAGS: 00010246 [ 311.566609][ T11] RAX: 5406279728421900 RBX: 000000000000000c RCX: ffff88801b243c00 [ 311.574619][ T11] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002 [ 311.582689][ T11] RBP: 0000000000000084 R08: ffffc90000106f87 R09: 1ffff92000020df0 [ 311.590761][ T11] R10: dffffc0000000000 R11: fffff52000020df1 R12: 0000000000000040 [ 311.598834][ T11] R13: dffffc0000000000 R14: ffff88801fb53358 R15: ffff888025377de8 [ 311.606867][ T11] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 311.615837][ T11] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 311.622466][ T11] CR2: 00007ff86ed156c0 CR3: 00000000234af000 CR4: 00000000003506f0 [ 311.630488][ T11] Call Trace: [ 311.633790][ T11] [ 311.636768][ T11] rate_control_send_low+0x194/0x790 [ 311.642080][ T11] rate_control_get_rate+0x20b/0x5c0 [ 311.647397][ T11] ieee80211_tx_h_rate_ctrl+0xb2d/0x1770 [ 311.653045][ T11] ? ieee80211_tx_h_select_key+0x19e0/0x19e0 [ 311.659149][ T11] ? __lock_acquire+0x1260/0x7c80 [ 311.664191][ T11] ? ieee80211_is_bufferable_mmpdu+0xfb/0x1f0 [ 311.670295][ T11] invoke_tx_handlers_late+0xb6/0x1810 [ 311.675789][ T11] ? invoke_tx_handlers_early+0xa11/0x1cf0 [ 311.681604][ T11] ieee80211_tx+0x2ad/0x420 [ 311.686142][ T11] ? ieee80211_skb_resize+0x630/0x630 [ 311.691529][ T11] ? ieee80211_set_qos_hdr+0x1ca/0x510 [ 311.697050][ T11] ? __bpf_trace_tasklet+0x140/0x140 [ 311.702340][ T11] ? ieee80211_xmit+0x310/0x3f0 [ 311.707258][ T11] ? __ieee80211_tx_skb_tid_band+0x490/0x610 [ 311.713272][ T11] __ieee80211_tx_skb_tid_band+0x4d5/0x610 [ 311.719135][ T11] ? ieee80211_scan_state_send_probe+0x4b4/0x930 [ 311.725473][ T11] ieee80211_scan_state_send_probe+0x560/0x930 [ 311.731758][ T11] ieee80211_scan_work+0x4e8/0x1c30 [ 311.737054][ T11] cfg80211_wiphy_work+0x225/0x260 [ 311.742203][ T11] ? process_scheduled_works+0x957/0x15b0 [ 311.748060][ T11] process_scheduled_works+0xa45/0x15b0 [ 311.753633][ T11] ? assign_work+0x400/0x400 [ 311.758265][ T11] ? assign_work+0x39e/0x400 [ 311.762869][ T11] worker_thread+0xa55/0xfc0 [ 311.767522][ T11] kthread+0x2fa/0x390 [ 311.771614][ T11] ? pr_cont_work+0x560/0x560 [ 311.776364][ T11] ? kthread_blkcg+0xd0/0xd0 [ 311.781003][ T11] ret_from_fork+0x48/0x80 [ 311.785422][ T11] ? kthread_blkcg+0xd0/0xd0 [ 311.790159][ T11] ret_from_fork_asm+0x11/0x20 [ 311.795008][ T11] [ 311.798112][ T11] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 311.805401][ T11] CPU: 0 PID: 11 Comm: kworker/u4:0 Not tainted syzkaller #0 [ 311.812766][ T11] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 311.822844][ T11] Workqueue: events_unbound cfg80211_wiphy_work [ 311.829090][ T11] Call Trace: [ 311.832368][ T11] [ 311.835295][ T11] dump_stack_lvl+0x16c/0x230 [ 311.839978][ T11] ? show_regs_print_info+0x20/0x20 [ 311.845178][ T11] ? load_image+0x3b0/0x3b0 [ 311.849686][ T11] panic+0x2c0/0x710 [ 311.853586][ T11] ? bpf_jit_dump+0xd0/0xd0 [ 311.858092][ T11] ? ret_from_fork_asm+0x11/0x20 [ 311.863032][ T11] __warn+0x2e0/0x470 [ 311.867008][ T11] ? __rate_control_send_low+0x635/0x880 [ 311.872642][ T11] ? __rate_control_send_low+0x635/0x880 [ 311.878272][ T11] report_bug+0x2be/0x4f0 [ 311.882602][ T11] ? __rate_control_send_low+0x635/0x880 [ 311.888228][ T11] ? __rate_control_send_low+0x635/0x880 [ 311.893874][ T11] ? __rate_control_send_low+0x637/0x880 [ 311.899521][ T11] handle_bug+0xcf/0x120 [ 311.903785][ T11] exc_invalid_op+0x1a/0x50 [ 311.908374][ T11] asm_exc_invalid_op+0x1a/0x20 [ 311.913219][ T11] RIP: 0010:__rate_control_send_low+0x635/0x880 [ 311.919453][ T11] Code: 30 42 0f b6 04 28 84 c0 0f 85 e6 01 00 00 41 8b 0e 48 c7 c7 60 9f be 8b 48 8b 74 24 10 44 8b 44 24 1c 45 89 e1 e8 cb 55 69 f7 <0f> 0b e9 78 fe ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 03 fa ff [ 311.939063][ T11] RSP: 0018:ffffc90000107380 EFLAGS: 00010246 [ 311.945125][ T11] RAX: 5406279728421900 RBX: 000000000000000c RCX: ffff88801b243c00 [ 311.953103][ T11] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002 [ 311.961080][ T11] RBP: 0000000000000084 R08: ffffc90000106f87 R09: 1ffff92000020df0 [ 311.969046][ T11] R10: dffffc0000000000 R11: fffff52000020df1 R12: 0000000000000040 [ 311.977014][ T11] R13: dffffc0000000000 R14: ffff88801fb53358 R15: ffff888025377de8 [ 311.985004][ T11] rate_control_send_low+0x194/0x790 [ 311.990306][ T11] rate_control_get_rate+0x20b/0x5c0 [ 311.995592][ T11] ieee80211_tx_h_rate_ctrl+0xb2d/0x1770 [ 312.001234][ T11] ? ieee80211_tx_h_select_key+0x19e0/0x19e0 [ 312.007208][ T11] ? __lock_acquire+0x1260/0x7c80 [ 312.012238][ T11] ? ieee80211_is_bufferable_mmpdu+0xfb/0x1f0 [ 312.018308][ T11] invoke_tx_handlers_late+0xb6/0x1810 [ 312.023854][ T11] ? invoke_tx_handlers_early+0xa11/0x1cf0 [ 312.029686][ T11] ieee80211_tx+0x2ad/0x420 [ 312.034197][ T11] ? ieee80211_skb_resize+0x630/0x630 [ 312.039591][ T11] ? ieee80211_set_qos_hdr+0x1ca/0x510 [ 312.045049][ T11] ? __bpf_trace_tasklet+0x140/0x140 [ 312.050335][ T11] ? ieee80211_xmit+0x310/0x3f0 [ 312.055215][ T11] ? __ieee80211_tx_skb_tid_band+0x490/0x610 [ 312.061213][ T11] __ieee80211_tx_skb_tid_band+0x4d5/0x610 [ 312.067025][ T11] ? ieee80211_scan_state_send_probe+0x4b4/0x930 [ 312.073458][ T11] ieee80211_scan_state_send_probe+0x560/0x930 [ 312.079666][ T11] ieee80211_scan_work+0x4e8/0x1c30 [ 312.084890][ T11] cfg80211_wiphy_work+0x225/0x260 [ 312.090008][ T11] ? process_scheduled_works+0x957/0x15b0 [ 312.095726][ T11] process_scheduled_works+0xa45/0x15b0 [ 312.101375][ T11] ? assign_work+0x400/0x400 [ 312.105988][ T11] ? assign_work+0x39e/0x400 [ 312.110579][ T11] worker_thread+0xa55/0xfc0 [ 312.115182][ T11] kthread+0x2fa/0x390 [ 312.119245][ T11] ? pr_cont_work+0x560/0x560 [ 312.123936][ T11] ? kthread_blkcg+0xd0/0xd0 [ 312.128520][ T11] ret_from_fork+0x48/0x80 [ 312.132981][ T11] ? kthread_blkcg+0xd0/0xd0 [ 312.137582][ T11] ret_from_fork_asm+0x11/0x20 [ 312.142354][ T11] [ 312.145659][ T11] Kernel Offset: disabled [ 312.150086][ T11] Rebooting in 86400 seconds..