last executing test programs: 9.055269433s ago: executing program 0 (id=709): sched_setaffinity(0x0, 0x0, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = socket$inet6(0xa, 0x3, 0x6) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@dev, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@empty, 0x8000000, 0x6c}, 0x0, @in6=@mcast2, 0x0, 0x0, 0x0, 0xfd}}, 0xe8) sendmmsg(r1, &(0x7f0000000480), 0x2e9, 0xfc) r2 = epoll_create1(0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) recvmmsg(r3, 0x0, 0x0, 0x2, 0x0) r4 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r2, 0x0) read$FUSE(0xffffffffffffffff, 0x0, 0x0) setsockopt$CAN_RAW_FILTER(0xffffffffffffffff, 0x65, 0x1, &(0x7f0000000180), 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4000004, 0x32, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) setsockopt$ax25_int(0xffffffffffffffff, 0x101, 0xc, 0x0, 0x0) 7.314793716s ago: executing program 0 (id=716): mkdir(&(0x7f0000000400)='.\x00', 0xa0e1d339b8f672d7) 7.10479864s ago: executing program 0 (id=717): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sysvipc/shm\x00', 0x0, 0x0) r1 = syz_open_procfs$pagemap(0x0, &(0x7f0000001080)) madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe) madvise(&(0x7f0000cf6000/0x4000)=nil, 0x4000, 0x16) ioctl$PAGEMAP_SCAN(r1, 0xc0606610, 0x0) socket$packet(0x11, 0x0, 0x300) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x1, 0x0) r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0) r6 = dup(r5) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r6, r6, 0x0, 0x20003) keyctl$set_timeout(0xf, 0x0, 0xe000) r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000000)=0x15) read$FUSE(r0, &(0x7f0000003d80)={0x2020}, 0x1a4e) syz_open_dev$tty1(0xc, 0x4, 0x1) 6.692320653s ago: executing program 4 (id=721): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000a40), 0xc00) ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r0, 0xc0105303, 0x0) 5.912441255s ago: executing program 4 (id=724): syz_open_dev$cec(&(0x7f0000000540), 0x0, 0x80300) r0 = syz_io_uring_setup(0xed0, &(0x7f0000000080)={0x0, 0x4, 0x13300, 0x2}, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r0, 0xa3d, 0x0, 0x0, 0x0, 0xff39) 5.564995042s ago: executing program 3 (id=725): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$TEAM_CMD_NOOP(0xffffffffffffffff, &(0x7f0000000a00)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1100420}, 0xc, &(0x7f00000009c0)={&(0x7f0000000c00)=ANY=[], 0xb0}, 0x1, 0x0, 0x0, 0xc880}, 0x20044004) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x10001) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) umount2(0x0, 0xc) preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x10) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000005c0)=ANY=[@ANYBLOB], 0x7c}}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYRESOCT=r0, @ANYRES32=r0, @ANYBLOB="000080000000000018003480050035"], 0x38}, 0x1, 0x300}, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb01001800000000000000300000003000000005000000000000000100000408000000000000000300000010000000000000000000000200000000030000000000000f04000000"], 0x0, 0x4d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[], 0x38}, 0x1, 0x300}, 0x400c2) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x1f, 0xf, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b702000014000010b7030000000000008500000083000000bf0900000000000055090100"], &(0x7f0000000bc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = socket$nl_crypto(0x10, 0x3, 0x15) sendmsg$nl_crypto(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=@get={0xe0, 0x13, 0x0, 0x0, 0x0, {{'streebog512-generic\x00'}}}, 0xe0}}, 0x0) sendmsg$DEVLINK_CMD_RATE_NEW(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0) sendmsg$nl_crypto(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="f0000000120003"], 0xf0}}, 0x0) 5.136650538s ago: executing program 1 (id=727): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="18000002000000000000000000000000070200006111960884fc57f0532d6bbfd3ac1144a81714d8c76790b9e5beef8421c8b08937dd741474175608bcd18c03f1d7c30b844b6175581d56b8aca9bb7aa34a327469eae6c23621577c7b75e47e37a89b33e42bdaa8c9"], 0x18}, 0x1, 0x5502000000000000}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x0, 0x1a, &(0x7f0000000240)=ANY=[@ANYBLOB="180500f1a1d739470d00"/20, @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018200000", @ANYRES32, @ANYBLOB="00000000000000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000060000000500000010000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x5, @void, @value}, 0x90) write$UHID_CREATE2(r0, &(0x7f00000002c0)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0) r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0) ioctl$SG_NEXT_CMD_LEN(r1, 0xc0481273, &(0x7f0000000000)) 5.003444486s ago: executing program 4 (id=728): r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x75, 0x109301) ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000380)=@urb_type_bulk={0x3, {0x1, 0x1}, 0x13ff, 0x0, &(0x7f0000000340)='\x00', 0x1, 0x0, 0x5, 0x2, 0xfffffffc, 0x5, 0x0}) ioctl$USBDEVFS_SETINTERFACE(r0, 0x80085504, &(0x7f0000000140)={0x0, 0x6}) 4.048422285s ago: executing program 2 (id=729): r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f00000000c0)={0x8, 0x1, 0x0, 0x0, @vifc_lcl_addr=@private=0xa010100, @multicast1=0xe0000300}, 0x10) 4.04253772s ago: executing program 3 (id=730): setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'dh\x00'}, 0x2c) setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x483, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'nq\x00'}, 0x2c) 3.472565142s ago: executing program 3 (id=731): r0 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000011c0)={'vxcan0\x00', 0x0}) bind$can_j1939(r0, &(0x7f00000000c0)={0x1d, r1, 0x100000, {0x0, 0xff, 0x4}}, 0x18) connect$can_j1939(r0, &(0x7f0000000080)={0x1d, r1}, 0x18) writev(r0, &(0x7f0000000240)=[{&(0x7f0000000000)='h', 0xfdef}], 0x1) 3.330369038s ago: executing program 4 (id=732): sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x48000) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f00000008c0)={0x79, 0x0, 0x1}) ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000540)=ANY=[@ANYBLOB="02000000000000001700000002"]) 3.264940898s ago: executing program 1 (id=733): r0 = socket(0x2a, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0) getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=@newtfilter={0x24, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0x9}, {0xc}, {0x1c, 0xfff1}}}, 0x24}}, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0) 3.172124031s ago: executing program 2 (id=734): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="8c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000400012800b000100697036677265000030000280140007002001000000000000000000000000000014000600fc02"], 0x8c}, 0x1, 0x0, 0x0, 0x800}, 0x0) 2.982120993s ago: executing program 3 (id=735): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100)) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000280)=[@increfs], 0x0, 0x0, 0x0}) r2 = dup3(r1, r0, 0x0) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000480)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0xffffffff, 0x11, 0x0, 0x0, 0x58, 0x18, &(0x7f0000000400)={@fd={0x66642a85, 0x0, r0}, @ptr={0x70742a85, 0x0, &(0x7f0000000f00)=""/4096, 0x1000, 0x2, 0x37}, @fd={0x66642a85, 0x0, r0}}, &(0x7f0000000200)={0x0, 0x18, 0x40}}}], 0x0, 0x0, 0x0}) 2.686070895s ago: executing program 1 (id=736): r0 = socket$kcm(0x10, 0x2, 0x0) r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r1, 0xf, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00'}, 0x10) sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16, @ANYBLOB], 0x60}}, 0x0) sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)="2e00000010008188e6b62aa73f72cc9f0ba1f848140000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0) 2.404348643s ago: executing program 4 (id=737): ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000001040)={'gre0\x00', &(0x7f0000000000)={'syztnl2\x00', 0x0, 0x0, 0xab00, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x2f, 0x0, @empty, @empty}}}}) 2.366764934s ago: executing program 2 (id=738): sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f848290000005e14", 0x1a}], 0x1}, 0x0) r0 = socket$kcm(0x10, 0x400000002, 0x0) write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="1c0000005e"], 0xfe33) 2.206656161s ago: executing program 3 (id=739): socket$alg(0x26, 0x5, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0) mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) r1 = userfaultfd(0x80001) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0)) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1}) madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19) r2 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/59, 0x304000, 0x800}, 0x20) ioctl$UFFDIO_COPY(r1, 0xc028aa05, &(0x7f0000000040)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000000/0x3000)=nil, 0x3000}) syz_fuse_handle_req(r0, &(0x7f0000004140)="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", 0x2000, &(0x7f0000000440)={&(0x7f00000002c0)={0x50}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_fuse_handle_req(r0, 0x0, 0x0, 0x0) 1.896617249s ago: executing program 4 (id=740): r0 = syz_io_uring_setup(0x1114, &(0x7f0000000300)={0x0, 0x35fe}, &(0x7f00000001c0)=0x0, &(0x7f0000000040)) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) io_uring_enter(r0, 0x47fa, 0x0, 0x0, 0x0, 0x0) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000042c0)='fdinfo/3\x00') r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00') ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x200000a}) ioctl$SCSI_IOCTL_GET_PCI(0xffffffffffffffff, 0x5393, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000020c0)=0xfffffffffffffffd) syz_io_uring_submit(0x0, 0x0, &(0x7f0000002100)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}) io_uring_enter(r3, 0x5b53, 0xfffffffc, 0x0, 0x0, 0x0) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$SNDCTL_DSP_SETFRAGMENT(0xffffffffffffffff, 0xc004500a, &(0x7f0000000040)) r5 = memfd_create(&(0x7f00000005c0)='\x00\xc76\xbe\x91\x8d\x182)!\x9a%\xa2\xd28\xd6\x06\a\x0e\xfc\xfe\x12\x8f&\x13\xae%@T\xa3\xb0>\\\xec\xa9\xf9Q@6A\x10\x8cn|\x00\x00\x00\x00\x00\x00\x00\x00\xeb0\xdd\xe8\x87\x05=\xfb\x8b$\xdcQ\xee\xc5\x1f\x8bQ\xf7fo\"i\xa1hk\x1d\xf5z\xc1\x7f\xa4\\]\xc4\xbe3\xf9\xa8\t?:\xd8\xda\x84\xeepI[\x1c\x00\x00\x00\x00\xf9v\x00\x00\x00\x00\x00T\xb6\xbe\x0f~\xc0\x92\xe9O{\xa8\x81(\x01\x14\xfc\x83\xf9\xfb\x05\x94Tr@Lq]\xf9\x15zj\x87\xc4\x8e\xe8/\xb9-&R\x8e\xb2\xb3bBx\x1e1\x18\x8f\x19\xf7]#\xed,\xc7\x11\tp\xf4\xa3\xee\xcb\xaf\xb3\xe3\'}\x18\xe8O\xa8#K\xb6\xe4U\x92\xd2\x99\xb80x0}) sendmsg$NL80211_CMD_ASSOCIATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)={0x20, r1, 0x1, 0x70bd2b, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_SSID={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000815}, 0x850) 290.294µs ago: executing program 1 (id=749): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) r2 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f00000004c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000001700000095"], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000080)={r4, r3, 0x25, 0x2, @val=@tracing}, 0x40) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'syz_tun\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32=r5], 0x20}}, 0x0) 0s ago: executing program 2 (id=750): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, 0x0, 0x0) sendmmsg$unix(r2, 0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r3 = socket(0x8000000010, 0x2, 0x0) write(r3, &(0x7f00000002c0)="fc0000001c000704ab5b2509b868030002ab087a010000003f481093210001c0f0030584050060100000000000039815fa2c53c28648000000b9d95662537a00bc000c00f0ff7f0000b400600033d44000040560916a0033f436313012dafd5a32e273fc83ab82d710f74cec184406f90d435ef8b29d3ef3d92c94170e5bba2e177312e081bea05d3a021e8ca062914a46ccfc510bb73c9455cdc8363ae4f5df77bc4cfd6239ec2a0f0d1bcae5fa0f5f9dcdd51af51af8502943283f4bb102b2b8f5566791cf190201ded815b2ccd243f395ed94e0ad91bd6433802e0784f2013cd1890058a10000c880ac801fe4af000049f0d4796f0000090548de", 0xfc) kernel console output (not intermixed with test programs): MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 565.034587][ T6631] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 565.176428][ T6638] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 565.243131][ T6638] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 565.274036][ T6634] hsr_slave_0: entered promiscuous mode [ 565.302150][ T6634] hsr_slave_1: entered promiscuous mode [ 565.405249][ T6625] hsr_slave_0: entered promiscuous mode [ 565.418680][ T6625] hsr_slave_1: entered promiscuous mode [ 565.432604][ T6625] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 565.440855][ T6625] Cannot create hsr debugfs directory [ 565.855176][ T6631] hsr_slave_0: entered promiscuous mode [ 565.880822][ T6631] hsr_slave_1: entered promiscuous mode [ 565.908121][ T6631] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 565.916092][ T6631] Cannot create hsr debugfs directory [ 566.063222][ T6629] hsr_slave_0: entered promiscuous mode [ 566.122072][ T6629] hsr_slave_1: entered promiscuous mode [ 566.146254][ T6629] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 566.154103][ T6629] Cannot create hsr debugfs directory [ 566.252066][ T6638] team0: Port device team_slave_0 added [ 566.361630][ T967] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 566.471935][ T6638] team0: Port device team_slave_1 added [ 566.652237][ T967] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 566.957213][ T967] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 567.014666][ T6638] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 567.025415][ T6638] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 567.052860][ T6638] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 567.112861][ T6638] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 567.120566][ T6638] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 567.150565][ T6638] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 567.239970][ T967] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 567.899720][ T6638] hsr_slave_0: entered promiscuous mode [ 567.910879][ T6638] hsr_slave_1: entered promiscuous mode [ 567.920508][ T6638] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 567.928439][ T6638] Cannot create hsr debugfs directory [ 568.494587][ T967] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 568.644413][ T967] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 568.757773][ T967] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 568.880702][ T967] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 569.254434][ T967] bridge_slave_1: left allmulticast mode [ 569.262956][ T967] bridge_slave_1: left promiscuous mode [ 569.270361][ T967] bridge0: port 2(bridge_slave_1) entered disabled state [ 569.320968][ T967] bridge_slave_0: left allmulticast mode [ 569.327290][ T967] bridge_slave_0: left promiscuous mode [ 569.333984][ T967] bridge0: port 1(bridge_slave_0) entered disabled state [ 569.359613][ T967] bridge_slave_1: left allmulticast mode [ 569.367022][ T967] bridge_slave_1: left promiscuous mode [ 569.374853][ T967] bridge0: port 2(bridge_slave_1) entered disabled state [ 569.415127][ T967] bridge_slave_0: left allmulticast mode [ 569.422308][ T967] bridge_slave_0: left promiscuous mode [ 569.429129][ T967] bridge0: port 1(bridge_slave_0) entered disabled state [ 569.457438][ T967] bridge_slave_1: left allmulticast mode [ 569.463378][ T967] bridge_slave_1: left promiscuous mode [ 569.470159][ T967] bridge0: port 2(bridge_slave_1) entered disabled state [ 569.502536][ T967] bridge_slave_0: left allmulticast mode [ 569.510477][ T967] bridge_slave_0: left promiscuous mode [ 569.519160][ T967] bridge0: port 1(bridge_slave_0) entered disabled state [ 569.535418][ T967] bridge_slave_1: left allmulticast mode [ 569.541702][ T967] bridge_slave_1: left promiscuous mode [ 569.551261][ T967] bridge0: port 2(bridge_slave_1) entered disabled state [ 569.576613][ T967] bridge_slave_0: left allmulticast mode [ 569.586561][ T967] bridge_slave_0: left promiscuous mode [ 569.593290][ T967] bridge0: port 1(bridge_slave_0) entered disabled state [ 571.212574][ T967] team0: Port device geneve0 removed [ 571.472158][ T967] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 571.492201][ T967] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 571.510022][ T967] bond0 (unregistering): Released all slaves [ 571.538161][ T967] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 571.553828][ T967] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 571.594355][ T967] bond0 (unregistering): Released all slaves [ 571.617837][ T967] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 571.663364][ T967] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 571.679053][ T967] bond0 (unregistering): Released all slaves [ 571.702986][ T967] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 571.724984][ T967] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 571.760548][ T967] bond0 (unregistering): Released all slaves [ 573.260832][ T6631] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 573.351343][ T6631] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 573.400265][ T6631] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 573.451083][ T6631] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 573.915351][ T6625] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 574.052726][ T6625] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 574.195758][ T6634] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 574.228714][ T6625] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 574.286793][ T6634] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 574.321551][ T6625] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 574.408219][ T6634] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 574.554855][ T6634] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 574.696844][ T6629] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 574.755110][ T6629] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 574.844594][ T6638] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 574.869741][ T6638] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 574.914030][ T6629] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 575.057324][ T6638] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 575.104019][ T6629] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 575.158214][ T6638] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 575.873732][ T967] hsr_slave_0: left promiscuous mode [ 575.882638][ T967] hsr_slave_1: left promiscuous mode [ 575.891824][ T967] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 575.900056][ T967] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 575.917172][ T967] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 575.924869][ T967] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 575.951549][ T967] hsr_slave_0: left promiscuous mode [ 575.959086][ T967] hsr_slave_1: left promiscuous mode [ 575.973806][ T967] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 575.981860][ T967] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 575.993133][ T967] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 576.001043][ T967] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 576.028724][ T967] hsr_slave_0: left promiscuous mode [ 576.037515][ T967] hsr_slave_1: left promiscuous mode [ 576.045248][ T967] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 576.053241][ T967] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 576.065908][ T967] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 576.073737][ T967] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 576.104792][ T967] hsr_slave_0: left promiscuous mode [ 576.112619][ T967] hsr_slave_1: left promiscuous mode [ 576.123269][ T967] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 576.131176][ T967] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 576.148539][ T967] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 576.159403][ T967] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 576.201824][ T967] veth1_macvtap: left promiscuous mode [ 576.208577][ T967] veth0_macvtap: left promiscuous mode [ 576.214402][ T967] veth1_vlan: left promiscuous mode [ 576.220199][ T967] veth0_vlan: left promiscuous mode [ 576.228087][ T967] veth1_macvtap: left promiscuous mode [ 576.233927][ T967] veth0_macvtap: left promiscuous mode [ 576.240060][ T967] veth1_vlan: left promiscuous mode [ 576.245776][ T967] veth0_vlan: left promiscuous mode [ 576.257780][ T967] veth1_macvtap: left promiscuous mode [ 576.263587][ T967] veth0_macvtap: left promiscuous mode [ 576.269679][ T967] veth1_vlan: left promiscuous mode [ 576.275191][ T967] veth0_vlan: left promiscuous mode [ 576.282608][ T967] veth1_macvtap: left promiscuous mode [ 576.288477][ T967] veth0_macvtap: left promiscuous mode [ 576.294297][ T967] veth1_vlan: left promiscuous mode [ 576.300084][ T967] veth0_vlan: left promiscuous mode [ 577.733426][ T967] team0 (unregistering): Port device team_slave_1 removed [ 577.782958][ T967] team0 (unregistering): Port device team_slave_0 removed [ 578.351373][ T967] team0 (unregistering): Port device team_slave_1 removed [ 578.396931][ T967] team0 (unregistering): Port device team_slave_0 removed [ 578.892684][ T967] team0 (unregistering): Port device team_slave_1 removed [ 578.999426][ T967] team0 (unregistering): Port device team_slave_0 removed [ 579.527106][ T967] team0 (unregistering): Port device team_slave_1 removed [ 579.581065][ T967] team0 (unregistering): Port device team_slave_0 removed [ 580.073997][ T6631] 8021q: adding VLAN 0 to HW filter on device bond0 [ 580.523960][ T6631] 8021q: adding VLAN 0 to HW filter on device team0 [ 580.602476][ T6625] 8021q: adding VLAN 0 to HW filter on device bond0 [ 580.693838][ T3214] bridge0: port 1(bridge_slave_0) entered blocking state [ 580.701903][ T3214] bridge0: port 1(bridge_slave_0) entered forwarding state [ 580.802693][ T6625] 8021q: adding VLAN 0 to HW filter on device team0 [ 580.828581][ T3214] bridge0: port 2(bridge_slave_1) entered blocking state [ 580.836350][ T3214] bridge0: port 2(bridge_slave_1) entered forwarding state [ 580.986169][ T6629] 8021q: adding VLAN 0 to HW filter on device bond0 [ 581.105197][ T3214] bridge0: port 1(bridge_slave_0) entered blocking state [ 581.113064][ T3214] bridge0: port 1(bridge_slave_0) entered forwarding state [ 581.140321][ T3214] bridge0: port 2(bridge_slave_1) entered blocking state [ 581.148198][ T3214] bridge0: port 2(bridge_slave_1) entered forwarding state [ 581.174687][ T6634] 8021q: adding VLAN 0 to HW filter on device bond0 [ 581.277283][ T6638] 8021q: adding VLAN 0 to HW filter on device bond0 [ 581.297928][ T6629] 8021q: adding VLAN 0 to HW filter on device team0 [ 581.562817][ T6634] 8021q: adding VLAN 0 to HW filter on device team0 [ 581.594625][ T6638] 8021q: adding VLAN 0 to HW filter on device team0 [ 581.680741][ T6631] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 581.755759][ T3214] bridge0: port 1(bridge_slave_0) entered blocking state [ 581.763461][ T3214] bridge0: port 1(bridge_slave_0) entered forwarding state [ 581.779761][ T3214] bridge0: port 2(bridge_slave_1) entered blocking state [ 581.787606][ T3214] bridge0: port 2(bridge_slave_1) entered forwarding state [ 581.930005][ T6625] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 581.979990][ T3214] bridge0: port 1(bridge_slave_0) entered blocking state [ 581.987856][ T3214] bridge0: port 1(bridge_slave_0) entered forwarding state [ 582.004998][ T3214] bridge0: port 2(bridge_slave_1) entered blocking state [ 582.012855][ T3214] bridge0: port 2(bridge_slave_1) entered forwarding state [ 582.052375][ T3214] bridge0: port 1(bridge_slave_0) entered blocking state [ 582.060276][ T3214] bridge0: port 1(bridge_slave_0) entered forwarding state [ 582.282594][ T3214] bridge0: port 2(bridge_slave_1) entered blocking state [ 582.290651][ T3214] bridge0: port 2(bridge_slave_1) entered forwarding state [ 582.512858][ T6638] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 582.526933][ T6638] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 582.644613][ T6629] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 582.655783][ T6629] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 582.939970][ T6634] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 584.009512][ T6631] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 584.694827][ T6631] veth0_vlan: entered promiscuous mode [ 584.836347][ T6625] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 584.889566][ T6631] veth1_vlan: entered promiscuous mode [ 585.364968][ T6638] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 585.413275][ T6631] veth0_macvtap: entered promiscuous mode [ 585.494274][ T6629] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 585.548679][ T6625] veth0_vlan: entered promiscuous mode [ 585.569069][ T6631] veth1_macvtap: entered promiscuous mode [ 585.601314][ T6634] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 585.761032][ T6625] veth1_vlan: entered promiscuous mode [ 585.889981][ T6631] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 586.061829][ T6631] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 586.215097][ T6629] veth0_vlan: entered promiscuous mode [ 586.251991][ T6631] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 586.261423][ T6631] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 586.270707][ T6631] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 586.280022][ T6631] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 586.404511][ T6625] veth0_macvtap: entered promiscuous mode [ 586.428812][ T6629] veth1_vlan: entered promiscuous mode [ 586.509316][ T6625] veth1_macvtap: entered promiscuous mode [ 586.604962][ T6634] veth0_vlan: entered promiscuous mode [ 586.735248][ T6634] veth1_vlan: entered promiscuous mode [ 586.769057][ T6625] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 586.783242][ T6625] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 586.799011][ T6625] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 586.982887][ T6625] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 586.993991][ T6625] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 587.009622][ T6625] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 587.095472][ T6629] veth0_macvtap: entered promiscuous mode [ 587.224215][ T6629] veth1_macvtap: entered promiscuous mode [ 587.276772][ T6625] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 587.287758][ T6625] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 587.297093][ T6625] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 587.306354][ T6625] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 587.346805][ T6634] veth0_macvtap: entered promiscuous mode [ 587.438616][ T6634] veth1_macvtap: entered promiscuous mode [ 587.544490][ T6629] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 587.555628][ T6629] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 587.565903][ T6629] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 587.576729][ T6629] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 587.592283][ T6629] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 587.769897][ T6634] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 587.780932][ T6634] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 587.791210][ T6634] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 587.802038][ T6634] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 587.812309][ T6634] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 587.823170][ T6634] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 587.839230][ T6634] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 587.944874][ T6629] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 587.956045][ T6629] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 587.966328][ T6629] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 587.978053][ T6629] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 587.994368][ T6629] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 588.084366][ T6634] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 588.096369][ T6634] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 588.106902][ T6634] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 588.120025][ T6634] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 588.130304][ T6634] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 588.142744][ T6634] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 588.161567][ T6634] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 588.243003][ T6629] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 588.253926][ T6629] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 588.263297][ T6629] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 588.274549][ T6629] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 588.503226][ T6634] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 588.515452][ T6634] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 588.527310][ T6634] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 588.537309][ T6634] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 589.370782][ T6638] veth0_vlan: entered promiscuous mode [ 589.527737][ T6638] veth1_vlan: entered promiscuous mode [ 590.024906][ T6638] veth0_macvtap: entered promiscuous mode [ 590.186497][ T6638] veth1_macvtap: entered promiscuous mode [ 590.448232][ T6638] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 590.462232][ T6638] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 590.473532][ T6638] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 590.484399][ T6638] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 590.494620][ T6638] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 590.505664][ T6638] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 590.515862][ T6638] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 590.526858][ T6638] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 590.548630][ T6638] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 590.803848][ T6638] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 590.816388][ T6638] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 590.827560][ T6638] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 590.838414][ T6638] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 590.848696][ T6638] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 590.860459][ T6638] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 590.871269][ T6638] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 590.882167][ T6638] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 590.898455][ T6638] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 591.222911][ T6638] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 591.232335][ T6638] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 591.241733][ T6638] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 591.251000][ T6638] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 596.073531][ T2923] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 596.083206][ T2923] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 596.388364][ T2923] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 596.397384][ T2923] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 596.547513][ T3002] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 596.555888][ T3002] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 596.760322][ T3002] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 596.769860][ T3002] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 597.426175][ T2923] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 597.437168][ T2923] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 597.457623][ T6883] loop2: detected capacity change from 0 to 512 [ 597.466769][ T6883] EXT4-fs: Ignoring removed mblk_io_submit option [ 597.572737][ T6883] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 597.633941][ T3374] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 597.645452][ T3374] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 597.730243][ T6887] netlink: 8 bytes leftover after parsing attributes in process `syz.0.176'. [ 597.808310][ T3002] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 597.816645][ T3002] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 597.916175][ T6880] loop2: detected capacity change from 0 to 256 [ 597.954653][ T1235] ieee802154 phy0 wpan0: encryption failed: -22 [ 597.958567][ T6880] vfat: Unknown parameter '0xffffffffffffffff' [ 597.962795][ T1235] ieee802154 phy1 wpan1: encryption failed: -22 [ 598.118351][ T3002] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 598.126723][ T3002] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 598.594835][ T6887] loop0: detected capacity change from 0 to 2048 [ 598.669513][ T6896] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 598.747775][ T6896] NILFS (loop0): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 598.759087][ T6896] NILFS error (device loop0): nilfs_bmap_propagate: broken bmap (inode number=4) [ 598.814926][ T6893] loop1: detected capacity change from 0 to 256 [ 598.898769][ T6893] exfat: Unknown parameter 'syzkaller' [ 598.898927][ T6896] Remounting filesystem read-only [ 599.875333][ T5200] Bluetooth: hci7: unexpected event 0x3e length: 756 > 260 [ 599.875713][ T5200] Bluetooth: hci7: unexpected subevent 0x0d length: 755 > 260 [ 599.893175][ T5200] Bluetooth: hci7: adv larger than maximum supported [ 599.893303][ T5200] Bluetooth: hci7: adv larger than maximum supported [ 599.901044][ T5200] Bluetooth: hci7: adv larger than maximum supported [ 599.908485][ T5200] Bluetooth: hci7: adv larger than maximum supported [ 599.915415][ T5200] Bluetooth: hci7: adv larger than maximum supported [ 601.046000][ T6913] loop2: detected capacity change from 0 to 4096 [ 601.104299][ T6918] loop1: detected capacity change from 0 to 512 [ 601.315134][ T6913] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 601.323646][ T6913] ntfs3: loop2: Failed to load $UpCase (-22). [ 601.992494][ T6918] EXT4-fs error (device loop1): ext4_quota_enable:7049: comm syz.1.184: Bad quota inum: 1, type: 2 [ 602.197714][ T2923] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 602.205936][ T2923] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 602.289100][ T2949] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 602.297645][ T2949] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 602.309190][ T6918] EXT4-fs warning (device loop1): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=1). Please run e2fsck to fix. [ 602.405302][ T6918] EXT4-fs (loop1): mount failed [ 602.638260][ T6918] loop2: detected capacity change from 0 to 7 [ 602.724329][ T6938] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491 [ 602.746960][ T6918] Dev loop2: unable to read RDB block 7 [ 602.753028][ T6918] loop2: unable to read partition table [ 602.841938][ T6918] loop2: partition table beyond EOD, truncated [ 602.849665][ T6918] loop_reread_partitions: partition scan of loop2 (þ被) failed (rc=-5) [ 603.257218][ T6937] loop0: detected capacity change from 0 to 256 [ 603.528345][ T6948] loop2: detected capacity change from 0 to 512 [ 603.537636][ T6948] EXT4-fs: Ignoring removed mblk_io_submit option [ 603.703345][ T6948] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 603.745749][ T6946] loop4: detected capacity change from 0 to 256 [ 603.842265][ T6944] loop2: detected capacity change from 0 to 256 [ 603.858494][ T6944] vfat: Unknown parameter '0xffffffffffffffff' [ 604.610503][ T6950] netlink: 4 bytes leftover after parsing attributes in process `syz.1.190'. [ 604.882777][ T5200] Bluetooth: hci0: unexpected event 0x3e length: 780 > 260 [ 604.882953][ T5200] Bluetooth: hci0: unexpected subevent 0x0d length: 779 > 260 [ 604.898457][ T5200] Bluetooth: hci0: adv larger than maximum supported [ 604.898567][ T5200] Bluetooth: hci0: adv larger than maximum supported [ 604.905755][ T5200] Bluetooth: hci0: adv larger than maximum supported [ 604.917083][ T5200] Bluetooth: hci0: adv larger than maximum supported [ 604.924137][ T5200] Bluetooth: hci0: adv larger than maximum supported [ 605.046363][ T6950] loop1: detected capacity change from 0 to 2048 [ 605.072387][ T6950] udf: Bad value for 'fileset' [ 605.770784][ T6961] netlink: 8 bytes leftover after parsing attributes in process `syz.2.192'. [ 605.922488][ T6964] loop0: detected capacity change from 0 to 256 [ 606.032581][ T6964] exfat: Unknown parameter 'syzkaller' [ 606.536174][ T5200] Bluetooth: hci7: Controller not accepting commands anymore: ncmd = 0 [ 606.545074][ T5200] Bluetooth: hci7: Injecting HCI hardware error event [ 606.564665][ T52] Bluetooth: hci7: hardware error 0x00 [ 606.662393][ T6961] loop2: detected capacity change from 0 to 2048 [ 606.878262][ T6972] loop1: detected capacity change from 0 to 4096 [ 607.391666][ T6977] FAULT_INJECTION: forcing a failure. [ 607.391666][ T6977] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 607.405321][ T6977] CPU: 0 UID: 0 PID: 6977 Comm: syz.3.198 Not tainted 6.11.0-syzkaller-08481-g88264981f208 #0 [ 607.415939][ T6977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 607.426280][ T6977] Call Trace: [ 607.429783][ T6977] [ 607.432927][ T6977] dump_stack_lvl+0x216/0x2d0 [ 607.438014][ T6977] dump_stack+0x1e/0x30 [ 607.442485][ T6977] should_fail_ex+0x748/0x7f0 [ 607.447598][ T6977] should_fail+0x2a/0x40 [ 607.452209][ T6977] should_fail_usercopy+0x2e/0x40 [ 607.457650][ T6977] _copy_to_user+0x33/0x110 [ 607.462536][ T6977] bpf_verifier_vlog+0x669/0x1020 [ 607.467941][ T6977] btf_verifier_log+0x1fc/0x230 [ 607.473181][ T6977] ? kmsan_get_metadata+0x13e/0x1c0 [ 607.478797][ T6977] ? btf_func_proto_log+0xad/0xef0 [ 607.484259][ T6977] btf_func_proto_log+0x1f5/0xef0 [ 607.489648][ T6977] ? __pfx_btf_func_proto_log+0x10/0x10 [ 607.495554][ T6977] __btf_verifier_log_type+0x644/0x890 [ 607.501449][ T6977] ? btf_func_proto_check_meta+0x1bb/0x250 [ 607.507618][ T6977] ? sort_r+0x214e/0x2e40 [ 607.512318][ T6977] btf_func_proto_check_meta+0x1eb/0x250 [ 607.518305][ T6977] ? __pfx_btf_func_proto_check_meta+0x10/0x10 [ 607.524822][ T6977] btf_parse_type_sec+0x836/0x3e60 [ 607.530317][ T6977] ? btf_check_sec_info+0x58c/0x5d0 [ 607.535921][ T6977] btf_new_fd+0x129f/0x18f0 [ 607.540809][ T6977] bpf_btf_load+0x345/0x3a0 [ 607.545722][ T6977] __sys_bpf+0xab2/0xd90 [ 607.550370][ T6977] __x64_sys_bpf+0xa0/0xe0 [ 607.555158][ T6977] x64_sys_call+0x2cce/0x3ba0 [ 607.560332][ T6977] do_syscall_64+0xcd/0x1e0 [ 607.565174][ T6977] ? clear_bhb_loop+0x25/0x80 [ 607.570225][ T6977] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 607.576494][ T6977] RIP: 0033:0x7ff697b7def9 [ 607.581202][ T6977] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 607.601190][ T6977] RSP: 002b:00007ff69897e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 607.609996][ T6977] RAX: ffffffffffffffda RBX: 00007ff697d35f80 RCX: 00007ff697b7def9 [ 607.618286][ T6977] RDX: 0000000000000028 RSI: 00000000200000c0 RDI: 0000000000000012 [ 607.626573][ T6977] RBP: 00007ff69897e090 R08: 0000000000000000 R09: 0000000000000000 [ 607.634868][ T6977] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 607.643142][ T6977] R13: 0000000000000000 R14: 00007ff697d35f80 R15: 00007ffef8b23278 [ 607.651504][ T6977] [ 607.730428][ T6972] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 607.739800][ T6972] ntfs3: loop1: Failed to load $UpCase (-22). [ 607.801708][ T6980] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 608.017962][ T6980] NILFS (loop2): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 608.029838][ T6980] NILFS error (device loop2): nilfs_bmap_propagate: broken bmap (inode number=4) [ 608.116912][ T6980] Remounting filesystem read-only [ 608.625872][ T52] Bluetooth: hci7: Opcode 0x0c03 failed: -110 [ 609.506261][ T6993] loop3: detected capacity change from 0 to 512 [ 609.591183][ T6993] EXT4-fs error (device loop3): ext4_quota_enable:7049: comm syz.3.200: Bad quota inum: 1, type: 2 [ 609.655726][ T6993] EXT4-fs warning (device loop3): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=1). Please run e2fsck to fix. [ 609.887218][ T6993] EXT4-fs (loop3): mount failed [ 610.194133][ T6993] loop2: detected capacity change from 0 to 7 [ 610.437590][ T6993] Dev loop2: unable to read RDB block 7 [ 610.451682][ T6993] loop2: unable to read partition table [ 610.483386][ T6993] loop2: partition table beyond EOD, truncated [ 610.490459][ T6993] loop_reread_partitions: partition scan of loop2 (þ被) failed (rc=-5) [ 610.770348][ T7022] loop1: detected capacity change from 0 to 256 [ 610.779781][ T7022] exfat: Unknown parameter 'syzkaller' [ 611.924900][ T7020] netlink: 4 bytes leftover after parsing attributes in process `syz.4.205'. [ 612.228960][ T7020] loop4: detected capacity change from 0 to 2048 [ 612.354523][ T7020] udf: Bad value for 'fileset' [ 612.634281][ T5200] Bluetooth: hci6: Controller not accepting commands anymore: ncmd = 0 [ 612.643213][ T5200] Bluetooth: hci6: Injecting HCI hardware error event [ 612.653015][ T5200] Bluetooth: hci6: hardware error 0x00 [ 613.220312][ T7046] netlink: 8 bytes leftover after parsing attributes in process `syz.0.212'. [ 614.582487][ T7046] loop0: detected capacity change from 0 to 2048 [ 614.675172][ T7062] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 614.699971][ T5200] Bluetooth: hci6: Opcode 0x0c03 failed: -110 [ 614.867205][ T7062] NILFS (loop0): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 614.878742][ T7062] NILFS error (device loop0): nilfs_bmap_propagate: broken bmap (inode number=4) [ 614.978656][ T7062] Remounting filesystem read-only [ 615.463633][ T7073] loop1: detected capacity change from 0 to 64 [ 616.257593][ T7080] loop0: detected capacity change from 0 to 512 [ 616.374030][ T7082] loop3: detected capacity change from 0 to 256 [ 616.389464][ T7082] exfat: Unknown parameter 'syzkaller' [ 617.025070][ T7089] loop4: detected capacity change from 0 to 512 [ 617.035421][ T7089] EXT4-fs: Ignoring removed mblk_io_submit option [ 617.076782][ T7080] EXT4-fs error (device loop0): ext4_quota_enable:7049: comm syz.0.220: Bad quota inum: 1, type: 2 [ 617.090106][ T7089] EXT4-fs (loop4): VFS: Can't find ext4 filesystem [ 617.141047][ T7080] EXT4-fs warning (device loop0): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=1). Please run e2fsck to fix. [ 617.248309][ T10] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 617.620189][ T7080] EXT4-fs (loop0): mount failed [ 618.150212][ T7080] loop2: detected capacity change from 0 to 7 [ 618.211793][ T7080] Dev loop2: unable to read RDB block 7 [ 618.218116][ T7080] loop2: unable to read partition table [ 618.230844][ T7080] loop2: partition table beyond EOD, truncated [ 618.239527][ T7080] loop_reread_partitions: partition scan of loop2 (þ被) failed (rc=-5) [ 618.257257][ T10] usb 4-1: device descriptor read/64, error -71 [ 619.169391][ T10] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 619.326233][ T10] usb 4-1: device descriptor read/64, error -71 [ 619.519747][ T10] usb usb4-port1: attempt power cycle [ 619.788166][ T7117] netlink: 4 bytes leftover after parsing attributes in process `syz.0.225'. [ 619.980301][ T10] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 620.122418][ T10] usb 4-1: device descriptor read/8, error -71 [ 620.639693][ T7129] FAULT_INJECTION: forcing a failure. [ 620.639693][ T7129] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 620.654148][ T7129] CPU: 0 UID: 0 PID: 7129 Comm: syz.3.230 Not tainted 6.11.0-syzkaller-08481-g88264981f208 #0 [ 620.664839][ T7129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 620.675145][ T7129] Call Trace: [ 620.678662][ T7129] [ 620.681815][ T7129] dump_stack_lvl+0x216/0x2d0 [ 620.686835][ T7129] dump_stack+0x1e/0x30 [ 620.691280][ T7129] should_fail_ex+0x748/0x7f0 [ 620.696304][ T7129] should_fail+0x2a/0x40 [ 620.700834][ T7129] should_fail_usercopy+0x2e/0x40 [ 620.706210][ T7129] _copy_to_user+0x33/0x110 [ 620.711045][ T7129] bpf_test_finish+0x488/0xca0 [ 620.716176][ T7129] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 620.722336][ T7129] bpf_prog_test_run_xdp+0x10b1/0x1ae0 [ 620.728193][ T7129] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 620.734378][ T7129] bpf_prog_test_run+0x6b1/0xac0 [ 620.739669][ T7129] __sys_bpf+0x6aa/0xd90 [ 620.744249][ T7129] __x64_sys_bpf+0xa0/0xe0 [ 620.748970][ T7129] x64_sys_call+0x2cce/0x3ba0 [ 620.753961][ T7129] do_syscall_64+0xcd/0x1e0 [ 620.758739][ T7129] ? clear_bhb_loop+0x25/0x80 [ 620.763740][ T7129] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 620.769937][ T7129] RIP: 0033:0x7ff697b7def9 [ 620.774589][ T7129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 620.794508][ T7129] RSP: 002b:00007ff69897e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 620.803248][ T7129] RAX: ffffffffffffffda RBX: 00007ff697d35f80 RCX: 00007ff697b7def9 [ 620.811497][ T7129] RDX: 0000000000000057 RSI: 0000000020000240 RDI: 000000000000000a [ 620.819735][ T7129] RBP: 00007ff69897e090 R08: 0000000000000000 R09: 0000000000000000 [ 620.827952][ T7129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 620.836167][ T7129] R13: 0000000000000000 R14: 00007ff697d35f80 R15: 00007ffef8b23278 [ 620.844427][ T7129] [ 620.984448][ T7117] loop0: detected capacity change from 0 to 2048 [ 621.010692][ T7117] udf: Bad value for 'fileset' [ 621.451022][ T7134] netlink: 8 bytes leftover after parsing attributes in process `syz.4.231'. [ 621.538306][ T7133] loop2: detected capacity change from 0 to 256 [ 621.548457][ T7133] exfat: Unknown parameter 'syzkaller' [ 621.975023][ T7140] loop3: detected capacity change from 0 to 64 [ 622.314746][ T7145] loop0: detected capacity change from 0 to 512 [ 622.400901][ T7134] loop4: detected capacity change from 0 to 2048 [ 622.477150][ T7145] EXT4-fs error (device loop0): ext4_quota_enable:7049: comm syz.0.235: Bad quota inum: 1, type: 2 [ 622.591124][ T7145] EXT4-fs warning (device loop0): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=1). Please run e2fsck to fix. [ 622.782647][ T7153] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 622.814447][ T7145] EXT4-fs (loop0): mount failed [ 623.189493][ T7153] NILFS (loop4): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 623.200981][ T7153] NILFS error (device loop4): nilfs_bmap_propagate: broken bmap (inode number=4) [ 623.400139][ T7153] Remounting filesystem read-only [ 623.793372][ T7145] loop2: detected capacity change from 0 to 7 [ 623.897009][ T7145] Dev loop2: unable to read RDB block 7 [ 623.903026][ T7145] loop2: unable to read partition table [ 624.235197][ T7145] loop2: partition table beyond EOD, truncated [ 624.242174][ T7145] loop_reread_partitions: partition scan of loop2 (þ被) failed (rc=-5) [ 624.357103][ T4619] Dev loop2: unable to read RDB block 7 [ 624.363242][ T4619] loop2: unable to read partition table [ 624.392516][ T7172] loop3: detected capacity change from 0 to 512 [ 624.456772][ T4619] loop2: partition table beyond EOD, truncated [ 624.618748][ T7172] EXT4-fs: Ignoring removed mblk_io_submit option [ 624.669962][ T7172] EXT4-fs (loop3): VFS: Can't find ext4 filesystem [ 626.388823][ T7186] loop3: detected capacity change from 0 to 8192 [ 626.811227][ T7188] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491 [ 626.941799][ T7193] loop0: detected capacity change from 0 to 256 [ 627.688323][ T7200] loop4: detected capacity change from 0 to 4096 [ 627.905696][ T7200] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 627.913812][ T7200] ntfs3: loop4: Failed to load $UpCase (-22). [ 628.859727][ T7205] loop2: detected capacity change from 0 to 2048 [ 628.920973][ T7205] udf: Bad value for 'fileset' [ 628.956400][ T7210] netlink: 8 bytes leftover after parsing attributes in process `syz.1.250'. [ 629.437636][ T7219] loop3: detected capacity change from 0 to 64 [ 630.057224][ T7221] loop4: detected capacity change from 0 to 512 [ 630.227769][ T7210] loop1: detected capacity change from 0 to 2048 [ 630.246676][ T7221] EXT4-fs error (device loop4): ext4_quota_enable:7049: comm syz.4.251: Bad quota inum: 1, type: 2 [ 630.271870][ T7221] EXT4-fs warning (device loop4): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=1). Please run e2fsck to fix. [ 631.168399][ T7238] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 631.197293][ T7221] EXT4-fs (loop4): mount failed [ 631.696737][ T7236] loop0: detected capacity change from 0 to 512 [ 631.777758][ T7238] NILFS (loop1): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 631.789036][ T7238] NILFS error (device loop1): nilfs_bmap_propagate: broken bmap (inode number=4) [ 631.808334][ T7236] EXT4-fs: Ignoring removed mblk_io_submit option [ 631.819566][ T7236] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 631.872172][ T7221] loop2: detected capacity change from 0 to 7 [ 631.893835][ T7238] Remounting filesystem read-only [ 631.902220][ T7221] Dev loop2: unable to read RDB block 7 [ 631.908853][ T7221] loop2: unable to read partition table [ 632.007458][ T7221] loop2: partition table beyond EOD, truncated [ 632.014295][ T7221] loop_reread_partitions: partition scan of loop2 (þ被) failed (rc=-5) [ 632.321048][ T7230] loop0: detected capacity change from 0 to 256 [ 632.397753][ T7230] vfat: Unknown parameter '0xffffffffffffffff' [ 633.101936][ T7252] loop0: detected capacity change from 0 to 256 [ 633.706680][ T7259] loop2: detected capacity change from 0 to 256 [ 633.715868][ T7259] exfat: Unknown parameter 'syzkaller' [ 634.319558][ T7267] loop0: detected capacity change from 0 to 64 [ 635.163342][ T7270] loop3: detected capacity change from 0 to 2048 [ 635.192532][ T5200] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 635.201370][ T5200] Bluetooth: hci0: Injecting HCI hardware error event [ 635.211050][ T5200] Bluetooth: hci0: hardware error 0x00 [ 635.281169][ T7270] udf: Bad value for 'fileset' [ 635.606598][ T7254] loop1: detected capacity change from 0 to 4096 [ 635.887580][ T7278] netlink: 8 bytes leftover after parsing attributes in process `syz.0.268'. [ 636.162117][ T7254] ntfs3: loop1: Failed to read $AttrDef (-4). [ 636.745815][ T7283] loop3: detected capacity change from 0 to 512 [ 636.780016][ T7279] loop0: detected capacity change from 0 to 2048 [ 636.878765][ T7283] EXT4-fs: Ignoring removed mblk_io_submit option [ 636.938030][ T7283] EXT4-fs (loop3): VFS: Can't find ext4 filesystem [ 636.951061][ T7286] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 636.988652][ T7285] loop4: detected capacity change from 0 to 512 [ 637.110250][ T7286] NILFS (loop0): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 637.121812][ T7286] NILFS error (device loop0): nilfs_bmap_propagate: broken bmap (inode number=4) [ 638.914579][ T5200] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 639.123779][ T7289] loop1: detected capacity change from 0 to 1024 [ 639.132225][ T7289] EXT4-fs: Ignoring removed orlov option [ 639.138596][ T7289] EXT4-fs: Ignoring removed nomblk_io_submit option [ 639.195450][ T7286] Remounting filesystem read-only [ 639.291585][ T7285] EXT4-fs error (device loop4): ext4_quota_enable:7049: comm syz.4.270: Bad quota inum: 1, type: 2 [ 639.298297][ T7289] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 639.397744][ T7289] process 'syz.1.271' launched './file0/file0' with NULL argv: empty string added [ 639.408247][ T7281] loop3: detected capacity change from 0 to 256 [ 639.423199][ T7281] vfat: Unknown parameter '0xffffffffffffffff' [ 639.506761][ T7285] EXT4-fs warning (device loop4): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=1). Please run e2fsck to fix. [ 639.650572][ T6629] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 639.666046][ T5200] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0 [ 639.674622][ T5200] Bluetooth: hci3: Injecting HCI hardware error event [ 639.683066][ T5200] Bluetooth: hci3: hardware error 0x00 [ 639.691338][ T7285] EXT4-fs (loop4): mount failed [ 639.916239][ T6625] NILFS (loop0): disposed unprocessed dirty file(s) when detaching log writer [ 640.681040][ T7304] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491 [ 640.709774][ T7304] loop4: detected capacity change from 0 to 256 [ 641.116925][ T7310] loop3: detected capacity change from 0 to 64 [ 641.355293][ T7301] loop2: detected capacity change from 0 to 256 [ 641.394923][ T7301] exfat: Unknown parameter 'syzkaller' [ 641.757681][ T5200] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 642.463110][ T7324] loop2: detected capacity change from 0 to 4096 [ 642.631074][ T7324] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 642.639821][ T7324] ntfs3: loop2: Failed to load $UpCase (-22). [ 642.770630][ T7328] team_slave_0: entered promiscuous mode [ 642.776868][ T7328] team_slave_1: entered promiscuous mode [ 642.783626][ T7328] macsec1: entered promiscuous mode [ 642.789268][ T7328] team0: entered promiscuous mode [ 642.804000][ T7328] macsec1: entered allmulticast mode [ 642.809812][ T7328] team0: entered allmulticast mode [ 642.815259][ T7328] team_slave_0: entered allmulticast mode [ 642.821451][ T7328] team_slave_1: entered allmulticast mode [ 642.937291][ T7319] loop1: detected capacity change from 0 to 2048 [ 642.956054][ T7319] udf: Bad value for 'fileset' [ 643.692032][ T7335] netlink: 8 bytes leftover after parsing attributes in process `syz.0.285'. [ 643.713717][ T7333] loop2: detected capacity change from 0 to 512 [ 643.858820][ T7337] batadv0: entered promiscuous mode [ 643.868636][ T7337] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 643.952906][ T7337] batadv0: left promiscuous mode [ 643.960913][ T7333] EXT4-fs error (device loop2): ext4_quota_enable:7049: comm syz.2.284: Bad quota inum: 1, type: 2 [ 644.016206][ T7333] EXT4-fs warning (device loop2): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=1). Please run e2fsck to fix. [ 644.189420][ T7333] EXT4-fs (loop2): mount failed [ 644.224001][ T7335] loop0: detected capacity change from 0 to 2048 [ 644.369824][ T7333] loop2: detected capacity change from 0 to 7 [ 644.489556][ T7333] Dev loop2: unable to read RDB block 7 [ 644.496210][ T7333] loop2: unable to read partition table [ 644.523087][ T7347] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 644.589703][ T7333] loop2: partition table beyond EOD, truncated [ 644.596650][ T7333] loop_reread_partitions: partition scan of loop2 (þ被) failed (rc=-5) [ 644.678673][ T7346] loop4: detected capacity change from 0 to 512 [ 644.688445][ T7346] EXT4-fs: Ignoring removed mblk_io_submit option [ 644.709097][ T7347] NILFS (loop0): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 644.720544][ T7347] NILFS error (device loop0): nilfs_bmap_propagate: broken bmap (inode number=4) [ 644.736977][ T7346] EXT4-fs (loop4): VFS: Can't find ext4 filesystem [ 644.753334][ T7347] Remounting filesystem read-only [ 645.412020][ T7346] loop4: detected capacity change from 0 to 256 [ 645.425473][ T7346] vfat: Unknown parameter '0xffffffffffffffff' [ 645.904166][ T7353] loop1: detected capacity change from 0 to 64 [ 646.516700][ T7359] loop0: detected capacity change from 0 to 256 [ 646.623608][ T7365] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491 [ 647.591507][ T7359] exfat: Unknown parameter 'syzkaller' [ 647.753111][ T7365] loop2: detected capacity change from 0 to 256 [ 648.928636][ T7375] team_slave_0: entered promiscuous mode [ 648.934595][ T7375] team_slave_1: entered promiscuous mode [ 648.948300][ T7375] macsec1: entered promiscuous mode [ 648.953702][ T7375] team0: entered promiscuous mode [ 648.961231][ T7375] macsec1: entered allmulticast mode [ 648.966853][ T7375] team0: entered allmulticast mode [ 648.972205][ T7375] team_slave_0: entered allmulticast mode [ 648.978214][ T7375] team_slave_1: entered allmulticast mode [ 650.013611][ T7378] batadv0: entered promiscuous mode [ 650.031014][ T7378] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 650.152216][ T7378] batadv0: left promiscuous mode [ 650.643137][ T7385] loop4: detected capacity change from 0 to 512 [ 650.856077][ T7385] EXT4-fs error (device loop4): ext4_quota_enable:7049: comm syz.4.299: Bad quota inum: 1, type: 2 [ 650.950723][ T7385] EXT4-fs warning (device loop4): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=1). Please run e2fsck to fix. [ 650.963111][ T7376] loop0: detected capacity change from 0 to 2048 [ 651.058497][ T7385] EXT4-fs (loop4): mount failed [ 651.110811][ T7376] udf: Bad value for 'fileset' [ 651.188389][ T7395] netlink: 8 bytes leftover after parsing attributes in process `syz.2.301'. [ 651.268175][ T7398] loop1: detected capacity change from 0 to 512 [ 651.329752][ T7398] EXT4-fs: Ignoring removed mblk_io_submit option [ 651.376542][ T7398] EXT4-fs (loop1): VFS: Can't find ext4 filesystem [ 651.534882][ T7385] loop2: detected capacity change from 0 to 7 [ 651.598611][ T7400] loop3: detected capacity change from 0 to 64 [ 651.625075][ T7385] Dev loop2: unable to read RDB block 7 [ 651.631207][ T7385] loop2: unable to read partition table [ 651.639824][ T7385] loop2: partition table beyond EOD, truncated [ 651.647119][ T7385] loop_reread_partitions: partition scan of loop2 (þ被) failed (rc=-5) [ 651.885937][ T7392] loop1: detected capacity change from 0 to 256 [ 652.083909][ T7392] vfat: Unknown parameter '0xffffffffffffffff' [ 652.292267][ T7395] loop2: detected capacity change from 0 to 2048 [ 652.647407][ T7410] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 652.783907][ T7410] NILFS (loop2): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 652.795251][ T7410] NILFS error (device loop2): nilfs_bmap_propagate: broken bmap (inode number=4) [ 652.982071][ T7410] Remounting filesystem read-only [ 653.016573][ T7413] loop0: detected capacity change from 0 to 256 [ 653.228676][ T7413] exfat: Unknown parameter 'syzkaller' [ 654.499502][ T7431] loop0: detected capacity change from 0 to 256 [ 654.966855][ T7435] batadv0: entered promiscuous mode [ 654.978308][ T7435] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 655.018077][ T7435] batadv0: left promiscuous mode [ 655.490661][ T7439] loop2: detected capacity change from 0 to 512 [ 656.119590][ T7446] loop3: detected capacity change from 0 to 64 [ 656.311690][ T7452] loop4: detected capacity change from 0 to 512 [ 656.356640][ T7439] EXT4-fs error (device loop2): ext4_quota_enable:7049: comm syz.2.315: Bad quota inum: 1, type: 2 [ 656.379468][ T7452] EXT4-fs: Ignoring removed mblk_io_submit option [ 656.391999][ T7452] EXT4-fs (loop4): VFS: Can't find ext4 filesystem [ 656.393528][ T7439] EXT4-fs warning (device loop2): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=1). Please run e2fsck to fix. [ 656.426920][ T7439] EXT4-fs (loop2): mount failed [ 656.758412][ T7439] loop2: detected capacity change from 0 to 7 [ 656.823190][ T7439] Dev loop2: unable to read RDB block 7 [ 656.837729][ T7439] loop2: unable to read partition table [ 656.853632][ T7452] loop4: detected capacity change from 0 to 256 [ 656.861611][ T7439] loop2: partition table beyond EOD, truncated [ 656.868542][ T7439] loop_reread_partitions: partition scan of loop2 (þ被) failed (rc=-5) [ 656.960912][ T7452] vfat: Unknown parameter '0xffffffffffffffff' [ 657.040339][ T4619] Dev loop2: unable to read RDB block 7 [ 657.046296][ T4619] loop2: unable to read partition table [ 657.068534][ T7450] loop0: detected capacity change from 0 to 2048 [ 657.111937][ T4619] loop2: partition table beyond EOD, truncated [ 657.167590][ T7450] udf: Bad value for 'fileset' [ 659.003794][ T7465] loop4: detected capacity change from 0 to 256 [ 659.222627][ T7465] exfat: Unknown parameter 'syzkaller' [ 659.428476][ T1235] ieee802154 phy0 wpan0: encryption failed: -22 [ 659.435072][ T1235] ieee802154 phy1 wpan1: encryption failed: -22 [ 659.711085][ T7472] netlink: 8 bytes leftover after parsing attributes in process `syz.0.322'. [ 660.300474][ T7475] team_slave_0: entered promiscuous mode [ 660.306576][ T7475] team_slave_1: entered promiscuous mode [ 660.316426][ T7475] macsec1: entered promiscuous mode [ 660.321837][ T7475] team0: entered promiscuous mode [ 660.329316][ T7475] macsec1: entered allmulticast mode [ 660.334763][ T7475] team0: entered allmulticast mode [ 660.340238][ T7475] team_slave_0: entered allmulticast mode [ 660.346215][ T7475] team_slave_1: entered allmulticast mode [ 660.526875][ T7472] loop0: detected capacity change from 0 to 2048 [ 660.723301][ T7478] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491 [ 660.743261][ T7480] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 660.876910][ T7480] NILFS (loop0): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 660.888282][ T7480] NILFS error (device loop0): nilfs_bmap_propagate: broken bmap (inode number=4) [ 661.057190][ T7480] Remounting filesystem read-only [ 661.425942][ T7481] loop3: detected capacity change from 0 to 256 [ 662.941898][ T7495] loop2: detected capacity change from 0 to 512 [ 663.257816][ T7495] EXT4-fs error (device loop2): ext4_quota_enable:7049: comm syz.2.330: Bad quota inum: 1, type: 2 [ 663.318072][ T7509] loop0: detected capacity change from 0 to 512 [ 663.327679][ T7509] EXT4-fs: Ignoring removed mblk_io_submit option [ 663.350480][ T7509] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 663.459052][ T7495] EXT4-fs warning (device loop2): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=1). Please run e2fsck to fix. [ 663.609821][ T7495] EXT4-fs (loop2): mount failed [ 663.631845][ T7509] loop0: detected capacity change from 0 to 256 [ 663.640872][ T7509] vfat: Unknown parameter '0xffffffffffffffff' [ 664.086243][ T7519] loop3: detected capacity change from 0 to 256 [ 664.162578][ T7519] exfat: Unknown parameter 'syzkaller' [ 664.244400][ T7515] loop4: detected capacity change from 0 to 2048 [ 664.283686][ T7515] udf: Bad value for 'fileset' [ 665.281363][ T7535] loop3: detected capacity change from 0 to 128 [ 665.515290][ T7537] netlink: 8 bytes leftover after parsing attributes in process `syz.0.342'. [ 665.522115][ T7539] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491 [ 665.789137][ T7538] loop4: detected capacity change from 0 to 256 [ 666.083392][ T7540] loop0: detected capacity change from 0 to 2048 [ 666.202806][ T7547] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 666.311034][ T7547] NILFS (loop0): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 666.322688][ T7547] NILFS error (device loop0): nilfs_bmap_propagate: broken bmap (inode number=4) [ 666.369023][ T7547] Remounting filesystem read-only [ 667.839316][ T7560] loop2: detected capacity change from 0 to 512 [ 668.468000][ T7560] EXT4-fs error (device loop2): ext4_quota_enable:7049: comm syz.2.347: Bad quota inum: 1, type: 2 [ 668.567983][ T7560] EXT4-fs warning (device loop2): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=1). Please run e2fsck to fix. [ 668.616808][ T7560] EXT4-fs (loop2): mount failed [ 668.716973][ T7562] loop0: detected capacity change from 0 to 256 [ 668.888091][ T7562] vfat: Unknown parameter '0xffffffffffffffff' [ 669.109776][ T7575] loop3: detected capacity change from 0 to 256 [ 669.140931][ T7575] exfat: Unknown parameter 'syzkaller' [ 671.430652][ T7590] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491 [ 671.849076][ T7583] loop2: detected capacity change from 0 to 2048 [ 671.859333][ T7583] udf: Bad value for 'fileset' [ 672.958093][ T7593] netlink: 8 bytes leftover after parsing attributes in process `syz.3.358'. [ 673.960493][ T7593] loop3: detected capacity change from 0 to 2048 [ 674.189637][ T7609] loop0: detected capacity change from 0 to 512 [ 674.226486][ T7610] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 674.313423][ T7610] NILFS (loop3): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 674.325080][ T7610] NILFS error (device loop3): nilfs_bmap_propagate: broken bmap (inode number=4) [ 674.373018][ T7609] EXT4-fs error (device loop0): ext4_quota_enable:7049: comm syz.0.363: Bad quota inum: 1, type: 2 [ 674.414520][ T7610] Remounting filesystem read-only [ 674.419516][ T7609] EXT4-fs warning (device loop0): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=1). Please run e2fsck to fix. [ 674.458075][ T7609] EXT4-fs (loop0): mount failed [ 675.584660][ T7621] loop2: detected capacity change from 0 to 512 [ 675.621589][ T7625] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491 [ 676.200287][ T7621] EXT4-fs: Ignoring removed mblk_io_submit option [ 676.263163][ T7621] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 676.551211][ T7621] loop2: detected capacity change from 0 to 256 [ 676.584618][ T7621] vfat: Unknown parameter '0xffffffffffffffff' [ 676.738212][ T7629] loop3: detected capacity change from 0 to 256 [ 676.791408][ T5200] Bluetooth: hci5: command 0x0406 tx timeout [ 676.821862][ T7629] exfat: Unknown parameter 'syzkaller' [ 677.723515][ T7638] netlink: 4 bytes leftover after parsing attributes in process `syz.2.370'. [ 678.184827][ T7638] loop2: detected capacity change from 0 to 2048 [ 678.197363][ T7638] udf: Bad value for 'fileset' [ 679.304793][ T7644] loop2: detected capacity change from 0 to 512 [ 679.616380][ T7644] EXT4-fs error (device loop2): ext4_quota_enable:7049: comm syz.2.375: Bad quota inum: 1, type: 2 [ 679.722801][ T7644] EXT4-fs warning (device loop2): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=1). Please run e2fsck to fix. [ 679.844242][ T29] audit: type=1326 audit(1727017097.590:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7657 comm="syz.3.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff697b7def9 code=0x7ffc0000 [ 679.858880][ T7644] EXT4-fs (loop2): mount failed [ 680.078672][ T29] audit: type=1326 audit(1727017097.700:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7657 comm="syz.3.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff697b7def9 code=0x7ffc0000 [ 680.101417][ T29] audit: type=1326 audit(1727017097.720:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7657 comm="syz.3.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7ff697b7def9 code=0x7ffc0000 [ 680.124223][ T29] audit: type=1326 audit(1727017097.720:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7657 comm="syz.3.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff697b7def9 code=0x7ffc0000 [ 680.148431][ T29] audit: type=1326 audit(1727017097.720:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7657 comm="syz.3.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff697b7def9 code=0x7ffc0000 [ 680.177450][ T29] audit: type=1326 audit(1727017097.790:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7657 comm="syz.3.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7ff697b7def9 code=0x7ffc0000 [ 680.201945][ T29] audit: type=1326 audit(1727017097.790:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7657 comm="syz.3.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff697b7def9 code=0x7ffc0000 [ 680.224825][ T29] audit: type=1326 audit(1727017097.790:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7657 comm="syz.3.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff697b7def9 code=0x7ffc0000 [ 680.818349][ T29] audit: type=1326 audit(1727017098.570:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7657 comm="syz.3.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff697b7def9 code=0x7ffc0000 [ 681.256034][ T29] audit: type=1326 audit(1727017098.620:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7657 comm="syz.3.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff697b7def9 code=0x7ffc0000 [ 683.473652][ T7671] loop2: detected capacity change from 0 to 512 [ 683.495122][ T7671] EXT4-fs: Ignoring removed mblk_io_submit option [ 683.509235][ T7671] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 683.852685][ T5200] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 683.907870][ T5200] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 683.947525][ T5200] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 684.237655][ T7673] loop3: detected capacity change from 0 to 256 [ 684.246795][ T7673] exfat: Unknown parameter 'syzkaller' [ 684.317898][ T4811] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 684.412421][ T5200] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 684.426955][ T5200] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 684.436679][ T5200] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 684.651826][ T7677] team_slave_0: entered promiscuous mode [ 684.658004][ T7677] team_slave_1: entered promiscuous mode [ 684.664068][ T7677] macsec1: entered promiscuous mode [ 684.669734][ T7677] team0: entered promiscuous mode [ 684.683765][ T7677] macsec1: entered allmulticast mode [ 684.689523][ T7677] team0: entered allmulticast mode [ 684.694891][ T7677] team_slave_0: entered allmulticast mode [ 684.701087][ T7677] team_slave_1: entered allmulticast mode [ 685.792500][ T7687] netlink: 4 bytes leftover after parsing attributes in process `syz.1.385'. [ 686.072429][ T7695] loop2: detected capacity change from 0 to 512 [ 686.330747][ T7691] loop1: detected capacity change from 0 to 2048 [ 686.340932][ T7691] udf: Bad value for 'fileset' [ 686.535871][ T5200] Bluetooth: hci1: command tx timeout [ 686.993185][ T7695] EXT4-fs error (device loop2): ext4_quota_enable:7049: comm syz.2.387: Bad quota inum: 1, type: 2 [ 687.966040][ T7695] EXT4-fs warning (device loop2): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=1). Please run e2fsck to fix. [ 688.134891][ T7674] chnl_net:caif_netlink_parms(): no params data found [ 688.298438][ T7695] EXT4-fs (loop2): mount failed [ 688.621966][ T5200] Bluetooth: hci1: command tx timeout [ 689.756791][ T7711] loop1: detected capacity change from 0 to 4096 [ 690.257722][ T4811] usb 1-1: unable to read config index 0 descriptor/all [ 690.265031][ T4811] usb 1-1: can't read configurations, error -71 [ 690.696473][ T5200] Bluetooth: hci1: command tx timeout [ 691.624103][ T7724] loop0: detected capacity change from 0 to 512 [ 691.700051][ T7724] EXT4-fs: Ignoring removed mblk_io_submit option [ 691.764239][ T7724] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 691.832388][ T7674] bridge0: port 1(bridge_slave_0) entered blocking state [ 691.840590][ T7674] bridge0: port 1(bridge_slave_0) entered disabled state [ 691.858445][ T7674] bridge_slave_0: entered allmulticast mode [ 691.868296][ T7674] bridge_slave_0: entered promiscuous mode [ 691.928745][ T7674] bridge0: port 2(bridge_slave_1) entered blocking state [ 691.936862][ T7674] bridge0: port 2(bridge_slave_1) entered disabled state [ 691.944794][ T7674] bridge_slave_1: entered allmulticast mode [ 691.963814][ T7674] bridge_slave_1: entered promiscuous mode [ 692.136733][ T7727] loop3: detected capacity change from 0 to 1024 [ 692.161215][ T7724] loop0: detected capacity change from 0 to 256 [ 692.198418][ T7724] vfat: Unknown parameter '0xffffffffffffffff' [ 692.227514][ T7727] hfsplus: failed to load root directory [ 692.831459][ T5200] Bluetooth: hci1: command tx timeout [ 692.854797][ T7674] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 692.882936][ T7674] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 693.991518][ T7674] team0: Port device team_slave_0 added [ 694.062730][ T7674] team0: Port device team_slave_1 added [ 697.283251][ T7744] loop2: detected capacity change from 0 to 512 [ 697.520795][ T7748] netlink: 4 bytes leftover after parsing attributes in process `syz.3.399'. [ 697.531535][ T7744] EXT4-fs error (device loop2): ext4_quota_enable:7049: comm syz.2.400: Bad quota inum: 1, type: 2 [ 697.757690][ T7744] EXT4-fs warning (device loop2): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=1). Please run e2fsck to fix. [ 697.854878][ T7750] loop3: detected capacity change from 0 to 2048 [ 697.875029][ T7750] udf: Bad value for 'fileset' [ 697.883121][ T7744] EXT4-fs (loop2): mount failed [ 698.062313][ T7752] loop0: detected capacity change from 0 to 512 [ 698.130645][ T7752] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 698.144935][ T7752] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 698.357223][ T7752] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 698.380479][ T7752] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2862: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 698.398581][ T7752] EXT4-fs (loop0): 1 truncate cleaned up [ 698.409932][ T7752] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 698.477446][ T29] kauditd_printk_skb: 20 callbacks suppressed [ 698.477531][ T29] audit: type=1800 audit(1727017116.210:37): pid=7752 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.401" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 698.732434][ T6625] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 699.609834][ T7674] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 699.618442][ T7674] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 699.651640][ T7674] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 700.512314][ T7674] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 700.519776][ T7674] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 700.546438][ T7674] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 702.712979][ T7772] loop3: detected capacity change from 0 to 512 [ 702.797882][ T7772] EXT4-fs: Ignoring removed mblk_io_submit option [ 702.879821][ T7776] warning: `syz.1.408' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 702.903234][ T7772] EXT4-fs (loop3): VFS: Can't find ext4 filesystem [ 702.952714][ T7674] hsr_slave_0: entered promiscuous mode [ 703.108446][ T7674] hsr_slave_1: entered promiscuous mode [ 703.185747][ T7674] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 703.193894][ T7674] Cannot create hsr debugfs directory [ 703.331209][ T6730] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 703.390797][ T7772] loop3: detected capacity change from 0 to 256 [ 703.505819][ T7771] loop2: detected capacity change from 0 to 32768 [ 703.510001][ T7772] vfat: Unknown parameter '0xffffffffffffffff' [ 703.515402][ T7771] (syz.2.406,7771,0):ocfs2_parse_options:1448 ERROR: Unrecognized mount option "dir_resv_level=00000000000000000008" or missing value [ 703.538450][ T7771] (syz.2.406,7771,0):ocfs2_fill_super:1178 ERROR: status = -22 [ 703.560497][ T6730] usb 2-1: Duplicate descriptor for config 1 interface 0 altsetting 0, skipping [ 703.570699][ T6730] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7 [ 703.582311][ T6730] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0 [ 703.592571][ T6730] usb 2-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 703.870081][ T7779] loop0: detected capacity change from 0 to 512 [ 704.000946][ T6730] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 704.010623][ T6730] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 704.019110][ T6730] usb 2-1: Product: syz [ 704.023556][ T6730] usb 2-1: Manufacturer: syz [ 704.028534][ T6730] usb 2-1: SerialNumber: syz [ 704.278061][ T7779] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 704.291623][ T7779] ext4 filesystem being mounted at /50/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 704.466697][ T7782] ext4: Unknown parameter 'aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa./file1' [ 704.821653][ T6730] usb 2-1: 2:1 : no or invalid class specific endpoint descriptor [ 704.830972][ T6730] usb 2-1: 2:1 : format type 0 is detected, processed as PCM [ 704.838797][ T6730] usb 2-1: 2:1 : sample bitwidth 187 in over sample bytes 4 [ 704.846500][ T6730] usb 2-1: 2:1 : invalid UAC_FORMAT_TYPE desc [ 704.922315][ T7782] netlink: 'syz.0.409': attribute type 2 has an invalid length. [ 705.913441][ T7801] FAULT_INJECTION: forcing a failure. [ 705.913441][ T7801] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 705.927349][ T7801] CPU: 0 UID: 0 PID: 7801 Comm: syz.2.415 Not tainted 6.11.0-syzkaller-08481-g88264981f208 #0 [ 705.937948][ T7801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 705.948309][ T7801] Call Trace: [ 705.951801][ T7801] [ 705.954928][ T7801] dump_stack_lvl+0x216/0x2d0 [ 705.960027][ T7801] dump_stack+0x1e/0x30 [ 705.964452][ T7801] should_fail_ex+0x748/0x7f0 [ 705.969420][ T7801] should_fail_alloc_page+0x235/0x2b0 [ 705.975136][ T7801] __alloc_pages_noprof+0x33b/0xe70 [ 705.980651][ T7801] alloc_pages_mpol_noprof+0x299/0x990 [ 705.986502][ T7801] ? kmsan_get_metadata+0x13e/0x1c0 [ 705.992066][ T7801] vma_alloc_folio_noprof+0x454/0x7f0 [ 705.997790][ T7801] handle_mm_fault+0xa385/0xdc30 [ 706.003041][ T7801] ? kmsan_get_metadata+0x13e/0x1c0 [ 706.008594][ T7801] exc_page_fault+0x41b/0x700 [ 706.013562][ T7801] asm_exc_page_fault+0x2b/0x30 [ 706.018678][ T7801] RIP: 0033:0x7f1827a41c23 [ 706.023336][ T7801] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c [ 706.043280][ T7801] RSP: 002b:00007f182898a4a0 EFLAGS: 00010202 [ 706.049632][ T7801] RAX: 0000000000002000 RBX: 00007f182898a540 RCX: 00007f181d200000 [ 706.057828][ T7801] RDX: 00007f182898a6e0 RSI: 0000000000000007 RDI: 00007f182898a5e0 [ 706.066013][ T7801] RBP: 00000000000000fb R08: 0000000000000009 R09: 00000000000001bc [ 706.074204][ T7801] R10: 00000000000001d4 R11: 00007f182898a540 R12: 0000000000000001 [ 706.082408][ T7801] R13: 00007f1827c04f00 R14: 000000000000000b R15: 00007f182898a5e0 [ 706.090668][ T7801] [ 706.100643][ T7801] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [ 706.128114][ T7801] loop2: detected capacity change from 0 to 512 [ 706.144861][ T6730] usb 2-1: USB disconnect, device number 6 [ 706.254983][ T6625] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 706.290788][ T7803] netlink: 4 bytes leftover after parsing attributes in process `syz.1.414'. [ 706.378535][ T7801] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 706.397306][ T7801] ext4 filesystem being mounted at /53/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 706.473973][ T34] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 706.717552][ T6910] udevd[6910]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 706.757299][ T34] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 706.983731][ T34] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 707.062176][ T7809] loop0: detected capacity change from 0 to 512 [ 707.090936][ T7807] loop1: detected capacity change from 0 to 2048 [ 707.102521][ T6631] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 707.176462][ T7807] udf: Bad value for 'fileset' [ 707.182259][ T34] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 707.890831][ T7809] EXT4-fs error (device loop0): ext4_quota_enable:7049: comm syz.0.413: Bad quota inum: 1, type: 2 [ 707.977106][ T7809] EXT4-fs warning (device loop0): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=1). Please run e2fsck to fix. [ 708.189218][ T7809] EXT4-fs (loop0): mount failed [ 708.409977][ T34] bridge_slave_1: left allmulticast mode [ 708.416146][ T34] bridge_slave_1: left promiscuous mode [ 708.422790][ T34] bridge0: port 2(bridge_slave_1) entered disabled state [ 708.561586][ T34] bridge_slave_0: left allmulticast mode [ 708.568157][ T34] bridge_slave_0: left promiscuous mode [ 708.574943][ T34] bridge0: port 1(bridge_slave_0) entered disabled state [ 708.860307][ T7832] loop3: detected capacity change from 0 to 512 [ 708.898264][ T7832] EXT4-fs: Ignoring removed mblk_io_submit option [ 708.910892][ T7832] EXT4-fs (loop3): VFS: Can't find ext4 filesystem [ 709.066091][ T7830] loop3: detected capacity change from 0 to 256 [ 709.136244][ T7830] vfat: Unknown parameter '0xffffffffffffffff' [ 709.207993][ T7837] FAULT_INJECTION: forcing a failure. [ 709.207993][ T7837] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 709.223106][ T7837] CPU: 1 UID: 0 PID: 7837 Comm: syz.1.421 Not tainted 6.11.0-syzkaller-08481-g88264981f208 #0 [ 709.233677][ T7837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 709.244012][ T7837] Call Trace: [ 709.247511][ T7837] [ 709.250671][ T7837] dump_stack_lvl+0x216/0x2d0 [ 709.255899][ T7837] dump_stack+0x1e/0x30 [ 709.260387][ T7837] should_fail_ex+0x748/0x7f0 [ 709.265375][ T7837] should_fail+0x2a/0x40 [ 709.269902][ T7837] should_fail_usercopy+0x2e/0x40 [ 709.275238][ T7837] _copy_to_user+0x33/0x110 [ 709.280052][ T7837] simple_read_from_buffer+0x199/0x340 [ 709.285870][ T7837] proc_fail_nth_read+0x1e5/0x2c0 [ 709.291216][ T7837] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 709.297093][ T7837] vfs_read+0x29b/0xf60 [ 709.301566][ T7837] ? kmsan_get_metadata+0x13e/0x1c0 [ 709.307113][ T7837] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 709.313795][ T7837] ksys_read+0x20f/0x4c0 [ 709.316184][ T7841] FAULT_INJECTION: forcing a failure. [ 709.316184][ T7841] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 709.318266][ T7837] __x64_sys_read+0x93/0xe0 [ 709.336332][ T7837] x64_sys_call+0x3055/0x3ba0 [ 709.341318][ T7837] do_syscall_64+0xcd/0x1e0 [ 709.346089][ T7837] ? clear_bhb_loop+0x25/0x80 [ 709.351063][ T7837] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 709.357334][ T7837] RIP: 0033:0x7fcbef17c93c [ 709.362044][ T7837] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 709.381966][ T7837] RSP: 002b:00007fcbefeb5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 709.390712][ T7837] RAX: ffffffffffffffda RBX: 00007fcbef336058 RCX: 00007fcbef17c93c [ 709.398945][ T7837] RDX: 000000000000000f RSI: 00007fcbefeb50a0 RDI: 0000000000000009 [ 709.407150][ T7837] RBP: 00007fcbefeb5090 R08: 0000000000000000 R09: 0000000000000000 [ 709.415378][ T7837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 709.423616][ T7837] R13: 0000000000000000 R14: 00007fcbef336058 R15: 00007ffd5315a0d8 [ 709.431861][ T7837] [ 709.435111][ T7841] CPU: 0 UID: 0 PID: 7841 Comm: syz.0.423 Not tainted 6.11.0-syzkaller-08481-g88264981f208 #0 [ 709.435258][ C1] vkms_vblank_simulate: vblank timer overrun [ 709.451777][ T7841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 709.462117][ T7841] Call Trace: [ 709.465615][ T7841] [ 709.468752][ T7841] dump_stack_lvl+0x216/0x2d0 [ 709.473751][ T7841] dump_stack+0x1e/0x30 [ 709.478195][ T7841] should_fail_ex+0x748/0x7f0 [ 709.483213][ T7841] should_fail_alloc_page+0x235/0x2b0 [ 709.488984][ T7841] __alloc_pages_noprof+0x33b/0xe70 [ 709.494512][ T7841] alloc_pages_mpol_noprof+0x299/0x990 [ 709.500361][ T7841] ? kmsan_get_metadata+0x13e/0x1c0 [ 709.505927][ T7841] folio_alloc_mpol_noprof+0x55/0x180 [ 709.511693][ T7841] shmem_alloc_and_add_folio+0xc33/0x1c30 [ 709.518094][ T7841] ? shmem_allowable_huge_orders+0x5e5/0xc60 [ 709.524473][ T7841] shmem_get_folio_gfp+0xacd/0x1f30 [ 709.530034][ T7841] shmem_write_begin+0x158/0x3f0 [ 709.535318][ T7841] ? __pfx_shmem_write_begin+0x10/0x10 [ 709.541110][ T7841] generic_perform_write+0x4d8/0x1080 [ 709.546859][ T7841] shmem_file_write_iter+0x2ba/0x2f0 [ 709.552490][ T7841] vfs_write+0xb28/0x1540 [ 709.557149][ T7841] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 709.563271][ T7841] ksys_write+0x20f/0x4c0 [ 709.567904][ T7841] __x64_sys_write+0x93/0xe0 [ 709.572834][ T7841] x64_sys_call+0x306a/0x3ba0 [ 709.577818][ T7841] do_syscall_64+0xcd/0x1e0 [ 709.582591][ T7841] ? clear_bhb_loop+0x25/0x80 [ 709.587642][ T7841] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 709.593801][ T7841] RIP: 0033:0x7fa42b77c9df [ 709.598432][ T7841] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48 [ 709.618308][ T7841] RSP: 002b:00007fa42c5d4df0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 709.626996][ T7841] RAX: ffffffffffffffda RBX: 0000000000008000 RCX: 00007fa42b77c9df [ 709.635211][ T7841] RDX: 0000000000008000 RSI: 00007fa420e00000 RDI: 0000000000000005 [ 709.643406][ T7841] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000280 [ 709.651590][ T7841] R10: 00000000000001ca R11: 0000000000000293 R12: 0000000000000005 [ 709.659795][ T7841] R13: 00007fa42c5d4ef0 R14: 00007fa42c5d4eb0 R15: 00007fa420e00000 [ 709.668028][ T7841] [ 710.083117][ T34] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 710.242410][ T34] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 710.261725][ T34] bond0 (unregistering): Released all slaves [ 710.634801][ T7846] macvtap1: entered promiscuous mode [ 710.640949][ T7846] vlan1: entered promiscuous mode [ 710.648339][ T7846] macvtap1: entered allmulticast mode [ 710.653991][ T7846] vlan1: entered allmulticast mode [ 710.659633][ T7846] veth0_vlan: entered allmulticast mode [ 711.229399][ T34] hsr_slave_0: left promiscuous mode [ 711.299412][ T34] hsr_slave_1: left promiscuous mode [ 711.352037][ T7855] netlink: 4 bytes leftover after parsing attributes in process `syz.1.427'. [ 711.382379][ T34] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 711.392564][ T34] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 711.498795][ T34] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 711.508232][ T34] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 711.604326][ T34] team0: left allmulticast mode [ 711.612417][ T34] team_slave_0: left allmulticast mode [ 711.618903][ T34] team_slave_1: left allmulticast mode [ 711.624641][ T34] team0: left promiscuous mode [ 711.632388][ T34] team_slave_0: left promiscuous mode [ 711.638124][ T34] team_slave_1: left promiscuous mode [ 711.643860][ T34] veth1_macvtap: left promiscuous mode [ 711.649755][ T34] veth0_macvtap: left promiscuous mode [ 711.655770][ T34] veth1_vlan: left promiscuous mode [ 711.661411][ T34] veth0_vlan: left promiscuous mode [ 712.084505][ T7858] loop1: detected capacity change from 0 to 2048 [ 712.102337][ T7858] udf: Bad value for 'fileset' [ 712.166983][ T10] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 712.335779][ T10] usb 4-1: Using ep0 maxpacket: 32 [ 712.349835][ T10] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 712.361600][ T10] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 712.372043][ T10] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 712.381757][ T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 712.459161][ T10] hub 4-1:4.0: USB hub found [ 712.653058][ T34] team0 (unregistering): Port device team_slave_1 removed [ 712.799872][ T34] team0 (unregistering): Port device team_slave_0 removed [ 713.042395][ T10] hub 4-1:4.0: 4 ports detected [ 713.057308][ T10] hub 4-1:4.0: insufficient power available to use all downstream ports [ 713.190030][ T10] hub 4-1:4.0: hub_hub_status failed (err = -71) [ 713.197166][ T10] hub 4-1:4.0: config failed, can't get hub status (err -71) [ 713.335000][ T7865] lo speed is unknown, defaulting to 1000 [ 713.345661][ T7865] lo speed is unknown, defaulting to 1000 [ 713.355053][ T7865] lo speed is unknown, defaulting to 1000 [ 713.360227][ T10] usb 4-1: USB disconnect, device number 12 [ 713.438398][ T7674] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 713.707150][ T7674] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 713.916104][ T7674] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 714.446527][ T7865] infiniband syz0: set active [ 714.451540][ T7865] infiniband syz0: added lo [ 714.475905][ T10] lo speed is unknown, defaulting to 1000 [ 714.494626][ T7865] workqueue: Failed to create a rescuer kthread for wq "ib_mad1": -EINTR [ 714.511088][ T7865] infiniband syz0: Couldn't open port 1 [ 714.596484][ T7865] RDS/IB: syz0: added [ 714.600813][ T7865] smc: adding ib device syz0 with port count 1 [ 714.607615][ T7865] smc: ib device syz0 port 1 has pnetid [ 714.615677][ T7865] lo speed is unknown, defaulting to 1000 [ 714.679560][ T7888] loop3: detected capacity change from 0 to 512 [ 714.707782][ T7888] EXT4-fs: Ignoring removed mblk_io_submit option [ 714.825618][ T7674] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 714.968695][ T7888] EXT4-fs (loop3): VFS: Can't find ext4 filesystem [ 715.087751][ T10] lo speed is unknown, defaulting to 1000 [ 715.394258][ T7865] lo speed is unknown, defaulting to 1000 [ 715.841850][ T7865] lo speed is unknown, defaulting to 1000 [ 716.029630][ T7896] loop1: detected capacity change from 0 to 512 [ 716.328921][ T7896] EXT4-fs error (device loop1): ext4_quota_enable:7049: comm syz.1.432: Bad quota inum: 1, type: 2 [ 716.511670][ T7896] EXT4-fs warning (device loop1): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=1). Please run e2fsck to fix. [ 716.550998][ T7865] lo speed is unknown, defaulting to 1000 [ 716.595151][ T7896] EXT4-fs (loop1): mount failed [ 717.120812][ T7909] FAULT_INJECTION: forcing a failure. [ 717.120812][ T7909] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 717.134427][ T7909] CPU: 1 UID: 0 PID: 7909 Comm: syz.3.435 Not tainted 6.11.0-syzkaller-08481-g88264981f208 #0 [ 717.144987][ T7909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 717.155307][ T7909] Call Trace: [ 717.158796][ T7909] [ 717.161919][ T7909] dump_stack_lvl+0x216/0x2d0 [ 717.166886][ T7909] dump_stack+0x1e/0x30 [ 717.171327][ T7909] should_fail_ex+0x748/0x7f0 [ 717.176335][ T7909] should_fail+0x2a/0x40 [ 717.180884][ T7909] should_fail_usercopy+0x2e/0x40 [ 717.186240][ T7909] _copy_to_user+0x33/0x110 [ 717.191063][ T7909] simple_read_from_buffer+0x199/0x340 [ 717.196924][ T7909] proc_fail_nth_read+0x1e5/0x2c0 [ 717.202260][ T7909] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 717.208109][ T7909] vfs_read+0x29b/0xf60 [ 717.212551][ T7909] ? kmsan_get_metadata+0x13e/0x1c0 [ 717.214525][ T7865] lo speed is unknown, defaulting to 1000 [ 717.217977][ T7909] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 717.230532][ T7909] ksys_read+0x20f/0x4c0 [ 717.235144][ T7909] __x64_sys_read+0x93/0xe0 [ 717.239978][ T7909] x64_sys_call+0x3055/0x3ba0 [ 717.245054][ T7909] do_syscall_64+0xcd/0x1e0 [ 717.249897][ T7909] ? clear_bhb_loop+0x25/0x80 [ 717.254961][ T7909] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 717.261209][ T7909] RIP: 0033:0x7ff697b7c93c [ 717.265895][ T7909] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 717.285839][ T7909] RSP: 002b:00007ff69897e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 717.294609][ T7909] RAX: ffffffffffffffda RBX: 00007ff697d35f80 RCX: 00007ff697b7c93c [ 717.302870][ T7909] RDX: 000000000000000f RSI: 00007ff69897e0a0 RDI: 0000000000000004 [ 717.311107][ T7909] RBP: 00007ff69897e090 R08: 0000000000000000 R09: 0000000000000000 [ 717.319354][ T7909] R10: 00000000ffffffff R11: 0000000000000246 R12: 0000000000000001 [ 717.327610][ T7909] R13: 0000000000000000 R14: 00007ff697d35f80 R15: 00007ffef8b23278 [ 717.335844][ T7909] [ 717.339198][ C1] vkms_vblank_simulate: vblank timer overrun [ 717.599715][ T7674] 8021q: adding VLAN 0 to HW filter on device bond0 [ 717.670923][ T7674] 8021q: adding VLAN 0 to HW filter on device team0 [ 717.732487][ T2962] bridge0: port 1(bridge_slave_0) entered blocking state [ 717.740334][ T2962] bridge0: port 1(bridge_slave_0) entered forwarding state [ 717.944314][ T2962] bridge0: port 2(bridge_slave_1) entered blocking state [ 717.952201][ T2962] bridge0: port 2(bridge_slave_1) entered forwarding state [ 718.261628][ T7674] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 719.163282][ T7912] loop0: detected capacity change from 0 to 4096 [ 719.365830][ T7934] netlink: 4 bytes leftover after parsing attributes in process `syz.2.441'. [ 719.683806][ T7940] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 719.845086][ T7912] NILFS error (device loop0): nilfs_dotdot: directory #12 missing '.' [ 720.041604][ T7935] loop2: detected capacity change from 0 to 2048 [ 720.048678][ T7674] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 720.090268][ T7912] Remounting filesystem read-only [ 720.190839][ T7935] udf: Bad value for 'fileset' [ 720.245857][ T29] audit: type=1326 audit(1727017137.950:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7942 comm="syz.3.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff697b7def9 code=0x7ffc0000 [ 720.269273][ T29] audit: type=1326 audit(1727017137.950:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7942 comm="syz.3.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff697b7def9 code=0x7ffc0000 [ 720.291569][ C1] vkms_vblank_simulate: vblank timer overrun [ 720.609952][ T6625] NILFS (loop0): disposed unprocessed dirty file(s) when detaching log writer [ 720.849177][ T1235] ieee802154 phy0 wpan0: encryption failed: -22 [ 720.858782][ T1235] ieee802154 phy1 wpan1: encryption failed: -22 [ 721.616693][ T7964] loop2: detected capacity change from 0 to 512 [ 721.844407][ T7964] EXT4-fs error (device loop2): ext4_quota_enable:7049: comm syz.2.446: Bad quota inum: 1, type: 2 [ 721.915492][ T7971] loop0: detected capacity change from 0 to 512 [ 722.017314][ T7964] EXT4-fs warning (device loop2): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=1). Please run e2fsck to fix. [ 722.035303][ T7971] EXT4-fs: Ignoring removed mblk_io_submit option [ 722.112848][ T7964] EXT4-fs (loop2): mount failed [ 722.346614][ T7984] FAULT_INJECTION: forcing a failure. [ 722.346614][ T7984] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 722.360201][ T7984] CPU: 0 UID: 0 PID: 7984 Comm: syz.3.449 Not tainted 6.11.0-syzkaller-08481-g88264981f208 #0 [ 722.370751][ T7984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 722.381104][ T7984] Call Trace: [ 722.384614][ T7984] [ 722.387738][ T7984] dump_stack_lvl+0x216/0x2d0 [ 722.392712][ T7984] dump_stack+0x1e/0x30 [ 722.397152][ T7984] should_fail_ex+0x748/0x7f0 [ 722.402183][ T7984] should_fail+0x2a/0x40 [ 722.406756][ T7984] should_fail_usercopy+0x2e/0x40 [ 722.412205][ T7984] _copy_from_iter+0x1d8/0x2b40 [ 722.417383][ T7984] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 722.423521][ T7984] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 722.429688][ T7984] ? skb_put+0x189/0x230 [ 722.432866][ T7971] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 722.434177][ T7984] netlink_sendmsg+0xc1d/0x11e0 [ 722.445880][ T7984] ? __pfx_netlink_sendmsg+0x10/0x10 [ 722.451467][ T7984] ? __pfx_netlink_sendmsg+0x10/0x10 [ 722.457015][ T7984] __sock_sendmsg+0x30f/0x380 [ 722.461977][ T7984] ____sys_sendmsg+0x877/0xb60 [ 722.467041][ T7984] ___sys_sendmsg+0x28d/0x3c0 [ 722.472039][ T7984] ? __rcu_read_unlock+0x7b/0xe0 [ 722.477239][ T7984] ? __fget_files+0x4f5/0x5c0 [ 722.482175][ T7984] ? kmsan_get_metadata+0x13e/0x1c0 [ 722.487729][ T7984] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 722.493862][ T7984] __x64_sys_sendmsg+0x301/0x490 [ 722.499140][ T7984] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 722.505233][ T7984] x64_sys_call+0x2da0/0x3ba0 [ 722.510173][ T7984] do_syscall_64+0xcd/0x1e0 [ 722.514900][ T7984] ? clear_bhb_loop+0x25/0x80 [ 722.519847][ T7984] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 722.526005][ T7984] RIP: 0033:0x7ff697b7def9 [ 722.530660][ T7984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 722.550587][ T7984] RSP: 002b:00007ff69897e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 722.559301][ T7984] RAX: ffffffffffffffda RBX: 00007ff697d35f80 RCX: 00007ff697b7def9 [ 722.567485][ T7984] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 722.575669][ T7984] RBP: 00007ff69897e090 R08: 0000000000000000 R09: 0000000000000000 [ 722.583852][ T7984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 722.592035][ T7984] R13: 0000000000000000 R14: 00007ff697d35f80 R15: 00007ffef8b23278 [ 722.600262][ T7984] [ 722.882060][ T7967] loop0: detected capacity change from 0 to 256 [ 722.939207][ T7967] vfat: Unknown parameter '0xffffffffffffffff' [ 723.558514][ T7674] veth0_vlan: entered promiscuous mode [ 724.500843][ T8000] FAULT_INJECTION: forcing a failure. [ 724.500843][ T8000] name failslab, interval 1, probability 0, space 0, times 0 [ 724.520306][ T8000] CPU: 0 UID: 0 PID: 8000 Comm: syz.0.453 Not tainted 6.11.0-syzkaller-08481-g88264981f208 #0 [ 724.530891][ T8000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 724.541240][ T8000] Call Trace: [ 724.544750][ T8000] [ 724.547895][ T8000] dump_stack_lvl+0x216/0x2d0 [ 724.552902][ T8000] dump_stack+0x1e/0x30 [ 724.557320][ T8000] should_fail_ex+0x748/0x7f0 [ 724.562319][ T8000] should_failslab+0x17f/0x210 [ 724.567405][ T8000] __kmalloc_cache_noprof+0xbf/0xb00 [ 724.573037][ T8000] ? nl80211_vendor_cmd_dump+0x29b/0x24a0 [ 724.579092][ T8000] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 724.585291][ T8000] nl80211_vendor_cmd_dump+0x29b/0x24a0 [ 724.591150][ T8000] ? __kmalloc_node_track_caller_noprof+0x735/0xf90 [ 724.598092][ T8000] ? kmsan_get_metadata+0x13e/0x1c0 [ 724.603602][ T8000] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 724.610243][ T8000] ? kmsan_get_metadata+0x13e/0x1c0 [ 724.615759][ T8000] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 724.621948][ T8000] ? kmsan_get_metadata+0x13e/0x1c0 [ 724.627528][ T8000] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 724.633719][ T8000] ? __pfx_nl80211_vendor_cmd_dump+0x10/0x10 [ 724.640128][ T8000] genl_dumpit+0x19d/0x290 [ 724.644857][ T8000] ? __pfx_genl_dumpit+0x10/0x10 [ 724.650117][ T8000] netlink_dump+0x9a7/0x13a0 [ 724.655052][ T8000] __netlink_dump_start+0xb3f/0xcf0 [ 724.660522][ T8000] genl_rcv_msg+0x106d/0x12c0 [ 724.665452][ T8000] ? __pfx_nl80211_vendor_cmd_dump+0x10/0x10 [ 724.671697][ T8000] ? __pfx_genl_start+0x10/0x10 [ 724.676776][ T8000] ? __pfx_genl_dumpit+0x10/0x10 [ 724.681910][ T8000] ? __pfx_genl_done+0x10/0x10 [ 724.686924][ T8000] netlink_rcv_skb+0x375/0x650 [ 724.691886][ T8000] ? __pfx_genl_rcv_msg+0x10/0x10 [ 724.697123][ T8000] ? __pfx_genl_rcv+0x10/0x10 [ 724.702023][ T8000] genl_rcv+0x40/0x60 [ 724.706194][ T8000] netlink_unicast+0xf52/0x1260 [ 724.711309][ T8000] netlink_sendmsg+0x10da/0x11e0 [ 724.716483][ T8000] ? __pfx_netlink_sendmsg+0x10/0x10 [ 724.722061][ T8000] ? __pfx_netlink_sendmsg+0x10/0x10 [ 724.727617][ T8000] __sock_sendmsg+0x30f/0x380 [ 724.732585][ T8000] ____sys_sendmsg+0x877/0xb60 [ 724.737703][ T8000] ___sys_sendmsg+0x28d/0x3c0 [ 724.742694][ T8000] ? kmsan_get_metadata+0x13e/0x1c0 [ 724.748236][ T8000] ? __rcu_read_unlock+0x7b/0xe0 [ 724.753492][ T8000] ? __fget_files+0x4f5/0x5c0 [ 724.758596][ T8000] ? kmsan_get_metadata+0x13e/0x1c0 [ 724.764117][ T8000] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 724.770270][ T8000] __x64_sys_sendmsg+0x301/0x490 [ 724.775535][ T8000] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 724.781718][ T8000] x64_sys_call+0x2da0/0x3ba0 [ 724.786745][ T8000] do_syscall_64+0xcd/0x1e0 [ 724.791528][ T8000] ? clear_bhb_loop+0x25/0x80 [ 724.796536][ T8000] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 724.802751][ T8000] RIP: 0033:0x7fa42b77def9 [ 724.807523][ T8000] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 724.827456][ T8000] RSP: 002b:00007fa42c5f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 724.836203][ T8000] RAX: ffffffffffffffda RBX: 00007fa42b935f80 RCX: 00007fa42b77def9 [ 724.844444][ T8000] RDX: 0000000000000000 RSI: 0000000020000680 RDI: 0000000000000003 [ 724.852658][ T8000] RBP: 00007fa42c5f6090 R08: 0000000000000000 R09: 0000000000000000 [ 724.860888][ T8000] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 724.869120][ T8000] R13: 0000000000000000 R14: 00007fa42b935f80 R15: 00007ffeb9b60fb8 [ 724.877361][ T8000] [ 725.847467][ T7674] veth1_vlan: entered promiscuous mode [ 726.043294][ T8006] netlink: 4 bytes leftover after parsing attributes in process `syz.3.455'. [ 726.330673][ T7674] veth0_macvtap: entered promiscuous mode [ 726.414449][ T7674] veth1_macvtap: entered promiscuous mode [ 726.787595][ T7674] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 726.799408][ T7674] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 726.810094][ T7674] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 726.820905][ T7674] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 726.831168][ T7674] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 726.842070][ T7674] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 726.852180][ T7674] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 726.862999][ T7674] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 726.885177][ T7674] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 726.958935][ T8006] loop3: detected capacity change from 0 to 2048 [ 727.023681][ T8006] udf: Bad value for 'fileset' [ 727.156509][ T7674] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 727.167462][ T7674] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 727.184623][ T7674] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 727.197167][ T7674] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 727.207548][ T7674] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 727.218299][ T7674] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 727.228439][ T7674] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 727.239241][ T7674] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 727.254247][ T7674] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 727.291581][ T8022] netlink: 8 bytes leftover after parsing attributes in process `syz.0.459'. [ 727.344851][ T7674] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 727.354183][ T7674] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 727.364019][ T7674] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 727.373283][ T7674] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 727.654550][ T8026] loop1: detected capacity change from 0 to 512 [ 727.964240][ T8031] loop3: detected capacity change from 0 to 512 [ 728.014176][ T8031] EXT4-fs: Ignoring removed mblk_io_submit option [ 728.030268][ T8031] EXT4-fs (loop3): VFS: Can't find ext4 filesystem [ 728.086842][ T8026] EXT4-fs error (device loop1): ext4_quota_enable:7049: comm syz.1.461: Bad quota inum: 1, type: 2 [ 728.148544][ T8026] EXT4-fs warning (device loop1): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=1). Please run e2fsck to fix. [ 728.172586][ T8026] EXT4-fs (loop1): mount failed [ 728.357770][ T8029] loop3: detected capacity change from 0 to 256 [ 728.427358][ T8029] vfat: Unknown parameter '0xffffffffffffffff' [ 728.527746][ T8039] tipc: Started in network mode [ 728.532963][ T8039] tipc: Node identity fe80000000000000000000000000001, cluster identity 4711 [ 728.545657][ T8039] tipc: Enabled bearer , priority 10 [ 728.920299][ T8043] netlink: 8 bytes leftover after parsing attributes in process `syz.0.465'. [ 729.280453][ T8043] loop0: detected capacity change from 0 to 2048 [ 729.437332][ T8058] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 729.470096][ T10] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 729.674222][ T8058] NILFS (loop0): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 729.679876][ T5244] tipc: Node number set to 4269801488 [ 729.685404][ T8058] NILFS error (device loop0): nilfs_bmap_propagate: broken bmap (inode number=4) [ 729.724056][ T10] usb 2-1: Using ep0 maxpacket: 8 [ 729.752200][ T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 729.763622][ T10] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 729.776989][ T10] usb 2-1: New USB device found, idVendor=0c70, idProduct=f00a, bcdDevice= 0.00 [ 729.786392][ T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 729.918704][ T8058] Remounting filesystem read-only [ 730.063590][ T10] usb 2-1: config 0 descriptor?? [ 731.109222][ T8083] netlink: 4 bytes leftover after parsing attributes in process `syz.0.471'. [ 731.185752][ T8081] Invalid logical block size (17) [ 731.639500][ T8083] loop0: detected capacity change from 0 to 2048 [ 731.696011][ T8083] udf: Bad value for 'fileset' [ 732.412791][ T8093] loop2: detected capacity change from 0 to 256 [ 732.430751][ T8093] exfat: Deprecated parameter 'namecase' [ 732.437054][ T8093] exfat: Deprecated parameter 'utf8' [ 732.747862][ T10] usbhid 2-1:0.0: can't add hid device: -71 [ 732.754513][ T10] usbhid 2-1:0.0: probe with driver usbhid failed with error -71 [ 732.835080][ T8093] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 732.967229][ T8099] loop0: detected capacity change from 0 to 512 [ 732.980181][ T10] usb 2-1: USB disconnect, device number 7 [ 733.129009][ T8099] EXT4-fs error (device loop0): ext4_quota_enable:7049: comm syz.0.475: Bad quota inum: 1, type: 2 [ 733.171788][ T8099] EXT4-fs warning (device loop0): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=1). Please run e2fsck to fix. [ 733.213626][ T8099] EXT4-fs (loop0): mount failed [ 733.280053][ T8108] loop1: detected capacity change from 0 to 256 [ 733.310642][ T8108] vfat: Unknown parameter '0xffffffffffffffff' [ 734.099655][ T8118] loop2: detected capacity change from 0 to 1024 [ 734.418562][ T8124] loop3: detected capacity change from 0 to 256 [ 734.427506][ T8124] exfat: Deprecated parameter 'namecase' [ 734.786761][ T8124] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 734.930234][ T3214] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 734.938505][ T3214] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 735.034596][ T2949] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 735.042894][ T2949] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 735.405921][ T5279] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 735.560193][ T8135] loop0: detected capacity change from 0 to 256 [ 735.602143][ T8135] exfat: Deprecated parameter 'namecase' [ 735.830926][ T8135] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6e84b2e, utbl_chksum : 0xe619d30d) [ 735.856951][ T5279] usb 2-1: device descriptor read/64, error -71 [ 736.000723][ T2962] hfsplus: b-tree write err: -5, ino 4 [ 736.213011][ T8139] loop3: detected capacity change from 0 to 512 [ 736.257247][ T8144] netlink: 8 bytes leftover after parsing attributes in process `syz.4.486'. [ 736.442402][ T8139] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #12: comm syz.3.484: corrupted in-inode xattr: invalid ea_ino [ 736.463383][ T8144] loop4: detected capacity change from 0 to 2048 [ 736.522090][ T8139] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.484: couldn't read orphan inode 12 (err -117) [ 736.543361][ T8139] EXT4-fs (loop3): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 736.733975][ T5279] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 736.874706][ T8149] loop0: detected capacity change from 0 to 512 [ 737.077434][ T8149] EXT4-fs error (device loop0): ext4_quota_enable:7049: comm syz.0.487: Bad quota inum: 1, type: 2 [ 737.098972][ T8151] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 737.134048][ T8149] EXT4-fs warning (device loop0): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-117, ino=1). Please run e2fsck to fix. [ 737.154252][ T5279] usb 2-1: device descriptor read/64, error -71 [ 737.173953][ T8149] EXT4-fs (loop0): mount failed [ 737.176682][ T8151] NILFS (loop4): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 737.190109][ T8151] NILFS error (device loop4): nilfs_bmap_propagate: broken bmap (inode number=4) [ 737.204986][ T8151] Remounting filesystem read-only [ 737.266974][ T5279] usb usb2-port1: attempt power cycle [ 737.726840][ T7674] NILFS (loop4): disposed unprocessed dirty file(s) when stopping log writer [ 737.856314][ T5279] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 738.122652][ T5279] usb 2-1: device descriptor read/8, error -71 [ 738.414309][ T8172] netlink: 4 bytes leftover after parsing attributes in process `syz.0.492'. [ 738.829842][ T8175] loop0: detected capacity change from 0 to 2048 [ 738.839325][ T8175] udf: Bad value for 'fileset' [ 739.334085][ T6634] EXT4-fs (loop3): unmounting filesystem 00000005-0000-0000-0000-000000000000. [ 739.600683][ T8190] netlink: 8 bytes leftover after parsing attributes in process `syz.4.501'. [ 740.294936][ T8190] loop4: detected capacity change from 0 to 2048 [ 740.715060][ T8203] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 740.831656][ T8203] NILFS (loop4): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 740.843156][ T8203] NILFS error (device loop4): nilfs_bmap_propagate: broken bmap (inode number=4) [ 741.059728][ T8203] Remounting filesystem read-only [ 741.336694][ T5200] Bluetooth: hci5: unexpected event 0x3e length: 908 > 260 [ 741.336843][ T5200] Bluetooth: hci5: unexpected subevent 0x0d length: 907 > 260 [ 741.352419][ T5200] Bluetooth: hci5: adv larger than maximum supported [ 741.352530][ T5200] Bluetooth: hci5: adv larger than maximum supported [ 741.359546][ T5200] Bluetooth: hci5: adv larger than maximum supported [ 741.366619][ T5200] Bluetooth: hci5: adv larger than maximum supported [ 741.373580][ T5200] Bluetooth: hci5: adv larger than maximum supported [ 741.380772][ T5200] Bluetooth: hci5: adv larger than maximum supported [ 741.815791][ T7674] NILFS (loop4): disposed unprocessed dirty file(s) when stopping log writer [ 741.929160][ T8211] netlink: 4 bytes leftover after parsing attributes in process `syz.3.509'. [ 742.340183][ T8211] loop3: detected capacity change from 0 to 2048 [ 742.348953][ T6730] usb 3-1: new high-speed USB device number 15 using dummy_hcd [ 742.349572][ T8211] udf: Bad value for 'fileset' [ 742.585049][ T6730] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 742.596198][ T6730] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 742.624325][ T6730] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 742.634282][ T6730] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 742.646410][ T6730] usb 3-1: Product: syz [ 742.650877][ T6730] usb 3-1: Manufacturer: syz [ 742.657090][ T6730] usb 3-1: SerialNumber: syz [ 743.826059][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 743.834058][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 743.842105][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 743.849722][ T6730] cdc_ncm 3-1:1.0: bind() failure [ 743.855128][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 743.861806][ T6730] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found [ 743.862938][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 743.874963][ T6730] cdc_ncm 3-1:1.1: bind() failure [ 743.890833][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 743.898793][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 743.906607][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 743.914405][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 743.922415][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 743.930218][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 743.938115][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 743.945934][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 743.953638][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 743.961552][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 743.975377][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 743.984844][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 743.992760][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.000542][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.008339][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.016158][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.023843][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.031698][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.039693][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.047537][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.055276][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.063198][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.077317][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.085034][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.094711][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.104768][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.112790][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.120573][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.128395][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.136220][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.143900][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.151798][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.157776][ T6730] usb 3-1: USB disconnect, device number 15 [ 744.159541][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.179502][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.189124][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.197203][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.204925][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.212774][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.222096][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.230567][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.238444][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.246204][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.253877][ T10] hid-generic 0000:0000:0003.0001: unknown main item tag 0x0 [ 744.517178][ T10] hid-generic 0000:0000:0003.0001: hidraw0: HID v0.00 Device [syz0] on syz1 [ 744.588730][ T4811] usb 2-1: new high-speed USB device number 12 using dummy_hcd [ 744.772855][ T4811] usb 2-1: config 0 has no interfaces? [ 744.778914][ T4811] usb 2-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00 [ 744.793130][ T4811] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 744.888212][ T4811] usb 2-1: config 0 descriptor?? [ 745.179308][ T10] usb 2-1: USB disconnect, device number 12 [ 745.334084][ T8253] netlink: 8 bytes leftover after parsing attributes in process `syz.3.522'. [ 746.194628][ T8253] loop3: detected capacity change from 0 to 2048 [ 746.422118][ T8270] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 746.511262][ T8271] netlink: 4 bytes leftover after parsing attributes in process `syz.0.526'. [ 746.587566][ T8270] NILFS (loop3): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 746.598985][ T8270] NILFS error (device loop3): nilfs_bmap_propagate: broken bmap (inode number=4) [ 746.773120][ T8270] Remounting filesystem read-only [ 746.972782][ T8274] loop1: detected capacity change from 0 to 1024 [ 747.314542][ T8275] loop0: detected capacity change from 0 to 2048 [ 747.366332][ T8275] udf: Bad value for 'fileset' [ 747.406625][ T6634] NILFS (loop3): disposed unprocessed dirty file(s) when stopping log writer [ 748.770199][ T10] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 748.981521][ T10] usb 1-1: Using ep0 maxpacket: 8 [ 749.032939][ T10] usb 1-1: config 179 has an invalid interface number: 65 but max is 0 [ 749.041882][ T10] usb 1-1: config 179 has no interface number 0 [ 749.048670][ T10] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 64, changing to 10 [ 749.060435][ T10] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 1029, setting to 1024 [ 749.072266][ T10] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 749.084025][ T10] usb 1-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 749.102738][ T10] usb 1-1: config 179 interface 65 has no altsetting 0 [ 749.112088][ T10] usb 1-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00 [ 749.121605][ T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 749.235750][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.243637][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.251582][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.259473][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.267288][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.274965][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.282862][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.291113][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.305032][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.314621][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.322634][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.330467][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.338393][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.346231][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.353930][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.361807][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.369619][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.377927][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.385713][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.393382][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.407529][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.415249][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.424982][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.432904][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.440778][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.448610][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.456452][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.464131][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.471962][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.480212][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.487992][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.495993][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.509786][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.519343][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.527149][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.534857][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.542705][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.550499][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.558308][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.566162][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.573888][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.583083][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.590935][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.598781][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.613003][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.622715][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.630581][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 749.639916][ T4811] hid-generic 0000:0000:0003.0002: unknown main item tag 0x0 [ 750.201068][ T8289] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 750.260763][ T10] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:179.65/input/input6 [ 750.269858][ T6753] usb 2-1: new high-speed USB device number 13 using dummy_hcd [ 750.780294][ T8289] loop0: detected capacity change from 0 to 1024 [ 750.956435][ T8303] loop2: detected capacity change from 0 to 32768 [ 750.959374][ T8303] (syz.2.538,8303,1):ocfs2_parse_options:1448 ERROR: Unrecognized mount option "dir_resv_level=00000000000000000008" or missing value [ 750.959544][ T8303] (syz.2.538,8303,1):ocfs2_fill_super:1178 ERROR: status = -22 [ 751.025343][ T4811] hid-generic 0000:0000:0003.0002: hidraw0: HID v0.00 Device [syz0] on syz1 [ 751.620841][ T4604] input input6: unable to receive magic message: -110 [ 751.688034][ T4604] input input6: unable to receive magic message: -32 [ 751.701220][ T8289] hfsplus: failed to load attributes file [ 751.711952][ T8309] netlink: 8 bytes leftover after parsing attributes in process `syz.2.539'. [ 751.801183][ T4604] input input6: unable to receive magic message: -32 [ 751.851889][ T4604] input input6: unable to receive magic message: -32 [ 751.994202][ C0] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 751.994371][ T5279] usb 1-1: USB disconnect, device number 6 [ 751.997230][ T5279] xpad 1-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19 [ 752.226007][ T6753] usb 2-1: device descriptor read/all, error -71 [ 752.314738][ T8309] loop2: detected capacity change from 0 to 2048 [ 752.453058][ T8317] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 752.524405][ T8317] NILFS (loop2): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 752.535688][ T8317] NILFS error (device loop2): nilfs_bmap_propagate: broken bmap (inode number=4) [ 752.650639][ T8317] Remounting filesystem read-only [ 753.058298][ T8325] netlink: 4 bytes leftover after parsing attributes in process `syz.3.543'. [ 753.476756][ T6631] NILFS (loop2): disposed unprocessed dirty file(s) when stopping log writer [ 753.915952][ T5200] Bluetooth: hci1: unexpected event 0x3e length: 908 > 260 [ 753.916099][ T5200] Bluetooth: hci1: unexpected subevent 0x0d length: 907 > 260 [ 753.931475][ T5200] Bluetooth: hci1: adv larger than maximum supported [ 753.931597][ T5200] Bluetooth: hci1: adv larger than maximum supported [ 753.938649][ T5200] Bluetooth: hci1: adv larger than maximum supported [ 753.945745][ T5200] Bluetooth: hci1: adv larger than maximum supported [ 753.952670][ T5200] Bluetooth: hci1: adv larger than maximum supported [ 753.959684][ T5200] Bluetooth: hci1: adv larger than maximum supported [ 753.997051][ T8315] loop0: detected capacity change from 0 to 4096 [ 754.088557][ T8315] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 754.302707][ T8337] usb usb8: usbfs: process 8337 (syz.1.547) did not claim interface 0 before use [ 754.328894][ T8328] loop3: detected capacity change from 0 to 2048 [ 754.342408][ T8328] udf: Bad value for 'fileset' [ 755.277732][ T8335] sctp: failed to load transform for md5: -2 [ 762.671424][ T8413] netlink: 20 bytes leftover after parsing attributes in process `syz.3.569'. [ 765.967019][ T8473] lo speed is unknown, defaulting to 1000 [ 766.844256][ T8471] 8021q: adding VLAN 0 to HW filter on device ipvlan2 [ 768.214775][ T8502] netlink: 'syz.1.596': attribute type 1 has an invalid length. [ 768.868046][ T8511] netlink: 24 bytes leftover after parsing attributes in process `syz.3.597'. [ 770.504566][ T8522] 9pnet_fd: Insufficient options for proto=fd [ 771.058992][ T8530] kvm: emulating exchange as write [ 772.068422][ T8542] siw: device registration error -23 [ 773.399300][ T8556] input: syz1 as /devices/virtual/input/input7 [ 775.171536][ T8582] lo speed is unknown, defaulting to 1000 [ 778.177252][ T8611] ptrace attach of "./syz-executor exec"[6634] was attempted by "./syz-executor exec"[8611] [ 780.384456][ T8624] afs: Unknown parameter ' 0x000000000000000b' [ 780.611546][ T8630] syzkaller1: entered promiscuous mode [ 780.617590][ T8630] syzkaller1: entered allmulticast mode [ 781.170232][ T8634] Bluetooth: MGMT ver 1.23 [ 782.072363][ T8647] nfs4: Unknown parameter 'context' [ 782.255003][ T1235] ieee802154 phy0 wpan0: encryption failed: -22 [ 782.261979][ T1235] ieee802154 phy1 wpan1: encryption failed: -22 [ 782.492603][ T8652] fuse: Unknown parameter 'éØßþ' [ 785.875861][ T8682] overlayfs: failed to resolve './file0': -2 [ 787.226098][ T8685] dccp_close: ABORT with 1964 bytes unread [ 788.865254][ T8708] netlink: 60 bytes leftover after parsing attributes in process `syz.1.661'. [ 788.875146][ T8708] netlink: 60 bytes leftover after parsing attributes in process `syz.1.661'. [ 789.618920][ T8719] netlink: 4 bytes leftover after parsing attributes in process `syz.0.666'. [ 789.649211][ T8719] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 789.658468][ T8719] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 789.667775][ T8719] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 789.676936][ T8719] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 789.686609][ T8719] vxlan0: entered promiscuous mode [ 793.914564][ C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 795.010314][ T8762] lo speed is unknown, defaulting to 1000 [ 795.643725][ T8771] tipc: Started in network mode [ 795.649124][ T8771] tipc: Node identity aaaaaaaaaa3, cluster identity 4711 [ 795.657282][ T8771] tipc: Enabled bearer , priority 0 [ 795.941963][ T8771] tipc: Enabled bearer , priority 0 [ 797.055784][ T5244] tipc: Node number set to 10136234 [ 800.384737][ T8478] coredump: 1(syz.2.588): written to core: VMAs: 34, size 97419264; core: 60015558 bytes, pos 97427456 [ 802.727850][ T8812] netlink: 24 bytes leftover after parsing attributes in process `syz.4.696'. [ 802.799065][ T8812] netlink: 'syz.4.696': attribute type 10 has an invalid length. [ 802.904169][ T8812] bond0: (slave netdevsim3): Enslaving as an active interface with a down link [ 803.848617][ T8822] netlink: 92 bytes leftover after parsing attributes in process `syz.3.700'. [ 803.863751][ T8822] netlink: 92 bytes leftover after parsing attributes in process `syz.3.700'. [ 804.036575][ T8823] lo speed is unknown, defaulting to 1000 [ 804.253670][ T8826] tipc: Enabling of bearer rejected, already enabled [ 804.331194][ T8826] tipc: Enabling of bearer rejected, already enabled [ 804.976457][ T8826] netlink: 16 bytes leftover after parsing attributes in process `syz.4.699'. [ 806.105220][ T5200] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 806.114832][ T5200] Bluetooth: hci1: Injecting HCI hardware error event [ 806.123813][ T5200] Bluetooth: hci1: hardware error 0x00 [ 807.356632][ T5244] usb 2-1: new high-speed USB device number 15 using dummy_hcd [ 807.565800][ T5244] usb 2-1: Using ep0 maxpacket: 32 [ 807.605370][ T5244] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 807.617648][ T5244] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 807.628513][ T5244] usb 2-1: New USB device found, idVendor=046d, idProduct=c50c, bcdDevice= 0.00 [ 807.638112][ T5244] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 807.743659][ T5244] usb 2-1: config 0 descriptor?? [ 808.148673][ T5244] usbhid 2-1:0.0: can't add hid device: -71 [ 808.155398][ T5244] usbhid 2-1:0.0: probe with driver usbhid failed with error -71 [ 808.198717][ T5244] usb 2-1: USB disconnect, device number 15 [ 808.967474][ T5200] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 810.334892][ T8896] netlink: 16 bytes leftover after parsing attributes in process `syz.3.725'. [ 810.758236][ T8898] usb usb7: usbfs: process 8898 (syz.4.728) did not claim interface 0 before use [ 811.668681][ T8906] dvmrp8: entered allmulticast mode [ 812.001614][ T8908] vxcan0: tx drop: invalid sa for name 0x0000000000100000 [ 812.382372][ T8916] netlink: 44 bytes leftover after parsing attributes in process `syz.2.734'. [ 812.391966][ T8916] netlink: 4 bytes leftover after parsing attributes in process `syz.2.734'. [ 812.908964][ T8920] netlink: 'syz.1.736': attribute type 10 has an invalid length. [ 812.973384][ T8920] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 814.938736][ T6753] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 815.188432][ T6753] usb 4-1: Using ep0 maxpacket: 8 [ 815.285843][ T6753] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024 [ 815.297513][ T6753] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 815.307886][ T6753] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 815.318082][ T6753] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 815.331503][ T6753] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 815.346679][ T6753] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 815.715087][ T6753] usb 4-1: usb_control_msg returned -32 [ 815.721398][ T6753] usbtmc 4-1:16.0: can't read capabilities [ 816.121595][ T8962] ===================================================== [ 816.129274][ T8962] BUG: KMSAN: kernel-usb-infoleak in usb_submit_urb+0x597/0x2350 [ 816.131754][ T8955] netlink: 'syz.2.750': attribute type 12 has an invalid length. [ 816.137548][ T8962] usb_submit_urb+0x597/0x2350 [ 816.150363][ T8962] usbtmc_write+0xc2c/0x1210 [ 816.155162][ T8962] vfs_write+0x487/0x1540 [ 816.165924][ T8962] ksys_write+0x20f/0x4c0 [ 816.170507][ T8962] __x64_sys_write+0x93/0xe0 [ 816.175327][ T8962] x64_sys_call+0x306a/0x3ba0 [ 816.182326][ T8962] do_syscall_64+0xcd/0x1e0 [ 816.187180][ T8962] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 816.193321][ T8962] [ 816.195948][ T8962] Uninit was created at: [ 816.200458][ T8962] __kmalloc_cache_noprof+0x4f0/0xb00 [ 816.206380][ T8962] usbtmc_write+0x3cd/0x1210 [ 816.211216][ T8962] vfs_write+0x487/0x1540 [ 816.216185][ T8962] ksys_write+0x20f/0x4c0 [ 816.220907][ T8962] __x64_sys_write+0x93/0xe0 [ 816.225900][ T8962] x64_sys_call+0x306a/0x3ba0 [ 816.230865][ T8962] do_syscall_64+0xcd/0x1e0 [ 816.235777][ T8962] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 816.241929][ T8962] [ 816.244374][ T8962] Bytes 22-23 of 24 are uninitialized [ 816.250488][ T8962] Memory access of size 24 starts at ffff88801fe36000 [ 816.257602][ T8962] [ 816.260057][ T8962] CPU: 0 UID: 0 PID: 8962 Comm: syz.3.746 Not tainted 6.11.0-syzkaller-08481-g88264981f208 #0 [ 816.277151][ T8962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 816.289756][ T8962] ===================================================== [ 816.297159][ T8962] Disabling lock debugging due to kernel taint [ 816.303464][ T8962] Kernel panic - not syncing: kmsan.panic set ... [ 816.310131][ T8962] CPU: 0 UID: 0 PID: 8962 Comm: syz.3.746 Tainted: G B 6.11.0-syzkaller-08481-g88264981f208 #0 [ 816.322105][ T8962] Tainted: [B]=BAD_PAGE [ 816.326362][ T8962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 816.336538][ T8962] Call Trace: [ 816.339901][ T8962] [ 816.342918][ T8962] dump_stack_lvl+0x216/0x2d0 [ 816.347766][ T8962] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 816.353771][ T8962] dump_stack+0x1e/0x30 [ 816.358090][ T8962] panic+0x4e2/0xcf0 [ 816.362285][ T8962] ? kmsan_get_metadata+0x91/0x1c0 [ 816.367707][ T8962] kmsan_report+0x2c7/0x2d0 [ 816.372500][ T8962] ? kmsan_get_metadata+0x13e/0x1c0 [ 816.377987][ T8962] ? kmsan_get_metadata+0x13e/0x1c0 [ 816.383435][ T8962] ? kmsan_internal_check_memory+0x48c/0x560 [ 816.389687][ T8962] ? kmsan_handle_urb+0x2c/0x40 [ 816.394771][ T8962] ? usb_submit_urb+0x597/0x2350 [ 816.399870][ T8962] ? usbtmc_write+0xc2c/0x1210 [ 816.404832][ T8962] ? vfs_write+0x487/0x1540 [ 816.409546][ T8962] ? ksys_write+0x20f/0x4c0 [ 816.414191][ T8962] ? __x64_sys_write+0x93/0xe0 [ 816.419094][ T8962] ? x64_sys_call+0x306a/0x3ba0 [ 816.424291][ T8962] ? do_syscall_64+0xcd/0x1e0 [ 816.429156][ T8962] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 816.435395][ T8962] ? _raw_spin_unlock_irqrestore+0x3f/0x60 [ 816.441423][ T8962] ? kmsan_get_metadata+0x13e/0x1c0 [ 816.446817][ T8962] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 816.453304][ T8962] ? kmsan_internal_poison_memory+0x7d/0x90 [ 816.459354][ T8962] ? x64_sys_call+0x306a/0x3ba0 [ 816.464370][ T8962] ? kmsan_internal_poison_memory+0x49/0x90 [ 816.470459][ T8962] ? kmsan_slab_alloc+0xdf/0x160 [ 816.475571][ T8962] ? __kmalloc_cache_noprof+0x4f0/0xb00 [ 816.481267][ T8962] ? usbtmc_write+0x3cd/0x1210 [ 816.486175][ T8962] ? vfs_write+0x487/0x1540 [ 816.490796][ T8962] ? ksys_write+0x20f/0x4c0 [ 816.495445][ T8962] ? __x64_sys_write+0x93/0xe0 [ 816.500348][ T8962] ? x64_sys_call+0x306a/0x3ba0 [ 816.505327][ T8962] ? do_syscall_64+0xcd/0x1e0 [ 816.510140][ T8962] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 816.516364][ T8962] ? kmsan_get_metadata+0x13e/0x1c0 [ 816.521749][ T8962] ? kmsan_get_metadata+0x13e/0x1c0 [ 816.527121][ T8962] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 816.533097][ T8962] ? _raw_spin_lock_irqsave+0x35/0xc0 [ 816.538606][ T8962] ? filter_irq_stacks+0x60/0x1a0 [ 816.543781][ T8962] kmsan_internal_check_memory+0x48c/0x560 [ 816.549734][ T8962] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 816.555716][ T8962] kmsan_handle_urb+0x2c/0x40 [ 816.560617][ T8962] usb_submit_urb+0x597/0x2350 [ 816.565522][ T8962] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 816.571545][ T8962] usbtmc_write+0xc2c/0x1210 [ 816.576331][ T8962] ? __pfx_usbtmc_write+0x10/0x10 [ 816.581485][ T8962] vfs_write+0x487/0x1540 [ 816.585944][ T8962] ? kmsan_get_metadata+0x13e/0x1c0 [ 816.591297][ T8962] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 816.597783][ T8962] ? kmsan_get_metadata+0x13e/0x1c0 [ 816.603125][ T8962] ksys_write+0x20f/0x4c0 [ 816.607578][ T8962] __x64_sys_write+0x93/0xe0 [ 816.612300][ T8962] x64_sys_call+0x306a/0x3ba0 [ 816.617135][ T8962] do_syscall_64+0xcd/0x1e0 [ 816.621764][ T8962] ? clear_bhb_loop+0x25/0x80 [ 816.626599][ T8962] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 816.632619][ T8962] RIP: 0033:0x7ff697b7def9 [ 816.637116][ T8962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 816.656945][ T8962] RSP: 002b:00007ff69895d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 816.665517][ T8962] RAX: ffffffffffffffda RBX: 00007ff697d36058 RCX: 00007ff697b7def9 [ 816.673620][ T8962] RDX: 000000000000000a RSI: 0000000020001680 RDI: 0000000000000004 [ 816.681724][ T8962] RBP: 00007ff697bf0b76 R08: 0000000000000000 R09: 0000000000000000 [ 816.689825][ T8962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 816.697905][ T8962] R13: 0000000000000000 R14: 00007ff697d36058 R15: 00007ffef8b23278 [ 816.706020][ T8962] [ 816.709488][ T8962] Kernel Offset: disabled [ 816.713895][ T8962] Rebooting in 86400 seconds..