last executing test programs: 3m3.705143754s ago: executing program 1 (id=45): syz_mount_image$exfat(&(0x7f0000000700), &(0x7f00000001c0)='./file0\x00', 0x810000, &(0x7f0000000280)=ANY=[@ANYBLOB="6572726f72733d636f6e74696e75652c696f636861727365743d69736f383835392d312c646d61736b3d30303030303030303030303033373737373737373737372c696f636861727365743d6b6f69382d72752c696f636861727365743d63703433372c6e616d65636173653d312c6e616d65636173653d312c009a8d4d9016e3d8128333e260a1b926dd0c5f7619710e03ea1ae6521494f87e5737dc0c5bec3f76668140a15258818b6fbc51f9a13940e63c378688559c351287f0e09ef0b7330db20eef797e5004484649e7f5fb64b746683a75b9ed822f5ae34fac"], 0x1, 0x1501, &(0x7f0000002a80)="$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") r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) ioctl$FIONREAD(r0, 0x81009431, 0x0) 3m0.284366609s ago: executing program 1 (id=55): r0 = epoll_create(0x3) r1 = socket$rds(0x15, 0x5, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)={0x10000001}) 2m57.865902413s ago: executing program 1 (id=59): syz_mount_image$nilfs2(&(0x7f0000000dc0), &(0x7f0000000400)='./file0\x00', 0x90, &(0x7f0000003280)=ANY=[@ANYBLOB="0001def4774774366f0b8a20db13db64e85fc9322c3fe018b91ff1291b4f4c56de7e4543f49818e1307d98d09daa1e2a7dbf88003e9401dc73aad0b7dbb5685565c7825ba8340621faeae92abed19c524ab06c4303258d253722e159642af447aeb096c6a26d345d82f2925163331b0e9157441a9c61dd1051d3b970f9ac12f5975cf1ad4e45acef1a54921c492a77bcb1858b68758ed339608b8e43c733219f1f9e0b867840f821e03bc0e8a497c4d5dde436000090a397637dedb2f3"], 0x1, 0xd99, &(0x7f0000006900)="$eJzs3UtvXNUdAPBzx544LxqHmMZN09glpbiP2CRYpbsaKV2gSqgSnwClgYYa+ghdgIKUsOi2kRAfoIh9F31mgRSxSsWmVb8AYtVNipBoG1UCI9vnjMf/zOjOOLbH4/n9pDtn7v2fe88587hz575OAkZWY+1xcXG6SuntW29dvDcz/r/VKTOtHLNrj+N5bCml1GzNl9JkWN7SxHr62SfXLrWnn+e0ShdSlarW9PTs3da8R1JK19Nsup0m03Mfn7z50gfPLL934saJi2/M3dmZ1gMAwGi596N3f/m3x3947fj/f39mKU20ppft86U8fjRv9y9V6+M5af0PqNrSqm28OBDyjeehEfKNdcjXXk4z5BvvUv6BsNxml3wTNeWPtU3r1G4YZhv/46vG/KbxRmN+fv0/+aoPxw5U869cWX7h6oAqCmy7T2fyLj6DwTByw8qxQa+BANbF44b3uR73LDyY1tLGeyv/7tONzvPDNtjtz7/yh6v8d29Y47B99uunqbSrfI+O5vF4HGE8zNfv978sLx6PaPZYz27HEYbl+EK3eo7tcj22qlv94+div/paTsvrcCbE278/8T0dlvcY6Oye/f8Gw8gOK4NeAQF7VjxvbiUr8XheX4xP1MQP1sQP1cQP18SP1MRhlP3h1d+mm9XG//z4n77f/WFlP9tDOf1Sn/WJ+yP7LT+e99uvBy0/nk8Me9rcf09/+uvbf4/n/38ezv8/m39LJ/MKouwvjPvVW+f+hwuDG13yPRyq81CH/GvPpzbnq6Y2lpPa1jP31WN683zHuuU7vTnfZMh3OG+LHAz1jdsnh8N8ZfujrFfL6zUe2tsM7TgQ6lHemeM5PRjac7xbu8KO7AMhXzMPJ0K7pkK7HgnzfTm0q5re3K64/7zU52SYHo+TlHzhbbvvdym+F/G6jEdz+mZO38np+zn9qEO5o6h8Hrud/18+n9OpWb1wZfnyE3m8fE7vjDUnVqef3+V6Aw+u1+t/ptPm63+OtqY3G+3rhWMb06v29cJkmH6hy/Qn83j5Pfvp2KG16fOXfr78k+1uPIy4q6+9/rPnl5cv/8oTTzzxpPVk0GsmYKctvPryLxauvvb6uSsvP//i5Rcvv3L+ie9/78mnnlpcWNuqX2jftgf2l40f/UHXBAAAAAAAAAAAAOhZdajz5JzW3d+2XE9erk+P18czHMr7Vj4N5T4G5frPbvd1KddvHt+FOrL9duNyokG3Eejs3+7/azCM7LCy4i7+wN4w6P7/yn0PS3r03D+Prw4l292nN68v4/0L4UHs9f7nlL+/+v9r9X/V8/ov9Jg1ubVy/3jv0D/aik2nei0/tr/cB3aqv/L/lMsvrXks9Vb+yu9C+fFGpT36cyj/cI/l39f+01sr/y+5/PKyzZ3ttfz1GleNzfWI+43LfQDjfuPir6H95d5+fbd/ix213crlwygbln4m+zUs/X92U5Zb1oN59dw6Tlfuvx37O+i3/uW+3+V34JGw/Krm903/n8Otrv/P8vlb0P8n7DsfOv5nMIzssLKyMtCuT0a135W9YtCv/6C3IQdd/qBf/zqx/8/4fyn2/xnjsf/PGI/9f8Z47F8rxmP/n/H1jP1/xvjJsNzYP+h0TfwrNfFTNfGv1sRP18Tj/7cYn62Jn6mJz9TEH66JP1oTP1sT/0ZN/LGa+OM18bma+H739ZyOavthlMV+I33/YXSU4z/dvv9TNXFgeMV+neP3+5s1cWB4lfM8fL9hBFWd79gR97eX/bhv5vSdnL6f0492rILshm/l9Ns5/U5Ov5vTczmdz+lCTvUNOdx+869TZ25WG+f5HQvxXs8njdcDxPvEnO+xPvH4XL/ns57ssZydKn+Ll4MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADI3G2uPi4nSV0tu33rr4n6kf/Hh1ykwrx+za43geW0opNVNKVR4fD8u7PrGefvbJtUud0ipdWHss4+nZu615j6zOn2bT7TSZnvv45M2XPnhm+b0TN05cfGPuzs60HgAAAEbDFwEAAP//ManlwQ==") r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0) ioctl$NILFS_IOCTL_CLEAN_SEGMENTS(r0, 0x40786e88, &(0x7f0000000640)={{&(0x7f0000000780)=[{0x3, 0xfffffffffffffff8, 0x400, {0x7, 0x9}, 0x7ff, 0xbd98, 0x200}, {0x3, 0x1, 0xd07, {0x4, 0x2}, 0x6, 0x7, 0x7}], 0x2, 0x40, 0xd, 0xe2}, {0x0, 0x0, 0x10, 0x20c, 0xfffffffffffffff8}, {0x0, 0x0, 0x8, 0x1, 0x2}, {0x0, 0x0, 0x28, 0x0, 0xffffffffffffff2d}, {&(0x7f0000000000)=[0x9], 0x1, 0x8, 0x9, 0xffff}}) 2m51.355176707s ago: executing program 1 (id=70): syz_mount_image$nilfs2(&(0x7f0000000ec0), &(0x7f00000000c0)='./file0\x00', 0x3210052, &(0x7f0000000000)={[{@nobarrier}, {@order_relaxed}, {@nodiscard}, {@order_strict}, {@norecovery}, {@nodiscard}, {@nobarrier}, {@nodiscard}], [], 0x2c}, 0x43, 0xede, &(0x7f0000003940)="$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") r0 = syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00') read$FUSE(r0, &(0x7f0000000a00)={0x2020}, 0x204e) 2m49.189249053s ago: executing program 1 (id=81): syz_usb_connect$cdc_ncm(0x0, 0x98, 0x0, 0x0) syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000280)={[{@shortname_win95}, {@shortname_lower}, {@utf8no}, {@iocharset={'iocharset', 0x3d, 'maccenteuro'}}, {@uni_xlateno}, {@iocharset={'iocharset', 0x3d, 'euc-jp'}}, {@numtail}, {@uni_xlate}, {@fat=@debug}, {@uni_xlate}, {@fat=@flush}, {@shortname_win95}, {@shortname_win95}, {@fat=@nocase}]}, 0x5, 0x36c, &(0x7f0000002980)="$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") openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x58) 2m46.108327929s ago: executing program 1 (id=91): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_MEMORY_ENCRYPT_UNREG_REGION(r1, 0x8010aebc, &(0x7f0000000300)={0xdddd0000, 0x2000}) 2m35.960331263s ago: executing program 4 (id=127): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200), 0x41, 0x0) ioctl$TIOCVHANGUP(r0, 0x5437, 0x0) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000800)="c5", 0x1}], 0x1) 2m35.4421381s ago: executing program 4 (id=130): ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0) mkdirat(0xffffffffffffff9c, 0x0, 0x0) syz_usb_connect(0x0, 0x3b, &(0x7f0000000200)=ANY=[@ANYBLOB="12011400c7f36d088d0e0020c621000000010902290001000000000904000000db02ef00052406"], 0x0) 2m33.40626996s ago: executing program 4 (id=133): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file2\x00', 0x21c90c, &(0x7f0000001340)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000}}, {@noblock_validity}, {@jqfmt_vfsold}, {@nodelalloc}, {@errors_remount}, {@nomblk_io_submit}, {@nojournal_checksum}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@resgid, 0x32}]}, 0x1e, 0x4e0, &(0x7f0000001a40)="$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") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x82) ioctl$FITRIM(r0, 0xc0185879, 0x0) 2m30.694751983s ago: executing program 32 (id=91): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_MEMORY_ENCRYPT_UNREG_REGION(r1, 0x8010aebc, &(0x7f0000000300)={0xdddd0000, 0x2000}) 2m30.398533588s ago: executing program 4 (id=145): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='comm\x00') exit(0x1f52b4ba) writev(r0, &(0x7f0000000480)=[{&(0x7f0000000100)="cf", 0x1}], 0x1) 2m26.442704905s ago: executing program 4 (id=153): r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) fcntl$notify(r0, 0x402, 0x21) preadv(r0, 0x0, 0x0, 0xebc, 0x8) 2m25.937807595s ago: executing program 4 (id=156): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112}) ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000080)={0x2, &(0x7f0000000040)=[{0x20, 0xbc, 0xc5, 0xfffff02c}, {0x6, 0x0, 0xff, 0x9}]}) 2m10.79438827s ago: executing program 33 (id=156): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112}) ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000080)={0x2, &(0x7f0000000040)=[{0x20, 0xbc, 0xc5, 0xfffff02c}, {0x6, 0x0, 0xff, 0x9}]}) 1m57.916453141s ago: executing program 2 (id=209): ioperm(0x2, 0x7, 0x13) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ioperm(0x1, 0x8, 0x1) 1m57.220131121s ago: executing program 2 (id=214): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x2200008, &(0x7f0000000800)={[{@jqfmt_vfsv1}, {@stripe={'stripe', 0x3d, 0x6}}, {@norecovery}, {@noauto_da_alloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@jqfmt_vfsv1}, {@inlinecrypt}, {@grpquota}, {@norecovery}]}, 0x3, 0x5a8, &(0x7f0000000a40)="$eJzs3U1rG0cfAPD/ynLenycOhND2UAw5NCWNHNt9SaGQ9Fja0EB7T4WtmGA5CpYcYjeQ5NBceimhUEoDpR+g9x5Dv0C/Qi+BNhBKMO0hF5WVV7EiW7Yli9i1fj9YeWZ35dn/7sxoVrtiAxhYo+lLLuLViPgmiTjasiwf2cLRlfWWn96aSqck6vXP/koiyeY110+yv4ezzCsR8etXEadza8utLi7NFsvl0nyWH6vNXR+rLi6duTpXnCnNlK5NTE6ee2dy4v333u1brG9e+uf7Tx9+dO7rk8vf/fz42P0kLsSRbFkzjoPbK+JOa2Y0RrN9MhwX2lYc3145u06y0xtAT4aydj4caR9wNIayVg/sfbcjog4MqET7hwHVHAc0z+1bz+cHwZMPV06A1safX/luJA7sT18PLScvnBml57sjfSg/LeOXPx/cT6do+z6l3e0Xs0N9KB4YYHfuRsTZfH5t/5dk/V/vzja+PN5YexmD9vkDO+lhOv55a73xT645/mm8to9/Dq/TdnuxefvPPW5bJenntYZ0/PfBuuPf513XyFCW+19jzDecXLlaLp2NiP9HxKkY3p/mN7qec275Ub3TstbxXzql5TfHgtl2PM7vf/E908VacTsxt3pyN+K11fFvEmv6/wONsW778U/3x6UtlnGi9OD1Tss2j7/V7a0HtkX1nyLeWPf4r9ayZOPrk2ON+jDWrBVr/X3vxG+dyu8u/v57cnelom8Q/0jSer222n0ZPx54Vuq0rNf6vy/5vJHetzLrWb1Yq82PR+xLPmmdHzfT+ROr723mb2brp/X/1MmN+7/16v/BiPhii/HfO36v46rdHv9tXp9eI41/uqvj333i0cdf/tB7/Onxf7uROpXN2Ur/t9UN3M6+AwAAAAAAgN0mFxFHIskVnqdzuUJh5f6O43EoV65Ua6evVBauTUfjt7IjMZxrXuk+2nI/xHh2P2wzP9GWn4yIYxHx7dDBRr4wVSlP73TwAAAAAAAAAAAAAAAAAAAAsEsc7vD7/9QfnjAFe59HfsPg2rT99+NJT8Cu1KH99/9pW8CuY/wPg0v7h8HVaP8dH9EJ7GU+/2Fw9dD+3RoAe4TPfxhc+biz05sAAAAAAAAAAAAAAAAAAAAAAAAAAAAAe8mlixfTqb789NZUmp++sbgwW7lxZrpUnS3MLUwVpirz1wszlcpMuVSYqsxt9v/Klcr18YlYuDlWK1VrY9XFpctzlYVrtctX54ozpcul4ZcSFQAAAAAAAAAAAAAAAAAAAPy3VBeXZovlcmm+q8Tv0cu7VhO5bZX+shPnY1dsRs+JZLP9fD47HD0Vkd/5ACW6Swxlx3vDlXeoQwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAdfwbAAD//39JMAE=") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='net_prio.prioidx\x00', 0x275a, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x18}) 1m56.330153174s ago: executing program 2 (id=216): mkdir(&(0x7f0000000200)='./file0\x00', 0x0) openat(0xffffffffffffff9c, &(0x7f00000013c0)='./file0/file0\x00', 0x42, 0x0) rename(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000140)='./file0\x00') 1m51.9953427s ago: executing program 2 (id=220): r0 = memfd_create(&(0x7f0000000ac0)='\x00\x0e\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\xb5\xf5\xe8\x18h\xb4\xa71\xa8\x85s\xaf\x8a\xe5\xca\'\xfc>\x98\xaa\x8e\x02\xf6rY\xc4\xecB5\vX\'\xe7\xdd\x9d\x9e_\x00\xa1^Yx\x0eF\x98S\xdf\"\xa4\xc2T\xfa\x9f\xac|\xa0\xc5\x9d\xec\xa3\xe9c`j\xbf\x19\xc5\xc7c\xaer\x10\\BCo\x86\xe8X\x1c\x05E%\xb0\x85\xd0\x1e\xa7\xc9w\xa3D\xad<\xcc\x90`\xa8<1\xa1\x04\x0f\a\r\xe4H\x95\a\x80{\x1eJW\x8b\x93\x05\xa2\x85\x95\xdf\x87\xf6+\x0e\xff\xff\x00\x00\x00\x00\x00\x00\xff\xd6h\x8b\xc5\xb9\x10\xa4\x0e\xff\xfak\xf1{\xb7{', 0x4) mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x13, r0, 0x0) ftruncate(r0, 0x200000) 1m51.165428591s ago: executing program 2 (id=223): syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000100)='./file1\x00', 0x800000, &(0x7f0000002640)={[{@uni_xlateno}, {@shortname_mixed}, {@numtail}, {@uni_xlateno}, {@shortname_lower}, {@fat=@codepage={'codepage', 0x3d, '950'}}, {@uni_xlateno}, {@fat=@check_strict}, {@uni_xlate}, {@iocharset={'iocharset', 0x3d, 'koi8-ru'}}, {@fat=@showexec}, {@utf8}]}, 0x25, 0x35b, &(0x7f0000000200)="$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") mount$bind(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05414, 0x0) pivot_root(&(0x7f0000000340)='./file0/../file0\x00', 0x0) 1m49.390233542s ago: executing program 2 (id=227): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ad56b6aff71b62bbb0fe006eea66c7000000001800000008", 0x18) 1m33.859040933s ago: executing program 34 (id=227): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ad56b6aff71b62bbb0fe006eea66c7000000001800000008", 0x18) 30.439418761s ago: executing program 3 (id=311): r0 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@getchain={0x24, 0x66, 0x305, 0x70bd27, 0x25dfdbfb, {0x0, 0x0, 0x0, r1, {0xe, 0x8}, {}, {0xf, 0x3}}}, 0x24}, 0x1, 0x0, 0x0, 0x40804}, 0x0) 26.92846434s ago: executing program 3 (id=313): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @byteorder={{0xe}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_BYTEORDER_SREG={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_BYTEORDER_DREG={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x80}}, 0x0) 24.605296781s ago: executing program 3 (id=315): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = dup(r0) write$UHID_INPUT(r1, &(0x7f0000000040)={0xf, {"a2e3ad214fc752f90b5e094f4bf70e0dd038e7ff7fc6e5539b1b4d078b089b3b0838721a0890e0878f0e1ac6e7049b3d6c959b4c9a240d9b67f3988f7ef319520100ffe8d178708c523c921b1b5b31320d075d0736cd3b78130daa61d8e809ea889b5802b77f07227227b7ba67e0e78669a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae19397d696d0d758f2dc7d1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000002335875271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1fe90a56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617601000000be70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d595a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f0000000c558cdc0a3621c56cea8d20fa911afe40db6ebe8cac64289fd3da232f1b5dbc9980000000b3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6c82fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce3803f465e41e610c2021d653a5520000008213b704a5000000000000008ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc94681359bad8deff4b05f60cea0da7710a80000000000008000e0a37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4e38a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146680400416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2bed9e53803edf1a4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4ceb360c7e658828563e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034e00000000ca509383815b1b6fc6522d4e4fdc11a48cf42d483d4675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c478b095b68441a34cb53682a8ae4d24ad92f243941ed274549b79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdbe6c4579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93ae62fccfcbb2b75a2183c46eb65ca8124e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43e4fb1a5fb135c0c7dcee8fe6516ab68032f88c042891824659e9e01feffffffffffff83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369d95f2e8c77d95a3d3a6df40babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aa01b20f7694a00f16e2d0174035a2c22656dc00880acebdbe8ddbd75c2f998d8ac2dfad2ba3a50200000045a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe2907ac0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf463661c953fcad6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7cd419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e08d4db9d76864ae090d81eaeecf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6ea94f88a4facfd4c735a20307c737afae5136651b1b9bd522dcb399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a37684f4113c48859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463183b4b87c105000000302a808d7f5251440613d17ca51055f2f416a44fe180d2d50c312cca7cb14a20dc331f39a9817139a206fc76957227ffff2de20a4b8e3737fbb40100000006376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab83c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7ceec7dc808bf653639d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a602000000000000007007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00303000000000000007fb33b72685ec37a2d3f766413a60559516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf6529006c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6522fb5f6ffcdd56fed88935fcb75912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251aec29b32f8210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a5bd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08008897fb411a94b3c2fc5d5f0db42c0456ac015f08e5247d33ae2d35603ff8454c16f8342856935125102bb6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b80c1c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67784f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57fa9c0fe662a46b7f71cd47744db86c50b704c98ad90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe360500000000000000b77940b5f07722e47a08d3679507000000000000934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1062dfa13bdc1fa7cfaadba85c72e9758f03a700d0be53f8d2a1df0d07b3d5bd3b01faffd0addbed2881a9700af561ac8c7e36bb2fc4c40e9c766c06817bb903729a7db6ff957697c9ede7885d94ffb0759be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c1484d2f9c55f4901203a9a8a2c3e90f39c3dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000600", 0x1000}}, 0x1006) 23.709754113s ago: executing program 3 (id=317): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a70000000060a0b0400000000000000000200000044000480400001800a0001006d6174636800000030000280080002400000000118000300d67a854a7a4124a91520800000000000000030000a0001006f776e65720000000900010073797a30000000000900020073797a32"], 0x98}, 0x1, 0x0, 0x0, 0x4000000}, 0x4044010) 17.601980363s ago: executing program 3 (id=322): r0 = socket$kcm(0x29, 0x2, 0x0) mremap(&(0x7f000008f000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000486000/0x1000)=nil) sendmsg$kcm(r0, &(0x7f0000002080)={0x0, 0x0, &(0x7f0000002000)=[{&(0x7f0000000880)="1a", 0x100000}], 0x1}, 0x0) 16.949781579s ago: executing program 3 (id=324): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000380)={'veth1_macvtap\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000d80)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0xb}, {0xffff, 0xffff}, {0x8}}, [@qdisc_kind_options=@q_mq={0x7}, @TCA_RATE={0x6, 0x5, {0xb, 0x4}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x10, 0x3, 0x1, 0x0, 0x80000000, 0x81}}, {0x4}}]}]}, 0x58}}, 0x0) 16.85189283s ago: executing program 0 (id=326): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000fc0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x4, 0xd, &(0x7f00000001c0)=@framed={{0x18, 0x2, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x1000000b}, [@call={0x85, 0x0, 0x0, 0x28}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}]}, &(0x7f00000000c0)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200000}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000680)={r1, 0x0, 0xe, 0x0, &(0x7f0000000040)="0000100000000300000a6e000000", 0x0, 0x57af, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x50) 16.392319174s ago: executing program 0 (id=327): r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0) listen(r0, 0x40000) ioctl$SIOCX25SFACILITIES(r0, 0x89e3, &(0x7f0000000100)={0x76, 0x7d, 0x9, 0x4, 0x0, 0x81}) 16.179737447s ago: executing program 0 (id=328): capset(&(0x7f0000000500)={0x20080522}, &(0x7f0000000200)={0x200002, 0x200003, 0x801, 0x4, 0x7}) r0 = syz_open_dev$sg(&(0x7f00000008c0), 0x0, 0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000480)={0x53, 0xfffffffffffffffb, 0x6, 0x10, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000380)="5ad3b6d90727", 0x0, 0x2, 0x22, 0x1, 0x0}) 15.762412384s ago: executing program 0 (id=329): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x1}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)=@mpls_getroute={0x1c, 0x1a, 0x1, 0x70bd28, 0x0, {0x1c, 0x14, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2800}}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) 15.483786903s ago: executing program 0 (id=330): r0 = socket(0x1e, 0x4, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, 0x0, 0x0) 15.360163029s ago: executing program 0 (id=331): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000005c40)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000000)=@newtaction={0x5c, 0x30, 0x1, 0x0, 0x0, {}, [{0x48, 0x1, [@m_bpf={0x44, 0x1, 0x0, 0x0, {{0x8}, {0x1c, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_PARMS={0x18, 0x2, {0x0, 0x0, 0x20000000}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x5c}}, 0x0) r0 = socket$kcm(0x10, 0x2, 0x0) write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0xfe33) 1.544746017s ago: executing program 35 (id=324): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000380)={'veth1_macvtap\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000d80)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0xb}, {0xffff, 0xffff}, {0x8}}, [@qdisc_kind_options=@q_mq={0x7}, @TCA_RATE={0x6, 0x5, {0xb, 0x4}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x10, 0x3, 0x1, 0x0, 0x80000000, 0x81}}, {0x4}}]}]}, 0x58}}, 0x0) 0s ago: executing program 36 (id=331): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000005c40)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000000)=@newtaction={0x5c, 0x30, 0x1, 0x0, 0x0, {}, [{0x48, 0x1, [@m_bpf={0x44, 0x1, 0x0, 0x0, {{0x8}, {0x1c, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_PARMS={0x18, 0x2, {0x0, 0x0, 0x20000000}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x5c}}, 0x0) r0 = socket$kcm(0x10, 0x2, 0x0) write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0xfe33) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.193' (ED25519) to the list of known hosts. [ 83.265025][ T5813] cgroup: Unknown subsys name 'net' [ 83.495325][ T5813] cgroup: Unknown subsys name 'cpuset' [ 83.560359][ T5813] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 85.524211][ T5813] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 87.057230][ T37] cfg80211: failed to load regulatory.db [ 89.633237][ T5835] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 89.634878][ T5835] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 89.640744][ T5839] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 89.646179][ T5839] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 89.657238][ T5839] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 89.664952][ T5839] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 89.668167][ T5839] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 89.669924][ T5839] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 89.670595][ T5839] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 89.671393][ T5839] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 89.672898][ T5839] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 89.676925][ T5839] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 89.677465][ T5839] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 89.679178][ T5839] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 89.682264][ T5839] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 89.692861][ T5835] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 89.694518][ T5839] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 89.697204][ T5839] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 89.697722][ T5839] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 89.701198][ T5835] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 89.715925][ T5839] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 89.777066][ T5836] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 89.793805][ T5836] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 89.794193][ T5836] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 89.795602][ T5836] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 90.828089][ T5828] chnl_net:caif_netlink_parms(): no params data found [ 90.892685][ T5829] chnl_net:caif_netlink_parms(): no params data found [ 91.127283][ T5827] chnl_net:caif_netlink_parms(): no params data found [ 91.160302][ T5826] chnl_net:caif_netlink_parms(): no params data found [ 91.185630][ T5830] chnl_net:caif_netlink_parms(): no params data found [ 91.364342][ T5828] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.364558][ T5828] bridge0: port 1(bridge_slave_0) entered disabled state [ 91.364751][ T5828] bridge_slave_0: entered allmulticast mode [ 91.368865][ T5828] bridge_slave_0: entered promiscuous mode [ 91.446818][ T5828] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.447108][ T5828] bridge0: port 2(bridge_slave_1) entered disabled state [ 91.447516][ T5828] bridge_slave_1: entered allmulticast mode [ 91.452905][ T5828] bridge_slave_1: entered promiscuous mode [ 91.473547][ T5829] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.474139][ T5829] bridge0: port 1(bridge_slave_0) entered disabled state [ 91.474416][ T5829] bridge_slave_0: entered allmulticast mode [ 91.477907][ T5829] bridge_slave_0: entered promiscuous mode [ 91.534870][ T5829] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.535154][ T5829] bridge0: port 2(bridge_slave_1) entered disabled state [ 91.535340][ T5829] bridge_slave_1: entered allmulticast mode [ 91.537491][ T5829] bridge_slave_1: entered promiscuous mode [ 91.654519][ T5828] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 91.704244][ T5827] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.704611][ T5827] bridge0: port 1(bridge_slave_0) entered disabled state [ 91.705223][ T5827] bridge_slave_0: entered allmulticast mode [ 91.707368][ T5827] bridge_slave_0: entered promiscuous mode [ 91.722017][ T5828] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 91.755507][ T5829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 91.771003][ T5836] Bluetooth: hci3: command tx timeout [ 91.851504][ T5826] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.851763][ T5826] bridge0: port 1(bridge_slave_0) entered disabled state [ 91.851967][ T5826] bridge_slave_0: entered allmulticast mode [ 91.854212][ T5826] bridge_slave_0: entered promiscuous mode [ 91.858835][ T5827] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.859206][ T5827] bridge0: port 2(bridge_slave_1) entered disabled state [ 91.863399][ T5827] bridge_slave_1: entered allmulticast mode [ 91.866946][ T5827] bridge_slave_1: entered promiscuous mode [ 91.898049][ T5830] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.898377][ T5830] bridge0: port 1(bridge_slave_0) entered disabled state [ 91.898970][ T5830] bridge_slave_0: entered allmulticast mode [ 91.903726][ T5830] bridge_slave_0: entered promiscuous mode [ 91.916624][ T5829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 91.917411][ T5826] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.919304][ T5826] bridge0: port 2(bridge_slave_1) entered disabled state [ 91.919730][ T5826] bridge_slave_1: entered allmulticast mode [ 91.923994][ T5826] bridge_slave_1: entered promiscuous mode [ 91.931708][ T5836] Bluetooth: hci2: command tx timeout [ 91.978517][ T5830] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.978885][ T5830] bridge0: port 2(bridge_slave_1) entered disabled state [ 91.979217][ T5830] bridge_slave_1: entered allmulticast mode [ 91.983870][ T5830] bridge_slave_1: entered promiscuous mode [ 92.010644][ T5836] Bluetooth: hci1: command tx timeout [ 92.012600][ T5839] Bluetooth: hci4: command tx timeout [ 92.012714][ T5839] Bluetooth: hci0: command tx timeout [ 92.058352][ T5828] team0: Port device team_slave_0 added [ 92.145840][ T5827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 92.149251][ T5828] team0: Port device team_slave_1 added [ 92.183759][ T5829] team0: Port device team_slave_0 added [ 92.190325][ T5826] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 92.199232][ T5827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 92.227369][ T5830] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 92.234501][ T5829] team0: Port device team_slave_1 added [ 92.242145][ T5826] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 92.279072][ T5830] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 92.333108][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 92.333121][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 92.333136][ T5828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 92.403620][ T5827] team0: Port device team_slave_0 added [ 92.405640][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 92.405651][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 92.405668][ T5828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 92.434648][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 92.434665][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 92.434690][ T5829] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 92.441970][ T5826] team0: Port device team_slave_0 added [ 92.447694][ T5827] team0: Port device team_slave_1 added [ 92.474335][ T5830] team0: Port device team_slave_0 added [ 92.477652][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 92.477666][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 92.477691][ T5829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 92.483515][ T5826] team0: Port device team_slave_1 added [ 92.523253][ T5830] team0: Port device team_slave_1 added [ 92.631540][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 92.631553][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 92.631578][ T5827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 92.720415][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 92.720427][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 92.720444][ T5826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 92.722751][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 92.722762][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 92.722778][ T5827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 92.751725][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 92.751742][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 92.751767][ T5830] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 92.784354][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 92.784372][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 92.784398][ T5826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 92.832837][ T5828] hsr_slave_0: entered promiscuous mode [ 92.835413][ T5828] hsr_slave_1: entered promiscuous mode [ 92.842617][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 92.842634][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 92.842659][ T5830] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 93.244924][ T5829] hsr_slave_0: entered promiscuous mode [ 93.246354][ T5829] hsr_slave_1: entered promiscuous mode [ 93.247735][ T5829] debugfs: 'hsr0' already exists in 'hsr' [ 93.247813][ T5829] Cannot create hsr debugfs directory [ 93.434732][ T5827] hsr_slave_0: entered promiscuous mode [ 93.436157][ T5827] hsr_slave_1: entered promiscuous mode [ 93.437308][ T5827] debugfs: 'hsr0' already exists in 'hsr' [ 93.437333][ T5827] Cannot create hsr debugfs directory [ 93.494821][ T5826] hsr_slave_0: entered promiscuous mode [ 93.496320][ T5826] hsr_slave_1: entered promiscuous mode [ 93.497460][ T5826] debugfs: 'hsr0' already exists in 'hsr' [ 93.497486][ T5826] Cannot create hsr debugfs directory [ 93.525586][ T5830] hsr_slave_0: entered promiscuous mode [ 93.527071][ T5830] hsr_slave_1: entered promiscuous mode [ 93.528221][ T5830] debugfs: 'hsr0' already exists in 'hsr' [ 93.528246][ T5830] Cannot create hsr debugfs directory [ 93.850136][ T5836] Bluetooth: hci3: command tx timeout [ 94.009788][ T5836] Bluetooth: hci2: command tx timeout [ 94.089849][ T5831] Bluetooth: hci0: command tx timeout [ 94.089886][ T5831] Bluetooth: hci4: command tx timeout [ 94.090073][ T5836] Bluetooth: hci1: command tx timeout [ 94.514245][ T5828] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 94.562464][ T5828] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 94.566999][ T5828] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 94.588220][ T5828] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 94.602332][ T5828] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 94.632474][ T5828] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 94.654832][ T5828] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 94.686011][ T5828] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 94.811907][ T5827] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 94.858989][ T5827] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 94.866405][ T5827] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 94.886749][ T5827] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 94.889313][ T5827] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 94.925122][ T5827] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 94.957107][ T5827] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 94.986681][ T5827] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 95.154421][ T5826] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 95.197764][ T5826] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 95.213771][ T5826] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 95.244082][ T5826] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 95.250507][ T5826] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 95.296136][ T5826] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 95.337788][ T5826] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 95.354001][ T5826] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 95.505025][ T5829] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 95.539175][ T5829] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 95.559087][ T5829] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 95.617816][ T5829] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 95.631811][ T5829] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 95.665546][ T5829] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 95.695182][ T5829] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 95.728653][ T5829] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 95.888754][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0 [ 95.897986][ T5830] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 95.931703][ T5836] Bluetooth: hci3: command tx timeout [ 95.955091][ T5830] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 95.969330][ T5830] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 96.027731][ T5830] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 96.042653][ T5830] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 96.075428][ T5830] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 96.088907][ T5830] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 96.089720][ T5836] Bluetooth: hci2: command tx timeout [ 96.124642][ T5830] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 96.169900][ T5839] Bluetooth: hci4: command tx timeout [ 96.169933][ T5839] Bluetooth: hci0: command tx timeout [ 96.170095][ T5836] Bluetooth: hci1: command tx timeout [ 96.233687][ T5828] 8021q: adding VLAN 0 to HW filter on device team0 [ 96.272231][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0 [ 96.317690][ T67] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.318444][ T67] bridge0: port 1(bridge_slave_0) entered forwarding state [ 96.396253][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.396380][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 96.479377][ T5827] 8021q: adding VLAN 0 to HW filter on device team0 [ 96.531030][ T5826] 8021q: adding VLAN 0 to HW filter on device bond0 [ 96.547606][ T44] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.547773][ T44] bridge0: port 1(bridge_slave_0) entered forwarding state [ 96.620701][ T44] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.620822][ T44] bridge0: port 2(bridge_slave_1) entered forwarding state [ 96.726887][ T5826] 8021q: adding VLAN 0 to HW filter on device team0 [ 96.786570][ T107] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.786743][ T107] bridge0: port 1(bridge_slave_0) entered forwarding state [ 96.817583][ T5829] 8021q: adding VLAN 0 to HW filter on device bond0 [ 96.862460][ T67] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.862593][ T67] bridge0: port 2(bridge_slave_1) entered forwarding state [ 97.001263][ T5829] 8021q: adding VLAN 0 to HW filter on device team0 [ 97.058205][ T5830] 8021q: adding VLAN 0 to HW filter on device bond0 [ 97.091272][ T44] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.091542][ T44] bridge0: port 1(bridge_slave_0) entered forwarding state [ 97.208094][ T67] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.208282][ T67] bridge0: port 2(bridge_slave_1) entered forwarding state [ 97.298125][ T5830] 8021q: adding VLAN 0 to HW filter on device team0 [ 97.378376][ T148] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.379266][ T148] bridge0: port 1(bridge_slave_0) entered forwarding state [ 97.459366][ T1295] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.464290][ T1295] bridge0: port 2(bridge_slave_1) entered forwarding state [ 97.587880][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 97.808659][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 98.010879][ T5836] Bluetooth: hci3: command tx timeout [ 98.090392][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 98.173131][ T5836] Bluetooth: hci2: command tx timeout [ 98.206509][ T5828] veth0_vlan: entered promiscuous mode [ 98.249703][ T5836] Bluetooth: hci1: command tx timeout [ 98.249739][ T5836] Bluetooth: hci0: command tx timeout [ 98.249761][ T5836] Bluetooth: hci4: command tx timeout [ 98.388176][ T5828] veth1_vlan: entered promiscuous mode [ 98.462602][ T5829] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 98.604944][ T5826] veth0_vlan: entered promiscuous mode [ 98.624848][ T5830] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 98.706926][ T5828] veth0_macvtap: entered promiscuous mode [ 98.718128][ T5826] veth1_vlan: entered promiscuous mode [ 98.763288][ T5828] veth1_macvtap: entered promiscuous mode [ 98.805001][ T5827] veth0_vlan: entered promiscuous mode [ 98.862085][ T5829] veth0_vlan: entered promiscuous mode [ 98.894520][ T5827] veth1_vlan: entered promiscuous mode [ 98.908589][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 98.953750][ T5829] veth1_vlan: entered promiscuous mode [ 98.975753][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 99.031127][ T5826] veth0_macvtap: entered promiscuous mode [ 99.049330][ T1295] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.072186][ T1295] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.074250][ T5830] veth0_vlan: entered promiscuous mode [ 99.096758][ T1295] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.097992][ T5826] veth1_macvtap: entered promiscuous mode [ 99.114692][ T1295] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.205497][ T5830] veth1_vlan: entered promiscuous mode [ 99.327395][ T5827] veth0_macvtap: entered promiscuous mode [ 99.412241][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 99.464935][ T5829] veth0_macvtap: entered promiscuous mode [ 99.525329][ T5827] veth1_macvtap: entered promiscuous mode [ 99.543827][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 99.564305][ T5829] veth1_macvtap: entered promiscuous mode [ 99.641873][ T107] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.654723][ T107] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.677680][ T107] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.699179][ T67] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 99.699206][ T67] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 99.737315][ T107] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.784493][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 99.881439][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 99.897069][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 99.908459][ T5830] veth0_macvtap: entered promiscuous mode [ 100.000934][ T67] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 100.000956][ T67] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 100.033637][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 100.098051][ T5830] veth1_macvtap: entered promiscuous mode [ 100.105096][ T44] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.175652][ T44] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.216993][ T44] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.264719][ T44] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.306015][ T44] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.317190][ T44] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.343218][ T44] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.405614][ T44] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.614038][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 100.620865][ T4581] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 100.620886][ T4581] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 100.924553][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 101.205109][ T5950] process 'syz.2.6' launched '/dev/fd/3' with NULL argv: empty string added [ 101.349028][ T1427] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.379192][ T1295] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.386581][ T1295] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.412302][ T1295] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.412843][ T1295] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.412861][ T1295] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.644753][ T1295] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.644776][ T1295] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.034581][ T4581] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.034604][ T4581] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.524242][ T4581] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.524263][ T4581] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.595245][ T5963] loop1: detected capacity change from 0 to 164 [ 102.733976][ T1033] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.733999][ T1033] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.828972][ T5963] rock: corrupted directory entry. extent=458780 out of volume (nzones=41) [ 103.001516][ T5963] rock: corrupted directory entry. extent=458780 out of volume (nzones=41) [ 103.056847][ T1427] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.056869][ T1427] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.109825][ T5963] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 103.431093][ T148] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.431114][ T148] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.926788][ T5976] loop2: detected capacity change from 0 to 1024 [ 104.109944][ T5979] loop0: detected capacity change from 0 to 64 [ 104.541007][ T5984] delete_channel: no stack [ 104.995599][ T5973] syz.1.13 (5973) used greatest stack depth: 18656 bytes left [ 105.742201][ T5999] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd [ 107.730379][ T6023] loop1: detected capacity change from 0 to 128 [ 108.108927][ T6025] capability: warning: `syz.3.33' uses deprecated v2 capabilities in a way that may be insecure [ 108.257863][ T38] audit: type=1800 audit(1777282175.205:2): pid=6023 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.32" name="bus" dev="loop1" ino=1048605 res=0 errno=0 [ 108.611035][ T6020] Driver unsupported XDP return value 0 on prog (id 5) dev N/A, expect packet loss! [ 108.814942][ T6031] netlink: 8 bytes leftover after parsing attributes in process `syz.0.35'. [ 108.968656][ T1295] kworker/u8:10: attempt to access beyond end of device [ 108.968656][ T1295] loop1: rw=1, sector=145, nr_sectors = 43 limit=128 [ 110.564341][ T6049] loop1: detected capacity change from 0 to 64 [ 111.687659][ T6057] netlink: 104 bytes leftover after parsing attributes in process `syz.4.46'. [ 113.073426][ T6071] loop1: detected capacity change from 0 to 256 [ 113.092941][ T6071] exfat: Deprecated parameter 'namecase' [ 113.092996][ T6071] exfat: Deprecated parameter 'namecase' [ 113.424161][ T6071] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d) [ 113.588980][ T6072] loop4: detected capacity change from 0 to 4096 [ 113.601662][ T6072] ======================================================= [ 113.601662][ T6072] WARNING: The mand mount option has been deprecated and [ 113.601662][ T6072] and is ignored by this kernel. Remove the mand [ 113.601662][ T6072] option from the mount to silence this warning. [ 113.601662][ T6072] ======================================================= [ 113.731771][ T822] usb 4-1: new full-speed USB device number 2 using dummy_hcd [ 114.586168][ T822] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64 [ 114.586210][ T822] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 114.586256][ T822] usb 4-1: New USB device found, idVendor=17ef, idProduct=6047, bcdDevice= 0.00 [ 114.586280][ T822] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 115.055418][ T822] usb 4-1: config 0 descriptor?? [ 115.127709][ T6063] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 116.398422][ T6072] NILFS (loop4): error -4 creating segctord thread [ 116.705221][ T822] usbhid 4-1:0.0: can't add hid device: -71 [ 116.705363][ T822] usbhid 4-1:0.0: probe with driver usbhid failed with error -71 [ 117.264333][ T822] usb 4-1: USB disconnect, device number 2 [ 117.998897][ T6088] loop2: detected capacity change from 0 to 512 [ 118.757600][ T6088] EXT4-fs error (device loop2): ext4_orphan_get:1397: inode #15: comm syz.2.58: inode has both inline data and extents flags [ 118.757876][ T6088] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 118.769679][ C1] EXT4-fs (loop2): error count since last fsck: 1 [ 118.769706][ C1] EXT4-fs (loop2): initial error at time 1777282185: ext4_orphan_get:1397: inode 15 [ 118.769739][ C1] EXT4-fs (loop2): last error at time 1777282185: ext4_orphan_get:1397: inode 15 [ 118.857592][ T6088] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.58: couldn't read orphan inode 15 (err -117) [ 118.857769][ T6088] loop2: lost filesystem error report for type 5 error -117 [ 118.985263][ T6088] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 119.081982][ T6090] loop1: detected capacity change from 0 to 4096 [ 119.587180][ T6100] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 121.048946][ T5828] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 122.181146][ T6090] NILFS (loop1): bad btree node (ino=3, blocknr=1024): level = 0, flags = 0x0, nchildren = 0 [ 122.181187][ T6090] NILFS (loop1): error -5 preparing GC: cannot read source blocks [ 123.677500][ T6116] loop3: detected capacity change from 0 to 256 [ 123.710801][ T6116] exfat: Deprecated parameter 'utf8' [ 123.710927][ T6116] exfat: Deprecated parameter 'namecase' [ 123.711043][ T6116] exfat: Deprecated parameter 'namecase' [ 123.711069][ T6116] exfat: Deprecated parameter 'utf8' [ 123.816598][ T6121] bridge_slave_1: default FDB implementation only supports local addresses [ 124.136988][ T6116] exFAT-fs (loop3): failed to load upcase table (idx : 0x00012153, chksum : 0xc9bffc20, utbl_chksum : 0xe619d30d) [ 124.137382][ T6116] exFAT-fs (loop3): failed to test first cluster bit of root dir(5) [ 124.757560][ T6132] mmap: syz.2.74 (6132) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 124.819399][ T6134] loop0: detected capacity change from 0 to 64 [ 125.479026][ T6141] loop1: detected capacity change from 0 to 4096 [ 125.662367][ T6144] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 125.828307][ T6134] MINIX-fs: mounting unchecked file system, running fsck is recommended [ 127.270380][ T6154] loop4: detected capacity change from 0 to 164 [ 127.704057][ T6154] rock: directory entry would overflow storage [ 127.704067][ T6154] rock: sig=0x4d4e, size=5, remaining=4 [ 127.704367][ T6154] isofs: isofs_export_get_parent(): child directory not normalized! [ 128.467891][ T6165] netlink: 68 bytes leftover after parsing attributes in process `syz.0.88'. [ 128.467958][ T6165] netlink: 48 bytes leftover after parsing attributes in process `syz.0.88'. [ 128.946025][ T5904] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 129.204597][ T6170] devpts: Bad value for 'max' [ 129.401671][ T6172] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 129.543225][ T5904] usb 3-1: config 1 has an invalid interface number: 7 but max is 0 [ 129.543258][ T5904] usb 3-1: config 1 has no interface number 0 [ 129.543309][ T5904] usb 3-1: config 1 interface 7 altsetting 0 has an endpoint descriptor with address 0xDB, changing to 0x8B [ 129.543338][ T5904] usb 3-1: config 1 interface 7 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64 [ 129.543366][ T5904] usb 3-1: config 1 interface 7 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 129.813009][ T5904] usb 3-1: New USB device found, idVendor=1199, idProduct=68a3, bcdDevice= 0.00 [ 129.813045][ T5904] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 129.813066][ T5904] usb 3-1: Product: syz [ 129.813081][ T5904] usb 3-1: Manufacturer: syz [ 129.813095][ T5904] usb 3-1: SerialNumber: syz [ 130.207964][ T6162] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 130.499735][ T6162] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 132.546920][ T6168] netlink: 136 bytes leftover after parsing attributes in process `syz.0.89'. [ 132.547041][ T6168] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 133.153235][ T1337] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.153379][ T1337] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.577644][ T5904] sierra_net 3-1:1.7 wwan0: register 'sierra_net' at usb-dummy_hcd.2-1, Sierra Wireless USB-to-WWAN Modem, 00:00:00:00:01:07 [ 133.699834][ T5904] sierra_net 3-1:1.7 wwan0: Submit SYNC failed -71 [ 133.699865][ T5904] sierra_net 3-1:1.7 wwan0: Send SYNC failed, status -71 [ 133.885418][ T5904] sierra_net 3-1:1.7 wwan0: Submit SYNC failed -71 [ 133.885614][ T5904] sierra_net 3-1:1.7 wwan0: Send SYNC failed, status -71 [ 134.327928][ T5904] usb 3-1: USB disconnect, device number 2 [ 134.548540][ T5904] sierra_net 3-1:1.7 wwan0: unregister 'sierra_net' usb-dummy_hcd.2-1, Sierra Wireless USB-to-WWAN Modem [ 135.631210][ T6215] ptrace attach of "./syz-executor exec"[5829] was attempted by "@ n € €\x0d   [ 135.980950][ T37] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 135.981100][ T37] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 136.243502][ T6221] loop0: detected capacity change from 0 to 64 [ 136.903288][ T6227] comedi comedi3: multiq3: I/O base address or length out of range [ 137.831917][ T6236] Bluetooth: MGMT ver 1.23 [ 138.019780][ T37] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 138.019918][ T37] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 140.099777][ T5897] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 140.099913][ T5897] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 140.126393][ T37] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 140.295198][ T37] usb 5-1: Using ep0 maxpacket: 8 [ 140.298516][ T37] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 140.298578][ T37] usb 5-1: New USB device found, idVendor=0e8d, idProduct=2000, bcdDevice=21.c6 [ 140.298603][ T37] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 140.546555][ T37] usb 5-1: config 0 descriptor?? [ 140.841119][ T5897] usb 5-1: USB disconnect, device number 2 [ 141.108493][ T6251] loop0: detected capacity change from 0 to 32768 [ 141.532016][ T6265] loop3: detected capacity change from 0 to 2048 [ 141.755044][ T6268] loop4: detected capacity change from 0 to 512 [ 141.779637][ T6268] EXT4-fs: Ignoring removed nomblk_io_submit option [ 141.983792][ T6272] trusted_key: encrypted_key: key trusted:syz not found [ 142.064535][ T6251] read_mapping_page failed! [ 142.104396][ T6251] jfs_mount: Failed to read AGGREGATE_I [ 142.104412][ T6251] Mount JFS Failure: -5 [ 142.104423][ T6251] jfs_mount failed w/return code = -5 [ 142.169936][ T5897] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 142.170069][ T5897] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 142.339723][ T6268] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 142.339749][ T6268] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 142.869654][ T6265] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 143.192103][ T6268] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4222: comm syz.4.133: Allocating blocks 41-42 which overlap fs metadata [ 143.192145][ T6268] loop4: lost filesystem error report for type 5 error -117 [ 143.252909][ C1] EXT4-fs (loop4): error count since last fsck: 1 [ 143.252938][ C1] EXT4-fs (loop4): initial error at time 1777282210: ext4_mb_mark_diskspace_used:4222 [ 143.252963][ C1] EXT4-fs (loop4): last error at time 1777282210: ext4_mb_mark_diskspace_used:4222 [ 143.395858][ T6284] Bluetooth: MGMT ver 1.23 [ 143.407224][ T6282] loop2: detected capacity change from 0 to 2048 [ 143.702206][ T6282] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 144.024447][ T6287] netlink: 216 bytes leftover after parsing attributes in process `syz.0.140'. [ 144.080212][ T6268] EXT4-fs (loop4): Remounting filesystem read-only [ 144.080440][ T6268] Quota error (device loop4): write_blk: dquota write failed [ 144.080457][ T6268] Quota error (device loop4): find_free_dqentry: Can't write quota data block 5 [ 144.080818][ T6268] Quota error (device loop4): write_blk: dquota write failed [ 144.081067][ T6268] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 144.082494][ T6268] EXT4-fs (loop4): 1 truncate cleaned up [ 144.085308][ T6268] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 144.507572][ T37] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 144.507711][ T37] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 145.294101][ T5836] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 145.349342][ T5836] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 145.405865][ T5836] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 145.578092][ T5836] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 145.588571][ T5836] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 145.765963][ T5827] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 146.534973][ T6300] loop2: detected capacity change from 0 to 64 [ 146.578310][ T5905] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 146.578453][ T5905] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 147.582195][ T6305] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 147.691717][ T5831] Bluetooth: hci5: command tx timeout [ 148.658878][ T6005] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 148.659023][ T6005] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 149.783258][ T5831] Bluetooth: hci5: command tx timeout [ 150.112418][ T38] audit: type=1326 audit(1777282217.115:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6327 comm="syz.0.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddd0afcdd9 code=0x7ffc0000 [ 150.147918][ T38] audit: type=1326 audit(1777282217.195:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6327 comm="syz.0.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddd0afcdd9 code=0x7ffc0000 [ 150.216590][ T38] audit: type=1326 audit(1777282217.235:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6327 comm="syz.0.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddd0afcdd9 code=0x7ffc0000 [ 150.216647][ T38] audit: type=1326 audit(1777282217.265:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6327 comm="syz.0.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddd0afcdd9 code=0x7ffc0000 [ 150.216692][ T38] audit: type=1326 audit(1777282217.265:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6327 comm="syz.0.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7fddd0afcdd9 code=0x7ffc0000 [ 150.216738][ T38] audit: type=1326 audit(1777282217.265:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6327 comm="syz.0.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddd0afcdd9 code=0x7ffc0000 [ 150.322147][ T38] audit: type=1326 audit(1777282217.275:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6327 comm="syz.0.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddd0afcdd9 code=0x7ffc0000 [ 150.354961][ T38] audit: type=1326 audit(1777282217.405:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6327 comm="syz.0.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddd0afcdd9 code=0x7ffc0000 [ 150.355018][ T38] audit: type=1326 audit(1777282217.405:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6327 comm="syz.0.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=316 compat=0 ip=0x7fddd0afcdd9 code=0x7ffc0000 [ 150.355064][ T38] audit: type=1326 audit(1777282217.405:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6327 comm="syz.0.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddd0afcdd9 code=0x7ffc0000 [ 150.739844][ T822] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 150.739992][ T822] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 150.864328][ T6332] loop0: detected capacity change from 0 to 128 [ 151.849730][ T5836] Bluetooth: hci5: command tx timeout [ 152.809889][ T6005] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 152.810020][ T6005] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 152.983602][ T822] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 153.184375][ T822] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 153.184413][ T822] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 9865, setting to 1024 [ 153.184460][ T822] usb 4-1: New USB device found, idVendor=1c4f, idProduct=0059, bcdDevice= 0.00 [ 153.184487][ T822] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 153.262281][ T822] usb 4-1: config 0 descriptor?? [ 153.277766][ T6345] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 153.929843][ T5836] Bluetooth: hci5: command tx timeout [ 154.334336][ T822] sigmamicro 0003:1C4F:0059.0001: unknown main item tag 0x0 [ 154.334383][ T822] sigmamicro 0003:1C4F:0059.0001: unknown main item tag 0x0 [ 154.334408][ T822] sigmamicro 0003:1C4F:0059.0001: unknown main item tag 0x0 [ 154.334433][ T822] sigmamicro 0003:1C4F:0059.0001: unknown main item tag 0x0 [ 154.334459][ T822] sigmamicro 0003:1C4F:0059.0001: unknown main item tag 0x0 [ 154.334485][ T822] sigmamicro 0003:1C4F:0059.0001: unknown main item tag 0x0 [ 154.334510][ T822] sigmamicro 0003:1C4F:0059.0001: unknown main item tag 0x0 [ 154.334535][ T822] sigmamicro 0003:1C4F:0059.0001: unknown main item tag 0x0 [ 154.334561][ T822] sigmamicro 0003:1C4F:0059.0001: unknown main item tag 0x0 [ 154.334586][ T822] sigmamicro 0003:1C4F:0059.0001: unknown main item tag 0x0 [ 154.741918][ T822] sigmamicro 0003:1C4F:0059.0001: hidraw0: USB HID v7f.fd Device [HID 1c4f:0059] on usb-dummy_hcd.3-1/input0 [ 154.892982][ T5156] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 154.893116][ T5156] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 155.173192][ T822] usb 4-1: USB disconnect, device number 3 [ 156.498614][ T6364] netlink: 56 bytes leftover after parsing attributes in process `syz.2.174'. [ 156.993372][ T5156] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 156.993521][ T5156] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 157.287090][ T6366] loop2: detected capacity change from 0 to 32768 [ 159.119077][ T5897] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 159.170696][ T5897] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 161.355687][ T5897] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 161.355842][ T5897] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 162.731684][ T6370] loop2: detected capacity change from 0 to 4096 [ 162.790658][ T6370] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512). [ 163.250129][ T6370] ntfs3(loop2): ino=5, mi_enum_attr [ 163.250425][ T6370] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 163.382796][ T822] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 163.382930][ T822] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 164.788150][ T5831] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 164.829109][ T5831] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 164.833491][ T5831] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 164.888394][ T6360] netem: incorrect ge model size [ 164.888431][ T6360] netem: change failed [ 164.904448][ T5831] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 164.905706][ T5831] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 165.277797][ T6377] loop2: detected capacity change from 0 to 32768 [ 165.468966][ T5897] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 165.469100][ T5897] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 165.549409][ T6377] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 165.651222][ T6377] XFS (loop2): Ending clean mount [ 165.677506][ T6377] XFS (loop2): Metadata CRC error detected at xfs_rmapbt_read_verify+0x42/0xe0, xfs_rmapbt block 0x14 [ 165.677571][ T6377] XFS (loop2): Unmount and run xfs_repair [ 165.677585][ T6377] XFS (loop2): First 128 bytes of corrupted metadata buffer: [ 165.677603][ T6377] 00000000: 52 4d 42 33 00 00 00 0c ff ff ff ff ff ff ff ff RMB3............ [ 165.677620][ T6377] 00000010: 00 00 00 00 00 00 00 14 00 00 00 01 00 00 00 10 ................ [ 165.677636][ T6377] 00000020: d7 dc 42 4e 79 90 42 cb 9f 91 9c b7 20 0a 10 1d ..BNy.B..... ... [ 165.677651][ T6377] 00000030: 00 00 00 00 6c 4b dc c9 00 00 00 00 00 00 00 01 ....lK.......... [ 165.677665][ T6377] 00000040: ff ff ff ff ff ff 00 00 00 00 00 00 00 00 00 00 ................ [ 165.677680][ T6377] 00000050: 00 00 00 01 00 00 00 02 ff ff ff ff ff ff ff fb ................ [ 165.677694][ T6377] 00000060: 00 00 00 00 00 00 00 00 00 00 00 03 00 00 00 02 ................ [ 165.677709][ T6377] 00000070: ff ff ff ff ff ff ff fa 00 00 00 00 00 00 00 00 ................ [ 165.677954][ T6377] XFS (loop2): metadata I/O error in "xfs_btree_read_buf_block+0x2b0/0x490" at daddr 0x14 len 4 error 74 [ 166.989200][ T5828] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 166.994063][ T6389] 9p: p9: multiple sources not supported [ 167.062248][ T5836] Bluetooth: hci0: command tx timeout [ 167.123595][ T5828] XFS (loop2): Uncorrected metadata errors detected; please run xfs_repair. [ 167.556635][ T37] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 167.556777][ T37] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 169.152631][ T5831] Bluetooth: hci0: command tx timeout [ 169.622803][ T5156] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 169.622951][ T5156] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 169.672560][ T6295] chnl_net:caif_netlink_parms(): no params data found [ 170.338272][ T6416] loop2: detected capacity change from 0 to 1024 [ 170.671323][ T6416] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only. [ 171.209689][ T5831] Bluetooth: hci0: command tx timeout [ 171.699838][ T822] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 171.699978][ T822] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 171.797899][ T6295] bridge0: port 1(bridge_slave_0) entered blocking state [ 171.798479][ T6295] bridge0: port 1(bridge_slave_0) entered disabled state [ 171.798855][ T6295] bridge_slave_0: entered allmulticast mode [ 171.834195][ T6295] bridge_slave_0: entered promiscuous mode [ 171.883414][ T6295] bridge0: port 2(bridge_slave_1) entered blocking state [ 171.883826][ T6295] bridge0: port 2(bridge_slave_1) entered disabled state [ 171.884173][ T6295] bridge_slave_1: entered allmulticast mode [ 171.916726][ T6295] bridge_slave_1: entered promiscuous mode [ 172.172027][ T6295] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 172.214052][ T6295] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 172.277805][ T6378] chnl_net:caif_netlink_parms(): no params data found [ 172.379022][ T6295] team0: Port device team_slave_0 added [ 172.418280][ T6295] team0: Port device team_slave_1 added [ 172.615508][ T6295] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 172.615526][ T6295] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 172.615557][ T6295] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 172.776366][ T6295] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 172.776387][ T6295] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 172.776416][ T6295] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 173.299737][ T5831] Bluetooth: hci0: command tx timeout [ 173.445430][ T6435] loop3: detected capacity change from 0 to 512 [ 173.662242][ T6435] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 173.782171][ T822] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 173.782318][ T822] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 174.036348][ T6435] EXT4-fs (loop3): 1 truncate cleaned up [ 174.137320][ T6435] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 174.309301][ T6435] EXT4-fs: Ignoring sb option on remount [ 174.336172][ T6435] EXT4-fs: Remounting fs w/o journal so ignoring data_err option [ 175.579095][ T6435] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 175.852161][ T37] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 175.852299][ T37] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 176.705559][ T5830] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 177.943647][ T5156] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 177.943792][ T5156] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 178.247076][ T6482] loop2: detected capacity change from 0 to 1024 [ 178.281312][ T6482] EXT4-fs: inline encryption not supported [ 178.391075][ T6482] EXT4-fs (loop2): stripe (6) is not aligned with cluster size (16), stripe is disabled [ 178.537513][ T6482] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 180.030788][ T37] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 180.086005][ T37] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 180.405554][ T6378] bridge0: port 1(bridge_slave_0) entered blocking state [ 180.407138][ T6378] bridge0: port 1(bridge_slave_0) entered disabled state [ 180.407504][ T6378] bridge_slave_0: entered allmulticast mode [ 180.437018][ T6378] bridge_slave_0: entered promiscuous mode [ 180.467477][ T6378] bridge0: port 2(bridge_slave_1) entered blocking state [ 180.467907][ T6378] bridge0: port 2(bridge_slave_1) entered disabled state [ 180.468236][ T6378] bridge_slave_1: entered allmulticast mode [ 180.494175][ T6378] bridge_slave_1: entered promiscuous mode [ 180.668071][ T6295] hsr_slave_0: entered promiscuous mode [ 180.687000][ T6295] hsr_slave_1: entered promiscuous mode [ 180.698608][ T6295] debugfs: 'hsr0' already exists in 'hsr' [ 180.698640][ T6295] Cannot create hsr debugfs directory [ 180.734175][ T6378] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 180.757067][ T6378] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 180.930078][ T6378] team0: Port device team_slave_0 added [ 180.980347][ T6378] team0: Port device team_slave_1 added [ 181.177533][ T6378] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 181.177552][ T6378] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 181.177580][ T6378] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 181.249151][ T6378] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 181.249170][ T6378] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 181.249199][ T6378] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 182.100369][ T37] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 182.100510][ T37] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 182.233186][ T5828] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 182.426372][ T6494] loop3: detected capacity change from 0 to 512 [ 182.778344][ T6494] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 183.291924][ T6494] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 183.767342][ T6508] netlink: 8 bytes leftover after parsing attributes in process `syz.0.221'. [ 184.038914][ T5830] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 184.171860][ T5897] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 184.172022][ T5897] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 184.228615][ T6511] loop2: detected capacity change from 0 to 256 [ 184.951729][ T6511] FAT-fs (loop2): Directory bread(block 64) failed [ 184.951768][ T6511] FAT-fs (loop2): Directory bread(block 65) failed [ 184.951883][ T6511] FAT-fs (loop2): Directory bread(block 66) failed [ 184.951906][ T6511] FAT-fs (loop2): Directory bread(block 67) failed [ 184.952184][ T6511] FAT-fs (loop2): Directory bread(block 68) failed [ 184.952209][ T6511] FAT-fs (loop2): Directory bread(block 69) failed [ 184.952318][ T6511] FAT-fs (loop2): Directory bread(block 70) failed [ 184.952342][ T6511] FAT-fs (loop2): Directory bread(block 71) failed [ 184.952458][ T6511] FAT-fs (loop2): Directory bread(block 72) failed [ 184.952481][ T6511] FAT-fs (loop2): Directory bread(block 73) failed [ 185.246457][ T6517] loop0: detected capacity change from 0 to 4096 [ 185.270753][ T6517] EXT4-fs: inline encryption not supported [ 185.424055][ T6517] EXT4-fs (loop0): Test dummy encryption mode enabled [ 185.441662][ T6517] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c019, mo2=0023] [ 185.441818][ T6517] System zones: 0-5 [ 185.614670][ T6517] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 186.006175][ T5828] FAT-fs (loop2): error, corrupted directory (invalid entries) [ 186.006203][ T5828] FAT-fs (loop2): Filesystem has been set read-only [ 186.250057][ T38] kauditd_printk_skb: 3 callbacks suppressed [ 186.250079][ T38] audit: type=1800 audit(1777282253.285:16): pid=6517 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.225" name="file2" dev="loop0" ino=16 res=0 errno=0 [ 186.261936][ T37] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 186.262075][ T37] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 186.422229][ T6378] hsr_slave_0: entered promiscuous mode [ 186.440313][ T6378] hsr_slave_1: entered promiscuous mode [ 186.447934][ T6378] debugfs: 'hsr0' already exists in 'hsr' [ 186.463674][ T6378] Cannot create hsr debugfs directory [ 186.564872][ T6523] fscrypt: AES-256-XTS using implementation "xts-aes-aesni-avx" [ 188.337226][ T5156] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 188.337388][ T5156] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 188.483261][ T6529] loop3: detected capacity change from 0 to 1024 [ 190.415378][ T6005] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 190.415532][ T6005] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 190.551976][ T5829] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 192.031924][ T6535] GUP no longer grows the stack in syz.3.231 (6535): 200000006000-200000008000 (200000004000) [ 192.031966][ T6535] CPU: 1 UID: 0 PID: 6535 Comm: syz.3.231 Not tainted syzkaller #0 PREEMPT_{RT,(full)} [ 192.031993][ T6535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 192.032006][ T6535] Call Trace: [ 192.032015][ T6535] [ 192.032025][ T6535] dump_stack_lvl+0xe8/0x150 [ 192.032059][ T6535] fixup_user_fault+0x637/0x6f0 [ 192.032099][ T6535] fault_in_user_writeable+0x71/0xd0 [ 192.032132][ T6535] futex_lock_pi+0x816/0xb10 [ 192.032171][ T6535] ? __pfx_futex_lock_pi+0x10/0x10 [ 192.032218][ T6535] ? futex_private_hash_put+0x13b/0x170 [ 192.032263][ T6535] ? __pfx_futex_wake_mark+0x10/0x10 [ 192.032305][ T6535] ? __pfx_userfaultfd_unmap_complete+0x10/0x10 [ 192.032347][ T6535] do_futex+0x292/0x420 [ 192.032389][ T6535] ? __pfx_do_futex+0x10/0x10 [ 192.032424][ T6535] ? __vm_munmap+0x2e6/0x3d0 [ 192.032458][ T6535] __se_sys_futex+0x3a8/0x450 [ 192.032496][ T6535] ? __pfx___se_sys_futex+0x10/0x10 [ 192.032538][ T6535] ? rcu_is_watching+0x15/0xb0 [ 192.032586][ T6535] ? __x64_sys_futex+0x21/0xf0 [ 192.032621][ T6535] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 192.032645][ T6535] do_syscall_64+0x15f/0xf80 [ 192.032678][ T6535] ? trace_irq_disable+0x3b/0x140 [ 192.032706][ T6535] ? clear_bhb_loop+0x40/0x90 [ 192.032734][ T6535] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 192.032757][ T6535] RIP: 0033:0x7fc60e3dcdd9 [ 192.032778][ T6535] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 192.032797][ T6535] RSP: 002b:00007fc60c636028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 192.032821][ T6535] RAX: ffffffffffffffda RBX: 00007fc60e655fa0 RCX: 00007fc60e3dcdd9 [ 192.032837][ T6535] RDX: 00000000fffff7fc RSI: 000000000000008d RDI: 0000200000004000 [ 192.032852][ T6535] RBP: 00007fc60e472d69 R08: 0000000000000000 R09: 0000000000000000 [ 192.032867][ T6535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 192.032880][ T6535] R13: 00007fc60e656038 R14: 00007fc60e655fa0 R15: 00007ffedd76ac28 [ 192.032915][ T6535] [ 192.495476][ T822] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 192.495608][ T822] sierra_net 3-1:1.7 wwan0 (unregistering): Send SYNC failed, status -19 [ 193.184445][ T6544] loop3: detected capacity change from 0 to 512 [ 193.188345][ T6544] EXT4-fs: Ignoring removed oldalloc option [ 193.255009][ T6544] EXT4-fs (loop3): 1 truncate cleaned up [ 193.274523][ T6544] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 193.437583][ T5904] sierra_net 3-1:1.7 wwan0 (unregistered): usb_control_msg failed, status -19 [ 194.304446][ T5830] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 194.579556][ T1337] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.579671][ T1337] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.074692][ T6548] loop3: detected capacity change from 0 to 32768 [ 197.043996][ T6551] jfs_lookup: iget failed on inum 5 [ 197.091398][ T6551] jfs_lookup: iget failed on inum 5 [ 199.090737][ T6559] loop0: detected capacity change from 0 to 1024 [ 201.446949][ T5836] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 201.512987][ T5836] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 201.516914][ T5836] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 201.560918][ T5836] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 201.561990][ T5836] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 202.140645][ T6566] loop0: detected capacity change from 0 to 256 [ 202.142509][ T6566] exfat: Deprecated parameter 'utf8' [ 202.142532][ T6566] exfat: Deprecated parameter 'utf8' [ 202.241815][ T6566] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xd67973f8, utbl_chksum : 0xe619d30d) [ 203.689952][ T5836] Bluetooth: hci3: command tx timeout [ 205.101806][ T5831] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 205.138516][ T5831] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 205.151768][ T5831] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 205.154012][ T5831] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 205.155127][ T5831] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 205.774735][ T5836] Bluetooth: hci3: command tx timeout [ 207.291445][ T5836] Bluetooth: hci6: command tx timeout [ 207.853126][ T5836] Bluetooth: hci3: command tx timeout [ 208.867774][ T6591] loop3: detected capacity change from 0 to 2048 [ 209.078338][ T6591] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 209.078539][ T6591] ext4 filesystem being mounted at /59/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 209.363595][ T6597] netlink: 4 bytes leftover after parsing attributes in process `syz.0.253'. [ 209.379581][ T5836] Bluetooth: hci6: command tx timeout [ 209.940228][ T5836] Bluetooth: hci3: command tx timeout [ 210.816751][ T6378] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 211.412735][ T5830] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 211.458772][ T5842] Bluetooth: hci6: command tx timeout [ 212.024692][ T5842] Bluetooth: hci2: command 0x0406 tx timeout [ 212.024850][ T5842] Bluetooth: hci4: command 0x0406 tx timeout [ 212.024967][ T5842] Bluetooth: hci1: command 0x0406 tx timeout [ 212.305699][ T6378] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 212.358964][ T6378] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 213.262777][ T6620] loop3: detected capacity change from 0 to 256 [ 213.267488][ T6620] exfat: Deprecated parameter 'utf8' [ 213.439887][ T6620] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x72bddf51, utbl_chksum : 0xe619d30d) [ 213.530130][ T60] Bluetooth: hci6: command tx timeout [ 215.546410][ T6378] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 215.727059][ T6378] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 215.753534][ T6622] netlink: 20 bytes leftover after parsing attributes in process `syz.3.263'. [ 215.753852][ T6622] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'syz0' [ 217.063035][ T6378] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 217.125270][ T6378] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 219.264480][ T6378] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 220.217289][ T6563] chnl_net:caif_netlink_parms(): no params data found [ 220.954635][ T6638] loop3: detected capacity change from 0 to 4096 [ 221.047762][ T6568] chnl_net:caif_netlink_parms(): no params data found [ 221.316989][ T6638] ntfs3(loop3): Failed to load $AttrDef (-22) [ 225.143384][ T5831] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 225.192483][ T5831] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 225.221300][ T5831] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 225.223500][ T5831] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 225.342799][ T5831] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 227.449774][ T5836] Bluetooth: hci5: command tx timeout [ 229.529750][ T5836] Bluetooth: hci5: command tx timeout [ 231.609813][ T5836] Bluetooth: hci5: command tx timeout [ 232.510471][ T822] bridge0: entered promiscuous mode [ 232.829837][ T6662] netlink: 60 bytes leftover after parsing attributes in process `syz.3.272'. [ 232.932145][ T6663] netlink: 60 bytes leftover after parsing attributes in process `syz.3.272'. [ 233.057526][ T5897] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 233.195766][ T6563] bridge0: port 1(bridge_slave_0) entered blocking state [ 233.197563][ T6563] bridge0: port 1(bridge_slave_0) entered disabled state [ 233.197968][ T6563] bridge_slave_0: entered allmulticast mode [ 233.233442][ T6563] bridge_slave_0: entered promiscuous mode [ 233.236488][ T5897] usb 1-1: Using ep0 maxpacket: 8 [ 233.239088][ T5897] usb 1-1: config 179 has an invalid interface number: 65 but max is 0 [ 233.239118][ T5897] usb 1-1: config 179 has no interface number 0 [ 233.239196][ T5897] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 233.239227][ T5897] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 233.239256][ T5897] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 233.239282][ T5897] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 233.239308][ T5897] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 233.239353][ T5897] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 233.239377][ T5897] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 233.437511][ T6665] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 233.689643][ T5836] Bluetooth: hci5: command tx timeout [ 233.697111][ T6563] bridge0: port 2(bridge_slave_1) entered blocking state [ 233.697490][ T6563] bridge0: port 2(bridge_slave_1) entered disabled state [ 233.697891][ T6563] bridge_slave_1: entered allmulticast mode [ 233.818485][ T6563] bridge_slave_1: entered promiscuous mode [ 234.865911][ T6665] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 235.274401][ T6665] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 240.024241][ T6563] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 240.025389][ T6568] bridge0: port 1(bridge_slave_0) entered blocking state [ 240.026565][ T6568] bridge0: port 1(bridge_slave_0) entered disabled state [ 240.060032][ T6568] bridge_slave_0: entered allmulticast mode [ 240.064304][ T6568] bridge_slave_0: entered promiscuous mode [ 240.106440][ T6563] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 240.107106][ T6568] bridge0: port 2(bridge_slave_1) entered blocking state [ 240.107529][ T6568] bridge0: port 2(bridge_slave_1) entered disabled state [ 240.107881][ T6568] bridge_slave_1: entered allmulticast mode [ 240.142341][ T6568] bridge_slave_1: entered promiscuous mode [ 240.321782][ T6563] team0: Port device team_slave_0 added [ 240.351232][ T6568] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 240.378595][ T6563] team0: Port device team_slave_1 added [ 240.392936][ T6568] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 240.560499][ T6563] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 240.560519][ T6563] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 240.560548][ T6563] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 240.625025][ T6568] team0: Port device team_slave_0 added [ 240.652386][ T6568] team0: Port device team_slave_1 added [ 240.672046][ T6563] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 240.672065][ T6563] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 240.672094][ T6563] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 240.870353][ T5897] usb 1-1: USB disconnect, device number 2 [ 240.870438][ C1] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 240.870496][ C1] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 241.008020][ T6568] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 241.008036][ T6568] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 241.008060][ T6568] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 244.622154][ T6693] loop0: detected capacity change from 0 to 1024 [ 244.645323][ T6693] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 244.678671][ T6693] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 246.256088][ T5829] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 247.878409][ T6700] loop0: detected capacity change from 0 to 16 [ 247.988086][ T6700] erofs (device loop0): mounted with root inode @ nid 36. [ 248.015059][ T38] audit: type=1800 audit(1777282315.065:17): pid=6700 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.283" name="file1" dev="loop0" ino=86 res=0 errno=0 [ 254.201080][ T6568] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 254.201100][ T6568] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 254.201128][ T6568] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 255.120278][ T6729] netlink: 8 bytes leftover after parsing attributes in process `syz.0.294'. [ 255.120451][ T6729] netlink: 20 bytes leftover after parsing attributes in process `syz.0.294'. [ 256.044677][ T1337] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.044790][ T1337] ieee802154 phy1 wpan1: encryption failed: -22 [ 259.782049][ T6745] loop0: detected capacity change from 0 to 1024 [ 259.796808][ T6745] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only. [ 260.337552][ T6747] capability: warning: `syz.3.303' uses 32-bit capabilities (legacy support in use) [ 260.774556][ T6751] loop3: detected capacity change from 0 to 256 [ 260.778946][ T6751] exfat: Deprecated parameter 'utf8' [ 260.778971][ T6751] exfat: Deprecated parameter 'utf8' [ 260.779040][ T6751] exfat: Deprecated parameter 'namecase' [ 260.779116][ T6751] exfat: Deprecated parameter 'utf8' [ 260.779144][ T6751] exfat: Deprecated parameter 'namecase' [ 260.852692][ T6751] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d) [ 261.559589][ T5897] usb 1-1: new full-speed USB device number 3 using dummy_hcd [ 261.756715][ T5897] usb 1-1: config 0 has an invalid interface number: 243 but max is 0 [ 261.756748][ T5897] usb 1-1: config 0 has no interface number 0 [ 261.756792][ T5897] usb 1-1: config 0 interface 243 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 261.756817][ T5897] usb 1-1: config 0 interface 243 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0 [ 261.756839][ T5897] usb 1-1: config 0 interface 243 has no altsetting 0 [ 261.756875][ T5897] usb 1-1: New USB device found, idVendor=28bd, idProduct=0905, bcdDevice= 0.00 [ 261.756898][ T5897] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 261.972348][ T5831] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 262.045578][ T5831] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 262.057430][ T5831] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 262.078651][ T5831] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 262.093294][ T5831] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 262.119270][ T5897] usb 1-1: config 0 descriptor?? [ 263.100457][ T6760] netlink: 12 bytes leftover after parsing attributes in process `syz.3.306'. [ 263.352016][ T5897] uclogic 0003:28BD:0905.0002: interface is invalid, ignoring [ 263.553160][ T5897] usb 1-1: USB disconnect, device number 3 [ 264.362300][ T6764] loop0: detected capacity change from 0 to 128 [ 264.889841][ T5836] Bluetooth: hci0: command tx timeout [ 265.299256][ T5831] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 265.366517][ T5831] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 265.368912][ T5831] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 265.395111][ T5831] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 265.433331][ T5831] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 265.998231][ T6764] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 265.998980][ T6764] ext4 filesystem being mounted at /107/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 266.113153][ T6764] EXT4-fs warning (device loop0): ext4_group_extend:1890: can't read last block, resize aborted [ 266.969916][ T5836] Bluetooth: hci0: command tx timeout [ 267.785423][ T5836] Bluetooth: hci7: command tx timeout [ 267.813748][ T5829] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 269.059819][ T5836] Bluetooth: hci0: command tx timeout [ 269.165679][ T6649] chnl_net:caif_netlink_parms(): no params data found [ 269.860253][ T5836] Bluetooth: hci7: command tx timeout [ 271.159539][ T5836] Bluetooth: hci0: command tx timeout [ 271.254959][ T6788] netlink: 8 bytes leftover after parsing attributes in process `syz.0.316'. [ 271.940272][ T5836] Bluetooth: hci7: command tx timeout [ 272.105227][ T6649] bridge0: port 1(bridge_slave_0) entered blocking state [ 272.105715][ T6649] bridge0: port 1(bridge_slave_0) entered disabled state [ 272.106159][ T6649] bridge_slave_0: entered allmulticast mode [ 272.138718][ T6649] bridge_slave_0: entered promiscuous mode [ 272.311018][ T6649] bridge0: port 2(bridge_slave_1) entered blocking state [ 272.312149][ T6649] bridge0: port 2(bridge_slave_1) entered disabled state [ 272.312557][ T6649] bridge_slave_1: entered allmulticast mode [ 272.422258][ T6649] bridge_slave_1: entered promiscuous mode [ 273.082166][ T6649] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 273.128456][ T6649] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 273.658917][ T6649] team0: Port device team_slave_0 added [ 273.715040][ T6649] team0: Port device team_slave_1 added [ 273.715487][ T6771] chnl_net:caif_netlink_parms(): no params data found [ 273.903167][ T6649] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 273.903186][ T6649] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 273.903214][ T6649] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 273.905365][ T6757] chnl_net:caif_netlink_parms(): no params data found [ 273.977570][ T6649] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 273.977590][ T6649] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 273.977618][ T6649] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 274.405695][ T6649] hsr_slave_0: entered promiscuous mode [ 274.428066][ T6649] hsr_slave_1: entered promiscuous mode [ 274.437070][ T6649] debugfs: 'hsr0' already exists in 'hsr' [ 274.437104][ T6649] Cannot create hsr debugfs directory [ 274.438565][ T6771] bridge0: port 1(bridge_slave_0) entered blocking state [ 274.439041][ T6771] bridge0: port 1(bridge_slave_0) entered disabled state [ 274.455681][ T6771] bridge_slave_0: entered allmulticast mode [ 274.476306][ T6771] bridge_slave_0: entered promiscuous mode [ 274.520749][ T6771] bridge0: port 2(bridge_slave_1) entered blocking state [ 274.521124][ T6771] bridge0: port 2(bridge_slave_1) entered disabled state [ 274.522854][ T6771] bridge_slave_1: entered allmulticast mode [ 274.527161][ T6771] bridge_slave_1: entered promiscuous mode [ 274.616396][ T6757] bridge0: port 1(bridge_slave_0) entered blocking state [ 274.617205][ T6757] bridge0: port 1(bridge_slave_0) entered disabled state [ 274.618044][ T6757] bridge_slave_0: entered allmulticast mode [ 274.643748][ T6757] bridge_slave_0: entered promiscuous mode [ 274.725375][ T6757] bridge0: port 2(bridge_slave_1) entered blocking state [ 274.725789][ T6757] bridge0: port 2(bridge_slave_1) entered disabled state [ 274.728368][ T6757] bridge_slave_1: entered allmulticast mode [ 274.754028][ T6757] bridge_slave_1: entered promiscuous mode [ 274.803094][ T6771] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 274.889150][ T6771] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 275.006391][ T6757] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 275.074366][ T6757] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 275.108040][ T6771] team0: Port device team_slave_0 added [ 275.166646][ T6771] team0: Port device team_slave_1 added [ 275.252815][ T6757] team0: Port device team_slave_0 added [ 275.312070][ T6757] team0: Port device team_slave_1 added [ 275.349936][ T6771] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 275.349966][ T6771] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 275.349994][ T6771] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 275.449291][ T6771] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 275.449311][ T6771] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 275.449340][ T6771] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 275.565962][ T6757] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 275.565982][ T6757] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 275.566010][ T6757] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 275.639259][ T6757] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 275.639280][ T6757] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 275.639310][ T6757] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 275.988522][ T6771] hsr_slave_0: entered promiscuous mode [ 275.997711][ T6771] hsr_slave_1: entered promiscuous mode [ 276.006291][ T6771] debugfs: 'hsr0' already exists in 'hsr' [ 276.006322][ T6771] Cannot create hsr debugfs directory [ 277.123189][ T5836] Bluetooth: hci7: command tx timeout [ 284.927773][ T6757] hsr_slave_0: entered promiscuous mode [ 284.937091][ T6757] hsr_slave_1: entered promiscuous mode [ 284.945900][ T6757] debugfs: 'hsr0' already exists in 'hsr' [ 284.945932][ T6757] Cannot create hsr debugfs directory [ 285.236823][ T5836] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 285.388176][ T5836] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 285.399295][ T5836] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 285.423624][ T5836] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 285.447312][ T5836] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 287.529901][ T5831] Bluetooth: hci3: command tx timeout [ 289.609881][ T5831] Bluetooth: hci3: command tx timeout [ 291.690000][ T5831] Bluetooth: hci3: command tx timeout [ 293.772395][ T5836] Bluetooth: hci3: command tx timeout [ 293.817947][ T5836] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 293.905799][ T5836] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 293.938887][ T5836] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 294.039315][ T5836] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 294.058692][ T5836] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 295.354007][ T5831] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 295.436090][ T5831] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 295.481800][ T5831] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 295.484310][ T5831] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 295.485318][ T5831] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 296.169993][ T5836] Bluetooth: hci1: command tx timeout [ 297.530013][ T5836] Bluetooth: hci6: command tx timeout [ 298.249945][ T5831] Bluetooth: hci1: command tx timeout [ 299.609851][ T5836] Bluetooth: hci6: command tx timeout [ 300.329561][ T5836] Bluetooth: hci1: command tx timeout [ 301.689967][ T5836] Bluetooth: hci6: command tx timeout [ 302.410028][ T5836] Bluetooth: hci1: command tx timeout [ 303.773241][ T5836] Bluetooth: hci6: command tx timeout [ 317.465665][ T1337] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.465783][ T1337] ieee802154 phy1 wpan1: encryption failed: -22 [ 321.904281][ T5831] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 321.987716][ T5831] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 322.018652][ T5831] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 322.062334][ T5831] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 322.063224][ T5831] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2 [ 324.089909][ T5831] Bluetooth: hci8: command tx timeout [ 325.346060][ T5836] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1 [ 325.397581][ T5836] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9 [ 325.411816][ T5836] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9 [ 325.417460][ T5836] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4 [ 325.418815][ T5836] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2 [ 326.169801][ T5831] Bluetooth: hci8: command tx timeout [ 327.614915][ T5831] Bluetooth: hci9: command tx timeout [ 328.249732][ T5831] Bluetooth: hci8: command tx timeout [ 329.689484][ T5831] Bluetooth: hci9: command tx timeout [ 330.329809][ T5831] Bluetooth: hci8: command tx timeout [ 331.769644][ T5831] Bluetooth: hci9: command tx timeout [ 333.850362][ T5831] Bluetooth: hci9: command tx timeout [ 345.352150][ T5836] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 345.426933][ T5836] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 345.468467][ T5836] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 345.506845][ T5836] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 345.511214][ T5836] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 347.609810][ T5831] Bluetooth: hci4: command tx timeout [ 349.690130][ T5831] Bluetooth: hci4: command tx timeout [ 350.340983][ T5831] Bluetooth: hci5: command 0x0406 tx timeout [ 351.769713][ T5831] Bluetooth: hci4: command tx timeout [ 353.849512][ T5831] Bluetooth: hci4: command tx timeout [ 354.515039][ T5839] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 354.586103][ T5839] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 354.588458][ T5839] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 354.619229][ T5839] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 354.627887][ T5839] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 358.641933][ T5839] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1 [ 358.734679][ T5839] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9 [ 358.769490][ T5839] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9 [ 358.776031][ T5839] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4 [ 358.778062][ T5839] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2 [ 360.030854][ T5831] Bluetooth: hci2: command tx timeout [ 361.188645][ T5836] Bluetooth: hci10: command tx timeout [ 362.089748][ T5836] Bluetooth: hci2: command tx timeout [ 363.209504][ T5836] Bluetooth: hci10: command tx timeout [ 364.169726][ T5836] Bluetooth: hci2: command tx timeout [ 365.290277][ T5836] Bluetooth: hci10: command tx timeout [ 366.252288][ T5836] Bluetooth: hci2: command tx timeout [ 367.369852][ T5831] Bluetooth: hci10: command tx timeout [ 376.094104][ T1405] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 378.930634][ T1337] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.930752][ T1337] ieee802154 phy1 wpan1: encryption failed: -22 [ 382.376376][ T5831] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 382.454515][ T5831] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 382.482821][ T5831] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 382.486029][ T5831] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 382.531907][ T5831] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 384.649651][ T5836] Bluetooth: hci0: command tx timeout [ 385.919269][ T5831] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 385.956814][ T5831] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 385.958323][ T5831] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 385.960253][ T5831] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 385.962566][ T5831] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 386.729938][ T5831] Bluetooth: hci0: command tx timeout [ 388.809750][ T5836] Bluetooth: hci0: command tx timeout [ 390.329725][ T5836] Bluetooth: hci1: command tx timeout [ 390.409996][ T39] INFO: task syz-executor:6295 blocked for more than 143 seconds. [ 390.410045][ T39] Not tainted syzkaller #0 [ 390.410057][ T39] Blocked by coredump. [ 390.410064][ T39] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 390.410074][ T39] task:syz-executor state:D stack:21384 pid:6295 tgid:6295 ppid:1 task_flags:0x40054c flags:0x00080003 [ 390.410141][ T39] Call Trace: [ 390.410149][ T39] [ 390.410164][ T39] __schedule+0x169e/0x54f0 [ 390.410237][ T39] ? __pfx___schedule+0x10/0x10 [ 390.410283][ T39] rt_mutex_schedule+0x76/0xf0 [ 390.410305][ T39] rt_mutex_slowlock_block+0x508/0x680 [ 390.410353][ T39] rt_mutex_slowlock+0x2dc/0x780 [ 390.410383][ T39] ? rt_mutex_slowlock+0x1fd/0x780 [ 390.410410][ T39] ? __pfx_rt_mutex_slowlock+0x10/0x10 [ 390.410450][ T39] ? rcu_barrier+0x4c/0x580 [ 390.410478][ T39] ? rcu_barrier+0x4c/0x580 [ 390.410506][ T39] ? rcu_barrier+0x4c/0x580 [ 390.410525][ T39] mutex_lock_nested+0x168/0x1d0 [ 390.410550][ T39] ? __pfx_rt_mutex_slowunlock+0x10/0x10 [ 390.410578][ T39] ? __pfx_tun_chr_close+0x10/0x10 [ 390.410607][ T39] rcu_barrier+0x4c/0x580 [ 390.410632][ T39] ? __pfx_tun_chr_close+0x10/0x10 [ 390.410661][ T39] ? __pfx_tun_chr_close+0x10/0x10 [ 390.410690][ T39] netdev_run_todo+0x333/0x1130 [ 390.410719][ T39] ? rtnl_is_locked+0x9/0x20 [ 390.410742][ T39] ? netif_state_change+0x241/0x3a0 [ 390.410772][ T39] ? __pfx_netdev_run_todo+0x10/0x10 [ 390.410799][ T39] ? kasan_quarantine_put+0xbb/0x1f0 [ 390.410830][ T39] ? lockdep_hardirqs_on+0x7a/0x110 [ 390.410871][ T39] ? netdev_state_change+0x1ca/0x220 [ 390.410906][ T39] ? __pfx_tun_chr_close+0x10/0x10 [ 390.410935][ T39] tun_chr_close+0x13f/0x1c0 [ 390.410964][ T39] __fput+0x461/0xa70 [ 390.411004][ T39] task_work_run+0x1d9/0x270 [ 390.411048][ T39] ? __pfx_task_work_run+0x10/0x10 [ 390.411081][ T39] ? do_exit+0x70a/0x22c0 [ 390.411109][ T39] ? kmem_cache_free+0x187/0x6c0 [ 390.411141][ T39] ? put_net+0x191/0x260 [ 390.411163][ T39] ? do_exit+0x70a/0x22c0 [ 390.411197][ T39] do_exit+0x70f/0x22c0 [ 390.411230][ T39] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 390.411266][ T39] ? __pfx_do_exit+0x10/0x10 [ 390.412872][ T39] ? rt_mutex_slowunlock+0x4a7/0x8b0 [ 390.412904][ T39] ? reacquire_held_locks+0x104/0x190 [ 390.412938][ T39] ? rt_spin_lock+0x1e0/0x400 [ 390.412978][ T39] do_group_exit+0x21b/0x2d0 [ 390.413018][ T39] ? rt_spin_unlock+0x160/0x200 [ 390.413046][ T39] get_signal+0x1284/0x1330 [ 390.413090][ T39] arch_do_signal_or_restart+0xbc/0x830 [ 390.413131][ T39] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 390.413203][ T39] ? ksys_write+0x202/0x270 [ 390.413245][ T39] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 390.413271][ T39] exit_to_user_mode_loop+0x86/0x480 [ 390.413298][ T39] ? rcu_is_watching+0x15/0xb0 [ 390.413332][ T39] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 390.413355][ T39] do_syscall_64+0x33e/0xf80 [ 390.413386][ T39] ? trace_irq_disable+0x3b/0x140 [ 390.413412][ T39] ? clear_bhb_loop+0x40/0x90 [ 390.413441][ T39] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 390.413465][ T39] RIP: 0033:0x7fdf9ab3d60e [ 390.413486][ T39] RSP: 002b:00007ffcf6ec0278 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 390.413510][ T39] RAX: 0000000000000003 RBX: 0000555580140500 RCX: 00007fdf9ab3d60e [ 390.413526][ T39] RDX: 0000000000000003 RSI: 00007ffcf6ec0300 RDI: 0000000000000005 [ 390.413540][ T39] RBP: 00007fdf9ac13610 R08: 0000000000000000 R09: 0000000000000000 [ 390.413554][ T39] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 390.413568][ T39] R13: 00007ffcf6ec0300 R14: 00007fdf9b924620 R15: 0000000000000003 [ 390.413603][ T39] [ 390.413647][ T39] [ 390.413647][ T39] Showing all locks held in the system: [ 390.413657][ T39] 5 locks held by ktimers/0/16: [ 390.413670][ T39] #0: ffffffff8de5f340 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0x3c/0x420 [ 390.413725][ T39] #1: ffffffff8dfc81c0 (rcu_read_lock){....}-{1:3}, at: __local_bh_disable_ip+0x3c/0x420 [ 390.413775][ T39] #2: ffffffff8dfc81c0 (rcu_read_lock){....}-{1:3}, at: process_backlog+0x271/0xc60 [ 390.413833][ T39] #3: ffffffff8dfc81c0 (rcu_read_lock){....}-{1:3}, at: NF_HOOK+0x9e/0x3c0[ 390.413833][ T39] #3: ffffffff8dfc81c0 (rcu_read_lock){....}-{1:3}, at: NF_HOOK+0x9e/0x3c0 [ 390.413889][ T39] #4: ffffffff8dfc81c0 (rcu_read_lock){....}-{1:3}, at: unwind_next_frame+0xa6/0x2550 [ 390.413946][ T39] 1 lock held by khungtaskd/39: [ 390.413957][ T39] #0: ffffffff8dfc81c0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180 [ 390.414025][ T39] 3 locks held by kworker/u8:4/67: [ 390.414037][ T39] #0: ffff88813fe7c138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x890/0x1710 [ 390.414089][ T39] #1: ffffc9000152fc40 ((linkwatch_work).work){+.+.}-{0:0}, at: process_one_work+0x8b7/0x1710 [ 390.414140][ T39] #2: ffffffff8f383df8 (rtnl_mutex){+.+.}-{4:4}, at: linkwatch_event+0xe/0x60 [ 390.414193][ T39] 5 locks held by kworker/u8:5/107: [ 390.414204][ T39] #0: ffff8880333c0938 ((wq_completion)bat_events){+.+.}-{0:0}, at: process_one_work+0x890/0x1710 [ 390.414252][ T39] #1: ffffc90002f57c40 ((work_completion)(&(&bat_priv->dat.work)->work)){+.+.}-{0:0}, at: process_one_work+0x8b7/0x1710 [ 390.414302][ T39] #2: ffffffff8de5f340 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0x3c/0x420 [ 390.414353][ T39] #3: ffffffff8dfc81c0 (rcu_read_lock){....}-{1:3}, at: __local_bh_disable_ip+0x3c/0x420 [ 390.414404][ T39] #4: ffff88805e5e5158 (&hash->list_locks[i]){+...}-{3:3}, at: __batadv_dat_purge+0x131/0x400 [ 390.414468][ T39] 6 locks held by kworker/u8:11/1405: [ 390.414480][ T39] #0: ffff88801b686138 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x890/0x1710 [ 390.414528][ T39] #1: ffffc900068ffc40 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x8b7/0x1710 [ 390.414576][ T39] #2: ffffffff8f374940 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xf4/0x800 [ 390.414634][ T39] #3: ffff888060d00160 (&dev->mutex){....}-{4:4}, at: devlink_pernet_pre_exit+0x129/0x420 [ 390.414690][ T39] #4: ffff888020faa310 (&devlink->lock_key#3){+.+.}-{4:4}, at: devlink_pernet_pre_exit+0x142/0x420 [ 390.414750][ T39] #5: ffffffff8dfce3b0 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x580 [ 390.414800][ T39] 3 locks held by kworker/u8:12/1427: [ 390.414811][ T39] #0: ffff8880327d8138 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x890/0x1710 [ 390.414860][ T39] #1: ffffc900069afc40 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_one_work+0x8b7/0x1710 [ 390.414910][ T39] #2: ffffffff8f383df8 (rtnl_mutex){+.+.}-{4:4}, at: addrconf_verify_work+0x19/0x30 [ 390.414979][ T39] 2 locks held by getty/5584: [ 390.414991][ T39] #0: ffff888028f380a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 390.415057][ T39] #1: ffffc90003cbe2e0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x462/0x13a0 [ 390.415109][ T39] 1 lock held by syz-executor/5828: [ 390.415120][ T39] #0: ffffffff8dfce3b0 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x580 [ 390.415174][ T39] 3 locks held by kworker/1:7/6005: [ 390.415186][ T39] #0: ffff88813fe3b938 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x890/0x1710 [ 390.415237][ T39] #1: ffffc90005d9fc40 (deferred_process_work){+.+.}-{0:0}, at: process_one_work+0x8b7/0x1710 [ 390.415288][ T39] #2: ffffffff8f383df8 (rtnl_mutex){+.+.}-{4:4}, at: switchdev_deferred_process_work+0xe/0x20 [ 390.415351][ T39] 1 lock held by syz-executor/6295: [ 390.415362][ T39] #0: ffffffff8dfce3b0 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x580 [ 390.415410][ T39] 1 lock held by syz.4.156/6320: [ 390.415421][ T39] #0: ffffffff8dfce3b0 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x580 [ 390.415468][ T39] 1 lock held by syz-executor/6378: [ 390.415479][ T39] #0: ffffffff8dfce3b0 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x580 [ 390.415528][ T39] 1 lock held by syz-executor/6563: [ 390.415539][ T39] #0: ffffffff8dfce3b0 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x580 [ 390.415588][ T39] 1 lock held by syz-executor/6568: [ 390.415600][ T39] #0: ffffffff8dfce3b0 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x580 [ 390.415650][ T39] 7 locks held by syz-executor/6649: [ 390.415663][ T39] #0: ffff8880380e8480 (sb_writers#7){.+.+}-{0:0}, at: vfs_write+0x22d/0xba0 [ 390.415724][ T39] #1: ffff88804fc74478 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x1df/0x540 [ 390.415784][ T39] #2: ffff888027df4e18 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x232/0x540 [ 390.415851][ T39] #3: ffffffff8ebe7e58 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd7/0x370 [ 390.415914][ T39] #4: ffff888026324160 (&dev->mutex){....}-{4:4}, at: device_release_driver_internal+0xb6/0x870 [ 390.415975][ T39] #5: ffff88806a604310 (&devlink->lock_key#7){+.+.}-{4:4}, at: nsim_drv_remove+0x50/0x160 [ 390.416037][ T39] #6: ffffffff8dfce3b0 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x580 [ 390.416084][ T39] 1 lock held by syz-executor/6757: [ 390.416097][ T39] #0: ffffffff8f383df8 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x41/0x1c0 [ 390.416153][ T39] 1 lock held by syz-executor/6771: [ 390.416165][ T39] #0: ffffffff8f383df8 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x41/0x1c0 [ 390.416223][ T39] 1 lock held by syz.3.324/6824: [ 390.416235][ T39] #0: ffffffff8dfce3b0 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x580 [ 390.416286][ T39] 1 lock held by syz.0.331/6838: [ 390.416298][ T39] #0: ffffffff8f383df8 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x41/0x1c0 [ 390.416353][ T39] 1 lock held by syz-executor/6851: [ 390.416364][ T39] #0: ffffffff8f383df8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x883/0x1bb0 [ 390.416421][ T39] 1 lock held by syz-executor/6860: [ 390.416433][ T39] #0: ffffffff8f383df8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x883/0x1bb0 [ 390.416492][ T39] 1 lock held by syz-executor/6865: [ 390.416504][ T39] #0: ffffffff8f383df8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x883/0x1bb0 [ 390.416561][ T39] 1 lock held by syz-executor/6870: [ 390.416573][ T39] #0: ffffffff8f383df8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x883/0x1bb0 [ 390.416632][ T39] 1 lock held by syz-executor/6876: [ 390.416643][ T39] #0: ffffffff8f383df8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x404/0x1ad0 [ 390.416703][ T39] 1 lock held by syz-executor/6880: [ 390.416714][ T39] #0: ffffffff8f383df8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x404/0x1ad0 [ 390.416774][ T39] 1 lock held by syz-executor/6891: [ 390.416786][ T39] #0: ffffffff8f383df8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x404/0x1ad0 [ 390.416848][ T39] 1 lock held by syz-executor/6897: [ 390.416860][ T39] #0: ffffffff8f383df8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x404/0x1ad0 [ 390.416921][ T39] [ 390.416926][ T39] ============================================= [ 390.416926][ T39] [ 390.416935][ T39] NMI backtrace for cpu 1 [ 390.416949][ T39] CPU: 1 UID: 0 PID: 39 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)} [ 390.416973][ T39] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 390.416984][ T39] Call Trace: [ 390.416992][ T39] [ 390.417000][ T39] dump_stack_lvl+0xe8/0x150 [ 390.417034][ T39] nmi_cpu_backtrace+0x274/0x2d0 [ 390.417061][ T39] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 390.417087][ T39] nmi_trigger_cpumask_backtrace+0x17a/0x300 [ 390.417116][ T39] sys_info+0x135/0x170 [ 390.417137][ T39] watchdog+0xfd3/0x1030 [ 390.417170][ T39] ? watchdog+0x1c9/0x1030 [ 390.417201][ T39] kthread+0x388/0x470 [ 390.417230][ T39] ? __pfx_watchdog+0x10/0x10 [ 390.417251][ T39] ? __pfx_kthread+0x10/0x10 [ 390.417280][ T39] ret_from_fork+0x514/0xb70 [ 390.417305][ T39] ? __pfx_ret_from_fork+0x10/0x10 [ 390.417328][ T39] ? __switch_to+0xc79/0x1410 [ 390.417363][ T39] ? __pfx_kthread+0x10/0x10 [ 390.417393][ T39] ret_from_fork_asm+0x1a/0x30 [ 390.417436][ T39] [ 390.417444][ T39] Sending NMI from CPU 1 to CPUs 0: [ 390.417475][ C0] NMI backtrace for cpu 0 [ 390.417492][ C0] CPU: 0 UID: 0 PID: 16 Comm: ktimers/0 Not tainted syzkaller #0 PREEMPT_{RT,(full)} [ 390.417511][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 390.417521][ C0] RIP: 0010:check_preemption_disabled+0x22/0xe0 [ 390.417550][ C0] Code: 90 90 90 90 90 90 90 90 55 41 57 41 56 53 65 8b 05 a7 0f 3f 07 65 8b 0d 9c 0f 3f 07 f7 c1 ff ff ff 7f 74 0c 5b 41 5e 41 5f 5d cc cc cc cc cc 9c 59 f7 c1 00 02 00 00 74 ea 65 4c 8b 3d 4e 0f [ 390.417564][ C0] RSP: 0000:ffffc900001565f0 EFLAGS: 00000046 [ 390.417579][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000046 [ 390.417590][ C0] RDX: 0000000000000000 RSI: ffffffff8d66d941 RDI: ffffffff8ba85ee0 [ 390.417602][ C0] RBP: ffffffff81770226 R08: 0000000000000000 R09: 0000000000000000 [ 390.417613][ C0] R10: ffffc900001567b8 R11: ffffffff81afd0d0 R12: 0000000000000002 [ 390.417624][ C0] R13: ffffffff8dfc81c0 R14: 0000000000000000 R15: 0000000000000246 [ 390.417635][ C0] FS: 0000000000000000(0000) GS:ffff888125eb0000(0000) knlGS:0000000000000000 [ 390.417648][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 390.417660][ C0] CR2: 00007f3b0b932830 CR3: 0000000032160000 CR4: 00000000003526f0 [ 390.417677][ C0] Call Trace: [ 390.417683][ C0] [ 390.417689][ C0] lock_acquire+0xcd/0x350 [ 390.417715][ C0] ? unwind_next_frame+0xa6/0x2550 [ 390.417735][ C0] ? nft_do_chain_inet+0x360/0x4b0 [ 390.417755][ C0] ? unwind_next_frame+0xa6/0x2550 [ 390.417781][ C0] unwind_next_frame+0xc3/0x2550 [ 390.417800][ C0] ? unwind_next_frame+0xa6/0x2550 [ 390.417823][ C0] ? unwind_next_frame+0xa6/0x2550 [ 390.417843][ C0] ? nft_do_chain+0x467/0x19f0 [ 390.417861][ C0] ? nft_do_chain_inet+0x360/0x4b0 [ 390.417881][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 390.417901][ C0] arch_stack_walk+0x11b/0x150 [ 390.417924][ C0] ? nft_do_chain_inet+0x360/0x4b0 [ 390.417944][ C0] stack_trace_save+0xa9/0x100 [ 390.417963][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 390.417986][ C0] kasan_save_stack+0x3e/0x60 [ 390.418007][ C0] ? kasan_save_stack+0x3e/0x60 [ 390.418027][ C0] ? kasan_record_aux_stack+0xbd/0xd0 [ 390.418043][ C0] ? call_rcu+0xee/0x890 [ 390.418065][ C0] ? kmem_cache_free+0x526/0x6c0 [ 390.418088][ C0] ? nf_conntrack_free+0x2f7/0x380 [ 390.418106][ C0] ? nf_conntrack_in+0x9b4/0x15c0 [ 390.418124][ C0] ? nf_hook_slow+0xc5/0x220 [ 390.418139][ C0] ? nf_hook+0x22a/0x3a0 [ 390.418162][ C0] ? __ip_local_out+0x558/0x6a0 [ 390.418184][ C0] ? ip_local_out+0x2a/0x190 [ 390.418206][ C0] ? synproxy_send_client_synack+0x8c1/0xe30 [ 390.418223][ C0] ? nft_synproxy_eval_v4+0x34a/0x4e0 [ 390.418240][ C0] ? nft_synproxy_do_eval+0x305/0x580 [ 390.418256][ C0] ? nft_do_chain+0x467/0x19f0 [ 390.418275][ C0] ? nft_do_chain_inet+0x360/0x4b0 [ 390.418311][ C0] ? nf_conntrack_free+0x2f7/0x380 [ 390.418328][ C0] kasan_record_aux_stack+0xbd/0xd0 [ 390.418345][ C0] ? __pfx_slab_free_after_rcu_debug+0x10/0x10 [ 390.418362][ C0] call_rcu+0xee/0x890 [ 390.418389][ C0] ? nf_conntrack_free+0x2f7/0x380 [ 390.418407][ C0] kmem_cache_free+0x526/0x6c0 [ 390.418429][ C0] ? nf_conntrack_free+0x2e8/0x380 [ 390.418446][ C0] ? net_rx_action+0x696/0xe00 [ 390.418469][ C0] nf_conntrack_free+0x2f7/0x380 [ 390.418489][ C0] nf_conntrack_in+0x9b4/0x15c0 [ 390.418518][ C0] ? __pfx_nf_conntrack_in+0x10/0x10 [ 390.418537][ C0] ? xfrm_lookup_with_ifid+0x187a/0x1bf0 [ 390.418560][ C0] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 390.418580][ C0] ? __pfx_xfrm_lookup_with_ifid+0x10/0x10 [ 390.418606][ C0] ? nf_hook+0xa1/0x3a0 [ 390.418629][ C0] ? nf_hook+0xa1/0x3a0 [ 390.418651][ C0] ? ipv4_conntrack_defrag+0x2aa/0x5c0 [ 390.418667][ C0] ? ipv4_conntrack_local+0x126/0x210 [ 390.418684][ C0] ? __pfx_ipv4_conntrack_local+0x10/0x10 [ 390.418704][ C0] nf_hook_slow+0xc5/0x220 [ 390.418721][ C0] ? __pfx_dst_output+0x10/0x10 [ 390.418745][ C0] nf_hook+0x22a/0x3a0 [ 390.418776][ C0] ? nf_hook+0xa1/0x3a0 [ 390.418799][ C0] ? __pfx_nf_hook+0x10/0x10 [ 390.418821][ C0] ? __ip_local_out+0x152/0x6a0 [ 390.418845][ C0] ? __pfx_dst_output+0x10/0x10 [ 390.418870][ C0] ? __ip_local_out+0x152/0x6a0 [ 390.418895][ C0] __ip_local_out+0x558/0x6a0 [ 390.418917][ C0] ? __pfx_dst_output+0x10/0x10 [ 390.418942][ C0] ip_local_out+0x2a/0x190 [ 390.418967][ C0] synproxy_send_client_synack+0x8c1/0xe30 [ 390.418992][ C0] ? __pfx_synproxy_send_client_synack+0x10/0x10 [ 390.419009][ C0] ? nft_synproxy_eval_v4+0x358/0x4e0 [ 390.419027][ C0] ? synproxy_pernet+0x45/0x270 [ 390.419048][ C0] nft_synproxy_eval_v4+0x34a/0x4e0 [ 390.419069][ C0] ? __pfx_nft_synproxy_eval_v4+0x10/0x10 [ 390.419088][ C0] ? nf_ip_checksum+0x13c/0x510 [ 390.419110][ C0] nft_synproxy_do_eval+0x305/0x580 [ 390.419127][ C0] ? kasan_save_stack+0x4d/0x60 [ 390.419147][ C0] ? kasan_save_stack+0x3e/0x60 [ 390.419169][ C0] ? __pfx_nft_synproxy_do_eval+0x10/0x10 [ 390.419186][ C0] ? __napi_poll+0xab/0x550 [ 390.419204][ C0] ? run_ktimerd+0x69/0x100 [ 390.419223][ C0] ? smpboot_thread_fn+0x541/0xa50 [ 390.419249][ C0] nft_do_chain+0x467/0x19f0 [ 390.419267][ C0] ? __lock_acquire+0x6b5/0x2cf0 [ 390.419294][ C0] ? __pfx_nft_do_chain+0x10/0x10 [ 390.419317][ C0] ? nf_ct_pernet+0x45/0x270 [ 390.419353][ C0] ? __lock_acquire+0x6b5/0x2cf0 [ 390.419378][ C0] nft_do_chain_inet+0x360/0x4b0 [ 390.419399][ C0] ? __pfx_nft_do_chain_inet+0x10/0x10 [ 390.419422][ C0] ? NF_HOOK+0x9e/0x3c0 [ 390.419443][ C0] ? NF_HOOK+0x9e/0x3c0 [ 390.419463][ C0] ? __pfx_nft_do_chain_inet+0x10/0x10 [ 390.419482][ C0] nf_hook_slow+0xc5/0x220 [ 390.419501][ C0] NF_HOOK+0x21f/0x3c0 [ 390.419522][ C0] ? __pfx_ip_local_deliver_finish+0x10/0x10 [ 390.419543][ C0] ? NF_HOOK+0x9e/0x3c0 [ 390.419563][ C0] ? __pfx_NF_HOOK+0x10/0x10 [ 390.419582][ C0] ? ip_rcv_finish_core+0xda3/0x1c00 [ 390.419604][ C0] ? __pfx_ip_local_deliver_finish+0x10/0x10 [ 390.419628][ C0] ? ip_local_deliver+0x12a/0x1b0 [ 390.419651][ C0] NF_HOOK+0x336/0x3c0 [ 390.419669][ C0] ? _raw_spin_unlock_irqrestore+0x4c/0x80 [ 390.419693][ C0] ? __pfx_ip_rcv_finish+0x10/0x10 [ 390.419713][ C0] ? NF_HOOK+0x9e/0x3c0 [ 390.419733][ C0] ? __pfx_NF_HOOK+0x10/0x10 [ 390.419754][ C0] ? __pfx_ip_rcv_finish+0x10/0x10 [ 390.419784][ C0] ? __pfx_ip_rcv+0x10/0x10 [ 390.419804][ C0] ? process_backlog+0x271/0xc60 [ 390.419824][ C0] ? __pfx_ip_rcv+0x10/0x10 [ 390.419844][ C0] process_backlog+0x569/0xc60 [ 390.419874][ C0] __napi_poll+0xab/0x550 [ 390.419894][ C0] net_rx_action+0x696/0xe00 [ 390.419915][ C0] ? _raw_spin_unlock_irq+0x2e/0x50 [ 390.419943][ C0] ? __pfx_net_rx_action+0x10/0x10 [ 390.419978][ C0] handle_softirqs+0x1de/0x6d0 [ 390.420000][ C0] ? smpboot_thread_fn+0x4d/0xa50 [ 390.420019][ C0] run_ktimerd+0x69/0x100 [ 390.420038][ C0] smpboot_thread_fn+0x541/0xa50 [ 390.420057][ C0] ? smpboot_thread_fn+0x4d/0xa50 [ 390.420080][ C0] kthread+0x388/0x470 [ 390.420101][ C0] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 390.420118][ C0] ? __pfx_kthread+0x10/0x10 [ 390.420140][ C0] ret_from_fork+0x514/0xb70 [ 390.420159][ C0] ? __pfx_ret_from_fork+0x10/0x10 [ 390.420176][ C0] ? __switch_to+0xc79/0x1410 [ 390.420200][ C0] ? __pfx_kthread+0x10/0x10 [ 390.420221][ C0] ret_from_fork_asm+0x1a/0x30 [ 390.420248][ C0] [ 390.879682][ T39] Kernel panic - not syncing: hung_task: blocked tasks [ 390.879707][ T39] CPU: 1 UID: 0 PID: 39 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)} [ 390.879841][ T39] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 390.879855][ T39] Call Trace: [ 390.879863][ T39] [ 390.879873][ T39] vpanic+0x56c/0xa60 [ 390.879906][ T39] ? __pfx___schedule+0x10/0x10 [ 390.879938][ T39] ? __pfx_vpanic+0x10/0x10 [ 390.879974][ T39] panic+0xc5/0xd0 [ 390.879997][ T39] ? __pfx_panic+0x10/0x10 [ 390.880024][ T39] ? preempt_schedule_thunk+0x16/0x30 [ 390.880063][ T39] ? nmi_trigger_cpumask_backtrace+0x2bb/0x300 [ 390.880093][ T39] watchdog+0x102c/0x1030 [ 390.880127][ T39] ? watchdog+0x1c9/0x1030 [ 390.880157][ T39] kthread+0x388/0x470 [ 390.880188][ T39] ? __pfx_watchdog+0x10/0x10 [ 390.880211][ T39] ? __pfx_kthread+0x10/0x10 [ 390.880242][ T39] ret_from_fork+0x514/0xb70 [ 390.880269][ T39] ? __pfx_ret_from_fork+0x10/0x10 [ 390.880294][ T39] ? __switch_to+0xc79/0x1410 [ 390.880330][ T39] ? __pfx_kthread+0x10/0x10 [ 390.880361][ T39] ret_from_fork_asm+0x1a/0x30 [ 390.880405][ T39] [ 390.880769][ T39] Kernel Offset: disabled