last executing test programs: 6.743315115s ago: executing program 1 (id=209): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'xchacha12\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000340)="71e67a15cdf0311cfcf33a52a7d86bd1", 0x20) r1 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg$alg(r1, &(0x7f0000000d40)=[{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000000)="6db50725c08c11bbd2f097b245b4d706b776a9cf888bccd256c6b1a652da6b1254508f0a2d41949416f99928db60b4280aad0c3f014ff4654ffea04c8853cd", 0x3f}], 0x1, 0x0, 0x0, 0x1}], 0x1, 0x400c040) io_setup(0xff, &(0x7f0000000380)=0x0) r3 = socket$inet6(0xa, 0x1, 0x0) timer_create(0x3, &(0x7f00000028c0)={0x0, 0x0, 0x1}, &(0x7f0000002900)=0x0) timer_settime(r4, 0x0, &(0x7f0000002940)={{0x77359400}, {0x77359400}}, 0x0) bpf$MAP_CREATE(0x1900000000000000, 0x0, 0x50) bpf$PROG_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r5 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r3, 0x3000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e) sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0xc) r8 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_SIOCETHTOOL(r8, 0x8946, &(0x7f0000000040)={'wlan1\x00', &(0x7f0000000780)=@ethtool_per_queue_op={0x4b, 0xe, [0x1, 0x8, 0x100, 0x8, 0x401, 0x20000000, 0x100, 0x3, 0x1, 0x0, 0xb512, 0x100, 0x2, 0x0, 0x8, 0x5, 0x8, 0x7, 0x5, 0x1, 0x8001, 0x7dc1, 0x2, 0xffff0a8a, 0xc46a, 0x9, 0xdce, 0x8001, 0x0, 0x3ff, 0x0, 0x4, 0x5d10, 0xe, 0x7ff, 0x4455, 0xfffffffe, 0x7a93, 0x10, 0x8, 0x59f7e073, 0x1, 0x3, 0x8, 0x9, 0x8, 0x7, 0x9, 0x9, 0x6, 0x2, 0x7, 0x3, 0xffff7a45, 0x2, 0x1, 0x1, 0x1000, 0x3, 0xb, 0x8e, 0x3ff, 0x1, 0x4, 0x8, 0xfff, 0xfffffff9, 0x9, 0x36c, 0xff, 0x10001, 0x8, 0x1, 0xffff, 0x0, 0x6, 0x0, 0x7, 0x8, 0x5, 0x3, 0x2, 0x0, 0x3, 0x1, 0x6, 0x8, 0x1de7, 0x3, 0xf, 0xd, 0x2, 0x3d, 0xc0000000, 0x7, 0x5, 0x4ac9, 0x2, 0x200, 0x2, 0x6, 0x4, 0x3ff, 0xd59d, 0x7ff, 0x36, 0xfa2b, 0x20000000, 0x2, 0x9, 0x5, 0xfffeffff, 0x7, 0x6, 0xa, 0x4, 0x8, 0x400, 0x4, 0x80000001, 0x8ff, 0x7, 0x56, 0x5, 0xc6, 0x3, 0xe911, 0x7]}}) io_submit(r2, 0x27f, &(0x7f0000001440)=[&(0x7f0000000200)={0x1000000, 0x0, 0x700000000000000, 0x0, 0x0, r1, &(0x7f0000000340), 0x41}]) 5.419707038s ago: executing program 1 (id=211): syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000c40)='./file0\x00', 0x808080, &(0x7f0000000c80)={[{@nogrpid}, {@bh}, {@barrier}]}, 0x0, 0x52c, &(0x7f0000000640)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f00000001c0)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}]}) chdir(&(0x7f00000003c0)='./bus\x00') r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./bus\x00', r0, &(0x7f00000004c0)='./file0\x00', 0x2) 4.816278834s ago: executing program 1 (id=214): prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x5) r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x46942, 0x0) write$binfmt_elf64(r0, &(0x7f0000000940)=ANY=[], 0x78) r1 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0) ftruncate(r1, 0x2007ffa) sendfile(r1, r1, 0x0, 0x800000009) 3.655764107s ago: executing program 1 (id=218): creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x8aba, 0x4, 0x6, 0x804, 0x7fffffff, 0xf, 0x120000, 0x5, 0x0, 0x8, 0x8000000000000001, 0x2, 0x0, 0x101, 0xc, 0x1], 0x8000000, 0x141200}) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 3.166013614s ago: executing program 2 (id=222): syz_clone3(&(0x7f0000000800)={0x18000000, 0x0, 0x0, 0x0, {0x2b}, 0x0, 0x0, 0x0, 0x0}, 0x58) 2.339405494s ago: executing program 2 (id=224): bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x11, &(0x7f0000000940)=ANY=[@ANYBLOB="180000000000000000000000000400008500000061000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb702000008", @ANYRES64=0x0], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) sendmmsg(0xffffffffffffffff, &(0x7f0000000ec0)=[{{&(0x7f00000002c0)=@l2tp={0x2, 0x0, @private=0xa010100, 0x4}, 0x80, &(0x7f0000000340)=[{&(0x7f00000006c0)="cc5c84001214dbd9e5943aa8a315357330c56529d6b619a78687eea13ea02981afbb0fab70e8c3ab037cd82bd48f4947702a177974e7eff5f2ccdec909645f69e3dea5153157374459f6a21ba8609552d9ada54e81b0f19b55b77cf382ad229baa9decce1ea639a300f1fa65b945a0e29d36cb8ed369e91698c0e9ff3fea437d95cb3096af980c02d7c228cc0fcd139de0c5787c6a09f430de0c391e8d48f4601f42e50c3247201ff179e204923a8d4c6d57af9f48b8069be567e24c9045dd750e47e4acf8e33696", 0xc8}, {&(0x7f00000007c0)="a960e57530b65741465209e7c6235055450b1ed3da8592b928d8e20971659d8e3ca392643af5fa7ae0e3455099a5f7b857afa34cbf9962bdc9db46a15e7dcf9412a2b98b6ae75ca1bd7eae82d94855e9ced28430f77527b7c0b999eab05883ce32fa9b99187b196d53939db62b2b37c0cd0dea2a1be6f97dbcd0937bb416c3fb74a9d08d9afa4c86a507485b0e6821ba9d82e6b8522a6eba1734eccbc5659567aa08b5b93be09bc2a6d6319acbd1aeb751f8e9b7ce", 0xb5}], 0x2}}, {{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000880)}], 0x1}}], 0x2, 0x11) accept4(0xffffffffffffffff, 0x0, 0x0, 0x800) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000540)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r1, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r2, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0) 2.043175422s ago: executing program 1 (id=227): r0 = syz_usb_connect$uac1(0x0, 0xac, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000000000106b1d010140000102030109029a00030100000009040000000101"], 0x0) syz_usb_control_io$uac1(r0, &(0x7f0000000840)={0x14, 0x0, &(0x7f0000000940)={0x0, 0x3, 0x71, @string={0x71, 0x3, "88666c98b996a5de7ee290f2e7736b6d0a3022811c8d1825ec0e70d3ebc35a89221e9aabe706b494b1b20acf916a672476af5d1b5623f58888f214f51416bdd4e8695f71b5f70c4c02b016c66c4e756f5d0fa48015009c83dce477d03b9af58e5b29ddebafc2e41797142c1aaf1e7e"}}}, &(0x7f0000000d00)={0x44, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000c00)={0x20, 0x82, 0x1, 'Z'}, 0x0, 0x0, 0x0}) 1.952314221s ago: executing program 2 (id=229): syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000080)='./file0\x00', 0x4000, &(0x7f0000000240)={[{@part={'part', 0x3d, 0x10ffff}}, {@umask={'umask', 0x3d, 0x4ffff}}, {@codepage={'codepage', 0x3d, 'maccroatian'}}, {@iocharset={'iocharset', 0x3d, 'cp855'}}]}, 0x1, 0x347, &(0x7f0000000600)="$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") syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000f00)='./file1\x00', 0x14444, &(0x7f00000001c0)=ANY=[], 0xfe, 0xc22, &(0x7f00000002c0)="$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") mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x40042, 0x0) 1.768069069s ago: executing program 0 (id=230): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xff, 0x0, 0x7ffc1ffb}]}) rt_sigaction(0xd, &(0x7f00000001c0)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80cd}], 0x1, 0x7) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000040)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x12, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1a, 0x1, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x91) 1.767785999s ago: executing program 3 (id=231): bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x1000}, 0x38) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendto$inet(0xffffffffffffffff, &(0x7f00000000c0)="8689d46205a34100ff2bbe11a5ce7879edaf02afe39ead95913e9c4f8cf31440006769ebdf12cfacae8e8c03f5db079da7d9", 0x32, 0x20000000, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0) r3 = dup(r2) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000)=@arm64={0x8, 0x2, 0x2, '\x00', 0x2}) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000f9a000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, 0x0}], 0x54, 0x8, &(0x7f0000000380)=[@flags={0x3, 0x18c244}], 0x10000000000000c5) ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f00000002c0)=0x10000) ioctl$KVM_RUN(r2, 0xae80, 0x0) 1.566716619s ago: executing program 2 (id=232): r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/comedi4\x00', 0x2, 0x0) ioctl$COMEDI_INSNLIST(r0, 0x8010640b, &(0x7f0000000100)={0x0, &(0x7f0000000040)}) 1.55412025s ago: executing program 0 (id=233): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) writev(r0, &(0x7f0000000140)=[{&(0x7f0000000180)="a2", 0x1}], 0x1) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r0, 0x0) r1 = socket$inet(0x2, 0x1, 0x0) getsockopt$EBT_SO_GET_ENTRIES(r1, 0x0, 0x81, &(0x7f00000001c0)={'nat\x00', 0x0, 0x0, 0x90, [0x4, 0x80, 0xffffffffffffffc0, 0xfff, 0xfffffffffffffff7, 0xd], 0x0, 0x0, 0x0}, &(0x7f0000000240)=0x108) 1.412041184s ago: executing program 3 (id=234): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x482, 0x0) ioctl$TCSETS(r0, 0x40045431, 0x0) syz_open_pts(r0, 0x0) 1.283083916s ago: executing program 2 (id=235): creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x8aba, 0x4, 0x6, 0x804, 0x7fffffff, 0xf, 0x120000, 0x5, 0x0, 0x8, 0x8000000000000001, 0x2, 0x0, 0x101, 0xc, 0x1], 0x8000000, 0x141200}) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 1.182912976s ago: executing program 0 (id=236): syz_mount_image$ext4(&(0x7f0000000140)='ext2\x00', &(0x7f0000000080)='./file0\x00', 0xa14401, &(0x7f0000000380)={[{@errors_remount}, {@nodiscard}]}, 0x8, 0x48d, &(0x7f0000001340)="$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") r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r0, &(0x7f0000000240)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x100) 1.005345563s ago: executing program 3 (id=237): bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x11, &(0x7f0000000940)=ANY=[@ANYBLOB="180000000000000000000000000400008500000061000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb702000008", @ANYRES64=0x0], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) sendmmsg(0xffffffffffffffff, &(0x7f0000000ec0)=[{{&(0x7f00000002c0)=@l2tp={0x2, 0x0, @private=0xa010100, 0x4}, 0x80, &(0x7f0000000340)=[{&(0x7f00000006c0)="cc5c84001214dbd9e5943aa8a315357330c56529d6b619a78687eea13ea02981afbb0fab70e8c3ab037cd82bd48f4947702a177974e7eff5f2ccdec909645f69e3dea5153157374459f6a21ba8609552d9ada54e81b0f19b55b77cf382ad229baa9decce1ea639a300f1fa65b945a0e29d36cb8ed369e91698c0e9ff3fea437d95cb3096af980c02d7c228cc0fcd139de0c5787c6a09f430de0c391e8d48f4601f42e50c3247201ff179e204923a8d4c6d57af9f48b8069be567e24c9045dd750e47e4acf8e33696", 0xc8}, {&(0x7f00000007c0)="a960e57530b65741465209e7c6235055450b1ed3da8592b928d8e20971659d8e3ca392643af5fa7ae0e3455099a5f7b857afa34cbf9962bdc9db46a15e7dcf9412a2b98b6ae75ca1bd7eae82d94855e9ced28430f77527b7c0b999eab05883ce32fa9b99187b196d53939db62b2b37c0cd0dea2a1be6f97dbcd0937bb416c3fb74a9d08d9afa4c86a507485b0e6821ba9d82e6b8522a6eba1734eccbc5659567aa08b5b93be09bc2a6d6319acbd1aeb751f8e9b7ce", 0xb5}], 0x2}}, {{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000880)="90b9f79fecb3ad0dc00ca95fb148a3ba4355cee5ce27d2c10d8474464a37dea0c1ab2a", 0x23}], 0x1}}], 0x2, 0x11) accept4(0xffffffffffffffff, 0x0, 0x0, 0x800) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000540)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r1, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r2, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0) 909.873162ms ago: executing program 3 (id=238): r0 = syz_open_procfs(0x0, &(0x7f0000000180)='auxv\x00') r1 = socket(0x1d, 0x2, 0x6) mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r0]) 866.676696ms ago: executing program 0 (id=239): ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="c4000000100001002cbd7000fddbdf2500000000", @ANYRES32=r0, @ANYBLOB="38280400230000005c0012800b00010062726964676500004c00028005002a000000000005001900020000000c002100000000000000000005002b"], 0xc4}, 0x1, 0x0, 0x0, 0x8090}, 0x4048004) 676.006995ms ago: executing program 0 (id=240): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x3000010, &(0x7f0000000140)={[{@journal_dev={'journal_dev', 0x3d, 0xd353}}, {@stripe={'stripe', 0x3d, 0x5}}]}, 0x0, 0x512, &(0x7f0000000380)="$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") 627.639129ms ago: executing program 3 (id=241): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000680), 0xffffffffffffffff) sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {}, [@L2TP_ATTR_PROTO_VERSION={0x5}, @L2TP_ATTR_CONN_ID={0x8}, @L2TP_ATTR_ENCAP_TYPE={0x6}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_IP_SADDR={0x8, 0x18, @loopback=0xac1414aa}]}, 0x3c}}, 0x0) 396.439322ms ago: executing program 3 (id=242): socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$SIOCSIFMTU(0xffffffffffffffff, 0x541b, 0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) readlink(&(0x7f00000000c0)='./cgroup\x00', &(0x7f0000000380)=""/97, 0x61) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e) r2 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp_SCTP_AUTOCLOSE(r2, 0x84, 0x4, &(0x7f0000000000), &(0x7f0000000080)=0x4) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f00000033c0)={0x53, 0x0, 0x0, 0xfa, @scatter={0x4, 0x0, &(0x7f0000000a80)=[{0x0}, {&(0x7f00000006c0)=""/235, 0xeb}, {&(0x7f00000008c0)=""/132, 0x84}, {&(0x7f0000000980)=""/221, 0xdd}]}, 0x0, 0x0, 0x0, 0x0, 0x800001, 0x0}) r3 = bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x3, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, r3, 0x8, 0x0, 0xff9e, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffedb, 0x0, 0x0, 0x10, 0x4}, 0x94) remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="611230000000000061134c0000000000bf2000000000000015000200071b1750bd030100000000009500000000000000bc26080000000000bf67000000000000070300000fff0700670200000300000016060a000ee600f0bf050000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050000000000000095000000000000004d9bd591d568253e9988431ec068e3a82983d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf719506d2d6b05fe7030586"], &(0x7f0000000100)='GPL\x00'}, 0x48) setsockopt$MRT6_INIT(0xffffffffffffffff, 0x29, 0xc8, &(0x7f0000000340), 0x4) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/fib_trie\x00') ioctl$TIOCGSID(r4, 0x5429, &(0x7f0000000040)) getdents64(0xffffffffffffffff, &(0x7f0000001f00)=""/4093, 0xffd) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="5c00000020000100000000000000000002200000000000000000000005001500"], 0x5c}}, 0x0) r6 = socket$kcm(0x2a, 0x2, 0x0) sendmsg$kcm(r6, &(0x7f0000001f80)={&(0x7f0000001d00)=@qipcrtr={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0x80, 0x0}, 0x0) 138.195877ms ago: executing program 2 (id=243): bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), 0x0, 0x1000}, 0x38) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendto$inet(0xffffffffffffffff, &(0x7f00000000c0)="8689d46205a34100ff2bbe11a5ce7879edaf02afe39ead95913e9c4f8cf31440006769ebdf12cfacae8e8c03", 0x2c, 0x20000000, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000200)={0x0, 0x0, 0xf000, 0x2000, &(0x7f0000f9a000/0x2000)=nil}) r3 = dup(r2) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000)=@arm64={0x8, 0x2, 0x2, '\x00', 0x2}) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000f9a000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, 0x0}], 0x54, 0x8, &(0x7f0000000380)=[@flags={0x3, 0x18c244}], 0x10000000000000c5) ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f00000002c0)=0x10000) ioctl$KVM_RUN(r2, 0xae80, 0x0) 176.4µs ago: executing program 0 (id=244): capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$devlink(&(0x7f0000000000), 0xffffffffffffffff) madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19) sendmsg$NL80211_CMD_SET_PMKSA(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004005}, 0x40) mount$overlay(0x0, 0x0, 0x0, 0x2000084, &(0x7f0000000480)) 0s ago: executing program 1 (id=245): prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) unshare(0x22020600) r0 = getpid() r1 = syz_pidfd_open(r0, 0x0) setns(r1, 0x24020000) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.151' (ED25519) to the list of known hosts. [ 81.474854][ T5780] cgroup: Unknown subsys name 'net' [ 81.639121][ T5780] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 83.334914][ T5780] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 85.042292][ T50] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 85.051429][ T50] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 85.070466][ T50] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 85.081149][ T50] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 85.089073][ T50] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 85.096671][ T50] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 85.160614][ T50] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 85.170144][ T50] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 85.178043][ T50] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 85.186781][ T50] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 85.195713][ T50] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 85.203827][ T50] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 85.275650][ T50] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 85.284551][ T50] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 85.293952][ T50] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 85.313943][ T50] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 85.323215][ T50] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 85.331605][ T5792] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 85.397934][ T5800] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 85.411070][ T5800] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 85.419044][ T5800] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 85.431478][ T5800] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 85.440489][ T5800] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 85.450875][ T5800] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 85.673590][ T5789] chnl_net:caif_netlink_parms(): no params data found [ 85.808434][ T5793] chnl_net:caif_netlink_parms(): no params data found [ 85.895598][ T5789] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.903025][ T5789] bridge0: port 1(bridge_slave_0) entered disabled state [ 85.911488][ T5789] bridge_slave_0: entered allmulticast mode [ 85.918637][ T5789] bridge_slave_0: entered promiscuous mode [ 85.928122][ T5789] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.935404][ T5789] bridge0: port 2(bridge_slave_1) entered disabled state [ 85.943544][ T5789] bridge_slave_1: entered allmulticast mode [ 85.950959][ T5789] bridge_slave_1: entered promiscuous mode [ 86.066190][ T5793] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.073978][ T5793] bridge0: port 1(bridge_slave_0) entered disabled state [ 86.081531][ T5793] bridge_slave_0: entered allmulticast mode [ 86.088615][ T5793] bridge_slave_0: entered promiscuous mode [ 86.098818][ T5789] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 86.111881][ T5789] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 86.132553][ T5793] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.139887][ T5793] bridge0: port 2(bridge_slave_1) entered disabled state [ 86.148114][ T5793] bridge_slave_1: entered allmulticast mode [ 86.155943][ T5793] bridge_slave_1: entered promiscuous mode [ 86.222202][ T5795] chnl_net:caif_netlink_parms(): no params data found [ 86.249841][ T5789] team0: Port device team_slave_0 added [ 86.284971][ T5793] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 86.297207][ T5793] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 86.308896][ T5789] team0: Port device team_slave_1 added [ 86.417816][ T5793] team0: Port device team_slave_0 added [ 86.430819][ T5793] team0: Port device team_slave_1 added [ 86.437817][ T5789] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 86.445876][ T5789] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.472081][ T5789] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 86.504755][ T5797] chnl_net:caif_netlink_parms(): no params data found [ 86.516135][ T5789] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 86.523284][ T5789] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.550148][ T5789] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 86.590453][ T5793] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 86.597461][ T5793] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.624274][ T5793] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 86.697522][ T5793] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 86.705166][ T5793] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.731410][ T5793] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 86.788418][ T5795] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.796858][ T5795] bridge0: port 1(bridge_slave_0) entered disabled state [ 86.804865][ T5795] bridge_slave_0: entered allmulticast mode [ 86.812461][ T5795] bridge_slave_0: entered promiscuous mode [ 86.825117][ T5795] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.832815][ T5795] bridge0: port 2(bridge_slave_1) entered disabled state [ 86.844131][ T5795] bridge_slave_1: entered allmulticast mode [ 86.852452][ T5795] bridge_slave_1: entered promiscuous mode [ 86.863749][ T5789] hsr_slave_0: entered promiscuous mode [ 86.871191][ T5789] hsr_slave_1: entered promiscuous mode [ 86.950465][ T5795] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 87.010663][ T5797] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.020233][ T5797] bridge0: port 1(bridge_slave_0) entered disabled state [ 87.033465][ T5797] bridge_slave_0: entered allmulticast mode [ 87.043946][ T5797] bridge_slave_0: entered promiscuous mode [ 87.058407][ T5795] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 87.122933][ T5793] hsr_slave_0: entered promiscuous mode [ 87.141993][ T5793] hsr_slave_1: entered promiscuous mode [ 87.154300][ T5793] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 87.164927][ T5792] Bluetooth: hci0: command tx timeout [ 87.175229][ T5793] Cannot create hsr debugfs directory [ 87.183414][ T5797] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.195624][ T5797] bridge0: port 2(bridge_slave_1) entered disabled state [ 87.204406][ T5797] bridge_slave_1: entered allmulticast mode [ 87.212521][ T5797] bridge_slave_1: entered promiscuous mode [ 87.240698][ T5792] Bluetooth: hci1: command tx timeout [ 87.332178][ T5797] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 87.346746][ T5795] team0: Port device team_slave_0 added [ 87.356558][ T5795] team0: Port device team_slave_1 added [ 87.400172][ T5792] Bluetooth: hci2: command tx timeout [ 87.423023][ T5797] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 87.480594][ T5792] Bluetooth: hci3: command tx timeout [ 87.530615][ T5797] team0: Port device team_slave_0 added [ 87.555703][ T5795] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 87.562978][ T5795] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.589746][ T5795] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 87.625082][ T5797] team0: Port device team_slave_1 added [ 87.652514][ T5795] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 87.659526][ T5795] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.685709][ T5795] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 87.775403][ T5797] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 87.782673][ T5797] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.809231][ T5797] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 87.828244][ T5797] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 87.837004][ T5797] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.868984][ T5797] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 87.929656][ T5795] hsr_slave_0: entered promiscuous mode [ 87.936988][ T5795] hsr_slave_1: entered promiscuous mode [ 87.943949][ T5795] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 87.952510][ T5795] Cannot create hsr debugfs directory [ 88.038505][ T5797] hsr_slave_0: entered promiscuous mode [ 88.045661][ T5797] hsr_slave_1: entered promiscuous mode [ 88.053373][ T5797] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 88.061043][ T5797] Cannot create hsr debugfs directory [ 88.156290][ T5789] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 88.176500][ T5789] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 88.188665][ T5789] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 88.216299][ T5789] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 88.400112][ T5793] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 88.412127][ T5793] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 88.434601][ T5793] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 88.447657][ T5793] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 88.532021][ T5795] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 88.547173][ T5795] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 88.558653][ T5795] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 88.586946][ T5795] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 88.715698][ T5797] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 88.726636][ T5797] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 88.754746][ T5797] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 88.777688][ T5797] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 88.817424][ T5789] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.872487][ T5789] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.904260][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.911650][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.969786][ T5795] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.980633][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.987892][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 89.041961][ T5793] 8021q: adding VLAN 0 to HW filter on device bond0 [ 89.085123][ T5795] 8021q: adding VLAN 0 to HW filter on device team0 [ 89.109476][ T5793] 8021q: adding VLAN 0 to HW filter on device team0 [ 89.156263][ T141] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.163769][ T141] bridge0: port 1(bridge_slave_0) entered forwarding state [ 89.183029][ T141] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.190295][ T141] bridge0: port 1(bridge_slave_0) entered forwarding state [ 89.206941][ T141] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.214580][ T141] bridge0: port 2(bridge_slave_1) entered forwarding state [ 89.241371][ T5792] Bluetooth: hci0: command tx timeout [ 89.269680][ T141] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.276963][ T141] bridge0: port 2(bridge_slave_1) entered forwarding state [ 89.321091][ T5792] Bluetooth: hci1: command tx timeout [ 89.327543][ T5793] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 89.338658][ T5793] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 89.447716][ T5797] 8021q: adding VLAN 0 to HW filter on device bond0 [ 89.481432][ T5792] Bluetooth: hci2: command tx timeout [ 89.559489][ T5797] 8021q: adding VLAN 0 to HW filter on device team0 [ 89.561630][ T5792] Bluetooth: hci3: command tx timeout [ 89.606615][ T48] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.613826][ T48] bridge0: port 1(bridge_slave_0) entered forwarding state [ 89.666097][ T5789] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.701263][ T48] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.708628][ T48] bridge0: port 2(bridge_slave_1) entered forwarding state [ 89.793802][ T5793] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.868719][ T5789] veth0_vlan: entered promiscuous mode [ 89.928753][ T5789] veth1_vlan: entered promiscuous mode [ 89.991842][ T5793] veth0_vlan: entered promiscuous mode [ 90.024424][ T5793] veth1_vlan: entered promiscuous mode [ 90.098940][ T5795] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 90.118349][ T5793] veth0_macvtap: entered promiscuous mode [ 90.131782][ T5789] veth0_macvtap: entered promiscuous mode [ 90.149283][ T5793] veth1_macvtap: entered promiscuous mode [ 90.173190][ T5789] veth1_macvtap: entered promiscuous mode [ 90.229626][ T5789] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.245808][ T5793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 90.256961][ T5793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.271341][ T5793] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.305875][ T5789] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.318048][ T5793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 90.332426][ T5793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.344408][ T5793] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.362794][ T5793] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.372216][ T5793] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.384084][ T5793] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.392908][ T5793] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.424865][ T5789] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.434632][ T5789] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.446430][ T5789] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.455355][ T5789] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.496261][ T5795] veth0_vlan: entered promiscuous mode [ 90.558818][ T5795] veth1_vlan: entered promiscuous mode [ 90.574415][ T5797] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 90.661870][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.682728][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.721626][ T2962] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.729681][ T2962] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.769205][ T2962] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.781064][ T2962] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.822345][ T5795] veth0_macvtap: entered promiscuous mode [ 90.851071][ T5795] veth1_macvtap: entered promiscuous mode [ 90.905069][ T5797] veth0_vlan: entered promiscuous mode [ 90.918445][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.934640][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.950596][ T5797] veth1_vlan: entered promiscuous mode [ 90.989324][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.018654][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.034426][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.053864][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.068287][ T5795] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 91.093360][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.140144][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.158685][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.184841][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.211096][ T5795] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 91.219778][ T5877] syz.2.3[5877]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 91.248867][ T5795] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.260186][ T5795] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.269276][ T5795] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.290282][ T5795] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.321318][ T5792] Bluetooth: hci0: command tx timeout [ 91.384268][ T5877] loop2: detected capacity change from 0 to 2048 [ 91.400211][ T5792] Bluetooth: hci1: command tx timeout [ 91.418115][ T5797] veth0_macvtap: entered promiscuous mode [ 91.503581][ T5797] veth1_macvtap: entered promiscuous mode [ 91.509867][ T5877] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 91.562062][ T5792] Bluetooth: hci2: command tx timeout [ 91.572126][ T5877] ext4 filesystem being mounted at /0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 91.622877][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.640524][ T5792] Bluetooth: hci3: command tx timeout [ 91.666104][ T5793] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 91.680618][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.730379][ T5797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.742515][ T5797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.760669][ T5797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.790510][ T5797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.812162][ T5797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.831308][ T5797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.863846][ T5797] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 91.896862][ T5797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.925231][ T5797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.961808][ T5797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.980487][ T5797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.997294][ T5797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 92.013313][ T5797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.026140][ T5797] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 92.038011][ T5797] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.068107][ T5797] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.078368][ T5797] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.095307][ T5797] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.141679][ T9] cfg80211: failed to load regulatory.db [ 92.173184][ T2962] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.188094][ T2962] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.472268][ T48] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.544231][ T48] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.668662][ T5888] loop3: detected capacity change from 0 to 32768 [ 92.744341][ T5888] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 92.871636][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.871687][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.874577][ T5888] XFS (loop3): Ending clean mount [ 93.281456][ T5789] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 93.400171][ T5792] Bluetooth: hci0: command tx timeout [ 93.480374][ T5792] Bluetooth: hci1: command tx timeout [ 93.660189][ T5792] Bluetooth: hci2: command tx timeout [ 93.722321][ T5792] Bluetooth: hci3: command tx timeout [ 94.513785][ T5914] loop1: detected capacity change from 0 to 2048 [ 94.588318][ T5914] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 94.603168][ T5916] loop3: detected capacity change from 0 to 512 [ 94.645765][ T5914] ext4 filesystem being mounted at /2/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 94.690093][ T5916] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 94.720109][ T5916] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 94.808102][ T5916] EXT4-fs error (device loop3): ext4_init_orphan_info:586: inode #3: comm syz.3.8: iget: special inode unallocated [ 94.867768][ T5797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 94.890810][ T5916] EXT4-fs (loop3): Remounting filesystem read-only [ 94.897625][ T5916] EXT4-fs (loop3): get orphan inode failed [ 94.904614][ T5916] EXT4-fs (loop3): mount failed [ 95.161299][ T5930] autofs4:pid:5930:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(32766.2895), cmd(0xc018937c) [ 95.206523][ T5930] autofs4:pid:5930:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc018937c) [ 95.867571][ T5932] loop3: detected capacity change from 0 to 32768 [ 96.008433][ T5932] Dev loop3 SGI disklabel: csum bad, label corrupted [ 96.027804][ T5932] loop3: unable to read partition table [ 96.056679][ T5932] loop_reread_partitions: partition scan of loop3 () failed (rc=-5) [ 96.782928][ T5946] loop2: detected capacity change from 0 to 2048 [ 96.887812][ T5946] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 96.921531][ T5946] ext4 filesystem being mounted at /10/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 96.958533][ T5928] loop1: detected capacity change from 0 to 65536 [ 97.021626][ T5928] XFS (loop1): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 97.141152][ T5946] fs-verity: sha512 using implementation "sha512-avx2" [ 97.172069][ T5928] XFS (loop1): Ending clean mount [ 97.211926][ T5946] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.24: bg 0: block 384: padding at end of block bitmap is not set [ 97.227323][ T5928] XFS (loop1): Quotacheck needed: Please wait. [ 97.272177][ T5946] fs-verity (loop2, inode 13): ext4_end_enable_verity() failed with err -117 [ 97.352121][ T5879] XFS (loop1): Metadata CRC error detected at xfs_agfl_read_verify+0x188/0x240, xfs_agfl block 0x3 [ 97.369965][ T5879] XFS (loop1): Unmount and run xfs_repair [ 97.391829][ T5879] XFS (loop1): First 128 bytes of corrupted metadata buffer: [ 97.417377][ T5793] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 97.436259][ T5879] 00000000: 58 41 46 4c 00 00 00 00 d6 f6 9d bd 8c 5d 46 be XAFL.........]F. [ 97.470022][ T5879] 00000010: b8 8e 92 c0 ae 88 ce b2 00 00 00 00 00 00 00 00 ................ [ 97.510025][ T5879] 00000020: 35 fc 5c 25 ff 00 ff ff 00 00 00 05 00 00 00 06 5.\%............ [ 97.518972][ T5879] 00000030: 00 00 00 07 00 00 00 08 ff ff ff ff ff ff ff ff ................ [ 97.570155][ T5879] 00000040: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ................ [ 97.579415][ T5879] 00000050: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ................ [ 97.618641][ T5879] 00000060: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ................ [ 97.638035][ T5879] 00000070: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ................ [ 97.672010][ T48] XFS (loop1): metadata I/O error in "xfs_alloc_read_agfl+0x1eb/0x3a0" at daddr 0x3 len 1 error 74 [ 97.701989][ T5928] XFS (loop1): Quotacheck: Unsuccessful (Error -117): Disabling quotas. [ 97.795743][ T5161] udevd[5161]: worker [5801] terminated by signal 33 (Unknown signal 33) [ 97.824692][ T5161] udevd[5161]: worker [5801] failed while handling '/devices/virtual/block/loop1' [ 97.842315][ T5797] XFS (loop1): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 99.104704][ T5990] loop1: detected capacity change from 0 to 2048 [ 99.196135][ T5990] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 99.290182][ T5990] ext4 filesystem being mounted at /5/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 99.416635][ T5990] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.38: bg 0: block 384: padding at end of block bitmap is not set [ 99.512014][ T5990] fs-verity (loop1, inode 13): ext4_end_enable_verity() failed with err -117 [ 99.579594][ T5994] loop3: detected capacity change from 0 to 32768 [ 99.601090][ T5994] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.39 (5994) [ 99.643299][ T5994] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 99.656402][ T5994] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 99.666024][ T5994] BTRFS info (device loop3): enabling disk space caching [ 99.673321][ T5994] BTRFS info (device loop3): turning off barriers [ 99.679815][ T5994] BTRFS info (device loop3): turning on flush-on-commit [ 99.687345][ T5994] BTRFS warning (device loop3): 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 99.698250][ T5994] BTRFS info (device loop3): trying to use backup root at mount time [ 99.707205][ T5994] BTRFS error (device loop3): cannot disable free space tree [ 99.717799][ T5797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.720156][ T5994] BTRFS error (device loop3): open_ctree failed: -22 [ 99.941555][ T5790] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by udevd (5790) [ 100.229237][ T5989] loop2: detected capacity change from 0 to 32768 [ 100.306128][ T5989] [ 100.306128][ T5989] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 100.306128][ T5989] [ 100.380494][ T5879] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 100.398387][ T5989] [ 100.398387][ T5989] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 100.398387][ T5989] [ 100.420341][ T5989] [ 100.420341][ T5989] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 100.420341][ T5989] [ 100.450278][ T5989] [ 100.450278][ T5989] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 100.450278][ T5989] [ 100.475865][ T5989] [ 100.475865][ T5989] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 100.475865][ T5989] [ 100.522467][ T112] [ 100.522467][ T112] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 100.522467][ T112] [ 100.590237][ T5879] usb 2-1: Using ep0 maxpacket: 32 [ 100.601786][ T5879] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 100.620153][ T5879] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 100.641607][ T5879] usb 2-1: New USB device found, idVendor=041e, idProduct=403c, bcdDevice=cc.d7 [ 100.669810][ T5879] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 100.725599][ T5879] usb 2-1: config 0 descriptor?? [ 101.096752][ T5793] [ 101.096752][ T5793] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 101.096752][ T5793] [ 101.113768][ T5793] [ 101.113768][ T5793] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 101.113768][ T5793] [ 101.147458][ T6004] loop3: detected capacity change from 0 to 512 [ 101.166795][ T6004] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 101.177004][ T5996] loop0: detected capacity change from 0 to 65536 [ 101.245276][ T6004] EXT4-fs error (device loop3): ext4_init_orphan_info:586: inode #3: comm syz.3.43: iget: special inode unallocated [ 101.260093][ T5996] XFS (loop0): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 101.289533][ T6004] EXT4-fs (loop3): Remounting filesystem read-only [ 101.304955][ T6004] EXT4-fs (loop3): get orphan inode failed [ 101.311391][ T6004] EXT4-fs (loop3): mount failed [ 101.443658][ T5996] XFS (loop0): Ending clean mount [ 101.479579][ T5996] XFS (loop0): Quotacheck needed: Please wait. [ 101.534914][ T12] XFS (loop0): Metadata CRC error detected at xfs_agfl_read_verify+0x188/0x240, xfs_agfl block 0x3 [ 101.564219][ T12] XFS (loop0): Unmount and run xfs_repair [ 101.576583][ T12] XFS (loop0): First 128 bytes of corrupted metadata buffer: [ 101.591519][ T12] 00000000: 58 41 46 4c 00 00 00 00 d6 f6 9d bd 8c 5d 46 be XAFL.........]F. [ 101.620234][ T12] 00000010: b8 8e 92 c0 ae 88 ce b2 00 00 00 00 00 00 00 00 ................ [ 101.638866][ T12] 00000020: 35 fc 5c 25 ff 00 ff ff 00 00 00 05 00 00 00 06 5.\%............ [ 101.658549][ T12] 00000030: 00 00 00 07 00 00 00 08 ff ff ff ff ff ff ff ff ................ [ 101.716256][ T12] 00000040: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ................ [ 101.788717][ T12] 00000050: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ................ [ 101.847675][ T12] 00000060: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ................ [ 101.916436][ T12] 00000070: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ................ [ 101.976192][ T12] XFS (loop0): metadata I/O error in "xfs_alloc_read_agfl+0x1eb/0x3a0" at daddr 0x3 len 1 error 74 [ 102.056161][ T5996] XFS (loop0): Quotacheck: Unsuccessful (Error -117): Disabling quotas. [ 102.313631][ T5795] XFS (loop0): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 102.327313][ T6025] iommufd_mock iommufd_mock1: Adding to iommu group 0 [ 102.718440][ T6032] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 102.841624][ T5792] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 102.841762][ T5792] Bluetooth: hci2: Injecting HCI hardware error event [ 102.842997][ T5792] Bluetooth: hci2: hardware error 0x00 [ 103.086552][ T6032] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 103.153089][ T5434] usb 2-1: USB disconnect, device number 2 [ 103.489954][ T6042] loop0: detected capacity change from 0 to 512 [ 103.520144][ T6042] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 103.548896][ T6042] EXT4-fs error (device loop0): ext4_init_orphan_info:586: inode #3: comm syz.0.54: iget: special inode unallocated [ 103.567288][ T6042] EXT4-fs (loop0): Remounting filesystem read-only [ 103.580931][ T6042] EXT4-fs (loop0): get orphan inode failed [ 103.588502][ T6042] EXT4-fs (loop0): mount failed [ 104.117695][ T6053] loop0: detected capacity change from 0 to 40427 [ 104.586499][ T6059] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 104.645947][ T6051] mmap: syz.2.56 (6051) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 104.924396][ T5792] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 106.695688][ T5792] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 106.705250][ T5792] Bluetooth: hci1: Injecting HCI hardware error event [ 106.714678][ T5800] Bluetooth: hci1: hardware error 0x00 [ 106.750561][ T5792] Bluetooth: hci1: unexpected event for opcode 0x1003 [ 107.128840][ T6085] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 107.164376][ T6083] loop1: detected capacity change from 0 to 32768 [ 107.172039][ T6083] ======================================================= [ 107.172039][ T6083] WARNING: The mand mount option has been deprecated and [ 107.172039][ T6083] and is ignored by this kernel. Remove the mand [ 107.172039][ T6083] option from the mount to silence this warning. [ 107.172039][ T6083] ======================================================= [ 107.268383][ T6083] ocfs2: Mounting device (7,1) on (node local, slot 0) with writeback data mode. [ 107.491541][ T5797] ocfs2: Unmounting device (7,1) on (node local) [ 107.568924][ T6090] loop3: detected capacity change from 0 to 2048 [ 107.672277][ T6090] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 107.720054][ T6090] ext4 filesystem being mounted at /20/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 107.880108][ T6090] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.69: bg 0: block 384: padding at end of block bitmap is not set [ 107.997952][ T6090] fs-verity (loop3, inode 13): ext4_end_enable_verity() failed with err -117 [ 108.031388][ T6096] loop0: detected capacity change from 0 to 32768 [ 108.088206][ T6096] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 108.107950][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 108.305285][ T6096] XFS (loop0): Ending clean mount [ 108.319696][ T6096] XFS (loop0): Quotacheck needed: Please wait. [ 108.582640][ T6096] XFS (loop0): Quotacheck: Done. [ 108.768391][ T5800] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 109.344707][ T6118] loop1: detected capacity change from 0 to 256 [ 109.403186][ T5795] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 109.464434][ T6118] FAT-fs (loop1): Directory bread(block 64) failed [ 109.491264][ T6118] FAT-fs (loop1): Directory bread(block 65) failed [ 109.524240][ T6118] FAT-fs (loop1): Directory bread(block 66) failed [ 109.540006][ T6118] FAT-fs (loop1): Directory bread(block 67) failed [ 109.546753][ T6118] FAT-fs (loop1): Directory bread(block 68) failed [ 109.555475][ T6120] loop2: detected capacity change from 0 to 2048 [ 109.587632][ T6118] FAT-fs (loop1): Directory bread(block 69) failed [ 109.623049][ T6118] FAT-fs (loop1): Directory bread(block 70) failed [ 109.630474][ T6118] FAT-fs (loop1): Directory bread(block 71) failed [ 109.638428][ T6118] FAT-fs (loop1): Directory bread(block 72) failed [ 109.658939][ T6118] FAT-fs (loop1): Directory bread(block 73) failed [ 109.689364][ T6120] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 110.254174][ T6131] batman_adv: batadv0: Adding interface: dummy0 [ 110.268388][ T6131] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 110.323754][ T6131] batman_adv: batadv0: Interface activated: dummy0 [ 110.390290][ T6133] batadv0: mtu less than device minimum [ 110.420927][ T6133] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 110.434633][ T6133] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 110.447357][ T6133] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 110.460106][ T6133] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 110.472890][ T6133] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 110.485837][ T6133] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 110.498913][ T6133] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 110.511897][ T6133] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 110.524717][ T6133] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 111.148845][ T6135] loop2: detected capacity change from 0 to 32768 [ 111.199588][ T6135] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 111.431981][ T6135] XFS (loop2): Ending clean mount [ 111.543946][ T5793] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 112.096800][ T6164] loop1: detected capacity change from 0 to 64 [ 113.720305][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 113.784030][ T5879] usb 4-1: new full-speed USB device number 2 using dummy_hcd [ 114.003355][ T5879] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 114.041262][ T5879] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 114.071219][ T5879] usb 4-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8 [ 114.089210][ T5879] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 114.115337][ T5879] usb 4-1: config 0 descriptor?? [ 114.157087][ T5879] dvb-usb: found a 'Artec T1 USB2.0' in warm state. [ 114.172508][ T5879] dvb-usb: bulk message failed: -22 (3/0) [ 114.200409][ T5800] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0 [ 114.209672][ T5800] Bluetooth: hci3: Injecting HCI hardware error event [ 114.217954][ T5800] Bluetooth: hci3: hardware error 0x00 [ 114.285931][ T5879] dvb-usb: will use the device's hardware PID filter (table count: 16). [ 114.301730][ T5879] dvbdev: DVB: registering new adapter (Artec T1 USB2.0) [ 114.310529][ T5879] usb 4-1: media controller created [ 114.318759][ T5879] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 114.347153][ T5879] dvb-usb: bulk message failed: -22 (6/0) [ 114.377857][ T5879] dvb-usb: no frontend was attached by 'Artec T1 USB2.0' [ 114.407781][ T5879] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.3/usb4/4-1/input/input5 [ 114.436367][ T5879] dvb-usb: schedule remote query interval to 150 msecs. [ 114.443788][ T6176] loop3: detected capacity change from 0 to 2048 [ 114.489557][ T5879] dvb-usb: Artec T1 USB2.0 successfully initialized and connected. [ 114.588224][ T6191] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 114.641762][ T5879] dvb-usb: bulk message failed: -22 (1/0) [ 114.688990][ T5879] dvb-usb: error while querying for an remote control event. [ 114.763305][ T788] usb 4-1: USB disconnect, device number 2 [ 114.775243][ T6187] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 114.839055][ T788] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected. [ 115.059826][ T6198] loop1: detected capacity change from 0 to 256 [ 115.193331][ T6198] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 256) [ 115.890066][ T9] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 116.056426][ T6214] input: syz1 as /devices/virtual/input/input6 [ 116.080064][ T9] usb 4-1: Using ep0 maxpacket: 16 [ 116.093660][ T9] usb 4-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=9c.15 [ 116.118113][ T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 116.144376][ T9] usb 4-1: Product: syz [ 116.156404][ T9] usb 4-1: Manufacturer: syz [ 116.172857][ T9] usb 4-1: SerialNumber: syz [ 116.186596][ T9] usb 4-1: config 0 descriptor?? [ 116.212049][ T9] ssu100 4-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected [ 116.280176][ T5800] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 116.390502][ T5879] usb 1-1: new full-speed USB device number 2 using dummy_hcd [ 116.582257][ T5879] usb 1-1: config 0 has an invalid interface number: 20 but max is 0 [ 116.599986][ T5879] usb 1-1: config 0 has no interface number 0 [ 116.615935][ T9] ssu100: probe of 4-1:0.0 failed with error -71 [ 116.623013][ T5879] usb 1-1: New USB device found, idVendor=04e6, idProduct=000b, bcdDevice= 1.00 [ 116.640005][ T5879] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 116.665886][ T5879] usb 1-1: Product: syz [ 116.665886][ T9] usb 4-1: USB disconnect, device number 3 [ 116.689415][ T5879] usb 1-1: Manufacturer: syz [ 116.704406][ T5879] usb 1-1: SerialNumber: syz [ 116.733065][ T5879] usb 1-1: config 0 descriptor?? [ 116.753066][ T5879] usb-storage 1-1:0.20: USB Mass Storage device detected [ 116.769097][ T5879] usb-storage 1-1:0.20: Quirks match for vid 04e6 pid 000b: 4 [ 116.963660][ T5879] usb 1-1: USB disconnect, device number 2 [ 117.026254][ T6219] loop2: detected capacity change from 0 to 32768 [ 117.075092][ T6219] Dev loop2 SGI disklabel: csum bad, label corrupted [ 117.295236][ T6223] loop3: detected capacity change from 0 to 256 [ 117.336648][ T6226] netlink: 104 bytes leftover after parsing attributes in process `syz.2.109'. [ 117.338911][ T6223] exFAT-fs (loop3): failed to load upcase table (idx : 0x00012c80, chksum : 0x8ff561f5, utbl_chksum : 0xe619d30d) [ 117.429718][ T28] audit: type=1800 audit(1759947778.506:2): pid=6223 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.110" name="file2" dev="loop3" ino=1048592 res=0 errno=0 [ 117.578037][ T6229] loop1: detected capacity change from 0 to 1764 [ 119.158578][ T6231] syz.2.112 (6231) used greatest stack depth: 16936 bytes left [ 119.767056][ T6255] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 119.909350][ T6263] loop3: detected capacity change from 0 to 256 [ 119.966568][ T6258] input: syz1 as /devices/virtual/input/input7 [ 119.976602][ T6263] exFAT-fs (loop3): failed to load upcase table (idx : 0x00012c80, chksum : 0x8ff561f5, utbl_chksum : 0xe619d30d) [ 120.062715][ T28] audit: type=1800 audit(1759947781.146:3): pid=6263 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.121" name="file2" dev="loop3" ino=1048593 res=0 errno=0 [ 120.680113][ T9] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 120.894310][ T9] usb 1-1: Using ep0 maxpacket: 32 [ 120.899116][ T6271] loop2: detected capacity change from 0 to 32768 [ 120.909999][ T9] usb 1-1: config 0 has an invalid interface number: 67 but max is 0 [ 120.924165][ T9] usb 1-1: config 0 has no interface number 0 [ 121.535518][ T6112] I/O error, dev loop2, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 121.731951][ T6271] netlink: 72 bytes leftover after parsing attributes in process `syz.2.124'. [ 121.741281][ T6271] netlink: 36 bytes leftover after parsing attributes in process `syz.2.124'. [ 121.751962][ T6271] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms) [ 121.816185][ T9] usb 1-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 121.840025][ T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 121.848235][ T9] usb 1-1: Product: syz [ 121.854072][ T9] usb 1-1: Manufacturer: syz [ 121.859242][ T9] usb 1-1: SerialNumber: syz [ 121.873195][ T9] usb 1-1: config 0 descriptor?? [ 121.883062][ T9] smsc95xx v2.0.0 [ 122.039814][ T6281] loop2: detected capacity change from 0 to 1024 [ 122.172093][ T28] audit: type=1800 audit(1759947783.256:4): pid=6281 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.127" name="file1" dev="loop2" ino=20 res=0 errno=0 [ 122.418372][ T6285] loop3: detected capacity change from 0 to 256 [ 122.494048][ T9] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -71 [ 122.525439][ T9] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 122.540040][ T6285] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d) [ 122.570261][ T9] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71 [ 122.590963][ T9] smsc95xx: probe of 1-1:0.67 failed with error -71 [ 122.614683][ T9] usb 1-1: USB disconnect, device number 3 [ 122.633000][ T6285] syz.3.130: attempt to access beyond end of device [ 122.633000][ T6285] loop3: rw=524288, sector=280, nr_sectors = 128 limit=256 [ 122.677869][ T6289] Zero length message leads to an empty skb [ 122.682887][ T6285] syz.3.130: attempt to access beyond end of device [ 122.682887][ T6285] loop3: rw=524288, sector=408, nr_sectors = 256 limit=256 [ 122.754156][ T6285] syz.3.130: attempt to access beyond end of device [ 122.754156][ T6285] loop3: rw=0, sector=280, nr_sectors = 8 limit=256 [ 122.797812][ T28] audit: type=1800 audit(1759947783.866:5): pid=6285 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.130" name="file1" dev="loop3" ino=1048594 res=0 errno=0 [ 122.908918][ T6294] loop2: detected capacity change from 0 to 256 [ 122.945837][ T6297] loop3: detected capacity change from 0 to 2048 [ 123.027546][ T6294] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d) [ 123.070186][ T6297] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 123.120232][ T6297] ext4 filesystem being mounted at /37/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 123.256881][ T6306] loop1: detected capacity change from 0 to 64 [ 123.456956][ T5434] libceph: connect (1)[c::]:6789 error -101 [ 123.532105][ T5434] libceph: mon0 (1)[c::]:6789 connect error [ 123.561771][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 123.792060][ T9] libceph: connect (1)[c::]:6789 error -101 [ 123.798192][ T9] libceph: mon0 (1)[c::]:6789 connect error [ 124.070082][ T6303] ceph: No mds server is up or the cluster is laggy [ 124.418553][ T6323] loop0: detected capacity change from 0 to 256 [ 124.448857][ T6320] input: syz1 as /devices/virtual/input/input8 [ 124.473526][ T6323] FAT-fs (loop0): Directory bread(block 64) failed [ 124.473597][ T6323] FAT-fs (loop0): Directory bread(block 65) failed [ 124.473700][ T6323] FAT-fs (loop0): Directory bread(block 66) failed [ 124.473731][ T6323] FAT-fs (loop0): Directory bread(block 67) failed [ 124.474705][ T6323] FAT-fs (loop0): Directory bread(block 68) failed [ 124.474742][ T6323] FAT-fs (loop0): Directory bread(block 69) failed [ 124.474841][ T6323] FAT-fs (loop0): Directory bread(block 70) failed [ 124.474868][ T6323] FAT-fs (loop0): Directory bread(block 71) failed [ 124.474959][ T6323] FAT-fs (loop0): Directory bread(block 72) failed [ 124.474997][ T6323] FAT-fs (loop0): Directory bread(block 73) failed [ 124.526844][ T6323] process 'syz.0.144' launched './file2' with NULL argv: empty string added [ 124.681177][ T5879] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 125.060106][ T6327] loop0: detected capacity change from 0 to 32768 [ 125.104575][ T28] audit: type=1800 audit(1759947786.186:6): pid=6327 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.145" name="file1" dev="loop0" ino=7 res=0 errno=0 [ 125.187226][ T5879] usb 3-1: Using ep0 maxpacket: 32 [ 125.199126][ T5879] usb 3-1: config 0 interface 0 has no altsetting 0 [ 125.233128][ T5879] usb 3-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e [ 125.270004][ T5879] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 125.278132][ T5879] usb 3-1: Product: syz [ 125.300007][ T5879] usb 3-1: Manufacturer: syz [ 125.304691][ T5879] usb 3-1: SerialNumber: syz [ 125.349553][ T5879] usb 3-1: config 0 descriptor?? [ 125.372785][ T6329] capability: warning: `syz.1.146' uses 32-bit capabilities (legacy support in use) [ 125.778807][ T6337] loop0: detected capacity change from 0 to 2048 [ 125.811377][ T5879] gs_usb 3-1:0.0: Configuring for 1 interfaces [ 125.853261][ T6337] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 125.936854][ T6337] ext4 filesystem being mounted at /32/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 126.127231][ T5795] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 126.466387][ T6351] loop3: detected capacity change from 0 to 512 [ 126.501335][ T6351] EXT4-fs: Ignoring removed mblk_io_submit option [ 126.520331][ T5879] usb 3-1: USB disconnect, device number 2 [ 126.534341][ T6354] loop0: detected capacity change from 0 to 2048 [ 126.550208][ T6351] EXT4-fs: Ignoring removed nomblk_io_submit option [ 126.583342][ T6351] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 126.583389][ T6351] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 126.649733][ T6354] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 126.649854][ T6354] ext4 filesystem being mounted at /34/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 126.747326][ T6351] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4031: comm syz.3.152: Allocating blocks 41-42 which overlap fs metadata [ 126.758943][ T6351] Quota error (device loop3): write_blk: dquota write failed [ 126.759065][ T6351] Quota error (device loop3): find_free_dqentry: Can't write quota data block 5 [ 126.759356][ T6351] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4031: comm syz.3.152: Allocating blocks 41-42 which overlap fs metadata [ 126.765215][ T6351] Quota error (device loop3): write_blk: dquota write failed [ 126.832419][ T6363] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.153: bg 0: block 345: padding at end of block bitmap is not set [ 126.835616][ T6363] EXT4-fs (loop0): Remounting filesystem read-only [ 126.849361][ T48] EXT4-fs warning (device loop0): ext4_convert_unwritten_extents:4868: inode #15: block 1: len 15: ext4_ext_map_blocks returned -5 [ 126.851578][ T6351] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 126.851641][ T6351] EXT4-fs error (device loop3): ext4_acquire_dquot:6940: comm syz.3.152: Failed to acquire dquot type 1 [ 126.855545][ T6351] EXT4-fs error (device loop3): mb_free_blocks:1938: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt. [ 126.865493][ T6351] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #12: comm syz.3.152: corrupted inode contents [ 126.974918][ T6351] EXT4-fs error (device loop3): ext4_dirty_inode:6106: inode #12: comm syz.3.152: mark_inode_dirty error [ 126.975865][ T6351] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #12: comm syz.3.152: corrupted inode contents [ 126.976278][ T6351] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #12: comm syz.3.152: mark_inode_dirty error [ 126.977095][ T6351] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #12: comm syz.3.152: corrupted inode contents [ 126.977927][ T5795] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 126.978412][ T6351] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem [ 126.978729][ T6351] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #12: comm syz.3.152: corrupted inode contents [ 127.079733][ T6351] EXT4-fs error (device loop3): ext4_truncate:4288: inode #12: comm syz.3.152: mark_inode_dirty error [ 127.080421][ T6351] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem [ 127.081071][ T6351] EXT4-fs (loop3): 1 truncate cleaned up [ 127.082444][ T6351] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 127.459359][ T6378] loop2: detected capacity change from 0 to 128 [ 127.533816][ T6378] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 127.568566][ T6382] loop0: detected capacity change from 0 to 64 [ 127.598573][ T6378] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 127.860676][ T6374] netlink: 20 bytes leftover after parsing attributes in process `syz.2.156'. [ 128.151124][ T6393] netlink: 8 bytes leftover after parsing attributes in process `syz.2.156'. [ 128.429158][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 128.529847][ T6401] input: syz1 as /devices/virtual/input/input9 [ 128.883445][ T6414] loop3: detected capacity change from 0 to 4096 [ 128.946671][ T6414] NILFS (loop3): invalid segment: Inconsistency found [ 128.957237][ T6414] NILFS (loop3): trying rollback from an earlier position [ 128.995568][ T6414] NILFS (loop3): recovery complete [ 129.012386][ T6417] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 129.724362][ T6429] loop1: detected capacity change from 0 to 2048 [ 130.664841][ T6454] 9pnet_fd: Insufficient options for proto=fd [ 130.772453][ T2196] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 130.808822][ T6459] pimreg: entered allmulticast mode [ 130.879195][ T6461] netlink: 72 bytes leftover after parsing attributes in process `syz.3.179'. [ 130.889551][ T6461] netlink: 36 bytes leftover after parsing attributes in process `syz.3.179'. [ 130.899085][ T6461] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms) [ 130.973681][ T2196] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 130.985168][ T2196] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 130.998220][ T2196] usb 3-1: config 0 descriptor?? [ 131.009213][ T2196] cp210x 3-1:0.0: cp210x converter detected [ 131.414494][ T2196] cp210x 3-1:0.0: failed to get vendor val 0x000e size 3: -32 [ 131.465743][ T2196] usb 3-1: cp210x converter now attached to ttyUSB0 [ 131.480417][ T5800] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 131.489239][ T5800] Bluetooth: hci0: Injecting HCI hardware error event [ 131.500824][ T5792] Bluetooth: hci0: hardware error 0x00 [ 131.522163][ T6469] input: syz1 as /devices/virtual/input/input10 [ 131.652896][ T9] usb 3-1: USB disconnect, device number 3 [ 131.724924][ T6476] 9pnet_fd: Insufficient options for proto=fd [ 131.753555][ T9] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 131.819131][ T9] cp210x 3-1:0.0: device disconnected [ 132.405652][ T6483] vxcan1: entered allmulticast mode [ 132.484449][ T6485] loop2: detected capacity change from 0 to 512 [ 132.524077][ T6485] EXT4-fs: Ignoring removed mblk_io_submit option [ 132.550689][ T6485] EXT4-fs: Ignoring removed nomblk_io_submit option [ 132.578860][ T6485] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 132.597961][ T6485] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 132.649233][ T6485] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4031: comm syz.2.189: Allocating blocks 41-42 which overlap fs metadata [ 132.689502][ T6485] Quota error (device loop2): write_blk: dquota write failed [ 132.702575][ T6485] Quota error (device loop2): find_free_dqentry: Can't write quota data block 5 [ 132.713920][ T6485] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4031: comm syz.2.189: Allocating blocks 41-42 which overlap fs metadata [ 132.736001][ T6485] Quota error (device loop2): write_blk: dquota write failed [ 132.744129][ T6485] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 132.759188][ T6485] EXT4-fs error (device loop2): ext4_acquire_dquot:6940: comm syz.2.189: Failed to acquire dquot type 1 [ 132.777009][ T6485] EXT4-fs error (device loop2): mb_free_blocks:1938: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt. [ 132.799258][ T6485] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #12: comm syz.2.189: corrupted inode contents [ 132.842245][ T6485] EXT4-fs error (device loop2): ext4_dirty_inode:6106: inode #12: comm syz.2.189: mark_inode_dirty error [ 132.855692][ T6485] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #12: comm syz.2.189: corrupted inode contents [ 132.873109][ T6485] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #12: comm syz.2.189: mark_inode_dirty error [ 132.886481][ T6485] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #12: comm syz.2.189: corrupted inode contents [ 132.912967][ T6485] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem [ 132.932837][ T6485] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #12: comm syz.2.189: corrupted inode contents [ 132.946789][ T6485] EXT4-fs error (device loop2): ext4_truncate:4288: inode #12: comm syz.2.189: mark_inode_dirty error [ 132.953694][ T6496] netlink: 'syz.3.192': attribute type 2 has an invalid length. [ 132.966216][ T6496] netlink: 212408 bytes leftover after parsing attributes in process `syz.3.192'. [ 132.968932][ T6485] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem [ 132.987245][ T6485] EXT4-fs (loop2): 1 truncate cleaned up [ 132.994796][ T6485] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 133.089109][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.098471][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.326773][ T5793] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 133.640275][ T5792] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 134.029716][ T6510] loop2: detected capacity change from 0 to 65536 [ 134.137189][ T6510] XFS (loop2): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3 [ 134.189595][ T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!! [ 134.198438][ T6510] XFS (loop2): Ending clean mount [ 134.290250][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 134.290751][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 134.322034][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 134.331443][ T5793] XFS (loop2): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3 [ 134.946844][ T6522] loop3: detected capacity change from 0 to 512 [ 134.956860][ T6522] EXT4-fs: Ignoring removed bh option [ 134.972476][ T6522] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 134.988870][ T6522] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 135.035485][ T6522] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended [ 135.064996][ T6522] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e018, mo2=0006] [ 135.079420][ T6522] System zones: 0-2, 18-18, 34-35 [ 135.095753][ T6522] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 135.134250][ T6522] overlayfs: missing 'lowerdir' [ 135.209287][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 135.419414][ T6534] loop0: detected capacity change from 0 to 256 [ 135.427274][ T6534] exfat: Unknown parameter 'time_offsftðße' [ 135.680618][ T6532] loop1: detected capacity change from 0 to 32768 [ 135.698850][ T6532] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.204 (6532) [ 135.702289][ T5790] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 135.741528][ T6532] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 135.751845][ T6532] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 135.760619][ T6532] BTRFS error (device loop1): unrecognized mount option 'async' [ 135.769066][ T6532] BTRFS error (device loop1): open_ctree failed: -22 [ 135.968921][ T6112] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by udevd (6112) [ 136.642329][ T788] usb 1-1: new full-speed USB device number 4 using dummy_hcd [ 136.988232][ T788] usb 1-1: not running at top speed; connect to a high speed hub [ 137.267397][ T788] usb 1-1: config 8 has an invalid interface number: 27 but max is 0 [ 137.275699][ T788] usb 1-1: config 8 has no interface number 0 [ 137.282881][ T788] usb 1-1: config 8 interface 27 altsetting 12 endpoint 0x3 has invalid maxpacket 1023, setting to 64 [ 137.294343][ T788] usb 1-1: config 8 interface 27 altsetting 12 has an invalid endpoint with address 0x80, skipping [ 137.309961][ T788] usb 1-1: config 8 interface 27 has no altsetting 0 [ 137.333575][ T788] usb 1-1: string descriptor 0 read error: -22 [ 137.441523][ T6550] input: syz1 as /devices/virtual/input/input11 [ 137.460048][ T788] usb 1-1: New USB device found, idVendor=1286, idProduct=1fa4, bcdDevice=8f.69 [ 137.469244][ T788] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 137.575083][ T788] mvusb_mdio: probe of 1-1:8.27 failed with error -5 [ 137.642786][ T6556] loop1: detected capacity change from 0 to 512 [ 137.675721][ T6556] EXT4-fs: Ignoring removed bh option [ 137.685677][ T6553] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 137.709241][ T6556] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 137.768595][ T6556] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 137.797975][ T6556] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended [ 137.819462][ T6556] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e018, mo2=0006] [ 137.830170][ T6556] System zones: 0-2, 18-18, 34-35 [ 137.864154][ T6556] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 137.924758][ T5880] usb 1-1: USB disconnect, device number 4 [ 137.940679][ T6556] overlayfs: missing 'lowerdir' [ 138.069279][ T5797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 139.037545][ T6571] loop3: detected capacity change from 0 to 32768 [ 139.154592][ T6571] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 139.165196][ T6571] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 139.173957][ T6571] BTRFS error (device loop3): unrecognized mount option 'async' [ 139.183626][ T6571] BTRFS error (device loop3): open_ctree failed: -22 [ 139.358950][ T6112] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by udevd (6112) [ 140.602102][ T6592] loop0: detected capacity change from 0 to 128 [ 140.690588][ T5790] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 140.932105][ T6598] iommufd_mock iommufd_mock1: Adding to iommu group 0 [ 141.042930][ T6604] loop2: detected capacity change from 0 to 64 [ 141.211758][ T28] audit: type=1326 audit(1759947802.286:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6607 comm="syz.0.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea2878eec9 code=0x7ffc0000 [ 141.250049][ T5880] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 141.273960][ T28] audit: type=1326 audit(1759947802.296:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6607 comm="syz.0.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea2878eec9 code=0x7ffc0000 [ 141.304712][ T28] audit: type=1326 audit(1759947802.326:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6607 comm="syz.0.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fea2878eec9 code=0x7ffc0000 [ 141.356122][ T28] audit: type=1326 audit(1759947802.326:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6607 comm="syz.0.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea2878eec9 code=0x7ffc0000 [ 141.437799][ T28] audit: type=1326 audit(1759947802.326:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6607 comm="syz.0.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea2878eec9 code=0x7ffc0000 [ 141.472029][ T5880] usb 2-1: Using ep0 maxpacket: 16 [ 141.490148][ T28] audit: type=1326 audit(1759947802.326:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6607 comm="syz.0.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7fea2878eec9 code=0x7ffc0000 [ 141.498095][ T5880] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 141.539047][ T28] audit: type=1326 audit(1759947802.336:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6607 comm="syz.0.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea2878eec9 code=0x7ffc0000 [ 141.566705][ T5880] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 141.590949][ T28] audit: type=1326 audit(1759947802.336:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6607 comm="syz.0.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea2878eec9 code=0x7ffc0000 [ 141.605722][ T5880] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 141.640240][ T5880] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 141.660037][ T28] audit: type=1326 audit(1759947802.336:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6607 comm="syz.0.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fea2878eec9 code=0x7ffc0000 [ 141.669106][ T5880] usb 2-1: Product: syz [ 141.686337][ T28] audit: type=1326 audit(1759947802.336:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6607 comm="syz.0.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea2878eec9 code=0x7ffc0000 [ 141.719792][ T5880] usb 2-1: Manufacturer: syz [ 141.725948][ T5880] usb 2-1: SerialNumber: syz [ 141.804501][ T6622] loop0: detected capacity change from 0 to 512 [ 141.819479][ T6622] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 141.833212][ T6622] EXT4-fs (loop0): orphan cleanup on readonly fs [ 141.851851][ T6622] EXT4-fs error (device loop0): mb_free_blocks:1938: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt. [ 141.886123][ T6622] EXT4-fs (loop0): Remounting filesystem read-only [ 141.895887][ T6622] EXT4-fs (loop0): 1 truncate cleaned up [ 141.905035][ T6622] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 142.015286][ T5795] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 142.185084][ T5880] usb 2-1: cannot find UAC_HEADER [ 142.199570][ T6633] loop0: detected capacity change from 0 to 512 [ 142.251332][ T6633] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #3: comm syz.0.240: corrupted inode contents [ 142.296551][ T5880] snd-usb-audio: probe of 2-1:1.0 failed with error -22 [ 142.302074][ T6633] EXT4-fs error (device loop0): ext4_dirty_inode:6106: inode #3: comm syz.0.240: mark_inode_dirty error [ 142.307987][ T5880] usb 2-1: USB disconnect, device number 3 [ 142.344993][ T6112] udevd[6112]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 142.366126][ T6633] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #3: comm syz.0.240: corrupted inode contents [ 142.392507][ T6633] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #3: comm syz.0.240: mark_inode_dirty error [ 142.417070][ T6633] EXT4-fs error (device loop0): ext4_acquire_dquot:6940: comm syz.0.240: Failed to acquire dquot type 0 [ 142.439608][ T6633] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #16: comm syz.0.240: corrupted inode contents [ 142.464660][ T6633] EXT4-fs error (device loop0): ext4_dirty_inode:6106: inode #16: comm syz.0.240: mark_inode_dirty error [ 142.513455][ T6633] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #16: comm syz.0.240: corrupted inode contents [ 142.544584][ T6633] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #16: comm syz.0.240: mark_inode_dirty error [ 142.563155][ T6633] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #16: comm syz.0.240: corrupted inode contents [ 142.578861][ T6633] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem [ 142.593054][ T6633] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #16: comm syz.0.240: corrupted inode contents [ 142.606026][ T6633] EXT4-fs error (device loop0): ext4_truncate:4288: inode #16: comm syz.0.240: mark_inode_dirty error [ 142.631147][ T6633] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem [ 142.647777][ T6633] EXT4-fs (loop0): 1 truncate cleaned up [ 142.659079][ T6633] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 142.676938][ T6633] ext4 filesystem being mounted at /55/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 142.856915][ T5795] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 142.895206][ T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!! [ 143.680597][ T0] NOHZ tick-stop error: local softirq work is pending, handler #142!!! [ 143.691367][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 144.090123][ T0] NOHZ tick-stop error: local softirq work is pending, handler #142!!! [ 144.100634][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 248.089892][ C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 248.097053][ C1] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P6651/3:b..l [ 248.105460][ C1] rcu: (detected by 1, t=10502 jiffies, g=17589, q=1091 ncpus=2) [ 248.113320][ C1] task:syz-executor state:R running task stack:27592 pid:6651 ppid:5795 flags:0x00004000 [ 248.125270][ C1] Call Trace: [ 248.128650][ C1] [ 248.131629][ C1] __schedule+0x14d2/0x44d0 [ 248.136209][ C1] ? mark_lock+0x21/0x320 [ 248.140602][ C1] ? asan.module_dtor+0x20/0x20 [ 248.145515][ C1] ? preempt_schedule+0xab/0xc0 [ 248.150414][ C1] preempt_schedule_common+0x82/0xc0 [ 248.155751][ C1] preempt_schedule+0xab/0xc0 [ 248.160467][ C1] ? schedule_preempt_disabled+0x20/0x20 [ 248.166151][ C1] ? __lock_acquire+0x7c80/0x7c80 [ 248.171220][ C1] preempt_schedule_thunk+0x1a/0x30 [ 248.176470][ C1] _raw_spin_unlock+0x3a/0x40 [ 248.181215][ C1] filemap_map_pages+0x1069/0x1630 [ 248.186397][ C1] ? filemap_map_pages+0x154/0x1630 [ 248.191640][ C1] ? filemap_read_folio+0x760/0x760 [ 248.196875][ C1] ? pte_alloc_one+0x3b1/0x540 [ 248.201684][ C1] ? hugepage_vma_check+0x488/0x5a0 [ 248.206935][ C1] handle_mm_fault+0x379b/0x4920 [ 248.211924][ C1] ? handle_mm_fault+0xd1/0x4920 [ 248.216927][ C1] ? lock_vma_under_rcu+0x526/0x650 [ 248.222172][ C1] ? numa_migrate_prep+0x350/0x350 [ 248.227349][ C1] ? do_user_addr_fault+0x1c3/0x12e0 [ 248.232677][ C1] do_user_addr_fault+0xad0/0x12e0 [ 248.237844][ C1] ? rcu_is_watching+0x15/0xb0 [ 248.242657][ C1] exc_page_fault+0x67/0x110 [ 248.247308][ C1] asm_exc_page_fault+0x26/0x30 [ 248.252202][ C1] RIP: 0033:0x7fea28785613 [ 248.256676][ C1] RSP: 002b:00007ffe37105d48 EFLAGS: 00010246 [ 248.262867][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fea28785613 [ 248.270874][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 248.278880][ C1] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000001 [ 248.286882][ C1] R10: 000055558ac1d7d0 R11: 0000000000000246 R12: 0000000000000000 [ 248.294888][ C1] R13: 00000000000927c0 R14: 0000000000022d76 R15: 00007ffe37105ee0 [ 248.302910][ C1] [ 248.305962][ C1] rcu: rcu_preempt kthread starved for 9953 jiffies! g17589 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1 [ 248.317100][ C1] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 248.327099][ C1] rcu: RCU grace-period kthread stack dump: [ 248.333030][ C1] task:rcu_preempt state:R running task stack:27752 pid:17 ppid:2 flags:0x00004000 [ 248.343857][ C1] Call Trace: [ 248.347164][ C1] [ 248.350129][ C1] __schedule+0x14d2/0x44d0 [ 248.354701][ C1] ? asan.module_dtor+0x20/0x20 [ 248.359598][ C1] ? enqueue_timer+0x4ab/0x530 [ 248.364403][ C1] ? __mod_timer+0x984/0xdb0 [ 248.369050][ C1] schedule+0xbd/0x170 [ 248.373163][ C1] schedule_timeout+0x160/0x280 [ 248.378054][ C1] ? console_conditional_schedule+0x40/0x40 [ 248.383985][ C1] ? _raw_spin_unlock_irqrestore+0x86/0x110 [ 248.389918][ C1] ? update_process_times+0x1b0/0x1b0 [ 248.395346][ C1] ? prepare_to_swait_event+0x339/0x360 [ 248.400934][ C1] rcu_gp_fqs_loop+0x302/0x1560 [ 248.405841][ C1] ? rcu_gp_init+0x110e/0x1510 [ 248.410657][ C1] ? dyntick_save_progress_counter+0x2b0/0x2b0 [ 248.416847][ C1] ? rcu_gp_init+0x1510/0x1510 [ 248.421651][ C1] ? rcu_gp_cleanup+0xb4c/0xca0 [ 248.426557][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 248.431788][ C1] ? lockdep_hardirqs_on+0x98/0x150 [ 248.437050][ C1] rcu_gp_kthread+0x99/0x380 [ 248.441690][ C1] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 248.446856][ C1] ? __kthread_parkme+0x7a/0x1c0 [ 248.451884][ C1] ? __kthread_parkme+0x162/0x1c0 [ 248.456964][ C1] kthread+0x2fa/0x390 [ 248.461066][ C1] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 248.466222][ C1] ? kthread_blkcg+0xd0/0xd0 [ 248.470841][ C1] ret_from_fork+0x48/0x80 [ 248.475299][ C1] ? kthread_blkcg+0xd0/0xd0 [ 248.479930][ C1] ret_from_fork_asm+0x11/0x20 [ 248.484764][ C1] [ 248.487812][ C1] rcu: Stack dump where RCU GP kthread last ran: [ 248.494179][ C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted syzkaller #0 [ 248.501235][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 248.511325][ C1] RIP: 0010:pv_native_safe_halt+0x13/0x20 [ 248.517094][ C1] Code: cc cc cc cc cc cc cc f3 0f 1e fa 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 66 90 0f 00 2d 93 d8 39 00 f3 0f 1e fa fb f4 cc cc cc cc cc cc cc cc cc cc cc cc 66 0f 1f 00 55 41 57 41 56 [ 248.536735][ C1] RSP: 0018:ffffc90000187de0 EFLAGS: 000002c6 [ 248.542843][ C1] RAX: feea1d6c42353400 RBX: ffffffff8161858b RCX: feea1d6c42353400 [ 248.550942][ C1] RDX: 0000000000000001 RSI: ffffffff8aaabce0 RDI: ffffffff8afc63c0 [ 248.558950][ C1] RBP: ffffc90000187f20 R08: ffff8880b8f36b2b R09: 1ffff110171e6d65 [ 248.566969][ C1] R10: dffffc0000000000 R11: ffffed10171e6d66 R12: ffffffff8e4a8368 [ 248.574983][ C1] R13: 0000000000000001 R14: 0000000000000001 R15: 1ffff1100364e780 [ 248.582992][ C1] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 248.591960][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 248.598580][ C1] CR2: 00007fb1b3cc7480 CR3: 000000002dfc9000 CR4: 00000000003526e0 [ 248.606595][ C1] Call Trace: [ 248.609914][ C1] [ 248.612878][ C1] default_idle+0x13/0x20 [ 248.617249][ C1] default_idle_call+0x6c/0xa0 [ 248.622059][ C1] do_idle+0x1eb/0x510 [ 248.626174][ C1] ? idle_inject_timer_fn+0x60/0x60 [ 248.631517][ C1] ? lockdep_hardirqs_on+0x98/0x150 [ 248.636772][ C1] ? asm_sysvec_reschedule_ipi+0x1a/0x20 [ 248.642470][ C1] cpu_startup_entry+0x43/0x60 [ 248.647286][ C1] start_secondary+0xee/0xf0 [ 248.651924][ C1] secondary_startup_64_no_verify+0x179/0x17b [ 248.658165][ C1]