last executing test programs: 7.857341359s ago: executing program 3 (id=1161): sendmsg$inet(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)="b91701811a1e42b5ba4375aa85a84e4f9c95a6c555a1f5c9a528732192fc2f922cad1ab69dcd8fe6992886e8a95d7a0869644c5e1fd07d9e2867458a5d5b13c9e077ce1b8df3c8827af7b4f1f325f69f92ee22e5a8f58df2959db69d163a50f24485ecba1927b9eb6c227224ad5720a2d097fe61894aec1d383ed10e1b29006a82cd282b002c4b719584521d4d36f5be684cc81c0d8953d890bba2eb57b8f4816437e2af2415b7601bb030b5", 0xac}], 0x1}, 0x4000) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00'}) r1 = socket$alg(0x26, 0x5, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x0) bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000640)={0x0, &(0x7f0000000580)}, 0x10) sendmmsg(r1, &(0x7f0000000ec0)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000001400)}], 0x1}}, {{0x0, 0x0, &(0x7f0000000600)=[{0x0}, {&(0x7f0000000880)}], 0x2}}], 0x2, 0x11) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18) r2 = accept4(r1, 0x0, 0x0, 0x800) sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000540)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r4, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r5, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0) 7.672588707s ago: executing program 3 (id=1165): r0 = userfaultfd(0x801) syz_clone3(&(0x7f000000dd80)={0xa00400, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x110}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000140)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3}) syz_kvm_setup_syzos_vm$x86(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) io_setup(0x1, &(0x7f0000000b80)=0x0) io_submit(r1, 0x1, &(0x7f0000000800)=[0x0]) 7.110969582s ago: executing program 1 (id=1173): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r4 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/comedi4\x00', 0x2, 0x0) r5 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) connect$netrom(r5, 0x0, 0x0) ioctl$COMEDI_CHANINFO(r4, 0x80306403, &(0x7f0000000040)={0x80000000, 0x0, 0x0, 0x0}) 5.995321532s ago: executing program 3 (id=1181): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) r1 = dup(r0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @empty, 0x3}], 0x1c) sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='syz_tun\x00', 0x10) setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000500)={0x0, 0x2, 0x10}, 0xc) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x2, 0x0, 0x111, 0x5}}, 0x20) setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f00000005c0)={0x8, 0x0, 0xfff, 0xfffffffa}, 0x10) write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r1, &(0x7f00000001c0)={0x4, 0x8, 0xfa00, {0xffffffffffffffff, 0x6}}, 0x10) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000200)={0x0, @in={{0x2, 0x4e21, @empty}}, 0x5, 0x3, 0xf06, 0x1, 0x94, 0xfffffffd, 0x5}, 0x9c) setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000440)={0x1, 0x204, 0xc684, 0x9}, 0x10) sendto$inet6(r0, &(0x7f0000000100)="cd1a270a02c4d652", 0x8, 0x40004, 0x0, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x3, 0x0, 0x2, 0x5}}, 0x20) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f00000002c0)={0x0, @in6={{0xa, 0x4e60, 0xfffffff2, @empty}}, 0xffffec47, 0x9, 0xffff1896, 0x100, 0x25, 0x7fff}, 0x9c) 5.069749453s ago: executing program 3 (id=1189): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) ptrace$pokeuser(0x6, r0, 0x388, 0x800001b6) 4.27864836s ago: executing program 3 (id=1192): r0 = userfaultfd(0x801) syz_clone3(&(0x7f000000dd80)={0xa00400, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x110}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000140)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3}) syz_kvm_setup_syzos_vm$x86(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) io_setup(0x1, &(0x7f0000000b80)=0x0) io_submit(r1, 0x1, &(0x7f0000000800)=[0x0]) 3.553469332s ago: executing program 2 (id=1197): r0 = socket(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e24, 0x1, @empty, 0x65}, 0x1c) writev(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000440)="580000001400192340834b80040d8c560a067fbc45ff810500000000070058000b480400945f640094272d7061d328b92d0000000000008000f0fffeffe809000000fff5dd00000010000100040808004149004001040800", 0x58}], 0x1) 3.387422488s ago: executing program 4 (id=1198): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) fsetxattr(r0, &(0x7f00000000c0)=@known='system.posix_acl_default\x00', 0x0, 0x0, 0x3) 3.343370922s ago: executing program 1 (id=1199): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff000000000200000009000100"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)={{0x14}, [@NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFT_MSG_DELRULE={0x20, 0x8, 0xa, 0x5, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x101, 0x0, 0x0, {0x0, 0x0, 0x6}}], {0x14}}, 0x88}}, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$IPVS_CMD_SET_INFO(r3, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYRESOCT=r1, @ANYRES32=r4, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}, 0x1, 0x0, 0x0, 0x40800}, 0x0) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a00)=ANY=[@ANYBLOB="8000000010001fff000000000100000000000000", @ANYRES32=0x0, @ANYBLOB="0000000008440000580012800b00010067656e6576650000480002800500090001000000140007000000000000000000000000000000000105000d000000000005000c000100000005000400810000000500040009000000060005004e20000008000a00", @ANYRES32=r4], 0x80}, 0x1, 0x0, 0x0, 0x40000}, 0x80) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000060a09040000000000000000020000000900010073797a30000000000900020073797a32000000002c00048028000180080001006e6174001c0002800800024000000002080003400000000a08000140000001"], 0x80}}, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = socket$nl_sock_diag(0x10, 0x3, 0x4) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000340)='cgroup.freeze\x00', 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000300)='xen_mmu_set_pmd\x00', r7, 0x0, 0xf124}, 0x18) sendmsg$SOCK_DIAG_BY_FAMILY(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)={0x18, 0x14, 0x301, 0x0, 0x0, {0x1e}, [@INET_DIAG_REQ_BYTECODE={0x4}]}, 0x18}}, 0x0) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r5, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0x44, r8, 0x100, 0x70bd25, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x44}, 0x1, 0x0, 0x0, 0x4001}, 0x800) r9 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)={0x14, 0x34, 0x701, 0x3, 0x0, {0x6}}, 0x14}, 0x1, 0x0, 0x0, 0x44851}, 0x4000) 3.301087776s ago: executing program 2 (id=1200): r0 = socket$inet6(0xa, 0x80002, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x200c8004, &(0x7f00000003c0)={0xa, 0xe20, 0xffffffb6, @loopback, 0x7a554b3a}, 0x1c) sendto$inet6(r0, &(0x7f00000009c0)="c7cfcaaa22e10542fca5c0195350f15147657e0bfc59d383a47190db88690e6fedc3040ab5809ae02a54cd429cc3338c5afa0c9dce3f91950d1f567f358ac21154159130e88cbb6c43197813b2f23f3e442f80877490b393408142ebcfea6821f543e5ee9e27032e2b75d78f1b79f5a6bb6f0645e267770ef7e8f3a92148091217450ce8581e54223eeb6486205a209bf1fe854d211c03f8c3140fc3979d824082990d119473d20e94f253c9621fac339560ae46cb24b88bf2d01559bb658e343257b90f233b81bc5c398be3bbddb23a1e", 0xffd6, 0xc001, 0x0, 0xffffffffffffff0c) 3.247217552s ago: executing program 0 (id=1201): openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x3, 0x0) r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x101000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1fd, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000600)={0x0, 0x0, @pic={0x7, 0xfe, 0xe1, 0xc, 0x6, 0xd9, 0x40, 0x41, 0xfb, 0x5e, 0xc, 0x0, 0x8, 0x40, 0x1, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[0x6e, 0x0, 0x0, 0x20, 0x2, 0x10000, 0x106c, 0x80000001, 0x8000000000000, 0xc4af, 0x0, 0x8, 0x0, 0x4, 0x0, 0x8001], 0x4000, 0x3c4210}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 3.189456527s ago: executing program 4 (id=1202): ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000000)={0x10001, 0x3, 0xffffe000, 0x2000, &(0x7f0000ffd000/0x2000)=nil}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0) sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r2, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4810}, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 3.141038312s ago: executing program 2 (id=1203): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x10, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {}, {0xe, 0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x0) r1 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, &(0x7f00000001c0)={r2, @in={{0x2, 0x4e23, @empty}}}, 0x90) 3.06402141s ago: executing program 1 (id=1204): bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x8, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) ptrace$ARCH_GET_FS(0x1e, r1, 0x0, 0x1003) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0) msgget$private(0x0, 0x480) msgsnd(0x0, &(0x7f0000000340)=ANY=[@ANYRES16], 0x2000, 0x0) msgctl$IPC_SET(0x0, 0x1, &(0x7f00000004c0)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffe}, 0x0, 0x0, 0xb, 0x6f76, 0x3, 0x0, 0x1, 0x8, 0x7f, 0x3}) bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32, @ANYBLOB="0000000000000000b7"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[], 0x0}, 0x94) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000680)=ANY=[@ANYBLOB, @ANYRES16=r4, @ANYBLOB="0700000000000000000005000000180001801400020073797a5f74756e0000000000000000000800038004000380080005"], 0x3c}}, 0x0) 3.013040204s ago: executing program 2 (id=1205): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b80)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00'}, 0x94) sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x14) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_int(r1, 0x0, 0xb, &(0x7f00000000c0)=0x3, 0x4) syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x3, 0x0}, @local}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x0, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x68, 0x0, 0x0, 0x1, 0x0, @loopback, @loopback}, "00186371ae9b1c03"}}}}}, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x4000, &(0x7f0000000000)='%', 0x0, 0xd01, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) recvmsg(r1, 0x0, 0x40002002) 2.949086501s ago: executing program 0 (id=1206): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x8200, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CAP_X86_DISABLE_EXITS(r1, 0x4068aea3, &(0x7f00000000c0)={0x8f, 0x0, 0x2}) 1.950089599s ago: executing program 1 (id=1207): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000580)={0x1fe, 0x1, 0x0, 0x2000, &(0x7f00004ef000/0x2000)=nil}) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000000080000024d564b000000eccd"]) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000100)={"b46474f815e8d5535f0887c44335cc824dc6121bc72a77f532ff5dad4d643a9cab29d2310e04be14eb26c0af4985fe45e3b3b0680b3ec92725d74b9716e0f7c3119a2c9a0ae65ff4772e2e12733cb013c4308fe40863480747c0a7ddb9361b1578015ca1bb2c1677ebae096f08345476f567443842946ed946434c75916d1db83fe305920de65bfaf9bd940672216846cb16b8ae67cd3affc61375381f91b3b9f1cc5e38cafe5239aee71dcd481fbe1ecd2547ffbaad4469a74697c28fb9beefa6a5d736712a55eb9110c2cf7964062ba8cbc1c038e84f0f5db7fc7053118bf5221e3efa6fc3edb5d0ca3cde7054dd0751a332520aa8478b1775d552c5cc24d3c2df9eb333e5ca3aa06c1c2cf8526714f5caff2f55b41976fc20b64f1fc61d5b44f50953582a1825d32130a31abfeafd1987317879e29ac51b93c9659e023fff3ddb5e39dd19cc3ef1d883c78b9e073d08a9197fb3717df238b9831831214b186693be9dd2568bb77272e80df5dfed03e8c467627bedfbd93359a9f79a3aa37e873dc1357b37b43d813ea85267b0dc8b1c4cc51bd985328833beb2679b7fb762555bbea2da936b36f8f1673fd5f606b2b6eb23b72bf947206e8dbfeb40ca6f265a3485c8446e0f0da652860b88328073d2282c14b48a7774e62754a968b60e92205e8fafcdd70a55c3c4d1a4821ff44e6e3681f15ae091262e3a3290a24d8ceae30ebbf9d24287bb8a5d73c608d47d287f9e716cf02b4796a83fb0c05e45b89de9ef8bce834e6d7a0be6e30d2c66cb6e640cb01898454ad361bc0701d8fe56113335ae6adec59300db04691cc4a689034272a8e086a32ce7061b4f79fa8afbb48a6ce4b62bdc44af013d78980457e1fa61eb9204818606f4c3b03c0f33cd2a841ac9bc2b73151a96e31ab99e6ec969b5f2c3edd5f9abc69845e487af992758ba445368da93dae1d44360d52a534a88276b8aaf349841d8a4788c60408618437c442308dbf70efeda2e54e9b9e4fe5f76997c9dcb945a26bd75748c85d19ca8b99264dce50580e8d4dbda401dad7df31e9a7a6a3a83bfbdfb5394abd581ac0824fbcd75d2f5205c0b7c9188e6f26bfd97734d9a20433f6cdba9d14a5f32a4d97a57f4603b21146fd1aebf082e863d463c224ad623c17d8043d3bf083f0322408dd6ead6915ac6a4222ab51480eb6e11a8913348219515170d9df90d72d7363bbda3e327d19f98c0a856f98076380e788e602e8a2ae0a1930786874dc21a2e99abda15f35457cf1dcb440c4b41350d0eda352aad7f57a0adc8a6914da06460635ed21c4c11cd1a8ec778064c9f62efba2927828b23f94b16619a5520731c2c40ab8583c9f2e73233d74b84f4877ce6b35bb1180300"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 1.866173367s ago: executing program 2 (id=1208): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10) sendmmsg$inet(r0, &(0x7f0000002400)=[{{0x0, 0x0, &(0x7f00000006c0)}}, {{0x0, 0x0, &(0x7f0000000d40)=[{&(0x7f0000004340)="f6b328c40d4cc969a0513b8ffd72381d4ef4a89954104d4a81db2fa3c0f906a33482e2821787ac54c0c62da54d1c77255c322358d0e272be2ccacf8f689f0115afd7305a1ce39e8b54734910fd9257fc4d3d2f910d5b9965f73440df67940c76ddc3df03db0d78c28fc030a88d5060290aa8ec", 0x73}, {&(0x7f00000008c0)="20c048210440d8394cdcb9ee88a6b7584a3e07b1b1d67f42b2dda515bffbb8de861e60d4ee6dad628fdf1055f9a1", 0x2e}, {&(0x7f0000000940)="ee41e16fcc123e48fa04ef6edfc0fe23b7a87e1e837f1d1104d11ab1934265fd5cfbca479a17e7420ec938e84ad449c00288b126e26d6d80fb16c3c64ebcecade0b529986f4cfbcfa9c1c7138091b2ba9da4c7af757ac4d7990bfb36460a2eaaa3b786e6a14e457460793e0fdd4bdc6ef20050bc1ae8a5de6e0f84a007c740a9d6f1169a9b196652b0ee3e9d2dd06ceed8", 0x91}, {&(0x7f0000000a40)}], 0x4}}, {{0x0, 0x0, &(0x7f0000000200)}}, {{&(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000040)="5c57c9a878d24fb88e", 0x9}, {&(0x7f0000001140)="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", 0xffe}, {&(0x7f0000000180)="bb9d002b8cdcdcbc45f16fa15f2982f77f605a2a85bd4969d9025944b3005c99fe607b602a3644193fc1cebf839ed6023d397d220b5cd4e8055b32c3c6a9d3cdc80a7d1906011c86ee616d9add6c4bdc13385fabdbfd52cbf6073d505c3b18c771be035590f85ddb365339ba", 0x6c}], 0x3, &(0x7f0000000200)=[@ip_ttl={{0x14, 0x0, 0x2, 0x9}}], 0x18}}, {{0x0, 0x0, &(0x7f0000000c40)=[{&(0x7f00000002c0)="97c31d9b44993495f83a8389d09f935af35c580a25efe6a076ae33e264637aab74fa89042536c27928462646e73c62b8075d3b7e9118945f0fdb9a5a797c2471b29a009e5e2ddd8580317c02e3a98a751e693a47bb215ea5f5d812da18ad3c17da78e70bcc797944e4b514910552dcbdd74cb9829c97b0cf5b5a9cc9838837691a8da1890528962c1b877fc40f6b711ef28a69efe07f970fffa29d5285aca014f3d448e174e249694e5009a673d2c34ff307aecb98d003aec923247117cf29be4d2e1ede08f888854a2b26ab451f717e64", 0xd1}, {&(0x7f0000000240)="5b70efe62ae999dd", 0x8}, {&(0x7f00000003c0)="9dde88bbdca89112d6bde1123e", 0xd}, {&(0x7f0000000700)="4b9bdff5bf58447ced4083bf5d0fbd3d2d6763b0571d93d64ad58a43e7c0c65af71d78ffa3747b1c24db70ec0cbb8fb6a7e39f6f47c365b275e26e7a0103e8106a4f5f64e6c226b1f5ceb3401bf68a09a3b027e3680b16e912838cd071b8bd0165ca87ff2d8646b2788250f4da1b537ef241b9823b86174d274b5020e59485f02dc60172bfa318e786545d544fce5eee4881479bf1fd", 0x96}, {&(0x7f0000000800)="f724a5ce014ce22bb6cc618afc7783f7cdac7ec03d74a0c6f5db43a3dd2f5e676192e2c7203b513c77170eef12b7c6769a0fe96bf46dc661803a3c03bc9794074beb40bfc67c4bf778f31fd4a4a623849dff1ede7cc0cc3d65ed909ab6e1a7a9734842f28a20a1f146c8aef1942326f7f6da6e282a94142e7c827f22118e733439710940386ca66726d6a5c67b41ee2c8f766f2f44361d63fdd66210c6f98b27c384434f801e010f20", 0xa9}, {&(0x7f0000000500)="80350252ef88340fafd7fd66a968dbfdc68109afb39b90097f7a32eb383538cb5f0dcd3c9ab708d5bb29c6125f2f510c077cc33490d2f998df0e7703b596ef27e4236a9ae4571bbec60d91b440384f33dee468a18d2a277b7722434c33cf51c7efad7b36fcd4e27c1abbce7fc3679c", 0x6f}, {0x0}, {&(0x7f0000000a80)="e9f8c8183b54c7bd6c0d9b", 0xb}], 0x8}}, {{&(0x7f00000005c0)={0x2, 0x4e24, @local}, 0x10, &(0x7f0000002380)=[{&(0x7f0000000d80)="81590c2b", 0x4}, {0x0}], 0x2}}], 0x6, 0xc0) 1.825825081s ago: executing program 3 (id=1209): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r4 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/comedi4\x00', 0x2, 0x0) r5 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) connect$netrom(r5, 0x0, 0x0) ioctl$COMEDI_CHANINFO(r4, 0x80306403, &(0x7f0000000040)={0x80000000, 0x0, 0x0, 0x0}) 1.769080957s ago: executing program 4 (id=1210): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[], 0x30}}, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000004700)={'team0\x00', 0x0}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200440e5}, 0x0) r4 = socket$netlink(0x10, 0x3, 0x10) bpf$MAP_CREATE(0x0, 0x0, 0x48) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) syz_open_procfs$namespace(0x0, 0xfffffffffffffffe) bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) sendmsg$TEAM_CMD_OPTIONS_SET(r1, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f0000000500)=ANY=[@ANYBLOB="a0000000", @ANYRES16=r2, @ANYBLOB="050424bd7000fedbdf250100000008000100", @ANYRES32=r3, @ANYBLOB="8400028040000100240001006d6f6465000000000000000000000000000000000000000000000000000000000500030005000000100004006c6f616462616c616e63650040000100240001006c"], 0xa0}, 0x1, 0x0, 0x0, 0x4040800}, 0x24040084) 1.768942097s ago: executing program 0 (id=1211): socket(0xa, 0x1, 0x0) r0 = socket$netlink(0x10, 0x3, 0x4) writev(r0, &(0x7f0000000000)=[{&(0x7f0000000440)="580000001400192340834b80040d8c560a067fbc45ff810500000000070058000b480400945f640094272d7061d328b92d0000000000008000f0fffeffe809000000fff5dd00000010000100040808004149004001040800", 0x58}], 0x1) 1.658536907s ago: executing program 2 (id=1212): timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300)) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x3, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x200000b, 0x204031, 0xffffffffffffffff, 0xffffd000) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x200) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000009c0)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 1.579494055s ago: executing program 1 (id=1213): syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00000ab000/0x18000)=nil, &(0x7f00000001c0)=[@text64={0x40, &(0x7f0000000080)="470f23fc6541fc48b8e7320000000000000f23d80f21f80f23e1f8f30f1edd0f2221c74c24022063800000002c24f30f556797c483fd005b02ea6426470f01cf65666466430f3833af00580000", 0x4d}], 0x1, 0x3e, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) io_uring_setup(0x625d, 0x0) r2 = dup(r1) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr-aes-aesni\x00'}, 0x58) syz_kvm_setup_cpu$x86(r2, r0, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, 0x0}], 0x1, 0x72, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 1.535078719s ago: executing program 0 (id=1214): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a3000000000090003007379"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)={{0x14}, [@NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFT_MSG_DELRULE={0x20, 0x8, 0xa, 0x5, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x101, 0x0, 0x0, {0x0, 0x0, 0x6}}], {0x14}}, 0x88}}, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$IPVS_CMD_SET_INFO(r3, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYRESOCT=r1, @ANYRES32=r4, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}, 0x1, 0x0, 0x0, 0x40800}, 0x0) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a00)=ANY=[@ANYBLOB="8000000010001fff000000000100000000000000", @ANYRES32=0x0, @ANYBLOB="0000000008440000580012800b00010067656e6576650000480002800500090001000000140007000000000000000000000000000000000105000d000000000005000c000100000005000400810000000500040009000000060005004e20000008000a00", @ANYRES32=r4], 0x80}, 0x1, 0x0, 0x0, 0x40000}, 0x80) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000060a09040000000000000000020000000900010073797a30000000000900020073797a32000000002c00048028000180080001006e6174001c0002800800024000000002080003400000000a08000140000001"], 0x80}}, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = socket$nl_sock_diag(0x10, 0x3, 0x4) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000340)='cgroup.freeze\x00', 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000300)='xen_mmu_set_pmd\x00', r7, 0x0, 0xf124}, 0x18) sendmsg$SOCK_DIAG_BY_FAMILY(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)={0x18, 0x14, 0x301, 0x0, 0x0, {0x1e}, [@INET_DIAG_REQ_BYTECODE={0x4}]}, 0x18}}, 0x0) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r5, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0x44, r8, 0x100, 0x70bd25, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x44}, 0x1, 0x0, 0x0, 0x4001}, 0x800) r9 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)={0x14, 0x34, 0x701, 0x3, 0x0, {0x6}}, 0x14}, 0x1, 0x0, 0x0, 0x44851}, 0x4000) 1.463585737s ago: executing program 4 (id=1215): r0 = syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff) prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x6, 0x1, 0x7, 0x7fffffff}]}) process_vm_writev(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 1.193028743s ago: executing program 4 (id=1216): openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x3, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x101000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000600)={0x0, 0x0, @pic={0x7, 0xfe, 0xe1, 0xc, 0x6, 0xd9, 0x40, 0x41, 0xfb, 0x5e, 0xc, 0x0, 0x8, 0x40, 0x1, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[0x6e, 0x0, 0x0, 0x20, 0x2, 0x10000, 0x106c, 0x80000001, 0x8000000000000, 0xc4af, 0x0, 0x8, 0x0, 0x4, 0x0, 0x8001], 0x4000, 0x3c4210}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 1.187172014s ago: executing program 0 (id=1217): bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x8, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) ptrace$ARCH_GET_FS(0x1e, r1, 0x0, 0x1003) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0) msgget$private(0x0, 0x480) msgsnd(0x0, &(0x7f0000000340)=ANY=[@ANYRES16], 0x2000, 0x0) msgctl$IPC_SET(0x0, 0x1, &(0x7f00000004c0)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffe}, 0x0, 0x0, 0xb, 0x6f76, 0x3, 0x0, 0x1, 0x8, 0x7f, 0x3}) bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32, @ANYBLOB="0000000000000000b7"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[], 0x0}, 0x94) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000680)=ANY=[@ANYBLOB='<\x00', @ANYRES16=r4, @ANYBLOB="0700000000000000000005000000180001801400020073797a5f74756e0000000000000000000800038004000380080005"], 0x3c}}, 0x0) 1.081570754s ago: executing program 1 (id=1218): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x7cb641, 0x0) close(r2) socket$netlink(0x10, 0x3, 0x0) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast}) r3 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) r4 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r4, 0x0, 0x40000) recvmmsg(r4, &(0x7f0000001480)=[{{0x0, 0x0, &(0x7f0000000bc0)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f0000000540)=""/189, 0xbd}, {&(0x7f0000001ac0)=""/4096, 0x1000}, {&(0x7f0000000940)=""/74, 0x4a}], 0x4}, 0x5d}], 0x1b00, 0x10022, 0x0) 57.027065ms ago: executing program 4 (id=1219): r0 = userfaultfd(0x801) syz_clone3(&(0x7f000000dd80)={0xa00400, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x110}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000140)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3}) syz_kvm_setup_syzos_vm$x86(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) io_setup(0x1, &(0x7f0000000b80)=0x0) io_submit(r1, 0x1, &(0x7f0000000800)=[0x0]) 0s ago: executing program 0 (id=1220): mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) r0 = socket(0xa, 0x2, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x1a, &(0x7f00000000c0)={@multicast1, @multicast1}, 0xc) kernel console output (not intermixed with test programs): [ 80.730174][ T4281] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 80.740322][ T4281] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 80.751254][ T4281] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 80.775727][ T4264] 8021q: adding VLAN 0 to HW filter on device team0 [ 80.788944][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 80.799002][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 80.808194][ T4281] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 80.824423][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 80.836139][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 80.845961][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.853438][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 80.891980][ T4266] 8021q: adding VLAN 0 to HW filter on device bond0 [ 80.899214][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 80.942915][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 80.951750][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 80.960769][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.967939][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 80.977247][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 80.988040][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 81.008220][ T4265] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.029030][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 81.039294][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 81.048742][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 81.057684][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 81.077056][ T4266] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.098660][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 81.107630][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 81.117685][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 81.126851][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.134024][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.142701][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 81.151743][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 81.165405][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 81.174683][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 81.183616][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 81.192072][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 81.200816][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 81.232465][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 81.242122][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 81.250893][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 81.261416][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 81.270251][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.277427][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.294177][ T4270] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.304776][ T4265] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.317359][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 81.340063][ T4281] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.356331][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 81.369947][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 81.396806][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.404043][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.418021][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 81.427528][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 81.442040][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.449242][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.489508][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 81.501174][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 81.514147][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 81.527797][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 81.536679][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 81.545282][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 81.555174][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 81.571140][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 81.584000][ T4270] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.602750][ T4281] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.629227][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 81.649917][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 81.673696][ T32] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.680884][ T32] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.692946][ T4287] Bluetooth: hci1: command 0x041b tx timeout [ 81.717136][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 81.737945][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 81.757371][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 81.767578][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 81.780877][ T4287] Bluetooth: hci3: command 0x041b tx timeout [ 81.780897][ T4278] Bluetooth: hci0: command 0x041b tx timeout [ 81.789282][ T4286] Bluetooth: hci4: command 0x041b tx timeout [ 81.793700][ T4285] Bluetooth: hci2: command 0x041b tx timeout [ 81.801572][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 81.877809][ T4266] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 81.895647][ T4266] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 81.914226][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 81.929198][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 81.938149][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 81.950074][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 81.959044][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 81.968646][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 81.978028][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 81.989507][ T32] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.996674][ T32] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.006187][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 82.015491][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 82.024679][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 82.034623][ T32] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.041744][ T32] bridge0: port 1(bridge_slave_0) entered forwarding state [ 82.050326][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 82.058421][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 82.066792][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 82.076025][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 82.085205][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 82.095336][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 82.109956][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 82.118896][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 82.133331][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 82.141114][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 82.150987][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 82.175622][ T4264] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 82.208499][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 82.220130][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 82.230265][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 82.240127][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 82.250469][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 82.260072][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 82.270825][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 82.280202][ T32] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.287367][ T32] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.301565][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 82.311054][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 82.324457][ T4265] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 82.379451][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 82.394564][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 82.443174][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 82.451947][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 82.494697][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 82.510142][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 82.520806][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 82.536141][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 82.549269][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 82.560555][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 82.573790][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 82.588954][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 82.611994][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 82.627225][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 82.652965][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 82.662818][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 82.683049][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 82.703061][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 82.730225][ T4270] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 82.755794][ T4281] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 82.833262][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 82.853516][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 82.894071][ T4264] device veth0_vlan entered promiscuous mode [ 82.908144][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 82.933353][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 82.953237][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 82.961010][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 82.987899][ T4265] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.001759][ T4264] device veth1_vlan entered promiscuous mode [ 83.039749][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 83.054889][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 83.073990][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 83.081555][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 83.108730][ T4266] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.128826][ T4264] device veth0_macvtap entered promiscuous mode [ 83.157448][ T4264] device veth1_macvtap entered promiscuous mode [ 83.175001][ T4349] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 83.186862][ T4349] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 83.197252][ T4349] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 83.211253][ T4349] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 83.235214][ T4349] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 83.245943][ T4349] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 83.301628][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 83.324585][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 83.366027][ T4265] device veth0_vlan entered promiscuous mode [ 83.389178][ T4264] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 83.398396][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 83.409431][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 83.419176][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 83.428222][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 83.443102][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 83.451335][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 83.460647][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 83.469462][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 83.486172][ T4264] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 83.507863][ T4266] device veth0_vlan entered promiscuous mode [ 83.516935][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 83.534547][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 83.543114][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 83.551968][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 83.568094][ T4264] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.578465][ T4264] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.587744][ T4264] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.597049][ T4264] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.620512][ T4281] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.629644][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 83.638737][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 83.647575][ T4265] device veth1_vlan entered promiscuous mode [ 83.678014][ T4266] device veth1_vlan entered promiscuous mode [ 83.692098][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 83.700488][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 83.709414][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 83.718356][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 83.736880][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 83.745982][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 83.782899][ T4285] Bluetooth: hci1: command 0x040f tx timeout [ 83.810046][ T4270] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.819438][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 83.834566][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 83.853071][ T4285] Bluetooth: hci3: command 0x040f tx timeout [ 83.859161][ T4285] Bluetooth: hci4: command 0x040f tx timeout [ 83.869326][ T4278] Bluetooth: hci2: command 0x040f tx timeout [ 83.876517][ T4282] Bluetooth: hci0: command 0x040f tx timeout [ 83.898530][ T4265] device veth0_macvtap entered promiscuous mode [ 83.917953][ T4281] device veth0_vlan entered promiscuous mode [ 83.925514][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 83.934732][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 83.944441][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 83.953618][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 83.962130][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 83.977338][ T56] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.995070][ T4265] device veth1_macvtap entered promiscuous mode [ 84.013847][ T56] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.030395][ T4281] device veth1_vlan entered promiscuous mode [ 84.046659][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 84.056595][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 84.064766][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 84.072688][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 84.080804][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 84.096648][ T4266] device veth0_macvtap entered promiscuous mode [ 84.113952][ T4266] device veth1_macvtap entered promiscuous mode [ 84.125687][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 84.146565][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 84.160766][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 84.171044][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 84.223386][ T4265] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.239894][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.259279][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.268271][ T4265] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.285350][ T4265] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 84.312614][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 84.320813][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 84.329352][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 84.340889][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 84.354553][ T4281] device veth0_macvtap entered promiscuous mode [ 84.367086][ T4281] device veth1_macvtap entered promiscuous mode [ 84.380538][ T4265] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.396323][ T4265] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.410674][ T4265] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.426866][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 84.440648][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 84.452646][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 84.461048][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 84.477963][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 84.489335][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 84.541702][ T4265] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.551870][ T4265] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.561963][ T4265] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.571365][ T4265] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.587152][ T4266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.597996][ T4266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.608462][ T4266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.619279][ T4266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.636316][ T4266] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 84.663533][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 84.672836][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 84.681750][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 84.691004][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 84.702505][ T4266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.720236][ T4266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.730421][ T4266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.742981][ T4266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.754975][ T4266] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.800232][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 84.811643][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 84.832070][ T4281] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.848428][ T4281] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.858543][ T4281] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.874508][ T4281] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.886804][ T4281] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.894268][ T4388] loop0: detected capacity change from 0 to 4096 [ 84.901167][ T4281] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.922803][ T4388] ntfs3: loop0: Different NTFS' sector size (1024) and media sector size (512) [ 84.939430][ T4281] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 84.948979][ T4266] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.962911][ T4266] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.973564][ T4266] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.003477][ T4266] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.033452][ T26] audit: type=1800 audit(1760594497.454:2): pid=4388 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1" name="file1" dev="loop0" ino=30 res=0 errno=0 [ 85.065163][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 85.080706][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 85.089957][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 85.104213][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 85.120602][ T4281] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 85.143669][ T4281] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 85.157873][ T4281] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 85.178154][ T4281] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 85.188203][ T4281] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 85.204268][ T4281] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 85.219931][ T4281] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 85.247246][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 85.265355][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 85.275485][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 85.284714][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 85.300139][ T4281] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.311598][ T4281] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.322092][ T4281] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.331092][ T4281] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.347580][ T4270] device veth0_vlan entered promiscuous mode [ 85.449580][ T4270] device veth1_vlan entered promiscuous mode [ 85.574690][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.619071][ T56] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.628899][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.631057][ T56] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.646998][ T4270] device veth0_macvtap entered promiscuous mode [ 85.660910][ T4349] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 85.680672][ T4349] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 85.697266][ T4349] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 85.710779][ T4349] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 85.726957][ T4349] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 85.750134][ T4270] device veth1_macvtap entered promiscuous mode [ 85.763803][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.793017][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.827061][ T4349] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 85.836631][ T56] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.843870][ T4349] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 85.853014][ T4285] Bluetooth: hci1: command 0x0419 tx timeout [ 85.880947][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.899074][ T4270] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 85.915586][ T56] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.929704][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.937291][ T4285] Bluetooth: hci0: command 0x0419 tx timeout [ 85.937331][ T4285] Bluetooth: hci2: command 0x0419 tx timeout [ 85.943100][ T4286] Bluetooth: hci4: command 0x0419 tx timeout [ 85.956070][ T4285] Bluetooth: hci3: command 0x0419 tx timeout [ 85.968584][ T4270] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 85.979080][ T4270] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 85.990372][ T4270] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 86.000725][ T4270] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 86.011546][ T4270] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 86.022672][ T4270] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 86.033426][ T4270] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 86.049640][ T4270] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 86.073222][ T4349] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 86.084993][ T4349] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 86.094023][ T4349] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 86.103735][ T4349] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 86.118271][ T4394] loop0: detected capacity change from 0 to 32768 [ 86.124432][ T4270] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 86.140397][ T4270] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 86.151386][ T4270] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 86.161174][ T4394] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.7 (4394) [ 86.162285][ T4270] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 86.186031][ T4270] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 86.199125][ T4270] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 86.209375][ T4270] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 86.220126][ T4270] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 86.241944][ T4394] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 86.245788][ T4270] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 86.273293][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 86.298728][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 86.339341][ T4394] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm [ 86.357483][ T4394] BTRFS info (device loop0): setting nodatacow, compression disabled [ 86.374256][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.375084][ T4394] BTRFS info (device loop0): disabling tree log [ 86.390322][ T4270] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.409141][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.417645][ T4270] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.428920][ T4270] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.438401][ T4394] BTRFS info (device loop0): turning on sync discard [ 86.442186][ T4270] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.457911][ T4394] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 86.479236][ T4349] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 86.488619][ T4394] BTRFS info (device loop0): force zstd compression, level 3 [ 86.538824][ T4394] BTRFS info (device loop0): using free space tree [ 86.716554][ T32] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.738919][ T129] cfg80211: failed to load regulatory.db [ 86.755829][ T32] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.793489][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 86.887266][ T4417] loop3: detected capacity change from 0 to 128 [ 86.910759][ T4417] EXT4-fs: Ignoring removed nomblk_io_submit option [ 86.946252][ T4394] BTRFS info (device loop0): enabling ssd optimizations [ 86.951229][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.994280][ T4417] EXT4-fs (loop3): Test dummy encryption mode enabled [ 87.025821][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 87.060490][ T4421] loop1: detected capacity change from 0 to 16 [ 87.091929][ T4417] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 87.114218][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 87.118316][ T4421] MTD: Attempt to mount non-MTD device "/dev/loop1" [ 87.194919][ T4417] ext4 filesystem being mounted at /0/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 87.305083][ T4417] EXT4-fs (loop3): re-mounted. Quota mode: none. [ 87.359652][ T4264] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 87.378366][ T4417] ======================================================= [ 87.378366][ T4417] WARNING: The mand mount option has been deprecated and [ 87.378366][ T4417] and is ignored by this kernel. Remove the mand [ 87.378366][ T4417] option from the mount to silence this warning. [ 87.378366][ T4417] ======================================================= [ 87.580198][ T4406] loop2: detected capacity change from 0 to 32768 [ 87.641152][ T4406] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.3 (4406) [ 87.711768][ T4417] EXT4-fs: Ignoring removed nomblk_io_submit option [ 87.748656][ T4417] EXT4-fs (loop3): re-mounted. Quota mode: none. [ 87.757612][ T4406] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 87.794648][ T4406] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 87.832335][ T4406] BTRFS info (device loop2): turning off barriers [ 87.838840][ T4406] BTRFS info (device loop2): setting nodatasum [ 87.882318][ T4406] BTRFS info (device loop2): use zlib compression, level 3 [ 87.922213][ T4406] BTRFS info (device loop2): using free space tree [ 87.925330][ T4281] EXT4-fs (loop3): unmounting filesystem. [ 88.387575][ T26] audit: type=1800 audit(1760594500.804:3): pid=4406 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.3" name="file1" dev="loop2" ino=260 res=0 errno=0 [ 88.452246][ T26] audit: type=1800 audit(1760594500.824:4): pid=4406 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.3" name="file1" dev="loop2" ino=260 res=0 errno=0 [ 88.490858][ T4452] loop3: detected capacity change from 0 to 4096 [ 88.517216][ T4452] ntfs3: Unknown parameter 'windows_names' [ 88.598380][ T4426] loop4: detected capacity change from 0 to 32768 [ 88.676287][ T4428] loop1: detected capacity change from 0 to 32768 [ 88.770991][ T4426] XFS (loop4): Mounting V5 Filesystem [ 88.787637][ T26] audit: type=1800 audit(1760594501.204:5): pid=4428 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.10" name="file1" dev="loop1" ino=7 res=0 errno=0 [ 88.955366][ T4444] loop0: detected capacity change from 0 to 32768 [ 89.014772][ T4426] XFS (loop4): Ending clean mount [ 89.059984][ T4426] XFS (loop4): Quotacheck needed: Please wait. [ 89.126393][ T4444] XFS (loop0): Mounting V5 Filesystem [ 89.362985][ T4444] XFS (loop0): Ending clean mount [ 89.443187][ T4426] XFS (loop4): Quotacheck: Done. [ 89.554362][ T4436] XFS (loop0): WARNING: Reset corrupted AGFL on AG 0. 1 blocks leaked. Please unmount and run xfs_repair. [ 89.575650][ T4266] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 89.597390][ T26] audit: type=1800 audit(1760594502.014:6): pid=4444 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.9" name="file1" dev="loop0" ino=6153 res=0 errno=0 [ 89.630094][ T4464] loop3: detected capacity change from 0 to 32768 [ 89.889001][ T4464] ocfs2: Mounting device (7,3) on (node local, slot 0) with writeback data mode. [ 89.921731][ T11] (kworker/u4:1,11,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #72: rec_len % 4 != 0 - offset=16, inode=66, rec_len=491, name_len=2 [ 90.065219][ T4264] XFS (loop0): Unmounting Filesystem [ 90.075567][ T4270] XFS (loop4): Unmounting Filesystem [ 90.310183][ T4281] ocfs2: Unmounting device (7,3) on (node local) [ 90.470449][ T4496] loop1: detected capacity change from 0 to 128 [ 90.561584][ T4496] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 90.632551][ T4496] hpfs: filesystem error: improperly stopped [ 90.638647][ T4496] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 90.682163][ T4496] hpfs: You really don't want any checks? You are crazy... [ 90.710064][ T4496] hpfs: hpfs_map_sector(): read error [ 90.722606][ T4496] hpfs: code page support is disabled [ 90.747571][ T4496] hpfs: hpfs_map_4sectors(): unaligned read [ 90.779617][ T4496] hpfs: hpfs_map_4sectors(): unaligned read [ 90.822272][ T4496] hpfs: filesystem error: unable to find root dir [ 91.055590][ T4504] loop0: detected capacity change from 0 to 64 [ 91.154228][ T4502] loop4: detected capacity change from 0 to 2048 [ 91.284085][ T4502] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 91.450736][ T4498] loop3: detected capacity change from 0 to 32768 [ 91.550200][ T4498] ocfs2: Mounting device (7,3) on (node local, slot 0) with writeback data mode. [ 91.641997][ T4500] loop2: detected capacity change from 0 to 32768 [ 91.670644][ T4500] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.14 (4500) [ 91.788485][ T4500] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 91.861410][ T4500] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 91.894094][ T4514] loop4: detected capacity change from 0 to 1024 [ 91.905246][ T4500] BTRFS info (device loop2): using free space tree [ 91.925510][ T4281] ocfs2: Unmounting device (7,3) on (node local) [ 91.988308][ T4514] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 92.113279][ T4514] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 92.238532][ T4506] loop1: detected capacity change from 0 to 32768 [ 92.399697][ T4506] XFS (loop1): Mounting V5 Filesystem [ 92.454928][ T4506] XFS (loop1): Ending clean mount [ 92.470739][ T4506] XFS (loop1): Quotacheck needed: Please wait. [ 92.522957][ T4514] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3836: comm syz.4.21: Allocating blocks 449-513 which overlap fs metadata [ 92.542724][ T4506] XFS (loop1): Quotacheck: Done. [ 92.594826][ T4500] BTRFS info (device loop2): enabling ssd optimizations [ 92.648323][ T4510] loop0: detected capacity change from 0 to 32768 [ 92.673904][ T4510] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.20 (4510) [ 92.690920][ T4526] loop3: detected capacity change from 0 to 2048 [ 92.722568][ T4514] EXT4-fs (loop4): Remounting filesystem read-only [ 92.738140][ T4510] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 92.771143][ T4526] loop3: p1 < > p3 p4 < > [ 92.779962][ T4513] EXT4-fs (loop4): pa ffff888070015c40: logic 0, phys. 193, len 20 [ 92.788407][ T4513] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:4876: group 0, free 4, pa_free 8 [ 92.802493][ T4526] loop3: partition table partially beyond EOD, truncated [ 92.819587][ T4266] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 92.824351][ T4526] loop3: p1 start 327424 is beyond EOD, truncated [ 92.844520][ T4510] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm [ 92.856945][ T4510] BTRFS info (device loop0): setting nodatacow, compression disabled [ 92.872209][ T4526] loop3: p3 size 16777216 extends beyond EOD, truncated [ 92.880114][ T4513] EXT4-fs (loop4): Remounting filesystem read-only [ 92.887399][ T4510] BTRFS info (device loop0): disabling tree log [ 92.929286][ T4510] BTRFS info (device loop0): turning on sync discard [ 92.997072][ T4510] BTRFS info (device loop0): enabling disk space caching [ 93.038240][ T4510] BTRFS warning (device loop0): 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 93.089985][ T4510] BTRFS info (device loop0): trying to use backup root at mount time [ 93.164149][ T4510] BTRFS info (device loop0): disabling log replay at mount time [ 93.236394][ T4379] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 9 /dev/loop2 scanned by udevd (4379) [ 93.250321][ T4510] BTRFS error (device loop0): cannot disable free space tree [ 93.263523][ T4270] EXT4-fs (loop4): unmounting filesystem. [ 93.346314][ T4510] BTRFS error (device loop0): open_ctree failed: -22 [ 93.411183][ T4391] udevd[4391]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory [ 93.460491][ T4554] udevd[4554]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory [ 93.628854][ T4558] loop3: detected capacity change from 0 to 2048 [ 93.679276][ T4265] XFS (loop1): Unmounting Filesystem [ 93.743186][ T4558] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 93.854098][ T26] audit: type=1800 audit(1760594506.274:7): pid=4558 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.25" name="file1" dev="loop3" ino=1415 res=0 errno=0 [ 94.600175][ T4569] loop3: detected capacity change from 0 to 64 [ 94.801606][ T4571] loop1: detected capacity change from 0 to 4096 [ 94.881686][ T4571] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 94.911700][ T4555] loop4: detected capacity change from 0 to 40427 [ 94.955794][ T4555] F2FS-fs (loop4): Unrecognized mount option "age_extent_cache" or missing value [ 95.035300][ T4573] loop3: detected capacity change from 0 to 2048 [ 95.120237][ T4573] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 95.375495][ T4565] loop2: detected capacity change from 0 to 32768 [ 95.389938][ T4575] overlayfs: missing 'lowerdir' [ 95.481580][ T4265] ntfs3: loop1: ntfs_evict_inode r=5 failed, -22. [ 95.518120][ T4565] XFS (loop2): Mounting V5 Filesystem [ 95.530906][ T4567] loop0: detected capacity change from 0 to 32768 [ 95.714465][ T4565] XFS (loop2): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51. [ 95.772826][ T4565] XFS (loop2): Starting recovery (logdev: internal) [ 95.803151][ T4567] XFS (loop0): DAX unsupported by block device. Turning off DAX. [ 95.826175][ T4567] XFS (loop0): Mounting V5 Filesystem [ 95.897066][ T4565] XFS (loop2): Ending recovery (logdev: internal) [ 95.976778][ T4567] XFS (loop0): Ending clean mount [ 96.024477][ T4567] XFS (loop0): Quotacheck needed: Please wait. [ 96.182720][ T4567] XFS (loop0): Quotacheck: Done. [ 96.238470][ T4266] XFS (loop2): Unmounting Filesystem [ 96.450032][ T4589] loop4: detected capacity change from 0 to 32768 [ 96.586642][ T4589] XFS (loop4): Mounting V5 Filesystem [ 96.600771][ T4595] loop1: detected capacity change from 0 to 32768 [ 96.618772][ T4595] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.35 (4595) [ 96.693176][ T4595] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 96.710170][ T4589] XFS (loop4): Ending clean mount [ 96.737320][ T4589] XFS (loop4): Quotacheck needed: Please wait. [ 96.763359][ T4595] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 96.812812][ T4595] BTRFS info (device loop1): setting nodatacow, compression disabled [ 96.827692][ T4589] XFS (loop4): Quotacheck: Done. [ 96.839018][ T4595] BTRFS info (device loop1): use no compression [ 96.863024][ T4595] BTRFS info (device loop1): turning on flush-on-commit [ 96.880310][ T4595] BTRFS info (device loop1): force clearing of disk cache [ 96.922606][ T4595] BTRFS info (device loop1): enabling ssd optimizations [ 96.950293][ T4595] BTRFS info (device loop1): using spread ssd allocation scheme [ 97.000152][ T4595] BTRFS info (device loop1): turning on async discard [ 97.036562][ T4595] BTRFS info (device loop1): using free space tree [ 97.238904][ T4264] XFS (loop0): Unmounting Filesystem [ 97.365662][ T4606] loop2: detected capacity change from 0 to 32768 [ 97.534321][ T4265] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 97.563828][ T4606] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 97.849401][ T4270] XFS (loop4): Unmounting Filesystem [ 97.879431][ T4266] (syz-executor,4266,1):ocfs2_inode_is_valid_to_delete:872 ERROR: Skipping delete of system file 72 [ 97.894961][ T4471] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by udevd (4471) [ 97.926553][ T4266] ocfs2: Unmounting device (7,2) on (node local) [ 98.157380][ T4642] loop0: detected capacity change from 0 to 4096 [ 98.250961][ T4642] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 98.372067][ T4647] loop2: detected capacity change from 0 to 512 [ 98.461660][ T4647] EXT4-fs: Ignoring removed mblk_io_submit option [ 98.516429][ T4647] EXT4-fs: inline encryption not supported [ 98.550082][ T4647] EXT4-fs: Ignoring removed mblk_io_submit option [ 98.640202][ T4647] EXT4-fs (loop2): Test dummy encryption mode enabled [ 98.672306][ T4647] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 98.722824][ T4647] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 98.799334][ T4647] EXT4-fs (loop2): 1 truncate cleaned up [ 98.818095][ T4647] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 99.009979][ T4653] loop3: detected capacity change from 0 to 4096 [ 99.108233][ T4653] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 99.179391][ T26] audit: type=1800 audit(1760594511.594:8): pid=4660 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.42" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 99.328110][ T4266] EXT4-fs (loop2): unmounting filesystem. [ 99.437431][ T4671] loop1: detected capacity change from 0 to 4096 [ 99.520923][ T4670] loop0: detected capacity change from 0 to 4096 [ 99.612156][ T4670] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512) [ 99.644318][ T4281] ntfs3: loop3: ntfs_evict_inode r=5 failed, -22. [ 99.761496][ T4671] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 100.537571][ T4649] loop4: detected capacity change from 0 to 32768 [ 100.764230][ T4265] ntfs3: loop1: ntfs_evict_inode r=5 failed, -22. [ 100.788220][ T4649] XFS (loop4): DAX unsupported by block device. Turning off DAX. [ 100.825294][ T4264] ntfs3: loop0: ntfs_sync_fs r=1a failed, -22. [ 100.834907][ T4649] XFS (loop4): Mounting V5 Filesystem [ 100.881782][ T4264] ntfs3: loop0: ntfs_evict_inode r=1a failed, -22. [ 100.956896][ T4264] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 101.019062][ T4676] loop3: detected capacity change from 0 to 32768 [ 101.067170][ T4649] XFS (loop4): Ending clean mount [ 101.110136][ T4649] XFS (loop4): Quotacheck needed: Please wait. [ 101.120978][ T4676] XFS (loop3): DAX unsupported by block device. Turning off DAX. [ 101.158559][ T4676] XFS (loop3): Mounting V5 Filesystem [ 101.197505][ T4649] XFS (loop4): Quotacheck: Done. [ 101.362393][ T4676] XFS (loop3): Ending clean mount [ 101.428700][ T4676] XFS (loop3): Quotacheck needed: Please wait. [ 101.449194][ T4270] XFS (loop4): Unmounting Filesystem [ 101.482627][ T4676] XFS (loop3): Quotacheck: Done. [ 101.578158][ T4700] loop0: detected capacity change from 0 to 32768 [ 101.630315][ T4281] XFS (loop3): Unmounting Filesystem [ 101.642428][ T4700] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.54 (4700) [ 101.709322][ T4700] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 101.740394][ T4700] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm [ 101.771531][ T4700] BTRFS info (device loop0): turning on sync discard [ 101.798800][ T4700] BTRFS info (device loop0): setting nodatacow, compression disabled [ 101.828001][ T4700] BTRFS info (device loop0): turning off barriers [ 101.846194][ T4700] BTRFS warning (device loop0): 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 101.877761][ T4700] BTRFS info (device loop0): trying to use backup root at mount time [ 101.929329][ T4700] BTRFS info (device loop0): metadata ratio 6 [ 101.956769][ T4700] BTRFS info (device loop0): enabling auto defrag [ 101.978947][ T4700] BTRFS info (device loop0): enabling disk space caching [ 101.997445][ T4700] BTRFS info (device loop0): max_inline at 0 [ 102.010478][ T4700] BTRFS error (device loop0): cannot disable free space tree [ 102.054740][ T4700] BTRFS error (device loop0): open_ctree failed: -22 [ 102.112841][ T4685] loop2: detected capacity change from 0 to 32768 [ 102.212899][ T4685] XFS (loop2): Mounting V5 Filesystem [ 102.343785][ T4685] XFS (loop2): Ending clean mount [ 102.361084][ T4685] XFS (loop2): Quotacheck needed: Please wait. [ 102.446120][ T4685] XFS (loop2): Quotacheck: Done. [ 102.634616][ T4704] loop1: detected capacity change from 0 to 32768 [ 102.798011][ T4704] XFS (loop1): Mounting V5 Filesystem [ 102.903527][ T4266] XFS (loop2): Unmounting Filesystem [ 102.921905][ T4729] loop0: detected capacity change from 0 to 256 [ 102.948928][ T4729] exfat: Deprecated parameter 'namecase' [ 102.988728][ T4729] exfat: Deprecated parameter 'namecase' [ 103.002664][ T4704] XFS (loop1): Ending clean mount [ 103.026431][ T4707] loop4: detected capacity change from 0 to 32768 [ 103.062093][ T4707] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop4 scanned by syz.4.56 (4707) [ 103.071803][ T4704] XFS (loop1): Quotacheck needed: Please wait. [ 103.109216][ T4729] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d) [ 103.139166][ T4678] XFS (loop1): Corruption warning: Metadata has LSN (1:65407) ahead of current LSN (1:640). Please unmount and run xfs_repair (>= v4.3) to resolve. [ 103.185996][ T4707] BTRFS info (device loop4): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 103.201344][ T4678] XFS (loop1): Metadata CRC error detected at xfs_allocbt_read_verify+0x3a/0xd0, xfs_cntbt block 0x8 [ 103.218485][ T4707] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm [ 103.233403][ T4678] XFS (loop1): Unmount and run xfs_repair [ 103.240036][ T4678] XFS (loop1): First 128 bytes of corrupted metadata buffer: [ 103.256202][ T4707] BTRFS info (device loop4): using free space tree [ 103.268390][ T4678] 00000000: 41 42 33 43 00 00 00 02 ff ff ff ff ff ff ff ff AB3C............ [ 103.292751][ T4729] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 103.301523][ T4729] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 103.312395][ T4678] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 ff 7f ................ [ 103.321303][ T4678] 00000020: 00 00 00 00 00 00 4e ed a5 62 11 a8 31 b3 f7 91 ......N..b..1... [ 103.352924][ T4678] 00000030: 00 00 00 00 b0 b0 1a b8 00 00 00 0d 00 00 00 13 ................ [ 103.361859][ T4678] 00000040: 00 00 12 48 00 00 0d b8 00 00 00 00 00 00 00 00 ...H............ [ 103.391599][ T4678] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 103.406791][ T4678] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 103.416066][ T4678] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 103.426333][ T4678] XFS (loop1): metadata I/O error in "xfs_btree_read_buf_block+0x1d3/0x2c0" at daddr 0x8 len 4 error 74 [ 103.455479][ T4704] XFS (loop1): Quotacheck: Unsuccessful (Error -117): Disabling quotas. [ 103.802251][ T4707] BTRFS info (device loop4): enabling ssd optimizations [ 103.843997][ T4265] XFS (loop1): Unmounting Filesystem [ 103.921404][ T4748] loop3: detected capacity change from 0 to 2048 [ 104.017415][ T4748] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 104.560304][ T4762] loop1: detected capacity change from 0 to 1764 [ 104.894611][ T4270] BTRFS info (device loop4): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 104.985491][ T4756] loop2: detected capacity change from 0 to 32768 [ 105.033613][ T4769] loop3: detected capacity change from 0 to 4096 [ 105.112542][ T4769] ntfs3: loop3: MFT: r=0, expect seq=1 instead of 0! [ 105.125512][ T4769] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 105.133252][ T4769] ntfs3: loop3: Failed to load $MFT. [ 105.140715][ T4756] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 105.251239][ T4756] (syz.2.61,4756,1):ocfs2_read_blocks:239 ERROR: status = -12 [ 105.282287][ T4756] (syz.2.61,4756,0):ocfs2_trim_mainbm:7611 ERROR: status = -12 [ 105.444283][ T4266] ocfs2: Unmounting device (7,2) on (node local) [ 105.895573][ T4782] netlink: 'syz.2.71': attribute type 12 has an invalid length. [ 105.946554][ T4776] loop3: detected capacity change from 0 to 32768 [ 106.016048][ T4776] ocfs2: Slot 0 on device (7,3) was already allocated to this node! [ 106.091035][ T4776] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 106.093519][ T4790] loop4: detected capacity change from 0 to 512 [ 106.195121][ T4790] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 106.211585][ T4790] ext4 filesystem being mounted at /11/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 106.285810][ T4796] loop2: detected capacity change from 0 to 4096 [ 106.298396][ T4796] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512) [ 107.379421][ T4270] EXT4-fs (loop4): unmounting filesystem. [ 107.388191][ T4281] ocfs2: Unmounting device (7,3) on (node local) [ 107.581955][ T4266] ntfs3: loop2: ntfs_sync_fs r=1a failed, -22. [ 107.623527][ T4266] ntfs3: loop2: ntfs_evict_inode r=1a failed, -22. [ 107.630128][ T4266] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 107.718271][ T4810] loop0: detected capacity change from 0 to 512 [ 107.773998][ T4810] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 107.843736][ T4810] EXT4-fs (loop0): invalid journal inode [ 107.890824][ T4810] EXT4-fs (loop0): can't get journal size [ 108.011989][ T4810] EXT4-fs (loop0): 1 truncate cleaned up [ 108.061812][ T4810] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 108.123727][ T4819] 8021q: adding VLAN 0 to HW filter on device bond1 [ 108.183813][ T4819] bridge0: port 3(bond1) entered blocking state [ 108.220960][ T4819] bridge0: port 3(bond1) entered disabled state [ 108.258910][ T4819] device bond1 entered promiscuous mode [ 108.274116][ T4819] bridge0: port 3(bond1) entered blocking state [ 108.281016][ T4819] bridge0: port 3(bond1) entered forwarding state [ 108.293283][ T4678] bridge0: port 3(bond1) entered disabled state [ 108.338388][ T4829] 8021q: adding VLAN 0 to HW filter on device bond1 [ 108.395980][ T4264] EXT4-fs (loop0): unmounting filesystem. [ 108.621848][ T4835] loop0: detected capacity change from 0 to 512 [ 108.701609][ T4835] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 108.722354][ T4835] ext4 filesystem being mounted at /17/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 109.778575][ T4845] syz.0.88 (4845) used greatest stack depth: 20520 bytes left [ 109.805034][ T4264] EXT4-fs (loop0): unmounting filesystem. [ 109.854870][ T4827] loop1: detected capacity change from 0 to 40427 [ 109.872417][ T4827] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 109.880230][ T4827] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 109.978049][ T4827] F2FS-fs (loop1): invalid crc value [ 110.011379][ T4827] F2FS-fs (loop1): Found nat_bits in checkpoint [ 110.033019][ T4852] netlink: 'syz.0.94': attribute type 24 has an invalid length. [ 110.178807][ T4827] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 110.186916][ T4827] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 110.287846][ T4864] loop0: detected capacity change from 0 to 64 [ 110.485114][ T4827] syz.1.85: attempt to access beyond end of device [ 110.485114][ T4827] loop1: rw=10241, sector=45096, nr_sectors = 8 limit=40427 [ 110.703001][ T4265] syz-executor: attempt to access beyond end of device [ 110.703001][ T4265] loop1: rw=2049, sector=40960, nr_sectors = 8 limit=40427 [ 111.261053][ T4881] Zero length message leads to an empty skb [ 111.907946][ T4902] netlink: 16 bytes leftover after parsing attributes in process `syz.0.111'. [ 112.078428][ T4906] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 112.108343][ T4906] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 112.158060][ T4906] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 112.219461][ T4909] lo speed is unknown, defaulting to 1000 [ 112.245785][ T4909] lo speed is unknown, defaulting to 1000 [ 112.280283][ T4912] bridge0: port 2(bridge_slave_1) entered disabled state [ 112.288696][ T4912] bridge0: port 1(bridge_slave_0) entered disabled state [ 112.349715][ T4909] lo speed is unknown, defaulting to 1000 [ 112.370186][ T4915] netlink: 8 bytes leftover after parsing attributes in process `syz.2.117'. [ 112.389155][ T4912] syz.4.116 (4912) used greatest stack depth: 20448 bytes left [ 112.407987][ T4915] netlink: 4 bytes leftover after parsing attributes in process `syz.2.117'. [ 112.429809][ T4915] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 112.439279][ T4915] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 112.448144][ T4915] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 112.457644][ T4915] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 112.487373][ T4915] netlink: 8 bytes leftover after parsing attributes in process `syz.2.117'. [ 112.517044][ T4915] netlink: 4 bytes leftover after parsing attributes in process `syz.2.117'. [ 112.632333][ T4909] infiniband syz0: set active [ 112.637698][ T4909] infiniband syz0: added lo [ 112.655284][ T4436] lo speed is unknown, defaulting to 1000 [ 112.791294][ T4909] RDS/IB: syz0: added [ 112.828978][ C0] vcan0: j1939_tp_rxtimer: 0xffff888054cabc00: rx timeout, send abort [ 112.838918][ C0] vcan0: j1939_tp_rxtimer: 0xffff88802f1ea400: rx timeout, send abort [ 112.847545][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888054cabc00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 112.863691][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88802f1ea400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 112.868021][ T4909] smc: adding ib device syz0 with port count 1 [ 112.933924][ T4909] smc: ib device syz0 port 1 has pnetid [ 112.953051][ T4436] lo speed is unknown, defaulting to 1000 [ 112.992267][ T4909] lo speed is unknown, defaulting to 1000 [ 113.138448][ T4936] netlink: 8 bytes leftover after parsing attributes in process `syz.3.123'. [ 113.159410][ T4938] loop2: detected capacity change from 0 to 64 [ 113.434057][ T4909] lo speed is unknown, defaulting to 1000 [ 113.755345][ T4909] lo speed is unknown, defaulting to 1000 [ 113.819520][ T4952] netlink: 20 bytes leftover after parsing attributes in process `syz.4.129'. [ 114.062038][ T4909] lo speed is unknown, defaulting to 1000 [ 114.382861][ T4909] lo speed is unknown, defaulting to 1000 [ 114.460781][ T4960] loop4: detected capacity change from 0 to 4096 [ 114.495234][ T4960] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512) [ 114.805059][ T4950] loop2: detected capacity change from 0 to 32768 [ 114.824543][ T4909] lo speed is unknown, defaulting to 1000 [ 114.874794][ T4950] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 114.915641][ T4950] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 114.955982][ T4950] BTRFS info (device loop2): using free space tree [ 114.997386][ T4270] ntfs3: loop4: ntfs_sync_fs r=1a failed, -22. [ 115.027826][ T4270] ntfs3: loop4: ntfs_evict_inode r=1a failed, -22. [ 115.066114][ T4270] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 115.335147][ T4950] BTRFS info (device loop2): enabling ssd optimizations [ 115.362496][ T4984] netlink: 8 bytes leftover after parsing attributes in process `syz.4.133'. [ 115.371433][ T4984] netlink: 4 bytes leftover after parsing attributes in process `syz.4.133'. [ 115.558094][ T4984] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 115.567322][ T4984] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 115.576113][ T4984] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 115.584878][ T4984] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 115.667353][ T4984] netlink: 8 bytes leftover after parsing attributes in process `syz.4.133'. [ 115.668351][ T4909] lo speed is unknown, defaulting to 1000 [ 115.712577][ T4989] netlink: 'syz.1.135': attribute type 12 has an invalid length. [ 115.829121][ T4266] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 116.998777][ T5004] bridge0: port 2(bridge_slave_1) entered disabled state [ 117.006351][ T5004] bridge0: port 1(bridge_slave_0) entered disabled state [ 117.601938][ T5004] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 117.691572][ T5004] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 118.723925][ T5004] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 118.749901][ T5004] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 118.781232][ T5004] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 118.792241][ T5004] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 118.940351][ T5004] netdevsim netdevsim2 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 118.949537][ T5004] netdevsim netdevsim2 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 118.958612][ T5004] netdevsim netdevsim2 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 118.967813][ T5004] netdevsim netdevsim2 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 119.060117][ T5006] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.085903][ T5011] __nla_validate_parse: 2 callbacks suppressed [ 119.085920][ T5011] netlink: 56 bytes leftover after parsing attributes in process `syz.1.143'. [ 119.145325][ T5028] netlink: 'syz.2.149': attribute type 12 has an invalid length. [ 119.282847][ T5006] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.551832][ T5006] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.723432][ T5006] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.858875][ T5006] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 119.905087][ T5006] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 119.975815][ T5006] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 120.028096][ T5006] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 120.082385][ T5030] loop0: detected capacity change from 0 to 32768 [ 120.165674][ T5030] XFS (loop0): Mounting V5 Filesystem [ 120.293909][ T5030] XFS (loop0): Ending clean mount [ 120.330024][ T5030] XFS (loop0): Quotacheck needed: Please wait. [ 120.458452][ T5063] netlink: 56 bytes leftover after parsing attributes in process `syz.1.160'. [ 120.575925][ T5030] XFS (loop0): Quotacheck: Done. [ 121.103212][ T4264] XFS (loop0): Unmounting Filesystem [ 121.240549][ T5078] loop2: detected capacity change from 0 to 64 [ 121.310740][ T5081] device syzkaller0 entered promiscuous mode [ 121.640087][ T5091] netlink: 'syz.4.173': attribute type 12 has an invalid length. [ 121.816468][ T5099] 9pnet_fd: Insufficient options for proto=fd [ 121.980060][ T5103] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 122.102517][ T4354] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 122.594886][ T5114] loop4: detected capacity change from 0 to 64 [ 122.659711][ T4487] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 122.699094][ T4354] usb 2-1: New USB device found, idVendor=1235, idProduct=0018, bcdDevice=f0.ee [ 122.708591][ T4354] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 122.735299][ T4354] usb 2-1: config 0 descriptor?? [ 122.749356][ T4354] usb 2-1: selecting invalid altsetting 1 [ 122.780597][ T4354] snd-usb-audio: probe of 2-1:0.0 failed with error -22 [ 122.858134][ T4487] usb 3-1: Using ep0 maxpacket: 8 [ 122.861449][ T4379] udevd[4379]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 122.865844][ T4487] usb 3-1: config index 0 descriptor too short (expected 5924, got 36) [ 122.934252][ T4487] usb 3-1: config 250 has an invalid interface number: 228 but max is -1 [ 122.972038][ T4487] usb 3-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 123.002267][ T4487] usb 3-1: config 250 has no interface number 0 [ 123.008629][ T4487] usb 3-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 123.038185][ T4487] usb 3-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 123.049413][ T4487] usb 3-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0 [ 123.066010][ T4487] usb 3-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0 [ 123.077909][ T4487] usb 3-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 123.099011][ T4487] usb 3-1: config 250 interface 228 has no altsetting 0 [ 123.120417][ T4354] usb 2-1: USB disconnect, device number 2 [ 123.131006][ T4487] usb 3-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 123.155720][ T4487] usb 3-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 123.168898][ T4487] usb 3-1: Product: syz [ 123.187013][ T4487] usb 3-1: SerialNumber: syz [ 123.249485][ T4487] hub 3-1:250.228: bad descriptor, ignoring hub [ 123.268023][ T4487] hub: probe of 3-1:250.228 failed with error -5 [ 123.767966][ T5123] device syzkaller0 entered promiscuous mode [ 124.117709][ T4487] usblp 3-1:250.228: usblp0: USB Bidirectional printer dev 2 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292 [ 124.173683][ T4487] usb 3-1: USB disconnect, device number 2 [ 124.208198][ T4487] usblp0: removed [ 124.721010][ T5146] loop4: detected capacity change from 0 to 64 [ 126.544165][ T5158] loop2: detected capacity change from 0 to 32768 [ 126.659042][ T5158] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 126.815873][ T4266] ocfs2: Unmounting device (7,2) on (node local) [ 127.921359][ T5164] netlink: 'syz.1.199': attribute type 12 has an invalid length. [ 127.930746][ T5176] netlink: 4 bytes leftover after parsing attributes in process `syz.2.203'. [ 127.998783][ T5176] bond0: (slave bond_slave_1): Releasing backup interface [ 129.254655][ T5196] overlayfs: "xino" feature enabled using 2 upper inode bits. [ 129.435703][ T5179] netlink: 4 bytes leftover after parsing attributes in process `syz.4.204'. [ 129.455898][ T5204] loop0: detected capacity change from 0 to 64 [ 129.467892][ T5179] device bond1 left promiscuous mode [ 129.474017][ T5179] bridge0: port 3(bond1) entered disabled state [ 129.498425][ T5179] device bridge_slave_1 left promiscuous mode [ 129.511272][ T5179] bridge0: port 2(bridge_slave_1) entered disabled state [ 129.548745][ T5192] binder: Unknown parameter 'seclabel' [ 129.638461][ T5179] device bridge_slave_0 left promiscuous mode [ 129.645132][ T5179] bridge0: port 1(bridge_slave_0) entered disabled state [ 129.731458][ T5209] netlink: 'syz.2.215': attribute type 12 has an invalid length. [ 131.170160][ T5234] netlink: 'syz.3.228': attribute type 12 has an invalid length. [ 132.653374][ T5247] loop4: detected capacity change from 0 to 4096 [ 132.891217][ T5247] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 132.943282][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.950195][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.030521][ T5257] loop3: detected capacity change from 0 to 512 [ 133.141993][ T5257] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 133.185938][ T4270] ntfs3: loop4: ntfs_evict_inode r=5 failed, -22. [ 133.251546][ T5257] ext4 filesystem being mounted at /44/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 134.943723][ T26] audit: type=1800 audit(1760594547.364:9): pid=5279 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.235" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 135.075861][ T4281] EXT4-fs (loop3): unmounting filesystem. [ 135.151344][ T5281] netlink: 'syz.1.241': attribute type 12 has an invalid length. [ 135.677715][ T5295] loop3: detected capacity change from 0 to 4096 [ 135.842077][ T5295] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 136.946668][ T4281] ntfs3: loop3: ntfs_evict_inode r=5 failed, -22. [ 138.236635][ T5328] tipc: Started in network mode [ 138.241796][ T5328] tipc: Node identity fffffffa, cluster identity 4711 [ 138.292217][ T5328] tipc: Node number set to 4294967290 [ 138.359332][ T5328] netlink: 8 bytes leftover after parsing attributes in process `syz.3.261'. [ 138.408921][ T4366] tipc: Subscription rejected, illegal request [ 138.588386][ T5334] loop2: detected capacity change from 0 to 4096 [ 138.665068][ T5334] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 138.731588][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 138.975840][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 139.411880][ T4266] ntfs3: loop2: ntfs_evict_inode r=5 failed, -22. [ 141.092217][ T4392] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 141.282591][ T4392] usb 1-1: Using ep0 maxpacket: 16 [ 141.298842][ T4392] usb 1-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6 [ 141.344919][ T4392] usb 1-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3 [ 141.353423][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 141.394356][ T4392] usb 1-1: Product: syz [ 141.407720][ T4392] usb 1-1: Manufacturer: syz [ 141.426827][ T4392] usb 1-1: SerialNumber: syz [ 141.459027][ T4392] usb 1-1: config 0 descriptor?? [ 141.623003][ T5386] netlink: 4 bytes leftover after parsing attributes in process `syz.4.283'. [ 141.797651][ T4636] usb 1-1: USB disconnect, device number 2 [ 143.297156][ T5392] sched: RT throttling activated [ 143.315800][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 144.390627][ T5386] bond0: (slave bond_slave_1): Releasing backup interface [ 144.616414][ T0] NOHZ tick-stop error: local softirq work is pending, handler #382!!! [ 144.625689][ T0] NOHZ tick-stop error: local softirq work is pending, handler #382!!! [ 144.634046][ T0] NOHZ tick-stop error: local softirq work is pending, handler #382!!! [ 144.642456][ T0] NOHZ tick-stop error: local softirq work is pending, handler #382!!! [ 146.751600][ T5432] netlink: 'syz.2.300': attribute type 12 has an invalid length. [ 147.005169][ T5442] loop2: detected capacity change from 0 to 128 [ 147.085437][ T5442] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 147.223650][ T5442] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 147.275146][ T5441] device syzkaller0 entered promiscuous mode [ 147.378130][ T5450] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 147.387080][ T5450] overlayfs: missing 'lowerdir' [ 153.162301][ T4636] usb 1-1: new full-speed USB device number 3 using dummy_hcd [ 153.386410][ T4636] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 153.398178][ T4636] usb 1-1: config 0 has no interfaces? [ 153.409660][ T4636] usb 1-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79 [ 153.421868][ T4636] usb 1-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2 [ 153.439008][ T4636] usb 1-1: Product: syz [ 153.444405][ T4636] usb 1-1: Manufacturer: syz [ 153.449054][ T4636] usb 1-1: SerialNumber: syz [ 153.468063][ T4636] usb 1-1: config 0 descriptor?? [ 155.769706][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 155.871792][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 155.977566][ T4997] usb 1-1: USB disconnect, device number 3 [ 156.478679][ T5518] hub 9-0:1.0: USB hub found [ 156.486782][ T5518] hub 9-0:1.0: 1 port detected [ 157.033578][ T5511] loop4: detected capacity change from 0 to 32768 [ 157.118145][ T5511] XFS (loop4): Mounting V5 Filesystem [ 157.214025][ T5511] XFS (loop4): Ending clean mount [ 157.238973][ T5511] XFS (loop4): Quotacheck needed: Please wait. [ 157.313516][ T5511] XFS (loop4): Quotacheck: Done. [ 157.383819][ T5505] loop2: detected capacity change from 0 to 32768 [ 157.449528][ T5505] ocfs2: Slot 0 on device (7,2) was already allocated to this node! [ 157.469714][ T4270] XFS (loop4): Unmounting Filesystem [ 157.600371][ T5505] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 157.697246][ T5505] overlayfs: missing 'lowerdir' [ 157.840826][ T4266] ocfs2: Unmounting device (7,2) on (node local) [ 158.047602][ T5539] netlink: 56 bytes leftover after parsing attributes in process `syz.3.334'. [ 160.490892][ T5562] netlink: 'syz.0.340': attribute type 12 has an invalid length. [ 160.849674][ T5574] netlink: 24 bytes leftover after parsing attributes in process `syz.1.346'. [ 161.818530][ T5559] loop2: detected capacity change from 0 to 32768 [ 162.094136][ T5559] XFS (loop2): Mounting V5 Filesystem [ 162.218682][ T5559] XFS (loop2): Ending clean mount [ 162.374618][ T5559] XFS (loop2): Quotacheck needed: Please wait. [ 162.802699][ T5559] XFS (loop2): Quotacheck: Done. [ 162.998157][ T4266] XFS (loop2): Unmounting Filesystem [ 163.007387][ T5593] netlink: 56 bytes leftover after parsing attributes in process `syz.0.349'. [ 163.241058][ T5579] loop1: detected capacity change from 0 to 32768 [ 164.116186][ T5606] netlink: 244 bytes leftover after parsing attributes in process `syz.4.354'. [ 164.152621][ T26] audit: type=1800 audit(1760594576.564:10): pid=5579 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.347" name="file1" dev="loop1" ino=7 res=0 errno=0 [ 164.444912][ T5612] netlink: 12 bytes leftover after parsing attributes in process `syz.0.357'. [ 166.445179][ T5614] loop3: detected capacity change from 0 to 32768 [ 166.520957][ T5614] ocfs2: Slot 0 on device (7,3) was already allocated to this node! [ 166.699910][ T5614] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 166.702368][ T41] usb 5-1: new full-speed USB device number 2 using dummy_hcd [ 166.936005][ T5614] overlayfs: missing 'lowerdir' [ 167.523419][ T4281] ocfs2: Unmounting device (7,3) on (node local) [ 167.544044][ T5631] loop0: detected capacity change from 0 to 32768 [ 167.593994][ T41] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 167.607501][ T41] usb 5-1: config 0 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 167.692774][ T41] usb 5-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0 [ 167.884795][ T41] usb 5-1: config 0 interface 0 has no altsetting 0 [ 167.891969][ T41] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 167.901957][ T41] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 167.927324][ T41] usb 5-1: config 0 descriptor?? [ 167.947103][ T5631] XFS (loop0): Mounting V5 Filesystem [ 168.471634][ T41] kye 0003:0458:5019.0001: unknown main item tag 0x0 [ 168.634669][ T41] kye 0003:0458:5019.0001: unknown main item tag 0x0 [ 168.676588][ T41] kye 0003:0458:5019.0001: hidraw0: USB HID v0.09 Device [HID 0458:5019] on usb-dummy_hcd.4-1/input0 [ 168.712951][ T41] kye 0003:0458:5019.0001: tablet-enabling feature report not found [ 168.740193][ T41] kye 0003:0458:5019.0001: tablet enabling failed [ 168.804897][ T41] usb 5-1: USB disconnect, device number 2 [ 168.837494][ T5631] XFS (loop0): Ending clean mount [ 168.855781][ T5631] XFS (loop0): Quotacheck needed: Please wait. [ 168.935017][ T5631] XFS (loop0): Quotacheck: Done. [ 169.015571][ T5662] fido_id[5662]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory [ 169.346100][ T5654] loop2: detected capacity change from 0 to 32768 [ 169.419882][ T26] audit: type=1800 audit(1760594581.834:11): pid=5654 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.368" name="file1" dev="loop2" ino=7 res=0 errno=0 [ 170.257684][ T4264] XFS (loop0): Unmounting Filesystem [ 172.887499][ T5680] loop1: detected capacity change from 0 to 32768 [ 173.012539][ T5680] ocfs2: Slot 0 on device (7,1) was already allocated to this node! [ 173.033469][ T5680] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 173.055308][ T5707] loop4: detected capacity change from 0 to 4096 [ 173.164715][ T5680] overlayfs: missing 'lowerdir' [ 173.240954][ T5707] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 173.330836][ T4265] ocfs2: Unmounting device (7,1) on (node local) [ 173.442820][ T4270] ntfs3: loop4: ntfs_evict_inode r=5 failed, -22. [ 173.675416][ T5709] loop2: detected capacity change from 0 to 32768 [ 173.762872][ T26] audit: type=1800 audit(1760594586.184:12): pid=5709 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.388" name="file1" dev="loop2" ino=7 res=0 errno=0 [ 175.482926][ T5741] netlink: 'syz.4.399': attribute type 12 has an invalid length. [ 175.538801][ T5743] netlink: 4 bytes leftover after parsing attributes in process `syz.3.401'. [ 175.739677][ T5737] input: syz1 as /devices/virtual/input/input5 [ 176.140050][ T5747] loop4: detected capacity change from 0 to 4096 [ 176.270497][ T5747] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 176.452325][ T4320] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 176.524264][ T4270] ntfs3: loop4: ntfs_evict_inode r=5 failed, -22. [ 176.643324][ T4320] usb 4-1: Using ep0 maxpacket: 32 [ 176.694970][ T4320] usb 4-1: config 1 interface 0 altsetting 6 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 176.760013][ T4320] usb 4-1: config 1 interface 0 has no altsetting 0 [ 176.822796][ T4320] usb 4-1: New USB device found, idVendor=046d, idProduct=c537, bcdDevice= 0.40 [ 176.862303][ T4320] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 176.920980][ T4320] usb 4-1: Product: syz [ 176.953691][ T4320] usb 4-1: Manufacturer: syz [ 176.971990][ T4320] usb 4-1: SerialNumber: syz [ 177.232986][ T4320] usbhid 4-1:1.0: can't add hid device: -71 [ 177.242537][ T4320] usbhid: probe of 4-1:1.0 failed with error -71 [ 177.295407][ T4320] usb 4-1: USB disconnect, device number 2 [ 177.484307][ T5772] netlink: 'syz.1.413': attribute type 12 has an invalid length. [ 177.681120][ T5781] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 177.698339][ T5781] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 177.707994][ T5781] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 177.726921][ T5781] bond0: (slave bond_slave_0): Releasing backup interface [ 177.899067][ T5781] team0: Port device team_slave_0 removed [ 177.935435][ T5781] team0: Failed to send options change via netlink (err -105) [ 177.951485][ T5781] team0: Failed to send port change of device team_slave_1 via netlink (err -105) [ 177.967208][ T5781] team0: Port device team_slave_1 removed [ 177.977293][ T5781] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 177.987704][ T5781] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 178.004649][ T5781] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 178.015893][ T5781] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 178.086099][ T5784] team0: Failed to send options change via netlink (err -105) [ 178.124558][ T5784] team0: Mode changed to "loadbalance" [ 178.367467][ T5790] loop3: detected capacity change from 0 to 4096 [ 178.531972][ T5790] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 179.508276][ T4281] ntfs3: loop3: ntfs_evict_inode r=5 failed, -22. [ 179.825395][ T5813] device syzkaller0 entered promiscuous mode [ 183.433164][ T5844] loop1: detected capacity change from 0 to 4096 [ 184.235283][ T5844] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 184.402769][ T4265] ntfs3: loop1: ntfs_evict_inode r=5 failed, -22. [ 186.007733][ T5825] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 186.017319][ T5825] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 186.025254][ T5825] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 186.035614][ T5825] device bridge_slave_0 left promiscuous mode [ 186.041820][ T5825] bridge0: port 1(bridge_slave_0) entered disabled state [ 186.056193][ T5825] device bridge_slave_1 left promiscuous mode [ 186.063334][ T5825] bridge0: port 2(bridge_slave_1) entered disabled state [ 186.075839][ T5825] bond0: (slave bond_slave_0): Releasing backup interface [ 186.097346][ T5825] bond0: (slave bond_slave_1): Releasing backup interface [ 186.174321][ T5825] team0: Port device team_slave_0 removed [ 186.199303][ T5825] team0: Port device team_slave_1 removed [ 186.215421][ T5825] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 186.223490][ T5825] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 186.232359][ T5825] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 186.240016][ T5825] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 188.180001][ T5881] loop1: detected capacity change from 0 to 4096 [ 188.362957][ T5881] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 188.540199][ T4265] ntfs3: loop1: ntfs_evict_inode r=5 failed, -22. [ 188.799608][ T5873] loop3: detected capacity change from 0 to 32768 [ 188.839454][ T5873] ocfs2: Slot 0 on device (7,3) was already allocated to this node! [ 188.952568][ T5908] netlink: 12 bytes leftover after parsing attributes in process `syz.0.458'. [ 188.976640][ T5873] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 188.998293][ T5901] kvm: emulating exchange as write [ 189.019431][ T5873] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 189.092484][ T5873] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 189.248836][ T4281] ocfs2: Unmounting device (7,3) on (node local) [ 189.404247][ T5919] netlink: 'syz.3.463': attribute type 12 has an invalid length. [ 189.583664][ T5923] loop0: detected capacity change from 0 to 512 [ 189.671368][ T5923] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 189.741813][ T5923] ext4 filesystem being mounted at /83/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 190.124956][ T5939] loop4: detected capacity change from 0 to 4096 [ 190.149247][ T5941] netlink: 12 bytes leftover after parsing attributes in process `syz.1.471'. [ 190.203102][ T5939] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 190.385896][ T4270] ntfs3: loop4: ntfs_evict_inode r=5 failed, -22. [ 190.444343][ T5932] mmap: syz.3.467 (5932) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 192.187913][ T4264] EXT4-fs (loop0): unmounting filesystem. [ 192.556622][ T5971] netlink: 12 bytes leftover after parsing attributes in process `syz.2.482'. [ 192.870266][ T5985] loop2: detected capacity change from 0 to 512 [ 192.942864][ T5985] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 192.965722][ T5985] ext4 filesystem being mounted at /94/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 194.003354][ T6027] netlink: 24 bytes leftover after parsing attributes in process `syz.0.503'. [ 194.055100][ T26] audit: type=1326 audit(1760594606.474:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6028 comm="syz.4.505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bdad8eec9 code=0x7ffc0000 [ 194.142935][ T26] audit: type=1326 audit(1760594606.514:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6028 comm="syz.4.505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bdad8eec9 code=0x7ffc0000 [ 194.226648][ T26] audit: type=1326 audit(1760594606.514:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6028 comm="syz.4.505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bdad8eec9 code=0x7ffc0000 [ 194.255240][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.261584][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.272675][ T26] audit: type=1326 audit(1760594606.514:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6028 comm="syz.4.505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=74 compat=0 ip=0x7f6bdad8eec9 code=0x7ffc0000 [ 194.295077][ T26] audit: type=1326 audit(1760594606.514:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6028 comm="syz.4.505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bdad8eec9 code=0x7ffc0000 [ 194.317296][ T26] audit: type=1326 audit(1760594606.514:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6028 comm="syz.4.505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bdad8eec9 code=0x7ffc0000 [ 194.339514][ T26] audit: type=1326 audit(1760594606.514:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6028 comm="syz.4.505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bdad8eec9 code=0x7ffc0000 [ 194.357519][ T4392] libceph: connect (1)[c::]:6789 error -101 [ 194.411467][ T4392] libceph: mon0 (1)[c::]:6789 connect error [ 194.454652][ T26] audit: type=1326 audit(1760594606.514:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6028 comm="syz.4.505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=50 compat=0 ip=0x7f6bdad8eec9 code=0x7ffc0000 [ 194.490937][ T4392] libceph: connect (1)[c::]:6789 error -101 [ 194.522961][ T4392] libceph: mon0 (1)[c::]:6789 connect error [ 194.595801][ T26] audit: type=1326 audit(1760594606.514:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6028 comm="syz.4.505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bdad8eec9 code=0x7ffc0000 [ 194.707130][ T26] audit: type=1326 audit(1760594606.514:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6028 comm="syz.4.505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f6bdad8eec9 code=0x7ffc0000 [ 194.826039][ T22] libceph: connect (1)[c::]:6789 error -101 [ 194.834630][ T22] libceph: mon0 (1)[c::]:6789 connect error [ 195.026630][ T6033] ceph: No mds server is up or the cluster is laggy [ 195.494830][ T6055] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 195.530744][ T6055] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 195.574304][ T6055] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 195.595528][ T6055] device bridge_slave_0 left promiscuous mode [ 195.613982][ T6055] bridge0: port 1(bridge_slave_0) entered disabled state [ 195.668969][ T6055] device bridge_slave_1 left promiscuous mode [ 195.684118][ T6055] bridge0: port 2(bridge_slave_1) entered disabled state [ 195.698274][ T4266] EXT4-fs (loop2): unmounting filesystem. [ 195.706816][ T6055] bond0: (slave bond_slave_0): Releasing backup interface [ 195.754620][ T6055] bond0: (slave bond_slave_1): Releasing backup interface [ 195.825289][ T6055] team0: Port device team_slave_0 removed [ 195.839820][ T6055] team0: Port device team_slave_1 removed [ 195.847921][ T6055] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 195.855976][ T6055] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 195.865408][ T6055] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 195.873493][ T6055] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 195.900420][ T6056] team0: Mode changed to "loadbalance" [ 195.906688][ T6056] netlink: 24 bytes leftover after parsing attributes in process `syz.1.515'. [ 196.661810][ T4489] libceph: connect (1)[c::]:6789 error -101 [ 196.716222][ T4489] libceph: mon0 (1)[c::]:6789 connect error [ 197.034147][ T4636] libceph: connect (1)[c::]:6789 error -101 [ 197.040868][ T4636] libceph: mon0 (1)[c::]:6789 connect error [ 197.216446][ T6095] netlink: 24 bytes leftover after parsing attributes in process `syz.4.530'. [ 197.335509][ T6084] ceph: No mds server is up or the cluster is laggy [ 197.362549][ T6073] loop3: detected capacity change from 0 to 32768 [ 197.587747][ T6073] XFS (loop3): Mounting V5 Filesystem [ 198.281011][ T6073] XFS (loop3): Ending clean mount [ 198.338383][ T6073] XFS (loop3): Quotacheck needed: Please wait. [ 198.519406][ T6120] infiniband syz0: set active [ 198.529254][ T6120] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 198.538845][ T6120] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 198.543083][ T6073] XFS (loop3): Quotacheck: Done. [ 198.547047][ T6120] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 198.561575][ T6120] device bridge_slave_0 left promiscuous mode [ 198.577542][ T6120] bridge0: port 1(bridge_slave_0) entered disabled state [ 198.703620][ T6120] device bridge_slave_1 left promiscuous mode [ 198.745025][ T6120] bridge0: port 2(bridge_slave_1) entered disabled state [ 199.968404][ T6120] bond0: (slave bond_slave_0): Releasing backup interface [ 200.103642][ T6120] bond0: (slave bond_slave_1): Releasing backup interface [ 200.135864][ T4281] XFS (loop3): Unmounting Filesystem [ 200.219094][ T6120] team0: Port device team_slave_0 removed [ 200.243532][ T6120] team0: Port device team_slave_1 removed [ 200.258986][ T6120] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 200.273169][ T6120] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 200.281886][ T6120] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 200.290154][ T6120] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 200.308996][ T4489] lo speed is unknown, defaulting to 1000 [ 200.331577][ T6121] team0: Mode changed to "loadbalance" [ 201.613596][ T4278] Bluetooth: hci1: command 0x0406 tx timeout [ 201.619800][ T4278] Bluetooth: hci4: command 0x0406 tx timeout [ 201.625880][ T4278] Bluetooth: hci0: command 0x0406 tx timeout [ 201.631907][ T4278] Bluetooth: hci3: command 0x0406 tx timeout [ 201.871493][ T6176] infiniband syz0: set active [ 201.918561][ T6176] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 201.933557][ T4286] Bluetooth: hci2: command 0x0406 tx timeout [ 201.975021][ T6176] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 201.982707][ T6176] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 202.004303][ T4392] lo speed is unknown, defaulting to 1000 [ 202.013442][ T6178] team0: Unable to change to the same mode the team is in [ 202.948447][ T6187] netlink: 24 bytes leftover after parsing attributes in process `syz.3.543'. [ 203.146681][ T6164] loop1: detected capacity change from 0 to 32768 [ 203.172425][ T6191] netlink: 12 bytes leftover after parsing attributes in process `syz.4.562'. [ 203.248200][ T6164] XFS (loop1): Mounting V5 Filesystem [ 203.578934][ T6164] XFS (loop1): Ending clean mount [ 203.636884][ T6164] XFS (loop1): Quotacheck needed: Please wait. [ 203.906449][ T6164] XFS (loop1): Quotacheck: Done. [ 204.556467][ T6223] infiniband syz0: set active [ 204.563867][ T4265] XFS (loop1): Unmounting Filesystem [ 204.575887][ T6223] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 204.619987][ T6223] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 204.697591][ T6223] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 204.897397][ T4392] lo speed is unknown, defaulting to 1000 [ 204.906025][ T6225] team0: Unable to change to the same mode the team is in [ 205.814005][ T6235] netlink: 24 bytes leftover after parsing attributes in process `syz.0.574'. [ 206.105775][ T6241] netlink: 12 bytes leftover after parsing attributes in process `syz.2.577'. [ 207.060724][ T6231] loop3: detected capacity change from 0 to 32768 [ 207.147276][ T6231] ocfs2: Slot 0 on device (7,3) was already allocated to this node! [ 207.253876][ T6231] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 207.360478][ T6231] overlayfs: missing 'workdir' [ 207.534819][ T4281] ocfs2: Unmounting device (7,3) on (node local) [ 208.219322][ T6249] loop0: detected capacity change from 0 to 32768 [ 208.243114][ T22] libceph: connect (1)[c::]:6789 error -101 [ 208.260404][ T22] libceph: mon0 (1)[c::]:6789 connect error [ 208.299344][ T6295] loop3: detected capacity change from 0 to 512 [ 208.321649][ T6249] XFS (loop0): Mounting V5 Filesystem [ 208.396353][ T6295] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 208.410754][ T6307] netlink: 4 bytes leftover after parsing attributes in process `syz.1.598'. [ 208.447867][ T6295] ext4 filesystem being mounted at /102/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 208.497002][ T6249] XFS (loop0): Ending clean mount [ 208.581740][ T6249] XFS (loop0): Quotacheck needed: Please wait. [ 208.671698][ T22] libceph: connect (1)[c::]:6789 error -101 [ 208.678682][ T22] libceph: mon0 (1)[c::]:6789 connect error [ 208.693165][ T6249] XFS (loop0): Quotacheck: Done. [ 209.116873][ T6287] ceph: No mds server is up or the cluster is laggy [ 209.195491][ T22] libceph: connect (1)[c::]:6789 error -101 [ 209.206912][ T22] libceph: mon0 (1)[c::]:6789 connect error [ 209.463890][ T4281] EXT4-fs (loop3): unmounting filesystem. [ 209.617791][ T4264] XFS (loop0): Unmounting Filesystem [ 209.861464][ T6327] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 209.905167][ T6327] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 209.944203][ T6327] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 210.096697][ T6327] team0: Unable to change to the same mode the team is in [ 210.371262][ T6340] netlink: 4 bytes leftover after parsing attributes in process `syz.2.610'. [ 210.594679][ T4636] libceph: connect (1)[c::]:6789 error -101 [ 210.600820][ T4636] libceph: mon0 (1)[c::]:6789 connect error [ 210.922594][ T4636] libceph: connect (1)[c::]:6789 error -101 [ 210.929896][ T4636] libceph: mon0 (1)[c::]:6789 connect error [ 211.281495][ T6367] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 211.331212][ T6367] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 211.348006][ T6345] ceph: No mds server is up or the cluster is laggy [ 211.357509][ T6367] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 211.399028][ T6369] netlink: 4 bytes leftover after parsing attributes in process `syz.1.623'. [ 211.423396][ T6370] team0: Unable to change to the same mode the team is in [ 211.984870][ T6386] device syzkaller0 entered promiscuous mode [ 212.201358][ T6396] netlink: 96 bytes leftover after parsing attributes in process `syz.4.632'. [ 215.786597][ T6414] netlink: 128 bytes leftover after parsing attributes in process `syz.0.641'. [ 215.996723][ T6423] netlink: 'syz.1.644': attribute type 12 has an invalid length. [ 216.437951][ T6440] netlink: 96 bytes leftover after parsing attributes in process `syz.2.653'. [ 216.667273][ T6442] device syzkaller0 entered promiscuous mode [ 216.698839][ T6449] netlink: 128 bytes leftover after parsing attributes in process `syz.3.656'. [ 216.987447][ T6424] loop0: detected capacity change from 0 to 32768 [ 217.129813][ T6424] XFS (loop0): Mounting V5 Filesystem [ 217.190088][ T6424] XFS (loop0): Ending clean mount [ 217.233898][ T6424] XFS (loop0): Quotacheck needed: Please wait. [ 217.468123][ T6424] XFS (loop0): Quotacheck: Done. [ 218.339593][ T4264] XFS (loop0): Unmounting Filesystem [ 219.391062][ T6488] netlink: 96 bytes leftover after parsing attributes in process `syz.2.669'. [ 220.330641][ T6457] netlink: 'syz.1.660': attribute type 12 has an invalid length. [ 221.749737][ T26] kauditd_printk_skb: 1 callbacks suppressed [ 221.749752][ T26] audit: type=1326 audit(1760594634.164:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6507 comm="syz.2.677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb36198eec9 code=0x7ffc0000 [ 221.852783][ T26] audit: type=1326 audit(1760594634.164:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6507 comm="syz.2.677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb36198eec9 code=0x7ffc0000 [ 221.965026][ T6514] netlink: 96 bytes leftover after parsing attributes in process `syz.0.681'. [ 221.984271][ T26] audit: type=1326 audit(1760594634.204:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6507 comm="syz.2.677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb36198eec9 code=0x7ffc0000 [ 222.078519][ T26] audit: type=1326 audit(1760594634.204:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6507 comm="syz.2.677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7fb36198eec9 code=0x7ffc0000 [ 222.149984][ T26] audit: type=1326 audit(1760594634.204:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6507 comm="syz.2.677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb36198eec9 code=0x7ffc0000 [ 222.250265][ T6520] netlink: 'syz.0.684': attribute type 12 has an invalid length. [ 222.258154][ T26] audit: type=1326 audit(1760594634.204:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6507 comm="syz.2.677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb36198eec9 code=0x7ffc0000 [ 222.343867][ T26] audit: type=1326 audit(1760594634.204:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6507 comm="syz.2.677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb36198eec9 code=0x7ffc0000 [ 222.432880][ T26] audit: type=1326 audit(1760594634.214:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6507 comm="syz.2.677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fb36198eec9 code=0x7ffc0000 [ 222.493237][ T26] audit: type=1326 audit(1760594634.214:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6507 comm="syz.2.677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fb36198eec9 code=0x7ffc0000 [ 222.529058][ T4487] libceph: connect (1)[c::]:6789 error -101 [ 222.542420][ T4487] libceph: mon0 (1)[c::]:6789 connect error [ 223.161209][ T4636] libceph: connect (1)[c::]:6789 error -101 [ 223.177119][ T6498] loop4: detected capacity change from 0 to 32768 [ 223.189136][ T4636] libceph: mon0 (1)[c::]:6789 connect error [ 223.214755][ T6526] ceph: No mds server is up or the cluster is laggy [ 223.278367][ T6498] XFS (loop4): Mounting V5 Filesystem [ 223.515305][ T6498] XFS (loop4): Ending clean mount [ 223.543523][ T6498] XFS (loop4): Quotacheck needed: Please wait. [ 223.664729][ T6498] XFS (loop4): Quotacheck: Done. [ 223.816610][ T6563] device bridge_slave_0 left promiscuous mode [ 223.823047][ T6563] bridge0: port 1(bridge_slave_0) entered disabled state [ 223.831661][ T6563] device bridge_slave_1 left promiscuous mode [ 223.850324][ T6563] bridge0: port 2(bridge_slave_1) entered disabled state [ 223.870908][ T6563] bond0: (slave bond_slave_0): Releasing backup interface [ 223.885728][ T4270] XFS (loop4): Unmounting Filesystem [ 223.939004][ T6563] team0: Failed to send port change of device team_slave_0 via netlink (err -105) [ 223.999523][ T6563] team0: Port device team_slave_0 removed [ 224.030162][ T6563] team0: Failed to send options change via netlink (err -105) [ 224.057813][ T6563] team0: Failed to send port change of device team_slave_1 via netlink (err -105) [ 224.093986][ T6563] team0: Port device team_slave_1 removed [ 224.125852][ T6563] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 224.137858][ T6563] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 224.160831][ T6567] team0: Failed to send options change via netlink (err -105) [ 224.169972][ T6567] team0: Mode changed to "loadbalance" [ 224.180028][ T6571] netlink: 24 bytes leftover after parsing attributes in process `syz.0.700'. [ 224.271850][ T6573] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 224.318744][ T6573] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 224.381051][ T6573] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 224.447721][ T6574] team0: Unable to change to the same mode the team is in [ 224.508737][ T4636] libceph: connect (1)[c::]:6789 error -101 [ 224.535756][ T4636] libceph: mon0 (1)[c::]:6789 connect error [ 225.122777][ T4636] libceph: connect (1)[c::]:6789 error -101 [ 225.140358][ T4636] libceph: mon0 (1)[c::]:6789 connect error [ 225.260285][ T6578] ceph: No mds server is up or the cluster is laggy [ 225.314579][ T6596] netlink: 'syz.3.707': attribute type 12 has an invalid length. [ 225.819353][ T6614] netlink: 24 bytes leftover after parsing attributes in process `syz.0.714'. [ 226.030659][ T26] audit: type=1326 audit(1760594638.444:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6616 comm="syz.0.719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8430b8eec9 code=0x7ffc0000 [ 226.296436][ T6598] loop1: detected capacity change from 0 to 32768 [ 226.469406][ T6598] XFS (loop1): Mounting V5 Filesystem [ 227.208116][ T6598] XFS (loop1): Ending clean mount [ 227.267026][ T6598] XFS (loop1): Quotacheck needed: Please wait. [ 227.401130][ T6598] XFS (loop1): Quotacheck: Done. [ 227.445037][ T4354] libceph: connect (1)[c::]:6789 error -101 [ 227.451927][ T4354] libceph: mon0 (1)[c::]:6789 connect error [ 227.543559][ T6645] netlink: 'syz.3.723': attribute type 12 has an invalid length. [ 227.722764][ T4354] libceph: connect (1)[c::]:6789 error -101 [ 227.733055][ T4354] libceph: mon0 (1)[c::]:6789 connect error [ 228.007724][ T4265] XFS (loop1): Unmounting Filesystem [ 228.071895][ T6649] device syzkaller0 entered promiscuous mode [ 228.167712][ T6641] ceph: No mds server is up or the cluster is laggy [ 231.829708][ T6660] netlink: 124 bytes leftover after parsing attributes in process `syz.0.729'. [ 231.843015][ T6677] netlink: 24 bytes leftover after parsing attributes in process `syz.1.734'. [ 232.296247][ T6682] netlink: 'syz.2.735': attribute type 12 has an invalid length. [ 232.483338][ T6690] netlink: 72 bytes leftover after parsing attributes in process `syz.3.740'. [ 232.574768][ T6695] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 232.600501][ T6695] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 232.679579][ T6695] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 232.804670][ T6698] team0: Unable to change to the same mode the team is in [ 233.216092][ T6715] netlink: 116 bytes leftover after parsing attributes in process `syz.1.749'. [ 233.528649][ T6728] netlink: 'syz.2.755': attribute type 12 has an invalid length. [ 233.722495][ T26] kauditd_printk_skb: 6 callbacks suppressed [ 233.722510][ T26] audit: type=1326 audit(1760594646.144:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6731 comm="syz.1.757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49ebb8eec9 code=0x7ffc0000 [ 233.821502][ T26] audit: type=1326 audit(1760594646.144:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6731 comm="syz.1.757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49ebb8eec9 code=0x7ffc0000 [ 233.929426][ T6722] device syzkaller0 entered promiscuous mode [ 233.940332][ T26] audit: type=1326 audit(1760594646.144:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6731 comm="syz.1.757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49ebb8eec9 code=0x7ffc0000 [ 233.965478][ T6739] netlink: 24 bytes leftover after parsing attributes in process `syz.3.759'. [ 234.004221][ T26] audit: type=1326 audit(1760594646.144:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6731 comm="syz.1.757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49ebb8eec9 code=0x7ffc0000 [ 234.125082][ T26] audit: type=1326 audit(1760594646.144:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6731 comm="syz.1.757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f49ebb8eec9 code=0x7ffc0000 [ 234.209413][ T26] audit: type=1326 audit(1760594646.144:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6731 comm="syz.1.757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49ebb8eec9 code=0x7ffc0000 [ 234.245083][ T26] audit: type=1326 audit(1760594646.144:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6731 comm="syz.1.757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49ebb8eec9 code=0x7ffc0000 [ 234.282621][ T26] audit: type=1326 audit(1760594646.144:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6731 comm="syz.1.757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49ebb8eec9 code=0x7ffc0000 [ 234.313459][ T6744] input: syz1 as /devices/virtual/input/input6 [ 234.321756][ T26] audit: type=1326 audit(1760594646.144:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6731 comm="syz.1.757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49ebb8eec9 code=0x7ffc0000 [ 234.381882][ T26] audit: type=1326 audit(1760594646.144:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6731 comm="syz.1.757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7f49ebb8eec9 code=0x7ffc0000 [ 238.317291][ T6749] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 238.326921][ T6749] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 238.334534][ T6749] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 238.354286][ T6750] team0: Unable to change to the same mode the team is in [ 238.365749][ T6752] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 238.388143][ T6752] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 238.412340][ T6752] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 238.467383][ T6761] netlink: 'syz.4.766': attribute type 12 has an invalid length. [ 238.486334][ T6766] netlink: 116 bytes leftover after parsing attributes in process `syz.2.768'. [ 238.946641][ T6785] loop1: detected capacity change from 0 to 512 [ 239.427217][ T6785] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 239.671434][ T6785] ext4 filesystem being mounted at /171/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 240.039773][ T6799] device syzkaller0 entered promiscuous mode [ 240.904511][ T4265] EXT4-fs (loop1): unmounting filesystem. [ 243.256187][ T6812] netlink: 'syz.0.782': attribute type 12 has an invalid length. [ 243.268008][ T6815] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 243.281367][ T6815] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 243.289359][ T6815] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 243.351067][ T6817] team0: Unable to change to the same mode the team is in [ 243.362590][ T6819] netlink: 116 bytes leftover after parsing attributes in process `syz.2.785'. [ 244.547673][ T6848] loop2: detected capacity change from 0 to 512 [ 244.678040][ T6848] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 244.767547][ T6848] ext4 filesystem being mounted at /163/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 246.027331][ T6881] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 246.097700][ T6881] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 246.106624][ T6881] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 246.129670][ T4266] EXT4-fs (loop2): unmounting filesystem. [ 246.174621][ T6881] team0: Unable to change to the same mode the team is in [ 247.161986][ T6913] loop4: detected capacity change from 0 to 512 [ 247.275427][ T6913] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 247.284684][ T6913] ext4 filesystem being mounted at /175/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 248.427108][ T4270] EXT4-fs (loop4): unmounting filesystem. [ 248.461971][ T6929] kvm: pic: single mode not supported [ 248.462608][ T6929] kvm: pic: level sensitive irq not supported [ 249.179154][ T6957] device syzkaller0 entered promiscuous mode [ 249.227584][ T6965] loop0: detected capacity change from 0 to 512 [ 249.348760][ T6965] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 249.388923][ T6965] ext4 filesystem being mounted at /153/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 250.494796][ T4264] EXT4-fs (loop0): unmounting filesystem. [ 253.200327][ T7005] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 253.230673][ T7005] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 253.258920][ T7005] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 253.344045][ T7006] team0: Mode changed to "loadbalance" [ 254.187223][ T7028] loop1: detected capacity change from 0 to 32768 [ 254.252660][ T7044] netlink: 20 bytes leftover after parsing attributes in process `syz.0.863'. [ 254.328386][ T7028] XFS (loop1): Mounting V5 Filesystem [ 254.389105][ T7028] XFS (loop1): Ending clean mount [ 254.443436][ T7028] XFS (loop1): Quotacheck needed: Please wait. [ 254.622922][ T7028] XFS (loop1): Quotacheck: Done. [ 254.688896][ T26] kauditd_printk_skb: 4 callbacks suppressed [ 254.688911][ T26] audit: type=1326 audit(1760594667.104:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.0.868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8430b8eec9 code=0x7ffc0000 [ 254.711754][ T7066] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 254.748123][ T26] audit: type=1326 audit(1760594667.134:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.0.868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8430b8eec9 code=0x7ffc0000 [ 254.775453][ T7066] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 254.812777][ T7066] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 254.829564][ T26] audit: type=1326 audit(1760594667.134:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.0.868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8430b8eec9 code=0x7ffc0000 [ 254.875377][ T4265] XFS (loop1): Unmounting Filesystem [ 254.919944][ T26] audit: type=1326 audit(1760594667.134:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.0.868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8430b8eec9 code=0x7ffc0000 [ 254.958468][ T7067] team0: Unable to change to the same mode the team is in [ 255.008594][ T26] audit: type=1326 audit(1760594667.134:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.0.868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f8430b8eec9 code=0x7ffc0000 [ 255.090330][ T26] audit: type=1326 audit(1760594667.134:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.0.868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8430b8eec9 code=0x7ffc0000 [ 255.122380][ T26] audit: type=1326 audit(1760594667.134:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.0.868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8430b8eec9 code=0x7ffc0000 [ 255.182637][ T26] audit: type=1326 audit(1760594667.134:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.0.868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8430b8eec9 code=0x7ffc0000 [ 255.277170][ T26] audit: type=1326 audit(1760594667.134:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.0.868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8430b8eec9 code=0x7ffc0000 [ 255.324070][ T7079] loop1: detected capacity change from 0 to 512 [ 255.350671][ T26] audit: type=1326 audit(1760594667.134:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.0.868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7f8430b8eec9 code=0x7ffc0000 [ 255.382502][ T4487] libceph: connect (1)[c::]:6789 error -101 [ 255.389059][ T4487] libceph: mon0 (1)[c::]:6789 connect error [ 255.498464][ T7079] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 255.509444][ T7079] ext4 filesystem being mounted at /189/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 255.682830][ T4487] libceph: connect (1)[c::]:6789 error -101 [ 255.695062][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.702125][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.713549][ T4487] libceph: mon0 (1)[c::]:6789 connect error [ 256.192143][ T7077] ceph: No mds server is up or the cluster is laggy [ 256.297768][ T4489] libceph: connect (1)[c::]:6789 error -101 [ 256.309674][ T4489] libceph: mon0 (1)[c::]:6789 connect error [ 256.456763][ T4265] EXT4-fs (loop1): unmounting filesystem. [ 257.243089][ T7128] loop1: detected capacity change from 0 to 512 [ 257.287803][ T7128] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 257.310052][ T7128] ext4 filesystem being mounted at /193/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 257.391579][ T7104] loop0: detected capacity change from 0 to 32768 [ 257.653023][ T7104] XFS (loop0): Mounting V5 Filesystem [ 258.549838][ T7104] XFS (loop0): Ending clean mount [ 258.557392][ T7104] XFS (loop0): Quotacheck needed: Please wait. [ 258.623638][ T4265] EXT4-fs (loop1): unmounting filesystem. [ 258.647828][ T7104] XFS (loop0): Quotacheck: Done. [ 258.802634][ T4264] XFS (loop0): Unmounting Filesystem [ 259.421204][ T7170] loop3: detected capacity change from 0 to 512 [ 259.566476][ T7174] netlink: 24 bytes leftover after parsing attributes in process `syz.0.897'. [ 259.610966][ T7170] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 259.632324][ T7170] ext4 filesystem being mounted at /161/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 260.841437][ T4281] EXT4-fs (loop3): unmounting filesystem. [ 260.883665][ T7172] loop1: detected capacity change from 0 to 32768 [ 260.950232][ T7172] XFS (loop1): Mounting V5 Filesystem [ 261.171479][ T22] libceph: connect (1)[c::]:6789 error -101 [ 261.190529][ T22] libceph: mon0 (1)[c::]:6789 connect error [ 261.239588][ T7172] XFS (loop1): Ending clean mount [ 261.254043][ T7172] XFS (loop1): Quotacheck needed: Please wait. [ 261.391981][ T7172] XFS (loop1): Quotacheck: Done. [ 261.492556][ T22] libceph: connect (1)[c::]:6789 error -101 [ 261.500068][ T22] libceph: mon0 (1)[c::]:6789 connect error [ 261.560776][ T4265] XFS (loop1): Unmounting Filesystem [ 261.764728][ T7229] netlink: 24 bytes leftover after parsing attributes in process `syz.3.924'. [ 261.925050][ T7208] ceph: No mds server is up or the cluster is laggy [ 262.798414][ T7251] loop4: detected capacity change from 0 to 32768 [ 262.871343][ T7251] XFS (loop4): Mounting V5 Filesystem [ 262.934802][ T7251] XFS (loop4): Ending clean mount [ 262.959153][ T7251] XFS (loop4): Quotacheck needed: Please wait. [ 263.055469][ T7251] XFS (loop4): Quotacheck: Done. [ 263.377120][ T7276] kvm: pic: non byte write [ 263.540538][ T4270] XFS (loop4): Unmounting Filesystem [ 264.595736][ T7290] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 264.681235][ T7290] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 264.717081][ T7290] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 265.282699][ T7319] kvm: pic: non byte write [ 266.841571][ T7315] loop4: detected capacity change from 0 to 32768 [ 266.934895][ T7341] loop3: detected capacity change from 0 to 512 [ 267.013515][ T7315] XFS (loop4): Mounting V5 Filesystem [ 267.110892][ T7341] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 267.150612][ T7341] ext4 filesystem being mounted at /177/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 267.222413][ T7315] XFS (loop4): Ending clean mount [ 267.425635][ T7315] XFS (loop4): Quotacheck needed: Please wait. [ 268.292698][ T7315] XFS (loop4): Quotacheck: Done. [ 268.379125][ T4281] EXT4-fs (loop3): unmounting filesystem. [ 268.439875][ T4270] XFS (loop4): Unmounting Filesystem [ 268.571261][ T7360] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 268.648789][ T7360] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 268.708762][ T7360] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 269.380273][ T7371] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer. [ 270.545559][ T7407] infiniband syz0: set active [ 270.554858][ T7407] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 270.565514][ T7407] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 270.574110][ T7407] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 270.605571][ T4487] lo speed is unknown, defaulting to 1000 [ 272.425639][ T7439] infiniband syz0: set active [ 272.471714][ T7439] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 272.518670][ T7439] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 272.539272][ T7439] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 272.638611][ T22] lo speed is unknown, defaulting to 1000 [ 272.648246][ T7441] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 272.679978][ T7441] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 272.714943][ T7441] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 272.816854][ T4489] libceph: connect (1)[c::]:6789 error -101 [ 272.835135][ T4489] libceph: mon0 (1)[c::]:6789 connect error [ 273.123341][ T4487] libceph: connect (1)[c::]:6789 error -101 [ 273.141722][ T4487] libceph: mon0 (1)[c::]:6789 connect error [ 273.612122][ T7449] ceph: No mds server is up or the cluster is laggy [ 273.678375][ T4636] libceph: connect (1)[c::]:6789 error -101 [ 273.693560][ T4636] libceph: mon0 (1)[c::]:6789 connect error [ 274.554095][ T7482] team0: Unable to change to the same mode the team is in [ 275.290156][ T7505] netlink: 128 bytes leftover after parsing attributes in process `syz.1.1011'. [ 275.379393][ T4392] libceph: connect (1)[c::]:6789 error -101 [ 275.410037][ T4392] libceph: mon0 (1)[c::]:6789 connect error [ 275.569545][ T7516] team0: Unable to change to the same mode the team is in [ 275.713639][ T4392] libceph: connect (1)[c::]:6789 error -101 [ 276.112506][ T4392] libceph: mon0 (1)[c::]:6789 connect error [ 276.126965][ T7508] ceph: No mds server is up or the cluster is laggy [ 276.411379][ T7528] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 276.464735][ T7528] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 276.490508][ T7528] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 276.834345][ T7543] netlink: 128 bytes leftover after parsing attributes in process `syz.4.1025'. [ 278.602214][ T7571] sctp: [Deprecated]: syz.0.1034 (pid 7571) Use of int in max_burst socket option. [ 278.602214][ T7571] Use struct sctp_assoc_value instead [ 278.790168][ T7575] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1038'. [ 279.064720][ T7586] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 279.169466][ T7586] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 279.216104][ T7586] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 280.620277][ T26] kauditd_printk_skb: 18 callbacks suppressed [ 280.620293][ T26] audit: type=1326 audit(1760594693.034:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7608 comm="syz.1.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49ebb8eec9 code=0x7ffc0000 [ 280.727151][ T26] audit: type=1326 audit(1760594693.034:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7608 comm="syz.1.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49ebb8eec9 code=0x7ffc0000 [ 280.803093][ T7616] team0: Unable to change to the same mode the team is in [ 280.821002][ T7612] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer. [ 280.832107][ T26] audit: type=1326 audit(1760594693.034:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7608 comm="syz.1.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49ebb8eec9 code=0x7ffc0000 [ 280.937243][ T26] audit: type=1326 audit(1760594693.034:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7608 comm="syz.1.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f49ebb8eec9 code=0x7ffc0000 [ 281.022207][ T26] audit: type=1326 audit(1760594693.044:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7608 comm="syz.1.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49ebb8eec9 code=0x7ffc0000 [ 281.114647][ T26] audit: type=1326 audit(1760594693.044:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7608 comm="syz.1.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49ebb8eec9 code=0x7ffc0000 [ 281.169494][ T26] audit: type=1326 audit(1760594693.044:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7608 comm="syz.1.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49ebb8eec9 code=0x7ffc0000 [ 281.257960][ T26] audit: type=1326 audit(1760594693.044:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7608 comm="syz.1.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=76 compat=0 ip=0x7f49ebb8eec9 code=0x7ffc0000 [ 281.284776][ T7628] team0: Unable to change to the same mode the team is in [ 281.342409][ T26] audit: type=1326 audit(1760594693.044:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7608 comm="syz.1.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49ebb8eec9 code=0x7ffc0000 [ 281.455117][ T7630] loop1: detected capacity change from 0 to 512 [ 281.470816][ T26] audit: type=1326 audit(1760594693.044:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7608 comm="syz.1.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f49ebb8eec9 code=0x7ffc0000 [ 281.539095][ T7630] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 281.554725][ T7630] ext4 filesystem being mounted at /226/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 283.245183][ T4265] EXT4-fs (loop1): unmounting filesystem. [ 283.508892][ T7652] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer. [ 283.527592][ T7659] team0: Unable to change to the same mode the team is in [ 284.704702][ T7693] team0: Unable to change to the same mode the team is in [ 285.513212][ T22] libceph: connect (1)[c::]:6789 error -101 [ 285.539554][ T22] libceph: mon0 (1)[c::]:6789 connect error [ 285.842776][ T4392] libceph: connect (1)[c::]:6789 error -101 [ 285.849910][ T4392] libceph: mon0 (1)[c::]:6789 connect error [ 285.939983][ T7717] team0: Unable to change to the same mode the team is in [ 286.179499][ T7726] team0: Unable to change to the same mode the team is in [ 286.240075][ T7728] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1093'. [ 286.263324][ T7710] ceph: No mds server is up or the cluster is laggy [ 287.113587][ T7757] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1105'. [ 287.116299][ T7759] team0: Unable to change to the same mode the team is in [ 287.501640][ T7765] team0: Unable to change to the same mode the team is in [ 287.752588][ T7767] loop2: detected capacity change from 0 to 512 [ 287.854310][ T7767] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 287.901519][ T7767] ext4 filesystem being mounted at /228/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 289.081488][ T4266] EXT4-fs (loop2): unmounting filesystem. [ 289.287066][ T7795] team0: Unable to change to the same mode the team is in [ 289.448604][ T7799] pit: kvm: requested 24304 ns i8254 timer period limited to 200000 ns [ 289.471898][ T7799] pit: kvm: requested 113981 ns i8254 timer period limited to 200000 ns [ 289.485295][ T7799] pit: kvm: requested 134933 ns i8254 timer period limited to 200000 ns [ 289.499017][ T7799] pit: kvm: requested 128228 ns i8254 timer period limited to 200000 ns [ 289.511086][ T7799] pit: kvm: requested 16761 ns i8254 timer period limited to 200000 ns [ 289.527122][ T7799] pit: kvm: requested 171809 ns i8254 timer period limited to 200000 ns [ 289.537846][ T7799] pit: kvm: requested 180190 ns i8254 timer period limited to 200000 ns [ 289.551481][ T7799] pit: kvm: requested 196114 ns i8254 timer period limited to 200000 ns [ 289.561852][ T7799] pit: kvm: requested 190247 ns i8254 timer period limited to 200000 ns [ 289.591247][ T7799] pit: kvm: requested 82133 ns i8254 timer period limited to 200000 ns [ 290.218522][ T7823] loop0: detected capacity change from 0 to 512 [ 290.304482][ T7823] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 290.418746][ T7823] ext4 filesystem being mounted at /204/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 291.520344][ T7837] team0: Unable to change to the same mode the team is in [ 291.548678][ T7838] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1131'. [ 291.595309][ T4264] EXT4-fs (loop0): unmounting filesystem. [ 292.769927][ T7870] team0: Unable to change to the same mode the team is in [ 294.751694][ T7905] team0: Unable to change to the same mode the team is in [ 295.447031][ T7937] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1170'. [ 295.595082][ T7943] team0: Unable to change to the same mode the team is in [ 297.101265][ T7974] team0: Unable to change to the same mode the team is in [ 297.368497][ T7984] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1186'. [ 299.271555][ T8017] team0: Unable to change to the same mode the team is in [ 299.495624][ T8024] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1199'. [ 301.102223][ T8057] team0: Unable to change to the same mode the team is in [ 301.887666][ T8078] device syzkaller0 entered promiscuous mode [ 302.882642][ T8059] ------------[ cut here ]------------ [ 302.888246][ T8059] WARNING: CPU: 0 PID: 8059 at arch/x86/kvm/x86.c:11228 kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390 [ 302.898713][ T8059] Modules linked in: [ 302.902717][ T8059] CPU: 0 PID: 8059 Comm: syz.2.1212 Not tainted syzkaller #0 [ 302.910119][ T8059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 302.920798][ T8059] RIP: 0010:kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390 [ 302.927515][ T8059] Code: e8 a7 33 c1 00 e9 4e ef ff ff 44 89 f9 80 e1 07 38 c1 0f 8c db e5 ff ff 4c 89 ff e8 6c 33 c1 00 e9 ce e5 ff ff e8 a2 05 71 00 <0f> 0b e9 da fc ff ff 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c ae eb [ 302.947271][ T8059] RSP: 0018:ffffc900047cfc48 EFLAGS: 00010287 [ 302.953534][ T8059] RAX: ffffffff810fc93e RBX: ffff88802907cf80 RCX: 0000000000080000 [ 302.961565][ T8059] RDX: ffffc9000db01000 RSI: 00000000000003d3 RDI: 00000000000003d4 [ 302.969637][ T8059] RBP: ffff88805b3be000 R08: dffffc0000000000 R09: fffffbfff215c47a [ 302.977698][ T8059] R10: fffffbfff215c47a R11: 1ffffffff215c479 R12: ffff88802907d274 [ 302.985845][ T8059] R13: ffff88802907d058 R14: dffffc0000000000 R15: 0000000000000000 [ 302.993911][ T8059] FS: 00007fb3628506c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 303.003035][ T8059] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 303.009667][ T8059] CR2: 0000555580a844a8 CR3: 000000007901e000 CR4: 00000000003526f0 [ 303.017842][ T8059] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 303.025942][ T8059] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 303.034012][ T8059] Call Trace: [ 303.037317][ T8059] [ 303.040276][ T8059] ? mutex_lock_nested+0x10/0x10 [ 303.045321][ T8059] ? kvm_arch_vcpu_ioctl_run+0x139/0x2390 [ 303.051110][ T8059] kvm_vcpu_ioctl+0x887/0xb80 [ 303.055876][ T8059] ? xa_release+0x50/0x50 [ 303.060251][ T8059] ? __fget_files+0x28/0x4d0 [ 303.064931][ T8059] ? bpf_lsm_file_ioctl+0x5/0x10 [ 303.069914][ T8059] ? security_file_ioctl+0x7c/0xa0 [ 303.075119][ T8059] ? xa_release+0x50/0x50 [ 303.079494][ T8059] __se_sys_ioctl+0xfa/0x170 [ 303.084252][ T8059] do_syscall_64+0x4c/0xa0 [ 303.088710][ T8059] ? clear_bhb_loop+0x60/0xb0 [ 303.093476][ T8059] ? clear_bhb_loop+0x60/0xb0 [ 303.098191][ T8059] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 303.104157][ T8059] RIP: 0033:0x7fb36198eec9 [ 303.108621][ T8059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 303.128326][ T8059] RSP: 002b:00007fb362850038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 303.136825][ T8059] RAX: ffffffffffffffda RBX: 00007fb361be5fa0 RCX: 00007fb36198eec9 [ 303.144990][ T8059] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 303.153049][ T8059] RBP: 00007fb361a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 303.161063][ T8059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 303.169141][ T8059] R13: 00007fb361be6038 R14: 00007fb361be5fa0 R15: 00007ffda5ab4558 [ 303.177237][ T8059] [ 303.180317][ T8059] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 303.187628][ T8059] CPU: 0 PID: 8059 Comm: syz.2.1212 Not tainted syzkaller #0 [ 303.195038][ T8059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 303.205136][ T8059] Call Trace: [ 303.208627][ T8059] [ 303.211590][ T8059] dump_stack_lvl+0x168/0x22e [ 303.216335][ T8059] ? memcpy+0x3c/0x60 [ 303.220368][ T8059] ? show_regs_print_info+0x12/0x12 [ 303.225607][ T8059] ? load_image+0x3b0/0x3b0 [ 303.230180][ T8059] panic+0x2c9/0x710 [ 303.234170][ T8059] ? bpf_jit_dump+0xd0/0xd0 [ 303.238719][ T8059] __warn+0x2f8/0x4f0 [ 303.242722][ T8059] ? kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390 [ 303.248546][ T8059] ? kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390 [ 303.254364][ T8059] report_bug+0x2ba/0x4f0 [ 303.258710][ T8059] ? kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390 [ 303.264615][ T8059] handle_bug+0x3a/0x70 [ 303.268783][ T8059] exc_invalid_op+0x16/0x40 [ 303.273296][ T8059] asm_exc_invalid_op+0x16/0x20 [ 303.278152][ T8059] RIP: 0010:kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390 [ 303.284578][ T8059] Code: e8 a7 33 c1 00 e9 4e ef ff ff 44 89 f9 80 e1 07 38 c1 0f 8c db e5 ff ff 4c 89 ff e8 6c 33 c1 00 e9 ce e5 ff ff e8 a2 05 71 00 <0f> 0b e9 da fc ff ff 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c ae eb [ 303.304192][ T8059] RSP: 0018:ffffc900047cfc48 EFLAGS: 00010287 [ 303.310270][ T8059] RAX: ffffffff810fc93e RBX: ffff88802907cf80 RCX: 0000000000080000 [ 303.318244][ T8059] RDX: ffffc9000db01000 RSI: 00000000000003d3 RDI: 00000000000003d4 [ 303.326225][ T8059] RBP: ffff88805b3be000 R08: dffffc0000000000 R09: fffffbfff215c47a [ 303.334209][ T8059] R10: fffffbfff215c47a R11: 1ffffffff215c479 R12: ffff88802907d274 [ 303.342190][ T8059] R13: ffff88802907d058 R14: dffffc0000000000 R15: 0000000000000000 [ 303.350174][ T8059] ? kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390 [ 303.356003][ T8059] ? kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390 [ 303.361819][ T8059] ? mutex_lock_nested+0x10/0x10 [ 303.366773][ T8059] ? kvm_arch_vcpu_ioctl_run+0x139/0x2390 [ 303.372510][ T8059] kvm_vcpu_ioctl+0x887/0xb80 [ 303.377203][ T8059] ? xa_release+0x50/0x50 [ 303.381552][ T8059] ? __fget_files+0x28/0x4d0 [ 303.386183][ T8059] ? bpf_lsm_file_ioctl+0x5/0x10 [ 303.391164][ T8059] ? security_file_ioctl+0x7c/0xa0 [ 303.396294][ T8059] ? xa_release+0x50/0x50 [ 303.400632][ T8059] __se_sys_ioctl+0xfa/0x170 [ 303.405253][ T8059] do_syscall_64+0x4c/0xa0 [ 303.409678][ T8059] ? clear_bhb_loop+0x60/0xb0 [ 303.414364][ T8059] ? clear_bhb_loop+0x60/0xb0 [ 303.419047][ T8059] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 303.424949][ T8059] RIP: 0033:0x7fb36198eec9 [ 303.429370][ T8059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 303.448984][ T8059] RSP: 002b:00007fb362850038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 303.457406][ T8059] RAX: ffffffffffffffda RBX: 00007fb361be5fa0 RCX: 00007fb36198eec9 [ 303.465389][ T8059] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 303.473367][ T8059] RBP: 00007fb361a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 303.481359][ T8059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 303.489332][ T8059] R13: 00007fb361be6038 R14: 00007fb361be5fa0 R15: 00007ffda5ab4558 [ 303.497322][ T8059] [ 303.500724][ T8059] Kernel Offset: disabled [ 303.505138][ T8059] Rebooting in 86400 seconds..