last executing test programs: 1.454988282s ago: executing program 3 (id=4): setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0x20, &(0x7f0000000000)={@in6={{0xa, 0x4e22, 0x2, @ipv4={'\x00', '\xff\xff', @local}, 0xe8c}}, 0x0, 0x0, 0x3a, 0x0, "a30b3c28af4d01246a016542d8a845f38771f1fc383664417165bba0dd5ace5231a7880000000000000065f9502f07b4001a000000000000000000000000000000080000006fbd00"}, 0xd8) io_uring_setup(0x56ab, &(0x7f0000000040)={0x0, 0x36d, 0xc000, 0xc, 0xa0002f5}) 1.291580977s ago: executing program 3 (id=7): r0 = getpid() r1 = syz_pidfd_open(r0, 0x0) close_range(r1, r1, 0x2) setns(r1, 0x24020000) 1.136442326s ago: executing program 3 (id=8): r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000200)={0xc, 0x0, 0x0}) ioctl$IOMMU_VFIO_IOAS$SET(r0, 0x3b88, &(0x7f0000000280)={0xc, r1}) ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f00000000c0)={0x28, 0x2, r1, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x3ff}) ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000040)={0x28, 0x6, r1, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x8}) ioctl$IOMMU_VFIO_SET_IOMMU(r0, 0x3b66, 0x1) ioctl$IOMMU_VFIO_IOMMU_UNMAP_DMA(r0, 0x3b72, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000ff2f00000000000001"]) 1.115384078s ago: executing program 2 (id=3): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x72, 0x0, 0x7fff0000}]}) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000000, 0x10012, r0, 0x0) 872.625819ms ago: executing program 2 (id=9): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=@bridge_delneigh={0x24, 0x1e, 0x1, 0x0, 0x4, {0x2}, [@NDA_VLAN={0x6}]}, 0x24}}, 0x0) 872.239264ms ago: executing program 3 (id=10): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) r1 = dup(r0) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private1, 0x9}]}, &(0x7f00000002c0)=0x10) getsockopt$inet_sctp6_SCTP_MAX_BURST(r2, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f00000004c0)=0x8) setsockopt$inet_sctp_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f0000000440)={r3, 0x8}, &(0x7f0000000480)=0x8) 749.416555ms ago: executing program 2 (id=11): r0 = socket$unix(0x1, 0x1, 0x0) bind$unix(r0, &(0x7f00000000c0)=@abs={0x1, 0x0, 0x4e20}, 0x6e) listen(r0, 0x0) r1 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x340080b8) sendmsg$TCPDIAG_GETSOCK(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000140)={0x4c, 0x14, 0x101, 0x70bd27, 0x25dfdbfd, {0x1, 0xf7, 0x1, 0x10, {0x4e24, 0x4e23, [0x3, 0x36, 0x3, 0x5], [0x6, 0x9, 0x40000000, 0x7], 0x0, [0xde, 0x80000001]}, 0x6, 0x3}}, 0x4c}, 0x1, 0x0, 0x0, 0x24048084}, 0x20040800) 614.432577ms ago: executing program 2 (id=12): syz_io_uring_setup(0x4175, 0x0, 0x0, &(0x7f0000000400), 0x0) r0 = socket$inet6(0xa, 0x80002, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @dev, 0x5}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000) setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000140)={0xa, {{0xa, 0x4e20, 0x1, @mcast1, 0x2}}, {{0xa, 0x4e20, 0xf, @local, 0x40}}}, 0x108) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e04, 0x3, @dev={0xfe, 0x80, '\x00', 0x25}, 0x23}, 0x1c) sendmmsg$inet6(r1, &(0x7f0000001980)=[{{&(0x7f0000000100)={0xa, 0x4e20, 0x0, @dev={0xfe, 0x80, '\x00', 0x64}, 0x10}, 0x1c, 0x0}}], 0x40000000000024e, 0x20002040) 533.583438ms ago: executing program 4 (id=5): r0 = syz_open_dev$loop(&(0x7f0000000240), 0xffffffff7ffffffd, 0x1ea1e2) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/pm_freeze_timeout', 0x103a00, 0x160) ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f0000000080)={r1, 0x0, {0x0, 0x0, 0x0, 0x4, 0x4000000000000ffd, 0x0, 0x0, 0xb, 0xc, "faf98357e5a1149989fc8dbec3bd02b82a128bbad0099cebdc25f5abb534464c516bdd8a0f3500", "32d8cc26f7061a74df2cfc06c89f3d9e234b30c50997d3bef409ff2176ff7bfe55cd4a5d81cd4a524bd3ffe70c7f3f04002f7b6aa54cc50a1fcaed1e15ee3748", "715237641a8ccf162e43ac61f700000000009b4100", [0x9, 0xa]}}) ioctl$LOOP_CHANGE_FD(r0, 0x4c06, r1) 228.276447ms ago: executing program 2 (id=13): r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet6(0xffffffffffffffff, &(0x7f0000000300)={0xa, 0x4e23, 0x0, @loopback, 0x3}, 0x7e) sendto$inet6(0xffffffffffffffff, &(0x7f0000847fff)='X', 0x34000, 0xe0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000000)={0x1, [0x0]}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000000)={r1, 0x4, 0x10}, &(0x7f0000000080)=0xc) 0s ago: executing program 5 (id=6): r0 = socket$igmp6(0xa, 0x3, 0x2) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x170, 0xffffffff, 0xffffffff, 0x170, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0x0, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x528) r1 = socket$inet6(0xa, 0x3, 0x8000000003c) connect$inet6(r1, &(0x7f0000000180)={0xa, 0x3, 0x3, @dev={0xfe, 0x80, '\x00', 0xd}, 0x9}, 0x1c) sendmmsg$unix(r1, &(0x7f0000007b80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2404c054}}], 0x1, 0x2000c080) socket$nl_netfilter(0x10, 0x3, 0xc) write$RDMA_USER_CM_CMD_DISCONNECT(0xffffffffffffffff, 0x0, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000c80)=[{&(0x7f0000000040)="680fc954d067", 0x6}, {0x0}], 0x2, 0x0, 0x0, 0x2c}, 0x44004) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.141' (ED25519) to the list of known hosts. [ 81.272056][ T5804] cgroup: Unknown subsys name 'net' [ 81.396228][ T5804] cgroup: Unknown subsys name 'cpuset' [ 81.405792][ T5804] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 82.906710][ T5804] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 86.163257][ T974] cfg80211: failed to load regulatory.db [ 86.724200][ T5843] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 86.734325][ T5845] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 86.744393][ T5843] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 86.752922][ T5843] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 86.753242][ T5844] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 86.760808][ T5843] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 86.768402][ T5845] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 86.776556][ T5843] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 86.790191][ T5845] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 86.790950][ T5843] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 86.797964][ T5844] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 86.813675][ T5845] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 86.814117][ T5846] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 86.823466][ T5845] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 86.830424][ T5843] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 86.837800][ T5139] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 86.845419][ T5846] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 86.851502][ T5845] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 86.858849][ T5843] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 86.867504][ T5845] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 86.872572][ T5846] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 86.879417][ T5139] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 86.888014][ T5843] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 86.893770][ T5845] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 86.912159][ T5843] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 86.916195][ T5845] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 86.928374][ T5845] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 86.936516][ T5840] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 86.937314][ T5845] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 86.952289][ T5845] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 87.444832][ T5824] chnl_net:caif_netlink_parms(): no params data found [ 87.777209][ T5824] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.786350][ T5824] bridge0: port 1(bridge_slave_0) entered disabled state [ 87.794196][ T5824] bridge_slave_0: entered allmulticast mode [ 87.802854][ T5824] bridge_slave_0: entered promiscuous mode [ 87.813537][ T5824] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.820823][ T5824] bridge0: port 2(bridge_slave_1) entered disabled state [ 87.828510][ T5824] bridge_slave_1: entered allmulticast mode [ 87.836592][ T5824] bridge_slave_1: entered promiscuous mode [ 87.945937][ T5824] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 87.960202][ T5824] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 88.014998][ T5826] chnl_net:caif_netlink_parms(): no params data found [ 88.080077][ T5825] chnl_net:caif_netlink_parms(): no params data found [ 88.127327][ T5824] team0: Port device team_slave_0 added [ 88.136697][ T5824] team0: Port device team_slave_1 added [ 88.233546][ T5827] chnl_net:caif_netlink_parms(): no params data found [ 88.326905][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 88.333976][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 88.361026][ T5824] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 88.373092][ T5829] chnl_net:caif_netlink_parms(): no params data found [ 88.424317][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 88.431469][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 88.457723][ T5824] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 88.476572][ T5828] chnl_net:caif_netlink_parms(): no params data found [ 88.554432][ T5826] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.562338][ T5826] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.569808][ T5826] bridge_slave_0: entered allmulticast mode [ 88.577778][ T5826] bridge_slave_0: entered promiscuous mode [ 88.654454][ T5826] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.661700][ T5826] bridge0: port 2(bridge_slave_1) entered disabled state [ 88.669324][ T5826] bridge_slave_1: entered allmulticast mode [ 88.677435][ T5826] bridge_slave_1: entered promiscuous mode [ 88.692095][ T5825] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.699290][ T5825] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.706965][ T5825] bridge_slave_0: entered allmulticast mode [ 88.714824][ T5825] bridge_slave_0: entered promiscuous mode [ 88.776045][ T5825] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.783476][ T5825] bridge0: port 2(bridge_slave_1) entered disabled state [ 88.790698][ T5825] bridge_slave_1: entered allmulticast mode [ 88.798719][ T5825] bridge_slave_1: entered promiscuous mode [ 88.880204][ T5824] hsr_slave_0: entered promiscuous mode [ 88.887500][ T5824] hsr_slave_1: entered promiscuous mode [ 88.917128][ T5826] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 88.927186][ T5827] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.934610][ T5827] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.941913][ T5827] bridge_slave_0: entered allmulticast mode [ 88.949565][ T5827] bridge_slave_0: entered promiscuous mode [ 88.961981][ T5842] Bluetooth: hci1: command tx timeout [ 88.967720][ T5841] Bluetooth: hci2: command tx timeout [ 88.977380][ T5825] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 89.015332][ T5826] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 89.025416][ T5827] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.032997][ T5827] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.040321][ T5827] bridge_slave_1: entered allmulticast mode [ 89.041773][ T5841] Bluetooth: hci4: command tx timeout [ 89.046661][ T5842] Bluetooth: hci0: command tx timeout [ 89.052907][ T5841] Bluetooth: hci3: command tx timeout [ 89.057847][ T52] Bluetooth: hci5: command tx timeout [ 89.066820][ T5827] bridge_slave_1: entered promiscuous mode [ 89.091880][ T5825] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 89.101501][ T5829] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.108755][ T5829] bridge0: port 1(bridge_slave_0) entered disabled state [ 89.116184][ T5829] bridge_slave_0: entered allmulticast mode [ 89.124765][ T5829] bridge_slave_0: entered promiscuous mode [ 89.194929][ T5829] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.202568][ T5829] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.209951][ T5829] bridge_slave_1: entered allmulticast mode [ 89.218321][ T5829] bridge_slave_1: entered promiscuous mode [ 89.225876][ T5828] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.233526][ T5828] bridge0: port 1(bridge_slave_0) entered disabled state [ 89.240723][ T5828] bridge_slave_0: entered allmulticast mode [ 89.248856][ T5828] bridge_slave_0: entered promiscuous mode [ 89.280521][ T5826] team0: Port device team_slave_0 added [ 89.289640][ T5827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 89.325401][ T5828] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.332836][ T5828] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.340063][ T5828] bridge_slave_1: entered allmulticast mode [ 89.348177][ T5828] bridge_slave_1: entered promiscuous mode [ 89.371745][ T5826] team0: Port device team_slave_1 added [ 89.379805][ T5827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 89.391749][ T5825] team0: Port device team_slave_0 added [ 89.427113][ T5829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 89.474813][ T5825] team0: Port device team_slave_1 added [ 89.508138][ T5829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 89.554219][ T5827] team0: Port device team_slave_0 added [ 89.576032][ T5828] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 89.614417][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 89.621750][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 89.663023][ T5826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 89.676765][ T5827] team0: Port device team_slave_1 added [ 89.695972][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 89.703128][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 89.730008][ T5825] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 89.744671][ T5828] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 89.777311][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 89.784705][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 89.810840][ T5826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 89.836333][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 89.843499][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 89.869935][ T5825] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 89.904054][ T5829] team0: Port device team_slave_0 added [ 89.947610][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 89.954955][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 89.981632][ T5827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 89.994970][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 90.002235][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 90.028629][ T5827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 90.053512][ T5829] team0: Port device team_slave_1 added [ 90.074249][ T5828] team0: Port device team_slave_0 added [ 90.100362][ T5827] hsr_slave_0: entered promiscuous mode [ 90.107290][ T5827] hsr_slave_1: entered promiscuous mode [ 90.113774][ T5827] debugfs: 'hsr0' already exists in 'hsr' [ 90.119588][ T5827] Cannot create hsr debugfs directory [ 90.163605][ T5828] team0: Port device team_slave_1 added [ 90.184805][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 90.192335][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 90.218500][ T5829] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 90.231916][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 90.238993][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 90.265385][ T5829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 90.395268][ T5826] hsr_slave_0: entered promiscuous mode [ 90.402273][ T5826] hsr_slave_1: entered promiscuous mode [ 90.408510][ T5826] debugfs: 'hsr0' already exists in 'hsr' [ 90.414649][ T5826] Cannot create hsr debugfs directory [ 90.444469][ T5825] hsr_slave_0: entered promiscuous mode [ 90.451141][ T5825] hsr_slave_1: entered promiscuous mode [ 90.457523][ T5825] debugfs: 'hsr0' already exists in 'hsr' [ 90.463720][ T5825] Cannot create hsr debugfs directory [ 90.477140][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 90.485171][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 90.511885][ T5828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 90.577683][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 90.585230][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 90.611718][ T5828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 90.705305][ T5829] hsr_slave_0: entered promiscuous mode [ 90.712618][ T5829] hsr_slave_1: entered promiscuous mode [ 90.719082][ T5829] debugfs: 'hsr0' already exists in 'hsr' [ 90.725346][ T5829] Cannot create hsr debugfs directory [ 90.821857][ T5828] hsr_slave_0: entered promiscuous mode [ 90.829002][ T5828] hsr_slave_1: entered promiscuous mode [ 90.835871][ T5828] debugfs: 'hsr0' already exists in 'hsr' [ 90.841680][ T5828] Cannot create hsr debugfs directory [ 91.041628][ T52] Bluetooth: hci2: command tx timeout [ 91.041663][ T5842] Bluetooth: hci1: command tx timeout [ 91.121578][ T5845] Bluetooth: hci0: command tx timeout [ 91.124036][ T5841] Bluetooth: hci4: command tx timeout [ 91.128503][ T52] Bluetooth: hci3: command tx timeout [ 91.138032][ T5842] Bluetooth: hci5: command tx timeout [ 91.173952][ T5824] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 91.225213][ T5824] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 91.272980][ T5824] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 91.285077][ T5824] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 91.482307][ T5827] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 91.498181][ T5827] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 91.528472][ T5827] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 91.540687][ T5827] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 91.616770][ T5825] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 91.646550][ T5825] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 91.659639][ T5825] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 91.672675][ T5825] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 91.796789][ T5829] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 91.816263][ T5824] 8021q: adding VLAN 0 to HW filter on device bond0 [ 91.826894][ T5829] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 91.865752][ T5829] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 91.877465][ T5829] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 91.959218][ T5824] 8021q: adding VLAN 0 to HW filter on device team0 [ 91.986029][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.993282][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 92.028675][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0 [ 92.038943][ T5828] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 92.066350][ T5828] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 92.096858][ T5828] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 92.109508][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.116753][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 92.151925][ T5828] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 92.189229][ T5825] 8021q: adding VLAN 0 to HW filter on device bond0 [ 92.200194][ T5827] 8021q: adding VLAN 0 to HW filter on device team0 [ 92.251332][ T5825] 8021q: adding VLAN 0 to HW filter on device team0 [ 92.263307][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.270437][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 92.310601][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.317811][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 92.346511][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.353757][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 92.370868][ T5826] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 92.406060][ T5826] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 92.435945][ T50] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.443265][ T50] bridge0: port 2(bridge_slave_1) entered forwarding state [ 92.457046][ T5826] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 92.469361][ T5826] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 92.646187][ T5829] 8021q: adding VLAN 0 to HW filter on device bond0 [ 92.720348][ T5829] 8021q: adding VLAN 0 to HW filter on device team0 [ 92.778977][ T50] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.786293][ T50] bridge0: port 1(bridge_slave_0) entered forwarding state [ 92.850176][ T50] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.857715][ T50] bridge0: port 2(bridge_slave_1) entered forwarding state [ 92.962608][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0 [ 93.103783][ T5828] 8021q: adding VLAN 0 to HW filter on device team0 [ 93.124166][ T52] Bluetooth: hci1: command tx timeout [ 93.129640][ T52] Bluetooth: hci2: command tx timeout [ 93.146275][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 93.184371][ T5824] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 93.204645][ T5842] Bluetooth: hci3: command tx timeout [ 93.207222][ T1146] bridge0: port 1(bridge_slave_0) entered blocking state [ 93.210134][ T5842] Bluetooth: hci5: command tx timeout [ 93.217713][ T1146] bridge0: port 1(bridge_slave_0) entered forwarding state [ 93.223832][ T52] Bluetooth: hci4: command tx timeout [ 93.234141][ T5841] Bluetooth: hci0: command tx timeout [ 93.278059][ T1146] bridge0: port 2(bridge_slave_1) entered blocking state [ 93.285315][ T1146] bridge0: port 2(bridge_slave_1) entered forwarding state [ 93.322306][ T5825] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 93.379728][ T5826] 8021q: adding VLAN 0 to HW filter on device bond0 [ 93.520315][ T5826] 8021q: adding VLAN 0 to HW filter on device team0 [ 93.576954][ T5827] veth0_vlan: entered promiscuous mode [ 93.609931][ T1084] bridge0: port 1(bridge_slave_0) entered blocking state [ 93.617155][ T1084] bridge0: port 1(bridge_slave_0) entered forwarding state [ 93.668808][ T462] bridge0: port 2(bridge_slave_1) entered blocking state [ 93.676189][ T462] bridge0: port 2(bridge_slave_1) entered forwarding state [ 93.693550][ T5827] veth1_vlan: entered promiscuous mode [ 93.713643][ T5825] veth0_vlan: entered promiscuous mode [ 93.793642][ T5825] veth1_vlan: entered promiscuous mode [ 93.839567][ T5829] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 93.979062][ T5827] veth0_macvtap: entered promiscuous mode [ 93.999239][ T5824] veth0_vlan: entered promiscuous mode [ 94.029655][ T5827] veth1_macvtap: entered promiscuous mode [ 94.088052][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 94.098982][ T5825] veth0_macvtap: entered promiscuous mode [ 94.145508][ T5825] veth1_macvtap: entered promiscuous mode [ 94.193097][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 94.205286][ T5824] veth1_vlan: entered promiscuous mode [ 94.288749][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 94.305905][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 94.335561][ T1146] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.346843][ T1146] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.370957][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 94.380509][ T1146] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.396269][ T1146] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.441783][ T1146] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.473194][ T1146] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.483959][ T1146] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.507390][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 94.532468][ T1146] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.552726][ T5828] veth0_vlan: entered promiscuous mode [ 94.569410][ T5828] veth1_vlan: entered promiscuous mode [ 94.643214][ T5824] veth0_macvtap: entered promiscuous mode [ 94.655520][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.666115][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.675781][ T5829] veth0_vlan: entered promiscuous mode [ 94.698938][ T5824] veth1_macvtap: entered promiscuous mode [ 94.759684][ T5829] veth1_vlan: entered promiscuous mode [ 94.775939][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.785816][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.829981][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 94.875626][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 94.903842][ T5828] veth0_macvtap: entered promiscuous mode [ 94.913226][ T5826] veth0_vlan: entered promiscuous mode [ 94.922131][ T1084] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.939297][ T5827] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 94.961731][ T1146] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.969595][ T1146] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.999186][ T5826] veth1_vlan: entered promiscuous mode [ 95.012392][ T1084] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.022653][ T1084] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.063068][ T1084] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.088830][ T5828] veth1_macvtap: entered promiscuous mode [ 95.099369][ T5829] veth0_macvtap: entered promiscuous mode [ 95.140198][ T5829] veth1_macvtap: entered promiscuous mode [ 95.174851][ T1146] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.190880][ T1146] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 95.202545][ T5841] Bluetooth: hci2: command tx timeout [ 95.206381][ T52] Bluetooth: hci1: command tx timeout [ 95.283319][ T52] Bluetooth: hci4: command tx timeout [ 95.285197][ T5841] Bluetooth: hci5: command tx timeout [ 95.288924][ T52] Bluetooth: hci3: command tx timeout [ 95.295075][ T5845] Bluetooth: hci0: command tx timeout [ 95.303395][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 95.352838][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 95.375462][ T5826] veth0_macvtap: entered promiscuous mode [ 95.407102][ T5826] veth1_macvtap: entered promiscuous mode [ 95.437700][ T12] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.450345][ T12] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.507680][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 95.518100][ T12] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.538225][ T12] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.557996][ T1146] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.572586][ T1146] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 95.623237][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 95.646900][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 95.714384][ T1084] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.738546][ T1084] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 95.771545][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 95.779687][ T1146] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.792258][ T1146] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.848528][ T1146] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.872851][ T1146] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.929420][ T1146] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.964703][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.983086][ T1146] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.004035][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.011561][ T1146] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.020306][ T1146] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.117736][ T5983] loop5: detected capacity change from 0 to 7 [ 96.197566][ T1146] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.206540][ T1146] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.353317][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.388931][ T1084] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.399635][ T1084] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.404544][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.509999][ T1084] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.535377][ T1084] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.600927][ T5983] Dev loop5: unable to read RDB block 7 [ 96.601664][ T5985] [ 96.607363][ T5983] loop5: unable to read partition table [ 96.608959][ T5985] ====================================================== [ 96.608971][ T5985] WARNING: possible circular locking dependency detected [ 96.614963][ T5983] loop5: partition table beyond EOD, [ 96.621865][ T5985] syzkaller #0 Not tainted [ 96.621884][ T5985] ------------------------------------------------------ [ 96.621893][ T5985] syz.4.5/5985 is trying to acquire lock: [ 96.621908][ T5985] ffff88801bad5a20 (&root->kernfs_iattr_rwsem){++++}-{4:4}, at: kernfs_iop_getattr+0x9e/0x450 [ 96.629085][ T5983] truncated [ 96.634299][ T5985] [ 96.634299][ T5985] but task is already holding lock: [ 96.634310][ T5985] ffff8880267109e8 (&q->q_usage_counter(io)#22){++++}-{0:0} [ 96.638748][ T5983] loop_reread_partitions: partition scan of loop5 (Wý* %4FLQk݊5) failed (rc=-5) [ 96.645722][ T5985] , at: lo_ioctl+0x1a51/0x1fb0 [ 96.645752][ T5985] [ 96.645752][ T5985] which lock already depends on the new lock. [ 96.645752][ T5985] [ 96.645761][ T5985] [ 96.645761][ T5985] the existing dependency chain (in reverse order) is: [ 96.645771][ T5985] [ 96.645771][ T5985] -> #2 (&q->q_usage_counter(io)#22){++++}-{0:0}: [ 96.724194][ T5985] blk_alloc_queue+0x546/0x680 [ 96.729493][ T5985] __blk_mq_alloc_disk+0x197/0x390 [ 96.735245][ T5985] loop_add+0x482/0xb40 [ 96.739966][ T5985] loop_init+0xd9/0x170 [ 96.744645][ T5985] do_one_initcall+0x250/0x8d0 [ 96.749938][ T5985] do_initcall_level+0x104/0x190 [ 96.755422][ T5985] do_initcalls+0x59/0xa0 [ 96.760356][ T5985] kernel_init_freeable+0x2a6/0x3e0 [ 96.766073][ T5985] kernel_init+0x1d/0x1d0 [ 96.771100][ T5985] ret_from_fork+0x51e/0xb90 [ 96.776218][ T5985] ret_from_fork_asm+0x1a/0x30 [ 96.781525][ T5985] [ 96.781525][ T5985] -> #1 (fs_reclaim){+.+.}-{0:0}: [ 96.788851][ T5985] fs_reclaim_acquire+0x71/0x100 [ 96.794327][ T5985] kmem_cache_alloc_noprof+0x40/0x650 [ 96.800228][ T5985] __kernfs_iattrs+0xdf/0x340 [ 96.805472][ T5985] kernfs_iop_setattr+0xea/0x3f0 [ 96.810943][ T5985] notify_change+0xc1a/0xf40 [ 96.816074][ T5985] do_truncate+0x1c2/0x250 [ 96.821186][ T5985] path_openat+0x2f89/0x3860 [ 96.826293][ T5985] do_file_open+0x23e/0x4a0 [ 96.831313][ T5985] do_sys_openat2+0x113/0x200 [ 96.836540][ T5985] __x64_sys_openat+0x138/0x170 [ 96.841957][ T5985] do_syscall_64+0x14d/0xf80 [ 96.847183][ T5985] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 96.853615][ T5985] [ 96.853615][ T5985] -> #0 (&root->kernfs_iattr_rwsem){++++}-{4:4}: [ 96.862206][ T5985] __lock_acquire+0x15a5/0x2cf0 [ 96.867663][ T5985] lock_acquire+0xf0/0x2e0 [ 96.872766][ T5985] down_read+0x47/0x2e0 [ 96.877506][ T5985] kernfs_iop_getattr+0x9e/0x450 [ 96.883002][ T5985] vfs_getattr_nosec+0x2e1/0x430 [ 96.888474][ T5985] loop_assign_backing_file+0x27a/0x4b0 [ 96.894554][ T5985] lo_ioctl+0x1acb/0x1fb0 [ 96.899439][ T5985] blkdev_ioctl+0x5e3/0x740 [ 96.904475][ T5985] __se_sys_ioctl+0xfc/0x170 [ 96.909584][ T5985] do_syscall_64+0x14d/0xf80 [ 96.914788][ T5985] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 96.921202][ T5985] [ 96.921202][ T5985] other info that might help us debug this: [ 96.921202][ T5985] [ 96.931415][ T5985] Chain exists of: [ 96.931415][ T5985] &root->kernfs_iattr_rwsem --> fs_reclaim --> &q->q_usage_counter(io)#22 [ 96.931415][ T5985] [ 96.945945][ T5985] Possible unsafe locking scenario: [ 96.945945][ T5985] [ 96.953558][ T5985] CPU0 CPU1 [ 96.959011][ T5985] ---- ---- [ 96.964368][ T5985] lock(&q->q_usage_counter(io)#22); [ 96.969751][ T5985] lock(fs_reclaim); [ 96.976334][ T5985] lock(&q->q_usage_counter(io)#22); [ 96.984262][ T5985] rlock(&root->kernfs_iattr_rwsem); [ 96.989720][ T5985] [ 96.989720][ T5985] *** DEADLOCK *** [ 96.989720][ T5985] [ 96.997935][ T5985] 3 locks held by syz.4.5/5985: [ 97.002796][ T5985] #0: ffff8880268ab448 (&lo->lo_mutex){+.+.}-{4:4}, at: lo_ioctl+0x14c7/0x1fb0 [ 97.011954][ T5985] #1: ffff8880267109e8 (&q->q_usage_counter(io)#22){++++}-{0:0}, at: lo_ioctl+0x1a51/0x1fb0 [ 97.022192][ T5985] #2: ffff888026710a20 (&q->q_usage_counter(queue)#6){+.+.}-{0:0}, at: lo_ioctl+0x1a51/0x1fb0 [ 97.033167][ T5985] [ 97.033167][ T5985] stack backtrace: [ 97.039069][ T5985] CPU: 0 UID: 0 PID: 5985 Comm: syz.4.5 Not tainted syzkaller #0 PREEMPT(full) [ 97.039095][ T5985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 97.039108][ T5985] Call Trace: [ 97.039120][ T5985] [ 97.039129][ T5985] dump_stack_lvl+0xe8/0x150 [ 97.039167][ T5985] print_circular_bug+0x2e1/0x300 [ 97.039210][ T5985] check_noncircular+0x12e/0x150 [ 97.039249][ T5985] __lock_acquire+0x15a5/0x2cf0 [ 97.039292][ T5985] lock_acquire+0xf0/0x2e0 [ 97.039321][ T5985] ? kernfs_iop_getattr+0x9e/0x450 [ 97.039358][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.039390][ T5985] down_read+0x47/0x2e0 [ 97.039427][ T5985] ? kernfs_iop_getattr+0x9e/0x450 [ 97.039462][ T5985] kernfs_iop_getattr+0x9e/0x450 [ 97.039499][ T5985] vfs_getattr_nosec+0x2e1/0x430 [ 97.039535][ T5985] loop_assign_backing_file+0x27a/0x4b0 [ 97.039563][ T5985] ? __pfx_loop_assign_backing_file+0x10/0x10 [ 97.039603][ T5985] lo_ioctl+0x1acb/0x1fb0 [ 97.039628][ T5985] ? __pfx_lo_ioctl+0x10/0x10 [ 97.039648][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.039674][ T5985] ? __kernel_text_address+0xd/0x30 [ 97.039700][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.039726][ T5985] ? unwind_get_return_address+0x4d/0x90 [ 97.039767][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.039793][ T5985] ? __lock_acquire+0x6b5/0x2cf0 [ 97.039826][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.039853][ T5985] ? __lock_acquire+0x6b5/0x2cf0 [ 97.039885][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.039917][ T5985] ? __lock_acquire+0x6b5/0x2cf0 [ 97.039949][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.039976][ T5985] ? __lock_acquire+0x6b5/0x2cf0 [ 97.040007][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.040034][ T5985] ? __lock_acquire+0x6b5/0x2cf0 [ 97.040065][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.040092][ T5985] ? __lock_acquire+0x6b5/0x2cf0 [ 97.040122][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.040149][ T5985] ? __lock_acquire+0x6b5/0x2cf0 [ 97.040184][ T5985] ? unwind_next_frame+0xa5/0x23c0 [ 97.040226][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.040254][ T5985] ? is_bpf_text_address+0x26/0x2b0 [ 97.040281][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.040308][ T5985] ? is_bpf_text_address+0x292/0x2b0 [ 97.040331][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.040358][ T5985] ? is_bpf_text_address+0x26/0x2b0 [ 97.040383][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.040409][ T5985] ? kernel_text_address+0xa5/0xe0 [ 97.040434][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.040460][ T5985] ? __kernel_text_address+0xd/0x30 [ 97.040484][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.040510][ T5985] ? unwind_get_return_address+0x4d/0x90 [ 97.040546][ T5985] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 97.040570][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.040597][ T5985] ? arch_stack_walk+0xfb/0x150 [ 97.040638][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.040664][ T5985] ? stack_trace_save+0xa9/0x100 [ 97.040687][ T5985] ? __pfx_stack_trace_save+0x10/0x10 [ 97.040710][ T5985] ? kasan_save_free_info+0x46/0x50 [ 97.040747][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.040774][ T5985] ? stack_depot_save_flags+0x33/0x810 [ 97.040812][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.040838][ T5985] ? format_decode+0xd0/0xe10 [ 97.040859][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.040887][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.040920][ T5985] ? kasan_save_track+0x4f/0x80 [ 97.040944][ T5985] ? kasan_save_track+0x3e/0x80 [ 97.040968][ T5985] ? kasan_save_free_info+0x46/0x50 [ 97.041002][ T5985] ? __kasan_slab_free+0x5c/0x80 [ 97.041027][ T5985] ? kfree+0x1c1/0x630 [ 97.041047][ T5985] ? tomoyo_path_number_perm+0x501/0x630 [ 97.041081][ T5985] ? security_file_ioctl+0xc3/0x2a0 [ 97.041113][ T5985] ? __se_sys_ioctl+0x47/0x170 [ 97.041139][ T5985] ? do_syscall_64+0x14d/0xf80 [ 97.041170][ T5985] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 97.041195][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.041221][ T5985] ? __asan_memset+0x22/0x50 [ 97.041243][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.041269][ T5985] ? blk_get_meta_cap+0x16d/0x7a0 [ 97.041301][ T5985] ? __pfx_blk_get_meta_cap+0x10/0x10 [ 97.041334][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.041361][ T5985] ? blkdev_common_ioctl+0x14b7/0x3250 [ 97.041399][ T5985] ? __pfx_blkdev_common_ioctl+0x10/0x10 [ 97.041433][ T5985] ? kasan_quarantine_put+0xbb/0x1f0 [ 97.041457][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.041486][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.041514][ T5985] ? tomoyo_path_number_perm+0x219/0x630 [ 97.041547][ T5985] ? tomoyo_path_number_perm+0x219/0x630 [ 97.041579][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.041607][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.041634][ T5985] ? do_vfs_ioctl+0x1166/0x1530 [ 97.041662][ T5985] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 97.041706][ T5985] ? __pfx_lo_ioctl+0x10/0x10 [ 97.041727][ T5985] blkdev_ioctl+0x5e3/0x740 [ 97.041761][ T5985] ? __pfx_blkdev_ioctl+0x10/0x10 [ 97.041793][ T5985] ? __fget_files+0x2a/0x420 [ 97.041814][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.041840][ T5985] ? srso_alias_return_thunk+0x5/0xfbef5 [ 97.041868][ T5985] ? __pfx_blkdev_ioctl+0x10/0x10 [ 97.041905][ T5985] __se_sys_ioctl+0xfc/0x170 [ 97.041934][ T5985] do_syscall_64+0x14d/0xf80 [ 97.041964][ T5985] ? trace_irq_disable+0x3b/0x150 [ 97.041984][ T5985] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 97.042009][ T5985] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 97.042032][ T5985] RIP: 0033:0x7fda6299c819 [ 97.042052][ T5985] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 97.042070][ T5985] RSP: 002b:00007fda637cc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 97.042093][ T5985] RAX: ffffffffffffffda RBX: 00007fda62c16090 RCX: 00007fda6299c819 [ 97.042109][ T5985] RDX: 0000000000000004 RSI: 0000000000004c06 RDI: 0000000000000003 [ 97.042123][ T5985] RBP: 00007fda62a32c91 R08: 0000000000000000 R09: 0000000000000000 [ 97.042137][ T5985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 97.042150][ T5985] R13: 00007fda62c16128 R14: 00007fda62c16090 R15: 00007ffe89857788 [ 97.042175][ T5985] [ 97.694903][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.702822][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.941104][ T5823] Dev loop5: unable to read RDB block 7 [ 97.947183][ T5823] loop5: unable to read partition table [ 97.954152][ T5823] loop5: partition table beyond EOD, truncated [ 98.087109][ T5985] Dev loop5: unable to read RDB block 7 [ 98.093050][ T5985] loop5: unable to read partition table [ 98.098846][ T5985] loop5: partition table beyond EOD, truncated [ 98.105353][ T5985] loop_reread_partitions: partition scan of loop5 (Wý* %4FLQk݊5) failed (rc=-5)