last executing test programs: 23.586131172s ago: executing program 4 (id=2203): r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_pressure(r0, &(0x7f00000000c0)='cpu.pressure\x00', 0x2, 0x0) write$cgroup_pressure(r1, &(0x7f0000000340)={'some', 0x20, 0x6, 0x20, 0xffffa}, 0x2f) r2 = openat$cgroup_pressure(r0, &(0x7f0000000040)='cpu.pressure\x00', 0x2, 0x0) ppoll(&(0x7f0000000180)=[{r1}], 0x1, 0x0, 0x0, 0x0) write$cgroup_pressure(r2, &(0x7f0000000340)={'some', 0x20, 0x7, 0x20, 0xffffa}, 0x2f) close(r2) 22.13243985s ago: executing program 4 (id=2213): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000640)=0x1) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, '\x00', 0x0, 0x10000000000}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 20.114324927s ago: executing program 4 (id=2222): prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x0, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) socket$nl_route(0x10, 0x3, 0x0) openat$autofs(0xffffffffffffff9c, &(0x7f0000000440), 0x80000, 0x0) socket(0x200000000000011, 0x3, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x3, 0x4, 0x4, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x121301) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes\x00', 0x26e1, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000000)={r1}, 0x8) ioctl$SIOCSIFHWADDR(r0, 0x89f0, &(0x7f0000000900)={'bridge0\x00', @random='\x00\x00\x00 \x00'}) 19.758807626s ago: executing program 4 (id=2224): bind$netlink(0xffffffffffffffff, 0x0, 0x0) bind$alg(0xffffffffffffffff, 0x0, 0x0) r0 = socket$nl_rdma(0x10, 0x3, 0x14) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r1, r2, 0x2, 0x2, 0x0, @void, @value}, 0x10) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup, 0xffffffffffffffff, 0x2, 0x2, 0x0, @void, @value}, 0x10) bpf$BPF_PROG_DETACH(0x8, &(0x7f00000001c0)={@fallback, 0xffffffffffffffff, 0x2, 0x2006, 0x0, @value}, 0x20) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)={0x38, 0x1403, 0x1, 0x0, 0x0, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'team0\x00'}}]}, 0x38}}, 0x0) 19.268111247s ago: executing program 4 (id=2228): socket$inet6_udplite(0xa, 0x2, 0x88) syz_emit_ethernet(0x2a, &(0x7f0000000000)={@random="8580f83288e1", @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1c}, @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x1, 0x5, 0x1c, 0x67, 0x0, 0x0, 0x2, 0x0, @private=0xa010102, @multicast1}, {0x11, 0x81, 0x0, @multicast1}}}}}, 0x0) getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x24, 0x0, 0x0) r0 = socket$inet(0x2, 0x800, 0x4) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$unix(0x1, 0x2, 0x0) bind$unix(r1, &(0x7f00000006c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) r2 = socket$unix(0x1, 0x2, 0x0) connect$unix(r2, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) connect$unix(r1, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) connect$unix(r1, &(0x7f0000000000)=@file={0x0, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) setsockopt$inet_msfilter(r0, 0x0, 0x23, &(0x7f0000004b00)=ANY=[@ANYBLOB="e0000808ac1414aa"], 0x10) r3 = socket$kcm(0x10, 0x2, 0x0) r4 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4) setsockopt$sock_void(r4, 0x1, 0x24, 0x0, 0x0) sendmsg$kcm(r3, &(0x7f0000000600)={0x0, 0xa00, &(0x7f0000000000)=[{&(0x7f0000000300)="2e00000010008188040f80ec59acbc0413a181000b00000000010000000000000e000a000f000000028002002d1f", 0x2e}], 0x1}, 0x0) 18.536692692s ago: executing program 4 (id=2233): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000640)=0x1) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, '\x00', 0x0, 0x10000000000}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 8.050017132s ago: executing program 3 (id=2277): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0x13, 0x0, 0x0) 7.407671976s ago: executing program 3 (id=2281): r0 = socket$inet(0xa, 0x801, 0x84) connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10) listen(r0, 0x8) r1 = accept4(r0, 0x0, 0x0, 0x0) sendto$inet(r1, &(0x7f00000002c0)="cc", 0x1, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000100)={0x3}, 0x10) sendto$inet6(r1, &(0x7f0000000200)='x', 0x1, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x1}, 0x8) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000001400)={0x0, 0x0, 0x7a}, 0x8) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000000)={0x0, 0x4}, 0x8) 6.453913816s ago: executing program 3 (id=2287): pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r1, &(0x7f0000000380)={0xa, 0x14e24}, 0x1c) connect$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e24, 0x2}, 0x1c) sendmmsg$inet6(r1, &(0x7f0000000540)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40c8000) sendmmsg(r1, &(0x7f0000005dc0)=[{{0x0, 0x0, &(0x7f0000004a80)=[{&(0x7f0000002a80)="3aa7f7425af62ea8e60faeafd5f0735118879c0a673edf432d21c88a742c73ca663b0408046c9a97c376c7d7a74b8394c25d327372821ce7fb319e7e5ba81555cfde134aeb8b021c147f253d025bf0539e2a9d9ddb90bdc784ece41328487259a769d5563dd51000cd9a8169aa42581cab7fe9c2f8e8c84178a6f6b527123de89bf9858b58fac04148347d3e2fb549d7de9e093cd4cd4368a1a808b8199cf59c0c1f41e17f55c88078281429a7d572563c5be00ae0ef4ad10902f78207018070a5ac5e9d35edccd5112a6ec8eca9ed38a0bad869c46458dc36c8bb60c42d09b6a8b5d53d9f738ac6eb29557b95dae927587a9aa8c450466b0723c78eae0a70d686cd94e57083ca98dda1eeb4b023a4b9b4a5cdb213468f48f085e603216e5d28ff2adeca3d992eef22328f38103f811cb8e834097795626fcfbbeb69ba41b59bd96d7c698ec147313b3eda8391b8804fd2ca54d3cc15514948d05f0e9ef582eaddb53427a620b7566f5309fd1dc8e9d079151dfca303813dd1fa718389f168e1d2363415edb15840bee5", 0x18a}], 0x1}}], 0x1, 0x40080) splice(r1, 0x0, r0, 0x0, 0x800000000000045, 0x0) 5.2113988s ago: executing program 1 (id=2292): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000f00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)={0xb0, 0x0, 0x6, [{{0x6, 0x0, 0x7, 0xf7c, 0xc, 0x400, {0x3, 0x2, 0x7, 0x369b, 0x3, 0x2ae, 0x1000, 0x1, 0x4, 0xa000, 0xffffffff, 0x0, 0x0, 0x40824c39, 0x5}}, {0x2, 0x0, 0x8, 0x4, 'rootmode'}}]}, 0x0, 0x0}) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a60000000060a0904fbff000000000000020000000900020073797a32000000000900010073797a3000000000340004803000018008000100636d7000240002800800014000005f12100003800c0001004e36f8689c9b7e7f"], 0x88}}, 0x0) 4.772596959s ago: executing program 1 (id=2294): r0 = userfaultfd(0x1) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x15) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2}) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$UFFDIO_COPY(r0, 0xc028aa05, &(0x7f0000000180)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00003ab000/0x2000)=nil, 0x400000, 0x2, 0x2}) 4.47828388s ago: executing program 2 (id=2295): r0 = userfaultfd(0x801) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000600)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4}) r1 = socket$kcm(0x29, 0x5, 0x0) write$cgroup_pressure(r1, &(0x7f0000000140)={'full'}, 0xfffffdef) ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000000)={&(0x7f0000800000/0x800000)=nil, &(0x7f00002b3000/0x2000)=nil, 0x800000}) 3.920740613s ago: executing program 0 (id=2297): socket$nl_route(0x10, 0x3, 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) r0 = socket(0x2, 0x80805, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)}, 0x0) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000000)={0x1, [0x0]}, &(0x7f0000000040)=0x8) socket$inet_sctp(0x2, 0x1, 0x84) socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$inet6_udplite(0x11, 0x2, 0x88) getsockopt$bt_BT_SECURITY(r1, 0x107, 0x8, 0x0, 0x20000000) 3.658343395s ago: executing program 1 (id=2298): mprotect(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0) r0 = socket(0x40000000015, 0x5, 0x0) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @loopback}, 0x10) bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57) sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000900)='Z', 0x1}, {&(0x7f0000000040)="a3d7f3e8a9cf9e3887a6f6eca30e90d85fcfa281378973ab916b0e1d03bd28bca55c552da8cfecb0fbccbfb18ef20fe9541e0e1e8fa214cb6bb0455c2386f5ebb4730be449beb72f481c1429d6eb835b76fd1fdcacd50b884c98caa871ec4e225b6036b6ad2638ab5b06828c10fc355b170075f37b748b8f466fe29f40ec981d1431132bca9884654780b3205ed61f49c3b3b6229593e61d13a8505de19a8a0f502d4f3148f9450ed35ef5950bb7fefcf299beed", 0xb4}], 0x2}, 0x0) 3.384481147s ago: executing program 0 (id=2299): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="7800000010000305000000000000000000cf0100", @ANYBLOB="83000000000000002000128008000100677265001400028008000700e000050208000600ac"], 0x78}, 0x1, 0x0, 0x0, 0x4000015}, 0x0) 3.297064835s ago: executing program 2 (id=2300): r0 = socket$nl_generic(0x10, 0x3, 0x10) readv(r0, &(0x7f0000000080)=[{&(0x7f00000005c0)=""/4083, 0xff3}], 0x1) 3.108326776s ago: executing program 1 (id=2301): syz_emit_ethernet(0x2a, &(0x7f0000000080)=ANY=[@ANYBLOB="bbbbbbbbbbbb5a01f3c2f13608060001080006040002aaaaaaaaaaaaac1414bbaaaaaa179b00001414bb"], 0x0) 3.032286153s ago: executing program 3 (id=2302): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0x13, 0x0, 0x0) 2.681894799s ago: executing program 0 (id=2303): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000001c0)=ANY=[@ANYBLOB="38003761a7b91828fde300edff0000eb34bcc000643b05358438b16d3b9311dab3870650e810487bc5f02932faf8dedb3753f47724dd1fa4cc4a62a772a36beecaf2fc086857124badb5a14e2d9fb882e6b54194fa83eaa59760a0e34185e87c7d034a6aa50daa0f5076b1b677b6c9c1fc47c8920e9ce9b6fff3592c98ab1eeddbca840780ef6d1cbea7000e694b492f20a4e9eea0acd92c735cbc805a1394e9301e26e24f3f4a803cf821c85f2b9227447164ce4411a7f3a90db1090900c0ab63d4e3281cd9a44ea7e2a46babbce50b313212a0c02b768409656b014571873f758c6675b244004dcdcb910003", @ANYRES32=0x0, @ANYBLOB="099a0500000000001000128008000100677265000400028008002000f8ffff"], 0x38}}, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x1, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0x6, 0x8, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) 2.55783013s ago: executing program 1 (id=2304): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000f00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)={0xb0, 0x0, 0x6, [{{0x6, 0x0, 0x7, 0xf7c, 0xc, 0x400, {0x3, 0x2, 0x7, 0x369b, 0x3, 0x2ae, 0x1000, 0x1, 0x4, 0xa000, 0xffffffff, 0x0, 0x0, 0x40824c39, 0x5}}, {0x2, 0x0, 0x8, 0x4, 'rootmode'}}]}, 0x0, 0x0}) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a60000000060a0904fbff000000000000020000000900020073797a32000000000900010073797a3000000000340004803000018008000100636d7000240002800800014000005f12100003800c0001004e36f8689c9b7e7f"], 0x88}}, 0x0) 2.472481396s ago: executing program 3 (id=2305): syz_open_dev$evdev(&(0x7f0000000000), 0x3, 0x822b01) openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) socket$igmp(0x2, 0x3, 0x2) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) fanotify_init(0x200, 0x0) memfd_create(&(0x7f0000000180)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xac\xbe\xe1}knh#\xcf)\x0f\xc8\xc0\"\x9cc\x10d\xee\xa9\x8b\x06\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\xcf~\xb90a\xa9\xb2\x04\x1d\xa1\xce\x8b\x19\xea\xef\xe3\x00\x00\x00\x00\x00\x00\x00\x00', 0x0) syz_io_uring_setup(0x182f, &(0x7f0000000000)={0x0, 0x662d, 0x0, 0x5, 0x3aa}, 0x0, 0x0) openat$dsp(0xffffffffffffff9c, &(0x7f0000000140), 0x802, 0x0) syz_io_uring_setup(0x4e5b, &(0x7f0000000200)={0x0, 0x0, 0x10100}, 0x0, 0x0) syz_io_uring_setup(0x5e2, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0) inotify_init1(0x0) mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) bpf$BPF_PROG_DETACH(0x9, 0x0, 0x10) 1.940007383s ago: executing program 0 (id=2306): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000440), 0xffffffffffffffff) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x210) ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000100)={'wpan0\x00', 0x0}) sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(0xffffffffffffffff, 0x0, 0x10) syz_genetlink_get_family_id$netlbl_mgmt(0x0, r2) sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)={0x1c, r1, 0x301, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x1c}, 0x1, 0x3000000}, 0x0) syz_genetlink_get_family_id$nbd(&(0x7f00000004c0), r0) 1.913938739s ago: executing program 2 (id=2307): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000009c0)=ANY=[@ANYBLOB="34000000680001090000000000000000000000000000000006000300070000e21300"], 0x34}}, 0x0) 1.76630984s ago: executing program 1 (id=2308): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x1) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x15) ioctl$UFFDIO_API(r0, 0xc018aa3f, 0x0) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2}) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$UFFDIO_COPY(r0, 0xc028aa05, &(0x7f0000000180)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00003ab000/0x2000)=nil, 0x400000, 0x2, 0x2}) 1.609685454s ago: executing program 2 (id=2309): socket$nl_route(0x10, 0x3, 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) r0 = socket(0x2, 0x80805, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)}, 0x0) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000000)={0x1, [0x0]}, &(0x7f0000000040)=0x8) socket$inet_sctp(0x2, 0x1, 0x84) socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$inet6_udplite(0x11, 0x2, 0x88) getsockopt$bt_BT_SECURITY(r1, 0x107, 0x8, 0x0, 0x20000000) 1.288532346s ago: executing program 3 (id=2310): r0 = userfaultfd(0x801) remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0xf0ffffff) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000600)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4}) r1 = socket$kcm(0x29, 0x5, 0x0) write$cgroup_pressure(r1, &(0x7f0000000140)={'full'}, 0xfffffdef) ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000000)={&(0x7f0000800000/0x800000)=nil, &(0x7f00002b3000/0x2000)=nil, 0x800000}) 988.268314ms ago: executing program 2 (id=2311): mprotect(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0) r0 = socket(0x40000000015, 0x5, 0x0) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @loopback}, 0x10) bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57) sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000040)="a3d7f3e8a9cf9e3887a6f6eca30e90d85fcfa281378973ab916b0e1d03bd28bca55c552da8cfecb0fbccbfb18ef20fe9541e0e1e8fa214cb6bb0455c2386f5ebb4730be449beb72f481c1429d6eb835b76fd1fdcacd50b884c98caa871ec4e225b6036b6ad2638ab5b06828c10fc355b170075f37b748b8f466fe29f40ec981d1431132bca9884654780b3205ed61f49c3b3b6229593e61d13a8505de19a8a0f502d4f3148f9450ed35ef5950bb7fefcf299beed14", 0xb5}], 0x1}, 0x0) 746.677714ms ago: executing program 0 (id=2312): syz_emit_ethernet(0x3a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x6, 0x0, @private=0xa210104, @local, {[@ra={0x94, 0x4, 0x1}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x80}}}}}}, 0x0) 175.831446ms ago: executing program 2 (id=2313): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYRES32=0x0, @ANYBLOB="83000000000000002000128008000100677265001400028008000700e000050208000600ac"], 0x78}, 0x1, 0x0, 0x0, 0x4000015}, 0x0) 0s ago: executing program 0 (id=2314): r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='nr0\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000020c0)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000004c0)='\f', 0x1}], 0x1}}], 0x1, 0x80) kernel console output (not intermixed with test programs): luetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 218.291854][ T5797] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 218.301296][ T5797] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 218.311209][ T5800] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 218.319581][ T5800] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 218.328669][ T5800] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 218.341365][ T5800] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 218.349675][ T5803] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 218.359177][ T5803] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 218.369386][ T5807] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 218.377903][ T5803] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 218.386973][ T5800] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 218.401655][ T5803] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 218.415674][ T5808] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 218.416305][ T5803] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 218.435915][ T5803] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 218.438927][ T5807] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 218.446743][ T5803] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 218.456784][ T5808] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 218.459170][ T5803] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 218.466067][ T5807] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 218.481077][ T5808] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 218.492280][ T5807] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 218.496446][ T5803] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 218.501487][ T5807] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 218.513195][ T5803] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 218.525696][ T5803] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 219.082270][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 219.088938][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 219.613350][ T5801] chnl_net:caif_netlink_parms(): no params data found [ 220.171578][ T5798] chnl_net:caif_netlink_parms(): no params data found [ 220.261637][ T5789] chnl_net:caif_netlink_parms(): no params data found [ 220.458472][ T5790] chnl_net:caif_netlink_parms(): no params data found [ 220.580015][ T5791] Bluetooth: hci0: command tx timeout [ 220.580115][ T5803] Bluetooth: hci4: command tx timeout [ 220.585738][ T5791] Bluetooth: hci3: command tx timeout [ 220.651186][ T5793] Bluetooth: hci2: command tx timeout [ 220.656822][ T5793] Bluetooth: hci1: command tx timeout [ 220.702051][ T5801] bridge0: port 1(bridge_slave_0) entered blocking state [ 220.709891][ T5801] bridge0: port 1(bridge_slave_0) entered disabled state [ 220.717827][ T5801] bridge_slave_0: entered allmulticast mode [ 220.727757][ T5801] bridge_slave_0: entered promiscuous mode [ 220.744539][ T5801] bridge0: port 2(bridge_slave_1) entered blocking state [ 220.755596][ T5801] bridge0: port 2(bridge_slave_1) entered disabled state [ 220.763495][ T5801] bridge_slave_1: entered allmulticast mode [ 220.772819][ T5801] bridge_slave_1: entered promiscuous mode [ 220.901742][ T5794] chnl_net:caif_netlink_parms(): no params data found [ 220.960269][ T5801] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 221.006828][ T5801] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 221.166766][ T5801] team0: Port device team_slave_0 added [ 221.308605][ T5801] team0: Port device team_slave_1 added [ 221.356422][ T5789] bridge0: port 1(bridge_slave_0) entered blocking state [ 221.364435][ T5789] bridge0: port 1(bridge_slave_0) entered disabled state [ 221.372336][ T5789] bridge_slave_0: entered allmulticast mode [ 221.381407][ T5789] bridge_slave_0: entered promiscuous mode [ 221.491733][ T5789] bridge0: port 2(bridge_slave_1) entered blocking state [ 221.499444][ T5789] bridge0: port 2(bridge_slave_1) entered disabled state [ 221.507889][ T5789] bridge_slave_1: entered allmulticast mode [ 221.516859][ T5789] bridge_slave_1: entered promiscuous mode [ 221.560027][ T5801] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 221.568633][ T5801] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 221.596172][ T5801] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 221.609406][ T5798] bridge0: port 1(bridge_slave_0) entered blocking state [ 221.617306][ T5798] bridge0: port 1(bridge_slave_0) entered disabled state [ 221.625386][ T5798] bridge_slave_0: entered allmulticast mode [ 221.634209][ T5798] bridge_slave_0: entered promiscuous mode [ 221.690689][ T5798] bridge0: port 2(bridge_slave_1) entered blocking state [ 221.698608][ T5798] bridge0: port 2(bridge_slave_1) entered disabled state [ 221.707482][ T5798] bridge_slave_1: entered allmulticast mode [ 221.716551][ T5798] bridge_slave_1: entered promiscuous mode [ 221.730786][ T5801] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 221.738113][ T5801] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 221.765467][ T5801] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 221.928727][ T5789] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 221.946968][ T5798] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 221.968072][ T5798] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 222.144655][ T5789] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 222.163480][ T5794] bridge0: port 1(bridge_slave_0) entered blocking state [ 222.173585][ T5794] bridge0: port 1(bridge_slave_0) entered disabled state [ 222.181514][ T5794] bridge_slave_0: entered allmulticast mode [ 222.190301][ T5794] bridge_slave_0: entered promiscuous mode [ 222.290205][ T5790] bridge0: port 1(bridge_slave_0) entered blocking state [ 222.298800][ T5790] bridge0: port 1(bridge_slave_0) entered disabled state [ 222.306636][ T5790] bridge_slave_0: entered allmulticast mode [ 222.315102][ T5790] bridge_slave_0: entered promiscuous mode [ 222.385948][ T5794] bridge0: port 2(bridge_slave_1) entered blocking state [ 222.394045][ T5794] bridge0: port 2(bridge_slave_1) entered disabled state [ 222.401896][ T5794] bridge_slave_1: entered allmulticast mode [ 222.409821][ T5794] bridge_slave_1: entered promiscuous mode [ 222.453002][ T5798] team0: Port device team_slave_0 added [ 222.460286][ T5790] bridge0: port 2(bridge_slave_1) entered blocking state [ 222.468177][ T5790] bridge0: port 2(bridge_slave_1) entered disabled state [ 222.475950][ T5790] bridge_slave_1: entered allmulticast mode [ 222.484197][ T5790] bridge_slave_1: entered promiscuous mode [ 222.530704][ T5789] team0: Port device team_slave_0 added [ 222.598429][ T5798] team0: Port device team_slave_1 added [ 222.619016][ T5801] hsr_slave_0: entered promiscuous mode [ 222.631596][ T5801] hsr_slave_1: entered promiscuous mode [ 222.654244][ T5793] Bluetooth: hci4: command tx timeout [ 222.660030][ T5793] Bluetooth: hci3: command tx timeout [ 222.665878][ T5793] Bluetooth: hci0: command tx timeout [ 222.685874][ T5789] team0: Port device team_slave_1 added [ 222.702491][ T5790] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 222.731304][ T5791] Bluetooth: hci1: command tx timeout [ 222.736927][ T5791] Bluetooth: hci2: command tx timeout [ 222.818616][ T5790] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 222.864418][ T5794] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 222.916739][ T5798] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 222.924058][ T5798] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 222.950376][ T5798] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 223.024306][ T5794] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 223.064451][ T5798] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 223.071717][ T5798] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 223.099216][ T5798] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 223.145679][ T5789] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 223.152869][ T5789] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 223.179054][ T5789] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 223.283701][ T5790] team0: Port device team_slave_0 added [ 223.292766][ T5789] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 223.299960][ T5789] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 223.326604][ T5789] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 223.345321][ T5794] team0: Port device team_slave_0 added [ 223.391650][ T5790] team0: Port device team_slave_1 added [ 223.418944][ T5794] team0: Port device team_slave_1 added [ 223.566472][ T5790] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 223.573791][ T5790] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 223.600189][ T5790] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 223.700829][ T5798] hsr_slave_0: entered promiscuous mode [ 223.710447][ T5798] hsr_slave_1: entered promiscuous mode [ 223.718955][ T5798] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 223.726892][ T5798] Cannot create hsr debugfs directory [ 223.771400][ T5790] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 223.778551][ T5790] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 223.804951][ T5790] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 223.832396][ T5794] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 223.839567][ T5794] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 223.866066][ T5794] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 223.989486][ T5794] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 223.996931][ T5794] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 224.023386][ T5794] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 224.046757][ T5789] hsr_slave_0: entered promiscuous mode [ 224.056997][ T5789] hsr_slave_1: entered promiscuous mode [ 224.065116][ T5789] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 224.073038][ T5789] Cannot create hsr debugfs directory [ 224.316620][ T5790] hsr_slave_0: entered promiscuous mode [ 224.325359][ T5790] hsr_slave_1: entered promiscuous mode [ 224.336614][ T5790] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 224.344535][ T5790] Cannot create hsr debugfs directory [ 224.596075][ T5794] hsr_slave_0: entered promiscuous mode [ 224.606505][ T5794] hsr_slave_1: entered promiscuous mode [ 224.615036][ T5794] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 224.624421][ T5794] Cannot create hsr debugfs directory [ 224.731416][ T5793] Bluetooth: hci0: command tx timeout [ 224.737146][ T5791] Bluetooth: hci3: command tx timeout [ 224.744335][ T5791] Bluetooth: hci4: command tx timeout [ 224.829050][ T5803] Bluetooth: hci2: command tx timeout [ 224.835110][ T5803] Bluetooth: hci1: command tx timeout [ 224.880728][ T5801] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 225.016274][ T5801] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 225.110248][ T5801] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 225.147559][ T5801] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 225.673903][ T5798] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 225.713442][ T5798] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 225.753169][ T5798] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 225.805736][ T5798] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 225.916374][ T5789] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 226.033976][ T5789] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 226.060372][ T5789] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 226.116295][ T5790] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 226.149724][ T5789] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 226.220171][ T5790] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 226.270891][ T5790] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 226.346280][ T5790] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 226.480574][ T5794] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 226.596328][ T5794] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 226.661627][ T5801] 8021q: adding VLAN 0 to HW filter on device bond0 [ 226.710678][ T5794] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 226.782299][ T5794] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 226.815685][ T5803] Bluetooth: hci0: command tx timeout [ 226.815921][ T5793] Bluetooth: hci4: command tx timeout [ 226.821720][ T5803] Bluetooth: hci3: command tx timeout [ 226.895830][ T5803] Bluetooth: hci1: command tx timeout [ 226.902266][ T5803] Bluetooth: hci2: command tx timeout [ 226.988722][ T5801] 8021q: adding VLAN 0 to HW filter on device team0 [ 227.116757][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 227.124513][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 227.235115][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 227.242891][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 227.274563][ T5798] 8021q: adding VLAN 0 to HW filter on device bond0 [ 227.604422][ T5789] 8021q: adding VLAN 0 to HW filter on device bond0 [ 227.623407][ T5798] 8021q: adding VLAN 0 to HW filter on device team0 [ 227.705835][ T3927] bridge0: port 1(bridge_slave_0) entered blocking state [ 227.713570][ T3927] bridge0: port 1(bridge_slave_0) entered forwarding state [ 227.740490][ T5790] 8021q: adding VLAN 0 to HW filter on device bond0 [ 227.838707][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 227.846499][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 227.953997][ T5789] 8021q: adding VLAN 0 to HW filter on device team0 [ 227.969021][ T5790] 8021q: adding VLAN 0 to HW filter on device team0 [ 228.078535][ T3927] bridge0: port 1(bridge_slave_0) entered blocking state [ 228.086289][ T3927] bridge0: port 1(bridge_slave_0) entered forwarding state [ 228.239717][ T3927] bridge0: port 2(bridge_slave_1) entered blocking state [ 228.247474][ T3927] bridge0: port 2(bridge_slave_1) entered forwarding state [ 228.262950][ T3927] bridge0: port 1(bridge_slave_0) entered blocking state [ 228.270603][ T3927] bridge0: port 1(bridge_slave_0) entered forwarding state [ 228.294469][ T3927] bridge0: port 2(bridge_slave_1) entered blocking state [ 228.302227][ T3927] bridge0: port 2(bridge_slave_1) entered forwarding state [ 228.870498][ T5794] 8021q: adding VLAN 0 to HW filter on device bond0 [ 229.067004][ T5794] 8021q: adding VLAN 0 to HW filter on device team0 [ 229.203381][ T3979] bridge0: port 1(bridge_slave_0) entered blocking state [ 229.211201][ T3979] bridge0: port 1(bridge_slave_0) entered forwarding state [ 229.306899][ T3979] bridge0: port 2(bridge_slave_1) entered blocking state [ 229.314799][ T3979] bridge0: port 2(bridge_slave_1) entered forwarding state [ 229.818592][ T5801] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 230.256412][ T5801] veth0_vlan: entered promiscuous mode [ 230.409336][ T5801] veth1_vlan: entered promiscuous mode [ 230.496538][ T5798] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 230.775237][ T5789] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 230.801941][ T5801] veth0_macvtap: entered promiscuous mode [ 230.873884][ T5790] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 230.918485][ T5801] veth1_macvtap: entered promiscuous mode [ 231.133879][ T5801] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 231.204267][ T5801] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 231.304820][ T5801] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.314054][ T5801] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.323417][ T5801] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.332577][ T5801] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.457021][ T5789] veth0_vlan: entered promiscuous mode [ 231.481393][ T5790] veth0_vlan: entered promiscuous mode [ 231.613457][ T5789] veth1_vlan: entered promiscuous mode [ 231.643029][ T5790] veth1_vlan: entered promiscuous mode [ 231.708841][ T5794] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 232.038699][ T5789] veth0_macvtap: entered promiscuous mode [ 232.055929][ T5790] veth0_macvtap: entered promiscuous mode [ 232.139324][ T5789] veth1_macvtap: entered promiscuous mode [ 232.158851][ T5790] veth1_macvtap: entered promiscuous mode [ 232.369924][ T5789] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 232.381821][ T5789] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 232.396782][ T5789] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 232.430713][ T5794] veth0_vlan: entered promiscuous mode [ 232.445099][ T5790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 232.456004][ T5790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 232.466264][ T5790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 232.476979][ T5790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 232.493311][ T5790] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 232.562006][ T5789] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 232.576828][ T5789] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 232.595181][ T5789] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 232.643591][ T5790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 232.654369][ T5790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 232.664623][ T5790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 232.676463][ T5790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 232.694365][ T5790] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 232.706223][ T5794] veth1_vlan: entered promiscuous mode [ 232.802514][ T5789] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.812798][ T5789] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.822092][ T5789] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.831358][ T5789] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.898502][ T5790] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.908319][ T5790] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.918463][ T5790] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.927575][ T5790] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.053946][ T5794] veth0_macvtap: entered promiscuous mode [ 233.153996][ T5794] veth1_macvtap: entered promiscuous mode [ 233.354475][ T5794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 233.365407][ T5794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.380171][ T5794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 233.392087][ T5794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.402345][ T5794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 233.413142][ T5794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.428187][ T5794] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 233.524732][ T5798] veth0_vlan: entered promiscuous mode [ 233.581576][ T5794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 233.592464][ T5794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.602720][ T5794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 233.613498][ T5794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.623703][ T5794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 233.636785][ T5794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.657325][ T5794] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 233.769743][ T5798] veth1_vlan: entered promiscuous mode [ 233.855578][ T5794] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.864829][ T5794] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.874046][ T5794] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.883225][ T5794] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 234.269185][ T5798] veth0_macvtap: entered promiscuous mode [ 234.365652][ T5798] veth1_macvtap: entered promiscuous mode [ 234.562402][ T5798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 234.574615][ T5798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 234.585627][ T5798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 234.596391][ T5798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 234.606505][ T5798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 234.617244][ T5798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 234.629287][ T5798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 234.641397][ T5798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 234.656554][ T5798] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 235.013488][ T5798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 235.024511][ T5798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 235.034838][ T5798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 235.045617][ T5798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 235.057492][ T5798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 235.068743][ T5798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 235.080600][ T5798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 235.092288][ T5798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 235.107416][ T5798] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 235.468856][ T5798] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 235.478138][ T5798] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 235.487308][ T5798] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 235.496414][ T5798] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 238.358612][ T4101] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 238.367195][ T4101] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 238.596341][ T4101] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 238.605606][ T4101] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 238.870419][ T5801] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 239.227724][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 239.236089][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 239.461497][ T3927] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 239.469576][ T3927] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 240.050616][ T3979] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 240.060379][ T3979] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 240.321868][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 240.329839][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 240.393771][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 240.402515][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 240.592382][ T5975] IPv6: NLM_F_CREATE should be specified when creating new route [ 240.600540][ T5975] IPv6: NLM_F_REPLACE set, but no existing node found! [ 240.648611][ T3979] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 240.657903][ T3979] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 241.167446][ T5981] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2'. [ 241.422577][ T5978] loop2: detected capacity change from 0 to 2048 [ 241.713603][ T5978] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 242.075952][ T29] audit: type=1326 audit(1731903158.079:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5994 comm="syz.1.8" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe2579 code=0x0 [ 242.443180][ T5997] loop0: detected capacity change from 0 to 8192 [ 242.563583][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 242.571919][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 242.642801][ T3415] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 242.653164][ T3415] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 243.305810][ T6004] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 243.391607][ T6004] loop3: detected capacity change from 0 to 128 [ 243.840277][ T6010] loop4: detected capacity change from 0 to 256 [ 244.340092][ T5852] kernel write not supported for file /ppp (pid: 5852 comm: kworker/0:3) [ 244.739568][ T6025] loop2: detected capacity change from 0 to 2048 [ 244.950513][ T6023] loop3: detected capacity change from 0 to 1024 [ 244.996156][ T6023] EXT4-fs: Ignoring removed nomblk_io_submit option [ 245.506063][ T6025] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 245.529490][ T6023] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 245.563073][ T6029] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 49: padding at end of block bitmap is not set [ 246.294866][ T6029] EXT4-fs (loop3): Remounting filesystem read-only [ 246.799087][ T6035] loop4: detected capacity change from 0 to 1024 [ 246.863551][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 247.034203][ T6039] capability: warning: `syz.2.22' uses deprecated v2 capabilities in a way that may be insecure [ 247.794825][ T6047] loop4: detected capacity change from 0 to 8 [ 247.946595][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 248.012617][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 248.151526][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 248.253536][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 249.599108][ T6057] loop1: detected capacity change from 0 to 512 [ 249.754016][ T6056] loop0: detected capacity change from 0 to 764 [ 249.815009][ T6057] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 249.883079][ T6056] rock: directory entry would overflow storage [ 249.893795][ T6056] rock: sig=0x4654, size=5, remaining=4 [ 249.993975][ T6057] EXT4-fs warning (device loop1): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 250.222287][ T6057] EXT4-fs (loop1): mount failed [ 250.659054][ T6064] loop2: detected capacity change from 0 to 256 [ 250.667669][ T6064] ======================================================= [ 250.667669][ T6064] WARNING: The mand mount option has been deprecated and [ 250.667669][ T6064] and is ignored by this kernel. Remove the mand [ 250.667669][ T6064] option from the mount to silence this warning. [ 250.667669][ T6064] ======================================================= [ 250.727531][ T6064] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 250.741223][ T6064] exFAT-fs (loop2): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 251.048868][ T6069] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 251.157873][ T6069] syz_tun: entered promiscuous mode [ 251.238003][ T6069] syz_tun: left promiscuous mode [ 252.499553][ T6086] loop0: detected capacity change from 0 to 1024 [ 252.538011][ T6086] EXT4-fs: Ignoring removed mblk_io_submit option [ 252.567068][ T6086] EXT4-fs (loop0): stripe (9) is not aligned with cluster size (4096), stripe is disabled [ 252.589879][ T6086] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 252.599860][ T6086] EXT4-fs (loop0): orphan cleanup on readonly fs [ 252.633231][ T6096] netlink: 4 bytes leftover after parsing attributes in process `syz.1.39'. [ 252.675504][ T6086] EXT4-fs error (device loop0): __ext4_get_inode_loc:4403: comm syz.0.40: Invalid inode table block 0 in block_group 0 [ 252.697143][ T6087] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 252.716216][ T6086] EXT4-fs (loop0): Remounting filesystem read-only [ 252.723162][ T6086] Quota error (device loop0): write_blk: dquota write failed [ 252.731540][ T6086] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 252.742624][ T6086] EXT4-fs (loop0): 1 truncate cleaned up [ 252.784270][ T6086] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 253.225724][ T6087] loop1: detected capacity change from 0 to 2048 [ 253.240281][ T6087] udf: Bad value for 'session' [ 253.303658][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 254.223283][ T6109] loop3: detected capacity change from 0 to 1024 [ 254.309588][ T6109] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 254.319505][ T6107] loop2: detected capacity change from 0 to 256 [ 254.478539][ T6107] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 254.492589][ T6107] exFAT-fs (loop2): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 254.847877][ T6115] syz_tun: entered promiscuous mode [ 254.889830][ T6109] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback. [ 254.890726][ T6115] syz_tun: left promiscuous mode [ 255.374355][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 257.630833][ T5985] udevd[5985]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory [ 260.250619][ T6165] loop2: detected capacity change from 0 to 256 [ 260.352921][ T6165] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 260.366482][ T6165] exFAT-fs (loop2): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 263.910471][ T6188] loop3: detected capacity change from 0 to 512 [ 264.912526][ T6188] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=2842c028, mo2=0002] [ 264.921350][ T6188] System zones: 0-2, 18-18, 34-35 [ 264.986177][ T6188] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 264.999530][ T6188] ext4 filesystem being mounted at /14/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 265.206033][ T6188] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #2: comm syz.3.75: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 265.538493][ T6188] EXT4-fs (loop3): Remounting filesystem read-only [ 265.749098][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 266.312181][ T6211] loop3: detected capacity change from 0 to 256 [ 266.439782][ T6211] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 266.453400][ T6211] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 268.371517][ T5852] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 268.541507][ T5852] usb 4-1: Using ep0 maxpacket: 16 [ 268.568812][ T5852] usb 4-1: config 0 has an invalid interface number: 251 but max is 0 [ 268.577679][ T5852] usb 4-1: config 0 has no interface number 0 [ 268.584311][ T5852] usb 4-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16 [ 268.594713][ T5852] usb 4-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64 [ 268.668353][ T5852] usb 4-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4 [ 268.677936][ T5852] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 268.686444][ T5852] usb 4-1: Product: syz [ 268.690866][ T5852] usb 4-1: Manufacturer: syz [ 268.695794][ T5852] usb 4-1: SerialNumber: syz [ 268.769211][ T5852] usb 4-1: config 0 descriptor?? [ 268.783293][ T6232] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 268.811795][ T6232] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 269.083649][ T6232] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 269.250157][ T6232] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 270.233822][ T5852] asix 4-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 270.244472][ T5852] asix 4-1:0.251 (unnamed net_device) (uninitialized): Failed to read MAC address: -71 [ 270.255132][ T5852] asix 4-1:0.251: probe with driver asix failed with error -5 [ 270.312030][ T5852] usb 4-1: USB disconnect, device number 2 [ 270.623610][ T6250] loop3: detected capacity change from 0 to 256 [ 271.126018][ T6250] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 271.139770][ T6250] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 272.309703][ T6266] Zero length message leads to an empty skb [ 274.699799][ T6295] loop2: detected capacity change from 0 to 256 [ 274.917053][ T6295] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 274.937881][ T6295] exFAT-fs (loop2): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 275.329542][ T6305] syz.3.121 uses obsolete (PF_INET,SOCK_PACKET) [ 275.971055][ T6314] netlink: 80 bytes leftover after parsing attributes in process `syz.0.128'. [ 276.559545][ T6330] binder: 6329:6330 ioctl c0306201 20000200 returned -14 [ 276.915418][ T6336] loop2: detected capacity change from 0 to 256 [ 277.099872][ T6336] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 277.114265][ T6336] exFAT-fs (loop2): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 280.539418][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 280.546618][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 280.783023][ T6376] loop1: detected capacity change from 0 to 256 [ 280.904103][ T1883] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 280.954498][ T6376] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 280.969638][ T6376] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 281.103515][ T1883] usb 3-1: Using ep0 maxpacket: 16 [ 281.151798][ T1883] usb 3-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice=10.00 [ 281.161639][ T1883] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 281.169975][ T1883] usb 3-1: Product: syz [ 281.174618][ T1883] usb 3-1: Manufacturer: syz [ 281.179477][ T1883] usb 3-1: SerialNumber: syz [ 281.314307][ T1883] usb 3-1: config 0 descriptor?? [ 281.387470][ T1883] ftdi_sio 3-1:0.0: FTDI USB Serial Device converter detected [ 281.397984][ T1883] usb 3-1: Detected FT-X [ 281.587507][ T1883] ftdi_sio ttyUSB0: Unable to read latency timer: -32 [ 281.781325][ T5854] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 281.963462][ T5854] usb 4-1: Using ep0 maxpacket: 8 [ 282.023875][ T1883] usb 3-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 282.081326][ T6383] netlink: 'syz.0.153': attribute type 29 has an invalid length. [ 282.095042][ T5854] usb 4-1: New USB device found, idVendor=13d8, idProduct=0010, bcdDevice=b6.14 [ 282.104691][ T5854] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 282.129047][ T6384] netlink: 'syz.0.153': attribute type 29 has an invalid length. [ 282.147411][ T5854] usb 4-1: config 0 descriptor?? [ 282.173912][ T6383] netlink: 'syz.0.153': attribute type 29 has an invalid length. [ 282.209453][ T5854] usb 4-1: selecting invalid altsetting 1 [ 282.215723][ T5854] comedi comedi0: could not switch to alternate setting 1 [ 282.223250][ T5854] usbduxfast 4-1:0.0: driver 'usbduxfast' failed to auto-configure device. [ 282.272006][ T5852] usb 3-1: USB disconnect, device number 2 [ 282.320722][ T5852] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 282.336645][ T5852] ftdi_sio 3-1:0.0: device disconnected [ 283.060392][ T5852] usb 4-1: USB disconnect, device number 3 [ 283.981778][ T5854] usb 4-1: new low-speed USB device number 4 using dummy_hcd [ 284.092684][ T0] NOHZ tick-stop error: local softirq work is pending, handler #242!!! [ 284.252624][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 284.742837][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 284.761769][ T0] NOHZ tick-stop error: local softirq work is pending, handler #300!!! [ 284.911781][ T0] NOHZ tick-stop error: local softirq work is pending, handler #342!!! [ 284.922431][ T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!! [ 285.301543][ T5846] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 285.685231][ T5846] usb 1-1: Using ep0 maxpacket: 8 [ 285.757615][ T5846] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 285.768417][ T5846] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 285.824589][ T5846] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.28 [ 285.837881][ T5846] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 285.846915][ T5846] usb 1-1: SerialNumber: syz [ 285.873904][ T5846] cdc_ether 1-1:1.0: probe with driver cdc_ether failed with error -22 [ 288.177843][ T5854] usb 1-1: USB disconnect, device number 2 [ 288.270408][ T6441] loop3: detected capacity change from 0 to 256 [ 288.647039][ T6441] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 288.660593][ T6441] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 288.742549][ T5854] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 288.934483][ T5854] usb 5-1: Using ep0 maxpacket: 32 [ 289.002119][ T5854] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 289.016684][ T5854] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 289.100520][ T5854] usb 5-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f [ 289.113668][ T5854] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 289.123195][ T5854] usb 5-1: Product: syz [ 289.127618][ T5854] usb 5-1: Manufacturer: syz [ 289.132627][ T5854] usb 5-1: SerialNumber: syz [ 289.253718][ T6453] netlink: 72 bytes leftover after parsing attributes in process `syz.2.180'. [ 289.269189][ T5854] usb 5-1: config 0 descriptor?? [ 290.194099][ T5854] usb 5-1: USB disconnect, device number 2 [ 291.413707][ T6488] loop4: detected capacity change from 0 to 256 [ 291.597193][ T6488] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 291.611298][ T6488] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 291.712620][ T6491] erspan0: entered promiscuous mode [ 291.718949][ T6491] macvlan2: entered allmulticast mode [ 291.724819][ T6491] erspan0: entered allmulticast mode [ 291.738480][ T6491] batman_adv: batadv0: Adding interface: macvlan2 [ 291.745455][ T6491] batman_adv: batadv0: The MTU of interface macvlan2 is too small (1450) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 291.775601][ T6491] batman_adv: batadv0: Interface activated: macvlan2 [ 293.029126][ T6512] loop4: detected capacity change from 0 to 256 [ 293.253307][ T6512] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 293.267258][ T6512] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 294.626014][ T5854] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 294.653660][ T29] audit: type=1326 audit(1731903210.699:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6531 comm="syz.3.214" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73cd579 code=0x7ffc0000 [ 294.676124][ T29] audit: type=1326 audit(1731903210.699:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6531 comm="syz.3.214" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73cd579 code=0x7ffc0000 [ 295.181288][ T5854] usb 3-1: Using ep0 maxpacket: 32 [ 295.227119][ T5854] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024 [ 295.304015][ T5854] usb 3-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79 [ 295.314361][ T5854] usb 3-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2 [ 295.324082][ T5854] usb 3-1: Product: syz [ 295.328503][ T5854] usb 3-1: Manufacturer: syz [ 295.335961][ T5854] usb 3-1: SerialNumber: syz [ 295.442688][ T5854] usb 3-1: config 0 descriptor?? [ 295.460664][ T6530] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 295.695189][ T5854] usb 3-1: USB disconnect, device number 3 [ 297.124576][ T6554] loop1: detected capacity change from 0 to 256 [ 297.264900][ T6554] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 297.278778][ T6554] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 297.389613][ T6557] loop4: detected capacity change from 0 to 256 [ 297.428284][ T5803] Bluetooth: hci2: ACL packet for unknown connection handle 0 [ 297.482027][ T6557] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 297.495587][ T6557] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 298.406896][ T13] tipc: Subscription rejected, illegal request [ 300.251658][ T6589] loop4: detected capacity change from 0 to 256 [ 300.295717][ T6591] loop2: detected capacity change from 0 to 256 [ 300.393670][ T6589] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 300.407513][ T6589] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 300.535173][ T6591] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 300.548747][ T6591] exFAT-fs (loop2): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 305.797262][ T6670] loop3: detected capacity change from 0 to 256 [ 305.821796][ T5846] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 305.942241][ T6670] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 305.956128][ T6670] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 306.141991][ T5846] usb 1-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36 [ 306.151794][ T5846] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 306.160183][ T5846] usb 1-1: Product: syz [ 306.164917][ T5846] usb 1-1: Manufacturer: syz [ 306.169765][ T5846] usb 1-1: SerialNumber: syz [ 306.194682][ T5846] usb 1-1: config 0 descriptor?? [ 306.299990][ T5846] ch341 1-1:0.0: ch341-uart converter detected [ 307.423399][ T5846] usb 1-1: failed to send control message: -71 [ 307.430217][ T5846] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71 [ 307.499912][ T5846] usb 1-1: USB disconnect, device number 3 [ 307.508533][ T5846] ch341 1-1:0.0: device disconnected [ 310.115707][ T6704] loop4: detected capacity change from 0 to 256 [ 310.399727][ T6704] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 310.417468][ T6704] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 310.621421][ T5846] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 310.924858][ T5846] usb 1-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00 [ 310.934373][ T5846] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 310.942820][ T5846] usb 1-1: Product: syz [ 310.947215][ T5846] usb 1-1: Manufacturer: syz [ 310.952151][ T5846] usb 1-1: SerialNumber: syz [ 311.077875][ T5846] usb 1-1: config 0 descriptor?? [ 311.399391][ T5846] hso 1-1:0.0: Failed to find BULK IN ep [ 311.450569][ T5846] usb-storage 1-1:0.0: USB Mass Storage device detected [ 311.910777][ T5846] usb 1-1: USB disconnect, device number 4 [ 313.384815][ T6747] loop2: detected capacity change from 0 to 256 [ 313.457975][ T6747] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 313.472048][ T6747] exFAT-fs (loop2): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 313.594320][ T5846] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 313.762206][ T5846] usb 4-1: Using ep0 maxpacket: 32 [ 313.794430][ T5846] usb 4-1: config index 0 descriptor too short (expected 255, got 18) [ 313.803043][ T5846] usb 4-1: config 13 has an invalid interface number: 10 but max is 0 [ 313.811946][ T5846] usb 4-1: config 13 has no interface number 0 [ 313.818436][ T5846] usb 4-1: New USB device found, idVendor=05ac, idProduct=0252, bcdDevice=1c.e7 [ 313.828048][ T5846] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 313.946173][ T5846] usbhid 4-1:13.10: couldn't find an input interrupt endpoint [ 314.574021][ T3054] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 314.602161][ T29] audit: type=1326 audit(1731903230.649:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6743 comm="syz.3.298" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73cd579 code=0x7ffc0000 [ 314.627861][ T29] audit: type=1326 audit(1731903230.649:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6743 comm="syz.3.298" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73cd579 code=0x7ffc0000 [ 314.651532][ T29] audit: type=1326 audit(1731903230.649:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6743 comm="syz.3.298" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf73cd579 code=0x7ffc0000 [ 314.673747][ T29] audit: type=1326 audit(1731903230.649:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6743 comm="syz.3.298" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73cd579 code=0x7ffc0000 [ 314.757245][ T29] audit: type=1326 audit(1731903230.809:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6743 comm="syz.3.298" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73cd579 code=0x7ffc0000 [ 314.779484][ T29] audit: type=1326 audit(1731903230.809:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6743 comm="syz.3.298" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73cd579 code=0x7ffc0000 [ 315.005559][ T6766] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 315.513097][ T3054] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 315.524586][ T3054] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 315.537983][ T3054] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 315.548469][ T3054] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 315.586905][ T6756] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22 [ 315.655191][ T3054] usb 3-1: Quirk or no altset; falling back to MIDI 1.0 [ 316.130511][ T6756] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5) [ 316.137356][ T6756] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 316.149578][ T6756] vhci_hcd vhci_hcd.0: Device attached [ 316.224784][ T6772] vhci_hcd: connection closed [ 316.269195][ T3979] vhci_hcd: stop threads [ 316.278643][ T3979] vhci_hcd: release socket [ 316.283551][ T3979] vhci_hcd: disconnect device [ 316.388967][ T3054] usb 4-1: USB disconnect, device number 5 [ 316.518701][ T6775] netlink: 'syz.1.309': attribute type 29 has an invalid length. [ 316.620556][ T6775] netlink: 'syz.1.309': attribute type 29 has an invalid length. [ 316.853332][ T5852] usb 3-1: USB disconnect, device number 4 [ 317.187225][ T6784] process 'syz.4.311' launched './file0' with NULL argv: empty string added [ 317.300497][ T6790] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 317.526591][ T6795] fuse: Bad value for 'fd' [ 318.176005][ T6807] bond0: entered promiscuous mode [ 318.181475][ T6807] bond_slave_0: entered promiscuous mode [ 318.194853][ T6807] bond_slave_1: entered promiscuous mode [ 318.322972][ T6804] bond0: left promiscuous mode [ 318.328121][ T6804] bond_slave_0: left promiscuous mode [ 318.334776][ T6804] bond_slave_1: left promiscuous mode [ 318.976523][ T6819] loop3: detected capacity change from 0 to 256 [ 319.065643][ T6821] netlink: 12 bytes leftover after parsing attributes in process `syz.4.326'. [ 319.127030][ T6819] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 319.140588][ T6819] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 320.961527][ T5852] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 321.180698][ T5852] usb 4-1: config index 0 descriptor too short (expected 23569, got 27) [ 321.189651][ T5852] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 321.552119][ T5852] usb 4-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 321.562510][ T5852] usb 4-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 321.574038][ T5852] usb 4-1: Manufacturer: syz [ 321.596792][ T5852] usb 4-1: config 0 descriptor?? [ 322.111856][ T5852] rc_core: IR keymap rc-hauppauge not found [ 322.118011][ T5852] Registered IR keymap rc-empty [ 322.126537][ T5852] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0 [ 322.202823][ T5852] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input6 [ 322.289928][ T5852] usb 4-1: USB disconnect, device number 6 [ 322.466882][ T6859] loop1: detected capacity change from 0 to 256 [ 322.675306][ T6859] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 322.688964][ T6859] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 324.413043][ T6872] netlink: 36 bytes leftover after parsing attributes in process `syz.3.344'. [ 324.422940][ T6872] netlink: 16 bytes leftover after parsing attributes in process `syz.3.344'. [ 324.432309][ T6872] netlink: 36 bytes leftover after parsing attributes in process `syz.3.344'. [ 324.445928][ T6872] netlink: 36 bytes leftover after parsing attributes in process `syz.3.344'. [ 324.472872][ T6877] capability: warning: `syz.1.343' uses 32-bit capabilities (legacy support in use) [ 326.475676][ T6904] loop1: detected capacity change from 0 to 256 [ 326.859281][ T6904] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 326.872879][ T6904] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 327.663846][ T6927] sctp: [Deprecated]: syz.2.361 (pid 6927) Use of int in maxseg socket option. [ 327.663846][ T6927] Use struct sctp_assoc_value instead [ 327.738866][ T6931] netlink: 4 bytes leftover after parsing attributes in process `syz.0.362'. [ 327.779847][ T6931] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 328.585432][ T6942] tipc: Can't bind to reserved service type 1 [ 328.693803][ T5846] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 328.861638][ T5846] usb 3-1: Using ep0 maxpacket: 32 [ 328.895268][ T5846] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 328.906828][ T5846] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 328.917098][ T5846] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 328.930429][ T5846] usb 3-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00 [ 328.939956][ T5846] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 329.098719][ T5846] usb 3-1: config 0 descriptor?? [ 329.575551][ T5846] ntrig 0003:1B96:000A.0001: unknown main item tag 0x0 [ 329.583086][ T5846] ntrig 0003:1B96:000A.0001: unknown main item tag 0x0 [ 329.590523][ T5846] ntrig 0003:1B96:000A.0001: unknown main item tag 0x0 [ 329.598557][ T5846] ntrig 0003:1B96:000A.0001: unknown main item tag 0x0 [ 329.606227][ T5846] ntrig 0003:1B96:000A.0001: unknown main item tag 0x0 [ 329.774171][ T5846] ntrig 0003:1B96:000A.0001: hidraw0: USB HID v0.00 Device [HID 1b96:000a] on usb-dummy_hcd.2-1/input0 [ 329.895406][ T5846] usb 3-1: USB disconnect, device number 5 [ 330.199116][ T6962] loop3: detected capacity change from 0 to 256 [ 330.398689][ T6964] netlink: 40 bytes leftover after parsing attributes in process `syz.0.374'. [ 330.401252][ T6962] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 330.421554][ T6962] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 331.413777][ T29] audit: type=1326 audit(1731903247.469:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6975 comm="syz.2.379" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73bd579 code=0x7ffc0000 [ 331.435860][ C1] vkms_vblank_simulate: vblank timer overrun [ 331.456365][ T6976] netlink: 'syz.3.377': attribute type 10 has an invalid length. [ 331.489837][ T6976] bridge0: port 2(bridge_slave_1) entered disabled state [ 331.499743][ T6976] bridge0: port 1(bridge_slave_0) entered disabled state [ 331.509636][ T29] audit: type=1326 audit(1731903247.499:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6975 comm="syz.2.379" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73bd579 code=0x7ffc0000 [ 331.526737][ T6976] bridge0: port 2(bridge_slave_1) entered blocking state [ 331.532425][ T29] audit: type=1326 audit(1731903247.529:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6975 comm="syz.2.379" exe="/root/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf73bd579 code=0x7ffc0000 [ 331.539182][ T6976] bridge0: port 2(bridge_slave_1) entered forwarding state [ 331.561106][ T29] audit: type=1326 audit(1731903247.529:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6975 comm="syz.2.379" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73bd579 code=0x7ffc0000 [ 331.569279][ T6976] bridge0: port 1(bridge_slave_0) entered blocking state [ 331.589622][ C1] vkms_vblank_simulate: vblank timer overrun [ 331.589947][ T29] audit: type=1326 audit(1731903247.529:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6975 comm="syz.2.379" exe="/root/syz-executor" sig=0 arch=40000003 syscall=262 compat=1 ip=0xf73bd579 code=0x7ffc0000 [ 331.597360][ T6976] bridge0: port 1(bridge_slave_0) entered forwarding state [ 331.606474][ T29] audit: type=1326 audit(1731903247.539:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6975 comm="syz.2.379" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73bd579 code=0x7ffc0000 [ 331.639290][ T6976] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 331.655070][ C1] vkms_vblank_simulate: vblank timer overrun [ 331.686532][ T6979] netlink: 4 bytes leftover after parsing attributes in process `syz.4.380'. [ 331.741093][ T6978] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 332.081405][ T6978] loop4: detected capacity change from 0 to 2048 [ 332.124972][ T6978] udf: Bad value for 'session' [ 332.782196][ T5852] hid (null): unknown global tag 0xc [ 332.821731][ T5852] hid-generic 002A:0008:8001.0002: unknown global tag 0xc [ 332.829288][ T5852] hid-generic 002A:0008:8001.0002: item 0 0 1 12 parsing failed [ 332.883719][ T5852] hid-generic 002A:0008:8001.0002: probe with driver hid-generic failed with error -22 [ 333.106946][ T6997] loop1: detected capacity change from 0 to 256 [ 333.282129][ T6997] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 333.299135][ T6997] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 333.691283][ T29] audit: type=1326 audit(1731903249.739:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7007 comm="syz.4.391" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x0 [ 334.907580][ T7018] netlink: 'syz.4.396': attribute type 15 has an invalid length. [ 336.443110][ T7039] netlink: 4 bytes leftover after parsing attributes in process `syz.0.401'. [ 336.542192][ T7035] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 336.704177][ T7041] netlink: 4 bytes leftover after parsing attributes in process `syz.1.404'. [ 336.864882][ T7041] netlink: 452 bytes leftover after parsing attributes in process `syz.1.404'. [ 336.874253][ T7041] netlink: 452 bytes leftover after parsing attributes in process `syz.1.404'. [ 336.915003][ T7044] loop4: detected capacity change from 0 to 256 [ 337.014690][ T7044] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 337.028341][ T7044] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 338.171474][ T5846] IPVS: starting estimator thread 0... [ 338.263395][ T7052] IPVS: using max 240 ests per chain, 12000 per kthread [ 339.090139][ T29] audit: type=1326 audit(1731903255.129:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7066 comm="syz.3.415" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73cd579 code=0x7ffc0000 [ 339.168153][ T7071] netlink: 'syz.1.416': attribute type 12 has an invalid length. [ 339.218677][ T29] audit: type=1326 audit(1731903255.189:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7066 comm="syz.3.415" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf73cd579 code=0x7ffc0000 [ 339.241814][ T29] audit: type=1326 audit(1731903255.189:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7066 comm="syz.3.415" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73cd579 code=0x7ffc0000 [ 339.264127][ T29] audit: type=1326 audit(1731903255.189:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7066 comm="syz.3.415" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73cd579 code=0x7ffc0000 [ 339.287723][ T29] audit: type=1326 audit(1731903255.219:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7066 comm="syz.3.415" exe="/root/syz-executor" sig=0 arch=40000003 syscall=220 compat=1 ip=0xf73cd579 code=0x7ffc0000 [ 339.310278][ T29] audit: type=1326 audit(1731903255.219:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7066 comm="syz.3.415" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73cd579 code=0x7ffc0000 [ 339.332468][ T29] audit: type=1326 audit(1731903255.219:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7066 comm="syz.3.415" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73cd579 code=0x7ffc0000 [ 339.537721][ T7077] input: syz1 as /devices/virtual/input/input7 [ 340.268978][ T7085] netlink: 4 bytes leftover after parsing attributes in process `syz.2.422'. [ 340.325473][ T7085] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 341.551309][ T5852] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 341.580392][ T7085] loop2: detected capacity change from 0 to 2048 [ 341.664155][ T7085] udf: Bad value for 'session' [ 341.834211][ T5852] usb 5-1: config 0 has no interfaces? [ 341.957748][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 341.964939][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 342.063282][ T5852] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b [ 342.072983][ T5852] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 342.081530][ T5852] usb 5-1: Product: syz [ 342.085932][ T5852] usb 5-1: Manufacturer: syz [ 342.090773][ T5852] usb 5-1: SerialNumber: syz [ 342.133868][ T5852] usb 5-1: config 0 descriptor?? [ 344.093418][ T5810] Bluetooth: hci4: command 0x0406 tx timeout [ 344.100661][ T5810] Bluetooth: hci0: command 0x0406 tx timeout [ 344.109477][ T5810] Bluetooth: hci3: command 0x0406 tx timeout [ 344.115810][ T5810] Bluetooth: hci1: command 0x0406 tx timeout [ 344.123595][ T5810] Bluetooth: hci2: command 0x0406 tx timeout [ 347.181452][ T5852] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 348.689163][ T3054] usb 5-1: USB disconnect, device number 3 [ 348.981293][ T5852] usb 3-1: Using ep0 maxpacket: 16 [ 349.241435][ T5852] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 349.252835][ T5852] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 349.264384][ T5852] usb 3-1: New USB device found, idVendor=05ac, idProduct=8241, bcdDevice= 0.00 [ 349.273881][ T5852] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 349.441340][ T7145] netlink: 4 bytes leftover after parsing attributes in process `syz.1.442'. [ 349.494227][ T7145] syz_tun: entered promiscuous mode [ 349.500082][ T7145] macvtap1: entered promiscuous mode [ 349.507259][ T7145] macvtap1: entered allmulticast mode [ 349.513156][ T7145] syz_tun: entered allmulticast mode [ 349.533057][ T5852] usb 3-1: config 0 descriptor?? [ 349.587631][ T7148] syz_tun: left allmulticast mode [ 349.594834][ T7148] syz_tun: left promiscuous mode [ 349.953229][ T5852] usbhid 3-1:0.0: can't add hid device: -71 [ 349.959978][ T5852] usbhid 3-1:0.0: probe with driver usbhid failed with error -71 [ 350.029970][ T5852] usb 3-1: USB disconnect, device number 6 [ 351.593764][ T7179] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 352.296487][ T7189] fuse: Bad value for 'fd' [ 353.362732][ T5852] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 353.368517][ T7215] netlink: 4 bytes leftover after parsing attributes in process `syz.3.470'. [ 353.443817][ T7214] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 353.542449][ T5852] usb 5-1: Using ep0 maxpacket: 8 [ 353.612481][ T7216] dccp_close: ABORT with 32 bytes unread [ 353.931519][ T5852] usb 5-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 353.940884][ T5852] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 353.990182][ T5852] usb 5-1: config 0 descriptor?? [ 354.230679][ T7214] loop3: detected capacity change from 0 to 2048 [ 354.285543][ T7214] udf: Bad value for 'session' [ 354.591564][ T3054] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 354.795681][ T3054] usb 3-1: Using ep0 maxpacket: 16 [ 354.831884][ T3054] usb 3-1: config 0 has an invalid interface number: 1 but max is 0 [ 354.840494][ T3054] usb 3-1: config 0 has no interface number 0 [ 354.904940][ T3054] usb 3-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d [ 354.914573][ T3054] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 354.923156][ T3054] usb 3-1: Product: syz [ 354.927736][ T3054] usb 3-1: Manufacturer: syz [ 354.932932][ T3054] usb 3-1: SerialNumber: syz [ 355.008647][ T3054] usb 3-1: config 0 descriptor?? [ 355.057830][ T3054] gspca_main: spca1528-2.14.0 probing 04fc:1528 [ 355.875743][ T5852] asix 5-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 355.886690][ T5852] asix 5-1:0.0 (unnamed net_device) (uninitialized): Failed to write RX_CTL mode to 0x0088: ffffffb9 [ 355.898579][ T5852] asix 5-1:0.0: probe with driver asix failed with error -71 [ 356.014618][ T5852] usb 5-1: USB disconnect, device number 4 [ 357.154181][ T3054] gspca_spca1528: reg_r err -32 [ 357.159597][ T3054] spca1528 3-1:0.1: probe with driver spca1528 failed with error -32 [ 357.542721][ T5846] usb 3-1: USB disconnect, device number 7 [ 357.754087][ T7260] netlink: 4 bytes leftover after parsing attributes in process `syz.0.491'. [ 357.864491][ T7264] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 361.711345][ T7306] netlink: 4 bytes leftover after parsing attributes in process `syz.4.507'. [ 361.771930][ T7306] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 362.081313][ T5846] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 362.244457][ T7306] loop4: detected capacity change from 0 to 2048 [ 362.261355][ T5846] usb 1-1: Using ep0 maxpacket: 8 [ 362.279212][ T7306] udf: Bad value for 'session' [ 362.325828][ T5846] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 362.337891][ T5846] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 362.347531][ T5846] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10 [ 362.359117][ T5846] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024 [ 362.370727][ T5846] usb 1-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 362.380159][ T5846] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 362.567466][ T5846] hub 1-1:1.0: bad descriptor, ignoring hub [ 362.574340][ T5846] hub 1-1:1.0: probe with driver hub failed with error -5 [ 362.583363][ T5846] cdc_wdm 1-1:1.0: skipping garbage [ 362.588811][ T5846] cdc_wdm 1-1:1.0: skipping garbage [ 362.807723][ T5846] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device [ 362.814209][ T5846] cdc_wdm 1-1:1.0: Unknown control protocol [ 362.942985][ T5846] usb 1-1: USB disconnect, device number 5 [ 365.032560][ T7332] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3) [ 365.039382][ T7332] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 365.047621][ T7332] vhci_hcd vhci_hcd.0: Device attached [ 365.181806][ T7333] vhci_hcd: cannot find a urb of seqnum 0 max seqnum 0 [ 365.212332][ T11] vhci_hcd: stop threads [ 365.216858][ T11] vhci_hcd: release socket [ 365.221605][ T11] vhci_hcd: disconnect device [ 366.476791][ T7351] netlink: 4 bytes leftover after parsing attributes in process `syz.1.522'. [ 366.562695][ T7352] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 367.066414][ T5852] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 367.125871][ T7351] loop1: detected capacity change from 0 to 2048 [ 367.157836][ T7351] udf: Bad value for 'session' [ 367.424821][ T5852] usb 5-1: Using ep0 maxpacket: 32 [ 367.584893][ T5852] usb 5-1: unable to get BOS descriptor or descriptor too short [ 367.598462][ T5852] usb 5-1: unable to read config index 0 descriptor/start: -71 [ 367.610738][ T5852] usb 5-1: can't read configurations, error -71 [ 367.964921][ T29] audit: type=1326 audit(1731903283.999:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7359 comm="syz.0.526" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7faf579 code=0x7ffc0000 [ 367.987446][ T29] audit: type=1326 audit(1731903283.999:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7359 comm="syz.0.526" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7faf579 code=0x7ffc0000 [ 368.013011][ T29] audit: type=1326 audit(1731903284.009:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7359 comm="syz.0.526" exe="/root/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf7faf579 code=0x7ffc0000 [ 368.035384][ T29] audit: type=1326 audit(1731903284.009:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7359 comm="syz.0.526" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7faf579 code=0x7ffc0000 [ 368.061310][ T29] audit: type=1326 audit(1731903284.009:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7359 comm="syz.0.526" exe="/root/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7faf579 code=0x7ffc0000 [ 368.087030][ T29] audit: type=1326 audit(1731903284.009:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7359 comm="syz.0.526" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7faf579 code=0x7ffc0000 [ 368.627686][ T29] audit: type=1326 audit(1731903284.649:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7359 comm="syz.0.526" exe="/root/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf7faf579 code=0x7ffc0000 [ 368.650194][ T29] audit: type=1326 audit(1731903284.649:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7359 comm="syz.0.526" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7faf579 code=0x7ffc0000 [ 368.677519][ T29] audit: type=1326 audit(1731903284.649:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7359 comm="syz.0.526" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7faf579 code=0x7ffc0000 [ 370.304920][ T7389] netlink: 8 bytes leftover after parsing attributes in process `syz.3.535'. [ 370.316540][ T7389] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT [ 370.804677][ T7397] netlink: 4 bytes leftover after parsing attributes in process `syz.0.537'. [ 370.895039][ T7397] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 374.574320][ T7457] netlink: 4 bytes leftover after parsing attributes in process `syz.1.562'. [ 374.710446][ T7460] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 375.146542][ T7457] loop1: detected capacity change from 0 to 2048 [ 375.179094][ T7457] udf: Bad value for 'session' [ 377.959373][ T7502] netlink: 4 bytes leftover after parsing attributes in process `syz.3.582'. [ 377.979046][ T7502] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 378.093766][ T7502] loop3: detected capacity change from 0 to 2048 [ 378.103461][ T7502] udf: Bad value for 'session' [ 378.795978][ T7516] netlink: 20 bytes leftover after parsing attributes in process `syz.2.586'. [ 379.405840][ T5846] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 379.866505][ T7529] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 380.021491][ T5846] usb 4-1: Using ep0 maxpacket: 32 [ 380.033696][ T5846] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 32, changing to 9 [ 380.046623][ T5846] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 380.059951][ T5846] usb 4-1: New USB device found, idVendor=28bd, idProduct=0905, bcdDevice= 0.00 [ 380.069496][ T5846] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 380.121664][ T5846] usb 4-1: config 0 descriptor?? [ 380.631812][ T5846] input: HID 28bd:0905 Mouse as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:28BD:0905.0003/input/input9 [ 380.864643][ T5846] uclogic 0003:28BD:0905.0003: input,hidraw0: USB HID v0.01 Mouse [HID 28bd:0905] on usb-dummy_hcd.3-1/input0 [ 380.944866][ T5846] usb 4-1: USB disconnect, device number 7 [ 381.340602][ T7545] netlink: 4 bytes leftover after parsing attributes in process `syz.0.599'. [ 381.540175][ T7545] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 382.741327][ T7566] netlink: 4 bytes leftover after parsing attributes in process `syz.1.608'. [ 383.564947][ T7584] netlink: 20 bytes leftover after parsing attributes in process `syz.2.615'. [ 383.646431][ T7584] netlink: 12 bytes leftover after parsing attributes in process `syz.2.615'. [ 383.656307][ T7584] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 383.948750][ T7588] futex_wake_op: syz.3.618 tries to shift op by 144; fix this program [ 384.755692][ T7597] netlink: 4 bytes leftover after parsing attributes in process `syz.2.621'. [ 384.834193][ T7599] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 385.305818][ T7597] loop2: detected capacity change from 0 to 2048 [ 385.365227][ T7597] udf: Bad value for 'session' [ 387.251730][ T7627] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 387.603029][ T7605] mmap: syz.0.625 (7605) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 388.779943][ T7643] netlink: 4 bytes leftover after parsing attributes in process `syz.4.641'. [ 389.244748][ T7643] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 390.075494][ T7643] loop4: detected capacity change from 0 to 2048 [ 390.085590][ T7643] udf: Bad value for 'session' [ 394.702282][ T7711] loop4: detected capacity change from 0 to 512 [ 394.848132][ T7711] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=2842c028, mo2=0002] [ 394.916018][ T7711] System zones: 0-2, 18-18, 34-35 [ 394.969976][ T7711] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 394.983602][ T7711] ext4 filesystem being mounted at /118/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 395.207238][ T7711] EXT4-fs error (device loop4): ext4_ext_check_inode:524: inode #2: comm syz.4.669: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 395.344005][ T7718] netlink: 4 bytes leftover after parsing attributes in process `syz.3.671'. [ 395.382496][ T7711] EXT4-fs (loop4): Remounting filesystem read-only [ 395.488583][ T7720] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 395.867520][ T5798] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 396.267289][ T7718] loop3: detected capacity change from 0 to 2048 [ 396.336791][ T7718] udf: Bad value for 'session' [ 398.691512][ T5854] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 398.922324][ T5854] usb 5-1: Using ep0 maxpacket: 16 [ 398.975040][ T5854] usb 5-1: config 0 has an invalid interface number: 1 but max is 0 [ 398.984955][ T5854] usb 5-1: config 0 has no interface number 0 [ 399.097421][ T5854] usb 5-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d [ 399.106945][ T5854] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 399.115528][ T5854] usb 5-1: Product: syz [ 399.119922][ T5854] usb 5-1: Manufacturer: syz [ 399.124923][ T5854] usb 5-1: SerialNumber: syz [ 399.318975][ T5854] usb 5-1: config 0 descriptor?? [ 399.380885][ T5854] gspca_main: spca1528-2.14.0 probing 04fc:1528 [ 400.984844][ T5854] gspca_spca1528: reg_r err -32 [ 400.990158][ T5854] spca1528 5-1:0.1: probe with driver spca1528 failed with error -32 [ 401.161512][ T5854] usb 5-1: USB disconnect, device number 7 [ 403.173574][ T7749] netlink: 4 bytes leftover after parsing attributes in process `syz.4.685'. [ 403.262167][ T7749] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 403.394575][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 403.401416][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 403.899071][ T7749] loop4: detected capacity change from 0 to 2048 [ 403.952076][ T7749] udf: Bad value for 'session' [ 440.889045][ T5846] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 441.190865][ T5846] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 441.202626][ T5846] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 441.213060][ T5846] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 441.227682][ T5846] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 441.331486][ T8059] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 441.364333][ T5846] usb 5-1: Quirk or no altset; falling back to MIDI 1.0 [ 441.592993][ T8059] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5) [ 441.599825][ T8059] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 441.608270][ T8059] vhci_hcd vhci_hcd.0: Device attached [ 441.851552][ T5854] usb 41-1: new low-speed USB device number 2 using vhci_hcd [ 441.898752][ T8075] vhci_hcd: connection reset by peer [ 441.917455][ T3415] vhci_hcd: stop threads [ 441.922028][ T3415] vhci_hcd: release socket [ 441.926693][ T3415] vhci_hcd: disconnect device [ 441.946794][ T5852] usb 5-1: USB disconnect, device number 8 [ 442.267676][ T7801] udevd[7801]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 444.417246][ T5852] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 444.581344][ T5852] usb 1-1: Using ep0 maxpacket: 32 [ 444.606627][ T5852] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 444.617137][ T5852] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 444.737431][ T5852] usb 1-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f [ 444.747206][ T5852] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 444.759359][ T5852] usb 1-1: Product: syz [ 444.763877][ T5852] usb 1-1: Manufacturer: syz [ 444.768710][ T5852] usb 1-1: SerialNumber: syz [ 444.862327][ T5852] usb 1-1: config 0 descriptor?? [ 445.581484][ T5846] usb 1-1: USB disconnect, device number 6 [ 447.105181][ T5854] vhci_hcd: vhci_device speed not set [ 447.318670][ T8177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:16) already exists on: macvlan2 [ 447.329206][ T8177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 447.344734][ T8177] erspan0: entered promiscuous mode [ 447.351159][ T8177] macvlan2: entered allmulticast mode [ 447.356775][ T8177] erspan0: entered allmulticast mode [ 447.502381][ T8177] erspan0: left promiscuous mode [ 447.951269][ T5846] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 448.125427][ T5846] usb 4-1: Using ep0 maxpacket: 32 [ 448.156437][ T5846] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 448.167726][ T5846] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 448.271727][ T5846] usb 4-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f [ 448.281381][ T5846] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 448.289652][ T5846] usb 4-1: Product: syz [ 448.294273][ T5846] usb 4-1: Manufacturer: syz [ 448.299102][ T5846] usb 4-1: SerialNumber: syz [ 448.396202][ T5846] usb 4-1: config 0 descriptor?? [ 449.493325][ T5852] usb 4-1: USB disconnect, device number 8 [ 451.423982][ T5846] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 451.618756][ T5846] usb 3-1: Using ep0 maxpacket: 32 [ 451.637926][ T5846] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 451.648549][ T5846] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 451.752613][ T5846] usb 3-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f [ 451.762227][ T5846] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 451.770488][ T5846] usb 3-1: Product: syz [ 451.776564][ T5846] usb 3-1: Manufacturer: syz [ 451.782120][ T5846] usb 3-1: SerialNumber: syz [ 451.904423][ T5846] usb 3-1: config 0 descriptor?? [ 452.843404][ T5852] usb 3-1: USB disconnect, device number 8 [ 455.439543][ T5852] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 455.874559][ T5852] usb 4-1: Using ep0 maxpacket: 32 [ 455.907787][ T5852] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 455.919627][ T5852] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 455.951282][ T5852] usb 4-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f [ 455.960887][ T5852] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 455.972238][ T5852] usb 4-1: Product: syz [ 455.976640][ T5852] usb 4-1: Manufacturer: syz [ 455.981640][ T5852] usb 4-1: SerialNumber: syz [ 456.059136][ T5852] usb 4-1: config 0 descriptor?? [ 456.787349][ T5846] usb 4-1: USB disconnect, device number 9 [ 459.054706][ T5846] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 459.241440][ T5846] usb 5-1: Using ep0 maxpacket: 32 [ 459.270766][ T5846] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 459.282227][ T5846] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 459.361323][ T5846] usb 5-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f [ 459.370795][ T5846] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 459.379263][ T5846] usb 5-1: Product: syz [ 459.383793][ T5846] usb 5-1: Manufacturer: syz [ 459.388629][ T5846] usb 5-1: SerialNumber: syz [ 459.492180][ T5846] usb 5-1: config 0 descriptor?? [ 460.765117][ T5852] usb 5-1: USB disconnect, device number 9 [ 462.894040][ T5852] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 463.348643][ T5852] usb 2-1: Using ep0 maxpacket: 32 [ 463.366982][ T5852] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 463.380459][ T5852] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 463.511497][ T5852] usb 2-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f [ 463.520885][ T5852] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 463.532087][ T5852] usb 2-1: Product: syz [ 463.536504][ T5852] usb 2-1: Manufacturer: syz [ 463.541545][ T5852] usb 2-1: SerialNumber: syz [ 463.586894][ T5852] usb 2-1: config 0 descriptor?? [ 464.694424][ T5846] usb 2-1: USB disconnect, device number 2 [ 464.831313][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 464.837985][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 465.768231][ T8460] netlink: 'syz.1.989': attribute type 2 has an invalid length. [ 467.124481][ T1883] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 467.321479][ T1883] usb 3-1: Using ep0 maxpacket: 32 [ 467.342183][ T1883] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 467.352732][ T1883] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 467.410153][ T1883] usb 3-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f [ 467.419776][ T1883] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 467.428349][ T1883] usb 3-1: Product: syz [ 467.433212][ T1883] usb 3-1: Manufacturer: syz [ 467.438060][ T1883] usb 3-1: SerialNumber: syz [ 467.564891][ T1883] usb 3-1: config 0 descriptor?? [ 468.483741][ T5856] usb 3-1: USB disconnect, device number 9 [ 471.163979][ T5856] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 471.521204][ T5856] usb 1-1: Using ep0 maxpacket: 32 [ 471.663981][ T5856] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 471.676327][ T5856] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 472.024742][ T5856] usb 1-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f [ 472.035355][ T5856] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 472.043798][ T5856] usb 1-1: Product: syz [ 472.048199][ T5856] usb 1-1: Manufacturer: syz [ 472.055733][ T5856] usb 1-1: SerialNumber: syz [ 472.103921][ T5856] usb 1-1: config 0 descriptor?? [ 474.219267][ T5856] usb 1-1: USB disconnect, device number 7 [ 476.624192][ T5856] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 476.801508][ T5856] usb 5-1: Using ep0 maxpacket: 32 [ 476.840000][ T5856] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 476.854008][ T5856] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 477.115070][ T5856] usb 5-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f [ 477.127235][ T5856] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 477.135716][ T5856] usb 5-1: Product: syz [ 477.140123][ T5856] usb 5-1: Manufacturer: syz [ 477.145066][ T5856] usb 5-1: SerialNumber: syz [ 477.300403][ T5856] usb 5-1: config 0 descriptor?? [ 477.321821][ T29] audit: type=1326 audit(1731903393.349:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8624 comm="syz.3.1056" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73cd579 code=0x7ffc0000 [ 477.344631][ T29] audit: type=1326 audit(1731903393.349:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8624 comm="syz.3.1056" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73cd579 code=0x7ffc0000 [ 479.339242][ T5852] usb 5-1: USB disconnect, device number 10 [ 481.691245][ T5852] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 481.884149][ T5852] usb 1-1: Using ep0 maxpacket: 32 [ 481.908932][ T5852] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 481.922417][ T5852] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 481.999686][ T5852] usb 1-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f [ 482.010275][ T5852] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 482.022452][ T5852] usb 1-1: Product: syz [ 482.026873][ T5852] usb 1-1: Manufacturer: syz [ 482.032958][ T5852] usb 1-1: SerialNumber: syz [ 482.133804][ T5852] usb 1-1: config 0 descriptor?? [ 483.309335][ T5852] usb 1-1: USB disconnect, device number 8 [ 483.618158][ T8722] syzkaller1: entered promiscuous mode [ 483.624202][ T8722] syzkaller1: entered allmulticast mode [ 485.094773][ T8740] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 485.313942][ T5852] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 485.479619][ T5852] usb 3-1: Using ep0 maxpacket: 32 [ 485.507831][ T5852] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 485.522196][ T5852] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 485.572192][ T5852] usb 3-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f [ 485.584461][ T5852] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 485.593268][ T5852] usb 3-1: Product: syz [ 485.597677][ T5852] usb 3-1: Manufacturer: syz [ 485.602744][ T5852] usb 3-1: SerialNumber: syz [ 485.683713][ T5852] usb 3-1: config 0 descriptor?? [ 486.719751][ T1883] usb 3-1: USB disconnect, device number 10 [ 486.858385][ T8770] IPv6: NLM_F_REPLACE set, but no existing node found! [ 487.502893][ T5846] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 487.686650][ T5846] usb 5-1: unable to get BOS descriptor or descriptor too short [ 487.714717][ T5846] usb 5-1: config 255 has an invalid interface number: 119 but max is 0 [ 487.723551][ T5846] usb 5-1: config 255 has no interface number 0 [ 487.730072][ T5846] usb 5-1: config 255 interface 119 has no altsetting 0 [ 487.793624][ T5846] usb 5-1: New USB device found, idVendor=0421, idProduct=048e, bcdDevice=d4.8c [ 487.803564][ T5846] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 487.812086][ T5846] usb 5-1: Product: syz [ 487.816492][ T5846] usb 5-1: Manufacturer: syz [ 487.821448][ T5846] usb 5-1: SerialNumber: syz [ 488.176246][ T5846] usb 5-1: bad CDC descriptors [ 488.239934][ T5846] usb 5-1: USB disconnect, device number 11 [ 488.276997][ T7801] udevd[7801]: setting mode of /dev/bus/usb/005/011 to 020664 failed: No such file or directory [ 488.314514][ T7801] udevd[7801]: setting owner of /dev/bus/usb/005/011 to uid=0, gid=0 failed: No such file or directory [ 488.880527][ T8800] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:16) already exists on: macvlan2 [ 488.894715][ T8800] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 488.907481][ T8800] erspan0: entered promiscuous mode [ 488.913749][ T8800] macvlan3: entered allmulticast mode [ 488.919346][ T8800] erspan0: entered allmulticast mode [ 491.538508][ T8843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:16) already exists on: macvlan2 [ 491.548823][ T8843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 491.563605][ T8843] erspan0: entered promiscuous mode [ 491.569763][ T8843] macvlan2: entered allmulticast mode [ 493.353936][ T8871] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1163'. [ 494.723744][ T8898] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1174'. [ 494.736349][ T8898] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1174'. [ 494.745913][ T8898] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1174'. [ 495.322325][ T8907] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1178'. [ 499.077045][ T8931] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1189'. [ 499.086522][ T8931] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1189'. [ 499.095885][ T8931] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1189'. [ 499.773803][ T8939] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1191'. [ 499.794320][ T8939] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:16) already exists on: macvlan2 [ 499.804995][ T8939] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 499.817587][ T8939] erspan0: entered promiscuous mode [ 499.823898][ T8939] macvlan2: entered allmulticast mode [ 499.829504][ T8939] erspan0: entered allmulticast mode [ 503.727713][ T8969] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1203'. [ 508.903462][ T9004] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1216'. [ 510.995206][ T9042] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1230'. [ 516.926192][ T5852] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 517.123179][ T5852] usb 4-1: Using ep0 maxpacket: 32 [ 517.163682][ T5852] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 517.178388][ T5852] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 517.189273][ T5852] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 517.199248][ T5852] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 517.325766][ T5852] usb 4-1: config 0 descriptor?? [ 517.450807][ T5852] hub 4-1:0.0: USB hub found [ 517.555343][ T5852] hub 4-1:0.0: 1 port detected [ 518.172271][ T5852] hub 4-1:0.0: activate --> -90 [ 518.584625][ T5852] usb 4-1-port1: config error [ 518.591595][ T5856] usb 4-1: USB disconnect, device number 10 [ 522.209271][ T9227] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1300'. [ 522.288108][ T9227] bridge0: port 2(bridge_slave_1) entered disabled state [ 522.296300][ T9227] bridge0: port 1(bridge_slave_0) entered disabled state [ 526.373921][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 526.380760][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 530.021339][ T1883] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 530.204288][ T1883] usb 2-1: Using ep0 maxpacket: 32 [ 530.223582][ T1883] usb 2-1: config 0 has an invalid interface number: 9 but max is 0 [ 530.232455][ T1883] usb 2-1: config 0 has no interface number 0 [ 530.286273][ T1883] usb 2-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c [ 530.296103][ T1883] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 530.304763][ T1883] usb 2-1: Product: syz [ 530.309175][ T1883] usb 2-1: Manufacturer: syz [ 530.314309][ T1883] usb 2-1: SerialNumber: syz [ 530.367139][ T1883] usb 2-1: config 0 descriptor?? [ 530.405942][ T1883] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 530.929120][ T1883] gspca_topro: reg_w err -110 [ 530.965980][ T1883] gspca_topro: Sensor soi763a [ 532.347515][ T9340] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1346'. [ 532.607356][ T5856] usb 2-1: USB disconnect, device number 3 [ 537.519668][ T9396] netlink: 'syz.2.1366': attribute type 4 has an invalid length. [ 537.581843][ T9396] netlink: 'syz.2.1366': attribute type 4 has an invalid length. [ 541.766816][ T9451] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1392'. [ 544.280136][ T9478] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1407'. [ 546.513159][ T9509] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1421'. [ 547.123291][ T9516] netlink: 'syz.3.1425': attribute type 11 has an invalid length. [ 547.131830][ T9516] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1425'. [ 551.512879][ T9560] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1442'. [ 553.775328][ T9578] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1448'. [ 553.784711][ T9578] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1448'. [ 556.081219][ T1883] IPVS: starting estimator thread 0... [ 556.194186][ T9606] IPVS: using max 288 ests per chain, 14400 per kthread [ 556.620391][ T9615] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1466'. [ 556.629900][ T9615] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1466'. [ 559.729698][ T9648] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1478'. [ 563.216200][ T9682] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1491'. [ 566.873018][ T9714] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1503'. [ 570.606332][ T9744] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1514'. [ 573.335135][ T9775] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1526'. [ 573.586999][ T9779] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1528'. [ 574.372273][ T9784] [U]  [ 574.514266][ T9787] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 575.719071][ T9807] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1539'. [ 577.877937][ T9841] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1553'. [ 578.503668][ T9856] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1559'. [ 578.524464][ T9856] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 578.641369][ T9856] loop3: detected capacity change from 0 to 2048 [ 578.650785][ T9856] udf: Bad value for 'session' [ 579.364544][ T9862] block device autoloading is deprecated and will be removed. [ 581.707487][ T9887] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1574'. [ 581.736002][ T9887] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 582.108703][ T9887] loop2: detected capacity change from 0 to 2048 [ 582.121206][ T9887] udf: Bad value for 'session' [ 584.064786][ T9915] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1585'. [ 587.719486][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 587.726552][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 587.771525][ T5856] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 587.941139][ T5856] usb 4-1: Using ep0 maxpacket: 32 [ 587.965921][ T5856] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 587.976543][ T5856] usb 4-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 587.987672][ T5856] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE1, changing to 0x81 [ 588.002495][ T5856] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 33307, setting to 1024 [ 588.014994][ T5856] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 1024 [ 588.025422][ T5856] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 4 [ 588.691562][ T5856] usb 4-1: New USB device found, idVendor=0572, idProduct=cafe, bcdDevice=55.01 [ 588.704497][ T5856] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 588.713336][ T5856] usb 4-1: Product: syz [ 588.717736][ T5856] usb 4-1: Manufacturer: syz [ 588.723182][ T5856] usb 4-1: SerialNumber: syz [ 588.769958][ T5856] usb 4-1: config 0 descriptor?? [ 588.778209][ T9965] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 589.045772][ T5856] cxacru 4-1:0.0: cxacru_bind: interface has incorrect endpoints [ 589.054413][ T5856] cxacru 4-1:0.0: usbatm_usb_probe: bind failed: -19! [ 589.497716][ T5856] usb 4-1: USB disconnect, device number 11 [ 590.735131][T10008] [U]  [ 593.197140][T10041] [U]  [ 595.676627][T10072] netlink: 'syz.4.1646': attribute type 29 has an invalid length. [ 595.737106][T10072] netlink: 'syz.4.1646': attribute type 29 has an invalid length. [ 598.606042][T10101] netlink: 'syz.1.1660': attribute type 29 has an invalid length. [ 598.618699][T10101] netlink: 'syz.1.1660': attribute type 29 has an invalid length. [ 598.646062][T10097] [U]  [ 598.699509][T10103] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1657'. [ 601.696655][T10155] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1679'. [ 602.820419][T10169] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1686'. [ 603.516955][T10178] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 603.524566][T10178] IPv6: NLM_F_CREATE should be set when creating new route [ 603.532124][T10178] IPv6: NLM_F_CREATE should be set when creating new route [ 604.073134][T10190] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1691'. [ 605.673162][T10215] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1707'. [ 606.009267][T10218] netlink: 'syz.0.1708': attribute type 4 has an invalid length. [ 607.863022][T10249] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1721'. [ 609.177100][ T5852] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 609.382936][ T5852] usb 2-1: Using ep0 maxpacket: 32 [ 609.428248][ T5852] usb 2-1: config 0 has an invalid interface number: 9 but max is 0 [ 609.436829][ T5852] usb 2-1: config 0 has no interface number 0 [ 609.508040][ T5852] usb 2-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c [ 609.521212][ T5852] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 609.529592][ T5852] usb 2-1: Product: syz [ 609.534171][ T5852] usb 2-1: Manufacturer: syz [ 609.539012][ T5852] usb 2-1: SerialNumber: syz [ 609.643666][ T5852] usb 2-1: config 0 descriptor?? [ 609.675268][ T5852] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 609.999782][T10283] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1734'. [ 610.195139][ T5852] gspca_topro: reg_w err -110 [ 610.224916][ T5852] gspca_topro: Sensor soi763a [ 610.996470][T10299] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1740'. [ 611.372075][T10299] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1740'. [ 612.075087][ T1883] usb 2-1: USB disconnect, device number 4 [ 612.719883][T10315] [U]  [ 613.596654][T10329] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1753'. [ 615.122084][ T1883] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 615.140748][T10346] [U]  [ 615.398178][ T1883] usb 4-1: Using ep0 maxpacket: 32 [ 615.436602][ T1883] usb 4-1: config 0 has an invalid interface number: 9 but max is 0 [ 615.445494][ T1883] usb 4-1: config 0 has no interface number 0 [ 615.530199][ T1883] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c [ 615.540050][ T1883] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 615.548583][ T1883] usb 4-1: Product: syz [ 615.553154][ T1883] usb 4-1: Manufacturer: syz [ 615.559364][ T1883] usb 4-1: SerialNumber: syz [ 615.674044][ T1883] usb 4-1: config 0 descriptor?? [ 615.862293][T10357] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1767'. [ 615.893821][ T1883] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 616.537182][ T1883] gspca_topro: reg_w err -110 [ 616.576161][ T1883] gspca_topro: Sensor soi763a [ 617.463525][T10375] [U]  [ 618.193454][ T5852] usb 4-1: USB disconnect, device number 12 [ 618.525906][T10401] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1783'. [ 618.610639][T10405] devpts: called with bogus options [ 620.107505][ T1883] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 620.301630][ T1883] usb 5-1: Using ep0 maxpacket: 32 [ 620.326638][ T1883] usb 5-1: config 0 has an invalid interface number: 9 but max is 0 [ 620.335496][ T1883] usb 5-1: config 0 has no interface number 0 [ 620.351870][ T1883] usb 5-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c [ 620.361598][ T1883] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 620.369865][ T1883] usb 5-1: Product: syz [ 620.375905][ T1883] usb 5-1: Manufacturer: syz [ 620.380754][ T1883] usb 5-1: SerialNumber: syz [ 620.392226][ T1883] usb 5-1: config 0 descriptor?? [ 620.418677][ T1883] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 620.894467][T10439] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1798'. [ 620.959173][ T1883] gspca_topro: reg_w err -110 [ 620.992065][ T1883] gspca_topro: Sensor soi763a [ 621.023175][T10442] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1798'. [ 622.497701][T10465] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 623.202778][T10482] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1811'. [ 623.248831][ T1883] usb 5-1: USB disconnect, device number 12 [ 623.398620][T10483] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1811'. [ 624.672870][T10500] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1820'. [ 625.467374][T10511] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1824'. [ 625.679017][T10514] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1824'. [ 626.715505][T10531] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms [ 626.942122][T10531] bond1: entered promiscuous mode [ 626.947409][T10531] bond1: entered allmulticast mode [ 626.956901][T10531] 8021q: adding VLAN 0 to HW filter on device bond1 [ 627.588118][T10547] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1838'. [ 627.809078][T10547] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1838'. [ 630.143150][T10581] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1849'. [ 630.374467][T10590] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1850'. [ 630.963132][T10594] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1853'. [ 631.628095][T10598] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1853'. [ 633.020795][T10625] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1865'. [ 633.927493][T10639] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1871'. [ 634.142978][T10639] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1871'. [ 634.929897][T10657] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1879'. [ 636.396217][T10672] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1887'. [ 639.460292][T10710] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3228990103 (6457980206 ns) > initial count (5822568126 ns). Using initial count to start timer. [ 643.754567][ T5846] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 644.119216][ T5846] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 644.129681][ T5846] usb 3-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 644.140363][ T5846] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 644.149743][ T5846] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9 [ 644.161226][ T5846] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024 [ 644.285387][ T5846] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 644.295417][ T5846] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 644.303916][ T5846] usb 3-1: Product: syz [ 644.308334][ T5846] usb 3-1: Manufacturer: syz [ 644.391245][ T5846] cdc_wdm 3-1:1.0: skipping garbage [ 644.396819][ T5846] cdc_wdm 3-1:1.0: skipping garbage [ 644.408803][ T5846] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device [ 644.416399][ T5846] cdc_wdm 3-1:1.0: Unknown control protocol [ 644.751262][ T5846] usb 3-1: USB disconnect, device number 11 [ 645.617006][T10798] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1936'. [ 646.158855][T10808] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1937'. [ 648.034212][T10836] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1949'. [ 648.686589][T10849] netlink: 88 bytes leftover after parsing attributes in process `syz.1.1955'. [ 649.159548][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 649.166457][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 649.939271][T10871] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1964'. [ 650.769356][T10882] netlink: 88 bytes leftover after parsing attributes in process `syz.1.1970'. [ 653.085833][T10920] netlink: 88 bytes leftover after parsing attributes in process `syz.2.1985'. [ 654.144366][T10938] netlink: 'syz.2.1996': attribute type 29 has an invalid length. [ 654.315563][T10938] netlink: 'syz.2.1996': attribute type 29 has an invalid length. [ 654.877927][T10951] netlink: 88 bytes leftover after parsing attributes in process `syz.3.2000'. [ 655.173860][T10960] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2001'. [ 656.022434][T10974] netlink: 'syz.0.2011': attribute type 29 has an invalid length. [ 656.060350][T10974] netlink: 'syz.0.2011': attribute type 29 has an invalid length. [ 656.844131][T10988] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2018'. [ 657.162356][T10994] loop8: detected capacity change from 0 to 7 [ 657.275578][T10994] Dev loop8: unable to read RDB block 7 [ 657.282622][T10994] loop8: AHDI p1 p3 p4 [ 657.287972][T10994] loop8: partition table partially beyond EOD, truncated [ 657.297680][T10994] loop8: p1 start 975770946 is beyond EOD, truncated [ 657.305536][T10994] loop8: p3 start 6514546 is beyond EOD, truncated [ 657.756620][T11005] netlink: 80 bytes leftover after parsing attributes in process `syz.1.2025'. [ 657.873511][T11007] netlink: 'syz.2.2026': attribute type 29 has an invalid length. [ 657.886498][T11007] netlink: 'syz.2.2026': attribute type 29 has an invalid length. [ 658.821912][T11024] binder: 11022:11024 ioctl c0306201 20000200 returned -14 [ 659.373063][T11034] loop8: detected capacity change from 0 to 7 [ 659.390881][T11034] Dev loop8: unable to read RDB block 7 [ 659.397516][T11034] loop8: AHDI p1 p3 p4 [ 659.402245][T11034] loop8: partition table partially beyond EOD, truncated [ 659.410608][T11034] loop8: p1 start 975770946 is beyond EOD, truncated [ 659.417765][T11034] loop8: p3 start 6514546 is beyond EOD, truncated [ 659.739491][T11038] netlink: 80 bytes leftover after parsing attributes in process `syz.1.2040'. [ 659.877421][T11040] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2042'. [ 661.262341][T11068] loop8: detected capacity change from 0 to 7 [ 661.294270][T11068] Dev loop8: unable to read RDB block 7 [ 661.300378][T11068] loop8: AHDI p1 p3 p4 [ 661.305387][T11068] loop8: partition table partially beyond EOD, truncated [ 661.313825][T11068] loop8: p1 start 975770946 is beyond EOD, truncated [ 661.320795][T11068] loop8: p3 start 6514546 is beyond EOD, truncated [ 661.843777][T11075] netlink: 80 bytes leftover after parsing attributes in process `syz.1.2056'. [ 662.055859][T11079] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2058'. [ 663.072849][ T5846] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 663.321587][ T5846] usb 3-1: config 0 has no interfaces? [ 663.394918][T11101] loop8: detected capacity change from 0 to 7 [ 663.398995][ T5846] usb 3-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b [ 663.411796][ T5846] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 663.420076][ T5846] usb 3-1: Product: syz [ 663.424715][ T5846] usb 3-1: Manufacturer: syz [ 663.429540][ T5846] usb 3-1: SerialNumber: syz [ 663.452873][ T5846] usb 3-1: config 0 descriptor?? [ 663.502419][T11101] Dev loop8: unable to read RDB block 7 [ 663.508572][T11101] loop8: AHDI p1 p3 p4 [ 663.513164][T11101] loop8: partition table partially beyond EOD, truncated [ 663.521553][T11101] loop8: p1 start 975770946 is beyond EOD, truncated [ 663.528480][T11101] loop8: p3 start 6514546 is beyond EOD, truncated [ 664.242418][T11108] netlink: 80 bytes leftover after parsing attributes in process `syz.0.2071'. [ 664.460636][T11110] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2072'. [ 666.483501][T11136] loop8: detected capacity change from 0 to 7 [ 667.486367][T11136] Dev loop8: unable to read RDB block 7 [ 667.496224][T11136] loop8: AHDI p1 p3 p4 [ 667.501422][T11136] loop8: partition table partially beyond EOD, truncated [ 667.509407][T11136] loop8: p1 start 975770946 is beyond EOD, truncated [ 667.516728][T11136] loop8: p3 start 6514546 is beyond EOD, truncated [ 667.568883][ T5852] usb 3-1: USB disconnect, device number 12 [ 667.668618][T11142] netlink: 80 bytes leftover after parsing attributes in process `syz.1.2085'. [ 669.460196][T11174] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2097'. [ 669.555015][T11177] loop8: detected capacity change from 0 to 7 [ 669.596744][T11177] Dev loop8: unable to read RDB block 7 [ 669.602780][T11177] loop8: AHDI p1 p3 p4 [ 669.607244][T11177] loop8: partition table partially beyond EOD, truncated [ 669.617482][T11177] loop8: p1 start 975770946 is beyond EOD, truncated [ 669.625136][T11177] loop8: p3 start 6514546 is beyond EOD, truncated [ 669.647559][T11179] netlink: 80 bytes leftover after parsing attributes in process `syz.0.2099'. [ 671.816820][T11206] loop8: detected capacity change from 0 to 7 [ 671.860579][T11206] Dev loop8: unable to read RDB block 7 [ 671.866618][T11206] loop8: AHDI p1 p3 p4 [ 671.871398][T11206] loop8: partition table partially beyond EOD, truncated [ 671.880673][T11206] loop8: p1 start 975770946 is beyond EOD, truncated [ 671.887711][T11206] loop8: p3 start 6514546 is beyond EOD, truncated [ 672.904413][T11217] netlink: 80 bytes leftover after parsing attributes in process `syz.3.2114'. [ 674.255553][T11235] loop8: detected capacity change from 0 to 7 [ 674.265059][T11235] Dev loop8: unable to read RDB block 7 [ 674.271737][T11235] loop8: AHDI p1 p3 p4 [ 674.276259][T11235] loop8: partition table partially beyond EOD, truncated [ 674.287222][T11235] loop8: p1 start 975770946 is beyond EOD, truncated [ 674.294339][T11235] loop8: p3 start 6514546 is beyond EOD, truncated [ 676.237230][T11276] loop8: detected capacity change from 0 to 7 [ 676.279273][T11276] Dev loop8: unable to read RDB block 7 [ 676.286441][T11276] loop8: AHDI p1 p3 p4 [ 676.291203][T11276] loop8: partition table partially beyond EOD, truncated [ 676.299595][T11276] loop8: p1 start 975770946 is beyond EOD, truncated [ 676.309325][T11276] loop8: p3 start 6514546 is beyond EOD, truncated [ 676.628830][T11281] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 677.900127][T11306] loop8: detected capacity change from 0 to 7 [ 677.927690][T11306] Dev loop8: unable to read RDB block 7 [ 677.933788][T11306] loop8: AHDI p1 p3 p4 [ 677.938200][T11306] loop8: partition table partially beyond EOD, truncated [ 677.949306][T11306] loop8: p1 start 975770946 is beyond EOD, truncated [ 677.956539][T11306] loop8: p3 start 6514546 is beyond EOD, truncated [ 679.839751][T11338] loop8: detected capacity change from 0 to 7 [ 679.871984][T11338] Dev loop8: unable to read RDB block 7 [ 679.877872][T11338] loop8: AHDI p1 p3 p4 [ 679.885427][T11338] loop8: partition table partially beyond EOD, truncated [ 679.893905][T11338] loop8: p1 start 975770946 is beyond EOD, truncated [ 679.900890][T11338] loop8: p3 start 6514546 is beyond EOD, truncated [ 680.207333][T11342] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2171'. [ 681.870520][T11373] gretap1: entered allmulticast mode [ 685.325569][T11434] team0: No ports can be present during mode change [ 685.806858][T11440] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2207'. [ 687.126559][T11454] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2247164070 (2247164070 ns) > initial count (1872166143 ns). Using initial count to start timer. [ 687.141798][T11464] netlink: 256 bytes leftover after parsing attributes in process `syz.0.2215'. [ 688.416592][T11476] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2220'. [ 688.824044][T11487] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2221'. [ 688.915181][T11489] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 688.936197][T11489] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -1 [ 690.376618][T11507] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2234'. [ 690.587122][ T4058] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 690.829802][T11514] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2237'. [ 690.878669][T11515] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2235'. [ 690.933430][T11519] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 690.945873][T11519] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 690.955562][T11519] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 691.014016][T11519] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 691.042813][T11519] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 691.054109][T11519] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 691.119799][ T4058] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 691.219208][ T4058] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 691.372661][ T4058] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 692.054030][ T4058] bridge_slave_1: left allmulticast mode [ 692.060061][ T4058] bridge_slave_1: left promiscuous mode [ 692.070349][ T4058] bridge0: port 2(bridge_slave_1) entered disabled state [ 692.132967][ T4058] bridge_slave_0: left allmulticast mode [ 692.138986][ T4058] bridge_slave_0: left promiscuous mode [ 692.145754][ T4058] bridge0: port 1(bridge_slave_0) entered disabled state [ 692.535709][ T4058] erspan0 (unregistering): left promiscuous mode [ 692.893380][ T4058] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 692.916029][ T4058] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 692.951990][ T4058] bond0 (unregistering): Released all slaves [ 693.226115][ T5797] Bluetooth: hci4: command tx timeout [ 693.639432][T11548] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2248'. [ 693.798945][T11517] chnl_net:caif_netlink_parms(): no params data found [ 694.109740][T11550] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2249'. [ 694.855841][ T4058] hsr_slave_0: left promiscuous mode [ 694.999858][ T4058] hsr_slave_1: left promiscuous mode [ 695.076139][ T4058] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 695.084209][ T4058] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 695.125563][ T4058] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 695.135633][ T4058] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 695.203125][ T4058] veth1_macvtap: left promiscuous mode [ 695.209089][ T4058] veth0_macvtap: left promiscuous mode [ 695.217232][ T4058] veth1_vlan: left promiscuous mode [ 695.222961][ T4058] veth0_vlan: left promiscuous mode [ 695.315034][ T5797] Bluetooth: hci4: command tx timeout [ 695.943723][ T4058] team0 (unregistering): Port device team_slave_1 removed [ 695.969469][ T4058] team0 (unregistering): Port device team_slave_0 removed [ 696.413506][T11565] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2253'. [ 696.940024][T11590] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 697.378195][T11597] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2260'. [ 697.390566][ T5797] Bluetooth: hci4: command tx timeout [ 697.497038][T11517] bridge0: port 1(bridge_slave_0) entered blocking state [ 697.505080][T11517] bridge0: port 1(bridge_slave_0) entered disabled state [ 697.513464][T11517] bridge_slave_0: entered allmulticast mode [ 697.522603][T11517] bridge_slave_0: entered promiscuous mode [ 697.545374][T11517] bridge0: port 2(bridge_slave_1) entered blocking state [ 697.553341][T11517] bridge0: port 2(bridge_slave_1) entered disabled state [ 697.561320][T11517] bridge_slave_1: entered allmulticast mode [ 697.570344][T11517] bridge_slave_1: entered promiscuous mode [ 697.745229][ T4058] IPVS: stop unused estimator thread 0... [ 698.034388][T11517] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 698.105830][T11517] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 698.204440][T11607] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2264'. [ 698.522134][ T1883] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 698.641462][T11517] team0: Port device team_slave_0 added [ 698.698717][T11517] team0: Port device team_slave_1 added [ 698.701521][ T1883] usb 4-1: Using ep0 maxpacket: 32 [ 698.904637][ T1883] usb 4-1: unable to get BOS descriptor or descriptor too short [ 698.947247][ T1883] usb 4-1: unable to read config index 0 descriptor/start: -71 [ 698.955576][ T1883] usb 4-1: can't read configurations, error -71 [ 699.190599][T11517] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 699.200556][T11517] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 699.231111][T11517] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 699.247942][T11517] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 699.257886][T11517] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 699.286772][T11517] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 699.455115][T11517] hsr_slave_0: entered promiscuous mode [ 699.481859][ T5797] Bluetooth: hci4: command tx timeout [ 699.496762][T11517] hsr_slave_1: entered promiscuous mode [ 699.631161][T11517] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 699.638970][T11517] Cannot create hsr debugfs directory [ 699.934323][T11634] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2272'. [ 700.933653][T11647] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2278'. [ 701.726336][T11517] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 701.837338][T11517] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 702.053617][T11517] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 702.117071][T11517] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 702.402443][T11670] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2286'. [ 702.883553][T11673] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2289'. [ 702.901523][T11673] netlink: 104 bytes leftover after parsing attributes in process `syz.1.2289'. [ 702.912101][T11673] netlink: 104 bytes leftover after parsing attributes in process `syz.1.2289'. [ 703.177094][T11517] 8021q: adding VLAN 0 to HW filter on device bond0 [ 703.224167][T11517] 8021q: adding VLAN 0 to HW filter on device team0 [ 703.271784][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 703.279438][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 703.298038][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 703.305762][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 703.493939][T11681] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2292'. [ 703.795565][T11517] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 705.192600][T11517] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 705.562557][T11714] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2299'. [ 706.303565][T11728] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2304'. [ 707.947406][T11517] veth0_vlan: entered promiscuous mode [ 708.055348][T11517] veth1_vlan: entered promiscuous mode [ 708.542797][T11517] veth0_macvtap: entered promiscuous mode [ 708.598037][T11517] veth1_macvtap: entered promiscuous mode [ 708.734542][T11764] ===================================================== [ 708.741890][T11764] BUG: KMSAN: uninit-value in ax25cmp+0x3a5/0x470 [ 708.748525][T11764] ax25cmp+0x3a5/0x470 [ 708.752940][T11764] nr_dev_get+0x20e/0x450 [ 708.757555][T11764] nr_route_frame+0x1a2/0xfe0 [ 708.762558][T11764] nr_xmit+0x5a/0x1c0 [ 708.766723][T11764] dev_hard_start_xmit+0x247/0xa20 [ 708.772125][T11764] __dev_queue_xmit+0x3562/0x56d0 [ 708.777369][T11764] raw_sendmsg+0x64e/0xc10 [ 708.782083][T11764] ieee802154_sock_sendmsg+0x96/0xd0 [ 708.787579][T11764] __sock_sendmsg+0x30f/0x380 [ 708.792532][T11764] ____sys_sendmsg+0x903/0xb60 [ 708.797517][T11764] ___sys_sendmsg+0x28d/0x3c0 [ 708.799554][T11517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 708.802444][T11764] __sys_sendmmsg+0x4df/0x960 [ 708.814488][T11517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 708.817739][T11764] __ia32_compat_sys_sendmmsg+0xc8/0x140 [ 708.828568][T11517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 708.833433][T11764] ia32_sys_call+0x406a/0x40d0 [ 708.833585][T11764] __do_fast_syscall_32+0xb0/0x110 [ 708.833681][T11764] do_fast_syscall_32+0x38/0x80 [ 708.833773][T11764] do_SYSENTER_32+0x1f/0x30 [ 708.833864][T11764] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 708.834016][T11764] [ 708.834038][T11764] Uninit was created at: [ 708.834232][T11764] kmem_cache_alloc_node_noprof+0x6bf/0xb80 [ 708.834379][T11764] kmalloc_reserve+0x13d/0x4a0 [ 708.834499][T11764] __alloc_skb+0x363/0x7b0 [ 708.834606][T11764] alloc_skb_with_frags+0xc8/0xd00 [ 708.834733][T11764] sock_alloc_send_pskb+0xa81/0xbf0 [ 708.834870][T11764] raw_sendmsg+0x367/0xc10 [ 708.834979][T11764] ieee802154_sock_sendmsg+0x96/0xd0 [ 708.846891][T11517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 708.850337][T11764] __sock_sendmsg+0x30f/0x380 [ 708.855680][T11517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 708.860471][T11764] ____sys_sendmsg+0x903/0xb60 [ 708.865156][T11517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 708.871536][T11764] ___sys_sendmsg+0x28d/0x3c0 [ 708.871671][T11764] __sys_sendmmsg+0x4df/0x960 [ 708.874033][T11517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 708.878284][T11764] __ia32_compat_sys_sendmmsg+0xc8/0x140 [ 708.884449][T11517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 708.889116][T11764] ia32_sys_call+0x406a/0x40d0 [ 708.899676][T11517] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 708.904139][T11764] __do_fast_syscall_32+0xb0/0x110 [ 708.904246][T11764] do_fast_syscall_32+0x38/0x80 [ 708.919960][T11517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 708.923990][T11764] do_SYSENTER_32+0x1f/0x30 [ 708.924092][T11764] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 708.928753][T11517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 708.939276][T11764] [ 708.939328][T11764] CPU: 0 UID: 0 PID: 11764 Comm: syz.0.2314 Not tainted 6.12.0-rc7-syzkaller-00216-gf66d6acccbc0 #0 [ 708.939444][T11764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 708.944333][T11517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 708.954217][T11764] ===================================================== [ 708.954254][T11764] Disabling lock debugging due to kernel taint [ 708.954305][T11764] Kernel panic - not syncing: kmsan.panic set ... [ 708.954369][T11764] CPU: 0 UID: 0 PID: 11764 Comm: syz.0.2314 Tainted: G B 6.12.0-rc7-syzkaller-00216-gf66d6acccbc0 #0 [ 708.954511][T11764] Tainted: [B]=BAD_PAGE [ 708.954545][T11764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 708.954611][T11764] Call Trace: [ 708.954650][T11764] [ 708.954687][T11764] dump_stack_lvl+0x216/0x2d0 [ 708.954848][T11764] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 708.954968][T11764] dump_stack+0x1e/0x30 [ 708.955119][T11764] panic+0x4e2/0xcf0 [ 708.955266][T11764] ? kmsan_get_metadata+0x81/0x1c0 [ 708.955385][T11764] kmsan_report+0x2c7/0x2d0 [ 708.955489][T11764] ? _raw_spin_unlock_irqrestore+0x3f/0x60 [ 708.955635][T11764] ? __msan_warning+0x95/0x120 [ 708.955772][T11764] ? ax25cmp+0x3a5/0x470 [ 708.955902][T11764] ? nr_dev_get+0x20e/0x450 [ 708.956024][T11764] ? nr_route_frame+0x1a2/0xfe0 [ 708.956153][T11764] ? nr_xmit+0x5a/0x1c0 [ 708.956269][T11764] ? dev_hard_start_xmit+0x247/0xa20 [ 708.956398][T11764] ? __dev_queue_xmit+0x3562/0x56d0 [ 708.956528][T11764] ? raw_sendmsg+0x64e/0xc10 [ 708.956646][T11764] ? ieee802154_sock_sendmsg+0x96/0xd0 [ 708.956775][T11764] ? __sock_sendmsg+0x30f/0x380 [ 708.956883][T11764] ? ____sys_sendmsg+0x903/0xb60 [ 708.957020][T11764] ? ___sys_sendmsg+0x28d/0x3c0 [ 708.957156][T11764] ? __sys_sendmmsg+0x4df/0x960 [ 708.957294][T11764] ? __ia32_compat_sys_sendmmsg+0xc8/0x140 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 708.957453][T11764] ? ia32_sys_call+0x406a/0x40d0 [ 708.957607][T11764] ? __do_fast_syscall_32+0xb0/0x110 [ 708.957707][T11764] ? do_fast_syscall_32+0x38/0x80 [ 708.957803][T11764] ? do_SYSENTER_32+0x1f/0x30 [ 708.957897][T11764] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 708.958051][T11764] ? kmsan_slab_alloc+0xdf/0x160 [ 708.958191][T11764] ? kmem_cache_alloc_node_noprof+0x6bf/0xb80 [ 708.958343][T11764] ? kmalloc_reserve+0x13d/0x4a0 [ 708.958466][T11764] ? __alloc_skb+0x363/0x7b0 [ 708.958586][T11764] ? alloc_skb_with_frags+0xc8/0xd00 [ 708.958716][T11764] ? sock_alloc_send_pskb+0xa81/0xbf0 [ 708.958862][T11764] ? raw_sendmsg+0x367/0xc10 [ 708.958972][T11764] ? ieee802154_sock_sendmsg+0x96/0xd0 [ 708.959101][T11764] ? __sock_sendmsg+0x30f/0x380 [ 708.959205][T11764] ? ____sys_sendmsg+0x903/0xb60 [ 708.959339][T11764] ? ___sys_sendmsg+0x28d/0x3c0 [ 708.959475][T11764] ? __sys_sendmmsg+0x4df/0x960 [ 708.959616][T11764] ? __ia32_compat_sys_sendmmsg+0xc8/0x140 [ 708.959776][T11764] ? ia32_sys_call+0x406a/0x40d0 [ 708.959918][T11764] ? __do_fast_syscall_32+0xb0/0x110 [ 708.960021][T11764] ? do_fast_syscall_32+0x38/0x80 [ 709.344653][T11764] ? do_SYSENTER_32+0x1f/0x30 [ 709.349495][T11764] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 709.356214][T11764] ? kmsan_get_metadata+0x13e/0x1c0 [ 709.361595][T11764] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 709.367576][T11764] ? kmsan_get_metadata+0x13e/0x1c0 [ 709.372939][T11764] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 709.378914][T11764] ? kmsan_get_metadata+0x13e/0x1c0 [ 709.384276][T11764] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 709.390268][T11764] __msan_warning+0x95/0x120 [ 709.395054][T11764] ax25cmp+0x3a5/0x470 [ 709.399344][T11764] nr_dev_get+0x20e/0x450 [ 709.403863][T11764] nr_route_frame+0x1a2/0xfe0 [ 709.408727][T11764] ? validate_xmit_xfrm+0x8b/0x1bc0 [ 709.414140][T11764] ? kmsan_get_metadata+0x13e/0x1c0 [ 709.419512][T11764] nr_xmit+0x5a/0x1c0 [ 709.423664][T11764] ? __pfx_nr_xmit+0x10/0x10 [ 709.428429][T11764] dev_hard_start_xmit+0x247/0xa20 [ 709.433754][T11764] __dev_queue_xmit+0x3562/0x56d0 [ 709.438970][T11764] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 709.444953][T11764] ? _copy_from_iter+0x9ae/0x2b00 [ 709.450169][T11764] ? __dev_queue_xmit+0x355/0x56d0 [ 709.455507][T11764] raw_sendmsg+0x64e/0xc10 [ 709.460113][T11764] ? __pfx_raw_sendmsg+0x10/0x10 [ 709.465236][T11764] ieee802154_sock_sendmsg+0x96/0xd0 [ 709.470715][T11764] ? __pfx_ieee802154_sock_sendmsg+0x10/0x10 [ 709.476886][T11764] ? __pfx_ieee802154_sock_sendmsg+0x10/0x10 [ 709.483058][T11764] __sock_sendmsg+0x30f/0x380 [ 709.487912][T11764] ____sys_sendmsg+0x903/0xb60 [ 709.492896][T11764] ___sys_sendmsg+0x28d/0x3c0 [ 709.497770][T11764] ? kmsan_get_metadata+0x13e/0x1c0 [ 709.503137][T11764] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 709.509129][T11764] ? __rcu_read_unlock+0x7b/0xe0 [ 709.514273][T11764] ? __fget_files+0x4f5/0x5c0 [ 709.519150][T11764] ? kmsan_get_metadata+0x13e/0x1c0 [ 709.524514][T11764] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 709.530495][T11764] __sys_sendmmsg+0x4df/0x960 [ 709.535384][T11764] ? do_futex+0x341/0x4a0 [ 709.539892][T11764] ? kmsan_get_metadata+0x13e/0x1c0 [ 709.545267][T11764] ? kmsan_get_metadata+0x13e/0x1c0 [ 709.550639][T11764] __ia32_compat_sys_sendmmsg+0xc8/0x140 [ 709.556501][T11764] ia32_sys_call+0x406a/0x40d0 [ 709.561475][T11764] __do_fast_syscall_32+0xb0/0x110 [ 709.566759][T11764] ? irqentry_exit+0x16/0x60 [ 709.571548][T11764] do_fast_syscall_32+0x38/0x80 [ 709.576558][T11764] do_SYSENTER_32+0x1f/0x30 [ 709.581219][T11764] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 709.587770][T11764] RIP: 0023:0xf7faf579 [ 709.591970][T11764] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 709.611766][T11764] RSP: 002b:00000000f573655c EFLAGS: 00000206 ORIG_RAX: 0000000000000159 [ 709.620387][T11764] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200020c0 [ 709.628502][T11764] RDX: 0000000000000001 RSI: 0000000000000080 RDI: 0000000000000000 [ 709.636607][T11764] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 709.644708][T11764] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 709.652810][T11764] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 709.660932][T11764] [ 709.664359][T11764] Kernel Offset: disabled [ 709.668749][T11764] Rebooting in 86400 seconds..