last executing test programs: 2m0.354413129s ago: executing program 0 (id=486): socket$can_j1939(0x1d, 0x2, 0x7) r0 = socket(0x8000000010, 0x2, 0x0) write(r0, &(0x7f00000002c0), 0x0) write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x3260d) socket$unix(0x1, 0x1, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x4d, 0xfffffffb, 0x7fffffff}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040084) sendmsg$nl_route_sched(r1, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000700)=@newqdisc={0x838, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdf8, {0x0, 0x0, 0x0, r3, {0x10}, {}, {0xa, 0x3}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x80c, 0x2, [@TCA_TBF_RTAB={0x404, 0x2, [0x0, 0x1, 0x9, 0x8000, 0x3, 0x5, 0x5, 0xb762, 0x4, 0x7, 0x8, 0xf, 0x2, 0x80000001, 0x400, 0x1007fc, 0xffff8000, 0x6, 0x403, 0x9, 0x8, 0xffffe4f5, 0xd6, 0x4, 0xfffb, 0x7, 0x0, 0xfffff4f0, 0x9, 0x1, 0xfffffffc, 0x4, 0x1, 0x6f2151b1, 0x9, 0xc, 0x20001000, 0x4, 0x2, 0x7, 0x4, 0x99, 0x9, 0x5, 0x6, 0x7, 0xfffffff7, 0x1, 0x2, 0x9, 0x9, 0x1000044, 0x8, 0x8, 0x1, 0x4, 0x7ff, 0x8, 0x7, 0x7fbffffe, 0x400, 0x8, 0xfffffa72, 0xcd, 0x4, 0x80000000, 0xc, 0x4, 0x65, 0x91, 0x659, 0x9, 0xf, 0x9, 0xc28, 0x9, 0x7, 0x3, 0x401, 0x3, 0x2, 0xfffffffa, 0x1, 0x10001, 0x3, 0x1, 0x4, 0x8, 0x8, 0x7, 0x80000001, 0x1, 0x1, 0x7, 0x40, 0x7, 0x10, 0x8000, 0x5, 0x4dc, 0x80, 0x3, 0x7fffffff, 0xff, 0x9, 0xa7, 0xf, 0x1, 0x0, 0x3, 0x1001, 0x4, 0x401, 0x7, 0x80000000, 0xffff, 0x6, 0x5, 0x4f, 0xffffffff, 0x80000000, 0x1966f9ad, 0x200, 0x20200, 0xed5, 0xfffffc00, 0x6, 0x4, 0x8, 0x485e, 0xa85, 0x80000040, 0x2, 0x7, 0x7, 0x102, 0x2d5421e8, 0x7, 0x10000, 0x2, 0x6, 0x3ff, 0xf04, 0x0, 0x2, 0x5, 0xfffffc00, 0x5, 0x8d, 0x4, 0x401, 0x4, 0x9, 0x3, 0xfffffffb, 0x1, 0x0, 0x3, 0x2, 0x5, 0x8, 0x3, 0x0, 0x800, 0x2, 0x8, 0x7ff, 0x1, 0x9, 0x6, 0x5, 0x1, 0x4d15, 0x1ff, 0xfffff060, 0x3, 0x469, 0x3, 0x0, 0x200, 0x10000005, 0x7, 0x2, 0x8, 0x42ba, 0x4, 0x9, 0x3, 0x8, 0x8, 0x53, 0x6, 0x4, 0x400, 0x8000, 0x0, 0x2c310b18, 0xfff, 0x0, 0x3, 0xcd34, 0x9, 0x81, 0xdf3, 0x2, 0x7, 0x8, 0x40fff, 0x1ff, 0x8000, 0x3, 0x8, 0x80, 0x6, 0x9a6, 0xe4cb, 0x402, 0x1, 0x1ff, 0x5, 0x9b4, 0x1, 0x8, 0x0, 0x8, 0x0, 0x9, 0x0, 0x4, 0x10, 0x901, 0x5, 0x2, 0x7b, 0xfffffeff, 0x6, 0x6, 0xc, 0x1000, 0x9, 0x9, 0xe6, 0xab, 0x400, 0x7fffffff, 0xed, 0x7ff, 0xd83, 0x68, 0x80000001, 0x6, 0x9fd, 0x10000006, 0x200, 0x2]}, @TCA_TBF_PTAB={0x404, 0x3, [0x800, 0x9, 0x1, 0x0, 0x7, 0x196, 0x2, 0x6, 0x4, 0xc, 0x8, 0xc9cd, 0x2, 0x9, 0x0, 0x200, 0x3, 0x9, 0x2, 0x2, 0x7, 0x4, 0x6, 0x9, 0x8000000a, 0xc4, 0x60, 0x8000, 0x7, 0x2000db3a, 0x800, 0x3, 0x9, 0x3, 0x9, 0x0, 0x401, 0x3, 0x6, 0x33, 0x6, 0x8, 0x8001, 0x4, 0x6, 0x4, 0x5, 0xd, 0x2, 0x7, 0x1, 0x0, 0x3, 0x81, 0x3, 0x1ff, 0xfffffff5, 0x7, 0x5, 0x65e1, 0x10001, 0xc, 0x8001, 0xffffb5ca, 0xe, 0x3, 0x97, 0x7, 0xb, 0xffff6f3c, 0x1, 0x7ff, 0xb4, 0xf, 0x1, 0x3, 0xff, 0xfff, 0x0, 0xee3, 0x43, 0x9, 0x1, 0x3, 0x1, 0x3796, 0x8, 0x6, 0xbe, 0x3, 0x45, 0xdd1, 0x5, 0x7, 0x7de, 0x0, 0x3, 0x345, 0x4, 0x9da, 0x4, 0x6, 0xeaa, 0x3, 0x5, 0x10, 0x3, 0xffffffff, 0x3ff, 0x96, 0x7, 0x6, 0x6, 0x9, 0x5, 0x5, 0x3, 0xd7da, 0x82, 0x7f, 0x9, 0x1, 0xb8, 0x6, 0x4, 0x6, 0x3f0a, 0x4, 0x9, 0x5, 0x1ff, 0x4, 0x4, 0x1, 0x7, 0x2, 0x2, 0x0, 0xb, 0xfffffff7, 0x8, 0x101, 0xc57, 0x5, 0x2, 0x5, 0x8, 0xfffffffc, 0xf, 0x1982, 0x1, 0x80000000, 0x5, 0x9, 0x6, 0x8000, 0x2, 0x1, 0x2, 0x2, 0x5, 0x5, 0xffffff1c, 0x5, 0x5, 0x7, 0x692, 0x92, 0x4, 0x0, 0x2, 0x43d, 0x1b8f, 0x14, 0x65, 0xc00, 0x9, 0x9, 0x3, 0x8, 0x10001, 0x295, 0x6, 0xcb1, 0x1, 0xb7e, 0x10001, 0x2, 0x7, 0x6, 0x1, 0x2, 0x3ff, 0xfb5, 0x8, 0xa, 0x0, 0x9, 0xc, 0xc3d4, 0x2, 0x8000, 0xec, 0xd, 0x5, 0x84d3, 0xfffffeff, 0x2, 0x7ff, 0x7fffffff, 0x80, 0x2, 0x90, 0x2, 0x6, 0x3, 0x70, 0x7f, 0x0, 0x400, 0x8, 0x10000, 0x9, 0x101, 0xefba, 0x7, 0x3, 0xfffffffe, 0xa4a, 0x7, 0x400, 0xc, 0xfffffff9, 0x8001, 0xd, 0x1, 0x9, 0xfff, 0x421, 0x3ff, 0x2, 0xd, 0xfb6, 0x5, 0xfffffffd, 0xac, 0x7fff, 0xa, 0x0, 0x6, 0x7f, 0x2dd, 0x7, 0x4, 0x7, 0x1]}]}}]}, 0x838}, 0x1, 0x0, 0x0, 0x40098}, 0x0) 1m58.896046325s ago: executing program 0 (id=492): syz_emit_ethernet(0x66, &(0x7f0000000680)={@broadcast, @local, @void, {@ipv6={0x86dd, @icmpv6={0x8, 0x6, "1b56d9", 0x30, 0x3a, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}, @mcast2, {[], @dest_unreach={0x1, 0x3, 0x0, 0x3, '\x00', {0x7, 0x6, "9aef12", 0x3fff, 0x11, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}, @loopback}}}}}}}, 0x0) 1m58.342708646s ago: executing program 0 (id=496): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x50, 0x2, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0x20020800}, 0x0) sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000440)={0x1c, 0x3, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0x206}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4844}, 0x20) 1m57.669131184s ago: executing program 0 (id=501): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000000c0), r0) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000380)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010029bd7000fcdbdf252100000008000300", @ANYRES32=r2], 0x40}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000) 1m57.062523854s ago: executing program 0 (id=503): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000180)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000ab9ff0), 0x10) listen(r0, 0x2005) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r1, 0x0, 0x0, 0x24040014, &(0x7f0000000000)={0xa, 0x4e22, 0x40, @empty}, 0x1c) sendmmsg$inet(r1, &(0x7f0000002a00)=[{{0x0, 0x0, &(0x7f0000001600)=[{&(0x7f0000000540)="6dd5a5adf9b147c7b948e27138dd56263157a9868349731c4a36e444ce4def2eebf33e", 0x23}], 0x1}}, {{0x0, 0x0, &(0x7f00000029c0)=[{&(0x7f00000028c0)="f2990e196a679b77", 0x8}, {&(0x7f0000002900)="1f562a5a1fff9976a544fd64d1aed3f95cb6105e5d63692069195e", 0x1b}], 0x2}}], 0x2, 0x48045) close_range(r0, 0xffffffffffffffff, 0x0) 1m56.50546288s ago: executing program 0 (id=505): r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x1, 0x4, &(0x7f0000000600)=ANY=[@ANYBLOB="18000000000000000000000000000000bd500020050000009500000000000000fd46b8bf205bdf98befdb91c2d4c692a71d2986fab4a5c7a86797603a63345279b399d0a05854dd249fb29c5733a5da15635eb4a4bc54f0ec8416a312410958d29835ce6ee71a46d38e7ea78133aa5cac3047b50f028ded627a14b36b4a5f185ca15076bad27577cda8bcf7d5e068648c82c9bd6ec5f92c2b54c09718a12b3749b1ada6f05a20427070b6a34416197391b1c63ecfc50266aaaa5559a1cd81c5a756e163e583636246381c41110b9b298f0306ed2de54e1a89a79a8ae068f4eb6e55dd6a71ea7b468f6a62c25a02d7952b930f65b9327db37108a9fda"], &(0x7f0000000040)='GPL\x00'}, 0x94) clock_gettime(0x0, &(0x7f0000000000)) bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48) r1 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r1, 0x0, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="2800000010000108fdfff9ff0000000800000000", @ANYRES32=0x0, @ANYBLOB="000000002104020008001b0000000000"], 0x28}, 0x1, 0x0, 0x0, 0x4040000}, 0x8024) r3 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r3, 0x29, 0x2e, &(0x7f0000000080)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x4e20, 0xfffffffe, @empty, 0x8}}}, 0x108) r4 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x6, 0x0, 0x8100, 0x0, {0xc3}, {}, {0xe, 0xfff1}}, [@TCA_RATE={0x6}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x11, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}}, 0x0) sendmsg$can_bcm(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB, @ANYRES64=0x0], 0x80}}, 0x0) r5 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r5, 0x10e, 0xc, 0x0, 0x0) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="500000000206030000000000000000000d0000000c000300686173683a69700005000400000000000900020073797a31000000000c000780080008400000005d05000500020000000500010006"], 0x50}}, 0x0) r7 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_ADD(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000740)={0x40, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x18, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @empty=0xfffffffe}}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x8}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000084) 1m41.075067617s ago: executing program 32 (id=505): r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x1, 0x4, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], &(0x7f0000000040)='GPL\x00'}, 0x94) clock_gettime(0x0, &(0x7f0000000000)) bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48) r1 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r1, 0x0, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="2800000010000108fdfff9ff0000000800000000", @ANYRES32=0x0, @ANYBLOB="000000002104020008001b0000000000"], 0x28}, 0x1, 0x0, 0x0, 0x4040000}, 0x8024) r3 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r3, 0x29, 0x2e, &(0x7f0000000080)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x4e20, 0xfffffffe, @empty, 0x8}}}, 0x108) r4 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x6, 0x0, 0x8100, 0x0, {0xc3}, {}, {0xe, 0xfff1}}, [@TCA_RATE={0x6}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x11, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}}, 0x0) sendmsg$can_bcm(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB, @ANYRES64=0x0], 0x80}}, 0x0) r5 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r5, 0x10e, 0xc, 0x0, 0x0) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="500000000206030000000000000000000d0000000c000300686173683a69700005000400000000000900020073797a31000000000c000780080008400000005d05000500020000000500010006"], 0x50}}, 0x0) r7 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_ADD(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000740)={0x40, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x18, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @empty=0xfffffffe}}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x8}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000084) 11.29572128s ago: executing program 1 (id=859): sigaltstack(0x0, 0x0) r0 = gettid() timer_create(0x0, &(0x7f0000000080)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) 10.599430471s ago: executing program 4 (id=864): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001300)=@base={0x9, 0x18, 0x8, 0x40, 0x42, 0x1}, 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100), 0x0, 0x1000, r0}, 0x38) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x80300, 0x0) readv(r1, &(0x7f0000001300)=[{&(0x7f0000000240)=""/4096, 0x1000}], 0x1) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000001600)={r0, &(0x7f0000000580), &(0x7f0000001580)=""/92}, 0x20) 9.828017737s ago: executing program 3 (id=865): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, 0x0, 0x40f4) 9.591996958s ago: executing program 2 (id=866): r0 = socket$netlink(0x10, 0x3, 0x10) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000380)="2e00000010008188e6b62aa73772cc9f1ba1f848110000005e140602000000000e000a001000000002900000121f", 0x2e}], 0x1}, 0x40) 9.062584281s ago: executing program 1 (id=867): socket$netlink(0x10, 0x3, 0x0) openat$rfkill(0xffffffffffffff9c, &(0x7f00000002c0), 0x80080, 0x0) openat$rfkill(0xffffffffffffff9c, &(0x7f0000001d80), 0x80800, 0x0) r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0) close(r0) 8.996708282s ago: executing program 4 (id=868): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x3, 0x3, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0x3}}, &(0x7f0000000140)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94) 8.484588662s ago: executing program 3 (id=869): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setparam(r0, &(0x7f00000006c0)=0x4) mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff) r3 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0x0, 0x0, 0xffffffff}, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_NODE_ADDR(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r5, 0x201, 0x400000, 0x0, {{}, {}, {0x8, 0x11, 0x4}}}, 0x24}}, 0x0) 8.138341761s ago: executing program 1 (id=871): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xf, 0xf}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0) r3 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000800)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd25, 0x25dfdbfc, {0x0, 0x0, 0x0, r4, {0x0, 0xb}, {}, {0x8, 0x2}}, [@filter_kind_options=@f_flow={{0x9}, {0xc, 0x2, [@TCA_FLOW_KEYS={0x8, 0x1, 0x101a29d}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x884}, 0x2) 8.053429815s ago: executing program 2 (id=872): r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1ff, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000200)={0x28f, 0xfff, 0x1}) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000700)={0x0, &(0x7f0000000000)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_CURSOR(r0, 0xc01c64a3, &(0x7f0000000340)={0x3, r1, 0xfffffffa, 0x4, 0xb, 0x1fd, 0x1}) ioctl$DRM_IOCTL_MODE_CURSOR(r0, 0xc01c64a3, &(0x7f0000001880)={0x1, r1, 0x8fff, 0x3ff, 0x4, 0x944}) 7.11649033s ago: executing program 4 (id=873): r0 = getpid() r1 = syz_pidfd_open(r0, 0x0) setns(r1, 0x24020000) mount_setattr(0xffffffffffffff9c, 0x0, 0x8900, 0x0, 0x0) r2 = syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0) r3 = syz_pidfd_open(r2, 0x0) setns(r3, 0x24020000) mount(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x1070, 0x0) 6.580685773s ago: executing program 5 (id=874): bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) 5.822363936s ago: executing program 3 (id=875): r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000140)={&(0x7f00000006c0)=[0x0], 0x1}) ioctl$DRM_IOCTL_MODE_GETPLANE(r0, 0xc02064b6, &(0x7f00000003c0)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, &(0x7f0000000400)={0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x6, 0x0, 0x0, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x23c, 0x0, 0x0, "b4bc323ef77d1f000071849800000000deff00000000e6ffffff00"}}) r3 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x80800) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r3, 0xc05064a7, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000002c0)=[0x0], &(0x7f0000000340), 0x0, 0x1, 0x0, 0x0, r4}) 5.776680749s ago: executing program 2 (id=876): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x8000080}, 0x40810) 5.71744507s ago: executing program 4 (id=877): sigaltstack(0x0, 0x0) r0 = gettid() timer_create(0x0, &(0x7f0000000080)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) 5.702741597s ago: executing program 1 (id=878): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001300)=@base={0x9, 0x18, 0x8, 0x40, 0x42, 0x1}, 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000580), 0x1000, r0}, 0x38) r1 = openat$vcsu(0xffffffffffffff9c, 0x0, 0x80300, 0x0) readv(r1, &(0x7f0000001300)=[{&(0x7f0000000240)=""/4096, 0x1000}], 0x1) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000001600)={r0, &(0x7f0000000580), &(0x7f0000001580)=""/92}, 0x20) 5.644883015s ago: executing program 5 (id=879): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 5.153544958s ago: executing program 2 (id=880): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setparam(r0, &(0x7f00000006c0)=0x4) mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff) r3 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0x0, 0x0, 0xffffffff}, 0x10) r4 = socket(0x1e, 0x4, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff) setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10) sendmmsg(r3, &(0x7f0000003240), 0x4000000000000e4, 0x0) 5.106924181s ago: executing program 3 (id=881): r0 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x3) read(r0, 0x0, 0x0) 5.08478967s ago: executing program 5 (id=882): bind$netlink(0xffffffffffffffff, &(0x7f0000000340)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000000), 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000380)="2e00000010008188e6b62aa73772cc9f1ba1f848110000005e140602000000000e000a001000000002900000121f", 0x2e}], 0x1}, 0x40) 2.89941173s ago: executing program 1 (id=883): socket$nl_route(0x10, 0x3, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000005000000000000000000000095"], &(0x7f0000000300)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0xf}, 0x94) socket$kcm(0x2, 0x5, 0x84) close(0xffffffffffffffff) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000038c0)={0x0, 0x0, &(0x7f0000009a40)={&(0x7f0000003900)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000040900010073797a30000000002c000000030a01080000000000000000010000000900030073797a32000000000900010073797a300000000050000000060a010400000000000000000100000008000b40000000000900010073797a30000000002800048024000180090001006d6574610000000014000280080001400000001208000240000000", @ANYRES16=r0], 0xc4}}, 0x40) 2.853215354s ago: executing program 5 (id=884): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, 0x0, 0x0) 2.831311063s ago: executing program 3 (id=885): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setparam(r0, &(0x7f00000006c0)=0x4) mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff) r3 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0x0, 0x0, 0xffffffff}, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_NODE_ADDR(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r5, 0x201, 0x400000, 0x0, {{}, {}, {0x8, 0x11, 0x4}}}, 0x24}}, 0x0) 2.635105573s ago: executing program 4 (id=886): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000180)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x1, &(0x7f0000000000)=[{0x6, 0xfd, 0xc, 0x42}]}, 0x10) listen(r0, 0x2005) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r1, 0x0, 0x0, 0x24040014, &(0x7f0000000000)={0xa, 0x4e22, 0x40, @empty}, 0x1c) sendmmsg$inet(r1, &(0x7f0000002a00)=[{{0x0, 0x0, &(0x7f0000001600)=[{&(0x7f0000000540)="6dd5a5adf9b147c7b948e27138dd56263157a9868349731c4a36e444ce4def2eebf33e", 0x23}], 0x1}}, {{0x0, 0x0, &(0x7f00000029c0)=[{&(0x7f00000028c0)="f2990e196a679b77", 0x8}, {&(0x7f0000002900)="1f562a5a1fff9976a544fd64d1aed3f95cb6105e5d636920", 0x18}], 0x2}}], 0x2, 0x48045) close_range(r0, 0xffffffffffffffff, 0x0) 2.360124608s ago: executing program 2 (id=887): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)={0x1c, 0x2d, 0xb, 0x0, 0x0, {0x6}, [@nested={0x8, 0x1, 0x0, 0x1, [@nested={0x4, 0x78}]}]}, 0x1c}}, 0x8000) 1.136780342s ago: executing program 1 (id=888): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xf, 0xf}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0) r3 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000800)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd25, 0x25dfdbfc, {0x0, 0x0, 0x0, r4, {0x0, 0xb}, {}, {0x8, 0x2}}, [@filter_kind_options=@f_flow={{0x9}, {0xc, 0x2, [@TCA_FLOW_KEYS={0x8, 0x1, 0x101a29d}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x884}, 0x2) 1.059713606s ago: executing program 5 (id=889): sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4040000) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x64}, 0x1, 0x0, 0x0, 0x94}, 0x24000000) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000005c0)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a88000000090a050000000000000000000a0000040900020073797a310000000008000a40fffffffc0900010073797a3100000000080005000000000b44001280200001800a00010071756f7461120000100002800c0001400000000000000080140001800c000100636f756e7465720004f9c429d2d21860b20001006c6f670008000340000001"], 0xb0}, 0x1, 0x0, 0x0, 0x4044050}, 0x40) 541.77921ms ago: executing program 2 (id=890): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x0, &(0x7f00000000c0)}) syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x1404c, &(0x7f0000000300)={[{@grpquota}, {@init_itable}, {@init_itable_val}]}, 0x1, 0x485, &(0x7f0000000bc0)="$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") listxattr(&(0x7f0000006440)='./file0\x00', 0x0, 0x0) 493.217556ms ago: executing program 4 (id=891): r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000040)=0x2, 0x4) setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000000), 0x4) sendmsg$802154_dgram(r0, &(0x7f0000000540)={&(0x7f00000003c0)={0x24, @short={0x2, 0x1, 0xaaa3}}, 0x14, &(0x7f0000000400)={0x0}}, 0x0) 175.43975ms ago: executing program 3 (id=892): bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@typedef={0x3, 0x0, 0x0, 0x8, 0x2}, @struct={0x4, 0x1, 0x0, 0x4, 0x1, 0x9, [{0x0, 0x1, 0x3}]}]}}, 0x0, 0x3e, 0x0, 0x1, 0x40000000}, 0x28) 0s ago: executing program 5 (id=893): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001300)=@base={0x9, 0x18, 0x8, 0x40, 0x42, 0x1}, 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000580), 0x1000, r0}, 0x38) r1 = openat$vcsu(0xffffffffffffff9c, 0x0, 0x80300, 0x0) readv(r1, &(0x7f0000001300)=[{&(0x7f0000000240)=""/4096, 0x1000}], 0x1) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000001600)={r0, &(0x7f0000000580), &(0x7f0000001580)=""/92}, 0x20) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.155' (ED25519) to the list of known hosts. [ 154.525945][ T5558] cgroup: Unknown subsys name 'net' [ 154.651238][ T5558] cgroup: Unknown subsys name 'cpuset' [ 154.664731][ T5558] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 160.078127][ T5558] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 164.364643][ T5577] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 164.378352][ T5577] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 164.390962][ T5577] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 164.408569][ T5577] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 164.424730][ T5577] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 164.525052][ T4869] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 164.535532][ T4869] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 164.545956][ T4869] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 164.560902][ T5584] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 164.570147][ T5584] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 164.580507][ T5584] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 164.595911][ T5584] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 164.604961][ T5585] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 164.607193][ T5584] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 164.627441][ T48] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 164.684620][ T5584] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 164.694452][ T5584] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 164.703979][ T5584] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 164.721285][ T5584] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 164.735066][ T5584] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 164.786196][ T48] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 164.796929][ T48] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 164.806735][ T48] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 164.819819][ T48] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 164.831963][ T48] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 166.454184][ T48] Bluetooth: hci0: command tx timeout [ 166.693142][ T48] Bluetooth: hci1: command tx timeout [ 166.693205][ T5584] Bluetooth: hci2: command tx timeout [ 166.772914][ T48] Bluetooth: hci3: command tx timeout [ 166.932897][ T48] Bluetooth: hci4: command tx timeout [ 168.536398][ T48] Bluetooth: hci0: command tx timeout [ 168.774756][ T48] Bluetooth: hci1: command tx timeout [ 168.776379][ T5584] Bluetooth: hci2: command tx timeout [ 168.863043][ T5584] Bluetooth: hci3: command tx timeout [ 168.964975][ T5587] bridge0: port 1(bridge_slave_0) entered blocking state [ 168.973809][ T5587] bridge0: port 1(bridge_slave_0) entered disabled state [ 168.981362][ T5587] bridge_slave_0: entered allmulticast mode [ 168.993365][ T5587] bridge_slave_0: entered promiscuous mode [ 169.012958][ T5584] Bluetooth: hci4: command tx timeout [ 169.046136][ T5580] bridge0: port 1(bridge_slave_0) entered blocking state [ 169.054648][ T5580] bridge0: port 1(bridge_slave_0) entered disabled state [ 169.062229][ T5580] bridge_slave_0: entered allmulticast mode [ 169.073752][ T5580] bridge_slave_0: entered promiscuous mode [ 169.109870][ T5587] bridge0: port 2(bridge_slave_1) entered blocking state [ 169.117751][ T5587] bridge0: port 2(bridge_slave_1) entered disabled state [ 169.125253][ T5587] bridge_slave_1: entered allmulticast mode [ 169.134095][ T5587] bridge_slave_1: entered promiscuous mode [ 169.168236][ T5580] bridge0: port 2(bridge_slave_1) entered blocking state [ 169.176383][ T5580] bridge0: port 2(bridge_slave_1) entered disabled state [ 169.184118][ T5580] bridge_slave_1: entered allmulticast mode [ 169.193642][ T5580] bridge_slave_1: entered promiscuous mode [ 169.287010][ T5582] bridge0: port 1(bridge_slave_0) entered blocking state [ 169.294605][ T5582] bridge0: port 1(bridge_slave_0) entered disabled state [ 169.301952][ T5582] bridge_slave_0: entered allmulticast mode [ 169.311896][ T5582] bridge_slave_0: entered promiscuous mode [ 169.345614][ T5576] bridge0: port 1(bridge_slave_0) entered blocking state [ 169.355951][ T5576] bridge0: port 1(bridge_slave_0) entered disabled state [ 169.363748][ T5576] bridge_slave_0: entered allmulticast mode [ 169.373208][ T5576] bridge_slave_0: entered promiscuous mode [ 169.418128][ T5582] bridge0: port 2(bridge_slave_1) entered blocking state [ 169.428203][ T5582] bridge0: port 2(bridge_slave_1) entered disabled state [ 169.436006][ T5582] bridge_slave_1: entered allmulticast mode [ 169.444370][ T5582] bridge_slave_1: entered promiscuous mode [ 169.491511][ T5580] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 169.504729][ T5576] bridge0: port 2(bridge_slave_1) entered blocking state [ 169.512258][ T5576] bridge0: port 2(bridge_slave_1) entered disabled state [ 169.520197][ T5576] bridge_slave_1: entered allmulticast mode [ 169.528560][ T5576] bridge_slave_1: entered promiscuous mode [ 169.545688][ T5587] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 169.607148][ T5580] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 169.644205][ T5587] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 169.681303][ T5582] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 169.756595][ T5592] bridge0: port 1(bridge_slave_0) entered blocking state [ 169.764509][ T5592] bridge0: port 1(bridge_slave_0) entered disabled state [ 169.771873][ T5592] bridge_slave_0: entered allmulticast mode [ 169.780830][ T5592] bridge_slave_0: entered promiscuous mode [ 169.798178][ T5582] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 169.907156][ T5576] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 169.944521][ T5592] bridge0: port 2(bridge_slave_1) entered blocking state [ 169.952121][ T5592] bridge0: port 2(bridge_slave_1) entered disabled state [ 169.961085][ T5592] bridge_slave_1: entered allmulticast mode [ 169.969494][ T5592] bridge_slave_1: entered promiscuous mode [ 170.007827][ T5580] team0: Port device team_slave_0 added [ 170.020395][ T5576] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 170.036222][ T5587] team0: Port device team_slave_0 added [ 170.093798][ T5580] team0: Port device team_slave_1 added [ 170.127620][ T5587] team0: Port device team_slave_1 added [ 170.161234][ T5582] team0: Port device team_slave_0 added [ 170.241614][ T5592] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 170.257993][ T5582] team0: Port device team_slave_1 added [ 170.294648][ T5576] team0: Port device team_slave_0 added [ 170.329547][ T5592] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 170.362929][ T5580] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 170.370025][ T5580] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 170.397653][ T5580] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 170.416651][ T5576] team0: Port device team_slave_1 added [ 170.424784][ T5587] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 170.431823][ T5587] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 170.458053][ T5587] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 170.513628][ T5580] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 170.520906][ T5580] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 170.547495][ T5580] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 170.583190][ T5587] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 170.590223][ T5587] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 170.616507][ T5584] Bluetooth: hci0: command tx timeout [ 170.616646][ T5587] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 170.658541][ T5582] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 170.666026][ T5582] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 170.692317][ T5582] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 170.778372][ T5592] team0: Port device team_slave_0 added [ 170.786569][ T5582] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 170.794039][ T5582] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 170.820594][ T5582] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 170.837293][ T5576] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 170.844493][ T5576] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 170.871008][ T5584] Bluetooth: hci2: command tx timeout [ 170.872382][ T5576] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 170.876735][ T5584] Bluetooth: hci1: command tx timeout [ 170.898947][ T5576] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 170.906093][ T5576] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 170.932223][ T5576] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 170.933057][ T48] Bluetooth: hci3: command tx timeout [ 170.951762][ T5592] team0: Port device team_slave_1 added [ 171.092977][ T48] Bluetooth: hci4: command tx timeout [ 171.185135][ T5592] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 171.192172][ T5592] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 171.218433][ T5592] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 171.241383][ T5580] hsr_slave_0: entered promiscuous mode [ 171.249937][ T5580] hsr_slave_1: entered promiscuous mode [ 171.270339][ T5587] hsr_slave_0: entered promiscuous mode [ 171.278760][ T5587] hsr_slave_1: entered promiscuous mode [ 171.286853][ T5587] debugfs: 'hsr0' already exists in 'hsr' [ 171.292829][ T5587] Cannot create hsr debugfs directory [ 171.310624][ T5582] hsr_slave_0: entered promiscuous mode [ 171.318948][ T5582] hsr_slave_1: entered promiscuous mode [ 171.326855][ T5582] debugfs: 'hsr0' already exists in 'hsr' [ 171.334230][ T5582] Cannot create hsr debugfs directory [ 171.364554][ T5592] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 171.371629][ T5592] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 171.397976][ T5592] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 171.480991][ T5576] hsr_slave_0: entered promiscuous mode [ 171.489553][ T5576] hsr_slave_1: entered promiscuous mode [ 171.498216][ T5576] debugfs: 'hsr0' already exists in 'hsr' [ 171.504183][ T5576] Cannot create hsr debugfs directory [ 171.729080][ T5592] hsr_slave_0: entered promiscuous mode [ 171.737783][ T5592] hsr_slave_1: entered promiscuous mode [ 171.745681][ T5592] debugfs: 'hsr0' already exists in 'hsr' [ 171.751484][ T5592] Cannot create hsr debugfs directory [ 172.693034][ T48] Bluetooth: hci0: command tx timeout [ 172.798339][ T5580] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 172.826055][ T5580] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 172.839037][ T5580] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 172.856089][ T5580] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 172.869283][ T5580] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 172.890863][ T5580] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 172.915295][ T5580] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 172.931444][ T5580] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 172.939138][ T48] Bluetooth: hci1: command tx timeout [ 172.945018][ T5584] Bluetooth: hci2: command tx timeout [ 173.012983][ T48] Bluetooth: hci3: command tx timeout [ 173.045988][ T5587] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 173.066472][ T5587] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 173.078178][ T5587] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 173.094872][ T5587] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 173.117628][ T5587] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 173.136306][ T5587] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 173.166042][ T5587] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 173.173349][ T48] Bluetooth: hci4: command tx timeout [ 173.187334][ T5587] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 173.373491][ T5582] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 173.393367][ T5582] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 173.426183][ T5582] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 173.448859][ T5582] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 173.459702][ T5582] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 173.480208][ T5582] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 173.511719][ T5582] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 173.528119][ T5582] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 173.719489][ T5576] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 173.739199][ T5576] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 173.770272][ T5576] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 173.785355][ T5576] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 173.827051][ T5576] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 173.848068][ T5576] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 173.888337][ T5576] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 173.905407][ T5576] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 173.983754][ T5580] 8021q: adding VLAN 0 to HW filter on device bond0 [ 174.151008][ T5592] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 174.170394][ T5592] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 174.198664][ T5592] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 174.216811][ T5592] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 174.242244][ T5580] 8021q: adding VLAN 0 to HW filter on device team0 [ 174.256908][ T5592] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 174.278317][ T5592] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 174.302411][ T5592] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 174.320222][ T5592] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 174.405401][ T82] bridge0: port 1(bridge_slave_0) entered blocking state [ 174.413019][ T82] bridge0: port 1(bridge_slave_0) entered forwarding state [ 174.495197][ T82] bridge0: port 2(bridge_slave_1) entered blocking state [ 174.502565][ T82] bridge0: port 2(bridge_slave_1) entered forwarding state [ 174.579339][ T5587] 8021q: adding VLAN 0 to HW filter on device bond0 [ 174.671199][ T5582] 8021q: adding VLAN 0 to HW filter on device bond0 [ 174.861203][ T5587] 8021q: adding VLAN 0 to HW filter on device team0 [ 174.915315][ T5582] 8021q: adding VLAN 0 to HW filter on device team0 [ 174.963948][ T52] bridge0: port 1(bridge_slave_0) entered blocking state [ 174.971276][ T52] bridge0: port 1(bridge_slave_0) entered forwarding state [ 175.021595][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 175.029139][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 175.110696][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 175.118280][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 175.201638][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 175.209233][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 175.319094][ T5576] 8021q: adding VLAN 0 to HW filter on device bond0 [ 175.542395][ T5576] 8021q: adding VLAN 0 to HW filter on device team0 [ 175.635940][ T5592] 8021q: adding VLAN 0 to HW filter on device bond0 [ 175.650607][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 175.657992][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 175.788633][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 175.796174][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 176.173669][ T5592] 8021q: adding VLAN 0 to HW filter on device team0 [ 176.358935][ T153] bridge0: port 1(bridge_slave_0) entered blocking state [ 176.366531][ T153] bridge0: port 1(bridge_slave_0) entered forwarding state [ 176.440528][ T5691] bridge0: port 2(bridge_slave_1) entered blocking state [ 176.448100][ T5691] bridge0: port 2(bridge_slave_1) entered forwarding state [ 177.044205][ T5580] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 177.831903][ T5580] veth0_vlan: entered promiscuous mode [ 178.024350][ T5580] veth1_vlan: entered promiscuous mode [ 178.528046][ T5580] veth0_macvtap: entered promiscuous mode [ 178.624076][ T5580] veth1_macvtap: entered promiscuous mode [ 178.876659][ T5580] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 178.911749][ T5587] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 179.016505][ T5580] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 179.070333][ T5582] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 179.103825][ T5691] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 179.130915][ T34] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 179.161143][ T34] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 179.184266][ T34] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 179.608145][ T5576] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 179.784709][ T5587] veth0_vlan: entered promiscuous mode [ 179.892052][ T5592] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 179.919766][ T5582] veth0_vlan: entered promiscuous mode [ 179.959607][ T5587] veth1_vlan: entered promiscuous mode [ 180.074384][ T5582] veth1_vlan: entered promiscuous mode [ 180.508346][ T5576] veth0_vlan: entered promiscuous mode [ 180.585663][ T5587] veth0_macvtap: entered promiscuous mode [ 180.673636][ T5587] veth1_macvtap: entered promiscuous mode [ 180.700042][ T5576] veth1_vlan: entered promiscuous mode [ 180.742394][ T5582] veth0_macvtap: entered promiscuous mode [ 180.868210][ T5582] veth1_macvtap: entered promiscuous mode [ 181.018998][ T5587] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 181.165847][ T5587] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 181.215115][ T5582] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 181.314561][ T5582] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 181.322130][ T34] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.340414][ T34] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.405725][ T5576] veth0_macvtap: entered promiscuous mode [ 181.478101][ T34] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.491707][ T34] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.540870][ T34] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.559657][ T5576] veth1_macvtap: entered promiscuous mode [ 181.584954][ T34] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.600235][ T34] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.707397][ T34] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.793245][ T5592] veth0_vlan: entered promiscuous mode [ 181.989167][ T5576] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 182.042242][ T5592] veth1_vlan: entered promiscuous mode [ 182.131101][ T5576] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 182.347845][ T82] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 182.377750][ T82] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 182.426771][ T82] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 182.472604][ T82] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 182.832526][ T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 182.868632][ T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 182.890836][ T5592] veth0_macvtap: entered promiscuous mode [ 183.096003][ T5592] veth1_macvtap: entered promiscuous mode [ 183.166718][ T34] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 183.209899][ T34] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 183.379676][ T5592] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 183.536435][ T5592] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 183.681881][ T5580] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 183.727490][ T34] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.781178][ T34] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.811582][ T34] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.900097][ T52] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 184.379480][ T5794] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1'. [ 186.241044][ T5820] Driver unsupported XDP return value 0 on prog (id 2) dev N/A, expect packet loss! [ 187.249464][ T82] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 187.309439][ T82] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 187.505727][ T5691] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 187.547377][ T5691] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 187.722231][ T34] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 187.756547][ T34] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 188.007075][ T34] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 188.045215][ T34] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 188.810245][ T145] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 188.841378][ T145] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 189.170868][ T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 189.201948][ T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 190.717774][ T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 190.765482][ T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 191.044989][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 191.108729][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 191.401164][ T5887] overlayfs: missing 'lowerdir' [ 193.534036][ T5921] Zero length message leads to an empty skb [ 193.815939][ T5923] bridge1: entered promiscuous mode [ 193.839791][ T5923] bridge1: entered allmulticast mode [ 193.947762][ T5923] team0: Port device bridge1 added [ 193.989897][ T5924] bridge0: port 3(team0) entered blocking state [ 194.033694][ T5924] bridge0: port 3(team0) entered disabled state [ 194.058853][ T5924] team0: entered allmulticast mode [ 194.091385][ T5924] team_slave_0: entered allmulticast mode [ 194.119150][ T5924] team_slave_1: entered allmulticast mode [ 194.184640][ T5924] team0: entered promiscuous mode [ 194.194455][ T5924] team_slave_0: entered promiscuous mode [ 194.201557][ T5924] team_slave_1: entered promiscuous mode [ 194.216938][ T5924] bridge0: port 3(team0) entered blocking state [ 194.223886][ T5924] bridge0: port 3(team0) entered forwarding state [ 194.285694][ T5926] syzkaller0: entered promiscuous mode [ 194.293274][ T5926] syzkaller0: entered allmulticast mode [ 194.441588][ T5918] loop4: detected capacity change from 0 to 128 [ 194.875183][ T5938] syz.0.35 uses obsolete (PF_INET,SOCK_PACKET) [ 195.794950][ T5944] tipc: Started in network mode [ 195.872380][ T5944] tipc: Node identity ce4c163e1331, cluster identity 4711 [ 195.941493][ T5944] tipc: Enabled bearer , priority 0 [ 196.007404][ T5945] syzkaller0: entered promiscuous mode [ 196.022269][ T5945] syzkaller0: entered allmulticast mode [ 196.419343][ T5944] tipc: Resetting bearer [ 196.574620][ T5943] tipc: Resetting bearer [ 196.719185][ T5943] tipc: Disabling bearer [ 196.982778][ T34] kworker/u8:2: attempt to access beyond end of device [ 196.982778][ T34] loop4: rw=1, sector=145, nr_sectors = 216 limit=128 [ 197.429741][ T5964] loop0: detected capacity change from 0 to 2048 [ 197.486438][ T5964] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 197.639217][ T5970] sctp: [Deprecated]: syz.3.46 (pid 5970) Use of int in max_burst socket option. [ 197.639217][ T5970] Use struct sctp_assoc_value instead [ 197.647901][ T5964] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 198.158254][ T5975] netlink: 8 bytes leftover after parsing attributes in process `syz.1.48'. [ 198.979008][ T5988] loop0: detected capacity change from 0 to 512 [ 199.046930][ T5988] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 199.115285][ T5988] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 199.221223][ T5988] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2860: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 199.327592][ T5988] EXT4-fs (loop0): 1 truncate cleaned up [ 199.402888][ T5988] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 200.176369][ T5580] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 203.985875][ T1310] ieee802154 phy0 wpan0: encryption failed: -22 [ 203.992486][ T1310] ieee802154 phy1 wpan1: encryption failed: -22 [ 204.166048][ T5674] IPVS: starting estimator thread 0... [ 204.323921][ T6070] IPVS: using max 240 ests per chain, 12000 per kthread [ 204.737842][ T6077] loop1: detected capacity change from 0 to 1024 [ 204.801418][ T6077] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 204.944849][ T6077] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 205.740070][ T5582] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 206.382428][ T6094] netem: change failed [ 207.699424][ T6100] bridge1: trying to set multicast query interval above maximum, setting to 8640000 (86400000ms) [ 208.520001][ T6113] loop3: detected capacity change from 0 to 1024 [ 208.583175][ T6113] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 208.736896][ T6113] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 209.210948][ T5576] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 210.263685][ T6137] netlink: 'syz.4.106': attribute type 1 has an invalid length. [ 211.097259][ T29] audit: type=1326 audit(1778510583.920:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6155 comm="syz.1.116" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2ed59cdd9 code=0x7ffc0000 [ 211.197806][ T29] audit: type=1326 audit(1778510583.940:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6155 comm="syz.1.116" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2ed59cdd9 code=0x7ffc0000 [ 211.283763][ T29] audit: type=1326 audit(1778510583.960:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6155 comm="syz.1.116" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2ed59cdd9 code=0x7ffc0000 [ 211.446641][ T29] audit: type=1326 audit(1778510583.970:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6155 comm="syz.1.116" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa2ed59cdd9 code=0x7ffc0000 [ 211.568389][ T29] audit: type=1326 audit(1778510583.970:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6155 comm="syz.1.116" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2ed59cdd9 code=0x7ffc0000 [ 211.689825][ T29] audit: type=1326 audit(1778510583.960:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6155 comm="syz.1.116" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2ed59cdd9 code=0x7ffc0000 [ 211.715973][ T29] audit: type=1326 audit(1778510583.980:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6155 comm="syz.1.116" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2ed59cdd9 code=0x7ffc0000 [ 211.742612][ T29] audit: type=1326 audit(1778510583.990:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6155 comm="syz.1.116" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2ed59cdd9 code=0x7ffc0000 [ 211.943234][ T29] audit: type=1326 audit(1778510583.990:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6155 comm="syz.1.116" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa2ed59cdd9 code=0x7ffc0000 [ 211.977185][ T29] audit: type=1326 audit(1778510583.980:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6155 comm="syz.1.116" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2ed59cdd9 code=0x7ffc0000 [ 212.396540][ T6174] usb usb2: usbfs: interface 0 claimed by hub while 'syz.0.123' sets config #0 [ 212.487992][ T6175] usb usb2: usbfs: interface 0 claimed by hub while 'syz.0.123' sets config #1 [ 213.761200][ T6193] loop0: detected capacity change from 0 to 512 [ 213.806397][ T6193] EXT4-fs: Ignoring removed nobh option [ 213.845089][ T6193] ext3: Unknown parameter 'subj_type' [ 213.872439][ T6193] capability: warning: `syz.0.131' uses 32-bit capabilities (legacy support in use) [ 216.063314][ T6218] netlink: 8 bytes leftover after parsing attributes in process `syz.1.139'. [ 216.101747][ T6218] netlink: 12 bytes leftover after parsing attributes in process `syz.1.139'. [ 216.650147][ T6222] loop2: detected capacity change from 0 to 512 [ 216.714814][ T6222] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 216.858579][ T6222] EXT4-fs (loop2): 1 truncate cleaned up [ 216.943330][ T6222] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 217.268153][ T5587] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 219.855992][ T6268] loop1: detected capacity change from 0 to 1024 [ 219.915267][ T6268] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 220.022167][ T6268] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 220.172412][ T6277] loop4: detected capacity change from 0 to 512 [ 220.339153][ T5582] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 220.415118][ T6277] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 220.455229][ T6277] ext4 filesystem being mounted at /15/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 224.087750][ T5592] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 224.609719][ T6316] loop0: detected capacity change from 0 to 1024 [ 224.673272][ T6316] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 224.816803][ T6316] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 225.415040][ T5580] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 225.988662][ T6341] loop0: detected capacity change from 0 to 1024 [ 225.999878][ T6342] loop2: detected capacity change from 0 to 256 [ 226.037022][ T6341] ======================================================= [ 226.037022][ T6341] WARNING: The mand mount option has been deprecated and [ 226.037022][ T6341] and is ignored by this kernel. Remove the mand [ 226.037022][ T6341] option from the mount to silence this warning. [ 226.037022][ T6341] ======================================================= [ 226.150032][ T6341] EXT4-fs: inline encryption not supported [ 226.273748][ T6341] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 226.301470][ T6341] ext4 filesystem being mounted at /43/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 227.521059][ T5580] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 227.974951][ T6358] netlink: 100 bytes leftover after parsing attributes in process `syz.1.187'. [ 228.193710][ T6358] netlink: 12 bytes leftover after parsing attributes in process `syz.1.187'. [ 228.403633][ T6358] netlink: 8 bytes leftover after parsing attributes in process `syz.1.187'. [ 228.518706][ T6362] loop2: detected capacity change from 0 to 1024 [ 228.648455][ T6362] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 228.871657][ T6362] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 229.256802][ T6369] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 229.332362][ T6370] loop3: detected capacity change from 0 to 64 [ 229.562263][ T5587] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 236.183537][ T6404] usb usb2: usbfs: interface 0 claimed by hub while 'syz.2.203' sets config #1 [ 236.971151][ T6408] loop4: detected capacity change from 0 to 1024 [ 237.114605][ T6408] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 237.330615][ T6408] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 238.189768][ T5592] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 238.452562][ T29] kauditd_printk_skb: 13 callbacks suppressed [ 238.495283][ T29] audit: type=1326 audit(1778510611.280:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6421 comm="syz.3.213" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbd219cdd9 code=0x7ffc0000 [ 238.651149][ T29] audit: type=1326 audit(1778510611.290:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6421 comm="syz.3.213" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbd219cdd9 code=0x7ffc0000 [ 238.813147][ T29] audit: type=1326 audit(1778510611.300:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6421 comm="syz.3.213" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbd219cdd9 code=0x7ffc0000 [ 238.909332][ T29] audit: type=1326 audit(1778510611.300:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6421 comm="syz.3.213" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbd219cdd9 code=0x7ffc0000 [ 239.031337][ T29] audit: type=1326 audit(1778510611.300:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6421 comm="syz.3.213" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fbbd219cdd9 code=0x7ffc0000 [ 239.143803][ T29] audit: type=1326 audit(1778510611.300:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6421 comm="syz.3.213" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbd219cdd9 code=0x7ffc0000 [ 239.204647][ T29] audit: type=1326 audit(1778510611.320:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6421 comm="syz.3.213" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbd219cdd9 code=0x7ffc0000 [ 239.306628][ T29] audit: type=1326 audit(1778510611.320:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6421 comm="syz.3.213" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbd219cdd9 code=0x7ffc0000 [ 239.420331][ T29] audit: type=1326 audit(1778510611.330:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6421 comm="syz.3.213" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fbbd219cdd9 code=0x7ffc0000 [ 239.559679][ T29] audit: type=1326 audit(1778510611.330:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6421 comm="syz.3.213" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbd219cdd9 code=0x7ffc0000 [ 240.209090][ T6444] loop4: detected capacity change from 0 to 1024 [ 240.265252][ T6444] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 241.170716][ T6444] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 242.205945][ T5592] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 243.826531][ T6480] loop0: detected capacity change from 0 to 512 [ 243.893652][ T6480] EXT4-fs error (device loop0): ext4_orphan_get:1397: inode #15: comm syz.0.236: inode has both inline data and extents flags [ 243.967441][ T6480] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 243.972941][ C0] EXT4-fs (loop0): error count since last fsck: 1 [ 243.988945][ C0] EXT4-fs (loop0): initial error at time 1778510616: ext4_orphan_get:1397: inode 15 [ 243.998720][ C0] EXT4-fs (loop0): last error at time 1778510616: ext4_orphan_get:1397: inode 15 [ 244.013586][ T6480] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.236: couldn't read orphan inode 15 (err -117) [ 244.018828][ T6485] loop4: detected capacity change from 0 to 1024 [ 244.057686][ T6480] loop0: lost filesystem error report for type 5 error -117 [ 244.059471][ T6485] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 244.081159][ T6480] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 244.191529][ T6485] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 244.236938][ T6480] netlink: 'syz.0.236': attribute type 1 has an invalid length. [ 244.254127][ T6492] loop2: detected capacity change from 0 to 512 [ 244.265308][ T6492] EXT4-fs: Ignoring removed mblk_io_submit option [ 244.339737][ T6492] EXT4-fs error (device loop2): ext4_iget_extra_inode:5128: inode #15: comm syz.2.239: corrupted in-inode xattr: e_value size too large [ 244.462512][ T6492] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 244.464251][ T6492] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.239: couldn't read orphan inode 15 (err -117) [ 244.473954][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 244.474040][ C0] EXT4-fs (loop2): initial error at time 1778510617: ext4_iget_extra_inode:5128: inode 15 [ 244.474192][ C0] EXT4-fs (loop2): last error at time 1778510617: ext4_iget_extra_inode:5128: inode 15 [ 244.539456][ T6492] loop2: lost filesystem error report for type 5 error -117 [ 244.568480][ T6492] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 244.658287][ T5592] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 244.872551][ T6496] EXT4-fs error (device loop2): ext4_append:79: inode #2: comm syz.2.239: Logical block already allocated [ 245.297367][ T5580] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 245.712178][ T5587] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 246.105863][ T6508] netlink: 44 bytes leftover after parsing attributes in process `syz.1.247'. [ 248.557275][ T6525] loop2: detected capacity change from 0 to 1024 [ 248.615049][ T6525] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 248.701494][ T6525] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 248.986739][ T6539] loop0: detected capacity change from 0 to 512 [ 249.526262][ T5587] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 252.304971][ T6567] loop3: detected capacity change from 0 to 1024 [ 252.393959][ T6567] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 252.443898][ T6557] loop0: detected capacity change from 0 to 8192 [ 252.629892][ T6567] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 252.691813][ T29] kauditd_printk_skb: 7 callbacks suppressed [ 252.691885][ T29] audit: type=1800 audit(1778510625.490:42): pid=6557 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.263" name="file2" dev="loop0" ino=1048607 res=0 errno=0 [ 252.771314][ T6557] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 252.885325][ T6557] FAT-fs (loop0): Filesystem has been set read-only [ 253.441561][ T5576] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 253.538332][ T6576] loop4: detected capacity change from 0 to 256 [ 253.663352][ T6576] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 253.793423][ T6576] exFAT-fs (loop4): start_clu is invalid cluster(0xffffffff) [ 255.903957][ T6601] loop3: detected capacity change from 0 to 2048 [ 256.040265][ T6605] netlink: 'syz.3.282': attribute type 10 has an invalid length. [ 256.673297][ T6605] bond0: (slave syz_tun): Enslaving as an active interface with an up link [ 256.917871][ T6601] Alternate GPT is invalid, using primary GPT. [ 256.970641][ T6601] loop3: p2 p3 p7 [ 257.096896][ T6618] loop0: detected capacity change from 0 to 256 [ 257.239851][ T6618] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 257.287106][ T6603] 8021q: adding VLAN 0 to HW filter on device bond1 [ 257.390735][ T6618] exFAT-fs (loop0): start_clu is invalid cluster(0xffffffff) [ 257.495949][ T6611] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 257.540480][ T6611] bond1: (slave macvlan2): unknown ethtool speed (30000) for port 1 (set it to 0) [ 257.594318][ T6611] bond1: (slave macvlan2): speed changed to 0 on port 1 [ 257.641774][ T6611] bond1: (slave macvlan2): Enslaving as a backup interface with an up link [ 257.755058][ T5680] bond_slave_0: entered promiscuous mode [ 257.761087][ T5680] bond_slave_1: entered promiscuous mode [ 257.767214][ T5680] syz_tun: entered promiscuous mode [ 260.176943][ T6651] loop4: detected capacity change from 0 to 256 [ 260.347448][ T6651] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 260.456383][ T6651] exFAT-fs (loop4): start_clu is invalid cluster(0xffffffff) [ 260.556776][ T145] Bluetooth: hci5: Frame reassembly failed (-84) [ 261.587337][ T6668] netlink: 'syz.1.313': attribute type 1 has an invalid length. [ 261.836359][ T6673] loop2: detected capacity change from 0 to 512 [ 262.365814][ T6673] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 262.478383][ T6673] ext4 filesystem being mounted at /66/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 262.614108][ T5584] Bluetooth: hci5: command 0x1003 tx timeout [ 262.623210][ T48] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 263.105488][ T6687] loop1: detected capacity change from 0 to 512 [ 263.167465][ T6687] EXT4-fs: Ignoring removed mblk_io_submit option [ 263.281151][ T6687] EXT4-fs error (device loop1): ext4_iget_extra_inode:5128: inode #15: comm syz.1.320: corrupted in-inode xattr: e_value size too large [ 263.349328][ T6687] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 263.352959][ C0] EXT4-fs (loop1): error count since last fsck: 1 [ 263.353052][ C0] EXT4-fs (loop1): initial error at time 1778510636: ext4_iget_extra_inode:5128: inode 15 [ 263.353206][ C0] EXT4-fs (loop1): last error at time 1778510636: ext4_iget_extra_inode:5128: inode 15 [ 263.357805][ T6687] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.320: couldn't read orphan inode 15 (err -117) [ 263.357936][ T6687] loop1: lost filesystem error report for type 5 error -117 [ 263.453251][ T6687] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 263.535623][ T6694] loop3: detected capacity change from 0 to 256 [ 263.635081][ T6694] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 263.690229][ T6694] exFAT-fs (loop3): start_clu is invalid cluster(0xffffffff) [ 263.981924][ T5582] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 264.644061][ T6702] loop3: detected capacity change from 0 to 1024 [ 264.697442][ T6702] EXT4-fs: inline encryption not supported [ 264.854075][ T6702] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 264.980390][ T6702] ext4 filesystem being mounted at /65/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 265.311741][ T6708] netlink: 'syz.4.328': attribute type 1 has an invalid length. [ 265.421601][ T1310] ieee802154 phy0 wpan0: encryption failed: -22 [ 265.438532][ T1310] ieee802154 phy1 wpan1: encryption failed: -22 [ 265.568590][ T5576] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 266.848211][ T5587] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 266.853527][ T6723] loop4: detected capacity change from 0 to 512 [ 266.906262][ T6723] EXT4-fs: Ignoring removed mblk_io_submit option [ 267.370013][ T6723] EXT4-fs error (device loop4): ext4_iget_extra_inode:5128: inode #15: comm syz.4.335: corrupted in-inode xattr: e_value size too large [ 267.403533][ T6723] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 267.412840][ C0] EXT4-fs (loop4): error count since last fsck: 1 [ 267.428987][ C0] EXT4-fs (loop4): initial error at time 1778510640: ext4_iget_extra_inode:5128: inode 15 [ 267.439268][ C0] EXT4-fs (loop4): last error at time 1778510640: ext4_iget_extra_inode:5128: inode 15 [ 267.455149][ T6723] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.335: couldn't read orphan inode 15 (err -117) [ 267.455496][ T6731] futex_wake_op: syz.3.336 tries to shift op by 32; fix this program [ 267.532933][ T6723] loop4: lost filesystem error report for type 5 error -117 [ 267.538164][ T6723] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 268.139483][ T5592] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 268.506129][ T6739] loop1: detected capacity change from 0 to 1024 [ 268.564808][ T6739] EXT4-fs: inline encryption not supported [ 268.682404][ T6739] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 268.764056][ T6739] ext4 filesystem being mounted at /80/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 268.842435][ T6743] netlink: 'syz.0.342': attribute type 1 has an invalid length. [ 269.149936][ T6751] loop2: detected capacity change from 0 to 732 [ 269.247844][ T5582] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 270.326212][ T6767] loop0: detected capacity change from 0 to 512 [ 270.383635][ T6767] EXT4-fs: Ignoring removed mblk_io_submit option [ 270.436756][ T6767] EXT4-fs error (device loop0): ext4_iget_extra_inode:5128: inode #15: comm syz.0.351: corrupted in-inode xattr: e_value size too large [ 270.453683][ T6767] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 270.454873][ T6767] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.351: couldn't read orphan inode 15 (err -117) [ 270.464469][ C1] EXT4-fs (loop0): error count since last fsck: 1 [ 270.464552][ C1] EXT4-fs (loop0): initial error at time 1778510643: ext4_iget_extra_inode:5128: inode 15 [ 270.464710][ C1] EXT4-fs (loop0): last error at time 1778510643: ext4_iget_extra_inode:5128: inode 15 [ 270.508337][ T6767] loop0: lost filesystem error report for type 5 error -117 [ 270.529144][ T6767] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 271.466082][ T5580] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 272.393656][ T6786] netlink: 8 bytes leftover after parsing attributes in process `syz.4.360'. [ 272.442418][ T6786] netlink: 8 bytes leftover after parsing attributes in process `syz.4.360'. [ 273.613440][ T6802] loop4: detected capacity change from 0 to 512 [ 273.654664][ T6802] EXT4-fs: Ignoring removed mblk_io_submit option [ 273.722401][ T6802] EXT4-fs error (device loop4): ext4_iget_extra_inode:5128: inode #15: comm syz.4.367: corrupted in-inode xattr: e_value size too large [ 273.748369][ T6802] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 273.752782][ C1] EXT4-fs (loop4): error count since last fsck: 1 [ 273.759594][ T6802] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.367: couldn't read orphan inode 15 (err -117) [ 273.762363][ C1] EXT4-fs (loop4): initial error at time 1778510646: ext4_iget_extra_inode:5128: inode 15 [ 273.790842][ C1] EXT4-fs (loop4): last error at time 1778510646: ext4_iget_extra_inode:5128: inode 15 [ 273.817116][ T6802] loop4: lost filesystem error report for type 5 error -117 [ 273.881999][ T6802] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 274.060918][ T6805] loop0: detected capacity change from 0 to 1764 [ 274.402135][ T5592] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 275.016066][ T6820] loop4: detected capacity change from 0 to 2048 [ 275.133063][ T6820] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 275.315253][ T6820] netlink: 4 bytes leftover after parsing attributes in process `syz.4.374'. [ 275.427154][ T6820] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 276.842022][ T6845] loop2: detected capacity change from 0 to 512 [ 276.894678][ T6845] EXT4-fs: Ignoring removed mblk_io_submit option [ 277.011485][ T6845] EXT4-fs error (device loop2): ext4_iget_extra_inode:5128: inode #15: comm syz.2.384: corrupted in-inode xattr: e_value size too large [ 277.108967][ T6845] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 277.112792][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 277.128835][ C0] EXT4-fs (loop2): initial error at time 1778510649: ext4_iget_extra_inode:5128: inode 15 [ 277.139214][ C0] EXT4-fs (loop2): last error at time 1778510649: ext4_iget_extra_inode:5128: inode 15 [ 277.160049][ T6845] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.384: couldn't read orphan inode 15 (err -117) [ 277.173872][ T6845] loop2: lost filesystem error report for type 5 error -117 [ 277.179728][ T6845] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 277.432146][ T6849] loop1: detected capacity change from 0 to 128 [ 277.688325][ T5587] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 279.006930][ T6866] loop4: detected capacity change from 0 to 2048 [ 279.138408][ T6866] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 279.354384][ T6866] netlink: 4 bytes leftover after parsing attributes in process `syz.4.392'. [ 279.443180][ T6876] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 280.199455][ T6886] loop2: detected capacity change from 0 to 512 [ 280.256505][ T6886] EXT4-fs: Ignoring removed mblk_io_submit option [ 280.323160][ T6886] EXT4-fs error (device loop2): ext4_iget_extra_inode:5128: inode #15: comm syz.2.399: corrupted in-inode xattr: e_value size too large [ 280.369304][ T6886] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 280.372906][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 280.388995][ C0] EXT4-fs (loop2): initial error at time 1778510653: ext4_iget_extra_inode:5128: inode 15 [ 280.399282][ C0] EXT4-fs (loop2): last error at time 1778510653: ext4_iget_extra_inode:5128: inode 15 [ 280.424944][ T6886] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.399: couldn't read orphan inode 15 (err -117) [ 280.437326][ T6886] loop2: lost filesystem error report for type 5 error -117 [ 280.477518][ T6891] loop3: detected capacity change from 0 to 256 [ 280.544218][ T6886] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 281.115242][ T5587] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 282.157029][ T6910] loop2: detected capacity change from 0 to 128 [ 282.260234][ T6910] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 282.416959][ T6910] ext4 filesystem being mounted at /82/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 283.024421][ T6904] bridge0: port 2(bridge_slave_1) entered disabled state [ 283.034209][ T6904] bridge0: port 1(bridge_slave_0) entered disabled state [ 283.108267][ T5587] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 283.627632][ T6924] netlink: 8 bytes leftover after parsing attributes in process `syz.2.411'. [ 283.681308][ T6924] netlink: 24 bytes leftover after parsing attributes in process `syz.2.411'. [ 283.711523][ T6924] netlink: 8 bytes leftover after parsing attributes in process `syz.2.411'. [ 283.786913][ T6924] netlink: 24 bytes leftover after parsing attributes in process `syz.2.411'. [ 283.892437][ T6904] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 284.038984][ T6904] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 284.357545][ T6936] loop2: detected capacity change from 0 to 512 [ 284.426687][ T6936] EXT4-fs: Ignoring removed mblk_io_submit option [ 284.544721][ T6936] EXT4-fs error (device loop2): ext4_iget_extra_inode:5128: inode #15: comm syz.2.414: corrupted in-inode xattr: e_value size too large [ 284.607950][ T6936] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 284.611295][ T6936] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.414: couldn't read orphan inode 15 (err -117) [ 284.621032][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 284.621115][ C0] EXT4-fs (loop2): initial error at time 1778510657: ext4_iget_extra_inode:5128: inode 15 [ 284.621268][ C0] EXT4-fs (loop2): last error at time 1778510657: ext4_iget_extra_inode:5128: inode 15 [ 284.660299][ T6936] loop2: lost filesystem error report for type 5 error -117 [ 284.667279][ T6936] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 284.964237][ T5587] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 285.216391][ T52] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 285.273085][ T52] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 285.285704][ T52] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 285.407080][ T52] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 286.825683][ T6963] loop1: detected capacity change from 0 to 128 [ 286.920331][ T6963] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 286.959829][ T6963] ext4 filesystem being mounted at /98/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 287.321692][ T6970] netlink: 8 bytes leftover after parsing attributes in process `syz.4.424'. [ 287.356316][ T6970] netlink: 24 bytes leftover after parsing attributes in process `syz.4.424'. [ 287.409939][ T6970] netlink: 8 bytes leftover after parsing attributes in process `syz.4.424'. [ 287.471070][ T6970] netlink: 24 bytes leftover after parsing attributes in process `syz.4.424'. [ 287.497918][ T6972] loop2: detected capacity change from 0 to 512 [ 287.522039][ T6972] EXT4-fs: Ignoring removed mblk_io_submit option [ 287.591777][ T6972] EXT4-fs error (device loop2): ext4_iget_extra_inode:5128: inode #15: comm syz.2.425: corrupted in-inode xattr: e_value size too large [ 287.626507][ T5582] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 287.641857][ T6972] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 287.642946][ C1] EXT4-fs (loop2): error count since last fsck: 1 [ 287.659006][ C1] EXT4-fs (loop2): initial error at time 1778510660: ext4_iget_extra_inode:5128: inode 15 [ 287.669316][ C1] EXT4-fs (loop2): last error at time 1778510660: ext4_iget_extra_inode:5128: inode 15 [ 287.703222][ T6972] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.425: couldn't read orphan inode 15 (err -117) [ 287.801253][ T6972] loop2: lost filesystem error report for type 5 error -117 [ 287.817828][ T6972] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 287.974599][ T6948] Bluetooth: hci2: command 0x0406 tx timeout [ 287.981238][ T6948] Bluetooth: hci1: command 0x0406 tx timeout [ 287.988004][ T6948] Bluetooth: hci4: command 0x0406 tx timeout [ 287.994340][ T6948] Bluetooth: hci0: command 0x0406 tx timeout [ 288.000801][ T6948] Bluetooth: hci3: command 0x0406 tx timeout [ 288.332051][ T5587] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 288.927611][ T6984] loop4: detected capacity change from 0 to 512 [ 288.958129][ T6984] EXT4-fs: Ignoring removed nobh option [ 288.997527][ T6984] ext3: Unknown parameter 'subj_type' [ 289.316946][ T6955] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 289.676064][ T6991] netlink: 16 bytes leftover after parsing attributes in process `syz.4.432'. [ 290.400341][ T7000] loop2: detected capacity change from 0 to 128 [ 290.465965][ T7001] netlink: 8 bytes leftover after parsing attributes in process `syz.0.437'. [ 290.505172][ T7001] netlink: 24 bytes leftover after parsing attributes in process `syz.0.437'. [ 290.527882][ T7000] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 290.548032][ T7001] netlink: 8 bytes leftover after parsing attributes in process `syz.0.437'. [ 290.561730][ T7001] netlink: 24 bytes leftover after parsing attributes in process `syz.0.437'. [ 290.574944][ T7000] ext4 filesystem being mounted at /92/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 290.905674][ T7006] loop3: detected capacity change from 0 to 512 [ 291.029778][ T7006] EXT4-fs: Ignoring removed mblk_io_submit option [ 291.195772][ T7006] EXT4-fs error (device loop3): ext4_iget_extra_inode:5128: inode #15: comm syz.3.438: corrupted in-inode xattr: e_value size too large [ 291.333685][ T7006] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 291.337482][ T7006] EXT4-fs error (device loop3): ext4_orphan_get:1402: comm syz.3.438: couldn't read orphan inode 15 (err -117) [ 291.347139][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 291.347223][ C0] EXT4-fs (loop3): initial error at time 1778510664: ext4_iget_extra_inode:5128: inode 15 [ 291.347458][ C0] EXT4-fs (loop3): last error at time 1778510664: ext4_iget_extra_inode:5128: inode 15 [ 291.365832][ T5587] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 291.543660][ T7006] loop3: lost filesystem error report for type 5 error -117 [ 291.587081][ T7006] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 291.794930][ T7013] loop4: detected capacity change from 0 to 512 [ 291.851952][ T7013] EXT4-fs: Ignoring removed nobh option [ 291.889603][ T7013] ext3: Unknown parameter 'subj_type' [ 292.404111][ T5576] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 293.424831][ T7034] loop2: detected capacity change from 0 to 128 [ 293.503233][ T7034] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 293.618437][ T7034] ext4 filesystem being mounted at /96/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 294.222710][ T5674] IPVS: starting estimator thread 0... [ 294.302258][ T5587] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 294.345169][ T7045] IPVS: using max 192 ests per chain, 9600 per kthread [ 294.392552][ T7049] loop0: detected capacity change from 0 to 512 [ 294.404071][ T7049] EXT4-fs: Ignoring removed mblk_io_submit option [ 294.458071][ T7049] EXT4-fs error (device loop0): ext4_iget_extra_inode:5128: inode #15: comm syz.0.457: corrupted in-inode xattr: e_value size too large [ 294.498886][ T7047] loop1: detected capacity change from 0 to 512 [ 294.572060][ T7047] EXT4-fs: Ignoring removed nobh option [ 294.613701][ T7047] ext3: Unknown parameter 'subj_type' [ 294.619634][ T7049] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 294.622778][ C1] EXT4-fs (loop0): error count since last fsck: 1 [ 294.638776][ C1] EXT4-fs (loop0): initial error at time 1778510667: ext4_iget_extra_inode:5128: inode 15 [ 294.649013][ C1] EXT4-fs (loop0): last error at time 1778510667: ext4_iget_extra_inode:5128: inode 15 [ 294.659522][ T7049] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.457: couldn't read orphan inode 15 (err -117) [ 294.685242][ T7049] loop0: lost filesystem error report for type 5 error -117 [ 294.718331][ T7049] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 295.218871][ T5580] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 295.753958][ T0] NOHZ tick-stop error: local softirq work is pending, handler #c0!!! [ 296.163183][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 296.572939][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 297.903792][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 298.722732][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 299.111214][ T7065] netlink: 24 bytes leftover after parsing attributes in process `syz.2.463'. [ 299.644894][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 300.054726][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 300.464377][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 300.873993][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 301.283318][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 301.881959][ T7067] netlink: 8 bytes leftover after parsing attributes in process `syz.1.465'. [ 301.931864][ T7067] netlink: 24 bytes leftover after parsing attributes in process `syz.1.465'. [ 301.967755][ T7067] netlink: 8 bytes leftover after parsing attributes in process `syz.1.465'. [ 302.037616][ T7067] netlink: 24 bytes leftover after parsing attributes in process `syz.1.465'. [ 302.457250][ T7073] netlink: 8 bytes leftover after parsing attributes in process `syz.2.467'. [ 303.136741][ T7084] loop0: detected capacity change from 0 to 512 [ 303.187447][ T7084] EXT4-fs: Ignoring removed nobh option [ 303.218084][ T7084] ext3: Unknown parameter 'subj_type' [ 303.900831][ T7094] loop0: detected capacity change from 0 to 512 [ 303.968146][ T7094] EXT4-fs: Ignoring removed mblk_io_submit option [ 304.075092][ T7094] EXT4-fs error (device loop0): ext4_iget_extra_inode:5128: inode #15: comm syz.0.474: corrupted in-inode xattr: e_value size too large [ 304.101025][ T7096] loop2: detected capacity change from 0 to 512 [ 304.174881][ T7094] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 304.179756][ T7094] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.474: couldn't read orphan inode 15 (err -117) [ 304.189400][ C1] EXT4-fs (loop0): error count since last fsck: 1 [ 304.189482][ C1] EXT4-fs (loop0): initial error at time 1778510677: ext4_iget_extra_inode:5128: inode 15 [ 304.189632][ C1] EXT4-fs (loop0): last error at time 1778510677: ext4_iget_extra_inode:5128: inode 15 [ 304.290722][ T7094] loop0: lost filesystem error report for type 5 error -117 [ 304.298169][ T7094] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 304.360761][ T7096] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 304.443553][ T7096] ext4 filesystem being mounted at /101/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 304.508604][ T5674] IPVS: starting estimator thread 0... [ 304.614732][ T7105] IPVS: using max 240 ests per chain, 12000 per kthread [ 304.723815][ T7107] netlink: 8 bytes leftover after parsing attributes in process `syz.1.479'. [ 304.755187][ T7107] netlink: 24 bytes leftover after parsing attributes in process `syz.1.479'. [ 304.818735][ T7107] netlink: 8 bytes leftover after parsing attributes in process `syz.1.479'. [ 304.847888][ T5580] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 304.848338][ T7107] netlink: 24 bytes leftover after parsing attributes in process `syz.1.479'. [ 304.885751][ T5587] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 305.594594][ T7117] loop4: detected capacity change from 0 to 512 [ 305.622208][ T7117] EXT4-fs: Ignoring removed nobh option [ 305.644847][ T7117] ext3: Unknown parameter 'subj_type' [ 305.721837][ T7112] loop2: detected capacity change from 0 to 4096 [ 305.826758][ T7112] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 305.978904][ T7112] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 306.003750][ T7112] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 306.496114][ T5587] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 307.382044][ T7140] netlink: 8 bytes leftover after parsing attributes in process `syz.1.493'. [ 307.443868][ T7140] netlink: 12 bytes leftover after parsing attributes in process `syz.1.493'. [ 307.644723][ T7140] netlink: 8 bytes leftover after parsing attributes in process `syz.1.493'. [ 307.647437][ T5958] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 307.673381][ T7140] netlink: 12 bytes leftover after parsing attributes in process `syz.1.493'. [ 307.703300][ T5958] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 307.763132][ T5958] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 307.794495][ T5958] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 308.365288][ T7148] loop3: detected capacity change from 0 to 512 [ 308.437259][ T7148] EXT4-fs: Ignoring removed nobh option [ 308.486525][ T7148] ext3: Unknown parameter 'subj_type' [ 308.536664][ T7156] netlink: 36 bytes leftover after parsing attributes in process `syz.0.501'. [ 309.798504][ T7168] netlink: 'syz.0.505': attribute type 17 has an invalid length. [ 310.872766][ T7167] bridge0: port 3(team0) entered disabled state [ 310.880962][ T7167] bridge0: port 2(bridge_slave_1) entered disabled state [ 310.890373][ T7167] bridge0: port 1(bridge_slave_0) entered disabled state [ 311.002394][ T7180] netlink: 8 bytes leftover after parsing attributes in process `syz.3.508'. [ 311.089152][ T7180] netlink: 12 bytes leftover after parsing attributes in process `syz.3.508'. [ 312.482202][ T7167] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 312.612051][ T7167] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 314.361600][ T7168] 8021q: adding VLAN 0 to HW filter on device bond0 [ 314.401099][ T7168] bridge0: port 3(team0) entered blocking state [ 314.408156][ T7168] bridge0: port 3(team0) entered forwarding state [ 314.418088][ T7168] 8021q: adding VLAN 0 to HW filter on device team0 [ 314.450522][ T7168] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 314.512248][ T7168] bridge0: port 1(bridge_slave_0) entered blocking state [ 314.520088][ T7168] bridge0: port 1(bridge_slave_0) entered forwarding state [ 314.549276][ T7168] bridge0: port 2(bridge_slave_1) entered blocking state [ 314.557354][ T7168] bridge0: port 2(bridge_slave_1) entered forwarding state [ 314.724913][ T7168] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 314.759921][ T7168] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 315.182099][ T7168] veth1_vlan: left promiscuous mode [ 315.236082][ T7168] veth0_vlan: left promiscuous mode [ 315.331427][ T7168] veth0_vlan: entered promiscuous mode [ 315.496311][ T7168] veth1_vlan: entered promiscuous mode [ 315.550595][ T7168] veth1_macvtap: left promiscuous mode [ 315.637220][ T7168] veth0_macvtap: left promiscuous mode [ 315.693340][ T7168] veth0_macvtap: entered promiscuous mode [ 315.746714][ T7168] veth1_macvtap: entered promiscuous mode [ 315.796822][ T7168] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 315.811518][ T7168] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 315.927776][ T7168] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 315.977439][ T7168] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 316.556085][ T7180] netlink: 8 bytes leftover after parsing attributes in process `syz.3.508'. [ 316.565680][ T7180] netlink: 12 bytes leftover after parsing attributes in process `syz.3.508'. [ 316.637487][ T5691] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 316.666389][ T13] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 316.680662][ T7203] loop4: detected capacity change from 0 to 512 [ 316.724560][ T7203] EXT4-fs: Ignoring removed nobh option [ 316.744482][ T13] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 316.768323][ T7203] ext3: Unknown parameter 'subj_type' [ 316.796950][ T13] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 318.302521][ T7217] loop3: detected capacity change from 0 to 2048 [ 318.607141][ T7217] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 318.991372][ T7217] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 320.257337][ T7235] netlink: 8 bytes leftover after parsing attributes in process `syz.4.529'. [ 320.342198][ T7235] netlink: 12 bytes leftover after parsing attributes in process `syz.4.529'. [ 320.402112][ T5958] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 320.403195][ T7235] netlink: 8 bytes leftover after parsing attributes in process `syz.4.529'. [ 320.422003][ T7235] netlink: 12 bytes leftover after parsing attributes in process `syz.4.529'. [ 321.366450][ T5958] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 321.381318][ T5958] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 321.513687][ T5958] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 322.099282][ T7242] netlink: 8 bytes leftover after parsing attributes in process `syz.3.530'. [ 322.286189][ T7244] loop4: detected capacity change from 0 to 512 [ 322.330821][ T7244] EXT4-fs: Ignoring removed nobh option [ 322.383504][ T7244] ext3: Unknown parameter 'subj_type' [ 323.602542][ T7259] netlink: 12 bytes leftover after parsing attributes in process `syz.4.536'. [ 323.625293][ T7259] netlink: 12 bytes leftover after parsing attributes in process `syz.4.536'. [ 323.653129][ T7259] netlink: 12 bytes leftover after parsing attributes in process `syz.4.536'. [ 323.684835][ T7259] netlink: 12 bytes leftover after parsing attributes in process `syz.4.536'. [ 323.774609][ T7259] netlink: 12 bytes leftover after parsing attributes in process `syz.4.536'. [ 323.797530][ T7259] netlink: 12 bytes leftover after parsing attributes in process `syz.4.536'. [ 323.837038][ T7259] netlink: 12 bytes leftover after parsing attributes in process `syz.4.536'. [ 323.864266][ T7259] netlink: 12 bytes leftover after parsing attributes in process `syz.4.536'. [ 323.892836][ T7259] netlink: 12 bytes leftover after parsing attributes in process `syz.4.536'. [ 323.974041][ T29] audit: type=1326 audit(1778510696.720:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7261 comm="syz.2.539" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f453019cdd9 code=0x7ffc0000 [ 324.004932][ T29] audit: type=1326 audit(1778510696.770:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7261 comm="syz.2.539" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f453019cdd9 code=0x7ffc0000 [ 324.039623][ T29] audit: type=1326 audit(1778510696.840:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7261 comm="syz.2.539" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f453019cdd9 code=0x7ffc0000 [ 324.183212][ T29] audit: type=1326 audit(1778510696.840:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7261 comm="syz.2.539" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f453019cdd9 code=0x7ffc0000 [ 324.262910][ T29] audit: type=1326 audit(1778510696.840:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7261 comm="syz.2.539" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f453019cdd9 code=0x7ffc0000 [ 324.393037][ T29] audit: type=1326 audit(1778510696.840:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7261 comm="syz.2.539" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f453019cdd9 code=0x7ffc0000 [ 324.449986][ T29] audit: type=1326 audit(1778510696.840:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7261 comm="syz.2.539" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f453019cdd9 code=0x7ffc0000 [ 324.522892][ T29] audit: type=1326 audit(1778510696.870:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7261 comm="syz.2.539" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f453019cdd9 code=0x7ffc0000 [ 324.614498][ T7265] loop3: detected capacity change from 0 to 512 [ 324.633187][ T29] audit: type=1326 audit(1778510696.870:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7261 comm="syz.2.539" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f453019cdd9 code=0x7ffc0000 [ 324.724763][ T7265] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 324.763975][ T29] audit: type=1326 audit(1778510696.870:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7261 comm="syz.2.539" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f453019cdd9 code=0x7ffc0000 [ 324.901563][ T13] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 324.980674][ T7265] EXT4-fs (loop3): 1 truncate cleaned up [ 324.981199][ T13] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 325.036246][ T7265] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 325.076237][ T13] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 325.121209][ T13] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 325.971682][ T4869] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 325.984667][ T4869] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 325.995223][ T4869] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 326.009209][ T4869] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 326.021213][ T4869] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 326.094379][ T5576] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 326.865896][ T7297] loop4: detected capacity change from 0 to 128 [ 326.875536][ T1310] ieee802154 phy0 wpan0: encryption failed: -22 [ 326.887881][ T1310] ieee802154 phy1 wpan1: encryption failed: -22 [ 327.242452][ T7304] capability: warning: `syz.2.552' uses deprecated v2 capabilities in a way that may be insecure [ 328.133036][ T5584] Bluetooth: hci5: command tx timeout [ 328.145468][ T137] kworker/u8:6: attempt to access beyond end of device [ 328.145468][ T137] loop4: rw=1, sector=153, nr_sectors = 8 limit=128 [ 328.203436][ T7314] __nla_validate_parse: 45 callbacks suppressed [ 328.203508][ T7314] netlink: 8 bytes leftover after parsing attributes in process `syz.3.555'. [ 328.228963][ T137] kworker/u8:6: attempt to access beyond end of device [ 328.228963][ T137] loop4: rw=1, sector=169, nr_sectors = 8 limit=128 [ 328.266485][ T137] kworker/u8:6: attempt to access beyond end of device [ 328.266485][ T137] loop4: rw=1, sector=185, nr_sectors = 8 limit=128 [ 328.307286][ T137] kworker/u8:6: attempt to access beyond end of device [ 328.307286][ T137] loop4: rw=1, sector=201, nr_sectors = 8 limit=128 [ 328.313107][ T7314] netlink: 12 bytes leftover after parsing attributes in process `syz.3.555'. [ 328.376944][ T137] kworker/u8:6: attempt to access beyond end of device [ 328.376944][ T137] loop4: rw=1, sector=217, nr_sectors = 8 limit=128 [ 328.401683][ T7314] netlink: 8 bytes leftover after parsing attributes in process `syz.3.555'. [ 328.440074][ T7314] netlink: 12 bytes leftover after parsing attributes in process `syz.3.555'. [ 328.458422][ T137] kworker/u8:6: attempt to access beyond end of device [ 328.458422][ T137] loop4: rw=1, sector=233, nr_sectors = 8 limit=128 [ 328.513651][ T137] kworker/u8:6: attempt to access beyond end of device [ 328.513651][ T137] loop4: rw=1, sector=249, nr_sectors = 8 limit=128 [ 328.563241][ T137] kworker/u8:6: attempt to access beyond end of device [ 328.563241][ T137] loop4: rw=1, sector=265, nr_sectors = 8 limit=128 [ 328.607619][ T137] kworker/u8:6: attempt to access beyond end of device [ 328.607619][ T137] loop4: rw=1, sector=281, nr_sectors = 8 limit=128 [ 328.669147][ T137] kworker/u8:6: attempt to access beyond end of device [ 328.669147][ T137] loop4: rw=1, sector=297, nr_sectors = 584 limit=128 [ 329.640978][ T7332] loop4: detected capacity change from 0 to 736 [ 330.213970][ T5584] Bluetooth: hci5: command tx timeout [ 330.330706][ T7169] Set syz1 is full, maxelem 65536 reached [ 330.691929][ T7343] netlink: 292 bytes leftover after parsing attributes in process `syz.2.565'. [ 331.027177][ T7346] netlink: 16 bytes leftover after parsing attributes in process `syz.1.568'. [ 331.151160][ T7349] loop2: detected capacity change from 0 to 128 [ 331.238299][ T7349] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 331.274923][ T7349] ext4 filesystem being mounted at /122/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 331.409982][ T7354] netlink: 8 bytes leftover after parsing attributes in process `syz.3.569'. [ 331.497961][ T7354] netlink: 12 bytes leftover after parsing attributes in process `syz.3.569'. [ 331.553174][ T7354] netlink: 8 bytes leftover after parsing attributes in process `syz.3.569'. [ 331.637143][ T7354] netlink: 12 bytes leftover after parsing attributes in process `syz.3.569'. [ 332.292949][ T5584] Bluetooth: hci5: command tx timeout [ 332.644815][ T5587] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 333.334397][ T7375] bridge0: port 3(vlan2) entered blocking state [ 333.347461][ T7381] netlink: 24 bytes leftover after parsing attributes in process `syz.1.577'. [ 333.365363][ T7375] bridge0: port 3(vlan2) entered disabled state [ 333.386231][ T7375] vlan2: entered allmulticast mode [ 333.423112][ T7375] geneve0: entered allmulticast mode [ 333.458766][ T7375] vlan2: entered promiscuous mode [ 333.478240][ T7375] geneve0: entered promiscuous mode [ 334.198428][ T145] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 334.271481][ T7287] bridge0: port 1(bridge_slave_0) entered blocking state [ 334.309534][ T7287] bridge0: port 1(bridge_slave_0) entered disabled state [ 334.327997][ T7287] bridge_slave_0: entered allmulticast mode [ 334.365757][ T7287] bridge_slave_0: entered promiscuous mode [ 334.376386][ T5584] Bluetooth: hci5: command tx timeout [ 334.419234][ T7287] bridge0: port 2(bridge_slave_1) entered blocking state [ 334.428196][ T7287] bridge0: port 2(bridge_slave_1) entered disabled state [ 334.438206][ T7287] bridge_slave_1: entered allmulticast mode [ 334.450464][ T7287] bridge_slave_1: entered promiscuous mode [ 334.539325][ T145] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 334.951967][ T145] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 335.090009][ T7287] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 335.196365][ T145] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 335.319469][ T7287] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 335.660325][ T7287] team0: Port device team_slave_0 added [ 335.706621][ T7287] team0: Port device team_slave_1 added [ 335.935248][ T7405] netlink: 24 bytes leftover after parsing attributes in process `syz.2.588'. [ 336.282453][ T7287] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 336.292256][ T7287] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 336.372056][ T7287] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 336.544239][ T7287] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 336.589374][ T7287] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 336.673528][ T7287] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 336.679070][ T7411] netlink: 16 bytes leftover after parsing attributes in process `syz.2.589'. [ 336.927243][ T7411] bond0: entered promiscuous mode [ 336.947803][ T7411] bond_slave_0: entered promiscuous mode [ 336.964460][ T7411] bond_slave_1: entered promiscuous mode [ 337.012342][ T7411] bond0: left promiscuous mode [ 337.034696][ T7411] bond_slave_0: left promiscuous mode [ 337.051679][ T7411] bond_slave_1: left promiscuous mode [ 337.260560][ T145] team0: left allmulticast mode [ 337.275448][ T145] team_slave_0: left allmulticast mode [ 337.295976][ T145] team_slave_1: left allmulticast mode [ 337.320934][ T145] bridge1: left allmulticast mode [ 337.367635][ T145] team0: left promiscuous mode [ 337.382378][ T145] team_slave_0: left promiscuous mode [ 337.400298][ T145] team_slave_1: left promiscuous mode [ 337.486293][ T145] bridge1: left promiscuous mode [ 337.504278][ T145] bridge0: port 3(team0) entered disabled state [ 337.607368][ T145] bridge_slave_1: left allmulticast mode [ 337.627870][ T145] bridge_slave_1: left promiscuous mode [ 337.669856][ T145] bridge0: port 2(bridge_slave_1) entered disabled state [ 337.779378][ T145] bridge_slave_0: left allmulticast mode [ 337.801291][ T145] bridge_slave_0: left promiscuous mode [ 337.829037][ T145] bridge0: port 1(bridge_slave_0) entered disabled state [ 338.845020][ T145] team0: Port device bridge1 removed [ 338.942308][ T7429] loop2: detected capacity change from 0 to 512 [ 338.977927][ T7429] EXT4-fs: Ignoring removed bh option [ 339.015317][ T145] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 339.041085][ T7429] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended [ 339.073153][ T7429] EXT4-fs (loop2): 1 truncate cleaned up [ 339.103001][ T145] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 339.116110][ T7429] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 339.190327][ T145] bond0 (unregistering): Released all slaves [ 339.207911][ T7433] loop4: detected capacity change from 0 to 128 [ 339.308216][ T7433] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 339.410200][ T7433] ext4 filesystem being mounted at /111/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 339.426453][ T7287] hsr_slave_0: entered promiscuous mode [ 339.487306][ T7287] hsr_slave_1: entered promiscuous mode [ 339.510608][ T7287] debugfs: 'hsr0' already exists in 'hsr' [ 339.526985][ T7287] Cannot create hsr debugfs directory [ 339.597759][ T5587] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 340.181383][ T7441] netlink: 24 bytes leftover after parsing attributes in process `syz.1.598'. [ 340.585822][ T145] hsr_slave_0: left promiscuous mode [ 340.656290][ T145] hsr_slave_1: left promiscuous mode [ 340.668174][ T145] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 340.688487][ T145] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 340.722982][ T145] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 340.731110][ T145] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 340.794299][ T145] veth1_macvtap: left promiscuous mode [ 340.819112][ T145] veth0_macvtap: left promiscuous mode [ 340.845969][ T5592] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 340.855288][ T145] veth1_vlan: left promiscuous mode [ 340.855960][ T145] veth0_vlan: left promiscuous mode [ 344.301841][ T145] team0 (unregistering): Port device team_slave_1 removed [ 344.378737][ T29] kauditd_printk_skb: 7 callbacks suppressed [ 344.378807][ T29] audit: type=1326 audit(1778510717.210:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7541 comm="syz.2.607" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f453019cdd9 code=0x0 [ 344.388233][ T145] team0 (unregistering): Port device team_slave_0 removed [ 345.269328][ T7510] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 345.330740][ T7510] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 345.440443][ T7510] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 345.478208][ T7510] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 345.737974][ T7554] loop3: detected capacity change from 0 to 128 [ 345.761979][ T5224] 8021q: adding VLAN 0 to HW filter on device eth1 [ 345.803538][ T7554] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 345.847510][ T7554] ext4 filesystem being mounted at /112/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 346.080611][ T145] IPVS: stop unused estimator thread 0... [ 346.897699][ T7287] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 346.988825][ T5576] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 347.000896][ T7287] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 347.047978][ T7287] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 347.141281][ T7287] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 347.189753][ T7287] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 347.333875][ T7287] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 347.388743][ T7287] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 347.536577][ T7287] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 347.661842][ T7566] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 348.070473][ T7572] loop2: detected capacity change from 0 to 256 [ 348.782137][ T7573] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 349.258079][ T7287] 8021q: adding VLAN 0 to HW filter on device bond0 [ 349.531132][ T7287] 8021q: adding VLAN 0 to HW filter on device team0 [ 349.693740][ T7486] bridge0: port 1(bridge_slave_0) entered blocking state [ 349.701468][ T7486] bridge0: port 1(bridge_slave_0) entered forwarding state [ 349.913986][ T7515] bridge0: port 2(bridge_slave_1) entered blocking state [ 349.921486][ T7515] bridge0: port 2(bridge_slave_1) entered forwarding state [ 351.576324][ T7610] loop3: detected capacity change from 0 to 512 [ 351.644337][ T7610] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 351.712442][ T5224] 8021q: adding VLAN 0 to HW filter on device eth2 [ 351.742982][ T7610] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #16: comm syz.3.626: invalid indirect mapped block 83886080 (level 1) [ 351.759831][ T7610] loop3: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117 [ 351.760978][ T7610] EXT4-fs (loop3): Remounting filesystem read-only [ 351.770537][ C1] EXT4-fs (loop3): error count since last fsck: 1 [ 351.770620][ C1] EXT4-fs (loop3): initial error at time 1778510724: ext4_free_branches:1023: inode 16 [ 351.770770][ C1] EXT4-fs (loop3): last error at time 1778510724: ext4_free_branches:1023: inode 16 [ 351.809815][ T7610] EXT4-fs (loop3): 1 orphan inode deleted [ 351.818070][ T7610] EXT4-fs (loop3): 1 truncate cleaned up [ 351.826496][ T7610] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 352.093949][ T5576] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 352.540159][ T7622] loop4: detected capacity change from 0 to 2048 [ 352.653285][ T7622] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 352.930248][ T7622] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 354.431888][ T7653] netlink: 8 bytes leftover after parsing attributes in process `syz.1.637'. [ 354.537991][ T5680] IPVS: starting estimator thread 0... [ 354.558802][ T7656] netlink: 36 bytes leftover after parsing attributes in process `syz.2.638'. [ 354.643531][ T7657] IPVS: using max 240 ests per chain, 12000 per kthread [ 355.110723][ T7666] IPVS: sync thread started: state = MASTER, mcast_ifn = veth1_to_bridge, syncid = 32, id = 0 [ 355.302450][ T7287] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 355.970279][ T7682] loop3: detected capacity change from 0 to 2048 [ 356.054141][ T7682] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 356.343773][ T7682] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 356.924878][ T5224] 8021q: adding VLAN 0 to HW filter on device eth3 [ 358.146091][ T7713] netlink: 'syz.4.656': attribute type 13 has an invalid length. [ 358.178958][ T7713] netlink: 'syz.4.656': attribute type 17 has an invalid length. [ 358.761448][ T7711] bridge0: port 2(bridge_slave_1) entered disabled state [ 358.771287][ T7711] bridge0: port 1(bridge_slave_0) entered disabled state [ 359.487231][ T7711] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 359.559432][ T7711] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 360.471526][ T7713] 8021q: adding VLAN 0 to HW filter on device bond0 [ 360.489783][ T7713] 8021q: adding VLAN 0 to HW filter on device team0 [ 360.527220][ T7713] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 360.591732][ T7713] bridge0: port 1(bridge_slave_0) entered blocking state [ 360.599562][ T7713] bridge0: port 1(bridge_slave_0) entered forwarding state [ 360.633858][ T7713] bridge0: port 2(bridge_slave_1) entered blocking state [ 360.641548][ T7713] bridge0: port 2(bridge_slave_1) entered forwarding state [ 360.748224][ T7713] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 360.786689][ T7713] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 360.923840][ T7713] veth1_vlan: left promiscuous mode [ 360.938072][ T7713] veth0_vlan: left promiscuous mode [ 360.951214][ T7713] veth0_vlan: entered promiscuous mode [ 360.990911][ T7713] veth1_vlan: entered promiscuous mode [ 361.051071][ T7713] veth1_macvtap: left promiscuous mode [ 361.068569][ T7713] veth0_macvtap: left promiscuous mode [ 361.095344][ T7713] veth0_macvtap: entered promiscuous mode [ 361.109532][ T7746] netlink: 16 bytes leftover after parsing attributes in process `syz.1.662'. [ 361.162194][ T7713] veth1_macvtap: entered promiscuous mode [ 361.196888][ T7713] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 361.231419][ T7713] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 361.268853][ T7713] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 361.308003][ T7713] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 361.868884][ T5224] 8021q: adding VLAN 0 to HW filter on device eth4 [ 362.079845][ T7287] veth0_vlan: entered promiscuous mode [ 362.083124][ T7751] loop3: detected capacity change from 0 to 2048 [ 362.187076][ T7751] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 362.340013][ T7287] veth1_vlan: entered promiscuous mode [ 362.422274][ T7754] loop4: detected capacity change from 0 to 128 [ 362.488986][ T7756] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 362.568890][ T7754] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 362.592420][ T7754] ext4 filesystem being mounted at /127/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 363.205342][ T7287] veth0_macvtap: entered promiscuous mode [ 363.288239][ T7287] veth1_macvtap: entered promiscuous mode [ 363.390412][ T5592] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 363.488461][ T7287] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 363.713792][ T7287] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 363.985329][ T82] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 364.031261][ T82] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 364.087744][ T82] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 364.129397][ T82] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 365.787835][ T7792] loop3: detected capacity change from 0 to 512 [ 365.822416][ T7792] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 365.870388][ T7792] EXT4-fs error (device loop3): ext4_orphan_get:1423: comm syz.3.673: bad orphan inode 131083 [ 365.913209][ T7792] loop3: lost filesystem error report for type 5 error -117 [ 365.943581][ T7792] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 366.774862][ T5576] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 367.204234][ T7808] batadv0: entered promiscuous mode [ 367.219549][ T7808] macsec1: entered promiscuous mode [ 367.235588][ T7808] macsec1: entered allmulticast mode [ 367.241159][ T7808] batadv0: entered allmulticast mode [ 367.252371][ T7808] 8021q: adding VLAN 0 to HW filter on device macsec1 [ 367.563171][ T29] audit: type=1326 audit(1778510740.390:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7812 comm="syz.3.678" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbd219cdd9 code=0x7ffc0000 [ 367.640915][ T29] audit: type=1326 audit(1778510740.400:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7812 comm="syz.3.678" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbd219cdd9 code=0x7ffc0000 [ 367.700060][ T7813] loop3: detected capacity change from 0 to 512 [ 367.751772][ T7813] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 367.769416][ T29] audit: type=1326 audit(1778510740.400:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7812 comm="syz.3.678" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbd219cdd9 code=0x7ffc0000 [ 367.857035][ T29] audit: type=1326 audit(1778510740.430:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7812 comm="syz.3.678" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fbbd219cdd9 code=0x7ffc0000 [ 367.866345][ T7813] EXT4-fs error (device loop3): ext4_orphan_get:1423: comm syz.3.678: bad orphan inode 131083 [ 367.906717][ T29] audit: type=1326 audit(1778510740.430:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7812 comm="syz.3.678" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fbbd219cb42 code=0x7ffc0000 [ 367.931613][ T29] audit: type=1326 audit(1778510740.430:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7812 comm="syz.3.678" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbd219cdd9 code=0x7ffc0000 [ 367.970249][ T7813] loop3: lost filesystem error report for type 5 error -117 [ 367.972703][ C1] EXT4-fs (loop3): error count since last fsck: 1 [ 367.986919][ C1] EXT4-fs (loop3): initial error at time 1778510740: ext4_orphan_get:1423 [ 367.995796][ C1] EXT4-fs (loop3): last error at time 1778510740: ext4_orphan_get:1423 [ 368.007527][ T7813] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 368.028881][ T29] audit: type=1326 audit(1778510740.440:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7812 comm="syz.3.678" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fbbd215d60e code=0x7ffc0000 [ 368.056048][ T29] audit: type=1326 audit(1778510740.510:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7812 comm="syz.3.678" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fbbd219cc07 code=0x7ffc0000 [ 368.158386][ T29] audit: type=1326 audit(1778510740.520:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7812 comm="syz.3.678" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbbd215d60e code=0x7ffc0000 [ 368.274731][ T29] audit: type=1326 audit(1778510740.530:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7812 comm="syz.3.678" exe="/root/ci-upstream-kmsan-gce-root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fbbd219ca6b code=0x7ffc0000 [ 368.520546][ T5576] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 369.514440][ T7843] loop4: detected capacity change from 0 to 512 [ 369.580013][ T7843] EXT4-fs: Ignoring removed mblk_io_submit option [ 369.654067][ T7843] EXT4-fs error (device loop4): ext4_iget_extra_inode:5128: inode #15: comm syz.4.686: corrupted in-inode xattr: e_value size too large [ 369.669023][ T7843] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 369.672710][ C1] EXT4-fs (loop4): error count since last fsck: 1 [ 369.688733][ C1] EXT4-fs (loop4): initial error at time 1778510742: ext4_iget_extra_inode:5128: inode 15 [ 369.699001][ C1] EXT4-fs (loop4): last error at time 1778510742: ext4_iget_extra_inode:5128: inode 15 [ 369.706773][ T7843] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.686: couldn't read orphan inode 15 (err -117) [ 369.771255][ T7843] loop4: lost filesystem error report for type 5 error -117 [ 369.780017][ T7843] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 370.213320][ T7855] netlink: 'syz.3.690': attribute type 10 has an invalid length. [ 370.284197][ T5592] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 370.396251][ T7855] team0: Port device dummy0 added [ 370.464960][ T7857] nbd: must specify at least one socket [ 371.172421][ T7510] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 371.214137][ T7510] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 371.501776][ T7517] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 371.551939][ T7517] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 371.974716][ T7882] netlink: 'syz.4.700': attribute type 13 has an invalid length. [ 372.023965][ T7882] netlink: 'syz.4.700': attribute type 17 has an invalid length. [ 372.213493][ T7887] netlink: 44 bytes leftover after parsing attributes in process `syz.3.703'. [ 372.287207][ T7879] bridge0: port 2(bridge_slave_1) entered disabled state [ 372.295783][ T7879] bridge0: port 1(bridge_slave_0) entered disabled state [ 372.742400][ T7879] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 372.781920][ T7879] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 373.086243][ T7879] batadv0: left allmulticast mode [ 373.487289][ T7882] 8021q: adding VLAN 0 to HW filter on device bond0 [ 373.527000][ T7882] 8021q: adding VLAN 0 to HW filter on device team0 [ 373.602345][ T7882] batadv0: left promiscuous mode [ 373.645008][ T7882] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 373.802184][ T7904] netlink: 48 bytes leftover after parsing attributes in process `syz.5.708'. [ 373.825358][ T7882] bridge0: port 1(bridge_slave_0) entered blocking state [ 373.833155][ T7882] bridge0: port 1(bridge_slave_0) entered forwarding state [ 373.874991][ T7882] bridge0: port 2(bridge_slave_1) entered blocking state [ 373.882776][ T7882] bridge0: port 2(bridge_slave_1) entered forwarding state [ 374.104610][ T7882] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 374.150530][ T7882] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 374.314712][ T7882] veth1_vlan: left promiscuous mode [ 374.335945][ T7882] veth0_vlan: left promiscuous mode [ 374.347920][ T7882] veth0_vlan: entered promiscuous mode [ 374.385764][ T7882] veth1_vlan: entered promiscuous mode [ 374.442307][ T7882] veth1_macvtap: left promiscuous mode [ 374.466811][ T7882] veth0_macvtap: left promiscuous mode [ 374.484078][ T7882] veth0_macvtap: entered promiscuous mode [ 374.501353][ T7882] veth1_macvtap: entered promiscuous mode [ 374.541270][ T7882] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 374.570479][ T7882] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 374.590915][ T7882] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 374.616352][ T7882] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 374.657129][ T7882] batadv0: entered promiscuous mode [ 374.663941][ T7882] batadv0: entered allmulticast mode [ 374.670624][ T7882] macsec1: left promiscuous mode [ 374.681204][ T7882] macsec1: left allmulticast mode [ 374.688165][ T7882] batadv0: left allmulticast mode [ 374.719717][ T7882] 8021q: adding VLAN 0 to HW filter on device macsec1 [ 377.873996][ T7963] hsr0 speed is unknown, defaulting to 1000 [ 377.931673][ T7963] hsr0 speed is unknown, defaulting to 1000 [ 377.969235][ T7963] hsr0 speed is unknown, defaulting to 1000 [ 378.012378][ T7963] smbdirect: ib_dev[syz2]: added: RNIC max_fast_reg_page_list_len=256 device_cap_flags=0x200000 kernel_cap_flags=0x10 page_size_cap=0x1000 [ 378.124380][ T7963] smbdirect: ib_dev[syz2]: num_ports=1 max_qp_rd_atom=128 max_qp_init_rd_atom=128 max_sgl_rd=0 max_sge_rd=1 max_cqe=3276800 max_qp_wr=32768 max_send_sge=6 max_recv_sge=6 [ 378.205137][ T7963] smbdirect: ib_dev[syz2]PORT[1]: iwarp=1 ib=0 roce=0 v1=0 v2=0 core_cap_flags=0x400008 [ 378.366531][ T7963] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 378.610376][ T7963] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 378.888894][ T7963] hsr0 speed is unknown, defaulting to 1000 [ 378.956608][ T7963] hsr0 speed is unknown, defaulting to 1000 [ 378.977354][ T7963] hsr0 speed is unknown, defaulting to 1000 [ 379.000046][ T7963] hsr0 speed is unknown, defaulting to 1000 [ 379.033337][ T7963] hsr0 speed is unknown, defaulting to 1000 [ 381.525131][ T7998] syzkaller0: entered promiscuous mode [ 381.571276][ T7998] syzkaller0: entered allmulticast mode [ 385.899653][ T8063] siw: device registration error -23 [ 388.305816][ T1310] ieee802154 phy0 wpan0: encryption failed: -22 [ 388.312404][ T1310] ieee802154 phy1 wpan1: encryption failed: -22 [ 389.911798][ T8110] netlink: 60 bytes leftover after parsing attributes in process `syz.3.775'. [ 389.996179][ T8110] netlink: 60 bytes leftover after parsing attributes in process `syz.3.775'. [ 394.525259][ T8170] 4<1: renamed from team_slave_1 [ 394.966444][ T8178] netlink: 44 bytes leftover after parsing attributes in process `syz.5.797'. [ 395.085482][ T8181] netlink: 'syz.2.798': attribute type 17 has an invalid length. [ 396.980077][ T8154] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 399.004700][ T8181] bridge0: port 3(vlan2) entered blocking state [ 399.011738][ T8181] bridge0: port 3(vlan2) entered forwarding state [ 399.944049][ T8216] netlink: 4 bytes leftover after parsing attributes in process `syz.3.808'. [ 400.574401][ T8227] tipc: Started in network mode [ 400.579990][ T8227] tipc: Node identity 4, cluster identity 4711 [ 400.586683][ T8227] tipc: Node number set to 4 [ 404.959399][ T8261] netlink: 104 bytes leftover after parsing attributes in process `syz.1.825'. [ 405.321571][ T8268] tipc: Started in network mode [ 405.326933][ T8268] tipc: Node identity 4, cluster identity 4711 [ 405.333613][ T8268] tipc: Node number set to 4 [ 408.338254][ T8288] netlink: 'syz.5.833': attribute type 10 has an invalid length. [ 408.641401][ T8288] team0: Port device dummy0 added [ 410.594695][ T8316] tipc: Started in network mode [ 410.600100][ T8316] tipc: Node identity 4, cluster identity 4711 [ 410.606763][ T8316] tipc: Node number set to 4 [ 412.764769][ T8323] netlink: 'syz.5.850': attribute type 10 has an invalid length. [ 415.663288][ T8356] tipc: Started in network mode [ 415.668572][ T8356] tipc: Node identity 4, cluster identity 4711 [ 415.675228][ T8356] tipc: Node number set to 4 [ 416.716507][ T8361] netlink: 'syz.2.866': attribute type 10 has an invalid length. [ 417.225804][ T8361] team0: Port device dummy0 added [ 417.996881][ T8369] tipc: Cannot configure node identity twice [ 422.075267][ T8401] netlink: 'syz.5.882': attribute type 10 has an invalid length. [ 423.698264][ T8417] tipc: Cannot configure node identity twice [ 426.026062][ T8428] loop2: detected capacity change from 0 to 512 [ 426.071916][ T8428] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 426.120400][ T8432] ===================================================== [ 426.127843][ T8432] BUG: KMSAN: uninit-value in ieee802154_hdr_push+0x9a4/0xa30 [ 426.135963][ T8432] ieee802154_hdr_push+0x9a4/0xa30 [ 426.141285][ T8432] ieee802154_header_create+0x854/0xb90 [ 426.147131][ T8432] dgram_sendmsg+0xb55/0x16f0 [ 426.151987][ T8432] ieee802154_sock_sendmsg+0x91/0xe0 [ 426.157617][ T8432] ____sys_sendmsg+0xf37/0xfd0 [ 426.163053][ T8432] ___sys_sendmsg+0x271/0x3b0 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 426.167945][ T8432] __x64_sys_sendmsg+0x211/0x3e0 [ 426.173177][ T8432] x64_sys_call+0x1e20/0x3ea0 [ 426.178022][ T8432] do_syscall_64+0x134/0xf80 [ 426.183010][ T8432] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 426.192958][ T8432] [ 426.195361][ T8432] Uninit was stored to memory at: [ 426.200575][ T8432] ieee802154_hdr_push+0x99d/0xa30 [ 426.206213][ T8432] ieee802154_header_create+0x854/0xb90 [ 426.214563][ T8432] dgram_sendmsg+0xb55/0x16f0 [ 426.219437][ T8432] ieee802154_sock_sendmsg+0x91/0xe0 [ 426.226214][ T8432] ____sys_sendmsg+0xf37/0xfd0 [ 426.231213][ T8432] ___sys_sendmsg+0x271/0x3b0 [ 426.236263][ T8432] __x64_sys_sendmsg+0x211/0x3e0 [ 426.241361][ T8432] x64_sys_call+0x1e20/0x3ea0 [ 426.246349][ T8432] do_syscall_64+0x134/0xf80 [ 426.251091][ T8432] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 426.257284][ T8432] [ 426.259672][ T8432] Local variable hdr created at: [ 426.264760][ T8432] ieee802154_header_create+0x4e/0xb90 [ 426.270393][ T8432] dgram_sendmsg+0xb55/0x16f0 [ 426.275362][ T8432] [ 426.277811][ T8432] CPU: 0 UID: 0 PID: 8432 Comm: syz.4.891 Not tainted syzkaller #0 PREEMPT(full) [ 426.287438][ T8432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 426.298431][ T8432] ===================================================== [ 426.305565][ T8432] Disabling lock debugging due to kernel taint [ 426.343889][ T8428] EXT4-fs error (device loop2): ext4_orphan_get:1423: comm syz.2.890: bad orphan inode 131083 [ 426.458929][ T8428] loop2: lost filesystem error report for type 5 error -117 [ 426.462806][ C1] EXT4-fs (loop2): error count since last fsck: 1 [ 426.476916][ C1] EXT4-fs (loop2): initial error at time 1778510799: ext4_orphan_get:1423 [ 426.485782][ C1] EXT4-fs (loop2): last error at time 1778510799: ext4_orphan_get:1423 [ 426.533707][ T8428] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 426.579706][ T8432] Kernel panic - not syncing: kmsan.panic set ... [ 426.586287][ T8432] CPU: 1 UID: 0 PID: 8432 Comm: syz.4.891 Tainted: G B syzkaller #0 PREEMPT(full) [ 426.597227][ T8432] Tainted: [B]=BAD_PAGE [ 426.601457][ T8432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 426.611636][ T8432] Call Trace: [ 426.614987][ T8432] [ 426.617991][ T8432] __dump_stack+0x26/0x30 [ 426.622479][ T8432] dump_stack_lvl+0x50/0x1c0 [ 426.627221][ T8432] ? dump_stack+0x12/0x25 [ 426.631686][ T8432] dump_stack+0x1e/0x25 [ 426.635966][ T8432] vpanic+0x7b4/0x1430 [ 426.640204][ T8432] panic+0x15d/0x160 [ 426.644286][ T8432] kmsan_report+0x31a/0x320 [ 426.648951][ T8432] ? __msan_warning+0x1b/0x30 [ 426.653764][ T8432] ? ieee802154_hdr_push+0x9a4/0xa30 [ 426.659178][ T8432] ? ieee802154_header_create+0x854/0xb90 [ 426.665059][ T8432] ? dgram_sendmsg+0xb55/0x16f0 [ 426.670065][ T8432] ? ieee802154_sock_sendmsg+0x91/0xe0 [ 426.675697][ T8432] ? ____sys_sendmsg+0xf37/0xfd0 [ 426.680779][ T8432] ? ___sys_sendmsg+0x271/0x3b0 [ 426.685764][ T8432] ? __x64_sys_sendmsg+0x211/0x3e0 [ 426.691015][ T8432] ? x64_sys_call+0x1e20/0x3ea0 [ 426.696018][ T8432] ? do_syscall_64+0x134/0xf80 [ 426.700927][ T8432] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 426.707129][ T8432] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 426.713333][ T8432] ? dgram_sendmsg+0xb55/0x16f0 [ 426.718343][ T8432] ? ieee802154_sock_sendmsg+0x91/0xe0 [ 426.723975][ T8432] ? ____sys_sendmsg+0xf37/0xfd0 [ 426.729053][ T8432] ? ___sys_sendmsg+0x271/0x3b0 [ 426.734040][ T8432] ? __x64_sys_sendmsg+0x211/0x3e0 [ 426.739298][ T8432] ? kmsan_get_metadata+0xf1/0x160 [ 426.744576][ T8432] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 426.751068][ T8432] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 426.757287][ T8432] ? kmsan_get_metadata+0xf1/0x160 [ 426.762562][ T8432] ? kmsan_internal_memmove_metadata+0x91/0x230 [ 426.768965][ T8432] ? kmsan_get_metadata+0xf1/0x160 [ 426.774239][ T8432] ? kmsan_internal_memmove_metadata+0x181/0x230 [ 426.780727][ T8432] ? kmsan_get_metadata+0xf1/0x160 [ 426.786002][ T8432] __msan_warning+0x1b/0x30 [ 426.790648][ T8432] ieee802154_hdr_push+0x9a4/0xa30 [ 426.795911][ T8432] ? vmw_cmd_set_render_target_check+0x22/0x6a0 [ 426.802331][ T8432] ? __msan_memcpy+0x105/0x1c0 [ 426.807241][ T8432] ieee802154_header_create+0x854/0xb90 [ 426.812981][ T8432] ? kmsan_get_metadata+0xf1/0x160 [ 426.818265][ T8432] dgram_sendmsg+0xb55/0x16f0 [ 426.823114][ T8432] ? __pfx_ieee802154_header_create+0x10/0x10 [ 426.829371][ T8432] ? __pfx_dgram_sendmsg+0x10/0x10 [ 426.834654][ T8432] ieee802154_sock_sendmsg+0x91/0xe0 [ 426.840131][ T8432] ? __pfx_ieee802154_sock_sendmsg+0x10/0x10 [ 426.846290][ T8432] ____sys_sendmsg+0xf37/0xfd0 [ 426.851241][ T8432] ___sys_sendmsg+0x271/0x3b0 [ 426.856056][ T8432] ? kmsan_get_metadata+0xf1/0x160 [ 426.861354][ T8432] ? __rcu_read_unlock+0x6c/0xd0 [ 426.866409][ T8432] ? __fget_files+0x3b4/0x4a0 [ 426.871229][ T8432] ? __fget_files+0x3b9/0x4a0 [ 426.876062][ T8432] ? kmsan_get_metadata+0xf1/0x160 [ 426.881357][ T8432] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 426.887360][ T8432] __x64_sys_sendmsg+0x211/0x3e0 [ 426.892476][ T8432] ? kmsan_get_metadata+0xf1/0x160 [ 426.897774][ T8432] x64_sys_call+0x1e20/0x3ea0 [ 426.902610][ T8432] do_syscall_64+0x134/0xf80 [ 426.907345][ T8432] ? clear_bhb_loop+0x50/0xa0 [ 426.912164][ T8432] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 426.918220][ T8432] RIP: 0033:0x7f36d979cdd9 [ 426.922773][ T8432] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 426.942520][ T8432] RSP: 002b:00007f36da5f0028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 426.951086][ T8432] RAX: ffffffffffffffda RBX: 00007f36d9a15fa0 RCX: 00007f36d979cdd9 [ 426.959171][ T8432] RDX: 0000000000000000 RSI: 0000200000000540 RDI: 0000000000000004 [ 426.967242][ T8432] RBP: 00007f36d9832d69 R08: 0000000000000000 R09: 0000000000000000 [ 426.975304][ T8432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 426.983363][ T8432] R13: 00007f36d9a16038 R14: 00007f36d9a15fa0 R15: 00007ffdf25dc1e8 [ 426.991476][ T8432] [ 426.994942][ T8432] Kernel Offset: disabled [ 426.999310][ T8432] Rebooting in 86400 seconds..