last executing test programs: 7.648505019s ago: executing program 4 (id=382): socket$key(0xf, 0x3, 0x2) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$AUTOFS_IOC_EXPIRE_MULTI(0xffffffffffffffff, 0x40049366, 0x0) connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @empty}, 0x10) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001a80)=@newlink={0x34, 0x10, 0x439, 0x70bd2a, 0x3, {0x0, 0x0, 0x0, r2, 0x0, 0x110d1}, [@IFLA_VFINFO_LIST={0x14, 0x16, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@IFLA_VF_LINK_STATE={0xc, 0x5, {0xfffffffc, 0x2}}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x8041}, 0x40000880) syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x3, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x0, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @loopback, @loopback}, "00186371ae9b1c03"}}}}}, 0x0) 6.344036874s ago: executing program 1 (id=388): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f00000013c0)=0x80000000001, 0x4) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000001c0)="a6e2976b5c4383036d32dadd2e144d8645ca8d1b230e105614396838da83c754887e7bea2f35d4ea667817d90d532af065f2e398dd9081ea16f8b371a202a6f9e505bbc964a0d3880bf0104a0a0a2f0d311efee1637e85a0125b38f961918f99bf9c2c146e42327f178dc2b3d4936e7f7f0a79f74ba464d83ab41742d1186776dc1779b5c50ac82d0fa8f9e42074b5b6079207fb21e718080907964669be539791e3e98687ee059853", 0xfffffffffffffcc1, 0x840, 0x0, 0x0) sendto$inet6(r0, &(0x7f00000002c0)="e8", 0xfffffffffffffd79, 0x2000c850, 0x0, 0x4d) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = dup3(r0, r1, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000440), r2) 5.824134356s ago: executing program 1 (id=391): mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x9) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@uuid_off}]}) r0 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0) mknodat$loop(r0, &(0x7f0000000000)='./file1\x00', 0xc000, 0x0) chdir(&(0x7f00000003c0)='./bus\x00') linkat(r0, &(0x7f0000000100)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0x0) unlink(&(0x7f0000000280)='./file1\x00') 5.422577333s ago: executing program 4 (id=393): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000100)=[@window={0x3, 0x6}, @mss, @timestamp, @window={0x3, 0x664, 0xfff3}, @mss={0x2, 0x4}], 0x58) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0xc7) sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0) recvfrom$inet(r0, 0x0, 0x0, 0x700, 0x0, 0x0) bind$inet(r0, 0x0, 0x0) 5.283146572s ago: executing program 1 (id=394): r0 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) mkdirat(r0, &(0x7f0000000080)='./file1\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) mkdir(&(0x7f0000000240)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]}) chdir(&(0x7f0000000140)='./bus\x00') io_setup(0x1, &(0x7f00000004c0)=0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101042, 0x0) io_submit(r1, 0x1, &(0x7f00000002c0)=[&(0x7f0000000280)={0xffffff7f00000000, 0x0, 0x0, 0x1, 0x0, r2, 0x0, 0x0, 0xff010000}]) 4.675509926s ago: executing program 2 (id=397): syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x3c00}, 0x0, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port0\x00', 0x72, 0x11cfa, 0x0, 0x8000008, 0x3, 0x4, 0x1, 0x0, 0x7cce8c743ee810df}) r1 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0xfffffffc}, &(0x7f0000000000)=0x0, &(0x7f00000001c0)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}) io_uring_enter(r1, 0x47ba, 0x0, 0x0, 0x0, 0x0) r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r4, 0x40505330, &(0x7f0000000bc0)={0x800100, 0x0, 0x0, 0x724f, 0x0, 0x55a}) 4.531129543s ago: executing program 1 (id=398): sendmsg$inet(0xffffffffffffffff, &(0x7f0000001640)={&(0x7f0000000300)={0x2, 0x0, @multicast2=0xe0000001}, 0x10, 0x0, 0x0, 0x0, 0x38}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000208500000004"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='page_pool_release\x00', r0}, 0x10) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0x7, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f00000002c0)={r2}, 0x69) 4.005446153s ago: executing program 4 (id=400): epoll_create1(0x0) r0 = epoll_create1(0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000380)) r2 = syz_io_uring_setup(0x497, &(0x7f0000000400)={0x0, 0x7079, 0x0, 0x4, 0x288}, &(0x7f0000000340)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}) io_uring_enter(r2, 0x3516, 0x0, 0x0, 0x0, 0x0) epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f0000000040)={0xf}) 3.747841498s ago: executing program 1 (id=402): bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) mkdir(&(0x7f0000000200)='./file1\x00', 0x0) mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0]) mount(0x0, &(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) chdir(&(0x7f0000000080)='./file1\x00') r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) mkdir(&(0x7f0000000400)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0) ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x40049366, &(0x7f0000000180)) 3.14524927s ago: executing program 4 (id=404): bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) r0 = socket$kcm(0x2, 0x2, 0x0) setsockopt$sock_attach_bpf(r0, 0x1, 0xf, &(0x7f00000002c0), 0x161) sendmsg$inet(r0, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000040)=ANY=[], 0x10448) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r1, 0x0) setsockopt$sock_attach_bpf(r0, 0x1, 0x31, &(0x7f0000000640), 0x4) setsockopt$sock_attach_bpf(r0, 0x1, 0x31, &(0x7f0000000000), 0x4) 3.025448421s ago: executing program 2 (id=405): mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) mkdir(&(0x7f0000000000)='./cgroup/../file0/file0\x00', 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r2 = openat$cgroup_procs(r1, &(0x7f0000000380)='cgroup.procs\x00', 0x2, 0x0) write$cgroup_pid(r2, &(0x7f0000000040), 0x12) r3 = openat$cgroup_subtree(r0, &(0x7f0000000200), 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000040)={[{0x2b, 'pids'}]}, 0x6) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 2.675327185s ago: executing program 0 (id=406): bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x15, 0xf, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000280)='./file1\x00', 0x10c42, &(0x7f0000000d80)=ANY=[@ANYBLOB="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"/797], 0x1, 0x27a, &(0x7f0000000540)="$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") chdir(&(0x7f0000000140)='./file0\x00') r0 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca) write$binfmt_elf32(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="7f454c46000000000000000000000000030006000000000000000000380000000000000000191bda0000200001000000000280000000000003"], 0x69) r1 = inotify_init() inotify_add_watch(r1, &(0x7f0000000200)='./file0\x00', 0x2) close(r0) execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) 2.613889717s ago: executing program 4 (id=407): r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_mount_image$squashfs(&(0x7f0000000200), &(0x7f0000000240)='./file0\x00', 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0018f6c743f5404d34dcc23444ae016595f84cf10c8576188bd8965234fd43459bf88d9d5c66b790d7ff3d296c54da83bc9c61d711644e1db24db2d2fba083f070dc697c76c5fcd602d35d7f1e3c759cd2acc7f92f394f28660ed79b4bf11e80d703f47a80654d9c744bd8ff"], 0x1, 0x1cf, &(0x7f00000002c0)="$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") r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), r1) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000000c0)=ANY=[@ANYBLOB="98030000", @ANYRES16=r2, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r3, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c0900005603330080b0c000ffffffffffff"], 0x398}}, 0x0) socket(0x28, 0x2, 0x0) 2.495623302s ago: executing program 3 (id=408): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$TIPC_CMD_ENABLE_BEARER(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) close(r3) socket(0x400000000010, 0x3, 0x0) ioctl$SIOCSIFHWADDR(r3, 0x8923, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"}) 2.277034734s ago: executing program 1 (id=409): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480), 0x0, 0x0) ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000040)=0x5) io_setup(0x3, &(0x7f00000000c0)=0x0) io_submit(r1, 0x1, &(0x7f0000000200)=[&(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000000700)='9', 0x1}]) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7ffffff00"}) io_destroy(r1) r2 = syz_open_pts(r0, 0x0) r3 = dup3(r2, r0, 0x0) ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000000)) 2.221616216s ago: executing program 2 (id=410): r0 = creat(&(0x7f0000000340)='./file0\x00', 0x14) close(r0) r1 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) recvmmsg(r1, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0) sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x8, @mcast1}, 0x1c) r2 = getpid() r3 = syz_pidfd_open(r2, 0x0) mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f00000000c0), 0x8, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r3}}) 2.002050968s ago: executing program 3 (id=411): r0 = openat$sw_sync(0xffffff9c, &(0x7f0000000080), 0x80800, 0x0) ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000000)={0x20000003, "e89c5b0000000000005b000000000000000000002900", 0xffffffffffffffff}) r2 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000040)) r3 = epoll_create1(0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$UHID_CREATE2(r4, &(0x7f0000000040)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000100)={0x30000000}) 1.955732006s ago: executing program 0 (id=412): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000080)='netlink_extack\x00', r1}, 0x10) r2 = socket(0x11, 0x800000003, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000600)={'team0\x00', 0x0}) r4 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000003c0)=@newqdisc={0x8c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x5c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [], 0x0, [0x7, 0x4]}}]}}]}, 0x8c}}, 0x0) 1.892834477s ago: executing program 4 (id=413): r0 = syz_usb_connect(0x0, 0x1cb, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000122f0d4071040403dfe4000000010902b901010000003f0904"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$uac1(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000480)={0x2c, &(0x7f0000000040)=ANY=[], 0x0, 0x0, 0x0, 0x0}) 1.633120369s ago: executing program 3 (id=414): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r0, 0x9) r1 = syz_io_uring_setup(0x16c2, &(0x7f0000000480)={0x0, 0xbd12, 0x10100, 0x1, 0x327}, &(0x7f0000000300)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x3}) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$UHID_CREATE2(r4, &(0x7f00000001c0)=ANY=[@ANYBLOB='.'], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_MKDIRAT={0x25, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}) io_uring_enter(r1, 0x2d3e, 0x0, 0x0, 0x0, 0x0) 1.586587446s ago: executing program 0 (id=415): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$TIPC_CMD_ENABLE_BEARER(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) close(r3) socket(0x400000000010, 0x3, 0x0) ioctl$SIOCSIFHWADDR(r3, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"}) 1.342513887s ago: executing program 0 (id=416): r0 = socket$inet(0x2, 0x3, 0x1) setsockopt$inet_msfilter(r0, 0x0, 0x8, &(0x7f0000000100)=ANY=[@ANYBLOB="be"], 0x1) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f00000002c0)={0x0, @local, @local}, &(0x7f0000000140)=0xc) r2 = socket(0x10, 0x80003, 0x0) write(r2, &(0x7f0000000000)="240000001a005f0214f9f407000904000a000000fe0000000000000008000f00fd000000", 0x85) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000000)={@dev={0xfe, 0x80, '\x00', 0x76}, 0x6, r1}) r3 = socket(0xa, 0x1, 0x0) ioctl(r3, 0x8916, &(0x7f0000000000)) ioctl(r3, 0x8936, &(0x7f0000000000)) 1.177474756s ago: executing program 3 (id=417): pread64(0xffffffffffffffff, 0x0, 0x0, 0xa2c) rt_sigprocmask(0x0, 0x0, 0x0, 0x0) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x800, &(0x7f0000001180)=ANY=[], 0x1, 0x17f, &(0x7f0000000380)="$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") chdir(0x0) listxattr(0x0, 0x0, 0x0) r1 = syz_pidfd_open(r0, 0x0) pidfd_getfd(r1, 0xffffffffffffffff, 0x0) 1.05800018s ago: executing program 2 (id=418): r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r1 = socket$tipc(0x1e, 0x2, 0x0) bind$tipc(r1, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10) r2 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x0, 0x2}, 0x10) sendmsg$tipc(r2, &(0x7f0000000540)={&(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0x4}}, 0x10, 0x0}, 0x10) setsockopt$TIPC_GROUP_LEAVE(r2, 0x10f, 0x88) 911.33526ms ago: executing program 0 (id=419): openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/bus/input/devices\x00', 0x0, 0x0) r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000540)={0x0, 0x0, 0x0, &(0x7f00000004c0)=""/124, 0x0, 0x80a0000}) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x0, 0x0, &(0x7f00000000c0)=""/87, 0x0, 0xdddd1000}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000380)) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x20000) ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4028af11, &(0x7f00000001c0)) 634.77672ms ago: executing program 3 (id=420): r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0) r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) write$qrtrtun(r0, &(0x7f0000000c40)="9d", 0x1) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r2, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x0], 0x0, 0x0, 0x1, 0x1}}, 0x40) mlock(&(0x7f0000ff9000/0x4000)=nil, 0x4000) mlock2(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1) 542.64637ms ago: executing program 0 (id=421): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r0, 0x3) syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "2a8435", 0x14, 0x6, 0x0, @empty, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x4, 0x5, 0xc2}}}}}}}, 0x0) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000840)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902"], 0x0) syz_usb_control_io$hid(r2, 0x0, 0x0) dup2(r1, r0) syz_emit_ethernet(0x4a, &(0x7f0000000500)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "8a9646", 0x14, 0x6, 0x0, @empty, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) 520.757549ms ago: executing program 2 (id=422): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r1}, 0x55) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0) fcntl$setlease(r2, 0x400, 0x0) r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x81000) renameat2(r3, &(0x7f0000000140)='./file1\x00', r3, &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) 71.549825ms ago: executing program 3 (id=423): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300002095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='percpu_alloc_percpu\x00', r0}, 0x10) syz_io_uring_setup(0x3665, &(0x7f0000000100)={0x0, 0x0, 0x2, 0xfe, 0xfffffffd}, 0x0, 0x0) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0xffd8) 0s ago: executing program 2 (id=424): prlimit64(0x0, 0xe, &(0x7f0000000180)={0xc, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) r2 = fanotify_init(0x8, 0x800) fanotify_mark(r2, 0x105, 0x4800003a, r1, 0x0) read$FUSE(r2, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.27' (ED25519) to the list of known hosts. [ 198.067853][ T5751] cgroup: Unknown subsys name 'net' [ 198.218454][ T5751] cgroup: Unknown subsys name 'cpuset' [ 198.234078][ T5751] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 229.466779][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 229.473766][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 252.170697][ T5751] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 256.737440][ T5769] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 256.747288][ T5769] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 256.756975][ T5769] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 256.771395][ T5769] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 256.780452][ T5769] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 256.800306][ T5769] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 256.810150][ T5769] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 256.829966][ T5775] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 256.834604][ T5769] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 256.840121][ T5775] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 256.849298][ T5769] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 256.864278][ T5769] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 256.928656][ T5769] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 256.938531][ T5769] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 256.948993][ T5077] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 256.949593][ T5769] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 256.967090][ T5077] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 256.980327][ T5769] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 256.980685][ T5077] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 257.000728][ T5077] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 257.010728][ T5077] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 257.021323][ T5077] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 257.043655][ T5772] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 257.060140][ T5772] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 257.070517][ T5775] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 257.085661][ T5772] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 257.097177][ T5772] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 257.108092][ T5775] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 257.118144][ T5775] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 257.128817][ T5772] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 258.191707][ T5777] chnl_net:caif_netlink_parms(): no params data found [ 258.462626][ T5771] chnl_net:caif_netlink_parms(): no params data found [ 258.960138][ T5769] Bluetooth: hci1: command tx timeout [ 258.965807][ T5769] Bluetooth: hci0: command tx timeout [ 259.140091][ T5769] Bluetooth: hci3: command tx timeout [ 259.202042][ T5769] Bluetooth: hci2: command tx timeout [ 259.207892][ T5769] Bluetooth: hci4: command tx timeout [ 259.236278][ T5777] bridge0: port 1(bridge_slave_0) entered blocking state [ 259.244335][ T5777] bridge0: port 1(bridge_slave_0) entered disabled state [ 259.252386][ T5777] bridge_slave_0: entered allmulticast mode [ 259.261911][ T5777] bridge_slave_0: entered promiscuous mode [ 259.309504][ T5777] bridge0: port 2(bridge_slave_1) entered blocking state [ 259.317273][ T5777] bridge0: port 2(bridge_slave_1) entered disabled state [ 259.325548][ T5777] bridge_slave_1: entered allmulticast mode [ 259.335186][ T5777] bridge_slave_1: entered promiscuous mode [ 259.346634][ T5776] chnl_net:caif_netlink_parms(): no params data found [ 259.549172][ T5777] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 259.625885][ T5777] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 259.716266][ T5767] chnl_net:caif_netlink_parms(): no params data found [ 259.737487][ T5771] bridge0: port 1(bridge_slave_0) entered blocking state [ 259.745492][ T5771] bridge0: port 1(bridge_slave_0) entered disabled state [ 259.753505][ T5771] bridge_slave_0: entered allmulticast mode [ 259.762706][ T5771] bridge_slave_0: entered promiscuous mode [ 259.826888][ T5780] chnl_net:caif_netlink_parms(): no params data found [ 259.848685][ T5771] bridge0: port 2(bridge_slave_1) entered blocking state [ 259.856462][ T5771] bridge0: port 2(bridge_slave_1) entered disabled state [ 259.866284][ T5771] bridge_slave_1: entered allmulticast mode [ 259.874701][ T5771] bridge_slave_1: entered promiscuous mode [ 260.025773][ T5777] team0: Port device team_slave_0 added [ 260.174650][ T5777] team0: Port device team_slave_1 added [ 260.193641][ T5771] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 260.375141][ T5771] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 260.474128][ T5777] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 260.482989][ T5777] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 260.510195][ T5777] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 260.624108][ T5776] bridge0: port 1(bridge_slave_0) entered blocking state [ 260.632201][ T5776] bridge0: port 1(bridge_slave_0) entered disabled state [ 260.640227][ T5776] bridge_slave_0: entered allmulticast mode [ 260.649594][ T5776] bridge_slave_0: entered promiscuous mode [ 260.676217][ T5777] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 260.684953][ T5777] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 260.712105][ T5777] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 260.925019][ T5776] bridge0: port 2(bridge_slave_1) entered blocking state [ 260.936977][ T5776] bridge0: port 2(bridge_slave_1) entered disabled state [ 260.947307][ T5776] bridge_slave_1: entered allmulticast mode [ 260.957472][ T5776] bridge_slave_1: entered promiscuous mode [ 261.008958][ T5771] team0: Port device team_slave_0 added [ 261.039643][ T52] Bluetooth: hci0: command tx timeout [ 261.045327][ T52] Bluetooth: hci1: command tx timeout [ 261.164211][ T5771] team0: Port device team_slave_1 added [ 261.185618][ T5767] bridge0: port 1(bridge_slave_0) entered blocking state [ 261.195567][ T5767] bridge0: port 1(bridge_slave_0) entered disabled state [ 261.198956][ T52] Bluetooth: hci3: command tx timeout [ 261.203881][ T5767] bridge_slave_0: entered allmulticast mode [ 261.218406][ T5767] bridge_slave_0: entered promiscuous mode [ 261.277954][ T52] Bluetooth: hci4: command tx timeout [ 261.283731][ T52] Bluetooth: hci2: command tx timeout [ 261.322527][ T5777] hsr_slave_0: entered promiscuous mode [ 261.332538][ T5777] hsr_slave_1: entered promiscuous mode [ 261.377983][ T5767] bridge0: port 2(bridge_slave_1) entered blocking state [ 261.385880][ T5767] bridge0: port 2(bridge_slave_1) entered disabled state [ 261.394110][ T5767] bridge_slave_1: entered allmulticast mode [ 261.403581][ T5767] bridge_slave_1: entered promiscuous mode [ 261.496301][ T5776] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 261.506323][ T5780] bridge0: port 1(bridge_slave_0) entered blocking state [ 261.514263][ T5780] bridge0: port 1(bridge_slave_0) entered disabled state [ 261.522446][ T5780] bridge_slave_0: entered allmulticast mode [ 261.532004][ T5780] bridge_slave_0: entered promiscuous mode [ 261.585861][ T5771] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 261.593280][ T5771] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 261.620534][ T5771] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 261.633148][ T5780] bridge0: port 2(bridge_slave_1) entered blocking state [ 261.643237][ T5780] bridge0: port 2(bridge_slave_1) entered disabled state [ 261.651319][ T5780] bridge_slave_1: entered allmulticast mode [ 261.660845][ T5780] bridge_slave_1: entered promiscuous mode [ 261.679959][ T5776] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 261.799740][ T5771] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 261.806960][ T5771] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 261.833435][ T5771] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 261.927645][ T5780] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 261.947515][ T5767] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 261.966431][ T5780] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 261.985311][ T5767] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 262.182773][ T5780] team0: Port device team_slave_0 added [ 262.232738][ T5776] team0: Port device team_slave_0 added [ 262.247478][ T5767] team0: Port device team_slave_0 added [ 262.340511][ T5780] team0: Port device team_slave_1 added [ 262.372943][ T5776] team0: Port device team_slave_1 added [ 262.386618][ T5767] team0: Port device team_slave_1 added [ 262.607732][ T5767] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 262.615102][ T5767] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 262.641877][ T5767] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 262.668199][ T5771] hsr_slave_0: entered promiscuous mode [ 262.677756][ T5771] hsr_slave_1: entered promiscuous mode [ 262.685759][ T5771] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 262.693767][ T5771] Cannot create hsr debugfs directory [ 262.786354][ T5767] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 262.793733][ T5767] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 262.820408][ T5767] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 262.853488][ T5780] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 262.862155][ T5780] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 262.889784][ T5780] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 262.904213][ T5776] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 262.911683][ T5776] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 262.938414][ T5776] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 263.004920][ T5780] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 263.012556][ T5780] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 263.039227][ T5780] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 263.072909][ T5776] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 263.080203][ T5776] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 263.106777][ T5776] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 263.119535][ T5769] Bluetooth: hci0: command tx timeout [ 263.133080][ T5769] Bluetooth: hci1: command tx timeout [ 263.278124][ T5769] Bluetooth: hci3: command tx timeout [ 263.381437][ T5769] Bluetooth: hci2: command tx timeout [ 263.387128][ T5769] Bluetooth: hci4: command tx timeout [ 263.527829][ T5780] hsr_slave_0: entered promiscuous mode [ 263.538130][ T5780] hsr_slave_1: entered promiscuous mode [ 263.546884][ T5780] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 263.554828][ T5780] Cannot create hsr debugfs directory [ 263.640663][ T5767] hsr_slave_0: entered promiscuous mode [ 263.650939][ T5767] hsr_slave_1: entered promiscuous mode [ 263.659715][ T5767] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 263.667448][ T5767] Cannot create hsr debugfs directory [ 263.749315][ T5776] hsr_slave_0: entered promiscuous mode [ 263.761875][ T5776] hsr_slave_1: entered promiscuous mode [ 263.770681][ T5776] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 263.778664][ T5776] Cannot create hsr debugfs directory [ 264.307042][ T5777] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 264.349265][ T5777] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 264.483331][ T5777] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 264.572751][ T5777] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 264.782308][ T5771] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 264.816945][ T5771] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 264.911799][ T5771] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 265.037889][ T5771] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 265.204012][ T5769] Bluetooth: hci1: command tx timeout [ 265.209978][ T52] Bluetooth: hci0: command tx timeout [ 265.316236][ T5767] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 265.341430][ T5767] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 265.368405][ T5769] Bluetooth: hci3: command tx timeout [ 265.434310][ T5767] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 265.441693][ T5769] Bluetooth: hci4: command tx timeout [ 265.444178][ T52] Bluetooth: hci2: command tx timeout [ 265.473482][ T5767] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 265.725398][ T5780] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 265.751323][ T5780] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 265.848065][ T5780] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 265.873111][ T5780] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 265.971641][ T5776] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 266.029566][ T5776] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 266.105854][ T5776] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 266.176212][ T5776] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 266.495355][ T5777] 8021q: adding VLAN 0 to HW filter on device bond0 [ 266.721716][ T5777] 8021q: adding VLAN 0 to HW filter on device team0 [ 266.878664][ T5771] 8021q: adding VLAN 0 to HW filter on device bond0 [ 266.941438][ T3883] bridge0: port 1(bridge_slave_0) entered blocking state [ 266.949256][ T3883] bridge0: port 1(bridge_slave_0) entered forwarding state [ 266.965446][ T3883] bridge0: port 2(bridge_slave_1) entered blocking state [ 266.973245][ T3883] bridge0: port 2(bridge_slave_1) entered forwarding state [ 267.184039][ T5771] 8021q: adding VLAN 0 to HW filter on device team0 [ 267.207816][ T5767] 8021q: adding VLAN 0 to HW filter on device bond0 [ 267.343784][ T50] bridge0: port 1(bridge_slave_0) entered blocking state [ 267.351582][ T50] bridge0: port 1(bridge_slave_0) entered forwarding state [ 267.512859][ T50] bridge0: port 2(bridge_slave_1) entered blocking state [ 267.520646][ T50] bridge0: port 2(bridge_slave_1) entered forwarding state [ 267.560707][ T5767] 8021q: adding VLAN 0 to HW filter on device team0 [ 267.719465][ T5776] 8021q: adding VLAN 0 to HW filter on device bond0 [ 267.735887][ T5777] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 267.764873][ T3883] bridge0: port 1(bridge_slave_0) entered blocking state [ 267.772744][ T3883] bridge0: port 1(bridge_slave_0) entered forwarding state [ 267.824042][ T3883] bridge0: port 2(bridge_slave_1) entered blocking state [ 267.832235][ T3883] bridge0: port 2(bridge_slave_1) entered forwarding state [ 267.864778][ T5780] 8021q: adding VLAN 0 to HW filter on device bond0 [ 267.941888][ T5776] 8021q: adding VLAN 0 to HW filter on device team0 [ 268.067693][ T3883] bridge0: port 1(bridge_slave_0) entered blocking state [ 268.075428][ T3883] bridge0: port 1(bridge_slave_0) entered forwarding state [ 268.203233][ T4181] bridge0: port 2(bridge_slave_1) entered blocking state [ 268.211075][ T4181] bridge0: port 2(bridge_slave_1) entered forwarding state [ 268.235383][ T5780] 8021q: adding VLAN 0 to HW filter on device team0 [ 268.427469][ T4181] bridge0: port 1(bridge_slave_0) entered blocking state [ 268.435318][ T4181] bridge0: port 1(bridge_slave_0) entered forwarding state [ 268.461118][ T4181] bridge0: port 2(bridge_slave_1) entered blocking state [ 268.468972][ T4181] bridge0: port 2(bridge_slave_1) entered forwarding state [ 268.506872][ T5767] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 268.886155][ T5776] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 268.955568][ T5780] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 270.074650][ T5777] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 270.446673][ T5771] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 270.598114][ T5777] veth0_vlan: entered promiscuous mode [ 270.615900][ T5767] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 270.723245][ T5777] veth1_vlan: entered promiscuous mode [ 271.048076][ T5776] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 271.111816][ T5771] veth0_vlan: entered promiscuous mode [ 271.216065][ T5771] veth1_vlan: entered promiscuous mode [ 271.296624][ T5780] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 271.324636][ T5767] veth0_vlan: entered promiscuous mode [ 271.364783][ T5777] veth0_macvtap: entered promiscuous mode [ 271.463191][ T5777] veth1_macvtap: entered promiscuous mode [ 271.504199][ T5767] veth1_vlan: entered promiscuous mode [ 271.728597][ T5771] veth0_macvtap: entered promiscuous mode [ 271.813819][ T5777] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 271.885817][ T5771] veth1_macvtap: entered promiscuous mode [ 271.918934][ T5777] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 271.960666][ T5767] veth0_macvtap: entered promiscuous mode [ 272.009844][ T5780] veth0_vlan: entered promiscuous mode [ 272.029586][ T5777] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 272.038930][ T5777] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 272.048163][ T5777] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 272.057206][ T5777] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 272.093600][ T5767] veth1_macvtap: entered promiscuous mode [ 272.195162][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 272.207010][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 272.222541][ T5771] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 272.313731][ T5780] veth1_vlan: entered promiscuous mode [ 272.353483][ T5767] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 272.364499][ T5767] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 272.376551][ T5767] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 272.387494][ T5767] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 272.402836][ T5767] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 272.460953][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 272.473391][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 272.488816][ T5771] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 272.571794][ T5767] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 272.584434][ T5767] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 272.594756][ T5767] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 272.605869][ T5767] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 272.621162][ T5767] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 272.643226][ T5771] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 272.652440][ T5771] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 272.661683][ T5771] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 272.670962][ T5771] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 272.824937][ T5767] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 272.835778][ T5767] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 272.845080][ T5767] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 272.854350][ T5767] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 272.923136][ T5780] veth0_macvtap: entered promiscuous mode [ 272.992550][ T5780] veth1_macvtap: entered promiscuous mode [ 273.216722][ T5780] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 273.229512][ T5780] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 273.239905][ T5780] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 273.250731][ T5780] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 273.260952][ T5780] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 273.271728][ T5780] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 273.287195][ T5780] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 273.378479][ T5780] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 273.389436][ T5780] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 273.399749][ T5780] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 273.410649][ T5780] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 273.420876][ T5780] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 273.431664][ T5780] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 273.449387][ T5780] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 273.686077][ T5780] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 273.696904][ T5780] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 273.706553][ T5780] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 273.715750][ T5780] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 274.489881][ T5776] veth0_vlan: entered promiscuous mode [ 274.623428][ T5776] veth1_vlan: entered promiscuous mode [ 275.053655][ T5776] veth0_macvtap: entered promiscuous mode [ 275.141217][ T5776] veth1_macvtap: entered promiscuous mode [ 275.398022][ T5776] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 275.410356][ T5776] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 275.420574][ T5776] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 275.431448][ T5776] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 275.442480][ T5776] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 275.453815][ T5776] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 275.464036][ T5776] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 275.474914][ T5776] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 275.490266][ T5776] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 275.715820][ T5776] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 275.728338][ T5776] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 275.740046][ T5776] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 275.751790][ T5776] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 275.764902][ T5776] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 275.776313][ T5776] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 275.786432][ T5776] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 275.797293][ T5776] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 275.812838][ T5776] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 276.083945][ T5776] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 276.093245][ T5776] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 276.102579][ T5776] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 276.111759][ T5776] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 279.546647][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 279.556212][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 279.795305][ T1893] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 279.803591][ T1893] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 280.476381][ T4181] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 280.485498][ T4181] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 280.764374][ T5777] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 280.785392][ T1893] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 280.794659][ T1893] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 280.851054][ T3455] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 280.860497][ T3455] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 281.031076][ T4659] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 281.041557][ T4659] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 281.371009][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 281.380595][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 281.650212][ T4968] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 281.658614][ T4968] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 282.625750][ T5956] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 282.639287][ T5956] overlayfs: "xino" feature enabled using 2 upper inode bits. [ 282.774674][ T5951] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 283.627873][ T5819] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 283.717722][ T5969] netlink: 28 bytes leftover after parsing attributes in process `syz.3.9'. [ 283.951679][ T5819] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 283.961936][ T5819] usb 2-1: New USB device found, idVendor=11c2, idProduct=2208, bcdDevice= 0.00 [ 283.971497][ T5819] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 283.972145][ T5972] dvmrp0: entered allmulticast mode [ 284.061342][ T5819] usb 2-1: config 0 descriptor?? [ 284.166106][ T3455] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 284.174340][ T3455] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 284.394746][ T5970] loop0: detected capacity change from 0 to 4096 [ 284.399533][ T4968] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 284.411372][ T4968] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 284.430096][ T5970] nilfs2: Bad value for 'cp' [ 284.540214][ T5819] usbhid 2-1:0.0: can't add hid device: -71 [ 284.546933][ T5819] usbhid 2-1:0.0: probe with driver usbhid failed with error -71 [ 284.652855][ T5819] usb 2-1: USB disconnect, device number 2 [ 284.835351][ T5976] Zero length message leads to an empty skb [ 286.585929][ T5984] loop0: detected capacity change from 0 to 32768 [ 286.601566][ T5984] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.14 (5984) [ 286.730990][ T5984] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 286.741778][ T5984] BTRFS info (device loop0): using crc32c (crc32c-x86_64) checksum algorithm [ 286.751251][ T5984] BTRFS info (device loop0): using free-space-tree [ 287.298324][ T29] audit: type=1800 audit(1738642489.800:2): pid=5984 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.14" name="bus" dev="loop0" ino=263 res=0 errno=0 [ 287.629180][ T29] audit: type=1800 audit(1738642490.060:3): pid=5984 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.14" name="bus" dev="loop0" ino=263 res=0 errno=0 [ 288.087484][ T5777] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 288.972629][ T5966] udevd[5966]: '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0' [6021] terminated by signal 33 (Unknown signal 33) [ 290.059596][ T5890] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 290.303333][ T5890] usb 4-1: Using ep0 maxpacket: 16 [ 290.340573][ T5890] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83 [ 290.352845][ T5890] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 290.465846][ T5890] usb 4-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 290.475838][ T5890] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 290.484399][ T5890] usb 4-1: Product: syz [ 290.488950][ T5890] usb 4-1: Manufacturer: syz [ 290.493893][ T5890] usb 4-1: SerialNumber: syz [ 290.592091][ T5890] usb 4-1: config 0 descriptor?? [ 290.626283][ T5890] em28xx 4-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0) [ 290.636162][ T5890] em28xx 4-1:0.0: Audio interface 0 found (Vendor Class) [ 290.944070][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 290.951064][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 291.512969][ T5890] em28xx 4-1:0.0: unknown em28xx chip ID (0) [ 291.585243][ T5890] em28xx 4-1:0.0: Config register raw data: 0xfffffffb [ 291.648119][ T6050] syz.2.33 uses obsolete (PF_INET,SOCK_PACKET) [ 292.423576][ T5890] em28xx 4-1:0.0: Unknown AC97 audio processor detected! [ 292.443344][ T5890] em28xx 4-1:0.0: couldn't setup AC97 register 2 [ 292.502428][ T5890] em28xx 4-1:0.0: couldn't setup AC97 register 4 [ 292.530644][ T5890] em28xx 4-1:0.0: couldn't setup AC97 register 6 [ 292.548868][ T5890] em28xx 4-1:0.0: couldn't setup AC97 register 54 [ 292.581003][ T5890] em28xx 4-1:0.0: couldn't setup AC97 register 56 [ 292.619669][ T5890] usb 4-1: USB disconnect, device number 2 [ 294.642098][ T52] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:201' [ 294.652331][ T52] CPU: 1 UID: 0 PID: 52 Comm: kworker/u9:0 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0 [ 294.652479][ T52] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 294.652609][ T52] Workqueue: hci0 hci_rx_work [ 294.652821][ T52] Call Trace: [ 294.652878][ T52] [ 294.652925][ T52] dump_stack_lvl+0x216/0x2d0 [ 294.653080][ T52] dump_stack+0x1e/0x24 [ 294.653209][ T52] sysfs_create_dir_ns+0x45f/0x4c0 [ 294.653385][ T52] kobject_add_internal+0xfe7/0x1900 [ 294.653572][ T52] kobject_add+0x28c/0x3c0 [ 294.653740][ T52] ? kmsan_get_metadata+0x13e/0x1c0 [ 294.653913][ T52] device_add+0xa90/0x1ba0 [ 294.654108][ T52] hci_conn_add_sysfs+0x161/0x2c0 [ 294.654327][ T52] le_conn_complete_evt+0x1adf/0x1fa0 [ 294.654538][ T52] hci_le_conn_complete_evt+0x15a/0x210 [ 294.654733][ T52] hci_le_meta_evt+0x600/0x850 [ 294.654900][ T52] ? __pfx_hci_le_conn_complete_evt+0x10/0x10 [ 294.655101][ T52] hci_event_packet+0x11df/0x1c20 [ 294.655263][ T52] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 294.655465][ T52] hci_rx_work+0x699/0x1260 [ 294.655635][ T52] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 294.655820][ T52] ? __pfx_hci_rx_work+0x10/0x10 [ 294.655987][ T52] ? __pfx_hci_rx_work+0x10/0x10 [ 294.656158][ T52] process_scheduled_works+0xae0/0x1c40 [ 294.656408][ T52] worker_thread+0xea7/0x14f0 [ 294.656633][ T52] kthread+0x6b9/0xef0 [ 294.656773][ T52] ? __pfx_worker_thread+0x10/0x10 [ 294.656977][ T52] ? __pfx_kthread+0x10/0x10 [ 294.657113][ T52] ret_from_fork+0x6d/0x90 [ 294.657271][ T52] ? __pfx_kthread+0x10/0x10 [ 294.657417][ T52] ret_from_fork_asm+0x1a/0x30 [ 294.657584][ T52] [ 294.823768][ C1] vkms_vblank_simulate: vblank timer overrun [ 294.840876][ T52] kobject: kobject_add_internal failed for hci0:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 294.858826][ T52] Bluetooth: hci0: failed to register connection device [ 294.967173][ T6077] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 294.973970][ T6077] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 295.109868][ T6077] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 295.130854][ T6077] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 295.159255][ T6077] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 295.165926][ T6077] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 295.256601][ T6077] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 295.329173][ T6077] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 295.335924][ T6077] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 295.441325][ T52] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0 [ 295.450409][ T52] Bluetooth: hci3: Injecting HCI hardware error event [ 295.458562][ T52] Bluetooth: hci3: hardware error 0x00 [ 295.487489][ T6077] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 295.504869][ T6077] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 295.511934][ T6077] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 295.631700][ T6077] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 296.553824][ T6097] loop3: detected capacity change from 0 to 2048 [ 296.787156][ T6097] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 296.800545][ T6097] ext4 filesystem being mounted at /9/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 296.964056][ T5769] Bluetooth: hci0: command 0x0c1a tx timeout [ 297.124576][ T29] audit: type=1326 audit(1738642499.620:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6096 comm="syz.3.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee29f8cda9 code=0x7ffc0000 [ 297.146939][ C1] vkms_vblank_simulate: vblank timer overrun [ 297.202724][ T5769] Bluetooth: hci1: command 0x0c1a tx timeout [ 297.249476][ T29] audit: type=1326 audit(1738642499.670:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6096 comm="syz.3.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee29f8cda9 code=0x7ffc0000 [ 297.275638][ T29] audit: type=1326 audit(1738642499.710:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6096 comm="syz.3.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee29f8cda9 code=0x7ffc0000 [ 297.298903][ T29] audit: type=1326 audit(1738642499.710:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6096 comm="syz.3.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee29f8cda9 code=0x7ffc0000 [ 297.328623][ T29] audit: type=1326 audit(1738642499.710:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6096 comm="syz.3.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee29f8cda9 code=0x7ffc0000 [ 297.351069][ T29] audit: type=1326 audit(1738642499.730:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6096 comm="syz.3.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee29f8cda9 code=0x7ffc0000 [ 297.375947][ T29] audit: type=1326 audit(1738642499.740:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6096 comm="syz.3.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee29f8cda9 code=0x7ffc0000 [ 297.388294][ T5769] Bluetooth: hci2: command 0x0c1a tx timeout [ 297.401028][ T29] audit: type=1326 audit(1738642499.780:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6096 comm="syz.3.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee29f8cda9 code=0x7ffc0000 [ 297.450933][ T6109] loop4: detected capacity change from 0 to 128 [ 297.473778][ T6109] ======================================================= [ 297.473778][ T6109] WARNING: The mand mount option has been deprecated and [ 297.473778][ T6109] and is ignored by this kernel. Remove the mand [ 297.473778][ T6109] option from the mount to silence this warning. [ 297.473778][ T6109] ======================================================= [ 297.509009][ C1] vkms_vblank_simulate: vblank timer overrun [ 297.532834][ T52] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 297.539861][ T5775] Bluetooth: hci4: command 0x0c1a tx timeout [ 297.610969][ T29] audit: type=1326 audit(1738642500.040:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6096 comm="syz.3.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee29f8cda9 code=0x7ffc0000 [ 297.633202][ C1] vkms_vblank_simulate: vblank timer overrun [ 297.642371][ T29] audit: type=1326 audit(1738642500.040:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6096 comm="syz.3.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee29f8cda9 code=0x7ffc0000 [ 297.664648][ C1] vkms_vblank_simulate: vblank timer overrun [ 297.768747][ T6097] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.51: bg 0: block 345: padding at end of block bitmap is not set [ 297.942246][ T6097] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117 [ 297.955317][ T6097] EXT4-fs (loop3): This should not happen!! Data will be lost [ 297.955317][ T6097] [ 298.408930][ T5780] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 298.579063][ T6109] EXT4-fs (loop4): Test dummy encryption mode enabled [ 298.683332][ T6109] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 298.714740][ T6109] ext4 filesystem being mounted at /11/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 299.039665][ T52] Bluetooth: hci0: command 0x0c1a tx timeout [ 299.318524][ T52] Bluetooth: hci1: command 0x0c1a tx timeout [ 299.442298][ T52] Bluetooth: hci2: command 0x0c1a tx timeout [ 299.598447][ T52] Bluetooth: hci4: command 0x0c1a tx timeout [ 300.149085][ T6132] loop3: detected capacity change from 0 to 32768 [ 300.159250][ T6132] XFS: attr2 mount option is deprecated. [ 300.242665][ T6109] fscrypt (loop4): Missing crypto API support for AES-256-CBC-CTS (API name: "cts(cbc(aes))") [ 300.313790][ T6132] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 300.382115][ T6129] fscrypt (loop4): Missing crypto API support for AES-256-CBC-CTS (API name: "cts(cbc(aes))") [ 300.423107][ T6152] loop0: detected capacity change from 0 to 64 [ 300.728316][ T6135] loop1: detected capacity change from 0 to 40427 [ 300.774745][ T6135] F2FS-fs (loop1): build fault injection attr: rate: 771, type: 0x1fffff [ 300.801688][ T6135] F2FS-fs (loop1): invalid crc value [ 300.970574][ T5776] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 300.999223][ T6135] F2FS-fs (loop1): Found nat_bits in checkpoint [ 301.128176][ T52] Bluetooth: hci0: command 0x0c1a tx timeout [ 301.308786][ T6135] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 301.362313][ T52] Bluetooth: hci1: command 0x0c1a tx timeout [ 301.491603][ T6132] XFS (loop3): Ending clean mount [ 301.520774][ T6132] XFS (loop3): Quotacheck needed: Please wait. [ 301.530995][ T52] Bluetooth: hci2: command 0x0c1a tx timeout [ 301.617828][ T6135] syz.1.60: attempt to access beyond end of device [ 301.617828][ T6135] loop1: rw=10241, sector=45096, nr_sectors = 8 limit=40427 [ 301.633196][ T6135] syz.1.60: attempt to access beyond end of device [ 301.633196][ T6135] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 301.702819][ T52] Bluetooth: hci4: command 0x0c1a tx timeout [ 301.723701][ T6132] XFS (loop3): Quotacheck: Done. [ 301.818749][ T5767] syz-executor: attempt to access beyond end of device [ 301.818749][ T5767] loop1: rw=2049, sector=45104, nr_sectors = 8 limit=40427 [ 301.833294][ T5767] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 302.264239][ T5780] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 303.208288][ T52] Bluetooth: hci0: command 0x0c1a tx timeout [ 305.003328][ T6188] loop0: detected capacity change from 0 to 16384 [ 305.278197][ T5775] Bluetooth: hci4: command 0x0c1a tx timeout [ 305.498740][ T6193] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 305.612989][ T6193] syz.1.65: attempt to access beyond end of device [ 305.612989][ T6193] loop3: rw=4096, sector=2, nr_sectors = 2 limit=0 [ 305.626658][ T6193] EXT4-fs (loop3): unable to read superblock [ 306.080526][ T6201] pimreg: entered allmulticast mode [ 306.218462][ T6204] pimreg: left allmulticast mode [ 306.242451][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 306.415926][ T6208] loop1: detected capacity change from 0 to 128 [ 306.496836][ T6208] vfat: Unknown parameter '18446744073709551615017777777777777777777770xffffffffffffffff0xffffffffffffffffNVۡl{C7z6UC^Z(<' [ 306.708172][ T6210] loop3: detected capacity change from 0 to 1024 [ 306.762844][ T6208] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 306.801340][ T6210] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 306.834126][ T6210] EXT4-fs (loop3): stripe (7) is not aligned with cluster size (16), stripe is disabled [ 306.973840][ T6210] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 307.770163][ T5780] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 308.077134][ T6228] netlink: 4 bytes leftover after parsing attributes in process `syz.4.87'. [ 308.125702][ T6228] netlink: 12 bytes leftover after parsing attributes in process `syz.4.87'. [ 308.739903][ T29] kauditd_printk_skb: 3 callbacks suppressed [ 308.739974][ T29] audit: type=1326 audit(1738642511.260:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6224 comm="syz.0.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd2d38cda9 code=0x7fc00000 [ 309.478681][ T5826] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 309.681439][ T5826] usb 3-1: Using ep0 maxpacket: 32 [ 309.748570][ T5826] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 309.766645][ T5826] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 309.779214][ T5826] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 309.788884][ T5826] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 309.969204][ T5826] usb 3-1: config 0 descriptor?? [ 310.014923][ T5826] hub 3-1:0.0: USB hub found [ 310.240085][ T5826] hub 3-1:0.0: 1 port detected [ 310.812653][ T6256] syzkaller0: entered promiscuous mode [ 310.818628][ T6256] syzkaller0: entered allmulticast mode [ 310.920724][ T5826] hub 3-1:0.0: activate --> -90 [ 311.477465][ T1921] usb 3-1: USB disconnect, device number 2 [ 312.393940][ T6271] loop3: detected capacity change from 0 to 1024 [ 312.506321][ T6271] EXT4-fs: Ignoring removed nobh option [ 312.708125][ T6271] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 312.933000][ T6279] netlink: 4 bytes leftover after parsing attributes in process `syz.2.104'. [ 313.317380][ T6283] loop0: detected capacity change from 0 to 512 [ 313.484637][ T6283] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 313.498208][ T6283] ext4 filesystem being mounted at /22/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 314.129398][ T5780] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 314.790310][ T6303] : renamed from ipvlan1 [ 314.806424][ T5777] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 315.161753][ T6305] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 316.542857][ T6324] loop0: detected capacity change from 0 to 512 [ 316.574707][ T6324] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 316.774567][ T6324] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 316.788152][ T6324] ext4 filesystem being mounted at /24/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 316.841564][ T6335] loop2: detected capacity change from 0 to 128 [ 316.900543][ T6335] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 316.935599][ T6335] ext4 filesystem being mounted at /25/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 317.442120][ T5777] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 317.904533][ T5771] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 318.746862][ T6354] loop0: detected capacity change from 0 to 256 [ 319.275694][ T6354] FAT-fs (loop0): Directory bread(block 64) failed [ 319.286043][ T6354] FAT-fs (loop0): Directory bread(block 65) failed [ 319.294325][ T6354] FAT-fs (loop0): Directory bread(block 66) failed [ 319.301497][ T6354] FAT-fs (loop0): Directory bread(block 67) failed [ 319.308571][ T6354] FAT-fs (loop0): Directory bread(block 68) failed [ 319.315392][ T6354] FAT-fs (loop0): Directory bread(block 69) failed [ 319.322551][ T6354] FAT-fs (loop0): Directory bread(block 70) failed [ 319.329632][ T6354] FAT-fs (loop0): Directory bread(block 71) failed [ 319.336586][ T6354] FAT-fs (loop0): Directory bread(block 72) failed [ 319.343620][ T6354] FAT-fs (loop0): Directory bread(block 73) failed [ 319.769084][ T29] audit: type=1800 audit(1738642522.280:18): pid=6354 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.127" name="file2" dev="loop0" ino=4 res=0 errno=0 [ 319.871133][ T6362] syzkaller0: entered promiscuous mode [ 319.877112][ T6362] syzkaller0: entered allmulticast mode [ 319.940299][ T6369] syz.0.127: attempt to access beyond end of device [ 319.940299][ T6369] loop0: rw=0, sector=1800, nr_sectors = 20 limit=256 [ 320.275765][ T6358] sctp: failed to load transform for md5: -2 [ 320.761153][ T6376] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 320.788317][ T6376] CIFS mount error: No usable UNC path provided in device string! [ 320.788317][ T6376] [ 320.818099][ T6376] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 321.274503][ T6381] loop1: detected capacity change from 0 to 2048 [ 321.422360][ T6385] loop0: detected capacity change from 0 to 8 [ 321.437800][ T6381] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 321.521289][ T6385] SQUASHFS error: lzo decompression failed, data probably corrupt [ 321.532922][ T6385] SQUASHFS error: Failed to read block 0x62b: -5 [ 321.541412][ T6385] SQUASHFS error: Unable to read metadata cache entry [629] [ 321.549081][ T6385] SQUASHFS error: Unable to read inode 0x11f [ 321.990036][ T29] audit: type=1326 audit(1738642524.500:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6386 comm="syz.4.138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f108b98cda9 code=0x7fc00000 [ 322.052524][ T6378] loop2: detected capacity change from 0 to 8192 [ 322.644160][ T29] audit: type=1326 audit(1738642525.150:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6386 comm="syz.4.138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f108b98cda9 code=0x7fc00000 [ 322.812321][ T6395] loop0: detected capacity change from 0 to 1024 [ 323.587280][ T6406] loop2: detected capacity change from 0 to 512 [ 323.658040][ T6406] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 323.671903][ T6406] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 323.701933][ T1893] hfsplus: b-tree write err: -5, ino 4 [ 323.939306][ T6406] EXT4-fs (loop2): 1 truncate cleaned up [ 323.946959][ T6406] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 324.168944][ T6406] overlayfs: missing 'lowerdir' [ 324.580545][ T5771] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 324.980944][ T6422] loop3: detected capacity change from 0 to 512 [ 325.088468][ T6422] EXT4-fs error (device loop3): ext4_orphan_get:1389: inode #15: comm syz.3.151: casefold flag without casefold feature [ 325.205334][ T6422] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.151: couldn't read orphan inode 15 (err -117) [ 325.280177][ T6422] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 325.635985][ T6432] loop2: detected capacity change from 0 to 736 [ 325.991053][ T6432] rock: directory entry would overflow storage [ 325.997927][ T6432] rock: sig=0x3b10, size=4, remaining=3 [ 326.272619][ T5780] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 326.840477][ T6442] vivid-007: disconnect [ 326.874849][ T6440] vivid-007: reconnect [ 327.464717][ T6437] loop1: detected capacity change from 0 to 40427 [ 327.502062][ T6437] F2FS-fs (loop1): build fault injection attr: rate: 771, type: 0x1fffff [ 327.526440][ T6437] F2FS-fs (loop1): invalid crc value [ 327.556564][ T6437] F2FS-fs (loop1): Found nat_bits in checkpoint [ 327.928928][ T6437] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 328.100153][ T6437] F2FS-fs (loop1): inject no more block in inc_valid_node_count of f2fs_new_node_page+0x60f/0x1690 [ 328.220192][ T5767] syz-executor: attempt to access beyond end of device [ 328.220192][ T5767] loop1: rw=2049, sector=45096, nr_sectors = 24 limit=40427 [ 328.234781][ T5767] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 328.242346][ T5767] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 328.249673][ T5767] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 328.465316][ C0] Unknown status report in ack skb [ 328.971376][ T6453] loop3: detected capacity change from 0 to 4096 [ 329.146823][ T6453] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 329.528700][ T5826] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 329.539819][ T6453] ntfs3(loop3): ino=1a, mi_enum_attr [ 329.545445][ T6453] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 329.567081][ T6463] loop0: detected capacity change from 0 to 128 [ 329.581434][ T6453] ntfs3(loop3): Failed to initialize $Extend/$ObjId. [ 329.720992][ T5826] usb 5-1: Using ep0 maxpacket: 32 [ 329.768710][ T5826] usb 5-1: config 0 has an invalid interface number: 51 but max is 0 [ 329.777348][ T5826] usb 5-1: config 0 has no interface number 0 [ 329.891137][ T5826] usb 5-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 329.900767][ T5826] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 329.909385][ T5826] usb 5-1: Product: syz [ 329.913800][ T5826] usb 5-1: Manufacturer: syz [ 329.923473][ T5826] usb 5-1: SerialNumber: syz [ 330.095602][ T5826] usb 5-1: config 0 descriptor?? [ 330.150523][ T5826] quatech2 5-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 330.358593][ T5826] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 330.492232][ T5826] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 330.893866][ C1] usb 5-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 330.927991][ T5826] usb 5-1: USB disconnect, device number 2 [ 330.970438][ T5826] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 331.082441][ T5826] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 331.098608][ T5826] quatech2 5-1:0.51: device disconnected [ 332.255813][ T6482] loop4: detected capacity change from 0 to 1024 [ 332.328809][ T6482] EXT4-fs: Ignoring removed bh option [ 332.334934][ T6482] EXT4-fs: inline encryption not supported [ 332.391403][ T6482] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 332.459519][ T6482] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000] [ 332.537140][ C1] vcan0: j1939_tp_rxtimer: 0xffff88804e781e00: rx timeout, send abort [ 332.548465][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88804e781e00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 332.701465][ T6482] EXT4-fs error (device loop4): ext4_map_blocks:671: inode #3: block 2: comm syz.4.173: lblock 2 mapped to illegal pblock 2 (length 1) [ 332.778843][ T6482] Quota error (device loop4): qtree_write_dquot: dquota write failed [ 332.787797][ T6482] EXT4-fs error (device loop4): ext4_map_blocks:671: inode #3: block 48: comm syz.4.173: lblock 0 mapped to illegal pblock 48 (length 1) [ 332.852717][ T6482] Quota error (device loop4): v2_write_file_info: Can't write info structure [ 332.862084][ T6482] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.173: Failed to acquire dquot type 0 [ 332.938288][ T6482] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5838: Corrupt filesystem [ 333.018152][ T6482] EXT4-fs error (device loop4): ext4_evict_inode:256: inode #11: comm syz.4.173: mark_inode_dirty error [ 333.071969][ T6482] EXT4-fs warning (device loop4): ext4_evict_inode:259: couldn't mark inode dirty (err -117) [ 333.082891][ T6482] EXT4-fs (loop4): 1 orphan inode deleted [ 333.090897][ T6482] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 333.114977][ T4968] EXT4-fs error (device loop4): ext4_map_blocks:671: inode #3: block 1: comm kworker/u8:17: lblock 1 mapped to illegal pblock 1 (length 1) [ 333.239340][ T4968] Quota error (device loop4): remove_tree: Can't read quota data block 1 [ 333.248333][ T4968] EXT4-fs error (device loop4): ext4_release_dquot:6950: comm kworker/u8:17: Failed to release dquot type 0 [ 333.278244][ T5826] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 333.299656][ T6482] EXT4-fs error (device loop4): __ext4_get_inode_loc:4435: comm syz.4.173: Invalid inode table block 1 in block_group 0 [ 333.332655][ T6494] loop0: detected capacity change from 0 to 2048 [ 333.378143][ T6482] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5838: Corrupt filesystem [ 333.497108][ T6494] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 333.508432][ T6482] EXT4-fs error (device loop4): ext4_dirty_inode:6042: inode #2: comm syz.4.173: mark_inode_dirty error [ 333.509041][ T5826] usb 3-1: Using ep0 maxpacket: 8 [ 333.549193][ T6497] EXT4-fs error (device loop4): __ext4_get_inode_loc:4435: comm syz.4.173: Invalid inode table block 1 in block_group 0 [ 333.602686][ T6501] syz_tun: entered allmulticast mode [ 333.609622][ T5826] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 333.612283][ T6497] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5838: Corrupt filesystem [ 333.625105][ T5826] usb 3-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a [ 333.641517][ T5826] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 333.671854][ T6500] syz_tun: left allmulticast mode [ 333.718524][ T6497] EXT4-fs error (device loop4): ext4_dirty_inode:6042: inode #2: comm syz.4.173: mark_inode_dirty error [ 333.768533][ T5826] usb 3-1: config 0 descriptor?? [ 333.802255][ T5826] gspca_main: vc032x-2.14.0 probing 046d:0892 [ 334.448519][ T29] audit: type=1326 audit(1738642536.960:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6504 comm="syz.1.182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc14798cda9 code=0x7fc00000 [ 334.651270][ T29] audit: type=1326 audit(1738642537.020:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6504 comm="syz.1.182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=208 compat=0 ip=0x7fc14798cda9 code=0x7fc00000 [ 334.673583][ C0] vkms_vblank_simulate: vblank timer overrun [ 334.681102][ T29] audit: type=1326 audit(1738642537.030:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6504 comm="syz.1.182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc14798cda9 code=0x7fc00000 [ 334.703378][ C0] vkms_vblank_simulate: vblank timer overrun [ 334.796277][ T13] EXT4-fs error (device loop4): __ext4_get_inode_loc:4435: comm kworker/u8:1: Invalid inode table block 1 in block_group 0 [ 334.840870][ T5776] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 334.866098][ T5776] EXT4-fs error (device loop4): __ext4_get_inode_loc:4435: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 334.880392][ T5819] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 334.904677][ T6510] netlink: 28 bytes leftover after parsing attributes in process `syz.3.184'. [ 335.049502][ T5819] usb 1-1: Using ep0 maxpacket: 8 [ 335.062729][ T5819] usb 1-1: config index 0 descriptor too short (expected 1298, got 18) [ 335.072686][ T5819] usb 1-1: config 0 has an invalid interface number: 0 but max is -1 [ 335.081527][ T5819] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 0 [ 335.162429][ T5819] usb 1-1: New USB device found, idVendor=0ccd, idProduct=10a3, bcdDevice=23.a2 [ 335.172052][ T5819] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 335.180533][ T5819] usb 1-1: Product: syz [ 335.184999][ T5819] usb 1-1: Manufacturer: syz [ 335.190378][ T5819] usb 1-1: SerialNumber: syz [ 335.276033][ T6495] capability: warning: `syz.2.178' uses deprecated v2 capabilities in a way that may be insecure [ 335.310734][ T5826] gspca_vc032x: reg_w err -71 [ 335.315932][ T5826] vc032x 3-1:0.0: probe with driver vc032x failed with error -71 [ 335.321401][ T5819] usb 1-1: config 0 descriptor?? [ 335.428263][ T5826] usb 3-1: USB disconnect, device number 3 [ 335.608607][ T5819] usb 1-1: dvb_usb_v2: found a 'Terratec H7' in warm state [ 336.025182][ T6520] loop4: detected capacity change from 0 to 128 [ 336.312310][ T13] kworker/u8:1: attempt to access beyond end of device [ 336.312310][ T13] loop4: rw=1, sector=145, nr_sectors = 97 limit=128 [ 336.535853][ T6525] netlink: 8 bytes leftover after parsing attributes in process `syz.3.189'. [ 336.627742][ T6525] netlink: 8 bytes leftover after parsing attributes in process `syz.3.189'. [ 336.748942][ T6528] loop2: detected capacity change from 0 to 256 [ 336.934640][ T6528] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d) [ 337.316429][ T6532] overlayfs: "xino" feature enabled using 2 upper inode bits. [ 337.502459][ T5819] usb 1-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 337.519860][ T5819] dvbdev: DVB: registering new adapter (Terratec H7) [ 337.526883][ T5819] usb 1-1: media controller created [ 337.705671][ T5819] usb read operation failed. (-71) [ 337.804179][ T5819] dvb_usb_az6007 1-1:0.0: probe with driver dvb_usb_az6007 failed with error -5 [ 337.930194][ T5819] usb 1-1: USB disconnect, device number 2 [ 337.958210][ T5940] udevd[5940]: setting owner of /dev/bus/usb/001/002 to uid=0, gid=0 failed: No such file or directory [ 338.497813][ T5819] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 338.738036][ T5819] usb 2-1: Using ep0 maxpacket: 8 [ 338.756758][ T5819] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 338.766318][ T5819] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 338.860809][ T5819] usb 2-1: config 0 descriptor?? [ 339.114489][ T6549] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 339.518917][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 340.016386][ T3455] tipc: Subscription rejected, illegal request [ 340.101560][ T5819] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 340.114980][ T5819] asix 2-1:0.0: probe with driver asix failed with error -71 [ 340.307381][ T5819] usb 2-1: USB disconnect, device number 3 [ 341.386696][ T6574] serio: Serial port ptm0 [ 341.422152][ T6568] loop2: detected capacity change from 0 to 1024 [ 343.072215][ T6568] program syz.2.207 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 343.091872][ T6587] netlink: 'syz.0.215': attribute type 29 has an invalid length. [ 343.211373][ T6587] netlink: 'syz.0.215': attribute type 29 has an invalid length. [ 343.278660][ T6592] netlink: 'syz.0.215': attribute type 29 has an invalid length. [ 343.318752][ T5819] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 343.408990][ T6587] netlink: 'syz.0.215': attribute type 29 has an invalid length. [ 343.552531][ T5819] usb 5-1: Using ep0 maxpacket: 32 [ 343.574963][ T5819] usb 5-1: config 0 has an invalid interface number: 12 but max is 0 [ 343.583751][ T5819] usb 5-1: config 0 has no interface number 0 [ 343.590472][ T5819] usb 5-1: config 0 interface 12 has no altsetting 0 [ 343.664844][ T5819] usb 5-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40 [ 343.674763][ T5819] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 343.683396][ T5819] usb 5-1: Product: syz [ 343.687908][ T5819] usb 5-1: Manufacturer: syz [ 343.692763][ T5819] usb 5-1: SerialNumber: syz [ 343.808398][ T5819] usb 5-1: config 0 descriptor?? [ 344.397456][ T6606] overlayfs: failed to clone upperpath [ 345.774498][ T6623] loop1: detected capacity change from 0 to 512 [ 345.792869][ T5819] f81534 5-1:0.12: f81534_get_register: reg: 1003 failed: -71 [ 345.805212][ T5819] f81534 5-1:0.12: f81534_find_config_idx: read failed: -71 [ 345.813970][ T5819] f81534 5-1:0.12: f81534_calc_num_ports: find idx failed: -71 [ 345.822303][ T5819] f81534 5-1:0.12: probe with driver f81534 failed with error -71 [ 345.893048][ T6623] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 345.909216][ T6623] ext4 filesystem being mounted at /46/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 345.945538][ T5819] usb 5-1: USB disconnect, device number 3 [ 346.248296][ T5767] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 346.356788][ T6632] 9pnet_fd: Insufficient options for proto=fd [ 346.638579][ T6636] netlink: 2048 bytes leftover after parsing attributes in process `syz.1.232'. [ 346.648953][ T6636] netlink: 4 bytes leftover after parsing attributes in process `syz.1.232'. [ 346.846610][ T6640] syzkaller0: entered allmulticast mode [ 346.877953][ T6611] Bluetooth: hci1: Opcode 0x0c1a failed: -110 [ 346.878133][ T52] Bluetooth: hci1: command 0x0c1a tx timeout [ 346.884377][ T6611] Bluetooth: hci1: Error when powering off device on rfkill (-110) [ 346.906686][ T6639] sd 0:0:1:0: PR command failed: 1026 [ 346.912894][ T6639] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 346.920197][ T6639] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 347.628159][ T6611] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 347.634446][ T6611] Bluetooth: hci2: Error when powering off device on rfkill (-4) [ 347.649632][ T6611] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 347.655869][ T6611] Bluetooth: hci4: Error when powering off device on rfkill (-4) [ 347.958326][ T5826] usb 2-1: new full-speed USB device number 4 using dummy_hcd [ 348.151890][ T5826] usb 2-1: not running at top speed; connect to a high speed hub [ 348.194364][ T5826] usb 2-1: config 95 has an invalid interface number: 1 but max is 0 [ 348.203137][ T5826] usb 2-1: config 95 has no interface number 0 [ 348.209781][ T5826] usb 2-1: config 95 interface 1 has no altsetting 0 [ 348.236875][ T5826] usb 2-1: string descriptor 0 read error: -22 [ 348.244045][ T5826] usb 2-1: New USB device found, idVendor=0763, idProduct=2030, bcdDevice=79.79 [ 348.253558][ T5826] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 348.659312][ T5826] usb 2-1: USB disconnect, device number 4 [ 349.371387][ T6670] loop0: detected capacity change from 0 to 1764 [ 349.634582][ T6677] netlink: 4 bytes leftover after parsing attributes in process `syz.1.245'. [ 350.166303][ T6683] netlink: 96 bytes leftover after parsing attributes in process `syz.3.249'. [ 350.411928][ T6691] IPVS: rr: UDP 224.0.0.2:0 - no destination available [ 350.445923][ T5826] IPVS: starting estimator thread 0... [ 350.544119][ T6695] IPVS: using max 240 ests per chain, 12000 per kthread [ 352.361502][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 352.368707][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 352.555639][ T6730] loop2: detected capacity change from 0 to 128 [ 354.334227][ T6747] loop0: detected capacity change from 0 to 32768 [ 354.429151][ T6747] XFS (loop0): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 354.706584][ T6747] XFS (loop0): Ending clean mount [ 354.742271][ T6747] XFS (loop0): Quotacheck needed: Please wait. [ 354.792795][ T6747] XFS (loop0): Quotacheck: Done. [ 355.161381][ T5777] XFS (loop0): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 355.414272][ T6772] netlink: 'syz.4.273': attribute type 4 has an invalid length. [ 356.764796][ T6778] netlink: 4 bytes leftover after parsing attributes in process `syz.4.278'. [ 356.767895][ T6776] loop2: detected capacity change from 0 to 32768 [ 356.805728][ T6776] [ 356.805728][ T6776] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 356.805728][ T6776] [ 356.951788][ T6778] warning: `syz.4.278' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 357.225765][ T6782] ERROR: (device loop2): dbAlloc: the hint is outside the map [ 357.225765][ T6782] [ 357.259232][ T6782] ERROR: (device loop2): remounting filesystem as read-only [ 357.661071][ T6786] syz_tun: entered allmulticast mode [ 357.743437][ T6785] syz_tun: left allmulticast mode [ 357.783674][ T6788] overlayfs: failed to clone upperpath [ 359.785356][ T29] audit: type=1804 audit(1738642562.300:24): pid=6810 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.282" name="/newroot/60/file0" dev="tmpfs" ino=338 res=1 errno=0 [ 359.939945][ T6811] loop4: detected capacity change from 0 to 2048 [ 359.988153][ T6811] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=18881, location=18881 [ 360.316672][ T6818] netlink: 'syz.1.291': attribute type 22 has an invalid length. [ 361.209616][ T6826] netlink: 24 bytes leftover after parsing attributes in process `syz.0.296'. [ 362.009020][ T6839] netlink: 24 bytes leftover after parsing attributes in process `syz.1.301'. [ 364.166035][ T6868] loop2: detected capacity change from 0 to 2048 [ 364.284018][ T6868] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 364.353010][ T1921] IPVS: starting estimator thread 0... [ 364.443748][ T6880] netlink: 'syz.4.314': attribute type 4 has an invalid length. [ 364.448525][ T6879] IPVS: using max 192 ests per chain, 9600 per kthread [ 364.486812][ T6880] netlink: 'syz.4.314': attribute type 4 has an invalid length. [ 364.538253][ T6868] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 364.569120][ T6868] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 196 with error 28 [ 364.583712][ T6868] EXT4-fs (loop2): This should not happen!! Data will be lost [ 364.583712][ T6868] [ 364.600531][ T6868] EXT4-fs (loop2): Total free blocks count 0 [ 364.606790][ T6868] EXT4-fs (loop2): Free/Dirty block details [ 364.613418][ T6868] EXT4-fs (loop2): free_blocks=2415919104 [ 364.619893][ T6868] EXT4-fs (loop2): dirty_blocks=208 [ 364.625368][ T6868] EXT4-fs (loop2): Block reservation details [ 364.631899][ T6868] EXT4-fs (loop2): i_reserved_data_blocks=13 [ 365.057098][ T6887] netlink: 'syz.1.317': attribute type 5 has an invalid length. [ 365.169362][ T4968] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28 [ 365.643678][ T6891] loop4: detected capacity change from 0 to 2048 [ 365.779370][ T6891] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 365.857464][ T5826] usb 3-1: new full-speed USB device number 4 using dummy_hcd [ 365.916500][ T29] audit: type=1800 audit(1738642568.430:25): pid=6891 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.320" name="bus" dev="loop4" ino=18 res=0 errno=0 [ 366.013264][ T29] audit: type=1800 audit(1738642568.480:26): pid=6891 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.320" name="bus" dev="loop4" ino=18 res=0 errno=0 [ 366.055172][ T5826] usb 3-1: config 0 interface 0 altsetting 132 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 366.067217][ T5826] usb 3-1: config 0 interface 0 altsetting 132 endpoint 0x81 has invalid wMaxPacketSize 0 [ 366.081918][ T5826] usb 3-1: config 0 interface 0 has no altsetting 0 [ 366.090014][ T5826] usb 3-1: New USB device found, idVendor=056a, idProduct=00b8, bcdDevice= 0.00 [ 366.099556][ T5826] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 366.125502][ T5826] usb 3-1: config 0 descriptor?? [ 366.225816][ T6903] Illegal XDP return value 1121925442 on prog (id 70) dev N/A, expect packet loss! [ 366.571100][ T5776] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 366.639772][ T5826] wacom 0003:056A:00B8.0001: Unknown device_type for 'HID 056a:00b8'. Assuming pen. [ 366.693685][ T5826] wacom 0003:056A:00B8.0001: hidraw0: USB HID vff.ff Device [HID 056a:00b8] on usb-dummy_hcd.2-1/input0 [ 366.709121][ T5826] input: Wacom Intuos4 4x6 Pen as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:056A:00B8.0001/input/input5 [ 366.837729][ T5826] usb 3-1: USB disconnect, device number 4 [ 367.166551][ T6917] process 'syz.4.328' launched './file1' with NULL argv: empty string added [ 367.564333][ T6920] loop0: detected capacity change from 0 to 128 [ 367.979468][ T6925] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 368.269238][ T6925] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 368.670596][ T6925] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 368.968001][ T6925] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 369.370070][ T6925] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 369.402894][ T6925] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 369.435338][ T6925] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 369.474387][ T6925] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 370.609291][ T6945] netlink: 12 bytes leftover after parsing attributes in process `syz.1.341'. [ 370.706838][ T6950] netlink: 'syz.2.343': attribute type 39 has an invalid length. [ 370.734682][ T6950] bridge0: port 1(bridge_slave_0) entered disabled state [ 370.861190][ T6950] bridge_slave_0 (unregistering): left allmulticast mode [ 370.868642][ T6950] bridge_slave_0 (unregistering): left promiscuous mode [ 370.876111][ T6950] bridge0: port 1(bridge_slave_0) entered disabled state [ 372.793711][ T6977] evm: overlay not supported [ 374.354917][ T6996] netlink: 28 bytes leftover after parsing attributes in process `syz.2.359'. [ 375.378627][ T7012] IPVS: rr: UDP 224.0.0.2:0 - no destination available [ 376.819260][ T7026] loop4: detected capacity change from 0 to 32768 [ 376.855621][ T7026] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.370 (7026) [ 376.878277][ T7026] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 376.888981][ T7026] BTRFS info (device loop4): using crc32c (crc32c-x86_64) checksum algorithm [ 376.898319][ T7026] BTRFS info (device loop4): using free-space-tree [ 377.769101][ T7048] loop2: detected capacity change from 0 to 32768 [ 377.780444][ T7048] BTRFS: device /dev/loop2 (7:2) using temp-fsid 29454df5-a3d5-445a-9056-2e03520afa5a [ 377.790566][ T7048] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.376 (7048) [ 377.824716][ T7048] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 377.835497][ T7048] BTRFS info (device loop2): using crc32c (crc32c-x86_64) checksum algorithm [ 377.845032][ T7048] BTRFS info (device loop2): using free-space-tree [ 378.018771][ T29] audit: type=1800 audit(1738642580.510:27): pid=7026 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.370" name="bus" dev="loop4" ino=263 res=0 errno=0 [ 378.553395][ T5771] BTRFS info (device loop2): last unmount of filesystem 29454df5-a3d5-445a-9056-2e03520afa5a [ 378.638047][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 378.649868][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 378.695835][ T7026] Invalid ELF header magic: != ELF [ 379.014812][ T5776] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 379.220316][ T7083] netlink: 'syz.1.381': attribute type 4 has an invalid length. [ 380.915067][ T7100] loop2: detected capacity change from 0 to 128 [ 380.959518][ T7100] udf: Unknown parameter '00000000000000000000' [ 384.137464][ T7150] loop4: detected capacity change from 0 to 8 [ 384.197980][ T7150] SQUASHFS error: zlib decompression failed, data probably corrupt [ 384.208122][ T7150] SQUASHFS error: Failed to read block 0x9b: -5 [ 384.214602][ T7150] SQUASHFS error: Unable to read metadata cache entry [99] [ 384.222164][ T7150] SQUASHFS error: Unable to read inode 0x127 [ 384.277249][ T7153] tipc: Enabling of bearer rejected, failed to enable media [ 384.411605][ T7150] netlink: 4 bytes leftover after parsing attributes in process `syz.4.407'. [ 385.062997][ T7164] tipc: Enabling of bearer rejected, failed to enable media [ 385.088167][ T5826] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 385.280990][ T5826] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 385.291769][ T5826] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 385.301378][ T5826] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 385.376019][ T5826] usb 5-1: config 0 descriptor?? [ 385.414892][ T5826] pwc: Askey VC010 type 2 USB webcam detected. [ 385.850884][ T5826] pwc: recv_control_msg error -32 req 02 val 2b00 [ 385.865990][ T5826] pwc: recv_control_msg error -32 req 02 val 2700 [ 385.904427][ T5826] pwc: recv_control_msg error -32 req 02 val 2c00 [ 385.913512][ T5826] pwc: recv_control_msg error -32 req 04 val 1000 [ 385.922597][ T5826] pwc: recv_control_msg error -32 req 04 val 1300 [ 385.968062][ T5826] pwc: recv_control_msg error -32 req 04 val 1400 [ 386.183811][ T5826] pwc: recv_control_msg error -71 req 02 val 2100 [ 386.195762][ T5826] pwc: recv_control_msg error -71 req 04 val 1500 [ 386.213649][ T5826] pwc: recv_control_msg error -71 req 02 val 2500 [ 386.233693][ T5826] pwc: recv_control_msg error -71 req 02 val 2400 [ 386.251856][ T5826] pwc: recv_control_msg error -71 req 02 val 2600 [ 386.265085][ T5826] pwc: recv_control_msg error -71 req 02 val 2900 [ 386.273823][ T5826] pwc: recv_control_msg error -71 req 02 val 2800 [ 386.281951][ T5826] pwc: recv_control_msg error -71 req 04 val 1100 [ 386.300888][ T5826] pwc: recv_control_msg error -71 req 04 val 1200 [ 386.321883][ T5826] pwc: Registered as video103. [ 386.329636][ T5826] input: PWC snapshot button as /devices/platform/dummy_hcd.4/usb5/5-1/input/input8 [ 386.375876][ T5826] usb 5-1: USB disconnect, device number 4 [ 387.545358][ T7184] ===================================================== [ 387.552708][ T7184] BUG: KMSAN: uninit-value in sw842_compress+0x15eb/0x5990 [ 387.560224][ T7184] sw842_compress+0x15eb/0x5990 [ 387.565299][ T7184] crypto842_scompress+0x4f/0x70 [ 387.570538][ T7184] scomp_acomp_comp_decomp+0x7c6/0xb90 [ 387.576182][ T7184] scomp_acomp_compress+0x32/0x40 [ 387.587248][ T7184] zswap_store+0x20e9/0x48a0 [ 387.592150][ T7184] swap_writepage+0xa67/0x1950 [ 387.597037][ T7184] shmem_writepage+0x2360/0x25a0 [ 387.603237][ T7184] shrink_folio_list+0x5dd2/0x8220 [ 387.608712][ T7184] evict_folios+0x94ed/0xb9c0 [ 387.613525][ T7184] try_to_shrink_lruvec+0xc58/0x1080 [ 387.619176][ T7184] shrink_lruvec+0x49a/0x47c0 [ 387.624003][ T7184] shrink_node+0x105e/0x51c0 [ 387.628830][ T7184] do_try_to_free_pages+0x820/0x2550 [ 387.634266][ T7184] try_to_free_mem_cgroup_pages+0x3fa/0xa60 [ 387.640588][ T7184] try_charge_memcg+0x71a/0x1780 [ 387.645751][ T7184] obj_cgroup_charge_pages+0x2cb/0x640 [ 387.653765][ T7184] __memcg_kmem_charge_page+0x151/0x520 [ 387.659765][ T7184] __alloc_frozen_pages_noprof+0x93d/0xe00 [ 387.665857][ T7184] alloc_pages_mpol+0x4cd/0x890 [ 387.671113][ T7184] alloc_pages_noprof+0x1b5/0x250 [ 387.676386][ T7184] io_region_allocate_pages+0x168/0x8b0 [ 387.689306][ T7184] io_create_region+0x6eb/0x810 [ 387.694409][ T7184] io_allocate_scq_urings+0x774/0xa50 [ 387.701725][ T7184] io_uring_create+0xabc/0x1440 [ 387.706947][ T7184] __se_sys_io_uring_setup+0x476/0x4d0 [ 387.712780][ T7184] __x64_sys_io_uring_setup+0x6c/0xa0 [ 387.718512][ T7184] x64_sys_call+0x2e82/0x3c30 [ 387.723413][ T7184] do_syscall_64+0xcd/0x1e0 [ 387.728273][ T7184] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 387.734427][ T7184] [ 387.736878][ T7184] Uninit was stored to memory at: [ 387.742379][ T7184] sw842_compress+0xe7d/0x5990 [ 387.747383][ T7184] crypto842_scompress+0x4f/0x70 [ 387.752676][ T7184] scomp_acomp_comp_decomp+0x7c6/0xb90 [ 387.758630][ T7184] scomp_acomp_compress+0x32/0x40 [ 387.763907][ T7184] zswap_store+0x20e9/0x48a0 [ 387.768936][ T7184] swap_writepage+0xa67/0x1950 [ 387.773917][ T7184] shmem_writepage+0x2360/0x25a0 [ 387.779275][ T7184] shrink_folio_list+0x5dd2/0x8220 [ 387.791699][ T7184] evict_folios+0x94ed/0xb9c0 [ 387.796627][ T7184] try_to_shrink_lruvec+0xc58/0x1080 [ 387.803758][ T7184] shrink_lruvec+0x49a/0x47c0 [ 387.808846][ T7184] shrink_node+0x105e/0x51c0 [ 387.813669][ T7184] do_try_to_free_pages+0x820/0x2550 [ 387.819462][ T7184] try_to_free_mem_cgroup_pages+0x3fa/0xa60 [ 387.825646][ T7184] try_charge_memcg+0x71a/0x1780 [ 387.830981][ T7184] obj_cgroup_charge_pages+0x2cb/0x640 [ 387.836688][ T7184] __memcg_kmem_charge_page+0x151/0x520 [ 387.842689][ T7184] __alloc_frozen_pages_noprof+0x93d/0xe00 [ 387.848888][ T7184] alloc_pages_mpol+0x4cd/0x890 [ 387.853991][ T7184] alloc_pages_noprof+0x1b5/0x250 [ 387.859566][ T7184] io_region_allocate_pages+0x168/0x8b0 [ 387.865401][ T7184] io_create_region+0x6eb/0x810 [ 387.871094][ T7184] io_allocate_scq_urings+0x774/0xa50 [ 387.876906][ T7184] io_uring_create+0xabc/0x1440 [ 387.882227][ T7184] __se_sys_io_uring_setup+0x476/0x4d0 [ 387.894882][ T7184] __x64_sys_io_uring_setup+0x6c/0xa0 [ 387.902019][ T7184] x64_sys_call+0x2e82/0x3c30 [ 387.906971][ T7184] do_syscall_64+0xcd/0x1e0 [ 387.911822][ T7184] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 387.919160][ T7184] [ 387.921616][ T7184] Uninit was stored to memory at: [ 387.927024][ T7184] copy_page_from_iter_atomic+0x1299/0x30c0 [ 387.933375][ T7184] generic_perform_write+0x8d1/0x1080 [ 387.939246][ T7184] shmem_file_write_iter+0x2ba/0x2f0 [ 387.944769][ T7184] do_iter_readv_writev+0x93a/0xbc0 [ 387.950365][ T7184] vfs_iter_write+0x44d/0xd60 [ 387.955290][ T7184] loop_process_work+0x15fb/0x3760 [ 387.960854][ T7184] loop_workfn+0x48/0x60 [ 387.965339][ T7184] process_scheduled_works+0xae0/0x1c40 [ 387.971288][ T7184] worker_thread+0xea7/0x14f0 [ 387.976222][ T7184] kthread+0x6b9/0xef0 [ 387.980680][ T7184] ret_from_fork+0x6d/0x90 [ 387.985331][ T7184] ret_from_fork_asm+0x1a/0x30 [ 387.997434][ T7184] [ 388.001469][ T7184] Uninit was stored to memory at: [ 388.006869][ T7184] ntfs_write_bh+0x652/0xdb0 [ 388.011807][ T7184] indx_insert_into_buffer+0xd9c/0x2010 [ 388.017757][ T7184] indx_insert_entry+0xa3c/0xee0 [ 388.022942][ T7184] ntfs_create_inode+0x438d/0x4e40 [ 388.028393][ T7184] ntfs_create+0x56/0x70 [ 388.032898][ T7184] path_openat+0x2ed8/0x6250 [ 388.037845][ T7184] do_filp_open+0x268/0x600 [ 388.042573][ T7184] do_sys_openat2+0x1bf/0x2f0 [ 388.047712][ T7184] __x64_sys_openat+0x2a1/0x310 [ 388.052811][ T7184] x64_sys_call+0x36f5/0x3c30 [ 388.057937][ T7184] do_syscall_64+0xcd/0x1e0 [ 388.062662][ T7184] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 388.069022][ T7184] [ 388.071474][ T7184] Uninit was stored to memory at: [ 388.076874][ T7184] indx_insert_into_buffer+0xcef/0x2010 [ 388.082891][ T7184] indx_insert_entry+0xa3c/0xee0 [ 388.088224][ T7184] ntfs_create_inode+0x438d/0x4e40 [ 388.100665][ T7184] ntfs_create+0x56/0x70 [ 388.106630][ T7184] path_openat+0x2ed8/0x6250 [ 388.111554][ T7184] do_filp_open+0x268/0x600 [ 388.116256][ T7184] do_sys_openat2+0x1bf/0x2f0 [ 388.121416][ T7184] __x64_sys_openat+0x2a1/0x310 [ 388.126520][ T7184] x64_sys_call+0x36f5/0x3c30 [ 388.131602][ T7184] do_syscall_64+0xcd/0x1e0 [ 388.136298][ T7184] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 388.142522][ T7184] [ 388.144972][ T7184] Uninit was created at: [ 388.149722][ T7184] kmem_cache_alloc_noprof+0x915/0xe10 [ 388.155461][ T7184] ntfs_create_inode+0x5f5/0x4e40 [ 388.190807][ T7184] ntfs_create+0x56/0x70 [ 388.206300][ T7184] path_openat+0x2ed8/0x6250 [ 388.218290][ T7184] do_filp_open+0x268/0x600 [ 388.223003][ T7184] do_sys_openat2+0x1bf/0x2f0 [ 388.229506][ T7184] __x64_sys_openat+0x2a1/0x310 [ 388.234637][ T7184] x64_sys_call+0x36f5/0x3c30 [ 388.239690][ T7184] do_syscall_64+0xcd/0x1e0 [ 388.244399][ T7184] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 388.250761][ T7184] [ 388.253210][ T7184] CPU: 1 UID: 0 PID: 7184 Comm: syz.3.423 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0 [ 388.264789][ T7184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 388.276498][ T7184] ===================================================== [ 388.284084][ T7184] Disabling lock debugging due to kernel taint [ 388.290639][ T7184] Kernel panic - not syncing: kmsan.panic set ... [ 388.297248][ T7184] CPU: 1 UID: 0 PID: 7184 Comm: syz.3.423 Tainted: G B 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0 [ 388.309655][ T7184] Tainted: [B]=BAD_PAGE [ 388.313919][ T7184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 388.324135][ T7184] Call Trace: [ 388.327557][ T7184] [ 388.330627][ T7184] dump_stack_lvl+0x216/0x2d0 [ 388.335516][ T7184] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 388.341609][ T7184] dump_stack+0x1e/0x24 [ 388.345982][ T7184] panic+0x4e2/0xcf0 [ 388.350174][ T7184] ? kmsan_get_metadata+0xa1/0x1c0 [ 388.355573][ T7184] kmsan_report+0x2c7/0x2d0 [ 388.360314][ T7184] ? kmsan_internal_chain_origin+0xb0/0xd0 [ 388.366416][ T7184] ? __msan_warning+0x95/0x120 [ 388.371407][ T7184] ? sw842_compress+0x15eb/0x5990 [ 388.376676][ T7184] ? crypto842_scompress+0x4f/0x70 [ 388.382038][ T7184] ? scomp_acomp_comp_decomp+0x7c6/0xb90 [ 388.387931][ T7184] ? scomp_acomp_compress+0x32/0x40 [ 388.393324][ T7184] ? zswap_store+0x20e9/0x48a0 [ 388.398312][ T7184] ? swap_writepage+0xa67/0x1950 [ 388.403568][ T7184] ? shmem_writepage+0x2360/0x25a0 [ 388.408930][ T7184] ? shrink_folio_list+0x5dd2/0x8220 [ 388.414427][ T7184] ? evict_folios+0x94ed/0xb9c0 [ 388.419502][ T7184] ? try_to_shrink_lruvec+0xc58/0x1080 [ 388.425193][ T7184] ? shrink_lruvec+0x49a/0x47c0 [ 388.430414][ T7184] ? shrink_node+0x105e/0x51c0 [ 388.435396][ T7184] ? do_try_to_free_pages+0x820/0x2550 [ 388.441089][ T7184] ? try_to_free_mem_cgroup_pages+0x3fa/0xa60 [ 388.447369][ T7184] ? try_charge_memcg+0x71a/0x1780 [ 388.452764][ T7184] ? obj_cgroup_charge_pages+0x2cb/0x640 [ 388.458654][ T7184] ? __memcg_kmem_charge_page+0x151/0x520 [ 388.464717][ T7184] ? __alloc_frozen_pages_noprof+0x93d/0xe00 [ 388.470971][ T7184] ? alloc_pages_mpol+0x4cd/0x890 [ 388.476247][ T7184] ? alloc_pages_noprof+0x1b5/0x250 [ 388.481706][ T7184] ? io_region_allocate_pages+0x168/0x8b0 [ 388.487698][ T7184] ? io_create_region+0x6eb/0x810 [ 388.492913][ T7184] ? io_allocate_scq_urings+0x774/0xa50 [ 388.498691][ T7184] ? io_uring_create+0xabc/0x1440 [ 388.503949][ T7184] ? __se_sys_io_uring_setup+0x476/0x4d0 [ 388.509790][ T7184] ? __x64_sys_io_uring_setup+0x6c/0xa0 [ 388.515558][ T7184] ? x64_sys_call+0x2e82/0x3c30 [ 388.520574][ T7184] ? do_syscall_64+0xcd/0x1e0 [ 388.525460][ T7184] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 388.531781][ T7184] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 388.538044][ T7184] ? kmsan_get_metadata+0x13e/0x1c0 [ 388.543492][ T7184] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 388.549569][ T7184] ? add_bits+0xe9a/0xf70 [ 388.554147][ T7184] ? kmsan_get_metadata+0x13e/0x1c0 [ 388.559583][ T7184] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 388.565633][ T7184] __msan_warning+0x95/0x120 [ 388.570416][ T7184] sw842_compress+0x15eb/0x5990 [ 388.575561][ T7184] crypto842_scompress+0x4f/0x70 [ 388.580721][ T7184] ? __pfx_crypto842_scompress+0x10/0x10 [ 388.586542][ T7184] scomp_acomp_comp_decomp+0x7c6/0xb90 [ 388.592285][ T7184] ? __pfx_scomp_acomp_compress+0x10/0x10 [ 388.598269][ T7184] scomp_acomp_compress+0x32/0x40 [ 388.603542][ T7184] zswap_store+0x20e9/0x48a0 [ 388.608423][ T7184] ? folio_free_swap+0x5b6/0xc50 [ 388.613623][ T7184] swap_writepage+0xa67/0x1950 [ 388.618562][ T7184] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 388.625217][ T7184] shmem_writepage+0x2360/0x25a0 [ 388.630408][ T7184] ? kmsan_get_metadata+0x13e/0x1c0 [ 388.635773][ T7184] ? __pfx_shmem_writepage+0x10/0x10 [ 388.641251][ T7184] shrink_folio_list+0x5dd2/0x8220 [ 388.646809][ T7184] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 388.652878][ T7184] ? cgroup_rstat_updated+0xed/0xb90 [ 388.658529][ T7184] ? filter_irq_stacks+0x60/0x1a0 [ 388.663797][ T7184] ? kmsan_get_metadata+0x13e/0x1c0 [ 388.669356][ T7184] evict_folios+0x94ed/0xb9c0 [ 388.674382][ T7184] try_to_shrink_lruvec+0xc58/0x1080 [ 388.679959][ T7184] shrink_lruvec+0x49a/0x47c0 [ 388.684916][ T7184] ? kmsan_get_metadata+0x13e/0x1c0 [ 388.690339][ T7184] ? kmsan_get_metadata+0x13e/0x1c0 [ 388.695772][ T7184] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 388.701824][ T7184] ? page_counter_calculate_protection+0x289/0xa50 [ 388.708610][ T7184] ? mem_cgroup_iter+0xa9f/0xcb0 [ 388.713775][ T7184] ? kmsan_get_metadata+0x13e/0x1c0 [ 388.719205][ T7184] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 388.725257][ T7184] ? kmsan_get_metadata+0x13e/0x1c0 [ 388.730685][ T7184] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 388.736732][ T7184] shrink_node+0x105e/0x51c0 [ 388.741624][ T7184] do_try_to_free_pages+0x820/0x2550 [ 388.747248][ T7184] try_to_free_mem_cgroup_pages+0x3fa/0xa60 [ 388.753481][ T7184] try_charge_memcg+0x71a/0x1780 [ 388.758702][ T7184] ? kmsan_get_shadow_origin_ptr+0x38/0xb0 [ 388.764782][ T7184] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 388.770857][ T7184] obj_cgroup_charge_pages+0x2cb/0x640 [ 388.776575][ T7184] __memcg_kmem_charge_page+0x151/0x520 [ 388.782349][ T7184] __alloc_frozen_pages_noprof+0x93d/0xe00 [ 388.788413][ T7184] alloc_pages_mpol+0x4cd/0x890 [ 388.793479][ T7184] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 388.799519][ T7184] alloc_pages_noprof+0x1b5/0x250 [ 388.804776][ T7184] io_region_allocate_pages+0x168/0x8b0 [ 388.810548][ T7184] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 388.816615][ T7184] io_create_region+0x6eb/0x810 [ 388.821683][ T7184] io_allocate_scq_urings+0x774/0xa50 [ 388.827291][ T7184] io_uring_create+0xabc/0x1440 [ 388.832361][ T7184] __se_sys_io_uring_setup+0x476/0x4d0 [ 388.838206][ T7184] __x64_sys_io_uring_setup+0x6c/0xa0 [ 388.843762][ T7184] x64_sys_call+0x2e82/0x3c30 [ 388.848629][ T7184] do_syscall_64+0xcd/0x1e0 [ 388.853304][ T7184] ? clear_bhb_loop+0x25/0x80 [ 388.858197][ T7184] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 388.864315][ T7184] RIP: 0033:0x7fee29f8cda9 [ 388.868879][ T7184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 388.888686][ T7184] RSP: 002b:00007fee2ad72fc8 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 388.897290][ T7184] RAX: ffffffffffffffda RBX: 00007fee2a1a5fa0 RCX: 00007fee29f8cda9 [ 388.905419][ T7184] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000003665 [ 388.913550][ T7184] RBP: 0000000020000100 R08: 0000000000000000 R09: 0000000000000000 [ 388.921668][ T7184] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000 [ 388.929788][ T7184] R13: 0000000000000000 R14: 0000000000003665 R15: 0000000000000000 [ 388.937923][ T7184] [ 388.941364][ T7184] Kernel Offset: disabled [ 388.945796][ T7184] Rebooting in 86400 seconds..