last executing test programs: 2.071085434s ago: executing program 1 (id=455): syz_clone3(&(0x7f0000000080)={0x180801400, &(0x7f0000000000)=0xffffffffffffffff, 0x0, 0x0, {0x3d}, 0x0, 0x0, 0x0, 0x0}, 0x58) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) syz_genetlink_get_family_id$gtp(0x0, 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, 0x0, 0x4004) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) fcntl$getownex(r0, 0x10, &(0x7f0000000180)) 1.84460028s ago: executing program 2 (id=459): r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000c40)=ANY=[@ANYBLOB], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r2, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b95477511ba86ecaf919bc87db", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="6800000010000100"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000480012800e0001006970366772657461700000003400028008000100", @ANYRES32, @ANYBLOB="14000600fe800000000000000000000000000015140007"], 0x68}}, 0x0) sendto$packet(r0, &(0x7f0000000180)="a6bea8a120e5f8320c30ce5086dda5e986f34c10d8c39c3002de8ec445ae083a4b7fc08a086fc691", 0x28, 0x0, &(0x7f0000000140)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @local}, 0x14) 1.628080446s ago: executing program 2 (id=462): mkdir(&(0x7f0000001a80)='./file0\x00', 0x1cb) mount$bpf(0x200000000000, 0x0, 0x0, 0x989046, 0x0) mount$bpf(0x0, 0x0, 0x0, 0x84000, 0x0) creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4c) link(&(0x7f00000006c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000380)='./file0\x00') 1.416032802s ago: executing program 2 (id=465): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000080)={0x0, 0x4, 0x2, 0x0, 0xd, 0x1, 0x0, 0x0, 0x0, 0x5}, 0xe) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000240)=0x10) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000100)={r1}, 0x0) 1.261821326s ago: executing program 0 (id=467): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000140)=0x6, 0x4) bind$inet6(r0, &(0x7f0000000080)={0xa, 0x2, 0x200, @loopback, 0x7}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4) sendto$inet6(r0, &(0x7f0000000840)="a6", 0x1, 0x200080c0, 0x0, 0x0) 1.216188937s ago: executing program 2 (id=468): unshare(0x24020400) r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x72, 0x0, 0x7fff0000}]}) close_range(r0, 0xffffffffffffffff, 0x0) socket$kcm(0x23, 0x5, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) 1.181752468s ago: executing program 0 (id=469): sendmsg$kcm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73f72cc9f0ba1f848160000005e140602000000000e000a0010000000028000", 0x2b}], 0x1}, 0x80054) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0x2, 0x0, 0x25dfdbfb, {{@in6=@private0, @in=@empty, 0x0, 0x4, 0x1, 0x0, 0xa, 0x60, 0x80, 0x3b, 0x0, 0xee01}, {0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, {0xfffffffffffffffe, 0x4}, 0x9, 0x0, 0x0, 0x1, 0x2}}, 0xb8}}, 0x50) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9"], 0xb8}}, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc0000000000000001"], 0xb8}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000040)=ANY=[@ANYRESDEC], 0x0, 0x0, 0x0, 0x0, 0x0, 0x71, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=ANY=[], 0x134}}, 0x0) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000040)='pids.max\x00', 0x2, 0x0) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[], 0xb8}, 0x1, 0x0, 0x0, 0x4040095}, 0x40010) sendmsg$nl_xfrm(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000000000000000000ac1e000100000000000000000000000000000000000000000a0040"], 0xb8}}, 0x0) 1.055074291s ago: executing program 0 (id=470): r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000c40)=ANY=[@ANYBLOB], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r2, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b95477511ba86ecaf919bc87db", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="6800000010000100"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000480012800e0001006970366772657461700000003400028008000100", @ANYRES32, @ANYBLOB="14000600fe800000000000000000000000000015140007"], 0x68}}, 0x0) sendto$packet(r0, &(0x7f0000000180)="a6bea8a120e5f8320c30ce5086dda5e986f34c10d8c39c3002de8ec445ae083a4b7fc08a086fc691", 0x28, 0x0, &(0x7f0000000140)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @local}, 0x14) 997.561503ms ago: executing program 1 (id=471): r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180200002343ffff0000000000"], &(0x7f00000000c0)='GPL\x00'}, 0x94) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', 0x0}) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r1, r2, 0x25, 0x4, @void}, 0x10) syz_emit_ethernet(0xfe54, &(0x7f00000001c0)=ANY=[], 0x0) 955.043073ms ago: executing program 0 (id=473): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x20008c16, &(0x7f0000000100)={[{@dioread_lock}, {@noblock_validity}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x4}}, {@auto_da_alloc}, {@nolazytime}, {@grpjquota, 0x2e}, {@nouid32}, {@resuid}, {@barrier_val={'barrier', 0x3d, 0x1000}}, {@grpid}], [], 0x2c}, 0x4, 0x4f0, &(0x7f0000001e00)="$eJzs3M1vFOUfAPDvTOkLUGjhR37Ki1JFYyPa0oLKwYMaTbhoTPSAx1oqQQoYWhMhRIoxeDT+BerRxMSTF71ooka9qPGqd2NCDBdQE7Nmdmfa3XZ3u91CK+znk0z7PDPPvHyfmWd2Zp/ZCaBjDWV/koj+iPglIgYq2doCQ5V/169emPzz6oXJJEqlF/5IyuWuXb0wWRQt5tucZ4bTiPTtJHbXWe/MufMnJ6anp87m+dHZU6+Nzpw7//CJUxPHp45PnR4/fPjQwbHHHh1/pKU4Li4zPYvr2q43z+zZeeSl956dLMXL332cbW9/Pr06jorBltbbzFAMRSm3MLan/Pf+VS/9v2VLRPTm6WTDOm8MLeuKiGx3dZfb/0B0xcLOG4hn3prPfLVOGwjcNNln07YlY7vy/+n85xdwO0q0cehQxSd+dv9bDGt5/bHerjyZ/Z0qx389H354rlI3aXYvO1i5Y+9qMP//64zrW0iWBpZZf39EHJ376/1siLrfQzSRtFwSAGDeF9n1z0P1rv/SmmubrXkfymBE7I+I7RHxv4jYEel8mTsi4s4Vrn9oUX7p9c9PG1e4yBXJrv8ez/u2iqEypYgrmc9tKcffnbxyYnrqQF4nw9Hdm+XHmqzjy6d/frfRtKGq679syNZfXAvm2/H7ht7aeY5NzE6sIuQaVy5FEhvqxZ/M9wRkNbAzIna1sfyszk48+NGeLL1189Lpy8ffxA3oZyp9GPFAZf/PxaL4C0llTY36J0f7YnrqwGhxVCz1/Y+Xn6/Od1ela+Lvay2mvnaDrePKpYhNdY//PP6iGRT9tTN5/uv+ltdx+dd3Gt7TLN3/SRydqy6RH/8bF6otO/57khfL6Z583BsTs7NnxyI+z0fUjB9fWFqRL8pn8Q/vq42/cl+cZue4fz7I59sdEdlBfFdE3B0Re/Ntvyci7o2IfU3i//ap+15tXkNtHv83QBb/sWb7P2Iwqe6vbyPRdfKbzxqtv7Xz36FyajgfU33+62mw3FY3cLX1BwAAALeCtNwHnaQjVc9vF3bEpnT6zMzs/qF4/fSxSl/1YHSnxTddA1Xfh47l3w0X+fFF+YMRsa38pNHGcn5k8sz0lnWKGajYXNX+K+eCNB0ZqUz7rdFDL8DtY0X9aNUPnX3y6Y3fGGBN+b0mdC7tHzqX9g+dS/uHzlWv/V+MuL4OmwKssXY//xc/MADccko176cEOor7f+hc2j90pKU/ic9ft5KdE9r/yf/09iOreWPAzU+UBtqfPRpPmlv5ArtaK1y8/aLlJbdWOIkowkmbxFUnEenCmL/zt0mWx3RXyvS0vqlrn0iXLfPEcrXRvaJ3YvTVqY29eaI3IlpdzsU1q9XiDJF4yyQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHBL+zcAAP//Flvq9A==") 859.095807ms ago: executing program 3 (id=474): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x4, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x7}, 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r1, 0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000000280)=r0}, 0x20) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000440)={r2, &(0x7f00000001c0), 0x0}, 0x20) 854.590347ms ago: executing program 1 (id=475): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r0, 0x107, 0x8, &(0x7f0000000100)=0x9, 0x4) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r0, 0x0, r1, 0x0, 0xf3a, 0x0) r2 = socket$kcm(0x1e, 0x4, 0x0) setsockopt$sock_attach_bpf(r2, 0x10f, 0x87, &(0x7f00000008c0), 0x43) 716.08718ms ago: executing program 0 (id=476): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, 0x0, 0x0) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x7, @ipv4={'\x00', '\xff\xff', @local}, 0x1}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000000)=@gcm_128={{0x303}, "c8bf5d03ac85c25d", "9a5d38a17f00c500000000feff00", "a1c4776d", "3c84a3a3be2adbff"}, 0x28) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f000068c000/0xc000)=nil, &(0x7f0000817000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0) r1 = io_uring_setup(0x185d, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x1, 0x800000c1}) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x3, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x80000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="16"], 0x50) io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0) 715.97985ms ago: executing program 3 (id=477): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000140)=0x6, 0x4) bind$inet6(r0, &(0x7f0000000080)={0xa, 0x2, 0x200, @loopback, 0x7}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4) sendto$inet6(r0, &(0x7f0000000840)="a6", 0x1, 0x200080c0, 0x0, 0x0) 686.410101ms ago: executing program 1 (id=478): sendmsg$kcm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73f72cc9f0ba1f848160000005e140602000000000e000a0010000000028000", 0x2b}], 0x1}, 0x80054) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0x2, 0x0, 0x25dfdbfb, {{@in6=@private0, @in=@empty, 0x0, 0x4, 0x1, 0x0, 0xa, 0x60, 0x80, 0x3b, 0x0, 0xee01}, {0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, {0xfffffffffffffffe, 0x4}, 0x9, 0x0, 0x0, 0x1, 0x2}}, 0xb8}}, 0x50) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9"], 0xb8}}, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc0000000000000001"], 0xb8}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000040)=ANY=[@ANYRESDEC], 0x0, 0x0, 0x0, 0x0, 0x0, 0x71, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=ANY=[], 0x134}}, 0x0) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000040)='pids.max\x00', 0x2, 0x0) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[], 0xb8}, 0x1, 0x0, 0x0, 0x4040095}, 0x40010) sendmsg$nl_xfrm(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000000000000000000ac1e000100000000000000000000000000000000000000000a0040"], 0xb8}}, 0x0) 594.560954ms ago: executing program 3 (id=479): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="01000000050000000100000007"], 0x50) bpf$MAP_DELETE_BATCH(0x1b, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x5, r0, 0x4}, 0x38) 555.833305ms ago: executing program 0 (id=480): r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000640), 0x2, 0x0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) preadv(r0, &(0x7f0000001440)=[{&(0x7f0000001480)=""/15, 0xf}], 0x1, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000140), r1) ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=0x0) sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010026bd7000fcdbdf250200000008000100", @ANYRES32=r3], 0x1c}}, 0x840) 544.480095ms ago: executing program 1 (id=481): r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000c40)=ANY=[@ANYBLOB], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r2, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b95477511ba86ecaf919bc87db", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="6800000010000100"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000480012800e0001006970366772657461700000003400028008000100", @ANYRES32, @ANYBLOB="14000600fe800000000000000000000000000015140007"], 0x68}}, 0x0) sendto$packet(r0, &(0x7f0000000180)="a6bea8a120e5f8320c30ce5086dda5e986f34c10d8c39c3002de8ec445ae083a4b7fc08a086fc691", 0x28, 0x0, &(0x7f0000000140)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @local}, 0x14) 428.131028ms ago: executing program 3 (id=482): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000004c0)={0x38, r2, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@ETHTOOL_A_FEATURES_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}]}, @ETHTOOL_A_FEATURES_WANTED={0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x40000c1}, 0x20000000) 418.307988ms ago: executing program 3 (id=483): r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180200002343ffff0000000000"], &(0x7f00000000c0)='GPL\x00'}, 0x94) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', 0x0}) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r1, r2, 0x25, 0x4, @void}, 0x10) syz_emit_ethernet(0xfe54, &(0x7f00000001c0)=ANY=[], 0x0) 361.70966ms ago: executing program 3 (id=484): syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x0, &(0x7f0000000a00)={[{@init_itable_val={'init_itable', 0x3d, 0x1}}, {@errors_remount}, {@resgid}, {@barrier}, {@quota}, {@delalloc}]}, 0x1, 0x783, &(0x7f0000001340)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000000)={0xffffffffffffff23, 0x17, 0x2, {0x7, './file0'}}, 0xfffffdab) fadvise64(r0, 0x7f, 0x0, 0x4) write$cgroup_subtree(r0, 0x0, 0x0) 330.985781ms ago: executing program 1 (id=485): unshare(0x24020400) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000500)='./file0\x00', 0x1000000, &(0x7f00000018c0)=ANY=[@ANYBLOB="73686f72746e616d653d77696e39352c756e695f786c6174653d312c636865636b3d7374726963742c646f733178666c6f7070792c757466383d312c757466383d312c757466383d302c696f636861727365743d6370313235de26302c696f636861727365743d69736f383835392d342c696f636861727365743d64656661756c742c73686f72746e616d653d6d69786564", @ANYRES16=0x0], 0xfe, 0x1b2, &(0x7f0000000580)="$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") r0 = socket$unix(0x1, 0x1, 0x0) bind$unix(r0, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) 243.859783ms ago: executing program 2 (id=486): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r1, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xb}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x2}}}]}, 0x38}}, 0x0) r2 = socket(0x400000000010, 0x3, 0x0) r3 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001300)=@newtfilter={0xe8c, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r4, {0x5, 0x4}, {}, {0x8}}, [@filter_kind_options=@f_matchall={{0xd}, {0xe58, 0x2, [@TCA_MATCHALL_ACT={0xe54, 0x2, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{0x9, 0x0, 0x1, 0xc, 0x1}, 0x4, 0x46}, [{0x7, 0x7, 0x40, 0x3, 0x0, 0x1}, {0x3edee688, 0x0, 0xfffffffd, 0x10, 0x5c56b80f, 0x5}, {0x8, 0x4, 0x1, 0x6, 0xf, 0x8001}, {0x4, 0xffffffff, 0x0, 0x8000, 0xffff, 0x9}, {0x0, 0x7, 0xb, 0xffffff81, 0x7fff, 0x4}, {0x1000, 0x81, 0xcec4, 0x1, 0x1, 0x7f}, {0x401, 0x2, 0x8, 0xfffffff7, 0x0, 0x7}, {0x2, 0x1, 0x1000, 0x4, 0x9, 0xa}, {0x8, 0x2, 0xf331c, 0x80000000, 0x9, 0x8}, {0x5, 0x2, 0x5, 0x5, 0x80000001}, {0x3, 0x2, 0x5, 0x3, 0x2, 0x5}, {0xfffffff5, 0x5, 0x6, 0x3, 0x8, 0x200}, {0x0, 0x2, 0x1, 0xc, 0xc61, 0x4}, {0x4, 0x1, 0x2, 0x8, 0xdad, 0xae}, {0x9, 0x4, 0xfff, 0x0, 0x90400000}, {0x7267, 0xe, 0xffffffff, 0x4, 0x3, 0x5}, {0x10000, 0x6, 0x80, 0xfffffff7, 0x20000009, 0x4}, {0x0, 0x7, 0xfa, 0x6, 0x3a00, 0xfffffffe}, {0xa00, 0x9, 0x0, 0x6, 0x7fff, 0x7ff}, {0x42, 0x10, 0x7, 0x10001, 0x2a}, {0x1, 0x2, 0x7fffffff, 0x1, 0x3, 0x7f}, {0x6326e196, 0x200, 0x9, 0x1, 0x6, 0x7}, {0xc8, 0x1, 0x1, 0x8, 0x4, 0x1d}, {0x13f, 0xd, 0x7fff00, 0x7f, 0x7ff, 0xffff}, {0xe, 0x2, 0x2, 0x0, 0x8, 0x6}, {0x5, 0x3, 0x53, 0x4, 0x400000, 0x1}, {0x0, 0xfff, 0x40, 0xfffffffc, 0x6, 0xcb03}, {0x6, 0x0, 0x80000000, 0x5, 0x8, 0x101}, {0xffffffff, 0x7fff, 0x20000000, 0x0, 0x1, 0x8}, {0x625321fa, 0x101, 0x0, 0xe0000000, 0x2, 0x1}, {0x5, 0x8001, 0x7000, 0x7, 0x61ae, 0x80000000}, {0x2, 0x6, 0x5, 0x2, 0x7fffffff, 0x2}, {0x5, 0x2, 0x8, 0x1907, 0x2, 0x3}, {0x8, 0x2, 0x1, 0x1, 0xffff, 0x6}, {0x8, 0x7, 0x6, 0x3, 0x8, 0x6}, {0x2, 0x2, 0x1, 0x200, 0x5}, {0x6, 0x7, 0x7, 0x100, 0x4, 0x3}, {0x100, 0x2, 0x80000001, 0x10, 0xfffffffa, 0xf}, {0xa9, 0xd12, 0xffffffff, 0xa, 0x6, 0x1d}, {0x41, 0x6, 0x0, 0x3, 0x1000, 0x5}, {0x6, 0x800, 0x4, 0x7, 0x1, 0x8001}, {0x4, 0x2, 0xfc0, 0xf898, 0x8001, 0x6}, {0x1, 0x3e, 0x98, 0x0, 0x3ff, 0x101}, {0x3ff, 0x2, 0x6, 0xfffffffb, 0x3ff, 0xa}, {0x7, 0x2, 0x3135, 0x1, 0x9, 0xcf}, {0xfffffffd, 0xf, 0x0, 0x8, 0xebb, 0x4}, {0xc, 0x5, 0x1, 0x6, 0x8}, {0x9, 0x3, 0x4, 0x1, 0x1ff, 0x80000000}, {0x6, 0x7, 0x8b, 0xfb, 0x80, 0x6}, {0x9, 0x80000000, 0xffffffff, 0xfffffa84, 0x6, 0x7f}, {0x1, 0xb, 0xbc, 0x5c, 0x6, 0x5}, {0x7, 0xfe, 0x0, 0x8, 0x5, 0x10}, {0x8, 0x4, 0x4, 0xfffffffb, 0x200, 0xcff}, {0x2, 0x8, 0x7, 0x8, 0x9, 0x35}, {0x0, 0x9, 0x0, 0xa, 0x3, 0xfe}, {0x8, 0x3, 0x0, 0x3c86, 0x56a5, 0x5}, {0xe4, 0x47, 0xffff, 0xd0, 0x2, 0x80000001}, {0x0, 0xa, 0x62, 0x10000, 0x6, 0xfffffff8}, {0x3, 0x4, 0x8d47, 0x710, 0x3c70}, {0x40, 0x7f, 0xd0, 0x0, 0xff, 0x8}, {0x2, 0xacd, 0x75ad, 0x7, 0x9, 0xff}, {0x80, 0x6, 0x10001, 0x1ff, 0x81, 0x12}, {0x0, 0x7a53, 0x5, 0x7, 0x8, 0x3}, {0x7, 0x1000000, 0xfffffff8, 0x9, 0x8, 0x40}, {0xfffffffe, 0x0, 0x6, 0x7fff, 0x80000001, 0x40}, {0x588f, 0x5, 0x7, 0x10001, 0xffffffff, 0x1}, {0x8, 0x4, 0x1c, 0x6, 0x3e, 0x9}, {0x2, 0x7, 0x5, 0x3, 0x8, 0x3}, {0xc, 0xc, 0x1be, 0x8, 0x9, 0x3}, {0x0, 0x7, 0xd94, 0x7, 0x9, 0x2}, {0x4, 0x6, 0x4, 0x3, 0x7, 0xffff}, {0x7, 0xc27, 0x2, 0xc614, 0x5, 0x5}, {0x5, 0x9, 0x7, 0x9, 0x0, 0x4}, {0xbc7, 0x4, 0xf08b, 0x6, 0x9, 0x23}, {0x6, 0x2, 0x6f, 0xea78, 0x9925, 0xb6d}, {0x5, 0xc9, 0x4, 0x0, 0x89, 0x14}, {0x8, 0x3, 0x9da, 0x800, 0xfffffffc, 0xe7e8}, {0x10000, 0x40, 0x5, 0xd0, 0xa9, 0x47a8}, {0x8, 0x3ff, 0x4, 0x3, 0x0, 0x9}, {0x48, 0xc, 0x3ff, 0x4, 0x800, 0xe}, {0x4, 0x1, 0x3, 0x4, 0x1000, 0xda30}, {0x1, 0xffff, 0x8001, 0x98, 0xfffffff8, 0x7}, {0x81, 0x1, 0x2, 0x7, 0xbc9, 0x28000000}, {0x7, 0xada, 0x1, 0x6, 0xfffffffe, 0xb030}, {0x9f, 0x761, 0xf95c, 0x2, 0x86, 0x5}, {0xd3, 0xffff, 0x6, 0xc424, 0x9, 0x4}, {0x5, 0xffffff6e, 0x7fff, 0x3, 0xd, 0x2}, {0x621, 0x2, 0x0, 0x9, 0x3, 0x4854}, {0x3, 0x6, 0x8, 0x1, 0x9, 0xa72}, {0x5, 0x4, 0x6, 0xfffffffa, 0x9, 0x3}, {0x0, 0xfffffff8, 0x8, 0x320, 0x5}, {0x6, 0x3, 0x200, 0x6, 0x1ff, 0x8}, {0x7ff, 0x5, 0x6, 0x4, 0x5, 0x800}, {0xfa4a, 0x5, 0x6, 0xa, 0x5, 0x2}, {0x8, 0x7, 0x5, 0x2, 0x6, 0x80000001}, {0x2, 0xa, 0x2, 0x7, 0x4, 0x5}, {0x9, 0x7, 0x4, 0x9eb, 0xa, 0x8}, {0x2, 0x4, 0x7, 0xffffffff, 0x3, 0x401}, {0x3ff, 0x2, 0x8, 0x3ff, 0xfffffffb, 0x1}, {0x0, 0x0, 0x0, 0xfffff55e, 0x8, 0x6}, {0x1, 0x7fff, 0x8, 0x4, 0x7ff, 0x6}, {0x8, 0x0, 0x0, 0xfffffffd, 0xfff, 0x40}, {0x9, 0x1, 0xa792, 0x5, 0x1ff}, {0xd94b, 0x5, 0x2, 0xff, 0x4f, 0x7ff}, {0xdbc, 0x80000000, 0x5d, 0x3, 0xfffffffc}, {0x8, 0x3, 0x67, 0x8, 0xbdf, 0xf7}, {0x4c0f, 0xfff, 0x0, 0xb, 0x8, 0x100}, {0x400, 0x9, 0x0, 0x4, 0x9, 0x1b}, {0x48fd4449, 0x2, 0x5, 0x4, 0x7f, 0xfffffffc}, {0x7ff, 0x5, 0x3, 0x5c93, 0xc, 0x6}, {0x8, 0x2c2d000, 0x9, 0x2, 0x1, 0x2}, {0xffffffff, 0x8076, 0x7f, 0xffffffc0, 0x7, 0x8001}, {0x0, 0x1, 0x7, 0x200, 0x5}, {0x78, 0x2d, 0x4, 0x4, 0x80000001, 0xe9}, {0x0, 0x6, 0x0, 0x255c, 0x9, 0x1000}, {0x200000, 0x200, 0x6, 0xfffffffd, 0x0, 0x6}, {0x77b, 0x0, 0x2, 0x1e8a, 0x1a, 0x4}, {0x1000, 0x4, 0x0, 0x2, 0x0, 0x1}, {0x7ff, 0x5, 0x5, 0x6, 0x6, 0x2000009}, {0x4, 0x800, 0xea2, 0x8000, 0x0, 0x40}, {0x9, 0x200, 0x539, 0x1, 0xb, 0x7}, {0x2, 0x2, 0x87, 0x7, 0xfffffffe, 0x1}, {0x1e7, 0x2, 0x6, 0x9bb, 0x3, 0x7}, {0x7, 0x3ff, 0xe322, 0x2, 0x4, 0xc}, {0xfffffffa, 0x2, 0x93, 0xfffffffa, 0x10001, 0x40}, {0x7, 0x9bc, 0x800, 0x9, 0x7, 0x3851}, {0xfffffffe, 0x101, 0x3, 0x1, 0x7, 0x4}, {0x5, 0x0, 0xb0, 0xa, 0x5, 0x5}], [{0x4}, {0x3}, {0x2}, {0x3}, {}, {}, {0x1, 0x1}, {0x1}, {0x2}, {0x4}, {0x3, 0x1}, {0x6}, {0x0, 0x1}, {0x7}, {0x1}, {0x4, 0x1}, {0x4}, {0x5, 0x1}, {0x3, 0x1}, {0x7}, {}, {0x2}, {0x1}, {0x5}, {0x5, 0x1}, {0x3}, {}, {0x3, 0x1}, {0x5, 0x1}, {}, {0x0, 0x1}, {0x4, 0x1}, {0x2, 0x2}, {0x5}, {}, {0x3, 0x1}, {0x3}, {0x4}, {}, {}, {0x3, 0x1}, {0x1}, {0x1}, {0x3}, {0x1}, {}, {0x2}, {0x5}, {0x5, 0x1}, {0x1}, {0x0, 0x1}, {0x1}, {0x5}, {0x1, 0x1}, {}, {0x1}, {0x2, 0x1}, {0x4, 0x1}, {0x1}, {0x0, 0x1}, {0x5, 0x1}, {0x2}, {}, {0x1, 0x1}, {0x1, 0x1}, {0x4}, {0x0, 0x1}, {0x3}, {0x2, 0x1}, {0x1}, {}, {0x5}, {0x1}, {}, {}, {0x4, 0x1}, {0x1}, {0x0, 0x1}, {0x4}, {0x3}, {0x2}, {0x4, 0x1}, {}, {0x5, 0x1}, {0x3, 0x1}, {0x4}, {0x5}, {0x4}, {0x3}, {0x1, 0x1}, {0x4, 0x1}, {0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x7, 0x1}, {0x1, 0xd9d493184d3ac47}, {}, {0x2}, {0x4}, {0x1, 0x1}, {0x4, 0x1}, {0x5, 0x1}, {0x1}, {0x0, 0x1}, {0x5}, {0x3, 0x1}, {0xc49612a26cceaca7}, {0x0, 0xa5bbafc9e2acde54}, {0x5, 0x1}, {0x1}, {0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x1, 0x1}, {}, {0x1, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {0x2}, {0x4, 0x2}, {0x5}, {0x2}, {0x5, 0x1}, {0x3, 0x1}, {0x2, 0x1}]}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}}]}, 0xe8c}, 0x1, 0x0, 0x0, 0x10}, 0x0) 0s ago: executing program 2 (id=487): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000003580)={0x18, 0x24, 0x107, 0x70bd2e, 0x25dfdbfb, {0x2, 0x7c}, [@nested={0x4, 0x1}]}, 0x18}, 0x1, 0x0, 0x0, 0x4048011}, 0x8010) kernel console output (not intermixed with test programs): no interfaces have a carrier [ 38.849700][ T5434] 8021q: adding VLAN 0 to HW filter on device bond0 [ 38.871016][ T5434] eql: remember to turn off Van-Jacobson compression on your slave devices Starting crond: OK Starting sshd: OK syzkaller Warning: Permanently added '10.128.1.154' (ED25519) to the list of known hosts. syzkaller login: [ 62.657225][ T5756] cgroup: Unknown subsys name 'net' [ 62.790635][ T5756] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 64.149719][ T5756] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 65.573507][ T5778] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 65.576833][ T5780] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 65.585198][ T5778] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 65.588977][ T5780] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 65.603429][ T5780] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 65.604737][ T5778] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 65.611881][ T5780] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 65.635713][ T5780] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 65.644326][ T5782] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 65.652654][ T5782] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 65.660420][ T5782] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 65.668494][ T5780] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 65.668770][ T5782] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 65.678446][ T5783] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 65.690785][ T5780] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 65.692161][ T5782] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 65.705959][ T5780] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 65.706026][ T5778] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 65.713165][ T5783] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 65.722357][ T5085] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 65.734770][ T5085] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 65.741251][ T5783] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 65.749993][ T5783] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 65.759251][ T5783] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 66.136196][ T5771] chnl_net:caif_netlink_parms(): no params data found [ 66.171046][ T5768] chnl_net:caif_netlink_parms(): no params data found [ 66.247218][ T5770] chnl_net:caif_netlink_parms(): no params data found [ 66.348653][ T5771] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.356394][ T5771] bridge0: port 1(bridge_slave_0) entered disabled state [ 66.363587][ T5771] bridge_slave_0: entered allmulticast mode [ 66.370533][ T5771] bridge_slave_0: entered promiscuous mode [ 66.382316][ T5768] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.389849][ T5768] bridge0: port 1(bridge_slave_0) entered disabled state [ 66.397054][ T5768] bridge_slave_0: entered allmulticast mode [ 66.403667][ T5768] bridge_slave_0: entered promiscuous mode [ 66.410735][ T5769] chnl_net:caif_netlink_parms(): no params data found [ 66.427792][ T5771] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.435114][ T5771] bridge0: port 2(bridge_slave_1) entered disabled state [ 66.442210][ T5771] bridge_slave_1: entered allmulticast mode [ 66.449182][ T5771] bridge_slave_1: entered promiscuous mode [ 66.459989][ T5768] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.467198][ T5768] bridge0: port 2(bridge_slave_1) entered disabled state [ 66.474479][ T5768] bridge_slave_1: entered allmulticast mode [ 66.481095][ T5768] bridge_slave_1: entered promiscuous mode [ 66.560506][ T5768] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 66.578957][ T5771] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 66.588260][ T5770] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.596945][ T5770] bridge0: port 1(bridge_slave_0) entered disabled state [ 66.604063][ T5770] bridge_slave_0: entered allmulticast mode [ 66.610723][ T5770] bridge_slave_0: entered promiscuous mode [ 66.620492][ T5768] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 66.637119][ T5771] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 66.653954][ T5770] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.661939][ T5770] bridge0: port 2(bridge_slave_1) entered disabled state [ 66.669122][ T5770] bridge_slave_1: entered allmulticast mode [ 66.676313][ T5770] bridge_slave_1: entered promiscuous mode [ 66.710163][ T5771] team0: Port device team_slave_0 added [ 66.717764][ T5771] team0: Port device team_slave_1 added [ 66.767800][ T5771] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 66.775299][ T5771] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 66.801555][ T5771] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 66.822568][ T5771] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 66.829601][ T5771] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 66.855594][ T5771] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 66.869765][ T5768] team0: Port device team_slave_0 added [ 66.876043][ T5769] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.883199][ T5769] bridge0: port 1(bridge_slave_0) entered disabled state [ 66.890426][ T5769] bridge_slave_0: entered allmulticast mode [ 66.897037][ T5769] bridge_slave_0: entered promiscuous mode [ 66.908378][ T5770] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 66.926008][ T5768] team0: Port device team_slave_1 added [ 66.949171][ T5769] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.956478][ T5769] bridge0: port 2(bridge_slave_1) entered disabled state [ 66.963585][ T5769] bridge_slave_1: entered allmulticast mode [ 66.970967][ T5769] bridge_slave_1: entered promiscuous mode [ 66.989281][ T5770] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 67.017383][ T5768] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 67.026402][ T5768] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 67.052616][ T5768] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 67.080727][ T5770] team0: Port device team_slave_0 added [ 67.094721][ T5768] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 67.101703][ T5768] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 67.128007][ T5768] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 67.141072][ T5769] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 67.153167][ T5769] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 67.172031][ T5770] team0: Port device team_slave_1 added [ 67.211080][ T5771] hsr_slave_0: entered promiscuous mode [ 67.217345][ T5771] hsr_slave_1: entered promiscuous mode [ 67.225212][ T5770] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 67.232168][ T5770] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 67.258173][ T5770] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 67.283046][ T5769] team0: Port device team_slave_0 added [ 67.290192][ T5770] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 67.297273][ T5770] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 67.328429][ T5770] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 67.364972][ T5769] team0: Port device team_slave_1 added [ 67.388702][ T5768] hsr_slave_0: entered promiscuous mode [ 67.395209][ T5768] hsr_slave_1: entered promiscuous mode [ 67.401370][ T5768] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 67.409316][ T5768] Cannot create hsr debugfs directory [ 67.466317][ T5769] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 67.473296][ T5769] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 67.499538][ T5769] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 67.525647][ T5770] hsr_slave_0: entered promiscuous mode [ 67.531977][ T5770] hsr_slave_1: entered promiscuous mode [ 67.538674][ T5770] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 67.546296][ T5770] Cannot create hsr debugfs directory [ 67.559569][ T5769] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 67.566596][ T5769] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 67.592773][ T5769] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 67.758949][ T5769] hsr_slave_0: entered promiscuous mode [ 67.765177][ T5769] hsr_slave_1: entered promiscuous mode [ 67.771199][ T5769] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 67.779860][ T5769] Cannot create hsr debugfs directory [ 67.785750][ T5783] Bluetooth: hci1: command tx timeout [ 67.804164][ T5783] Bluetooth: hci3: command tx timeout [ 67.810036][ T5783] Bluetooth: hci2: command tx timeout [ 67.815887][ T51] Bluetooth: hci0: command tx timeout [ 67.985108][ T5771] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 67.998217][ T5771] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 68.023338][ T5771] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 68.032888][ T5771] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 68.077172][ T5768] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 68.091749][ T5768] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 68.122303][ T5768] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 68.145204][ T5768] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 68.189449][ T5770] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 68.200534][ T5770] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 68.211345][ T5770] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 68.220849][ T5770] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 68.298592][ T5769] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 68.319331][ T5769] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 68.341943][ T5769] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 68.351919][ T5769] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 68.440806][ T5771] 8021q: adding VLAN 0 to HW filter on device bond0 [ 68.482966][ T5768] 8021q: adding VLAN 0 to HW filter on device bond0 [ 68.498248][ T5770] 8021q: adding VLAN 0 to HW filter on device bond0 [ 68.541164][ T5768] 8021q: adding VLAN 0 to HW filter on device team0 [ 68.553904][ T5771] 8021q: adding VLAN 0 to HW filter on device team0 [ 68.564722][ T5770] 8021q: adding VLAN 0 to HW filter on device team0 [ 68.578927][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 68.586180][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 68.602502][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 68.609604][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 68.627477][ T49] bridge0: port 1(bridge_slave_0) entered blocking state [ 68.634628][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state [ 68.643841][ T49] bridge0: port 1(bridge_slave_0) entered blocking state [ 68.651004][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state [ 68.683055][ T3558] bridge0: port 2(bridge_slave_1) entered blocking state [ 68.690203][ T3558] bridge0: port 2(bridge_slave_1) entered forwarding state [ 68.718624][ T3558] bridge0: port 2(bridge_slave_1) entered blocking state [ 68.725734][ T3558] bridge0: port 2(bridge_slave_1) entered forwarding state [ 68.838540][ T5769] 8021q: adding VLAN 0 to HW filter on device bond0 [ 68.892711][ T5769] 8021q: adding VLAN 0 to HW filter on device team0 [ 68.918393][ T5771] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 68.952790][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 68.959938][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 69.005752][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.012872][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 69.195742][ T5768] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 69.306840][ T5770] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 69.314057][ T5768] veth0_vlan: entered promiscuous mode [ 69.356739][ T5768] veth1_vlan: entered promiscuous mode [ 69.382368][ T5771] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 69.438032][ T5768] veth0_macvtap: entered promiscuous mode [ 69.453680][ T5770] veth0_vlan: entered promiscuous mode [ 69.493365][ T5768] veth1_macvtap: entered promiscuous mode [ 69.508218][ T5770] veth1_vlan: entered promiscuous mode [ 69.527334][ T5771] veth0_vlan: entered promiscuous mode [ 69.576528][ T5770] veth0_macvtap: entered promiscuous mode [ 69.590851][ T5768] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 69.604741][ T5770] veth1_macvtap: entered promiscuous mode [ 69.616580][ T5771] veth1_vlan: entered promiscuous mode [ 69.631811][ T5768] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 69.652259][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 69.665925][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.678497][ T5770] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 69.690317][ T5768] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.700036][ T5768] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.709662][ T5768] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.718656][ T5768] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.732909][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 69.745240][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.756579][ T5770] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 69.767535][ T5769] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 69.781635][ T5770] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.792608][ T5770] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.802345][ T5770] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.811378][ T5770] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.861944][ T5771] veth0_macvtap: entered promiscuous mode [ 69.869952][ T5783] Bluetooth: hci3: command tx timeout [ 69.875553][ T51] Bluetooth: hci2: command tx timeout [ 69.875601][ T51] Bluetooth: hci0: command tx timeout [ 69.875636][ T51] Bluetooth: hci1: command tx timeout [ 69.903247][ T5771] veth1_macvtap: entered promiscuous mode [ 69.922637][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 69.933115][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.943371][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 69.955140][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.966371][ T5771] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 70.018633][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 70.030784][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 70.040708][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 70.051387][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 70.065830][ T5771] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 70.100724][ T5771] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.110887][ T5771] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.123845][ T5771] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.132693][ T5771] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.178703][ T1033] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 70.192336][ T1033] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 70.219656][ T5769] veth0_vlan: entered promiscuous mode [ 70.256970][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 70.267807][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 70.289251][ T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 70.301854][ T5769] veth1_vlan: entered promiscuous mode [ 70.308858][ T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 70.382186][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 70.415149][ T1033] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 70.426707][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 70.442120][ T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 70.445558][ T1033] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 70.484042][ T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 70.503791][ T5769] veth0_macvtap: entered promiscuous mode [ 70.568612][ T5769] veth1_macvtap: entered promiscuous mode [ 70.634012][ T5769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 70.651325][ T5769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 70.666379][ T5769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 70.682327][ T5769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 70.701000][ T5769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 70.721920][ T5769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 70.724008][ T5840] syz.2.5[5840]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 70.736081][ T5769] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 70.782757][ T5840] loop2: detected capacity change from 0 to 512 [ 70.791636][ T5840] ======================================================= [ 70.791636][ T5840] WARNING: The mand mount option has been deprecated and [ 70.791636][ T5840] and is ignored by this kernel. Remove the mand [ 70.791636][ T5840] option from the mount to silence this warning. [ 70.791636][ T5840] ======================================================= [ 70.829241][ T5769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 70.861457][ T5769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 70.894050][ T5769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 70.923077][ T5769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 70.979050][ T5769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 70.990049][ T5769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 70.998171][ T5840] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 71.007504][ T5769] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 71.049888][ T5840] ext4 filesystem being mounted at /1/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 71.083513][ T5769] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.128844][ T5769] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.170541][ T5769] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.190873][ T5769] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.235845][ T5768] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.431991][ T3558] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 71.461996][ T3558] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 71.488685][ T1279] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.496239][ T1279] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.592333][ T1033] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 71.622112][ T1033] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 71.786819][ T5863] loop3: detected capacity change from 0 to 512 [ 71.816739][ T5863] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 71.869433][ T5863] EXT4-fs (loop3): 1 truncate cleaned up [ 71.892573][ T5863] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 71.937775][ T5863] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4'. [ 71.945054][ T5773] Bluetooth: hci1: command tx timeout [ 71.952199][ T51] Bluetooth: hci0: command tx timeout [ 71.952225][ T5085] Bluetooth: hci2: command tx timeout [ 71.958256][ T5778] Bluetooth: hci3: command tx timeout [ 72.115448][ T5870] loop1: detected capacity change from 0 to 4096 [ 72.187410][ T5870] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 72.197655][ T5873] loop0: detected capacity change from 0 to 128 [ 72.266416][ T5873] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 72.299468][ T5873] ext4 filesystem being mounted at /4/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 72.460313][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.486627][ T5770] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 72.660988][ T5769] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.812925][ T5885] program syz.3.18 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 72.969571][ T5891] netlink: 312 bytes leftover after parsing attributes in process `syz.3.21'. [ 73.636027][ T5783] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 74.024591][ T5783] Bluetooth: hci3: command tx timeout [ 74.029214][ T5773] Bluetooth: hci1: command tx timeout [ 74.030026][ T5783] Bluetooth: hci0: command tx timeout [ 74.035917][ T5778] Bluetooth: hci2: command tx timeout [ 74.088825][ T5906] loop2: detected capacity change from 0 to 2048 [ 74.121015][ T5906] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 74.280439][ T27] audit: type=1800 audit(1777638005.293:2): pid=5906 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.27" name="file2" dev="loop2" ino=16 res=0 errno=0 [ 74.310806][ T5911] loop0: detected capacity change from 0 to 1024 [ 74.328118][ T5911] EXT4-fs: Ignoring removed orlov option [ 74.397386][ T5911] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.411888][ T5768] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.342715][ T5770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.654874][ T5927] syz.3.33 uses obsolete (PF_INET,SOCK_PACKET) [ 75.709186][ T5930] loop2: detected capacity change from 0 to 512 [ 75.742891][ T5930] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 75.782960][ T5930] EXT4-fs error (device loop2): ext4_orphan_get:1404: inode #15: comm syz.2.34: iget: bad i_size value: 38620345925642 [ 75.855667][ T5930] EXT4-fs error (device loop2): ext4_orphan_get:1409: comm syz.2.34: couldn't read orphan inode 15 (err -117) [ 76.030174][ T5930] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 76.274474][ T5930] EXT4-fs error (device loop2): ext4_validate_block_bitmap:430: comm syz.2.34: bg 0: block 5: invalid block bitmap [ 76.346816][ T5930] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 288 with error 28 [ 76.363304][ T5930] EXT4-fs (loop2): This should not happen!! Data will be lost [ 76.363304][ T5930] [ 76.379835][ T5930] EXT4-fs (loop2): Total free blocks count 0 [ 76.386114][ T5930] EXT4-fs (loop2): Free/Dirty block details [ 76.416603][ T5930] EXT4-fs (loop2): free_blocks=0 [ 76.421673][ T5930] EXT4-fs (loop2): dirty_blocks=292 [ 76.434171][ T5930] EXT4-fs (loop2): Block reservation details [ 76.440188][ T5930] EXT4-fs (loop2): i_reserved_data_blocks=292 [ 76.670264][ T5768] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.443725][ T5953] loop2: detected capacity change from 0 to 512 [ 77.486748][ T5953] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 77.534186][ T5953] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 77.563203][ T5953] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 77.624959][ T5953] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended [ 77.634681][ T5953] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 77.642855][ T5953] System zones: 0-2, 18-18, 34-35 [ 77.663700][ T5953] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 77.693220][ T5948] mmap: syz.1.40 (5948) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 77.782901][ T5768] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.268698][ T5962] loop2: detected capacity change from 0 to 1764 [ 78.370414][ T5759] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 78.692933][ T5980] loop3: detected capacity change from 0 to 8192 [ 78.892996][ T5989] loop1: detected capacity change from 0 to 512 [ 78.989006][ T5989] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 79.022882][ T5989] ext4 filesystem being mounted at /14/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 79.285583][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.052165][ T6016] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 80.419973][ T6041] loop0: detected capacity change from 0 to 1024 [ 80.470299][ T6041] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 80.578826][ T5770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.805343][ T6052] syzkaller0: entered promiscuous mode [ 80.820861][ T6052] syzkaller0: entered allmulticast mode [ 81.177918][ T6066] capability: warning: `syz.0.86' uses 32-bit capabilities (legacy support in use) [ 81.242235][ T27] audit: type=1326 audit(1777638012.253:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6063 comm="syz.0.86" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe3f959cdd9 code=0x0 [ 81.391713][ T6069] loop0: detected capacity change from 0 to 4096 [ 81.445101][ T6069] EXT4-fs: inline encryption not supported [ 81.498130][ T6069] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 81.528302][ T6069] EXT4-fs (loop0): Test dummy encryption mode enabled [ 81.580143][ T6069] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c1a8, mo2=0003] [ 81.609806][ T6069] System zones: 0-5 [ 81.637649][ T6069] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 81.736348][ T786] cfg80211: failed to load regulatory.db [ 81.755022][ T6083] loop2: detected capacity change from 0 to 256 [ 82.606868][ T6069] fscrypt (loop0): Missing crypto API support for AES-256-CTS-CBC (API name: "cts(cbc(aes))") [ 82.774670][ T6085] fscrypt (loop0): Missing crypto API support for AES-256-CTS-CBC (API name: "cts(cbc(aes))") [ 83.622582][ T6120] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3) [ 83.629365][ T6120] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 83.725787][ T6120] vhci_hcd vhci_hcd.0: Device attached [ 83.791927][ T6123] vhci_hcd: connection closed [ 83.795596][ T3490] vhci_hcd: stop threads [ 83.825029][ T3490] vhci_hcd: release socket [ 83.833879][ T3490] vhci_hcd: disconnect device [ 83.856220][ T5770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 84.293561][ T27] audit: type=1326 audit(1777638015.303:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6143 comm="syz.3.112" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f95d059cdd9 code=0x0 [ 84.414637][ T6149] loop2: detected capacity change from 0 to 1024 [ 84.421947][ T6149] EXT4-fs: Ignoring removed orlov option [ 84.428410][ T6147] loop3: detected capacity change from 0 to 4096 [ 84.436275][ T6147] EXT4-fs: inline encryption not supported [ 84.446236][ T6147] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 84.470834][ T6147] EXT4-fs (loop3): Test dummy encryption mode enabled [ 84.481482][ T6147] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c1a8, mo2=0003] [ 84.491474][ T6149] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 84.513414][ T6147] System zones: 0-5 [ 84.524781][ T6155] loop1: detected capacity change from 0 to 512 [ 84.534426][ T6147] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 84.557713][ T6155] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 84.668999][ T6155] EXT4-fs error (device loop1): ext4_orphan_get:1404: inode #15: comm syz.1.114: iget: bad i_size value: 38620345925642 [ 84.742854][ T6155] EXT4-fs error (device loop1): ext4_orphan_get:1409: comm syz.1.114: couldn't read orphan inode 15 (err -117) [ 84.811632][ T6155] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 84.816508][ T6163] netlink: 128 bytes leftover after parsing attributes in process `syz.0.116'. [ 84.825646][ T5768] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 84.845780][ T6147] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni" [ 85.257932][ T6172] EXT4-fs error (device loop1): ext4_validate_block_bitmap:430: comm syz.1.114: bg 0: block 5: invalid block bitmap [ 85.320062][ T6172] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 504 with error 28 [ 85.364156][ T6172] EXT4-fs (loop1): This should not happen!! Data will be lost [ 85.364156][ T6172] [ 85.393245][ T6172] EXT4-fs (loop1): Total free blocks count 0 [ 85.413438][ T6172] EXT4-fs (loop1): Free/Dirty block details [ 85.433688][ T6172] EXT4-fs (loop1): free_blocks=0 [ 85.459720][ T6172] EXT4-fs (loop1): dirty_blocks=504 [ 85.494145][ T6172] EXT4-fs (loop1): Block reservation details [ 85.524564][ T6172] EXT4-fs (loop1): i_reserved_data_blocks=504 [ 85.691353][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 85.891896][ T6191] netlink: 128 bytes leftover after parsing attributes in process `syz.0.127'. [ 86.008665][ T6195] loop2: detected capacity change from 0 to 512 [ 86.095553][ T6195] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 86.172720][ T6195] ext4 filesystem being mounted at /33/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 86.194666][ T6200] sg_write: data in/out 262109/42 bytes for SCSI command 0x0-- guessing data in; [ 86.194666][ T6200] program syz.0.130 not setting count and/or reply_len properly [ 86.326661][ T5768] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 86.634252][ T6208] loop1: detected capacity change from 0 to 4096 [ 86.679335][ T6208] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 86.706990][ T6208] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 86.916087][ T6217] netlink: 128 bytes leftover after parsing attributes in process `syz.0.139'. [ 86.964212][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 88.898651][ T6241] netlink: 128 bytes leftover after parsing attributes in process `syz.2.150'. [ 89.224886][ T5778] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 89.264087][ C0] sched: RT throttling activated [ 89.432787][ T5769] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 89.878555][ T27] audit: type=1326 audit(2000000002.260:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6264 comm="syz.3.162" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f95d059cdd9 code=0x0 [ 89.941103][ T6267] program syz.0.163 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 90.008300][ T6268] loop3: detected capacity change from 0 to 4096 [ 90.025846][ T6268] EXT4-fs: inline encryption not supported [ 90.048762][ T6268] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 90.065626][ T6268] EXT4-fs (loop3): Test dummy encryption mode enabled [ 90.096753][ T6268] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c1a8, mo2=0003] [ 90.115077][ T6268] System zones: 0-5 [ 90.130935][ T6268] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 91.869432][ T5773] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 91.876042][ T5778] Bluetooth: hci4: command 0x1003 tx timeout [ 92.180536][ T5769] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 92.455772][ T6321] netlink: 8 bytes leftover after parsing attributes in process `syz.1.186'. [ 92.587974][ T42] Bluetooth: hci4: Frame reassembly failed (-84) [ 92.616038][ T27] audit: type=1326 audit(2000000004.970:6): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=6328 comm="syz.1.190" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f36dd39cdd9 code=0x0 [ 92.707942][ T6330] loop1: detected capacity change from 0 to 4096 [ 92.728720][ T6330] EXT4-fs: inline encryption not supported [ 92.766810][ T6330] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 92.784209][ T6330] EXT4-fs (loop1): Test dummy encryption mode enabled [ 92.804226][ T6330] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c1a8, mo2=0003] [ 92.863086][ T6330] System zones: 0-5 [ 92.910694][ T6330] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 92.965127][ T6344] netlink: 24 bytes leftover after parsing attributes in process `syz.2.194'. [ 93.762611][ T6358] netlink: 8 bytes leftover after parsing attributes in process `syz.0.198'. [ 94.501597][ T27] audit: type=1326 audit(2000000006.880:7): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=6369 comm="syz.0.205" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe3f959cdd9 code=0x0 [ 94.586815][ T5778] Bluetooth: hci4: command 0x1003 tx timeout [ 94.644405][ T5773] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 94.696101][ T6373] loop0: detected capacity change from 0 to 4096 [ 94.750049][ T6373] EXT4-fs: inline encryption not supported [ 94.892644][ T6373] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 94.922592][ T6373] EXT4-fs (loop0): Test dummy encryption mode enabled [ 94.956893][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 94.982028][ T6373] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c1a8, mo2=0003] [ 94.994667][ T6373] System zones: 0-5 [ 95.029887][ T6373] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 95.108631][ T6381] netlink: 8 bytes leftover after parsing attributes in process `syz.2.209'. [ 95.174931][ T6373] fscrypt: AES-256-XTS using implementation "xts-aes-aesni" [ 95.904681][ T6399] program syz.3.214 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 96.525312][ T6412] netlink: 40 bytes leftover after parsing attributes in process `syz.3.220'. [ 96.955309][ T6422] program syz.2.225 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 97.040155][ T5770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 97.078794][ T6426] loop1: detected capacity change from 0 to 512 [ 97.094806][ T6426] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 97.124582][ T6426] EXT4-fs error (device loop1): ext4_orphan_get:1404: inode #15: comm syz.1.227: iget: bad i_size value: 38620345925642 [ 97.156789][ T6426] EXT4-fs error (device loop1): ext4_orphan_get:1409: comm syz.1.227: couldn't read orphan inode 15 (err -117) [ 97.245861][ T6426] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 97.251914][ T6431] loop0: detected capacity change from 0 to 4096 [ 97.279666][ T6431] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 97.377575][ T6431] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 97.458498][ T6426] EXT4-fs error (device loop1): ext4_validate_block_bitmap:430: comm syz.1.227: bg 0: block 5: invalid block bitmap [ 97.471070][ T6436] netlink: 40 bytes leftover after parsing attributes in process `syz.3.231'. [ 97.482906][ T6426] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1124 with error 28 [ 97.495566][ T6426] EXT4-fs (loop1): This should not happen!! Data will be lost [ 97.495566][ T6426] [ 97.509365][ T6426] EXT4-fs (loop1): Total free blocks count 0 [ 97.517751][ T6426] EXT4-fs (loop1): Free/Dirty block details [ 97.545958][ T6426] EXT4-fs (loop1): free_blocks=0 [ 97.550941][ T6426] EXT4-fs (loop1): dirty_blocks=1128 [ 97.588411][ T6426] EXT4-fs (loop1): Block reservation details [ 97.596393][ T6426] EXT4-fs (loop1): i_reserved_data_blocks=1128 [ 97.603174][ T5770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 97.652993][ T27] audit: type=1326 audit(2000000010.020:8): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=6443 comm="syz.3.234" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f95d059cdd9 code=0x0 [ 97.758750][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 97.827352][ T6445] loop3: detected capacity change from 0 to 4096 [ 97.843068][ T6449] program syz.2.236 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 97.869990][ T6445] EXT4-fs: inline encryption not supported [ 97.924730][ T6445] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 97.951581][ T6445] EXT4-fs (loop3): Test dummy encryption mode enabled [ 97.989733][ T6445] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c1a8, mo2=0003] [ 98.044892][ T6445] System zones: 0-5 [ 98.076818][ T6445] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 98.128913][ T6462] netlink: 40 bytes leftover after parsing attributes in process `syz.1.242'. [ 98.470562][ T6469] netlink: 20 bytes leftover after parsing attributes in process `syz.0.245'. [ 99.301907][ T27] audit: type=1800 audit(2000000011.310:9): pid=6470 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.234" name="file1" dev="overlay" ino=15 res=0 errno=0 [ 99.502291][ T6476] program syz.0.247 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 100.399715][ T6494] loop0: detected capacity change from 0 to 8192 [ 100.443635][ T5769] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 100.468951][ T6498] netlink: 'syz.2.258': attribute type 1 has an invalid length. [ 100.477853][ T6498] netlink: 12 bytes leftover after parsing attributes in process `syz.2.258'. [ 101.001636][ T27] audit: type=1326 audit(2000000013.380:10): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=6516 comm="syz.0.265" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe3f959cdd9 code=0x0 [ 101.029003][ T6520] netlink: 348 bytes leftover after parsing attributes in process `syz.3.266'. [ 101.171975][ T6521] loop0: detected capacity change from 0 to 4096 [ 101.192647][ T6521] EXT4-fs: inline encryption not supported [ 101.236588][ T6521] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 101.253286][ T6521] EXT4-fs (loop0): Test dummy encryption mode enabled [ 101.279021][ T6521] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c1a8, mo2=0003] [ 101.298641][ T6521] System zones: 0-5 [ 101.307827][ T6521] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 101.570426][ T6506] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 101.578717][ T6506] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 101.602695][ T6506] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 101.617986][ T6506] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 101.624548][ T6506] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 101.632544][ T6506] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 101.640924][ T6506] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 101.967722][ T6506] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 101.990134][ T27] audit: type=1800 audit(2000000014.320:11): pid=6541 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.265" name="file1" dev="overlay" ino=15 res=0 errno=0 [ 102.421070][ T6506] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 102.460090][ T6506] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 102.481792][ T6506] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 102.513014][ T6506] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 102.826596][ T5778] Bluetooth: hci1: command 0x0c1a tx timeout [ 103.120826][ T6558] program syz.2.273 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 103.288330][ T6562] netlink: 348 bytes leftover after parsing attributes in process `syz.1.275'. [ 103.350199][ T6564] syzkaller0: entered promiscuous mode [ 103.356807][ T6564] syzkaller0: entered allmulticast mode [ 103.625137][ T5778] Bluetooth: hci3: command 0x0c1a tx timeout [ 103.698080][ T5770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 103.707173][ T5778] Bluetooth: hci0: command 0x0c1a tx timeout [ 103.888289][ T6578] program syz.1.284 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 103.955859][ T6584] netlink: 348 bytes leftover after parsing attributes in process `syz.2.285'. [ 104.072652][ T6591] batadv_slave_0: entered promiscuous mode [ 104.083514][ T6589] batadv_slave_0: left promiscuous mode [ 104.584661][ T5778] Bluetooth: hci2: command 0x0c1a tx timeout [ 104.644929][ T6608] program syz.1.295 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 104.668407][ T6611] netlink: 328 bytes leftover after parsing attributes in process `syz.3.296'. [ 104.905352][ T5778] Bluetooth: hci1: command 0x0c1a tx timeout [ 105.121835][ T6631] netlink: 328 bytes leftover after parsing attributes in process `syz.0.306'. [ 105.534032][ T6650] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 105.704207][ T5778] Bluetooth: hci3: command 0x0c1a tx timeout [ 105.725465][ T6657] netlink: 328 bytes leftover after parsing attributes in process `syz.2.318'. [ 105.785708][ T5778] Bluetooth: hci0: command 0x0c1a tx timeout [ 105.852917][ T6663] loop0: detected capacity change from 0 to 4096 [ 105.887707][ T6663] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 106.015341][ T5770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 106.406909][ T6686] netlink: 320 bytes leftover after parsing attributes in process `syz.1.330'. [ 106.546751][ T6692] program syz.0.333 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 106.664647][ T5778] Bluetooth: hci2: command 0x0c1a tx timeout [ 106.880937][ T6707] syzkaller0: entered promiscuous mode [ 106.893238][ T6707] syzkaller0: entered allmulticast mode [ 106.969405][ T6713] netlink: 320 bytes leftover after parsing attributes in process `syz.0.342'. [ 106.984592][ T5778] Bluetooth: hci1: command 0x0c1a tx timeout [ 107.365517][ T6731] netlink: 128 bytes leftover after parsing attributes in process `syz.0.350'. [ 107.416554][ T6727] loop3: detected capacity change from 0 to 8192 [ 107.517380][ T6734] netlink: 320 bytes leftover after parsing attributes in process `syz.2.352'. [ 107.584205][ T6735] syzkaller0: entered promiscuous mode [ 107.631615][ T6735] syzkaller0: entered allmulticast mode [ 107.739496][ T6742] loop1: detected capacity change from 0 to 512 [ 107.784214][ T5778] Bluetooth: hci3: command 0x0c1a tx timeout [ 107.823966][ T6742] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 107.848832][ T6742] ext4 filesystem being mounted at /77/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 107.865138][ T5778] Bluetooth: hci0: command 0x0c1a tx timeout [ 107.980996][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 108.065122][ T6752] netlink: 128 bytes leftover after parsing attributes in process `syz.0.361'. [ 108.306213][ T6762] netlink: 320 bytes leftover after parsing attributes in process `syz.3.365'. [ 108.332082][ T6761] netlink: 32 bytes leftover after parsing attributes in process `syz.1.364'. [ 108.463659][ T6758] loop0: detected capacity change from 0 to 8192 [ 108.584443][ T6769] loop1: detected capacity change from 0 to 512 [ 108.695856][ T6769] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 108.744980][ T6769] ext4 filesystem being mounted at /80/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 108.755942][ T5778] Bluetooth: hci2: command 0x0c1a tx timeout [ 108.772607][ T6773] syzkaller0: entered promiscuous mode [ 108.794196][ T6773] syzkaller0: entered allmulticast mode [ 108.816206][ T6777] netlink: 128 bytes leftover after parsing attributes in process `syz.2.371'. [ 108.875577][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.078867][ T6787] netlink: 320 bytes leftover after parsing attributes in process `syz.2.375'. [ 109.367679][ T6798] loop1: detected capacity change from 0 to 512 [ 109.385580][ T6802] netlink: 128 bytes leftover after parsing attributes in process `syz.3.382'. [ 109.507934][ T6798] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 109.519046][ T6800] loop0: detected capacity change from 0 to 8192 [ 109.570955][ T6809] syzkaller0: entered promiscuous mode [ 109.583873][ T6809] syzkaller0: entered allmulticast mode [ 109.584676][ T6798] ext4 filesystem being mounted at /83/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 109.831618][ T6815] netlink: 320 bytes leftover after parsing attributes in process `syz.2.387'. [ 109.850154][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 110.171560][ T6827] loop1: detected capacity change from 0 to 4096 [ 110.193372][ T6827] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 110.242021][ T6827] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 110.365187][ T6832] syzkaller0: entered promiscuous mode [ 110.390372][ T6832] syzkaller0: entered allmulticast mode [ 110.610952][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 110.898431][ T6835] loop2: detected capacity change from 0 to 8192 [ 110.918985][ T6838] loop0: detected capacity change from 0 to 512 [ 110.977904][ T6838] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 110.999943][ T6838] ext4 filesystem being mounted at /97/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 111.141008][ T6844] netlink: 312 bytes leftover after parsing attributes in process `syz.1.398'. [ 111.305782][ T5770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 111.545953][ T6855] syzkaller0: entered promiscuous mode [ 111.551478][ T6855] syzkaller0: entered allmulticast mode [ 112.010609][ T6873] netlink: 312 bytes leftover after parsing attributes in process `syz.3.411'. [ 112.289954][ T6884] syzkaller0: entered promiscuous mode [ 112.304048][ T6884] syzkaller0: entered allmulticast mode [ 112.473569][ T6896] netlink: 312 bytes leftover after parsing attributes in process `syz.2.422'. [ 112.585025][ T6898] syzkaller0: entered promiscuous mode [ 112.590541][ T6898] syzkaller0: entered allmulticast mode [ 112.917521][ T6913] netlink: 'syz.3.431': attribute type 12 has an invalid length. [ 113.003444][ T6916] vxcan1: tx drop: invalid da for name 0x00000000000000f5 [ 113.096224][ T6922] netlink: 312 bytes leftover after parsing attributes in process `syz.3.434'. [ 113.355552][ T6930] syzkaller0: entered promiscuous mode [ 113.361081][ T6930] syzkaller0: entered allmulticast mode [ 114.135768][ T6961] loop3: detected capacity change from 0 to 8192 [ 114.659709][ T6990] capability: warning: `syz.0.464' uses deprecated v2 capabilities in a way that may be insecure [ 115.009337][ T6993] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 115.218307][ T7010] loop0: detected capacity change from 0 to 512 [ 115.249092][ T7010] EXT4-fs: journaled quota format not specified [ 115.844031][ T7039] loop3: detected capacity change from 0 to 2048 [ 115.875935][ T7041] loop1: detected capacity change from 0 to 128 [ 115.888770][ T7039] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 115.904661][ T7039] ext4 filesystem being mounted at /107/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 115.950678][ T7041] FAT-fs (loop1): Directory bread(block 32) failed [ 115.997768][ T7041] FAT-fs (loop1): Directory bread(block 33) failed [ 116.007805][ T7041] FAT-fs (loop1): Directory bread(block 34) failed [ 116.018540][ T7041] FAT-fs (loop1): Directory bread(block 35) failed [ 116.034508][ T7041] FAT-fs (loop1): Directory bread(block 36) failed [ 116.038450][ T7047] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.484: bg 0: block 345: padding at end of block bitmap is not set [ 116.046264][ T7041] FAT-fs (loop1): Directory bread(block 37) failed [ 116.062136][ T7041] FAT-fs (loop1): Directory bread(block 38) failed [ 116.069769][ T7041] FAT-fs (loop1): Directory bread(block 39) failed [ 116.076696][ T7041] FAT-fs (loop1): Directory bread(block 40) failed [ 116.084558][ T7041] FAT-fs (loop1): Directory bread(block 41) failed [ 116.100448][ T7047] EXT4-fs (loop3): Remounting filesystem read-only [ 116.135924][ T3533] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN [ 116.147657][ T3533] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 116.156087][ T3533] CPU: 1 PID: 3533 Comm: kworker/u4:10 Not tainted syzkaller #0 [ 116.163722][ T3533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 116.173784][ T3533] Workqueue: ext4-rsv-conversion ext4_end_io_rsv_work [ 116.180583][ T3533] RIP: 0010:ext4_ext_map_blocks+0x2d04/0x6800 [ 116.186666][ T3533] Code: 8b 04 24 89 18 89 9c 24 38 01 00 00 4c 8b 7c 24 10 4d 85 ff 0f 84 bd 00 00 00 e8 f7 e0 58 ff 49 8d 7f 08 48 89 f8 48 c1 e8 03 <42> 0f b6 04 30 84 c0 0f 85 3d 1e 00 00 41 0f b7 47 08 c1 e0 04 48 [ 116.206284][ T3533] RSP: 0018:ffffc9000cff7520 EFLAGS: 00010246 [ 116.212357][ T3533] RAX: 0000000000000000 RBX: fffffffffffffffb RCX: ffff88802e5d8000 [ 116.220333][ T3533] RDX: 0000000000000000 RSI: ffffffff8acac9e0 RDI: 0000000000000003 [ 116.228303][ T3533] RBP: ffffc9000cff77d0 R08: ffffffff911c659f R09: 1ffffffff2238cb3 [ 116.236259][ T3533] R10: dffffc0000000000 R11: fffffbfff2238cb4 R12: 0000000000000001 [ 116.244220][ T3533] R13: 1ffff920019feed0 R14: dffffc0000000000 R15: fffffffffffffffb [ 116.252192][ T3533] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 116.261105][ T3533] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 116.267669][ T3533] CR2: 00007f95d05ea4c0 CR3: 000000001fb6e000 CR4: 00000000003506e0 [ 116.275630][ T3533] Call Trace: [ 116.278903][ T3533] [ 116.281826][ T3533] ? rwsem_down_read_slowpath+0x880/0x880 [ 116.287534][ T3533] ? ext4_ext_release+0x10/0x10 [ 116.292371][ T3533] ? ext4_es_lookup_extent+0x60e/0xa00 [ 116.297826][ T3533] ext4_map_blocks+0x9e2/0x1b80 [ 116.302668][ T3533] ? ext4_issue_zeroout+0x250/0x250 [ 116.307859][ T3533] ? ext4_journal_check_start+0x178/0x250 [ 116.313586][ T3533] ? __ext4_journal_start_sb+0x259/0x560 [ 116.319212][ T3533] ext4_convert_unwritten_extents+0x2c2/0x5f0 [ 116.325268][ T3533] ? trace_ext4_fallocate_exit+0x1d0/0x1d0 [ 116.331058][ T3533] ? _raw_spin_unlock_irqrestore+0x86/0x120 [ 116.336938][ T3533] ? lockdep_hardirqs_on+0x98/0x150 [ 116.342118][ T3533] ? _raw_spin_unlock_irqrestore+0xc5/0x120 [ 116.347995][ T3533] ? _raw_spin_unlock+0x40/0x40 [ 116.352832][ T3533] ext4_convert_unwritten_io_end_vec+0xff/0x170 [ 116.359065][ T3533] ext4_end_io_rsv_work+0x2f5/0x690 [ 116.364271][ T3533] ? ext4_last_io_end_vec+0x70/0x70 [ 116.369452][ T3533] ? _raw_spin_unlock_irq+0x23/0x50 [ 116.374645][ T3533] ? process_scheduled_works+0x96f/0x15d0 [ 116.380363][ T3533] ? process_scheduled_works+0x96f/0x15d0 [ 116.386066][ T3533] process_scheduled_works+0xa5d/0x15d0 [ 116.391603][ T3533] ? worker_attach_to_pool+0x380/0x380 [ 116.397054][ T3533] ? assign_work+0x3d2/0x5d0 [ 116.401641][ T3533] worker_thread+0xa55/0xfc0 [ 116.406221][ T3533] kthread+0x2fa/0x390 [ 116.410278][ T3533] ? pr_cont_work+0x560/0x560 [ 116.414965][ T3533] ? kthread_blkcg+0xd0/0xd0 [ 116.419557][ T3533] ret_from_fork+0x48/0x80 [ 116.423970][ T3533] ? kthread_blkcg+0xd0/0xd0 [ 116.428544][ T3533] ret_from_fork_asm+0x11/0x20 [ 116.433295][ T3533] [ 116.436308][ T3533] Modules linked in: [ 116.441732][ T3533] ---[ end trace 0000000000000000 ]--- [ 116.447505][ T3533] RIP: 0010:ext4_ext_map_blocks+0x2d04/0x6800 [ 116.453724][ T3533] Code: 8b 04 24 89 18 89 9c 24 38 01 00 00 4c 8b 7c 24 10 4d 85 ff 0f 84 bd 00 00 00 e8 f7 e0 58 ff 49 8d 7f 08 48 89 f8 48 c1 e8 03 <42> 0f b6 04 30 84 c0 0f 85 3d 1e 00 00 41 0f b7 47 08 c1 e0 04 48 [ 116.473543][ T3533] RSP: 0018:ffffc9000cff7520 EFLAGS: 00010246 [ 116.479747][ T3533] RAX: 0000000000000000 RBX: fffffffffffffffb RCX: ffff88802e5d8000 [ 116.487913][ T3533] RDX: 0000000000000000 RSI: ffffffff8acac9e0 RDI: 0000000000000003 [ 116.496200][ T3533] RBP: ffffc9000cff77d0 R08: ffffffff911c659f R09: 1ffffffff2238cb3 [ 116.505258][ T3533] R10: dffffc0000000000 R11: fffffbfff2238cb4 R12: 0000000000000001 [ 116.513873][ T3533] R13: 1ffff920019feed0 R14: dffffc0000000000 R15: fffffffffffffffb [ 116.527745][ T3533] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 116.537380][ T3533] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 116.543975][ T3533] CR2: 00007ffa42773000 CR3: 000000001a2a3000 CR4: 00000000003506f0 [ 116.552198][ T3533] Kernel panic - not syncing: Fatal exception [ 116.558396][ T3533] Kernel Offset: disabled [ 116.562704][ T3533] Rebooting in 86400 seconds..