last executing test programs: 1m18.264162487s ago: executing program 4 (id=376): r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_PIT(r0, 0x8048ae66, 0x0) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x4048aec9, &(0x7f0000000080)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000002}, {0x0, 0x0, 0x0, 0x3e, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x3}]}) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0) ioctl$sock_netdev_private(r1, 0x89f4, &(0x7f0000000300)="a743d9c137ff683ad7d7a2b7ab7539718b59b8455c955dd56a65baf7dd407f0073e7fd11bdba3f6a77ee575396712ebbc2df60cc5fd83700efe4eb9186c6a5cd20617b1342c5fafb50b32afefc0f626f658b9ac16d2462a626b6295609f13fd4e832b6c187579157") sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="020a040007000000b6f1ffff0000854105001a"], 0x38}}, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="020100090e000000030000000000000405000600000000000a0000000000000400000000000000000000002100000000000100000000000002000100010000000000010200fd000005000500000000000a"], 0x70}}, 0x0) sendmmsg(r1, &(0x7f0000000180), 0x3ef, 0x0) 1m17.426510138s ago: executing program 4 (id=379): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="a000000010003b0e2a1a86eb2636037f00000000", @ANYBLOB="0200000000008000800012000800010076746936740002"], 0xa0}}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000080)={&(0x7f0000000740)={0x124, 0x0, 0x20, 0x70bd25, 0x25dfdbfd, {{}, {@void, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x171b}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x3c}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xf}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x1}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xd}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xb}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xf7}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x1c3}], @chandef_params, @NL80211_ATTR_DURATION={0x8, 0x57, 0x8}, @chandef_params=[@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x4}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0xc}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x4}], @chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x9}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x7f}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x13}], @chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x5}], @chandef_params=[@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x2}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x3f2}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x4}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x2}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1478}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x5}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xc}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x5}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x5}]}, 0x124}, 0x1, 0x0, 0x0, 0x800}, 0x4) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000010100008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x2d) socketpair$unix(0x1, 0x3, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x11, 0x0, 0x0) futex(&(0x7f0000004000)=0x7, 0x5, 0x0, 0x0, &(0x7f0000004000), 0xb2020000) r3 = socket(0x200000100000011, 0x803, 0x8001) socket$kcm(0x2, 0xa, 0x2) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000180)={0x80000020}, 0x10) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) write$bt_hci(r3, &(0x7f0000000480)=ANY=[@ANYBLOB="010b0416000000000000fd977cc6c6fde423d68c82c6666432d276b58ae571"], 0x1a) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00'}) ioctl$sock_rose_SIOCADDRT(r3, 0x890b, &(0x7f0000000100)={@dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x1, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @bpq0, 0x6, [@bcast, @bcast, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}) 1m17.056452365s ago: executing program 4 (id=381): creat(&(0x7f0000000280)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f00000002c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x1000}}) open(&(0x7f0000000040)='./file0\x00', 0x141042, 0x0) mkdir(&(0x7f0000000080)='./file1\x00', 0x0) mount$fuse(0x0, 0x0, 0x0, 0x20, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0]) mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) chdir(&(0x7f0000000080)='./file1\x00') mkdir(&(0x7f0000000440)='./file0\x00', 0x0) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000200)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}}) r3 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29, r3}, './file0\x00'}) 1m16.693642183s ago: executing program 4 (id=383): syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0xa00008, &(0x7f0000000100), 0x1, 0x7ad, &(0x7f00000007c0)="$eJzs3c9rG1ceAPDvyD/jZNdeWNjNngwLu4YQeZ31JruwsFn2sBQaCLTnJEZWTGrZCpYcYmNIQin00kNLD4XmknPTprdc++PaXvo39FAS0tYJTemhuIw0SmRbcpzEklL8+cBY782M9N533sybZ82gCWDfGk//5CIORwykydFsfhLZjOiPOFlf7+H6WiGdktjYeOW7pLbOg/W1QjS9J3Uwy/wxIj57I+JIbnu5lZXV+ZlSqbiU5SerCxcnKyurRy8szMwV54qLx6emp4+d+MeJ43sX6w9frh66+/b///rRyZ9e/8Ottz5P4mQcypY1x7FXxmM82yYD6Sbc5H97XViPJb2uAM8kPTT76kd5HI7R6NuhJf/T1ZoBAJ1yJSI2AIB9JnH+B4B9pvE9wIP1tUJjivr1nKs9/WKiS+79NyKG6/E3rm/Wl/TXr9l9NVy7DjryIKldI2lIImJsD8ofj4jrt8/cTKfo0HVIgFauXouIc2PjW/v/tIfbes/C0/rbLtYZ35LX/0H3fJKOf/65ffwXkcuO/+Ha363jn6EWx+6zePLxn7uzKTuwB4U2Scd//266t+1hU/yZsb4s95vamG8gOX+hVEz7tt9GxEQMDKX5qR3KmLj/8/12y5rHf9+/89oHafnp6+M1cnf6hza/Z3amOvM8MTe7dy3iT/2t4k8etX/SZvx7epdlvPSvN99vtyyNP423MW2Pv7M2bkT8pWX7P74PKtnx/sTJ2u4w2dgpWvj46/dG2pXf3P7Xb6clrRUa/wt0Q9r+IzvHP5Y0369Zefoyvrgx+mm7ZZvjP3MzLX9z/K33/8Hk1Vp6MJt3eaZaXZqKGExe3j7/2OP3NvKN9dP4J/7c+vjfaf9Pu6FzWXrjCTc/9t/99sNnj7+z0vhn0/ZPsiCe2P5Pn7j1cL6vXfm7a//pWmoim7O9/+vf9rm7reBzbTwAAAAAAAAAAAAAAAAAAAAAAAAA2KVcRByKJJd/lM7l8vn6M7x/HyO5UrlSPXK+vLw4G7VnZY/FQK7xU5ejTb+HOpX9Hn4jf2xL/u8R8buIeHfoQC2fL5RLs70OHgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAyB9s8/z/1zVCvawcAdMxwrysAAHSd8z8A7D9tzv+DrWcf6GhdAIDuqJ3/k/5eVwMA6CLf/wPA/uP8DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQIedPnUqnTZ+XF8rpPnZSyvL8+VLR2eLlfn8wnIhXygvXczPlctzpWK+UF5o+0FX6y+lcvnidCwuX56sFivVycrK6tmF8vJi9eyFhZm54tniQNciAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDdq6yszs+USsUliZ0TV16IalzLmq3XW0PihUgMRUSnimjuJQ70pnMCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+BX4JQAA//9qsh/Y") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0) pwritev2(r0, &(0x7f00000006c0)=[{&(0x7f0000000080)='7', 0x1}], 0x1, 0x6e45, 0x0, 0x0) ioctl$IOCTL_VMCI_DATAGRAM_SEND(r0, 0x7ab, &(0x7f0000000580)={&(0x7f0000000140)={{@host, 0xfae4}, {@my=0x1, 0x5}, 0x400, "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"}, 0x418, 0x4}) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x103042, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f00000005c0)='./file1\x00', 0x0, 0x105) sendfile(r1, r2, 0x0, 0x100001) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000eb0000000001000000940000930600003e5f0000000000000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r3}, 0x10) sendmsg$netlink(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000300)=ANY=[@ANYBLOB="2400000076001f03000000000000000008000000ffffffff0c000d80080003"], 0x24}], 0x1}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x14a) ioctl$SCSI_IOCTL_GET_IDLUN(r4, 0x5382, &(0x7f0000000000)) r5 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCADDRT(r5, 0x890b, &(0x7f0000000000)={0x4000000, {}, {0x2, 0x0, @local}, {0x2, 0x0, @empty}, 0x0, 0x0, 0x0, 0x0, 0xfffc}) r6 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCSIFBR(r6, 0x890c, &(0x7f0000000000)=@generic={0x0, 0x2}) fallocate(r4, 0x20, 0x0, 0x8000) 33.110120751s ago: executing program 3 (id=432): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = syz_mount_image$exfat(&(0x7f0000006c00), &(0x7f0000001b40)='./file0\x00', 0x208008de, &(0x7f0000000280)=ANY=[@ANYBLOB='namecase=1,discard,errors=continue,uid=', @ANYRESHEX=0x0, @ANYBLOB=',gid=', @ANYRESHEX=0x0, @ANYBLOB=',umask=00000000000000000000077,umask=00000000000000000005676,discard,gid=', @ANYRESHEX=0xee00, @ANYBLOB='\x00\x00'], 0x80, 0x1503, &(0x7f0000000580)="$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") dup(r1) socket$nl_route(0x10, 0x3, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x3, 0x0) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000002212ed142e0eb364000000"], 0x48) r2 = open(&(0x7f0000000040)='./file0\x00', 0x4002, 0x80) syz_genetlink_get_family_id$SEG6(&(0x7f0000000000), r2) socket$nl_route(0x10, 0x3, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000540)='mnt\x00', 0x0, 0x0) r5 = syz_io_uring_setup(0x94c, &(0x7f0000000240)={0x0, 0x0, 0x10100, 0x0, 0x0, 0x0, r4}, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$FUSE_BMAP(r4, &(0x7f0000000180)={0x48, 0x0, 0x0, {0xfffffffffffffffe}}, 0x40) socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000001c0)) write$UHID_CREATE2(r8, &(0x7f00000001c0)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r8, 0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}) io_uring_enter(r5, 0x2d3e, 0x0, 0x0, 0x0, 0x0) r9 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000080)={0x0, 0x0, 0x10002}) r10 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000080)=ANY=[@ANYRES16, @ANYRES32=r9, @ANYRES16=r3], 0x20}, 0x1, 0xc00000000000000}, 0x0) bind$bt_hci(r10, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6) write$binfmt_misc(r10, &(0x7f0000000080)=ANY=[@ANYBLOB="4c607b398c"], 0xd) ioctl$TCFLSH(r0, 0x40045431, 0x1000000000000) 31.495710851s ago: executing program 3 (id=435): syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x4, 0x4, 0x10000, 0x0, r1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3, 0x0, 0x0, @void, @value, @void, @value}, 0x48) sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000060000000090a010400000000000000000100e60008000a40000000000900020073797a31000000000900010073797a3000000000080005400000001f180011800e0001"], 0xa8}}, 0x0) socket$inet6(0xa, 0x0, 0x0) 31.475285054s ago: executing program 4 (id=403): creat(&(0x7f0000000280)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f00000002c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x1000}}) open(&(0x7f0000000040)='./file0\x00', 0x141042, 0x0) mkdir(&(0x7f0000000080)='./file1\x00', 0x0) mount$fuse(0x0, 0x0, 0x0, 0x20, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0]) mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) chdir(&(0x7f0000000080)='./file1\x00') mkdir(&(0x7f0000000440)='./file0\x00', 0x0) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000200)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}}) r3 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29, r3}, './file0\x00'}) 31.109729956s ago: executing program 2 (id=436): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) write$uinput_user_dev(r1, &(0x7f0000000200)={'syz0\x00', {0x6, 0x0, 0x0, 0x5e6}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x24b2, 0x0, 0x0, 0x8, 0x2, 0x0, 0x0, 0x2, 0x3, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], [0x3, 0x0, 0x0, 0xd1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x1, 0x0, 0x0, 0x0, 0x0, 0x56, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0x3], [0x7fff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xffffffff, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x3, 0x0, 0xffffffff, 0x0, 0x0, 0xfffffffc], [0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x400000, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, 0x45c) ioctl$UI_DEV_CREATE(r1, 0x5501) r2 = syz_open_dev$evdev(&(0x7f0000000700), 0x86, 0x0) ioctl$EVIOCGRAB(r2, 0x40044590, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x3000000) 30.59247576s ago: executing program 4 (id=438): r0 = socket$rds(0x15, 0x5, 0x0) openat$drirender128(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x200000000000000) 30.106352951s ago: executing program 2 (id=439): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) 29.419720864s ago: executing program 2 (id=440): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000005000000000000000000"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10) semop(0x0, &(0x7f0000000340)=[{0x0, 0xfffb, 0x1800}], 0x1) 28.763441365s ago: executing program 2 (id=443): socketpair$unix(0x1, 0x2, 0x0, 0x0) keyctl$set_reqkey_keyring(0xe, 0x5) request_key(&(0x7f00000000c0)='logon\x00', &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000000180)='-\x00', 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SNDRV_PCM_IOCTL_READN_FRAMES(0xffffffffffffffff, 0x80184153, 0x0) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f0000000080)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x3, 0x0, 0x0, 0x3}]}, 0x10) r2 = fcntl$dupfd(r0, 0x0, r1) sendmsg$IPSET_CMD_ADD(r2, &(0x7f0000006500)={0x0, 0x0, &(0x7f00000064c0)={&(0x7f0000006400)={0x14, 0x9, 0x6, 0x201, 0x0, 0x0, {0x5, 0x0, 0x9}}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r2, 0x2288, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000200), r2) sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(r2, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x10c, r4, 0x200, 0x70bd2a, 0x25dfdbfb, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0xb, 0x1000}, {0x6, 0x16, 0x80}, {0x5, 0x12, 0x1}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x1}, {0x6, 0x16, 0x8}, {0x5}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0xb, 0x9}, {0x6}, {0x5, 0x12, 0x1}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x8}, {0x6, 0x16, 0x4}, {0x5}}]}, 0x10c}, 0x1, 0x0, 0x0, 0x320e47f44562d109}, 0x4000010) setsockopt$inet6_int(r3, 0x29, 0xb, &(0x7f0000000040)=0x9, 0x4) setsockopt$inet6_int(r3, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4) bind$inet6(r3, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) recvmmsg(0xffffffffffffffff, &(0x7f0000001c80), 0x0, 0x2, 0x0) setsockopt$inet6_IPV6_HOPOPTS(r3, 0x29, 0x36, &(0x7f0000000080)=ANY=[], 0x10) sendto$inet6(r3, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$FS_IOC_GETFLAGS(r5, 0x5437, 0x0) epoll_pwait(0xffffffffffffffff, &(0x7f0000000080)=[{}], 0x1, 0x4000000, 0x0, 0x0) listen(0xffffffffffffffff, 0x0) pipe2(&(0x7f0000000080), 0x0) r6 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_MCAST_JOIN_GROUP(r6, 0x29, 0x2a, &(0x7f0000000140)={0x9, {{0xa, 0x0, 0x0, @mcast2}}}, 0x88) bind$inet6(r6, 0x0, 0x0) 28.119258999s ago: executing program 3 (id=444): r0 = mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x2000007, 0x401d031, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x1) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000000)) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1}) syz_memcpy_off$IO_URING_METADATA_GENERIC(r0, 0x0, &(0x7f0000000040), 0x2000000, 0x4) ioctl$UFFDIO_UNREGISTER(r1, 0xc020aa04, &(0x7f0000000180)={&(0x7f000063c000/0x4000)=nil, 0x4000}) 27.538763247s ago: executing program 3 (id=446): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty, 0x400000}, 0x1c) listen(r0, 0x4) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f0000000080)='./file0\x00', 0x810, &(0x7f0000001640)=ANY=[@ANYRES32=r0, @ANYRESDEC=r1, @ANYRESHEX=r2], 0x1, 0xa21, &(0x7f00000021c0)="$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") ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000200)={0x0, 0x0, 0xf000, 0x2000, &(0x7f0000f9a000/0x2000)=nil}) r4 = dup(r3) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) ioctl$KVM_RUN(r4, 0xae80, 0x0) 27.502461175s ago: executing program 2 (id=447): creat(&(0x7f0000000280)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) mount$fuse(0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000002c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x1000}}) open(&(0x7f0000000040)='./file0\x00', 0x141042, 0x0) mkdir(&(0x7f0000000080)='./file1\x00', 0x0) mount$fuse(0x0, 0x0, 0x0, 0x20, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0]) mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) chdir(&(0x7f0000000080)='./file1\x00') mkdir(&(0x7f0000000440)='./file0\x00', 0x0) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000200)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}}) r3 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29, r3}, './file0\x00'}) 26.835648754s ago: executing program 2 (id=450): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x0) 25.606360208s ago: executing program 3 (id=451): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="150000004effff000000000800395032303030"], 0x15) pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff0180"], 0x15) r2 = dup(r1) write$P9_RLERRORu(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="8b"], 0x53) write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000180)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x4, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={0x0, r4}, 0x18) write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f00000002c0)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, 0x30) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="7f450700000053c407cd"], 0x7c8) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000001340)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x6b}}) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) write$P9_RLERRORu(r3, &(0x7f0000000340)={0x16, 0x7, 0x2, {{0x9, 'trans=fd,'}, 0x1}}, 0x16) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r6 = socket$l2tp(0x2, 0x2, 0x73) bind$l2tp(r6, &(0x7f0000000300)={0x2, 0x0, @broadcast}, 0x10) connect$inet(r6, &(0x7f0000000000)={0x3, 0x0, @private}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10) chdir(&(0x7f0000000200)='./file0\x00') openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='pids.current\x00', 0x275a, 0x0) 25.125283944s ago: executing program 3 (id=452): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000002240)='./file0\x00', 0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], 0x6, 0x2a4, &(0x7f0000002680)="$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") prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r1, 0x40305829, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) sendmmsg$inet6(r0, &(0x7f0000001380)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)="03", 0x1}], 0x1}}], 0x1, 0x0) 5.90253943s ago: executing program 1 (id=480): r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r4 = socket$inet6(0xa, 0x6, 0x0) listen(r4, 0x0) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r5) sendmsg$NLBL_CIPSOV4_C_ADD(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000006040)={0x48, r6, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_MLSCATLST={0x1c, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8}]}]}]}, 0x48}}, 0x0) r7 = syz_io_uring_setup(0x2705, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=0x0, &(0x7f0000001440)=0x0) syz_io_uring_submit(r8, r9, &(0x7f0000001400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r4, 0x0}) io_uring_enter(r7, 0xa3d, 0x0, 0x0, 0x0, 0x0) r10 = io_uring_setup(0x4c9, &(0x7f0000000280)) r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r10, 0x9, 0x0, 0x0) sendmsg$sock(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=[@txtime={{0x18}}], 0x18}, 0x0) io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0x18, 0x20000000, r11) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x20044055) sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001300)=@newqdisc={0x84, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x54, 0x2, {{0x0, 0x0, 0x0, 0x0, 0xfffffffd}, [@TCA_NETEM_LOSS={0x1c, 0x5, 0x0, 0x1, [@NETEM_LOSS_GI={0x18, 0x1, {0x41ea, 0x2, 0x6, 0x401, 0x3}}]}, @TCA_NETEM_ECN={0x8, 0x7, 0x1}, @TCA_NETEM_RATE={0x14, 0x6, {0x400}}]}}}]}, 0x84}}, 0x0) sendto$packet(r0, &(0x7f0000000380)="44c394f305916c4516999da288", 0xd, 0x0, &(0x7f0000000440)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @dev}, 0x14) 5.352600697s ago: executing program 0 (id=481): syz_usb_connect(0x0, 0x59, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x2b, 0x45, 0xc3, 0x8, 0x17cc, 0x815, 0x47b7, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xe4, 0xc7, 0x74}}]}}]}}, 0x0) r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000001880), 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') r2 = syz_io_uring_setup(0xeec, &(0x7f0000000780)={0x0, 0x0, 0x10100}, &(0x7f00000001c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x27}) io_uring_enter(r2, 0x567, 0x0, 0x0, 0x0, 0x0) r5 = dup(r0) mount$9p_fd(0x0, &(0x7f0000000040)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB, @ANYRESHEX=r5, @ANYBLOB=',wfdno=', @ANYRESHEX=r1]) 4.995429133s ago: executing program 1 (id=482): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xe) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x2000840) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) write$FUSE_STATFS(0xffffffffffffffff, 0x0, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0) r2 = openat$dsp(0xffffffffffffff9c, 0x0, 0xb02, 0x0) ioctl$SNDCTL_DSP_SETTRIGGER(r2, 0x40045010, &(0x7f0000000080)) ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246) pwritev(r1, &(0x7f00000002c0)=[{&(0x7f0000000d00)="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", 0x1246}, {&(0x7f00000005c0)="9b2f7e9dd799fe2bb800ff077877a48044bdf07025b476cc9127b6e1eff4f9fa6fa5d37f1aea08d69d9bcdf479048e3555947e65a377a8001e3d8bf10f2e7a5dafd0d19abf72916aeb15306392cd85d7cb00824d8b32f3d98fc3ac9092b449126300000000000000683346ed84c5cc4a8c379f493e899a408f23102d5c09af", 0x7f}, {&(0x7f0000000b00)="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", 0x200}, {&(0x7f00000008c0)="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", 0x13b}], 0x4, 0x8, 0x0) 4.749975383s ago: executing program 1 (id=483): r0 = syz_open_dev$vivid(&(0x7f0000000000), 0x2, 0x2) fchdir(r0) (async) ioctl$VIDIOC_S_INPUT(r0, 0xc0045627, &(0x7f0000000040)=0x7fff) (async) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x179000, 0x0) getpeername$tipc(r1, &(0x7f00000000c0), &(0x7f0000000100)=0x10) (async) ioctl$VIDIOC_S_STD(r1, 0x40085618, &(0x7f0000000140)=0x7) (async) ioctl$IOMMU_HWPT_ALLOC$TEST(r1, 0x3b89, &(0x7f00000001c0)={0x28, 0x2, 0x0, 0x0, 0x0, 0x0, 0xdead, 0x4, &(0x7f0000000180)}) ioctl$IOMMU_HWPT_INVALIDATE$TEST(0xffffffffffffffff, 0x3b8d, &(0x7f0000000240)={0x20, r2, &(0x7f0000000200)=[{0x0, 0x3}, {0x1}, {0x1, 0x3}, {0x1, 0x2}, {}, {0x1}, {0x1, 0x2}], 0xdeadbeef, 0x8, 0x7}) (async) syz_usb_connect(0x4, 0x208, &(0x7f0000000280)={{0x12, 0x1, 0x110, 0x8a, 0x58, 0x9b, 0x20, 0x5c6, 0x902e, 0x3818, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1f6, 0x1, 0x1, 0x56, 0x20, 0x5, [{{0x9, 0x4, 0x5, 0x7, 0x8, 0xa7, 0x36, 0x4b, 0xb, [@uac_as={[@as_header={0x7, 0x24, 0x1, 0x5, 0x8, 0x2}, @as_header={0x7, 0x24, 0x1, 0x6, 0xe}, @as_header={0x7, 0x24, 0x1, 0x9, 0x1, 0x1002}]}], [{{0x9, 0x5, 0xa, 0x8, 0x400, 0x8, 0x8, 0x1}}, {{0x9, 0x5, 0x3, 0x1, 0x10, 0xe, 0x5, 0x0, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0x8, 0x3}, @generic={0xd7, 0x22, "572691c638766d2d13bf1acbe08ea9a4b8ba1d0efbd7f2e31588a2923f56467fdf5e93a6fb369ca71950411edd1b68d9bef45dc1ae51a8829e7eadcf700792fa71002b3168af8e2f29f60c6d6d7f1af65454820dd87f6253c98b1dac0d2d1c24855b41c72f21e33f80d8432e156899347d8e2ba26881eb1334acefa0e175818ef180614dd94ec9272e9a94092ed9e9c1619913d5cd193d9c7b2819989e80bfe5db9b5d634125a1a788614032de6bb1d98e773cfccb716ec0b8bba2707ca120cbc2aac7c7db31bee4d4929b8e28ee3157b64c1506de"}]}}, {{0x9, 0x5, 0xe, 0x2, 0x40, 0x3, 0x38, 0xaa, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0x1, 0x9}]}}, {{0x9, 0x5, 0x7, 0x10, 0x3ff, 0xb, 0xcf, 0x1, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x3, 0x966}]}}, {{0x9, 0x5, 0xe, 0x0, 0x200, 0xf9, 0xf, 0x8, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0xf, 0x367c}]}}, {{0x9, 0x5, 0xe, 0xc, 0x140, 0xee, 0x2, 0x29, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0xf2, 0x6}]}}, {{0x9, 0x5, 0x80, 0x0, 0x8, 0xfa, 0xf9, 0x7, [@generic={0x8d, 0xb, "aa3032f979ab7f24d86870ddf83ac725d98c088480e722a74515ecbc3b00642a1b484dc4577ccfd4dd7a4d68fa6b510c9107b796ca511511d7ea4d20f4e74dda6ee4b07039201391b2dbd12a06accf5bdba3ad3e53ac832d62119af85bbaed368504a194b52cfd24a7a6bfdd2ee95cb9a7620d723ea4449ef6fc2706b5c7cf97235c7db2762f909e994dd2"}]}}, {{0x9, 0x5, 0x0, 0x1, 0x10, 0x6, 0x2, 0xe}}]}}]}}]}}, &(0x7f0000000640)={0xa, &(0x7f00000004c0)={0xa, 0x6, 0x110, 0x2, 0xd8, 0x9, 0x20, 0x7}, 0x5, &(0x7f0000000500)={0x5, 0xf, 0x5}, 0x3, [{0x4, &(0x7f0000000540)=@lang_id={0x4, 0x3, 0x801}}, {0x52, &(0x7f0000000580)=@string={0x52, 0x3, "a180b07f5057408a7befab12f564f90ad9f0135b72e1bfcdd4f448a6a33f13ba06f6696a850de8e7c89194c0eeeac1fcc91769306c92cb0d4f78986275e499f790d847e5bf68a4e1e4294848ec9d4efc"}}, {0x4, &(0x7f0000000600)=@lang_id={0x4, 0x3, 0x438}}]}) (async, rerun: 32) ioctl$F2FS_IOC_START_ATOMIC_WRITE(r1, 0xf501, 0x0) (async, rerun: 32) renameat2(0xffffffffffffffff, &(0x7f0000000680)='./file0\x00', r1, &(0x7f00000006c0)='./file0\x00', 0x7) (async, rerun: 64) ioctl$VIDIOC_G_EXT_CTRLS(r0, 0xc0205647, &(0x7f0000000740)={0x0, 0x8, 0x0, r1, 0x0, &(0x7f0000000700)={0x980921, 0x3, '\x00', @value64=0x4}}) (async, rerun: 64) ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000780)=r1) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r1, 0xc018937a, &(0x7f00000007c0)={{0x1, 0x1, 0x18, r1, {0x1}}, './file0\x00'}) ioctl$GIO_UNIMAP(r3, 0x4b66, &(0x7f0000000840)={0x1, &(0x7f0000000800)=[{}]}) ioctl$SIOCX25SCAUSEDIAG(r3, 0x89ec, &(0x7f0000000880)={0xcf, 0x7}) ioctl$SNDRV_RAWMIDI_IOCTL_STATUS64(r3, 0xc0385720, &(0x7f00000008c0)={0x1}) syz_open_dev$vim2m(&(0x7f0000000900), 0x7, 0x2) (async, rerun: 64) sendmsg$AUDIT_TRIM(r3, &(0x7f0000000a00)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x10, 0x3f6, 0x0, 0x70bd26, 0x25dfdbfb, "", ["", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x20004840}, 0x4000011) (async, rerun: 64) ioctl$EVIOCGMASK(r1, 0x80104592, &(0x7f0000000ac0)={0x0, 0x64, &(0x7f0000000a40)="6c13df2d6ab44829a72f1c330c980a50c70ed74ca96a981eff54df0e95e4441ba489f303f6237fc84ccaba6c3ec014a80563d8ec6b97415dcde06946c16a7aaa13a77fe17d3b56b81c283018aa4ebbea32cbc46cf5cfda2850c9b04916a7d2d64200e00a"}) (async) syz_clone(0x0, &(0x7f0000000b00)="429d5671bb8d47289926a82d8c83e8bcbc4a1c7bc5483f1e99f85e36db432aec4a311d4a59b4a64e40d809ecb996c10d056438a8c00b7ba579edf9d098c8bf957cfd6a8e59b05720522602526465385e743aef1c346a87caa75e5ec978e23d0e19cbad21c1cd5d42f903b2b4205790e95a64bd3e08c225fc5ff58e5f97f03f9bb583b25556a1180d9defb58cc32face7c194c56ec3258c2d71557a8c2b7256700a9297541725d59264bf221abb8a8e14cc66de4410b57b8bbc249e1568bf65", 0xbf, &(0x7f0000000bc0), &(0x7f0000000c00), &(0x7f0000000c40)="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") (async) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000001c80), r1) sendmsg$TIPC_CMD_SET_NODE_ADDR(r4, &(0x7f0000001d40)={&(0x7f0000001c40)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000001d00)={&(0x7f0000001cc0)={0x24, r5, 0x420, 0x70bd29, 0x25dfdbfb, {{}, {}, {0x8, 0x11, 0xf}}, ["", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x2400c085}, 0x40) (async) fanotify_init(0x20, 0x8000) (async) sendto$inet(r1, &(0x7f0000001d80)="1bbb3db6a7a3ff6aa2eaabc6e29a2a3c53a6e10d6e773626dcde017883730cc495cbccac943cec9de927ec1cfa78", 0x2e, 0x8000, &(0x7f0000001dc0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, 0x10) (async) ioctl$RTC_SET_TIME(r3, 0x4024700a, &(0x7f0000001e00)={0x20, 0x25, 0x12, 0x4, 0x8, 0x3, 0x6, 0x37, 0x1}) (async) socket(0x25, 0xbba1cf02fc3e5a88, 0x7ff) (async, rerun: 32) r6 = fcntl$dupfd(r3, 0x0, 0xffffffffffffffff) (rerun: 32) fsync(r6) 4.163692009s ago: executing program 1 (id=484): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000500"/16], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10) semop(0x0, &(0x7f0000000340)=[{0x0, 0xfffb, 0x1800}], 0x1) 3.499780303s ago: executing program 1 (id=485): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000e80)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) pipe2$9p(0x0, 0x0) write$P9_RVERSION(0xffffffffffffffff, 0x0, 0x15) r1 = dup(0xffffffffffffffff) write$FUSE_NOTIFY_RETRIEVE(r1, 0x0, 0x0) mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$NFT_BATCH(r0, 0x0, 0x0) syz_mount_image$nilfs2(&(0x7f0000000000), &(0x7f0000000300)='./file0\x00', 0x2000000, &(0x7f0000000240)=ANY=[], 0x1, 0xac0, &(0x7f00000013c0)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) syz_open_dev$vim2m(&(0x7f0000000340), 0x0, 0x2) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) r3 = gettid() process_vm_writev(r3, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0) mremap(&(0x7f000046d000/0x4000)=nil, 0x4000, 0x2000, 0x3, &(0x7f000082a000/0x400000)=nil) madvise(&(0x7f0000495000/0x400000)=nil, 0x400000, 0x8) 3.183753647s ago: executing program 0 (id=486): r0 = inotify_init() sendmsg$inet(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x400, @local}, 0xf, 0x0}, 0x0) r1 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca) inotify_add_watch(r0, &(0x7f0000000240)='./file0\x00', 0x8c7) write$binfmt_elf32(r1, 0x0, 0x69) execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) 2.433881994s ago: executing program 0 (id=487): socket$netlink(0x10, 0x3, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x20081e, &(0x7f00000020c0), 0x1, 0x4ef, &(0x7f0000000a00)="$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") listxattr(0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f00000004c0)={[{@resuid}, {@init_itable}, {@stripe}, {@noblock_validity}]}, 0x3, 0x451, &(0x7f0000000f80)="$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") mkdir(&(0x7f0000000080)='./bus\x00', 0x0) r0 = open(&(0x7f00000000c0)='./file1\x00', 0x44000, 0x80) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000100)=@v1={0x0, @adiantum, 0x0, @desc1}) chdir(&(0x7f0000000300)='./bus\x00') add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000140)={'fscrypt:', @desc1}, &(0x7f00000001c0)={0x0, "28d7b07d54891881fe02c1203fe49696b9f26f2da4149683f065714f8a61d1f32c99064bbd27b2aa77459cff33a3a98350f1af9d51ed5bef3d63520d260804d0", 0x13}, 0x48, 0xfffffffffffffffd) mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) socket$inet_udplite(0x2, 0x2, 0x88) fchownat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0xffffffffffffffff, 0xee01, 0x0) 1.703688018s ago: executing program 0 (id=488): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000002304e800000000000000ea850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='netlink_extack\x00', r0}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r1, &(0x7f0000002c80)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000700)=ANY=[@ANYBLOB="380000002e0001"], 0x38}], 0x1}, 0x0) (fail_nth: 9) 1.53566581s ago: executing program 1 (id=489): sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000d1", @ANYRES16, @ANYBLOB="04"], 0x14}}, 0x0) r0 = socket$packet(0x11, 0x2, 0x300) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000180)={'vxcan0\x00', 0x0}) sendto$packet(r0, &(0x7f0000000080)="18", 0x10, 0x0, &(0x7f00000000c0)={0x11, 0xe, r1, 0x1, 0x0, 0x6, @multicast}, 0x14) r2 = syz_io_uring_setup(0x240c2, &(0x7f0000000380)={0x0, 0xfffffffc, 0x4, 0x0, 0x2e3}, 0x0, &(0x7f0000005800)) io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r2, 0x13, 0x0, 0x2) r3 = fsmount(0xffffffffffffffff, 0x0, 0xfb) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000080)={'netpci0\x00', 0x2}) ioctl$TUNSETOFFLOAD(r4, 0x400454c9, 0x13) ioctl$TUNSETNOCSUM(r4, 0x400454c8, 0x1) r5 = socket$nl_xfrm(0x10, 0x3, 0x6) epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r5, &(0x7f0000000000)={0x10000008}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$DRM_IOCTL_GET_CTX(0xffffffffffffffff, 0xc0086423, &(0x7f0000000300)={0x0, 0x1}) r6 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r7, 0xae60) r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/mdstat\x00', 0x0, 0x0) poll(&(0x7f0000000000)=[{r8, 0x8}], 0x1, 0x1) ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(0xffffffffffffffff, 0xc0145401, &(0x7f00000000c0)={0x1}) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f0000000340)={0x0, &(0x7f0000000280)}, 0x10) bpf$ITER_CREATE(0x21, &(0x7f0000000080)={r3}, 0x8) r9 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000080)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r9, 0x83, 0x10, &(0x7f0000000000)=@ready={0x0, 0x0, 0x8, 'BBBB'}) 998.587649ms ago: executing program 0 (id=490): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xe) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x2000840) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) write$FUSE_STATFS(0xffffffffffffffff, 0x0, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0) r2 = openat$dsp(0xffffffffffffff9c, 0x0, 0xb02, 0x0) ioctl$SNDCTL_DSP_SETTRIGGER(r2, 0x40045010, 0x0) ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246) pwritev(r1, &(0x7f00000002c0)=[{&(0x7f0000000d00)="aabf75aa76c3ada74bf44ac8955581057e1778604df77693559ffad6cc78741642e0f21c507a79c29daba641a268ce55abe36b0fa2268a6fffbb8016b62549418cd3f951d1850854ec210ea8034faf1626e616a36c6bc0c9b4372b0e28213019e3db182fd0858a17e87ff7a5dddc89594225d78441a533082ed3e8047f12269778c40721cacf71f32543874a345938224419dce2fd44b7a62c1d0d98a0cf23c2fc16894ba549a2edfb7e300f14c30f64429d25ea9b26b9fbf839fb039e46bc8dcf12d7ce62c8cbc9f0d5ffff56a577edd86949d10e6e37e31297ce4e5585bc3d3ac00acbeec51d8164359204a918b4d1de4514705d55e2105084aece8a83f28fb3e46eb4f24b966af622fcf31c4cb601f5a2b82d42a2172ad0b1939c585891940b81aa9c5c6cdb0676b998025ea4ac0fc18aa24fd5d562b1dd4f23e3ac63f0233fb4465c5e5a96599ecc0fd8dd7e7d48a8b96db03630613905fd610ceec2eb9b6962645bd959cb08493806bb6d0ccb067a048c7ec34cc3ab4aec1b8e4253de22949b0c9a9d1dec77d903d6018eafd0e81dc7090ea108057e631003da3104c2eb839bc8428be6a497a051b03b80c02d8f8efc2033083fa81ba6e36c41fcbc63e2345075a99164f8108452c298a49da500c16ecd20fca9577814e657a767c5f310d0c8a71b134a995e40c7924ec6ffe956ab10ff39e3a07b28af2a668df944869bffd39494fa0150a7a46491659c0afb122c91a50d08bd50e014bc4c1f7c9ff3fd2d1d813cd0cbf1b3e5d10ed2ae103de7dfa77e76ff55f41f1e1804e4f06bd013ce28511e3469817b0154e58378345928071d63e474e4d8ac2d50c5f7626fc769b2e1c3b2534fec20a8440fd333e2220de76c21ddf83c0e6156f12dbef610a98a0500aaafc0276aeb32591a8c27d7f05cbb1718da94a95df19f72b8072ae01be8d19a3e34ae4cb059cecc5fd95cb1d9116ba62bf1b8926a919a9d88491e8516a5070cd5b74fc46d26e36c5742aaca351dc5c98f97f06e9d7cbc9c318b00a0e73829acaba560cbf0c67c4e60321eeac2e56d355ca483868e76a7e0397a5009a8c83825be2fbbb4fd48e1a0682fab5997ca24046008d5d48740b614bba2c4f48ccc6777ee90ab07b0e6181f52d64f24ec0ad43b2125d2464d55e977d6b7eb62e11c2cf418dccbe16644a3cc008f68e3fa83f73cdd4369cbd3789efe4802d02f364ecac04aa6868b0fa95ec1ed1d50f403d2ea5c7e201e2e5563d940466d77e0f1e3988abcf6b25aeeebb079d4da21e633e83e4b5c090957812ab84232f70ba420981628c74f0bf5e363ef017fa6c9157b844b36f6188e7955f992d587cde528b85315f825ee3d7c3db57db62bca9dfca8ab4014a672d43c3c462aba6de5f17ab252e5ced731a0f5ed018cbf766290c28b6ad4f1ef378c056291172c8ae0f24b7a50e28e6964f72ca1345a13223637b4ebdc19aecf4f93b4c4819ba4380ccd51595938f2255cb22d4d9b270ebb2367b8045d950e9201da4466f1adaa6d19d6387b971ad37505c64e6ffd7f4f04cffb72fde1f0c08912de1c890ba83532839963f527149d4ae501baabe834eb9dc4a2c42c646c4cfc1b735a0c60acdf8a54cc200733282169a8ec10e23b34e713f47eb5c8d18b17001803a77a0c04b55ec546f1f90211906a90738bd3827e9ec5aa2b64cc28b67a0d3b33e4a210b3b4f9e115907f2e660ee849677a99fd3ea2a8bbaf07369fc036d51d2b4bdd94a6ab7421db4686aeabebc3679960286ea0444694bde2d76e69fda96bdbfde78d7345c7a143abab5d0412269d833c5e315d7705e691cc5ce6f70d7f22f762bd3cd2e25d40bc4e5af3e9ee651e1400daa8edf2e6e3d7026f1e22c88a15cb4fa909375999bcc34ef12d0a40b3f3cdcb0be3400edd8c04991ee8cd7778f88b54c517deb9c95558a43a3606aeef44c6db656bab1164dddc312d1a2b74a520b988fb62fcf08de1b82e9093db5adca8222340257fffb5da79b82adb6f49473cef3a65cbb20a9ffe5760d1f4c6a3f3cc9db3eb1dd9eb44c6a84074f13feed4d45b47037280c7a096da61b397e8002093c6428d00d2a0d249d518636a8ae42f0778bddd72a1ebce297d2d88781a378d0e7b8695080f2ec5f907f5cdbf1a8ae0b0d23b5239dd7bed96304cb561be61d68ff3ec90b6bf30f693fa2bb416d935f107e445eb0f492071df1cfcbc9e34173bf3feadfa3d64f99b078f603a5a504704625bd8d85e8a5454edfaf92b0ab95036c8aebc297f4fb8c51ff97740f82f5c220fcaeed0d77ee9007636dc70252d8b5c0010e41d312f368a660c50d1574d07242270b814f59abc8c25a26e5cb6ed8915eed0ed188c13f45045afe44e0d8a5e37e51bb7da9b715541c2b54fb5d2e827be94530b6fdd299d67898e89d3d68e0730375d9e8b425b06c61fe3e41b93eed3a239df5df59e6add4c8b8cf48c1b175bf912fc5a51798ed5647377e52a38792ff2263c426c40cc8602113f5664986858939d097f767d67b706053268a36c7f9903cf148a88d4012136ed96057c43922fafd67393afa0f4f245e9e1a8b53a27087bc8bde767208841c412a487cbf7fa9a83bee749a8f095bb35f8bd519766d428f246c47b8f50ffd52aacbdd84696fb7c5761b99a15b0809c3465e10ef658d3d2e26a5b018740ab4f64b76a414bf41184d3334af3f7c7f5349e55ad2e96669da6f6105b7c0a74d8448bea966656612982f86c55fcad791c2532dc1dbd27ddda624f75159ee40cb33fab8b4770a4947cad4d936aa5b7e94c0e57b793fe33aa8d5e896a2c28eb804471eb9aa17abf8c3eb72ef8223995376e5795b9bcd5d3307b557d27ab1cfa50d0eea759391ad9f6d62d1b1000278633e90cfbf3502e2a39f3b05b051ed1200d57c96a9eed32883733c22604a1b45dd2aa1a85a0777b3484bc500d2215f8a3d03c96de14125ed53db3413f08d7396dfd2897708a0cac7c98b61525646fb984fb2a7237062040b703fbadd4b249689edf00c0cabda644fd0ab2f608e91e5d59af827d0f48ffbffaa2854f62cbd895a6ccd0267f88f343a727c27156f72cd80a3834f327fd500a8fde965a59de1a7c1fea7d519b0e33535499970307eb6ea0158de51677c1ff711d6e288d070a4ea34fc3e9188398bdc4e4cf8bf79482acdae43ce11a01fd113c0fd67679c8cc1cc81051214a62a8da68a123e1bbda8d624262f795c1252f690e89d0abdefdecb0630b97635d87748581da0101c8fbe09362bc5d62685e8f8a81d24e1c25066460e4fea9fc3d8767112c6b084f9c17491f7d667132a5a00a55f93c974f6da6687b4b437a3a842aa9b0e07144e5f04ab32fe3e637ecb23078698b325b1de6ca629e535e8b69423dab9d25bcfb962b5dab26dc183ed4f305b39f4ef93832bb72d1a705c57937c34222ed878af19c20d220b2213e96618b5b784644da0dfceb639cbba8685a38091dd4ba285026d912b2ba97b592d06a1a8600f04149ac6c69e5714670275639357b2f2b40bc1180ac613a54429a17b81eb7d845ec5b4a6d31eea4de29e4591425a6ec94789370fff872352118768a6e477c3fc5978f7ffd430a50a201276faad56db177dab31e4d592c9156551bf4e472b43f0783b5848f5f51650dbc4e3da1d454f93004415f8dd454ff87997a351853d24123e6ff9c84a4193ef53c77b742204cf94370d3336d7c88b768a3d2766346801efade0baa37964c4fd10003f48fb51ccf669c185940b8e6387fc01e80e87a6bd219c5fd2437eb74fa7aa8e172c2a2cf33cc2e990323a8b14636906ca639c0d4c37f0735e227d48f752b72720f8961f60f3e14722b4cd3adc5fb233595929035d82d45ee4cfca3745303cea020aad4487e7bee26e34260e2783ad0fb0e6a3d38a6aa1ced141dbbc3291a7de961184c3c22f7f6235629cb59d68db14103f4db0956af921a312782052e79f0b88e0d8621966c229449dbac54637a34a519050d670b7203eb53407c24e2fe3ff2f82f57a3d266363fdab8d955a070c897eb9c807afcac29c50ae0575e327c8158330c786750b608cd407e116b68391a743b36d3eabb05a0d4df0c723376dfb28e5d665cee44a75038ea309094446db302fcac6ebeebd8098f21a9dccf3058fc2790b28e1b752713029473a491dd76c6eb5bac47cc78e3aca0dde814f265751977a492ebf14c2c0b3a90000d9ff2137ed0fe79cc9fa2ac64d06dc1773058ebd83b746a8696e8777b3f267eb71545fb099419576d166b6b0279187f6233032b5c0e9170f699b1edeef6fa10081e5fe4c3e64499226a10dd1f474a2f3c7d136e4243116e0f620a46f1dcc69d90677675ea180fc7420150c2acdfa5c9880e8fb8bdcfbcd223c440515e5f35c0726ac8c027244b0d54fe8f66dec9b0dab14b8ac2893f2159e3fdb9c2443944072462afd57da8c7dde2e619c790bbec8dd73dfcbf8e366820a88829c28856596f6cc498849b00cbff3bb1e775ab92977804e494cb062d3815ff40ff0fbf092ba54ef50e260174ded2d2da15b998e63502f02d48461a9862bef3c7eb72c2b84a157e604236761d6b334708c0b3c91fa51ee0196ef6662e0134fd937cc5c5be1126a8b0b0190a5824eed558afae75a07612f3b290eddc7b57bb26a1e29a04059cc131a86a949702475244b918b822d11dcfa07d49d257d270a59032a8244f4b931ddd017836a4d8d6a2a3e78f4f343dd96a12e46b45150ac2e310c07c3fe88f2106ac01485fb3cb39fa0aca6e5c3e727cf1839b8546aa893d984977f5858a35f37b3488d83c048c33fd6339ac4cdc7560c60d53dc9f8e0bb54dff79523b5bd99699e23bb83165a83c7688b4fa2daedb96d6934ec3d876943023a20d181eb4864b71cda5555d63f2c9b88ffceda8d4c9ea83038072907ec881573a23901d87d965476e596663ba56cf700f19396deeb61b552a4f9236a9afcc8b47a1c5bc48f540f4c5d483c8228caf11ebb34f35b3248622f863da6ff3e96c8655e667edf5d908ad409b0bb20a4b80c2b109141ba4d02957d937289e889f858f3ae2eeb0b3961e840b06f55d3c95334391e623f3b2d22b6e9390c7a2554c3c4532df0df4bd0d0b4e36ed517218425c388b5e0b8e5bbc917f58df74d92f6230fa7b2c7eb8010f833ab02ca46e443b3093bbb75d533883850fe380482dee2202035a5414ccd4652ff947f71a8016fa425f6d7f9d29a313f12e83c8c7b89dd3f84f503bff1a01a31fa771f37500227a603ac805588ce49b9e405c0feafdc2a285213274f7e76561fcbc5868de9c844bacb649be31e219d10ee5b355ef3846a6633d53ea21d973673d856b18f59a237677bed37255e1a1113181e079dcf590d4be7909015ba4832b541a48f08d503178dab0f2f82b8f818bb5e304ff9d211f6edd8d200418a9e60c0449ed1644ef3cf61c667311474884f76d11f6cd95a1766fdd3b0444af4298d1b244dd89f7f6a48a49d0c1f8a4cb05e3b6bbfe4ff7a9960718b4e739d4ab056daf441046bbf030ea89d2dd16308355c2412ca444c4a7b59780e9ab74da2f7107230259b5d71b9d94b292ac7ea46060f24231727e9bf357b89d2aeebdb4db020d26d59ac9ddd17b81e4b9cb8f248f3c085020efd1a6403a1c852ba82543ca09d51fa5c6a2b9743a5becfc16b7fe2cdae1958494956c6bcf81aee662959aa742e0de61c252e3fbee94a5dd8fec0e7e060c4472275724c2fc2e8f4046d6366fc6242202e80eec52cdf57dc18e09e424664e9f78b7920e129b5e387edace2bc3d9444adba5911f69f5d660a72a8680858f6541760f37340b749b6d5a7d92462af871353c4b0140ce20b9d562734dd22784e79f17beb543256cb7d9a8c615fc940d5ee85b469b152bae72b90e7ec048c43a87c1c996eabe7190b750689def20e0fe89c1a1b9816edaf707050cb552b5007fd6c6990010b47496c7551663787f89f63fdd0f92656a5d491a2faf489eb786bce42444bf4446d02c3dfa6fb070bb0568e3181d247cab1f39e421c5c1901098fb4990ddd58fc78cdd28462a3edbcdebebb391c37605b34c751fd93dae76d5812cd6433c9130fda1c54f0394ec082bd128d303d177e10a03cb116d9c6b248142490d6d05eca53229d93a8a4a52a831d014c39e6d0c6807e70084ae25b518dd07e03cfe3f38ea6038d10000000000381fb7c805c80dc9b5d9ef4465f027d3fe3e5dc7462ce84c2559d8407dbdef97e198728b9f71a1c141c1ebcd54fa4b98c409abb6167e0f5bacd1d3cadb000000000000000000000000000000139d5afbcb23bd6fbcf4a815f95e6cee531225393fb323d96f53ca588b9422a47e0433dd287625a6193445916ac49f277821b071181871f037bacd4d76cf35dffa18f376f1257155be371f9764d5189ef438c7d639184b86bbfb31b5e7da2c35eed83e850d0be3db683f9a6ac7c2faffcdee3545fdb8a16c548d0411b636612738dd5936c5c4302b031590c5f5fbeb88a32b033fe74d243d2e2e4fa7ec02441a93f03a4a3546425fd82f24b7fa86f4c9a25214917f8064cee5fe34a569e44732e568c4b52fc0b755cecf9d8db229a10b755fa3d51976a074c619b900396508", 0x1246}, {&(0x7f00000005c0)="9b2f7e9dd799fe2bb800ff077877a48044bdf07025b476cc9127b6e1eff4f9fa6fa5d37f1aea08d69d9bcdf479048e3555947e65a377a8001e3d8bf10f2e7a5dafd0d19abf72916aeb15306392cd85d7cb00824d8b32f3d98fc3ac9092b449126300000000000000683346ed84c5cc4a8c379f493e899a408f23102d5c09af", 0x7f}, {&(0x7f0000000b00)="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", 0x200}, {&(0x7f00000008c0)="60cd1aa66b785e7173949b3ca0b96d182305dbc8da490593c5616809105f26e7830703675a32d203bfe396dc2abb07117746775ac0a9efc95ae38b96116ab3f9f6a1655796329dd2f15ca98ab61bf7bb288cc9086dba45be3eeec21c1c6d427ebee1c15be18e9397c806205fea2cd700ecb6a8eb15ed367357b7cd48cc52b99ca9ace5bf3e9c0f70a3aaca7cd4afdad1f9337812468c980394c7b346e0614f310c86ae148600eaf786ceba05cf825a29db1b00237b44861dd88d9202c45f2b58d292fb167e131a8d7f2e2f5091044d13eb6e1daccb777da023efcd736cd16db47a6f3fd0184bc6027d31e493f52d164266f30cc21650462ae99cc1231f083613b0bf1a7d25b38ea820887ff8121618e07fecfaa7d2165c89b5392bf12fe1d9aaa61136b5f74d47f40063668672252adad574b0f8dcc6deed31cd10", 0x13b}], 0x4, 0x8, 0x0) 0s ago: executing program 0 (id=491): socket$nl_generic(0x10, 0x3, 0x10) socket$packet(0x11, 0x3, 0x300) sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) socket(0x2, 0x80805, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_wait_time\x00', 0x26e1, 0x0) close(r0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r1, 0x0, 0x0) sendmsg$NL80211_CMD_CONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x28, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0x28}}, 0x0) ioctl$SIOCSIFHWADDR(r0, 0x8b14, &(0x7f0000000000)={'wlan1\x00', @random="01000a8d00"}) kernel console output (not intermixed with test programs): ystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 411.056269][ T6492] FAULT_INJECTION: forcing a failure. [ 411.056269][ T6492] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 411.070157][ T6492] CPU: 1 UID: 0 PID: 6492 Comm: syz.4.269 Tainted: G W 6.11.0-syzkaller-04744-gbdf56c7580d2 #0 [ 411.075165][ T8] usb 2-1: USB disconnect, device number 9 [ 411.082150][ T6492] Tainted: [W]=WARN [ 411.082210][ T6492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 411.082301][ T6492] Call Trace: [ 411.082357][ T6492] [ 411.082416][ T6492] dump_stack_lvl+0x216/0x2d0 [ 411.082589][ T6492] dump_stack+0x1e/0x30 [ 411.082740][ T6492] should_fail_ex+0x74e/0x800 [ 411.082927][ T6492] should_fail+0x2a/0x40 [ 411.083087][ T6492] should_fail_usercopy+0x2e/0x40 [ 411.083269][ T6492] _copy_to_user+0x33/0x110 [ 411.083446][ T6492] simple_read_from_buffer+0x199/0x340 [ 411.083689][ T6492] proc_fail_nth_read+0x1e5/0x2c0 [ 411.083875][ T6492] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 411.084047][ T6492] vfs_read+0x29b/0xf60 [ 411.084206][ T6492] ? kmsan_get_metadata+0x13e/0x1c0 [ 411.084367][ T6492] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 411.084610][ T6492] ksys_read+0x20f/0x4c0 [ 411.084786][ T6492] __x64_sys_read+0x93/0xe0 [ 411.084956][ T6492] x64_sys_call+0x3055/0x3ba0 [ 411.085158][ T6492] do_syscall_64+0xcd/0x1e0 [ 411.085313][ T6492] ? clear_bhb_loop+0x25/0x80 [ 411.085509][ T6492] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 411.085714][ T6492] RIP: 0033:0x7f849317c93c [ 411.085836][ T6492] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 411.085979][ T6492] RSP: 002b:00007f849400a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 411.086142][ T6492] RAX: ffffffffffffffda RBX: 00007f8493335f80 RCX: 00007f849317c93c [ 411.086264][ T6492] RDX: 000000000000000f RSI: 00007f849400a0a0 RDI: 0000000000000004 [ 411.086373][ T6492] RBP: 00007f849400a090 R08: 0000000000000000 R09: 0000000000000000 [ 411.086480][ T6492] R10: 000000000000004e R11: 0000000000000246 R12: 0000000000000001 [ 411.086586][ T6492] R13: 0000000000000000 R14: 00007f8493335f80 R15: 00007ffd2e292ce8 [ 411.086756][ T6492] [ 411.100409][ T6406] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 411.401027][ T6406] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 411.413443][ T5191] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 411.478896][ T6406] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 411.584378][ T6406] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 411.989074][ T6497] loop4: detected capacity change from 0 to 1024 [ 412.013958][ T5263] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 412.223150][ T5263] usb 1-1: Using ep0 maxpacket: 8 [ 412.252199][ T5263] usb 1-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 412.263362][ T5263] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 412.347745][ T5263] usb 1-1: config 0 descriptor?? [ 414.171029][ T5263] asix 1-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 414.182386][ T5263] asix 1-1:0.0: probe with driver asix failed with error -71 [ 414.493161][ T5263] usb 1-1: USB disconnect, device number 8 [ 414.514884][ T6513] loop4: detected capacity change from 0 to 256 [ 414.695281][ T6507] loop1: detected capacity change from 0 to 32768 [ 414.700951][ T6513] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 414.782864][ T6513] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=512, location=512 [ 414.792987][ T6513] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found [ 414.801098][ T6513] UDF-fs: Scanning with blocksize 512 failed [ 414.864995][ T6513] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 414.935030][ T6406] 8021q: adding VLAN 0 to HW filter on device bond0 [ 415.001104][ T6513] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 415.211894][ T6406] 8021q: adding VLAN 0 to HW filter on device team0 [ 415.265286][ T3510] Bluetooth: hci6: Frame reassembly failed (-84) [ 415.275253][ T6511] loop2: detected capacity change from 0 to 512 [ 415.323762][ T59] bridge0: port 1(bridge_slave_0) entered blocking state [ 415.331663][ T59] bridge0: port 1(bridge_slave_0) entered forwarding state [ 415.352079][ T6511] EXT4-fs: Ignoring removed nomblk_io_submit option [ 415.411107][ T6513] netlink: 'syz.4.274': attribute type 11 has an invalid length. [ 415.433590][ T59] bridge0: port 2(bridge_slave_1) entered blocking state [ 415.441474][ T59] bridge0: port 2(bridge_slave_1) entered forwarding state [ 415.584767][ T6511] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 415.595912][ T6511] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 415.755752][ T6511] EXT4-fs (loop2): 1 truncate cleaned up [ 415.764309][ T6511] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 416.861427][ T6529] loop0: detected capacity change from 0 to 512 [ 416.894251][ T6529] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 416.907003][ T6511] ext4: Unknown parameter 'ÿ' [ 416.977759][ T6511] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback. [ 417.071080][ T6529] EXT4-fs (loop0): 1 truncate cleaned up [ 417.079380][ T6529] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 417.132250][ T6523] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 227 vs 220 free clusters [ 417.172852][ T6523] EXT4-fs (loop2): Remounting filesystem read-only [ 417.284138][ T5200] Bluetooth: hci6: Opcode 0x1003 failed: -110 [ 417.286961][ T5198] Bluetooth: hci6: command 0x1003 tx timeout [ 417.610327][ T5562] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 417.819129][ T6406] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 418.232165][ T6541] loop0: detected capacity change from 0 to 256 [ 418.462182][ T6541] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 418.615563][ T6406] veth0_vlan: entered promiscuous mode [ 418.759552][ T6406] veth1_vlan: entered promiscuous mode [ 418.799706][ T6546] FAT-fs (loop0): error, fat_free: invalid cluster chain (i_pos 196) [ 418.813781][ T6546] FAT-fs (loop0): Filesystem has been set read-only [ 419.236110][ T5191] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 419.284420][ T5263] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 419.440405][ T6406] veth0_macvtap: entered promiscuous mode [ 419.491788][ T5263] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 419.555423][ T6406] veth1_macvtap: entered promiscuous mode [ 419.558352][ T5263] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 419.558536][ T5263] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 419.558683][ T5263] usb 2-1: Product: syz [ 419.558799][ T5263] usb 2-1: Manufacturer: syz [ 419.558918][ T5263] usb 2-1: SerialNumber: syz [ 419.672196][ T5263] cdc_ether 2-1:1.0: skipping garbage [ 419.722818][ T5263] usb 2-1: bad CDC descriptors [ 419.847179][ T6406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 419.847677][ T6406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 419.847758][ T6406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 419.847855][ T6406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 419.847941][ T6406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 419.848042][ T6406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 419.848112][ T6406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 419.848218][ T6406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 419.848313][ T6406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 419.848413][ T6406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 419.854142][ T6406] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 420.012078][ T6406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 420.012188][ T6406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 420.012266][ T6406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 420.012361][ T6406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 420.012441][ T6406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 420.012534][ T6406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 420.012602][ T6406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 420.012695][ T6406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 420.012773][ T6406] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 420.012865][ T6406] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 420.018718][ T6406] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 420.233202][ T6406] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 420.233437][ T6406] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 420.233657][ T6406] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 420.233902][ T6406] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 420.799919][ T5198] Bluetooth: hci2: command 0x0406 tx timeout [ 420.800078][ T5198] Bluetooth: hci0: command 0x0c20 tx timeout [ 421.034795][ T5253] usb 2-1: USB disconnect, device number 10 [ 421.941088][ T5562] FAT-fs (loop0): error, fat_free: invalid cluster chain (i_pos 196) [ 422.425828][ T6576] loop1: detected capacity change from 0 to 512 [ 422.508091][ T6576] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 422.649405][ T6576] EXT4-fs (loop1): 1 truncate cleaned up [ 422.665917][ T6576] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 422.841213][ T6584] usb usb8: usbfs: process 6584 (syz.2.290) did not claim interface 0 before use [ 423.412024][ T5657] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 425.401416][ T1589] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 425.670904][ T1589] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 425.745589][ T1589] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 425.755762][ T1589] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 425.765704][ T1589] usb 3-1: Product: syz [ 425.771223][ T1589] usb 3-1: Manufacturer: syz [ 425.776401][ T1589] usb 3-1: SerialNumber: syz [ 425.859318][ T6624] loop0: detected capacity change from 0 to 1764 [ 425.888690][ T1589] cdc_ether 3-1:1.0: skipping garbage [ 425.894418][ T1589] usb 3-1: bad CDC descriptors [ 426.031478][ T6624] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 427.442015][ T6643] FAULT_INJECTION: forcing a failure. [ 427.442015][ T6643] name failslab, interval 1, probability 0, space 0, times 0 [ 427.455331][ T6643] CPU: 0 UID: 0 PID: 6643 Comm: syz.1.305 Tainted: G W 6.11.0-syzkaller-04744-gbdf56c7580d2 #0 [ 427.467453][ T6643] Tainted: [W]=WARN [ 427.471480][ T6643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 427.481814][ T6643] Call Trace: [ 427.485320][ T6643] [ 427.488475][ T6643] dump_stack_lvl+0x216/0x2d0 [ 427.493491][ T6643] dump_stack+0x1e/0x30 [ 427.497956][ T6643] should_fail_ex+0x74e/0x800 [ 427.502989][ T6643] should_failslab+0x17f/0x210 [ 427.508078][ T6643] __kmalloc_noprof+0x175/0xf30 [ 427.513330][ T6643] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 427.519471][ T6643] ? tomoyo_realpath_from_path+0x104/0xaa0 [ 427.525642][ T6643] ? kmsan_get_metadata+0x13e/0x1c0 [ 427.531178][ T6643] tomoyo_realpath_from_path+0x104/0xaa0 [ 427.537231][ T6643] tomoyo_check_open_permission+0x1ef/0xc50 [ 427.542897][ T5253] usb 3-1: USB disconnect, device number 9 [ 427.543443][ T6643] tomoyo_file_open+0x26e/0x350 [ 427.554451][ T6643] ? kmsan_get_metadata+0x13e/0x1c0 [ 427.559989][ T6643] security_file_open+0xbf8/0x1020 [ 427.565458][ T6643] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 427.571629][ T6643] do_dentry_open+0x562/0x1db0 [ 427.576783][ T6643] vfs_open+0x53/0x5a0 [ 427.581188][ T6643] ? kmsan_get_metadata+0x13e/0x1c0 [ 427.586726][ T6643] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 427.592886][ T6643] path_openat+0x5657/0x6200 [ 427.597861][ T6643] do_filp_open+0x20e/0x590 [ 427.602730][ T6643] do_sys_openat2+0x1bf/0x2f0 [ 427.607792][ T6643] __x64_sys_openat+0x2a1/0x310 [ 427.613027][ T6643] x64_sys_call+0x120e/0x3ba0 [ 427.618079][ T6643] do_syscall_64+0xcd/0x1e0 [ 427.622901][ T6643] ? clear_bhb_loop+0x25/0x80 [ 427.627934][ T6643] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 427.634195][ T6643] RIP: 0033:0x7fcecc57def9 [ 427.638892][ T6643] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 427.658866][ T6643] RSP: 002b:00007fcecd2a2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 427.667667][ T6643] RAX: ffffffffffffffda RBX: 00007fcecc735f80 RCX: 00007fcecc57def9 [ 427.675948][ T6643] RDX: 000000000006a142 RSI: 0000000020000300 RDI: 0000000000000003 [ 427.684212][ T6643] RBP: 00007fcecd2a2090 R08: 0000000000000000 R09: 0000000000000000 [ 427.692491][ T6643] R10: 0000000000000170 R11: 0000000000000246 R12: 0000000000000002 [ 427.700759][ T6643] R13: 0000000000000000 R14: 00007fcecc735f80 R15: 00007ffc4a516738 [ 427.709063][ T6643] [ 427.721975][ T6643] ERROR: Out of memory at tomoyo_realpath_from_path. [ 428.576661][ T6656] loop1: detected capacity change from 0 to 128 [ 428.634995][ T6656] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1) [ 428.739197][ T6656] FAT-fs (loop1): error, clusters badly computed (0 != 1) [ 428.746800][ T6656] FAT-fs (loop1): Filesystem has been set read-only [ 428.828553][ T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 428.836750][ T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 428.870354][ T6656] FAT-fs (loop1): error, clusters badly computed (1 != 2) [ 429.053384][ T6656] FAT-fs (loop1): error, clusters badly computed (2 != 3) [ 429.111913][ T6656] FAT-fs (loop1): error, clusters badly computed (3 != 4) [ 429.133200][ T6656] FAT-fs (loop1): error, clusters badly computed (4 != 5) [ 429.156213][ T1110] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 429.164531][ T1110] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 429.233325][ T6656] FAT-fs (loop1): error, clusters badly computed (5 != 6) [ 429.291379][ T6656] FAT-fs (loop1): error, clusters badly computed (6 != 7) [ 429.333505][ T6656] FAT-fs (loop1): error, clusters badly computed (7 != 8) [ 429.350489][ T6656] FAT-fs (loop1): error, clusters badly computed (8 != 9) [ 429.395380][ T6656] FAT-fs (loop1): error, clusters badly computed (9 != 10) [ 429.435548][ T6656] FAT-fs (loop1): error, clusters badly computed (10 != 11) [ 429.467092][ T6660] loop2: detected capacity change from 0 to 2048 [ 429.469107][ T6656] FAT-fs (loop1): error, clusters badly computed (11 != 12) [ 429.537180][ T6656] FAT-fs (loop1): error, clusters badly computed (12 != 13) [ 429.594545][ T6656] FAT-fs (loop1): error, clusters badly computed (13 != 14) [ 429.640927][ T6656] FAT-fs (loop1): error, clusters badly computed (14 != 15) [ 429.659851][ T6660] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 429.728639][ T6656] FAT-fs (loop1): error, clusters badly computed (15 != 16) [ 429.760735][ T6656] FAT-fs (loop1): error, clusters badly computed (16 != 17) [ 429.779535][ T6656] FAT-fs (loop1): error, clusters badly computed (17 != 18) [ 429.882055][ T6656] FAT-fs (loop1): error, clusters badly computed (18 != 19) [ 429.908852][ T6656] FAT-fs (loop1): error, clusters badly computed (19 != 20) [ 429.940841][ T6656] FAT-fs (loop1): error, clusters badly computed (20 != 21) [ 429.971999][ T6656] FAT-fs (loop1): error, clusters badly computed (21 != 22) [ 430.019224][ T6656] FAT-fs (loop1): error, clusters badly computed (22 != 23) [ 430.061347][ T6670] loop3: detected capacity change from 0 to 1024 [ 430.067016][ T6656] FAT-fs (loop1): error, clusters badly computed (23 != 24) [ 430.112761][ T6670] hfsplus: unable to parse mount options [ 430.196477][ T6656] FAT-fs (loop1): error, clusters badly computed (24 != 25) [ 430.220212][ T6656] FAT-fs (loop1): error, clusters badly computed (25 != 26) [ 430.268521][ T6656] FAT-fs (loop1): error, clusters badly computed (26 != 27) [ 430.313959][ T6656] FAT-fs (loop1): error, clusters badly computed (27 != 28) [ 430.374255][ T6656] FAT-fs (loop1): error, clusters badly computed (28 != 29) [ 430.425215][ T6656] FAT-fs (loop1): error, clusters badly computed (29 != 30) [ 430.430143][ T6677] loop0: detected capacity change from 0 to 128 [ 430.464745][ T6676] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 430.474218][ T6676] overlayfs: option "index=on" is useless in a non-upper mount, ignore [ 430.483584][ T6656] FAT-fs (loop1): error, clusters badly computed (30 != 31) [ 430.511156][ T6656] FAT-fs (loop1): error, clusters badly computed (31 != 32) [ 430.529662][ T6656] FAT-fs (loop1): error, clusters badly computed (32 != 33) [ 430.598363][ T6656] FAT-fs (loop1): error, clusters badly computed (33 != 34) [ 430.629066][ T6656] FAT-fs (loop1): error, clusters badly computed (34 != 35) [ 430.658729][ T6677] FAT-fs (loop0): Directory bread(block 32) failed [ 430.665606][ T6677] FAT-fs (loop0): Directory bread(block 33) failed [ 430.672871][ T6677] FAT-fs (loop0): Directory bread(block 34) failed [ 430.676677][ T6673] [U] ^C [ 430.679863][ T6677] FAT-fs (loop0): Directory bread(block 35) failed [ 430.689698][ T6677] FAT-fs (loop0): Directory bread(block 36) failed [ 430.696518][ T6677] FAT-fs (loop0): Directory bread(block 37) failed [ 430.703744][ T6677] FAT-fs (loop0): Directory bread(block 38) failed [ 430.710738][ T6677] FAT-fs (loop0): Directory bread(block 39) failed [ 430.720290][ T6677] FAT-fs (loop0): Directory bread(block 40) failed [ 430.727109][ T6677] FAT-fs (loop0): Directory bread(block 41) failed [ 430.790132][ T6656] FAT-fs (loop1): error, clusters badly computed (35 != 36) [ 430.891788][ T6656] FAT-fs (loop1): error, clusters badly computed (36 != 37) [ 430.940792][ T5191] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 430.960940][ T6656] FAT-fs (loop1): error, clusters badly computed (37 != 38) [ 430.973529][ T6677] syz.0.312: attempt to access beyond end of device [ 430.973529][ T6677] loop0: rw=0, sector=4108, nr_sectors = 4 limit=128 [ 430.988183][ T6677] FAT-fs (loop0): Filesystem has been set read-only [ 431.022139][ T6656] FAT-fs (loop1): error, clusters badly computed (38 != 39) [ 431.071006][ T6677] FAT-fs (loop0): error, fat_free_clusters: deleting FAT entry beyond EOF [ 431.088826][ T6656] FAT-fs (loop1): error, clusters badly computed (39 != 40) [ 431.130988][ T6656] FAT-fs (loop1): error, clusters badly computed (40 != 41) [ 431.160021][ T6680] FAULT_INJECTION: forcing a failure. [ 431.160021][ T6680] name failslab, interval 1, probability 0, space 0, times 0 [ 431.175821][ T6680] CPU: 0 UID: 0 PID: 6680 Comm: syz.3.315 Tainted: G W 6.11.0-syzkaller-04744-gbdf56c7580d2 #0 [ 431.187957][ T6680] Tainted: [W]=WARN [ 431.191989][ T6680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 431.202318][ T6680] Call Trace: [ 431.205815][ T6680] [ 431.208982][ T6680] dump_stack_lvl+0x216/0x2d0 [ 431.213998][ T6680] dump_stack+0x1e/0x30 [ 431.218442][ T6680] should_fail_ex+0x74e/0x800 [ 431.223416][ T6680] should_failslab+0x17f/0x210 [ 431.228466][ T6680] kmem_cache_alloc_noprof+0xe2/0xb20 [ 431.234156][ T6680] ? dst_alloc+0x19f/0x240 [ 431.238874][ T6680] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 431.244983][ T6680] dst_alloc+0x19f/0x240 [ 431.249527][ T6680] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 431.255637][ T6680] ip_route_output_key_hash_rcu+0x2106/0x3810 [ 431.262067][ T6680] ip_route_output_flow+0xca/0x2b0 [ 431.267471][ T6680] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 431.273586][ T6680] tcp_v4_connect+0xa71/0x1d80 [ 431.278646][ T6680] ? kmsan_get_metadata+0x40/0x1c0 [ 431.284027][ T6680] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 431.290126][ T6680] ? __pfx_tcp_v4_connect+0x10/0x10 [ 431.295597][ T6680] __inet_stream_connect+0x2ef/0x1730 [ 431.301280][ T6680] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 431.307939][ T6680] ? kmsan_get_metadata+0x13e/0x1c0 [ 431.313412][ T6680] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 431.319504][ T6680] ? __local_bh_enable_ip+0x74/0xb0 [ 431.325015][ T6680] ? _raw_spin_unlock_bh+0x2d/0x40 [ 431.330440][ T6680] ? lock_sock_nested+0x1de/0x200 [ 431.335765][ T6680] inet_stream_connect+0x6a/0xd0 [ 431.341015][ T6680] __sys_connect+0x600/0x690 [ 431.345922][ T6680] ? fput+0x286/0x320 [ 431.350206][ T6680] ? ksys_write+0x404/0x4c0 [ 431.354991][ T6680] ? ksys_write+0x41d/0x4c0 [ 431.359780][ T6680] ? __pfx_inet_stream_connect+0x10/0x10 [ 431.365754][ T6680] __x64_sys_connect+0x91/0xe0 [ 431.370839][ T6680] x64_sys_call+0x27a5/0x3ba0 [ 431.375834][ T6680] do_syscall_64+0xcd/0x1e0 [ 431.380623][ T6680] ? clear_bhb_loop+0x25/0x80 [ 431.385636][ T6680] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 431.391843][ T6680] RIP: 0033:0x7fac6817def9 [ 431.396503][ T6680] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 431.416413][ T6680] RSP: 002b:00007fac68fc1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 431.425139][ T6680] RAX: ffffffffffffffda RBX: 00007fac68335f80 RCX: 00007fac6817def9 [ 431.433363][ T6680] RDX: 0000000000000010 RSI: 0000000020000180 RDI: 0000000000000003 [ 431.441578][ T6680] RBP: 00007fac68fc1090 R08: 0000000000000000 R09: 0000000000000000 [ 431.449786][ T6680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 431.458004][ T6680] R13: 0000000000000000 R14: 00007fac68335f80 R15: 00007ffc7db9de28 [ 431.466238][ T6680] [ 431.472251][ T6677] FAT-fs (loop0): error, corrupted directory (invalid entries) [ 431.509001][ T6656] FAT-fs (loop1): error, clusters badly computed (41 != 42) [ 431.547753][ T6656] FAT-fs (loop1): error, clusters badly computed (42 != 43) [ 431.601451][ T6656] FAT-fs (loop1): error, clusters badly computed (43 != 44) [ 431.648603][ T6656] FAT-fs (loop1): error, clusters badly computed (44 != 45) [ 431.735989][ T6656] FAT-fs (loop1): error, clusters badly computed (45 != 46) [ 431.823363][ T6683] loop2: detected capacity change from 0 to 128 [ 431.828187][ T6656] FAT-fs (loop1): error, clusters badly computed (46 != 47) [ 431.853488][ T6656] FAT-fs (loop1): error, clusters badly computed (47 != 48) [ 431.959536][ T6656] FAT-fs (loop1): error, clusters badly computed (48 != 49) [ 432.036928][ T6656] FAT-fs (loop1): error, clusters badly computed (49 != 50) [ 432.060624][ T6683] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 432.128604][ T6656] FAT-fs (loop1): error, clusters badly computed (50 != 51) [ 432.143328][ T6656] FAT-fs (loop1): error, clusters badly computed (51 != 52) [ 432.164984][ T6683] ext4 filesystem being mounted at /82/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 432.241555][ T6656] FAT-fs (loop1): error, clusters badly computed (52 != 53) [ 432.262318][ T6656] FAT-fs (loop1): error, clusters badly computed (53 != 54) [ 432.292700][ T6689] loop3: detected capacity change from 0 to 132 [ 432.331559][ T6656] FAT-fs (loop1): error, clusters badly computed (54 != 55) [ 432.444186][ T6656] FAT-fs (loop1): error, clusters badly computed (55 != 56) [ 432.520830][ T6656] FAT-fs (loop1): error, clusters badly computed (56 != 57) [ 432.619269][ T6656] FAT-fs (loop1): error, clusters badly computed (57 != 58) [ 432.659882][ T6656] FAT-fs (loop1): error, clusters badly computed (58 != 59) [ 432.679081][ T6656] FAT-fs (loop1): error, clusters badly computed (59 != 60) [ 432.755947][ T6656] FAT-fs (loop1): error, clusters badly computed (60 != 61) [ 432.769606][ T6656] FAT-fs (loop1): error, clusters badly computed (61 != 62) [ 432.806068][ T6656] FAT-fs (loop1): error, clusters badly computed (62 != 63) [ 432.858065][ T6656] FAT-fs (loop1): error, clusters badly computed (63 != 64) [ 432.864452][ T5191] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 432.889038][ T6656] FAT-fs (loop1): error, clusters badly computed (64 != 65) [ 433.016261][ T6656] FAT-fs (loop1): error, clusters badly computed (65 != 66) [ 433.042081][ T6656] FAT-fs (loop1): error, clusters badly computed (66 != 67) [ 433.094582][ T6656] FAT-fs (loop1): error, clusters badly computed (67 != 68) [ 433.182952][ T6656] FAT-fs (loop1): error, clusters badly computed (68 != 69) [ 433.259187][ T6656] FAT-fs (loop1): error, clusters badly computed (69 != 70) [ 433.324358][ T6656] FAT-fs (loop1): error, clusters badly computed (70 != 71) [ 433.334570][ T6656] FAT-fs (loop1): error, clusters badly computed (71 != 72) [ 433.435451][ T6656] FAT-fs (loop1): error, clusters badly computed (72 != 73) [ 433.540497][ T5253] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 433.559624][ T6656] FAT-fs (loop1): error, clusters badly computed (73 != 74) [ 433.585139][ T6656] FAT-fs (loop1): error, clusters badly computed (74 != 75) [ 433.638568][ T6656] FAT-fs (loop1): error, clusters badly computed (75 != 76) [ 433.656150][ T6656] FAT-fs (loop1): error, clusters badly computed (76 != 77) [ 433.667192][ T6656] FAT-fs (loop1): error, clusters badly computed (77 != 78) [ 433.682210][ T6656] FAT-fs (loop1): error, clusters badly computed (78 != 79) [ 433.697623][ T6656] FAT-fs (loop1): error, clusters badly computed (79 != 80) [ 433.728243][ T6656] FAT-fs (loop1): error, clusters badly computed (80 != 81) [ 433.766851][ T59] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1) [ 433.784490][ T5253] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 433.810245][ T6656] FAT-fs (loop1): error, clusters badly computed (81 != 82) [ 433.878287][ T5253] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 433.888000][ T5253] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 433.896316][ T5253] usb 4-1: Product: syz [ 433.900936][ T5253] usb 4-1: Manufacturer: syz [ 433.905920][ T5253] usb 4-1: SerialNumber: syz [ 433.939124][ T6656] FAT-fs (loop1): error, clusters badly computed (82 != 83) [ 433.995410][ T6656] FAT-fs (loop1): error, clusters badly computed (83 != 84) [ 434.026040][ T5253] cdc_ether 4-1:1.0: skipping garbage [ 434.032023][ T5253] usb 4-1: bad CDC descriptors [ 434.057889][ T6656] FAT-fs (loop1): error, clusters badly computed (84 != 85) [ 434.116365][ T6656] FAT-fs (loop1): error, clusters badly computed (85 != 86) [ 434.136708][ T6656] FAT-fs (loop1): error, clusters badly computed (86 != 87) [ 434.407668][ T6656] FAT-fs (loop1): error, clusters badly computed (87 != 88) [ 434.475660][ T6656] FAT-fs (loop1): error, clusters badly computed (88 != 89) [ 434.578510][ T6656] FAT-fs (loop1): error, clusters badly computed (89 != 90) [ 434.667522][ T6656] FAT-fs (loop1): error, clusters badly computed (90 != 91) [ 434.760782][ T6656] FAT-fs (loop1): error, clusters badly computed (91 != 92) [ 434.843226][ T6656] FAT-fs (loop1): error, clusters badly computed (92 != 93) [ 434.894001][ T6656] FAT-fs (loop1): error, clusters badly computed (93 != 94) [ 434.932744][ T6656] FAT-fs (loop1): error, clusters badly computed (94 != 95) [ 434.968826][ T6656] FAT-fs (loop1): error, clusters badly computed (95 != 96) [ 435.013395][ T6656] FAT-fs (loop1): error, clusters badly computed (96 != 97) [ 435.081717][ T6656] FAT-fs (loop1): error, clusters badly computed (97 != 98) [ 435.102241][ T29] audit: type=1326 audit(1726700111.712:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6712 comm="syz.2.324" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7feacf37def9 code=0x0 [ 435.139970][ T6656] FAT-fs (loop1): error, clusters badly computed (98 != 99) [ 435.219510][ T6656] FAT-fs (loop1): error, clusters badly computed (99 != 100) [ 435.260182][ T6656] FAT-fs (loop1): error, clusters badly computed (100 != 101) [ 435.289112][ T6656] FAT-fs (loop1): error, clusters badly computed (101 != 102) [ 435.316735][ T6715] loop4: detected capacity change from 0 to 1024 [ 435.329714][ T6656] FAT-fs (loop1): error, clusters badly computed (102 != 103) [ 435.364368][ T6656] FAT-fs (loop1): error, clusters badly computed (103 != 104) [ 435.383225][ T6656] FAT-fs (loop1): error, clusters badly computed (104 != 105) [ 435.412371][ T6715] hfsplus: unable to parse mount options [ 435.428387][ T6656] FAT-fs (loop1): error, clusters badly computed (105 != 106) [ 435.482909][ T6656] FAT-fs (loop1): error, clusters badly computed (106 != 107) [ 435.527117][ T6656] FAT-fs (loop1): error, clusters badly computed (107 != 108) [ 435.527213][ T8] usb 4-1: USB disconnect, device number 4 [ 435.600536][ T6656] FAT-fs (loop1): error, clusters badly computed (108 != 109) [ 435.628363][ T6656] FAT-fs (loop1): error, clusters badly computed (109 != 110) [ 435.653157][ T6656] FAT-fs (loop1): error, clusters badly computed (110 != 111) [ 435.694149][ T6656] FAT-fs (loop1): error, clusters badly computed (111 != 112) [ 435.742949][ T6656] FAT-fs (loop1): error, clusters badly computed (112 != 113) [ 435.802965][ T6656] FAT-fs (loop1): error, clusters badly computed (113 != 114) [ 435.834235][ T6656] FAT-fs (loop1): error, clusters badly computed (114 != 115) [ 435.889897][ T6656] FAT-fs (loop1): error, clusters badly computed (115 != 116) [ 435.940860][ T6656] FAT-fs (loop1): error, clusters badly computed (116 != 117) [ 436.033016][ T6656] FAT-fs (loop1): error, clusters badly computed (117 != 118) [ 436.083327][ T6656] FAT-fs (loop1): error, clusters badly computed (118 != 119) [ 436.212269][ T6656] FAT-fs (loop1): error, clusters badly computed (119 != 120) [ 436.602053][ T8] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 436.832792][ T8] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 436.844900][ T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 436.856541][ T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 436.866798][ T8] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 436.880696][ T8] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 436.896513][ T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 436.956583][ T8] usb 5-1: config 0 descriptor?? [ 437.484178][ T8] plantronics 0003:047F:FFFF.0002: invalid report_count -889208700 [ 437.492706][ T8] plantronics 0003:047F:FFFF.0002: item 0 4 1 9 parsing failed [ 437.646442][ T8] plantronics 0003:047F:FFFF.0002: parse failed [ 437.653613][ T8] plantronics 0003:047F:FFFF.0002: probe with driver plantronics failed with error -22 [ 437.795730][ T8] usb 5-1: USB disconnect, device number 5 [ 437.926042][ T29] audit: type=1326 audit(1726700114.442:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6743 comm="syz.0.335" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3160b7def9 code=0x0 [ 437.948414][ T29] audit: type=1326 audit(1726700114.502:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6743 comm="syz.0.335" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3160b7def9 code=0x0 [ 438.353487][ T6750] FAULT_INJECTION: forcing a failure. [ 438.353487][ T6750] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 438.367854][ T6750] CPU: 0 UID: 0 PID: 6750 Comm: syz.1.336 Tainted: G W 6.11.0-syzkaller-04744-gbdf56c7580d2 #0 [ 438.380144][ T6750] Tainted: [W]=WARN [ 438.384182][ T6750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 438.394522][ T6750] Call Trace: [ 438.398030][ T6750] [ 438.401187][ T6750] dump_stack_lvl+0x216/0x2d0 [ 438.406207][ T6750] dump_stack+0x1e/0x30 [ 438.410911][ T6750] should_fail_ex+0x74e/0x800 [ 438.415942][ T6750] should_fail+0x2a/0x40 [ 438.420514][ T6750] should_fail_usercopy+0x2e/0x40 [ 438.425890][ T6750] copy_page_from_iter_atomic+0x505/0x3100 [ 438.432051][ T6750] ? kmsan_save_stack_with_flags+0x40/0x60 [ 438.438266][ T6750] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 438.444434][ T6750] generic_perform_write+0x9ea/0x1070 [ 438.450270][ T6750] shmem_file_write_iter+0x2ba/0x2f0 [ 438.455907][ T6750] vfs_write+0xb28/0x1540 [ 438.460588][ T6750] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 438.466748][ T6750] ksys_write+0x20f/0x4c0 [ 438.471511][ T6750] __x64_sys_write+0x93/0xe0 [ 438.476440][ T6750] x64_sys_call+0x306a/0x3ba0 [ 438.481484][ T6750] do_syscall_64+0xcd/0x1e0 [ 438.486316][ T6750] ? clear_bhb_loop+0x25/0x80 [ 438.491400][ T6750] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 438.497660][ T6750] RIP: 0033:0x7fcecc57c9df [ 438.502359][ T6750] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48 [ 438.522362][ T6750] RSP: 002b:00007fcecd2a1df0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 438.524301][ T6751] loop3: detected capacity change from 0 to 256 [ 438.531170][ T6750] RAX: ffffffffffffffda RBX: 0000000000010000 RCX: 00007fcecc57c9df [ 438.531284][ T6750] RDX: 0000000000010000 RSI: 00007fcec1c00000 RDI: 0000000000000004 [ 438.531391][ T6750] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000292 [ 438.531495][ T6750] R10: 00000000000003d0 R11: 0000000000000293 R12: 0000000000000004 [ 438.531602][ T6750] R13: 00007fcecd2a1ef0 R14: 00007fcecd2a1eb0 R15: 00007fcec1c00000 [ 438.531743][ T6750] [ 438.715220][ T6750] loop1: detected capacity change from 0 to 128 [ 438.996634][ T6755] loop2: detected capacity change from 0 to 164 [ 439.056965][ T6753] loop4: detected capacity change from 0 to 1024 [ 439.088332][ T6753] hfsplus: unable to parse mount options [ 439.096315][ T6755] capability: warning: `syz.2.338' uses deprecated v2 capabilities in a way that may be insecure [ 439.168070][ T6759] program syz.2.338 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 439.199644][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 439.516208][ T6762] loop1: detected capacity change from 0 to 16 [ 439.599782][ T6762] erofs: (device loop1): mounted with root inode @ nid 36. [ 439.805654][ T6768] usb usb5: usbfs: process 6768 (syz.0.343) did not claim interface 0 before use [ 439.864646][ T6767] loop2: detected capacity change from 0 to 512 [ 439.945375][ T6767] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 440.109150][ T6767] EXT4-fs (loop2): 1 truncate cleaned up [ 440.116833][ T6767] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 440.385813][ T6769] syz.3.344: attempt to access beyond end of device [ 440.385813][ T6769] nbd3: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 441.083998][ T5191] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 441.796794][ T6796] futex_wake_op: syz.1.350 tries to shift op by 32; fix this program [ 442.034544][ T6798] loop4: detected capacity change from 0 to 8 [ 442.074215][ T29] audit: type=1326 audit(1726700118.602:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6797 comm="syz.4.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f849317def9 code=0x7ffc0000 [ 442.098938][ T29] audit: type=1326 audit(1726700118.632:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6797 comm="syz.4.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=103 compat=0 ip=0x7f849317def9 code=0x7ffc0000 [ 442.124049][ T29] audit: type=1326 audit(1726700118.632:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6797 comm="syz.4.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f849317def9 code=0x7ffc0000 [ 442.147825][ T29] audit: type=1326 audit(1726700118.632:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6797 comm="syz.4.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f849317def9 code=0x7ffc0000 [ 442.170534][ T29] audit: type=1326 audit(1726700118.642:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6797 comm="syz.4.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f849317df33 code=0x7ffc0000 [ 442.193059][ T29] audit: type=1326 audit(1726700118.642:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6797 comm="syz.4.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f849317c9df code=0x7ffc0000 [ 442.234466][ T29] audit: type=1326 audit(1726700118.642:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6797 comm="syz.4.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f849317df87 code=0x7ffc0000 [ 442.294645][ T29] audit: type=1326 audit(1726700118.642:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6797 comm="syz.4.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f849317c890 code=0x7ffc0000 [ 442.322499][ T29] audit: type=1326 audit(1726700118.642:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6797 comm="syz.4.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f849317dafb code=0x7ffc0000 [ 442.347576][ T29] audit: type=1326 audit(1726700118.702:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6797 comm="syz.4.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f849317cb8a code=0x7ffc0000 [ 442.667551][ T5253] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 442.917736][ T5253] usb 1-1: Using ep0 maxpacket: 32 [ 442.946474][ T5253] usb 1-1: config 0 has no interfaces? [ 442.968958][ T5253] usb 1-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed [ 442.978757][ T5253] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 442.987075][ T5253] usb 1-1: Product: syz [ 442.991785][ T5253] usb 1-1: Manufacturer: syz [ 442.996688][ T5253] usb 1-1: SerialNumber: syz [ 443.112317][ T5253] usb 1-1: config 0 descriptor?? [ 443.149189][ T6811] FAULT_INJECTION: forcing a failure. [ 443.149189][ T6811] name failslab, interval 1, probability 0, space 0, times 0 [ 443.162509][ T6811] CPU: 0 UID: 0 PID: 6811 Comm: syz.2.356 Tainted: G W 6.11.0-syzkaller-04744-gbdf56c7580d2 #0 [ 443.174631][ T6811] Tainted: [W]=WARN [ 443.178658][ T6811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 443.189009][ T6811] Call Trace: [ 443.192515][ T6811] [ 443.195677][ T6811] dump_stack_lvl+0x216/0x2d0 [ 443.200729][ T6811] dump_stack+0x1e/0x30 [ 443.205213][ T6811] should_fail_ex+0x74e/0x800 [ 443.210247][ T6811] should_failslab+0x17f/0x210 [ 443.215403][ T6811] kmem_cache_alloc_noprof+0xe2/0xb20 [ 443.221171][ T6811] ? skb_clone+0x303/0x550 [ 443.225938][ T6811] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 443.232104][ T6811] skb_clone+0x303/0x550 [ 443.236758][ T6811] __netlink_deliver_tap+0x607/0xc90 [ 443.242407][ T6811] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 443.248648][ T6811] ? kmsan_get_metadata+0x13e/0x1c0 [ 443.254237][ T6811] netlink_sendskb+0x23f/0x270 [ 443.259389][ T6811] netlink_unicast+0x70c/0x1260 [ 443.264658][ T6811] devlink_nl_port_get_doit+0x2d1/0x350 [ 443.270571][ T6811] ? __pfx_devlink_nl_port_get_doit+0x10/0x10 [ 443.276986][ T6811] genl_rcv_msg+0x1214/0x12c0 [ 443.282002][ T6811] ? filter_irq_stacks+0x164/0x1a0 [ 443.287412][ T6811] ? __pfx_devlink_nl_pre_doit_port+0x10/0x10 [ 443.293804][ T6811] ? __pfx_devlink_nl_port_get_doit+0x10/0x10 [ 443.300182][ T6811] ? __pfx_devlink_nl_post_doit+0x10/0x10 [ 443.306349][ T6811] netlink_rcv_skb+0x375/0x650 [ 443.311411][ T6811] ? __pfx_genl_rcv_msg+0x10/0x10 [ 443.316748][ T6811] ? __pfx_genl_rcv+0x10/0x10 [ 443.321720][ T6811] genl_rcv+0x40/0x60 [ 443.326021][ T6811] netlink_unicast+0xf52/0x1260 [ 443.331235][ T6811] netlink_sendmsg+0x10da/0x11e0 [ 443.336481][ T6811] ? __pfx_netlink_sendmsg+0x10/0x10 [ 443.342060][ T6811] ? __pfx_netlink_sendmsg+0x10/0x10 [ 443.347649][ T6811] __sock_sendmsg+0x30f/0x380 [ 443.352634][ T6811] ____sys_sendmsg+0x877/0xb60 [ 443.357694][ T6811] ___sys_sendmsg+0x28d/0x3c0 [ 443.362636][ T6811] ? kmsan_get_metadata+0x13e/0x1c0 [ 443.368137][ T6811] ? __rcu_read_unlock+0x7b/0xe0 [ 443.373365][ T6811] ? __fget_files+0x4f5/0x5c0 [ 443.378343][ T6811] ? kmsan_get_metadata+0x13e/0x1c0 [ 443.383848][ T6811] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 443.389992][ T6811] __x64_sys_sendmsg+0x301/0x490 [ 443.395248][ T6811] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 443.401353][ T6811] x64_sys_call+0x2da0/0x3ba0 [ 443.406341][ T6811] do_syscall_64+0xcd/0x1e0 [ 443.411118][ T6811] ? clear_bhb_loop+0x25/0x80 [ 443.416125][ T6811] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 443.422335][ T6811] RIP: 0033:0x7feacf37def9 [ 443.426993][ T6811] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 443.446919][ T6811] RSP: 002b:00007fead00bf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 443.455751][ T6811] RAX: ffffffffffffffda RBX: 00007feacf535f80 RCX: 00007feacf37def9 [ 443.463980][ T6811] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 443.472212][ T6811] RBP: 00007fead00bf090 R08: 0000000000000000 R09: 0000000000000000 [ 443.480440][ T6811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 443.488651][ T6811] R13: 0000000000000000 R14: 00007feacf535f80 R15: 00007fffd66c8088 [ 443.496892][ T6811] [ 443.568868][ T8] usb 1-1: USB disconnect, device number 9 [ 443.587114][ T6809] loop4: detected capacity change from 0 to 1024 [ 443.615384][ T6809] hfsplus: unable to parse mount options [ 443.988171][ T6815] loop1: detected capacity change from 0 to 64 [ 444.037478][ T6815] minix: Unknown parameter 'úÿ' [ 445.650860][ T6836] loop4: detected capacity change from 0 to 8 [ 445.728427][ T6836] unable to read xattr id index table [ 445.865590][ T6836] loop4: detected capacity change from 0 to 256 [ 445.992070][ T6836] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x600cbf0d, utbl_chksum : 0xe619d30d) [ 446.047542][ T6836] exFAT-fs (loop4): failed to load alloc-bitmap [ 446.054170][ T6836] exFAT-fs (loop4): failed to recognize exfat type [ 446.109319][ T6828] loop2: detected capacity change from 0 to 4096 [ 446.128067][ T6828] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512). [ 446.302808][ T6828] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 446.324174][ T6828] ntfs3: loop2: Failed to load $Extend (-22). [ 446.330938][ T6828] ntfs3: loop2: Failed to initialize $Extend. [ 446.378143][ T5263] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 446.541187][ T5263] usb 1-1: device descriptor read/64, error -71 [ 446.829008][ T5263] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 446.905996][ T6848] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3) [ 446.912891][ T6848] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 446.921234][ T6848] vhci_hcd vhci_hcd.0: Device attached [ 446.991653][ T6851] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 447.023456][ T5263] usb 1-1: device descriptor read/64, error -71 [ 447.148429][ T6848] vhci_hcd vhci_hcd.0: pdev(4) rhport(2) sockfd(5) [ 447.155321][ T6848] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 447.163829][ T6848] vhci_hcd vhci_hcd.0: Device attached [ 447.187882][ T8] vhci_hcd: vhci_device speed not set [ 447.202810][ T5263] usb usb1-port1: attempt power cycle [ 447.269384][ T6851] vhci_hcd vhci_hcd.0: pdev(4) rhport(3) sockfd(10) [ 447.276349][ T6851] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 447.284739][ T6851] vhci_hcd vhci_hcd.0: Device attached [ 447.306248][ T8] usb 17-1: new full-speed USB device number 2 using vhci_hcd [ 447.387755][ T6857] vhci_hcd vhci_hcd.0: pdev(4) rhport(4) sockfd(13) [ 447.394740][ T6857] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 447.403132][ T6857] vhci_hcd vhci_hcd.0: Device attached [ 447.411848][ T6860] vhci_hcd vhci_hcd.0: pdev(4) rhport(5) sockfd(16) [ 447.418790][ T6860] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 447.427782][ T6860] vhci_hcd vhci_hcd.0: Device attached [ 447.486619][ T6856] loop1: detected capacity change from 0 to 1024 [ 447.501816][ T6856] hfsplus: unable to parse mount options [ 447.512441][ T6849] vhci_hcd: connection reset by peer [ 447.521698][ T6862] vhci_hcd: connection closed [ 447.524549][ T1110] vhci_hcd: stop threads [ 447.534216][ T1110] vhci_hcd: release socket [ 447.540760][ T6859] vhci_hcd: connection closed [ 447.545186][ T1110] vhci_hcd: disconnect device [ 447.547705][ T6852] vhci_hcd: connection closed [ 447.570036][ T6854] vhci_hcd: connection closed [ 447.591148][ T1110] vhci_hcd: stop threads [ 447.604001][ T1110] vhci_hcd: release socket [ 447.610739][ T1110] vhci_hcd: disconnect device [ 447.617129][ T1110] vhci_hcd: stop threads [ 447.621841][ T1110] vhci_hcd: release socket [ 447.626553][ T1110] vhci_hcd: disconnect device [ 447.632891][ T5263] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 447.653004][ T1110] vhci_hcd: stop threads [ 447.657807][ T1110] vhci_hcd: release socket [ 447.662621][ T1110] vhci_hcd: disconnect device [ 447.670108][ T1110] vhci_hcd: stop threads [ 447.675088][ T1110] vhci_hcd: release socket [ 447.681952][ T1110] vhci_hcd: disconnect device [ 447.688227][ T5263] usb 1-1: device descriptor read/8, error -71 [ 447.954816][ T5263] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 447.986590][ T5263] usb 1-1: device descriptor read/8, error -71 [ 448.104213][ T5263] usb usb1-port1: unable to enumerate USB device [ 448.144903][ T6867] FAULT_INJECTION: forcing a failure. [ 448.144903][ T6867] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 448.167066][ T6867] CPU: 0 UID: 0 PID: 6867 Comm: syz.1.372 Tainted: G W 6.11.0-syzkaller-04744-gbdf56c7580d2 #0 [ 448.179189][ T6867] Tainted: [W]=WARN [ 448.183379][ T6867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 448.193709][ T6867] Call Trace: [ 448.197210][ T6867] [ 448.200355][ T6867] dump_stack_lvl+0x216/0x2d0 [ 448.205367][ T6867] dump_stack+0x1e/0x30 [ 448.209841][ T6867] should_fail_ex+0x74e/0x800 [ 448.214869][ T6867] should_fail+0x2a/0x40 [ 448.219434][ T6867] should_fail_usercopy+0x2e/0x40 [ 448.224804][ T6867] _copy_from_user+0x33/0x160 [ 448.229805][ T6867] sctp_getsockopt_context+0x8f/0x7d0 [ 448.235472][ T6867] ? lock_sock_nested+0x1de/0x200 [ 448.240788][ T6867] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 448.246894][ T6867] sctp_getsockopt+0x6e8/0x12a0 [ 448.252035][ T6867] ? __pfx_sctp_getsockopt+0x10/0x10 [ 448.257622][ T6867] sock_common_getsockopt+0xa1/0xe0 [ 448.263162][ T6867] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 448.269367][ T6867] do_sock_getsockopt+0x5f0/0xa10 [ 448.274733][ T6867] ? kmsan_get_metadata+0x40/0x1c0 [ 448.280128][ T6867] __sys_getsockopt+0x3c4/0x530 [ 448.285297][ T6867] ? kmsan_get_metadata+0x40/0x1c0 [ 448.290684][ T6867] ? kmsan_get_metadata+0x40/0x1c0 [ 448.296083][ T6867] __x64_sys_getsockopt+0xe9/0x170 [ 448.301472][ T6867] x64_sys_call+0x140d/0x3ba0 [ 448.306460][ T6867] do_syscall_64+0xcd/0x1e0 [ 448.311239][ T6867] ? clear_bhb_loop+0x25/0x80 [ 448.316232][ T6867] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 448.322432][ T6867] RIP: 0033:0x7fcecc57def9 [ 448.327092][ T6867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 448.347006][ T6867] RSP: 002b:00007fcecd2a2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 448.355746][ T6867] RAX: ffffffffffffffda RBX: 00007fcecc735f80 RCX: 00007fcecc57def9 [ 448.363998][ T6867] RDX: 0000000000000011 RSI: 0000000000000084 RDI: 0000000000000003 [ 448.372298][ T6867] RBP: 00007fcecd2a2090 R08: 0000000020000080 R09: 0000000000000000 [ 448.380518][ T6867] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000001 [ 448.388730][ T6867] R13: 0000000000000000 R14: 00007fcecc735f80 R15: 00007ffc4a516738 [ 448.397143][ T6867] [ 448.631528][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 448.642003][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 448.987444][ T6875] loop4: detected capacity change from 0 to 128 [ 449.025971][ T6875] zonefs (loop4) ERROR: Not a zoned block device [ 449.487832][ T6878] netlink: 32 bytes leftover after parsing attributes in process `syz.0.375'. [ 450.088551][ T6890] netlink: 116 bytes leftover after parsing attributes in process `syz.0.378'. [ 450.706786][ T6894] futex_wake_op: syz.4.379 tries to shift op by 32; fix this program [ 451.032631][ T6899] fuse: Bad value for 'fd' [ 451.209222][ T6901] loop0: detected capacity change from 0 to 1024 [ 451.230304][ T6901] hfsplus: unable to parse mount options [ 452.053427][ T6908] FAULT_INJECTION: forcing a failure. [ 452.053427][ T6908] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 452.067189][ T6908] CPU: 0 UID: 0 PID: 6908 Comm: syz.1.386 Tainted: G W 6.11.0-syzkaller-04744-gbdf56c7580d2 #0 [ 452.079311][ T6908] Tainted: [W]=WARN [ 452.083299][ T6908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 452.093524][ T6908] Call Trace: [ 452.096953][ T6908] [ 452.100024][ T6908] dump_stack_lvl+0x216/0x2d0 [ 452.104919][ T6908] dump_stack+0x1e/0x30 [ 452.109267][ T6908] should_fail_ex+0x74e/0x800 [ 452.114162][ T6908] should_fail+0x2a/0x40 [ 452.118653][ T6908] should_fail_usercopy+0x2e/0x40 [ 452.124009][ T6908] _copy_from_user+0x33/0x160 [ 452.129022][ T6908] ___sys_sendmsg+0x120/0x3c0 [ 452.134012][ T6908] ? kmsan_get_metadata+0x13e/0x1c0 [ 452.139488][ T6908] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 452.145618][ T6908] ? __rcu_read_unlock+0x7b/0xe0 [ 452.150852][ T6908] ? __fget_files+0x4f5/0x5c0 [ 452.155763][ T6908] ? kmsan_get_metadata+0x13e/0x1c0 [ 452.161153][ T6908] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 452.167171][ T6908] __x64_sys_sendmsg+0x301/0x490 [ 452.172410][ T6908] ? kmsan_get_metadata+0x13e/0x1c0 [ 452.177929][ T6908] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 452.184036][ T6908] x64_sys_call+0x2da0/0x3ba0 [ 452.188941][ T6908] do_syscall_64+0xcd/0x1e0 [ 452.193637][ T6908] ? clear_bhb_loop+0x25/0x80 [ 452.198531][ T6908] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 452.204645][ T6908] RIP: 0033:0x7fcecc57def9 [ 452.209253][ T6908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 452.229089][ T6908] RSP: 002b:00007fcecd2a2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 452.237738][ T6908] RAX: ffffffffffffffda RBX: 00007fcecc735f80 RCX: 00007fcecc57def9 [ 452.245889][ T6908] RDX: 0000000000000000 RSI: 0000000020000440 RDI: 0000000000000003 [ 452.254043][ T6908] RBP: 00007fcecd2a2090 R08: 0000000000000000 R09: 0000000000000000 [ 452.262202][ T6908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 452.270388][ T6908] R13: 0000000000000000 R14: 00007fcecc735f80 R15: 00007ffc4a516738 [ 452.278664][ T6908] [ 452.358139][ T5263] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 452.402673][ T8] vhci_hcd: vhci_device speed not set [ 452.497687][ T5263] usb 1-1: device descriptor read/64, error -71 [ 452.739610][ T5263] usb 1-1: new high-speed USB device number 15 using dummy_hcd [ 452.905988][ T5263] usb 1-1: device descriptor read/64, error -71 [ 453.034217][ T5263] usb usb1-port1: attempt power cycle [ 453.039258][ T6917] binder: 6916:6917 ioctl c0306201 0 returned -14 [ 453.264560][ T6920] netlink: 'syz.1.389': attribute type 10 has an invalid length. [ 453.388477][ T5263] usb 1-1: new high-speed USB device number 16 using dummy_hcd [ 453.450375][ T5263] usb 1-1: device descriptor read/8, error -71 [ 453.734318][ T5263] usb 1-1: new high-speed USB device number 17 using dummy_hcd [ 453.796568][ T5263] usb 1-1: device descriptor read/8, error -71 [ 453.933744][ T5263] usb usb1-port1: unable to enumerate USB device [ 454.592280][ T5200] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 454.605515][ T5200] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 454.618142][ T5200] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 454.643797][ T5200] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 454.663431][ T5200] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 454.674948][ T5200] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 454.685918][ T6930] fuse: Bad value for 'fd' [ 455.459607][ T6934] loop0: detected capacity change from 0 to 1024 [ 455.470197][ T6934] hfsplus: unable to parse mount options [ 455.798790][ T1050] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 455.904739][ T1050] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 455.977197][ T6927] chnl_net:caif_netlink_parms(): no params data found [ 456.080136][ T1050] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 456.212790][ T1050] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 456.508810][ T1050] bridge_slave_1: left allmulticast mode [ 456.514773][ T1050] bridge_slave_1: left promiscuous mode [ 456.521723][ T1050] bridge0: port 2(bridge_slave_1) entered disabled state [ 456.610230][ T1050] bridge_slave_0: left allmulticast mode [ 456.616185][ T1050] bridge_slave_0: left promiscuous mode [ 456.623199][ T1050] bridge0: port 1(bridge_slave_0) entered disabled state [ 456.760716][ T5200] Bluetooth: hci6: command tx timeout [ 457.204208][ T1050] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 457.279230][ T1050] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 457.338151][ T1050] bond0 (unregistering): Released all slaves [ 457.817424][ T6953] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 457.829480][ T6953] xt_CHECKSUM: unsupported CHECKSUM operation 68 [ 457.900678][ T6953] autofs: Unknown parameter './file1' [ 458.314302][ T5203] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 458.328600][ T5203] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 458.342505][ T5203] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 458.380283][ T5203] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 458.416799][ T5203] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 458.426326][ T5203] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 458.438843][ T1050] hsr_slave_0: left promiscuous mode [ 458.454296][ T1050] hsr_slave_1: left promiscuous mode [ 458.476545][ T1050] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 458.485336][ T1050] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 458.571687][ T1050] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 458.579601][ T1050] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 458.688169][ T1050] veth1_macvtap: left promiscuous mode [ 458.694001][ T1050] veth0_macvtap: left promiscuous mode [ 458.702659][ T1050] veth1_vlan: left promiscuous mode [ 458.708410][ T1050] veth0_vlan: left promiscuous mode [ 458.798279][ T5200] Bluetooth: hci6: command tx timeout [ 459.659029][ T1050] team0 (unregistering): Port device team_slave_1 removed [ 459.692363][ T8] usb 1-1: new high-speed USB device number 18 using dummy_hcd [ 459.710724][ T1050] team0 (unregistering): Port device team_slave_0 removed [ 460.090614][ T6927] bridge0: port 1(bridge_slave_0) entered blocking state [ 460.093789][ T8] usb 1-1: device descriptor read/64, error -71 [ 460.098636][ T6927] bridge0: port 1(bridge_slave_0) entered disabled state [ 460.099374][ T6927] bridge_slave_0: entered allmulticast mode [ 460.122111][ T6927] bridge_slave_0: entered promiscuous mode [ 460.281317][ T6927] bridge0: port 2(bridge_slave_1) entered blocking state [ 460.289270][ T6927] bridge0: port 2(bridge_slave_1) entered disabled state [ 460.297194][ T6927] bridge_slave_1: entered allmulticast mode [ 460.306850][ T6927] bridge_slave_1: entered promiscuous mode [ 460.458470][ T8] usb 1-1: new high-speed USB device number 19 using dummy_hcd [ 460.487609][ T5203] Bluetooth: hci4: command tx timeout [ 460.499804][ T6927] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 460.610793][ T6927] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 460.629144][ T8] usb 1-1: device descriptor read/64, error -71 [ 460.778820][ T8] usb usb1-port1: attempt power cycle [ 460.878704][ T5203] Bluetooth: hci6: command tx timeout [ 460.882110][ T6927] team0: Port device team_slave_0 added [ 460.920875][ T6927] team0: Port device team_slave_1 added [ 461.060330][ T6927] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 461.067709][ T6927] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 461.094196][ T6927] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 461.121925][ T6927] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 461.129553][ T6927] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 461.158066][ T6927] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 461.177807][ T8] usb 1-1: new high-speed USB device number 20 using dummy_hcd [ 461.199813][ T6957] chnl_net:caif_netlink_parms(): no params data found [ 461.229126][ T8] usb 1-1: device descriptor read/8, error -71 [ 461.471857][ T8] usb 1-1: new high-speed USB device number 21 using dummy_hcd [ 461.535123][ T6927] hsr_slave_0: entered promiscuous mode [ 461.537205][ T8] usb 1-1: device descriptor read/8, error -71 [ 461.575639][ T6927] hsr_slave_1: entered promiscuous mode [ 461.599001][ T6927] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 461.606860][ T6927] Cannot create hsr debugfs directory [ 461.693802][ T8] usb usb1-port1: unable to enumerate USB device [ 461.772421][ T5203] Bluetooth: hci3: command 0x0406 tx timeout [ 462.100075][ T5203] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 462.138562][ T5203] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 462.181762][ T5203] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 462.230334][ T5203] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 462.247445][ T5203] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 462.259473][ T5203] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 462.567575][ T5203] Bluetooth: hci4: command tx timeout [ 462.957693][ T5203] Bluetooth: hci6: command tx timeout [ 463.173743][ T6957] bridge0: port 1(bridge_slave_0) entered blocking state [ 463.182453][ T6957] bridge0: port 1(bridge_slave_0) entered disabled state [ 463.190732][ T6957] bridge_slave_0: entered allmulticast mode [ 463.200413][ T6957] bridge_slave_0: entered promiscuous mode [ 463.298454][ T6957] bridge0: port 2(bridge_slave_1) entered blocking state [ 463.315537][ T6957] bridge0: port 2(bridge_slave_1) entered disabled state [ 463.323724][ T6957] bridge_slave_1: entered allmulticast mode [ 463.333645][ T6957] bridge_slave_1: entered promiscuous mode [ 463.559806][ T6957] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 463.658271][ T6957] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 463.814314][ T6978] loop0: detected capacity change from 0 to 1024 [ 463.833512][ T6978] hfsplus: unable to parse mount options [ 464.073034][ T6957] team0: Port device team_slave_0 added [ 464.081135][ T6969] chnl_net:caif_netlink_parms(): no params data found [ 464.100990][ T6927] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 464.153304][ T6927] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 464.188198][ T6957] team0: Port device team_slave_1 added [ 464.215426][ T6927] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 464.398489][ T5203] Bluetooth: hci1: command tx timeout [ 464.443279][ T6957] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 464.450616][ T6957] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 464.477082][ T6957] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 464.515415][ T6927] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 464.639854][ T5203] Bluetooth: hci4: command tx timeout [ 464.675473][ T6957] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 464.684647][ T6957] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 464.712707][ T6957] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 464.868047][ T5253] usb 1-1: new high-speed USB device number 22 using dummy_hcd [ 465.035613][ T6957] hsr_slave_0: entered promiscuous mode [ 465.064655][ T5253] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 465.076528][ T5253] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 465.083797][ T6957] hsr_slave_1: entered promiscuous mode [ 465.087790][ T5253] usb 1-1: New USB device found, idVendor=05ac, idProduct=0269, bcdDevice= 0.00 [ 465.101808][ T5253] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 465.131151][ T5253] usb 1-1: config 0 descriptor?? [ 465.160982][ T6957] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 465.169273][ T6957] Cannot create hsr debugfs directory [ 465.417845][ T6983] capability: warning: `syz.0.406' uses 32-bit capabilities (legacy support in use) [ 465.672492][ T6969] bridge0: port 1(bridge_slave_0) entered blocking state [ 465.680877][ T6969] bridge0: port 1(bridge_slave_0) entered disabled state [ 465.689145][ T6969] bridge_slave_0: entered allmulticast mode [ 465.699100][ T6969] bridge_slave_0: entered promiscuous mode [ 465.809456][ T6969] bridge0: port 2(bridge_slave_1) entered blocking state [ 465.817522][ T6969] bridge0: port 2(bridge_slave_1) entered disabled state [ 465.825756][ T6969] bridge_slave_1: entered allmulticast mode [ 465.833388][ T5253] magicmouse 0003:05AC:0269.0003: unbalanced delimiter at end of report description [ 465.835778][ T6969] bridge_slave_1: entered promiscuous mode [ 465.894957][ T5253] magicmouse 0003:05AC:0269.0003: magicmouse hid parse failed [ 465.905283][ T5253] magicmouse 0003:05AC:0269.0003: probe with driver magicmouse failed with error -22 [ 466.037044][ T5253] usb 1-1: USB disconnect, device number 22 [ 466.284526][ T6969] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 466.446843][ T6969] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 466.478686][ T5203] Bluetooth: hci1: command tx timeout [ 466.581338][ T5200] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 466.610088][ T5200] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 466.663944][ T5200] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 466.717554][ T5200] Bluetooth: hci4: command tx timeout [ 466.753647][ T5200] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 466.766005][ T5200] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 466.776691][ T5200] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 466.914451][ T6969] team0: Port device team_slave_0 added [ 467.069484][ T6957] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 467.121981][ T6969] team0: Port device team_slave_1 added [ 467.171163][ T6927] 8021q: adding VLAN 0 to HW filter on device bond0 [ 467.364339][ T6957] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 467.563818][ T6957] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 467.655459][ T6969] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 467.663186][ T6969] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 467.690121][ T6969] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 467.783564][ T6957] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 467.937527][ T6997] loop0: detected capacity change from 0 to 128 [ 467.978199][ T6969] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 467.985539][ T6969] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 468.013212][ T6969] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 468.014170][ T6997] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 468.109155][ T6997] ext4 filesystem being mounted at /78/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 468.239688][ T6927] 8021q: adding VLAN 0 to HW filter on device team0 [ 468.401885][ T1110] bridge0: port 1(bridge_slave_0) entered blocking state [ 468.410057][ T1110] bridge0: port 1(bridge_slave_0) entered forwarding state [ 468.591755][ T5200] Bluetooth: hci1: command tx timeout [ 468.608572][ T1110] bridge0: port 2(bridge_slave_1) entered blocking state [ 468.616358][ T1110] bridge0: port 2(bridge_slave_1) entered forwarding state [ 468.654712][ T6969] hsr_slave_0: entered promiscuous mode [ 468.693033][ T6969] hsr_slave_1: entered promiscuous mode [ 468.715745][ T6969] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 468.723994][ T6969] Cannot create hsr debugfs directory [ 468.969954][ T5200] Bluetooth: hci3: command tx timeout [ 469.047845][ T5562] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 469.172286][ T6957] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 469.435040][ T6957] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 469.623225][ T6957] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 469.676341][ T7005] syz_tun: entered promiscuous mode [ 469.690795][ T7005] batadv_slave_0: entered promiscuous mode [ 469.703754][ T7005] syz_tun: left promiscuous mode [ 469.712937][ T7005] batadv_slave_0: left promiscuous mode [ 469.820418][ T6957] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 469.948625][ T1243] ieee802154 phy0 wpan0: encryption failed: -22 [ 470.077952][ T6989] chnl_net:caif_netlink_parms(): no params data found [ 470.449770][ T7010] loop0: detected capacity change from 0 to 512 [ 470.640199][ T5200] Bluetooth: hci1: command tx timeout [ 470.759591][ T7010] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 470.769057][ T7010] EXT4-fs (loop0): 1 truncate cleaned up [ 470.776963][ T7010] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 470.955422][ T6969] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 470.959127][ T7010] EXT4-fs error (device loop0): ext4_add_entry:2435: inode #2: comm syz.0.412: Directory hole found for htree leaf block 0 [ 470.998951][ T7010] EXT4-fs error (device loop0): ext4_add_entry:2435: inode #2: comm syz.0.412: Directory hole found for htree leaf block 0 [ 471.038140][ T5200] Bluetooth: hci3: command tx timeout [ 471.159957][ T6969] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 471.335257][ T6969] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 471.553899][ T6969] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 471.849330][ T6957] 8021q: adding VLAN 0 to HW filter on device bond0 [ 471.886042][ T6927] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 472.057139][ T6989] bridge0: port 1(bridge_slave_0) entered blocking state [ 472.065050][ T6989] bridge0: port 1(bridge_slave_0) entered disabled state [ 472.074575][ T6989] bridge_slave_0: entered allmulticast mode [ 472.084257][ T6989] bridge_slave_0: entered promiscuous mode [ 472.170071][ T6989] bridge0: port 2(bridge_slave_1) entered blocking state [ 472.179505][ T6989] bridge0: port 2(bridge_slave_1) entered disabled state [ 472.187761][ T6989] bridge_slave_1: entered allmulticast mode [ 472.198350][ T6989] bridge_slave_1: entered promiscuous mode [ 472.381990][ T6989] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 472.431203][ T6957] 8021q: adding VLAN 0 to HW filter on device team0 [ 472.448437][ T6969] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 472.502413][ T6969] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 472.552417][ T6989] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 472.582620][ T6969] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 472.631927][ T6969] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 472.877912][ T6989] team0: Port device team_slave_0 added [ 472.906145][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 472.913920][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 473.001899][ T6989] team0: Port device team_slave_1 added [ 473.125120][ T1050] bridge0: port 2(bridge_slave_1) entered blocking state [ 473.132961][ T1050] bridge0: port 2(bridge_slave_1) entered forwarding state [ 473.157562][ T5200] Bluetooth: hci3: command tx timeout [ 473.269578][ T6989] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 473.276795][ T6989] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 473.303281][ T6989] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 473.383164][ T6989] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 473.391044][ T6989] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 473.417913][ T6989] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 473.456051][ T6927] veth0_vlan: entered promiscuous mode [ 473.917025][ T7028] binder: 7027:7028 ioctl 4018620d 0 returned -22 [ 473.942950][ T6927] veth1_vlan: entered promiscuous mode [ 473.978465][ T6989] hsr_slave_0: entered promiscuous mode [ 474.024842][ T6989] hsr_slave_1: entered promiscuous mode [ 474.046645][ T6989] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 474.054793][ T6989] Cannot create hsr debugfs directory [ 474.174989][ T7028] tipc: MTU too low for tipc bearer [ 474.808961][ T6927] veth0_macvtap: entered promiscuous mode [ 474.929952][ T6969] 8021q: adding VLAN 0 to HW filter on device bond0 [ 474.975338][ T6927] veth1_macvtap: entered promiscuous mode [ 475.146773][ T6989] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 475.201154][ T5200] Bluetooth: hci3: command tx timeout [ 475.307798][ T6989] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 475.413735][ T6969] 8021q: adding VLAN 0 to HW filter on device team0 [ 475.699251][ T6989] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 475.786878][ T6927] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 475.798178][ T6927] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 475.815339][ T6927] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 475.828272][ T6927] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 475.840075][ T6927] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 475.853194][ T6927] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 475.864794][ T6927] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 475.877173][ T6927] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 475.889895][ T6927] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 475.901394][ T6927] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 475.925555][ T6927] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 476.006473][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 476.014424][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 476.140914][ T6989] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 476.258298][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 476.266075][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 476.448427][ T6927] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 476.459296][ T6927] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 476.469506][ T6927] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 476.482133][ T6927] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 476.492397][ T6927] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 476.503219][ T6927] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 476.513521][ T6927] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 476.531564][ T6927] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 476.543693][ T6927] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 476.554576][ T6927] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 476.571568][ T6927] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 477.106614][ T6957] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 477.776924][ T5200] Bluetooth: hci5: ACL packet for unknown connection handle 200 [ 477.815169][ T6927] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 477.824398][ T6927] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 477.833740][ T6927] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 477.843001][ T6927] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 477.885145][ T6969] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 477.895940][ T6969] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 478.152121][ T8] usb 1-1: new high-speed USB device number 23 using dummy_hcd [ 479.019505][ T8] usb 1-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e [ 479.029226][ T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 479.072610][ T8] usb 1-1: config 0 descriptor?? [ 479.231706][ T6989] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 479.399491][ T6989] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 479.517919][ T6989] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 479.630447][ T6989] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 479.806450][ T6957] veth0_vlan: entered promiscuous mode [ 479.945087][ T10] usb 1-1: USB disconnect, device number 23 [ 479.957505][ T6957] veth1_vlan: entered promiscuous mode [ 480.341984][ T6957] veth0_macvtap: entered promiscuous mode [ 480.431536][ T6957] veth1_macvtap: entered promiscuous mode [ 480.656521][ T6957] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 480.667562][ T6957] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 480.678268][ T6957] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 480.689395][ T6957] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 480.699609][ T6957] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 480.710603][ T6957] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 480.725139][ T6957] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 480.737146][ T6957] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 480.747506][ T6957] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 480.758364][ T6957] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 480.768653][ T6957] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 480.779601][ T6957] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 480.795128][ T6957] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 480.899005][ T6957] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 480.909895][ T6957] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 480.927003][ T6957] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 480.939829][ T6957] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 480.950006][ T6957] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 480.961656][ T6957] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 480.971866][ T6957] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 480.982719][ T6957] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 480.993107][ T6957] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 481.004101][ T6957] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 481.014412][ T6957] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 481.032173][ T6957] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 481.049791][ T6957] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 481.212443][ T6957] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 481.222291][ T6957] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 481.238762][ T6957] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 481.250086][ T6957] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 481.411013][ T6969] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 481.721127][ T6989] 8021q: adding VLAN 0 to HW filter on device bond0 [ 481.935681][ T6989] 8021q: adding VLAN 0 to HW filter on device team0 [ 482.115102][ T1110] bridge0: port 1(bridge_slave_0) entered blocking state [ 482.123051][ T1110] bridge0: port 1(bridge_slave_0) entered forwarding state [ 482.226167][ T1110] bridge0: port 2(bridge_slave_1) entered blocking state [ 482.234030][ T1110] bridge0: port 2(bridge_slave_1) entered forwarding state [ 483.398236][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 483.715947][ T7075] netlink: 4 bytes leftover after parsing attributes in process `syz.0.419'. [ 484.798591][ T6969] veth0_vlan: entered promiscuous mode [ 485.005699][ T6969] veth1_vlan: entered promiscuous mode [ 485.041861][ T6989] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 485.462557][ T6969] veth0_macvtap: entered promiscuous mode [ 485.611840][ T6969] veth1_macvtap: entered promiscuous mode [ 485.777374][ T6989] veth0_vlan: entered promiscuous mode [ 485.855643][ T6969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 485.868070][ T6969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 485.878514][ T6969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 485.889405][ T6969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 485.899658][ T6969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 485.910732][ T6969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 485.926791][ T6969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 485.944976][ T6969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 485.957410][ T6969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 485.968198][ T6969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 485.978416][ T6969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 485.989213][ T6969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 485.999464][ T6969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 486.010551][ T6969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 486.026469][ T6969] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 486.047082][ T6989] veth1_vlan: entered promiscuous mode [ 486.325829][ T6969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 486.336845][ T6969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 486.354500][ T6969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 486.367636][ T6969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 486.377977][ T6969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 486.388788][ T6969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 486.399018][ T6969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 486.409795][ T6969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 486.421166][ T6969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 486.432411][ T6969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 486.442698][ T6969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 486.460293][ T6969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 486.472563][ T6969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 486.484465][ T6969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 486.500519][ T6969] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 486.664881][ T6989] veth0_macvtap: entered promiscuous mode [ 486.707776][ T6969] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 486.716914][ T6969] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 486.730723][ T6969] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 486.740560][ T6969] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 486.878768][ T6989] veth1_macvtap: entered promiscuous mode [ 487.092194][ T6989] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 487.104970][ T6989] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 487.115775][ T6989] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 487.126688][ T6989] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 487.136920][ T6989] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 487.147761][ T6989] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 487.157991][ T6989] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 487.170954][ T6989] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 487.181866][ T6989] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 487.192718][ T6989] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 487.205848][ T6989] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 487.217502][ T6989] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 487.227851][ T6989] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 487.238715][ T6989] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 487.248929][ T6989] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 487.259829][ T6989] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 487.283179][ T6989] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 487.742125][ T6989] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 487.753259][ T6989] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 487.766412][ T6989] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 487.777791][ T6989] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 487.790113][ T6989] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 487.801707][ T6989] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 487.811911][ T6989] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 487.822856][ T6989] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 487.833143][ T6989] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 487.846220][ T6989] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 487.858014][ T6989] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 487.868952][ T6989] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 487.879208][ T6989] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 487.892130][ T6989] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 487.903079][ T6989] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 487.914082][ T6989] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 487.930396][ T6989] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 488.110600][ T6989] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 488.119800][ T6989] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 488.129054][ T6989] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 488.138267][ T6989] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 488.232805][ T3469] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 488.241227][ T3469] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 488.536220][ T3510] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 488.545204][ T3510] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 489.389629][ T7122] futex_wake_op: syz.3.391 tries to shift op by 32; fix this program [ 489.699609][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 489.707831][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 489.995311][ T3178] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 490.003855][ T3178] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 490.601367][ T7133] loop2: detected capacity change from 0 to 128 [ 490.719435][ T5263] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 490.949297][ T5263] usb 4-1: Using ep0 maxpacket: 16 [ 490.985365][ T5263] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 0, changing to 7 [ 490.996721][ T5263] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0 [ 491.006917][ T5263] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xD has invalid wMaxPacketSize 0 [ 491.089806][ T7133] loop2: detected capacity change from 0 to 1764 [ 491.103786][ T5263] usb 4-1: New USB device found, idVendor=0c45, idProduct=624e, bcdDevice=c0.42 [ 491.113327][ T5263] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 491.122536][ T5263] usb 4-1: Product: syz [ 491.126986][ T5263] usb 4-1: Manufacturer: syz [ 491.132524][ T5263] usb 4-1: SerialNumber: syz [ 491.200677][ T7133] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 491.211901][ T7133] ISOFS: unable to read i-node block [ 491.213364][ T5263] usb 4-1: config 0 descriptor?? [ 491.218194][ T7133] isofs_fill_super: get root inode failed [ 491.502880][ T5263] gspca_main: gspca_sn9c20x-2.14.0 probing 0c45:624e [ 491.538803][ T5263] gspca_sn9c20x: Write register 1000 failed -71 [ 491.545365][ T5263] gspca_sn9c20x: Device initialization failed [ 491.552474][ T5263] gspca_sn9c20x 4-1:0.0: probe with driver gspca_sn9c20x failed with error -71 [ 491.563124][ T5263] usbhid 4-1:0.0: couldn't find an input interrupt endpoint [ 491.743347][ T5263] usb 4-1: USB disconnect, device number 5 [ 492.535440][ T7150] loop2: detected capacity change from 0 to 1024 [ 492.620106][ T7150] hfsplus: unable to parse mount options [ 493.056658][ T7161] loop3: detected capacity change from 0 to 64 [ 493.180839][ T7152] pimreg: entered allmulticast mode [ 493.336551][ T7152] pimreg: left allmulticast mode [ 493.491440][ T7161] netlink: 168 bytes leftover after parsing attributes in process `syz.3.428'. [ 494.171006][ T7168] loop2: detected capacity change from 0 to 512 [ 494.250588][ T7168] EXT4-fs: Ignoring removed bh option [ 494.256621][ T7168] EXT4-fs: quotafile must be on filesystem root [ 494.710714][ T7168] syzkaller0: entered promiscuous mode [ 495.001962][ T7168] syzkaller0: left promiscuous mode [ 495.266916][ T7182] loop3: detected capacity change from 0 to 256 [ 495.308954][ T7182] exfat: Deprecated parameter 'namecase' [ 495.496544][ T7182] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 495.701600][ T3510] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 495.710817][ T3510] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 496.012034][ T3510] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 496.020524][ T3510] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 496.800172][ T7199] fuse: Bad value for 'fd' [ 497.105726][ T7204] netlink: 12 bytes leftover after parsing attributes in process `syz.3.435'. [ 497.116634][ T7204] netlink: 4 bytes leftover after parsing attributes in process `syz.3.435'. [ 497.226979][ T7205] input: syz0 as /devices/virtual/input/input6 [ 497.594297][ T3469] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 497.603045][ T3469] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 497.833511][ T7204] netlink: 12 bytes leftover after parsing attributes in process `syz.3.435'. [ 497.844276][ T7204] netlink: 4 bytes leftover after parsing attributes in process `syz.3.435'. [ 497.939396][ T1110] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 497.947778][ T1110] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 497.981679][ T25] IPVS: starting estimator thread 0... [ 498.140892][ T7215] IPVS: using max 192 ests per chain, 9600 per kthread [ 498.992551][ T7204] netlink: 12 bytes leftover after parsing attributes in process `syz.3.435'. [ 499.002386][ T7204] netlink: 4 bytes leftover after parsing attributes in process `syz.3.435'. [ 499.159784][ T5263] usb 1-1: new high-speed USB device number 24 using dummy_hcd [ 499.403152][ T5263] usb 1-1: Using ep0 maxpacket: 8 [ 499.505983][ T5263] usb 1-1: New USB device found, idVendor=17cc, idProduct=0815, bcdDevice=47.b7 [ 499.515678][ T5263] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 499.546909][ T5263] usb 1-1: config 0 descriptor?? [ 499.595164][ T5263] usb 1-1: selecting invalid altsetting 1 [ 499.609515][ T5263] snd-usb-caiaq 1-1:0.0: can't set alt interface. [ 499.616246][ T5263] usb 1-1: unable to init card! (ret=-5) [ 499.624804][ T5263] snd-usb-caiaq 1-1:0.0: probe with driver snd-usb-caiaq failed with error -5 [ 499.918957][ T25] usb 1-1: USB disconnect, device number 24 [ 501.044127][ T7248] loop1: detected capacity change from 0 to 512 [ 501.130133][ T7248] UDF-fs: warning (device loop1): udf_load_vrs: No VRS found [ 501.138030][ T7248] UDF-fs: Scanning with blocksize 512 failed [ 501.173940][ T7248] UDF-fs: warning (device loop1): udf_load_vrs: No VRS found [ 501.181959][ T7248] UDF-fs: Scanning with blocksize 1024 failed [ 501.220254][ T7248] UDF-fs: warning (device loop1): udf_load_vrs: No VRS found [ 501.223762][ T7246] loop3: detected capacity change from 0 to 1764 [ 501.228536][ T7248] UDF-fs: Scanning with blocksize 2048 failed [ 501.244094][ T7248] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 501.261447][ T7246] iso9660: Unknown parameter '' [ 501.373805][ T7248] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 501.387764][ T5252] usb 1-1: new high-speed USB device number 25 using dummy_hcd [ 501.535349][ T7248] ------------[ cut here ]------------ [ 501.541739][ T7248] WARNING: CPU: 1 PID: 7248 at fs/udf/truncate.c:204 udf_truncate_extents+0x6d5/0x19e0 [ 501.552195][ T7248] Modules linked in: [ 501.556406][ T7248] CPU: 1 UID: 0 PID: 7248 Comm: syz.1.448 Tainted: G W 6.11.0-syzkaller-04744-gbdf56c7580d2 #0 [ 501.568858][ T7248] Tainted: [W]=WARN [ 501.572906][ T7248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 501.583638][ T7248] RIP: 0010:udf_truncate_extents+0x6d5/0x19e0 [ 501.590281][ T7248] Code: 89 d4 8b 7d cc e8 5b 77 71 fe 41 89 04 24 e9 a4 fd ff ff 44 89 e7 e8 8a 7b 71 fe 4d 85 ff 0f 84 78 fe ff ff e8 1c ff db fd 90 <0f> 0b 90 e9 d9 11 00 00 44 89 f7 e8 6b 7b 71 fe 85 db 0f 84 c2 fe [ 501.615994][ T7248] RSP: 0018:ffff88812b4c3788 EFLAGS: 00010287 [ 501.624129][ T7248] RAX: ffffffff83d7f334 RBX: ffff888109b8abf8 RCX: 0000000000040000 [ 501.633215][ T7248] RDX: ffffc90006a2e000 RSI: 00000000000002f8 RDI: 00000000000002f9 [ 501.641619][ T7248] RBP: ffff88812b4c38e0 R08: ffffffff83d7f18d R09: ffffffff83d55a07 [ 501.650020][ T7248] R10: 0000000000000002 R11: ffff888109b8a0c0 R12: 0000000000000000 [ 501.658514][ T7248] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001 [ 501.666759][ T7248] FS: 00007f522c7d36c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000 [ 501.676228][ T7248] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 501.683257][ T7248] CR2: 0000001b30e0fff8 CR3: 0000000121bf6000 CR4: 00000000003526f0 [ 501.691730][ T7248] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 501.700141][ T7248] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 501.713885][ T7248] Call Trace: [ 501.719146][ T7248] [ 501.722330][ T7248] ? show_trace_log_lvl+0x268/0x3d0 [ 501.728115][ T7248] ? udf_write_failed+0x32f/0x390 [ 501.733508][ T7248] ? show_regs+0xb4/0xe0 [ 501.738414][ T7248] ? __warn+0x2c7/0x780 [ 501.742900][ T7248] ? udf_truncate_extents+0x6d5/0x19e0 [ 501.748909][ T7248] ? report_bug+0x929/0xbd0 [ 501.753746][ T7248] ? udf_truncate_extents+0x6d5/0x19e0 [ 501.759820][ T7248] ? handle_bug+0x6a/0x90 [ 501.764490][ T7248] ? exc_invalid_op+0x1f/0x50 [ 501.769650][ T7248] ? asm_exc_invalid_op+0x1f/0x30 [ 501.775043][ T7248] ? udf_current_aext+0x557/0x950 [ 501.780836][ T7248] ? udf_truncate_extents+0x52d/0x19e0 [ 501.786687][ T7248] ? udf_truncate_extents+0x6d4/0x19e0 [ 501.792759][ T7248] ? udf_truncate_extents+0x6d5/0x19e0 [ 501.798715][ T7248] ? udf_truncate_extents+0x6d4/0x19e0 [ 501.804556][ T7248] ? kmsan_get_metadata+0x13e/0x1c0 [ 501.816058][ T7248] udf_write_failed+0x32f/0x390 [ 501.823040][ T7248] udf_direct_IO+0x328/0x350 [ 501.828344][ T7248] ? __pfx_udf_direct_IO+0x10/0x10 [ 501.833852][ T7248] generic_file_direct_write+0x275/0x6a0 [ 501.841577][ T7248] __generic_file_write_iter+0x242/0x460 [ 501.848753][ T7248] udf_file_write_iter+0x4ea/0xba0 [ 501.854260][ T7248] ? __pfx_udf_file_write_iter+0x10/0x10 [ 501.860462][ T7248] do_iter_readv_writev+0x897/0xa40 [ 501.866057][ T7248] ? kmsan_get_metadata+0x13e/0x1c0 [ 501.871934][ T7248] ? __pfx_udf_file_write_iter+0x10/0x10 [ 501.878095][ T7248] ? __pfx_udf_file_write_iter+0x10/0x10 [ 501.884123][ T7248] vfs_writev+0x56a/0x14f0 [ 501.889084][ T7248] ? filter_irq_stacks+0x164/0x1a0 [ 501.894568][ T7248] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 501.900936][ T7248] ? kmsan_get_metadata+0x13e/0x1c0 [ 501.906491][ T7248] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 501.918552][ T7248] __se_sys_pwritev2+0x280/0x470 [ 501.923885][ T7248] __x64_sys_pwritev2+0x11f/0x1a0 [ 501.935048][ T7248] x64_sys_call+0x2edb/0x3ba0 [ 501.944869][ T7248] do_syscall_64+0xcd/0x1e0 [ 501.949915][ T7248] ? clear_bhb_loop+0x25/0x80 [ 501.954979][ T7248] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 501.961452][ T7248] RIP: 0033:0x7f522b97def9 [ 501.966155][ T7248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 501.986471][ T7248] RSP: 002b:00007f522c7d3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148 [ 501.995492][ T7248] RAX: ffffffffffffffda RBX: 00007f522bb35f80 RCX: 00007f522b97def9 [ 502.004157][ T7248] RDX: 0000000000000001 RSI: 0000000020000400 RDI: 000000000000000a [ 502.012568][ T7248] RBP: 00007f522b9f0b76 R08: 0000000000000000 R09: 0000000000000003 [ 502.026475][ T7248] R10: 0000000000007bff R11: 0000000000000246 R12: 0000000000000000 [ 502.036554][ T7248] R13: 0000000000000000 R14: 00007f522bb35f80 R15: 00007ffd58bcc258 [ 502.045063][ T7248] [ 502.048557][ T7248] ---[ end trace 0000000000000000 ]--- [ 502.082917][ T5252] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 502.095951][ T5252] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 502.106281][ T5252] usb 1-1: New USB device found, idVendor=1e7d, idProduct=30d4, bcdDevice= 0.00 [ 502.120301][ T5252] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 502.135821][ T5252] usb 1-1: config 0 descriptor?? [ 502.708204][ T5252] usbhid 1-1:0.0: can't add hid device: -71 [ 502.714936][ T5252] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 502.755230][ T5252] usb 1-1: USB disconnect, device number 25 [ 503.172179][ T7257] loop3: detected capacity change from 0 to 256 [ 503.183680][ T7257] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 503.278642][ T7257] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 505.366723][ T7274] netlink: 'syz.0.457': attribute type 1 has an invalid length. [ 505.827809][ T5263] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 506.024109][ T5263] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 506.035560][ T5263] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 506.045946][ T5263] usb 2-1: New USB device found, idVendor=1e7d, idProduct=30d4, bcdDevice= 0.00 [ 506.055508][ T5263] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 506.085507][ T5263] usb 2-1: config 0 descriptor?? [ 506.207975][ T5252] usb 1-1: new high-speed USB device number 26 using dummy_hcd [ 506.445287][ T5252] usb 1-1: Using ep0 maxpacket: 8 [ 506.485503][ T5252] usb 1-1: New USB device found, idVendor=17cc, idProduct=0815, bcdDevice=47.b7 [ 506.495306][ T5252] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 506.559977][ T5252] usb 1-1: config 0 descriptor?? [ 506.671219][ T5252] usb 1-1: selecting invalid altsetting 1 [ 506.677850][ T5252] snd-usb-caiaq 1-1:0.0: can't set alt interface. [ 506.684568][ T5252] usb 1-1: unable to init card! (ret=-5) [ 506.691599][ T5252] snd-usb-caiaq 1-1:0.0: probe with driver snd-usb-caiaq failed with error -5 [ 506.981230][ T8] usb 1-1: USB disconnect, device number 26 [ 507.172125][ T29] kauditd_printk_skb: 16 callbacks suppressed [ 507.172267][ T29] audit: type=1326 audit(1726700183.742:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.1.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522b97def9 code=0x7ffc0000 [ 507.202289][ T29] audit: type=1326 audit(1726700183.742:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.1.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522b97def9 code=0x7ffc0000 [ 507.225458][ T29] audit: type=1326 audit(1726700183.752:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.1.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f522b97def9 code=0x7ffc0000 [ 507.258045][ T29] audit: type=1326 audit(1726700183.762:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.1.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522b97def9 code=0x7ffc0000 [ 507.284395][ T29] audit: type=1326 audit(1726700183.762:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.1.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522b97def9 code=0x7ffc0000 [ 507.307461][ T29] audit: type=1326 audit(1726700183.842:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.1.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f522b97dafb code=0x7ffc0000 [ 507.331112][ T29] audit: type=1326 audit(1726700183.842:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.1.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f522b97dafb code=0x7ffc0000 [ 507.364593][ T29] audit: type=1326 audit(1726700183.872:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.1.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f522b9affe5 code=0x7ffc0000 [ 507.497686][ T7276] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 507.539705][ T7276] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 507.555737][ T29] audit: type=1326 audit(1726700184.102:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.1.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522b97def9 code=0x7ffc0000 [ 507.578898][ T29] audit: type=1326 audit(1726700184.102:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.1.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522b97def9 code=0x7ffc0000 [ 507.728963][ T5263] arvo 0003:1E7D:30D4.0004: unknown main item tag 0x0 [ 507.736189][ T5263] arvo 0003:1E7D:30D4.0004: unknown main item tag 0x0 [ 507.743641][ T5263] arvo 0003:1E7D:30D4.0004: unknown main item tag 0x0 [ 507.767838][ T5263] arvo 0003:1E7D:30D4.0004: unknown main item tag 0x0 [ 507.775030][ T5263] arvo 0003:1E7D:30D4.0004: unknown main item tag 0x0 [ 507.786504][ T5263] arvo 0003:1E7D:30D4.0004: unknown main item tag 0x0 [ 507.793869][ T5263] arvo 0003:1E7D:30D4.0004: unknown main item tag 0x0 [ 508.081924][ T5263] arvo 0003:1E7D:30D4.0004: hidraw0: USB HID v0.00 Device [HID 1e7d:30d4] on usb-dummy_hcd.1-1/input0 [ 508.200266][ T5263] arvo 0003:1E7D:30D4.0004: couldn't init struct arvo_device [ 508.208334][ T5263] arvo 0003:1E7D:30D4.0004: couldn't install keyboard [ 508.307117][ T5263] arvo 0003:1E7D:30D4.0004: probe with driver arvo failed with error -71 [ 508.399117][ T5263] usb 2-1: USB disconnect, device number 11 [ 509.263601][ T5200] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 509.273671][ T5200] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 509.294327][ T5200] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 509.422663][ T5200] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 509.458620][ T5200] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 509.482200][ T5200] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 511.283942][ T13] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 511.367922][ T7290] chnl_net:caif_netlink_parms(): no params data found [ 511.510294][ T7309] FAULT_INJECTION: forcing a failure. [ 511.510294][ T7309] name failslab, interval 1, probability 0, space 0, times 0 [ 511.524828][ T13] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 511.549890][ T7309] CPU: 0 UID: 0 PID: 7309 Comm: syz.1.467 Tainted: G W 6.11.0-syzkaller-04744-gbdf56c7580d2 #0 [ 511.561974][ T7309] Tainted: [W]=WARN [ 511.565905][ T7309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 511.576119][ T7309] Call Trace: [ 511.579540][ T7309] [ 511.582619][ T7309] dump_stack_lvl+0x216/0x2d0 [ 511.587617][ T7309] dump_stack+0x1e/0x30 [ 511.591955][ T7309] should_fail_ex+0x74e/0x800 [ 511.596847][ T7309] should_failslab+0x17f/0x210 [ 511.601817][ T7309] kmem_cache_alloc_node_noprof+0xeb/0xb80 [ 511.607861][ T7309] ? __alloc_skb+0x1e9/0x7b0 [ 511.612669][ T7309] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 511.618680][ T7309] __alloc_skb+0x1e9/0x7b0 [ 511.623322][ T7309] alloc_skb_with_frags+0xc8/0xd00 [ 511.628761][ T7309] ? kmsan_get_metadata+0x13e/0x1c0 [ 511.634156][ T7309] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 511.640775][ T7309] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 511.646883][ T7309] sock_alloc_send_pskb+0xa81/0xbf0 [ 511.652351][ T7309] ? kmsan_get_metadata+0x13e/0x1c0 [ 511.657925][ T7309] dccp_sendmsg+0x36b/0xbb0 [ 511.662811][ T7309] ? __pfx_udp_sendmsg+0x10/0x10 [ 511.668127][ T7309] ? __pfx_dccp_sendmsg+0x10/0x10 [ 511.673521][ T7309] inet_sendmsg+0x25a/0x280 [ 511.678411][ T7309] ? __pfx_inet_sendmsg+0x10/0x10 [ 511.683777][ T7309] __sock_sendmsg+0x267/0x380 [ 511.688762][ T7309] ____sys_sendmsg+0x903/0xb60 [ 511.693736][ T7309] ___sys_sendmsg+0x28d/0x3c0 [ 511.698603][ T7309] ? kmsan_get_metadata+0x13e/0x1c0 [ 511.704023][ T7309] ? __rcu_read_unlock+0x7b/0xe0 [ 511.709166][ T7309] ? __fget_files+0x4f5/0x5c0 [ 511.714067][ T7309] ? kmsan_get_metadata+0x13e/0x1c0 [ 511.719538][ T7309] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 511.725584][ T7309] __sys_sendmmsg+0x3be/0x950 [ 511.730487][ T7309] ? vfs_write+0xf3e/0x1540 [ 511.735188][ T7309] ? kmsan_get_metadata+0x13e/0x1c0 [ 511.740583][ T7309] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 511.747158][ T7309] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 511.753570][ T7309] __x64_sys_sendmmsg+0xbc/0x120 [ 511.758713][ T7309] x64_sys_call+0xb6e/0x3ba0 [ 511.763519][ T7309] do_syscall_64+0xcd/0x1e0 [ 511.768240][ T7309] ? clear_bhb_loop+0x25/0x80 [ 511.773133][ T7309] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 511.779251][ T7309] RIP: 0033:0x7f522b97def9 [ 511.783862][ T7309] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 511.803715][ T7309] RSP: 002b:00007f522c7b2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 511.812364][ T7309] RAX: ffffffffffffffda RBX: 00007f522bb36058 RCX: 00007f522b97def9 [ 511.820520][ T7309] RDX: 0000000000000500 RSI: 00000000200001c0 RDI: 0000000000000007 [ 511.828656][ T7309] RBP: 00007f522c7b2090 R08: 0000000000000000 R09: 0000000000000000 [ 511.836794][ T7309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 511.845088][ T7309] R13: 0000000000000000 R14: 00007f522bb36058 R15: 00007ffd58bcc258 [ 511.853436][ T7309] [ 511.897663][ T5200] Bluetooth: hci2: command tx timeout [ 512.213144][ T13] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 512.444449][ T13] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 513.108320][ T5252] usb 2-1: new high-speed USB device number 12 using dummy_hcd [ 513.326293][ T5252] usb 2-1: Using ep0 maxpacket: 8 [ 513.351939][ T5252] usb 2-1: New USB device found, idVendor=17cc, idProduct=0815, bcdDevice=47.b7 [ 513.363347][ T5252] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 513.455455][ T5252] usb 2-1: config 0 descriptor?? [ 513.539660][ T5252] usb 2-1: selecting invalid altsetting 1 [ 513.545735][ T5252] snd-usb-caiaq 2-1:0.0: can't set alt interface. [ 513.554343][ T5252] usb 2-1: unable to init card! (ret=-5) [ 513.562529][ T5252] snd-usb-caiaq 2-1:0.0: probe with driver snd-usb-caiaq failed with error -5 [ 513.629290][ T13] bridge_slave_1: left allmulticast mode [ 513.635265][ T13] bridge_slave_1: left promiscuous mode [ 513.643276][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 513.825818][ T13] bridge_slave_0: left allmulticast mode [ 513.832110][ T13] bridge_slave_0: left promiscuous mode [ 513.839183][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 513.919897][ T5203] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 513.928269][ T5195] Bluetooth: hci2: command tx timeout [ 513.935955][ T5203] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 513.954369][ T5203] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 513.985219][ T5203] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 514.013985][ T5203] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 514.028195][ T5203] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 514.163044][ T5252] usb 2-1: USB disconnect, device number 12 [ 515.130804][ T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 515.245056][ T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 515.314499][ T13] bond0 (unregistering): Released all slaves [ 517.301514][ T5200] Bluetooth: hci2: command tx timeout [ 517.308913][ T5200] Bluetooth: hci1: command tx timeout [ 517.923724][ T5203] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 517.978110][ T5203] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 518.022087][ T5203] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 518.052128][ T5203] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 518.178310][ T5203] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 518.190281][ T5203] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 518.672939][ T7290] bridge0: port 1(bridge_slave_0) entered blocking state [ 518.682222][ T7290] bridge0: port 1(bridge_slave_0) entered disabled state [ 518.690435][ T7290] bridge_slave_0: entered allmulticast mode [ 518.700298][ T7290] bridge_slave_0: entered promiscuous mode [ 519.194420][ T7290] bridge0: port 2(bridge_slave_1) entered blocking state [ 519.204456][ T7290] bridge0: port 2(bridge_slave_1) entered disabled state [ 519.212913][ T7290] bridge_slave_1: entered allmulticast mode [ 519.229691][ T7290] bridge_slave_1: entered promiscuous mode [ 519.359820][ T5195] Bluetooth: hci1: command tx timeout [ 519.365638][ T5195] Bluetooth: hci2: command tx timeout [ 519.597643][ T13] hsr_slave_0: left promiscuous mode [ 519.662723][ T13] hsr_slave_1: left promiscuous mode [ 519.747903][ T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 519.755840][ T13] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 519.810995][ T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 519.819139][ T13] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 519.918753][ T13] veth1_macvtap: left promiscuous mode [ 519.924702][ T13] veth0_macvtap: left promiscuous mode [ 519.930952][ T13] veth1_vlan: left promiscuous mode [ 519.946745][ T13] veth0_vlan: left promiscuous mode [ 520.006036][ T7343] evm: overlay not supported [ 520.337681][ T5195] Bluetooth: hci7: command tx timeout [ 520.349782][ T1589] usb 1-1: new high-speed USB device number 27 using dummy_hcd [ 520.558090][ T1589] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 520.569576][ T1589] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 520.580061][ T1589] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 520.589754][ T1589] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 520.612897][ T1589] usb 1-1: config 0 descriptor?? [ 521.027966][ T13] team0 (unregistering): Port device team_slave_1 removed [ 521.106276][ T13] team0 (unregistering): Port device team_slave_0 removed [ 521.341773][ T7343] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 521.403879][ T7343] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 521.445591][ T5195] Bluetooth: hci1: command tx timeout [ 521.500940][ T1589] usbhid 1-1:0.0: can't add hid device: -71 [ 521.507950][ T1589] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 521.533325][ T1589] usb 1-1: USB disconnect, device number 27 [ 521.864929][ T7346] netlink: 12 bytes leftover after parsing attributes in process `syz.1.479'. [ 521.875614][ T7349] bridge_slave_1: left allmulticast mode [ 521.888901][ T7349] bridge_slave_1: left promiscuous mode [ 521.895823][ T7349] bridge0: port 2(bridge_slave_1) entered disabled state [ 522.065122][ T7290] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 522.136920][ T7290] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 522.417776][ T5195] Bluetooth: hci7: command tx timeout [ 522.479797][ T7290] team0: Port device team_slave_0 added [ 522.606089][ T7290] team0: Port device team_slave_1 added [ 522.639324][ T7319] chnl_net:caif_netlink_parms(): no params data found [ 522.743117][ T13] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 522.944811][ T13] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 523.037628][ T10] usb 1-1: new high-speed USB device number 28 using dummy_hcd [ 523.237600][ T10] usb 1-1: Using ep0 maxpacket: 8 [ 523.238685][ T13] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 523.250885][ T10] usb 1-1: New USB device found, idVendor=17cc, idProduct=0815, bcdDevice=47.b7 [ 523.263071][ T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 523.288549][ T10] usb 1-1: config 0 descriptor?? [ 523.339869][ T10] usb 1-1: selecting invalid altsetting 1 [ 523.346059][ T10] snd-usb-caiaq 1-1:0.0: can't set alt interface. [ 523.353063][ T10] usb 1-1: unable to init card! (ret=-5) [ 523.359537][ T7290] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 523.359951][ T10] snd-usb-caiaq 1-1:0.0: probe with driver snd-usb-caiaq failed with error -5 [ 523.366796][ T7290] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 523.402336][ T7290] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 523.522862][ T5195] Bluetooth: hci1: command tx timeout [ 523.707603][ T13] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 523.802566][ T7290] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 523.810248][ T7290] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 523.846272][ T7290] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 523.975362][ T10] usb 1-1: USB disconnect, device number 28 [ 524.284200][ T13] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 524.436439][ T13] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 524.477748][ T5195] Bluetooth: hci7: command tx timeout [ 524.655504][ T13] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 524.813444][ T7290] hsr_slave_0: entered promiscuous mode [ 524.880524][ T7290] hsr_slave_1: entered promiscuous mode [ 524.917893][ T7290] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 524.925772][ T7290] Cannot create hsr debugfs directory [ 525.015767][ T13] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 525.190423][ T7372] loop1: detected capacity change from 0 to 2048 [ 525.268940][ T7378] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 525.312556][ T7332] chnl_net:caif_netlink_parms(): no params data found [ 525.388164][ T7372] NILFS error (device loop1): nilfs_check_folio: bad entry in directory #2: disallowed inode number - offset=56, inode=6, rec_len=24, name_len=5 [ 525.435817][ T7372] Remounting filesystem read-only [ 525.621086][ T7372] syz.1.485: attempt to access beyond end of device [ 525.621086][ T7372] loop1: rw=0, sector=343245196361800, nr_sectors = 2 limit=2048 [ 525.636788][ T7372] NILFS (loop1): I/O error reading meta-data file (ino=6, block-offset=1) [ 526.230557][ T7319] bridge0: port 1(bridge_slave_0) entered blocking state [ 526.240761][ T7319] bridge0: port 1(bridge_slave_0) entered disabled state [ 526.249193][ T7319] bridge_slave_0: entered allmulticast mode [ 526.258994][ T7319] bridge_slave_0: entered promiscuous mode [ 526.273398][ T13] bridge_slave_1: left allmulticast mode [ 526.279520][ T13] bridge_slave_1: left promiscuous mode [ 526.298183][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 526.348753][ T13] bridge_slave_0: left allmulticast mode [ 526.354718][ T13] bridge_slave_0: left promiscuous mode [ 526.361689][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 526.411441][ T13] bridge_slave_1: left allmulticast mode [ 526.417725][ T13] bridge_slave_1: left promiscuous mode [ 526.424366][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 526.426620][ T7384] netlink: 20 bytes leftover after parsing attributes in process `syz.0.488'. [ 526.447843][ T7384] FAULT_INJECTION: forcing a failure. [ 526.447843][ T7384] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 526.461876][ T7384] CPU: 1 UID: 0 PID: 7384 Comm: syz.0.488 Tainted: G W 6.11.0-syzkaller-04744-gbdf56c7580d2 #0 [ 526.474010][ T7384] Tainted: [W]=WARN [ 526.478036][ T7384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 526.488469][ T7384] Call Trace: [ 526.491960][ T7384] [ 526.495202][ T7384] dump_stack_lvl+0x216/0x2d0 [ 526.500226][ T7384] dump_stack+0x1e/0x30 [ 526.504693][ T7384] should_fail_ex+0x74e/0x800 [ 526.509741][ T7384] should_fail+0x2a/0x40 [ 526.514300][ T7384] should_fail_usercopy+0x2e/0x40 [ 526.519655][ T7384] _copy_to_user+0x33/0x110 [ 526.524465][ T7384] simple_read_from_buffer+0x199/0x340 [ 526.530302][ T7384] proc_fail_nth_read+0x1e5/0x2c0 [ 526.535631][ T7384] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 526.541466][ T7384] vfs_read+0x29b/0xf60 [ 526.545892][ T7384] ? kmsan_get_metadata+0x13e/0x1c0 [ 526.551366][ T7384] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 526.558041][ T7384] ksys_read+0x20f/0x4c0 [ 526.562579][ T7384] __x64_sys_read+0x93/0xe0 [ 526.567381][ T7384] x64_sys_call+0x3055/0x3ba0 [ 526.572380][ T7384] do_syscall_64+0xcd/0x1e0 [ 526.577168][ T7384] ? clear_bhb_loop+0x25/0x80 [ 526.582190][ T7384] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 526.588397][ T7384] RIP: 0033:0x7f3160b7c93c [ 526.593070][ T7384] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 526.613023][ T7384] RSP: 002b:00007f316197e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 526.621763][ T7384] RAX: ffffffffffffffda RBX: 00007f3160d35f80 RCX: 00007f3160b7c93c [ 526.630006][ T7384] RDX: 000000000000000f RSI: 00007f316197e0a0 RDI: 0000000000000006 [ 526.638242][ T7384] RBP: 00007f316197e090 R08: 0000000000000000 R09: 0000000000000000 [ 526.646475][ T7384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 526.654690][ T7384] R13: 0000000000000000 R14: 00007f3160d35f80 R15: 00007ffe52649ba8 [ 526.662932][ T7384] [ 526.717891][ T5195] Bluetooth: hci7: command tx timeout [ 526.755940][ T13] bridge_slave_0: left allmulticast mode [ 526.763378][ T13] bridge_slave_0: left promiscuous mode [ 526.770595][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 527.398109][ T10] usb 2-1: new high-speed USB device number 13 using dummy_hcd [ 527.693736][ T10] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 527.703692][ T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 527.712319][ T10] usb 2-1: Product: syz [ 527.724697][ T10] usb 2-1: Manufacturer: syz [ 527.732166][ T10] usb 2-1: SerialNumber: syz [ 527.834667][ T10] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 528.069653][ T8] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 528.383821][ T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 528.507018][ T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 528.527748][ T13] bond0 (unregistering): Released all slaves [ 528.573336][ T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 528.648652][ T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 528.682940][ T13] bond0 (unregistering): Released all slaves [ 529.003059][ T7319] bridge0: port 2(bridge_slave_1) entered blocking state [ 529.013687][ T7319] bridge0: port 2(bridge_slave_1) entered disabled state [ 529.025432][ T7319] bridge_slave_1: entered allmulticast mode [ 529.099419][ T7319] bridge_slave_1: entered promiscuous mode [ 529.249370][ T7388] netpci0: tun_chr_ioctl cmd 1074025672 [ 529.261785][ T7388] netpci0: ignored: set checksum disabled [ 529.353188][ C0] ===================================================== [ 529.360521][ C0] BUG: KMSAN: uninit-value in ath9k_hif_usb_reg_in_cb+0x84d/0x9b0 [ 529.368602][ C0] ath9k_hif_usb_reg_in_cb+0x84d/0x9b0 [ 529.374294][ C0] __usb_hcd_giveback_urb+0x572/0x840 [ 529.379882][ C0] usb_hcd_giveback_urb+0x157/0x720 [ 529.385295][ C0] dummy_timer+0xd3f/0x6aa0 [ 529.390085][ C0] __hrtimer_run_queues+0x564/0xe40 [ 529.395523][ C0] hrtimer_interrupt+0x3ab/0x1490 [ 529.400780][ C0] __sysvec_apic_timer_interrupt+0xa6/0x3a0 [ 529.406974][ C0] sysvec_apic_timer_interrupt+0x7e/0x90 [ 529.412924][ C0] asm_sysvec_apic_timer_interrupt+0x1f/0x30 [ 529.419484][ C0] _raw_spin_unlock_irqrestore+0x33/0x60 [ 529.425514][ C0] dummy_pullup+0x273/0x320 [ 529.430197][ C0] usb_gadget_disconnect_locked+0x1f8/0x5b0 [ 529.436291][ C0] gadget_unbind_driver+0xe6/0x5f0 [ 529.441608][ C0] device_release_driver_internal+0x58a/0x990 [ 529.447878][ C0] driver_detach+0x360/0x540 [ 529.452669][ C0] bus_remove_driver+0x465/0x500 [ 529.457918][ C0] driver_unregister+0x8d/0x100 [ 529.462992][ C0] usb_gadget_unregister_driver+0x55/0xa0 [ 529.468952][ C0] raw_release+0x1bc/0x400 [ 529.473550][ C0] __fput+0x32c/0x1120 [ 529.477838][ C0] ____fput+0x25/0x30 [ 529.482044][ C0] task_work_run+0x268/0x310 [ 529.486889][ C0] syscall_exit_to_user_mode+0xce/0x170 [ 529.492859][ C0] do_syscall_64+0xda/0x1e0 [ 529.497537][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 529.503644][ C0] [ 529.506063][ C0] Uninit was created at: [ 529.510529][ C0] __alloc_pages_noprof+0x9d6/0xe70 [ 529.515927][ C0] alloc_pages_mpol_noprof+0x299/0x990 [ 529.521579][ C0] alloc_pages_noprof+0x1bf/0x1e0 [ 529.526784][ C0] allocate_slab+0x320/0x12c0 [ 529.531639][ C0] ___slab_alloc+0x12ef/0x35e0 [ 529.536616][ C0] kmem_cache_alloc_noprof+0x57a/0xb20 [ 529.542288][ C0] skb_clone+0x303/0x550 [ 529.546690][ C0] dev_queue_xmit_nit+0x4d0/0x12a0 [ 529.551999][ C0] dev_hard_start_xmit+0x17d/0xa20 [ 529.557322][ C0] __dev_queue_xmit+0x3576/0x55e0 [ 529.562566][ C0] neigh_connected_output+0x5a0/0x690 [ 529.568192][ C0] ip6_finish_output2+0x2347/0x2ba0 [ 529.573714][ C0] ip6_finish_output+0xbb8/0x14b0 [ 529.578934][ C0] ip6_output+0x356/0x620 [ 529.583440][ C0] ndisc_send_skb+0xb9f/0x14c0 [ 529.588397][ C0] ndisc_send_rs+0x97e/0xae0 [ 529.593179][ C0] addrconf_rs_timer+0x488/0x6f0 [ 529.598321][ C0] call_timer_fn+0x49/0x580 [ 529.603033][ C0] __run_timer_base+0x84e/0xe90 [ 529.608079][ C0] run_timer_softirq+0x3a/0x70 [ 529.613039][ C0] handle_softirqs+0x1a0/0x7c0 [ 529.618010][ C0] __irq_exit_rcu+0x68/0x120 [ 529.622804][ C0] irq_exit_rcu+0x12/0x20 [ 529.627336][ C0] sysvec_apic_timer_interrupt+0x83/0x90 [ 529.633199][ C0] asm_sysvec_apic_timer_interrupt+0x1f/0x30 [ 529.639418][ C0] [ 529.641871][ C0] CPU: 0 UID: 0 PID: 7385 Comm: syz.1.489 Tainted: G W 6.11.0-syzkaller-04744-gbdf56c7580d2 #0 [ 529.653829][ C0] Tainted: [W]=WARN [ 529.657746][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 529.667963][ C0] ===================================================== [ 529.675022][ C0] Disabling lock debugging due to kernel taint [ 529.681298][ C0] Kernel panic - not syncing: kmsan.panic set ... [ 529.687847][ C0] CPU: 0 UID: 0 PID: 7385 Comm: syz.1.489 Tainted: G B W 6.11.0-syzkaller-04744-gbdf56c7580d2 #0 [ 529.699798][ C0] Tainted: [B]=BAD_PAGE, [W]=WARN [ 529.704954][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 529.715169][ C0] Call Trace: [ 529.718566][ C0] [ 529.721527][ C0] dump_stack_lvl+0x216/0x2d0 [ 529.726401][ C0] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 529.732400][ C0] dump_stack+0x1e/0x30 [ 529.736810][ C0] panic+0x4e2/0xce0 [ 529.740946][ C0] ? kmsan_get_metadata+0x41/0x1c0 [ 529.746252][ C0] kmsan_report+0x2c7/0x2d0 [ 529.750946][ C0] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 529.756940][ C0] ? __msan_warning+0x95/0x120 [ 529.761923][ C0] ? ath9k_hif_usb_reg_in_cb+0x84d/0x9b0 [ 529.767788][ C0] ? __usb_hcd_giveback_urb+0x572/0x840 [ 529.773592][ C0] ? usb_hcd_giveback_urb+0x157/0x720 [ 529.779186][ C0] ? dummy_timer+0xd3f/0x6aa0 [ 529.784064][ C0] ? __hrtimer_run_queues+0x564/0xe40 [ 529.789667][ C0] ? hrtimer_interrupt+0x3ab/0x1490 [ 529.795092][ C0] ? __sysvec_apic_timer_interrupt+0xa6/0x3a0 [ 529.801389][ C0] ? sysvec_apic_timer_interrupt+0x7e/0x90 [ 529.807429][ C0] ? asm_sysvec_apic_timer_interrupt+0x1f/0x30 [ 529.813804][ C0] ? _raw_spin_unlock_irqrestore+0x33/0x60 [ 529.819846][ C0] ? dummy_pullup+0x273/0x320 [ 529.824715][ C0] ? usb_gadget_disconnect_locked+0x1f8/0x5b0 [ 529.831025][ C0] ? gadget_unbind_driver+0xe6/0x5f0 [ 529.836574][ C0] ? device_release_driver_internal+0x58a/0x990 [ 529.843034][ C0] ? driver_detach+0x360/0x540 [ 529.847975][ C0] ? bus_remove_driver+0x465/0x500 [ 529.853293][ C0] ? driver_unregister+0x8d/0x100 [ 529.858507][ C0] ? usb_gadget_unregister_driver+0x55/0xa0 [ 529.864635][ C0] ? raw_release+0x1bc/0x400 [ 529.869412][ C0] ? __fput+0x32c/0x1120 [ 529.873899][ C0] ? ____fput+0x25/0x30 [ 529.878270][ C0] ? task_work_run+0x268/0x310 [ 529.883226][ C0] ? syscall_exit_to_user_mode+0xce/0x170 [ 529.889281][ C0] ? do_syscall_64+0xda/0x1e0 [ 529.894169][ C0] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 529.900483][ C0] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 529.906494][ C0] ? _raw_spin_lock_irqsave+0x35/0xc0 [ 529.912095][ C0] ? filter_irq_stacks+0x60/0x1a0 [ 529.917322][ C0] ? kmsan_get_metadata+0x13e/0x1c0 [ 529.922698][ C0] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 529.929266][ C0] ? kmsan_get_metadata+0x13e/0x1c0 [ 529.934640][ C0] ? kmsan_get_metadata+0x13e/0x1c0 [ 529.940047][ C0] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 529.946133][ C0] __msan_warning+0x95/0x120 [ 529.950944][ C0] ath9k_hif_usb_reg_in_cb+0x84d/0x9b0 [ 529.956657][ C0] ? __pfx_ath9k_hif_usb_reg_in_cb+0x10/0x10 [ 529.962872][ C0] __usb_hcd_giveback_urb+0x572/0x840 [ 529.968488][ C0] ? kmsan_get_metadata+0x13e/0x1c0 [ 529.973884][ C0] usb_hcd_giveback_urb+0x157/0x720 [ 529.979321][ C0] dummy_timer+0xd3f/0x6aa0 [ 529.984042][ C0] ? kmsan_get_metadata+0x13e/0x1c0 [ 529.989418][ C0] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 529.995418][ C0] ? kmsan_get_metadata+0x13e/0x1c0 [ 530.000815][ C0] ? kmsan_get_metadata+0x13e/0x1c0 [ 530.006210][ C0] ? kmsan_get_metadata+0x13e/0x1c0 [ 530.011592][ C0] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 530.017599][ C0] ? rb_erase+0x20e/0x23b0 [ 530.022230][ C0] ? kmsan_get_metadata+0x13e/0x1c0 [ 530.027619][ C0] ? __pfx_dummy_timer+0x10/0x10 [ 530.032766][ C0] __hrtimer_run_queues+0x564/0xe40 [ 530.038229][ C0] hrtimer_interrupt+0x3ab/0x1490 [ 530.043498][ C0] ? __pfx_hrtimer_interrupt+0x10/0x10 [ 530.049191][ C0] ? __pfx_hrtimer_interrupt+0x10/0x10 [ 530.054888][ C0] __sysvec_apic_timer_interrupt+0xa6/0x3a0 [ 530.061009][ C0] sysvec_apic_timer_interrupt+0x7e/0x90 [ 530.066873][ C0] [ 530.069912][ C0] [ 530.072960][ C0] asm_sysvec_apic_timer_interrupt+0x1f/0x30 [ 530.079196][ C0] RIP: 0010:_raw_spin_unlock_irqrestore+0x33/0x60 [ 530.085882][ C0] Code: 56 53 49 89 f6 48 89 fb e8 ba 29 6f f2 48 89 df e8 c2 1b 6f f2 c6 00 00 c6 03 00 41 f7 c6 00 02 00 00 74 01 fb be 04 00 00 00 <48> c7 c7 48 5e 0a 00 e8 d1 1d 6f f2 65 ff 0d f2 17 30 70 74 09 5b [ 530.105724][ C0] RSP: 0018:ffff88803928f990 EFLAGS: 00000206 [ 530.111988][ C0] RAX: ffff888142eba000 RBX: ffff8881436ba000 RCX: 00000001432ba000 [ 530.120129][ C0] RDX: ffff8881432ba000 RSI: 0000000000000004 RDI: ffff8881436ba000 [ 530.128269][ C0] RBP: ffff88803928f9a0 R08: ffffea000000000f R09: 0000000000000000 [ 530.136399][ C0] R10: ffff888142eba000 R11: 0000000000000004 R12: 0000000000000000 [ 530.144533][ C0] R13: ffff88803da8abf8 R14: 0000000000000286 R15: ffff8881436babc4 [ 530.152699][ C0] dummy_pullup+0x273/0x320 [ 530.157414][ C0] ? __pfx_dummy_pullup+0x10/0x10 [ 530.162629][ C0] usb_gadget_disconnect_locked+0x1f8/0x5b0 [ 530.168765][ C0] gadget_unbind_driver+0xe6/0x5f0 [ 530.174127][ C0] ? __pfx_gadget_unbind_driver+0x10/0x10 [ 530.180353][ C0] device_release_driver_internal+0x58a/0x990 [ 530.186666][ C0] driver_detach+0x360/0x540 [ 530.191625][ C0] bus_remove_driver+0x465/0x500 [ 530.196801][ C0] driver_unregister+0x8d/0x100 [ 530.201860][ C0] ? __pfx_gadget_unbind+0x10/0x10 [ 530.207174][ C0] usb_gadget_unregister_driver+0x55/0xa0 [ 530.213134][ C0] raw_release+0x1bc/0x400 [ 530.217751][ C0] ? __pfx_raw_release+0x10/0x10 [ 530.222906][ C0] __fput+0x32c/0x1120 [ 530.227218][ C0] ? __pfx_____fput+0x10/0x10 [ 530.232125][ C0] ____fput+0x25/0x30 [ 530.236319][ C0] task_work_run+0x268/0x310 [ 530.241103][ C0] syscall_exit_to_user_mode+0xce/0x170 [ 530.246895][ C0] do_syscall_64+0xda/0x1e0 [ 530.251582][ C0] ? clear_bhb_loop+0x25/0x80 [ 530.256566][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 530.262686][ C0] RIP: 0033:0x7f522b97def9 [ 530.267270][ C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 530.287180][ C0] RSP: 002b:00007ffd58bcc3b8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 530.295894][ C0] RAX: 0000000000000000 RBX: 00007f522bb37a80 RCX: 00007f522b97def9 [ 530.304033][ C0] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 [ 530.312152][ C0] RBP: 00007f522bb37a80 R08: 00007f522bb22000 R09: 00007ffd58bcc6af [ 530.320374][ C0] R10: 00000000003ffb98 R11: 0000000000000246 R12: 0000000000081c5d [ 530.328612][ C0] R13: 00007ffd58bcc4c0 R14: 000000000000015e R15: ffffffffffffffff [ 530.336783][ C0] [ 530.340213][ C0] Kernel Offset: disabled [ 530.344627][ C0] Rebooting in 86400 seconds..