last executing test programs: 7.832185608s ago: executing program 2 (id=61): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0x1000e, &(0x7f0000000300), 0x3, 0x445, &(0x7f0000000b00)="$eJzs28+PE1UcAPDvTLeLCLgr4g9+qKto3PhjlwVUDh7UaOIBExM96HGzuxCksIZdEyFEwRg8GWPi3Xj0X/CkF2M8mXjVuyEhhgvgqWbaGbYtbdktLUX6+SQD78282fe+nXnte/PaAEbWVPZPErE1Iv6MiIl6trnAVP2/q5fPLly7fHYhiWr13X+SWrkrl88uFEWL87bkmek0Iv0iid1t6l05feb4fKWydCrPz66e+Gh25fSZF46dmD+6dHTp5P5Dhw4emHv5pf0v9iXOrE1Xdn26vGfnWx988/bhr5rib4mjT6a6HXy6Wu1zdcO1rSGdjA2xIWxIKSKyy1Wu9f+JKMXaxZuINz8fauOAgapWq9UtnQ+fqwJ3sSSa87o8jIrigz6b/xZb6yDg1cENP4bu0mv1CVAW99V8qx8ZizQvU26Z3/bTVES8f+7f77ItBvMcAgCgyU/Z+Of5duO/NB5qKHdfvjY0GRH3R8T2iHggInZExIMRtbIPR8QjG6y/dZHkxvFPerGnwNYpG/+9kq9tNY//itFfTJby3LZa/OXkyLHK0r78NZmO8qYsP9eljp/f+OPrTscax3/ZltVfjAXzdlwc29R8zuL86vytxNzo0vmIXWPt4k+urwQkEbEzInb1WMexZ3/Y0+nYzePvog/rTNXvI56pX/9z0RJ/Iem+Pjl7T1SW9s0Wd8WNfvv9wjud6r+l+Psgu/73tr3/r8c/mTSu165svI4Lf33ZcU7T6/0/nrxXS4/n+z6ZX109NRcxnhyuN7px//61c4t8UT6Lf3pv+/6/PdZeid0Rkd3Ej0bEYxHxeN72JyLiyYjY2yX+X19/6sPe4x+sLP7FDV3/tcR4tO5pnygd/+XHpkonb4j/Wvfrf7CWms73rOf9bz3t6u1uBgAAgP+fNCK2RpLOXE+n6cxM/fvyOyLSyvLK6nNHlj8+uVj/jcBklNPiSddEw/PQuXxaX8+fj4j6VwuK4wfy58bfljbX8jMLy5XFYQcPI25Lh/6f+bs07NYBA+f3WjC69H8YXfo/jC79H0ZXm/6/eRjtAG6/dp//nw2hHcDt19L/LfvBCDH/h9Gl/8Po0v9hJK1sjpv/SL5rovhLPZ5+1yaifEc0Y2CJSO+IZkgMKDHc9yUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIB++S8AAP///fHg0g==") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000dc0)={'#! ', '', [{0x20, '\xbb\x93\xd9_\xc9\x05\xebG\xe5T2+A\x8c\xff\xdb\x83\xd2\xd0 F]\xc4\xb0\v.,dr\x14i\x98\n\xd9j\xcd\xf2\x1aL\x9d\x91\xeb\xce\xd5\x0e\xec\xf10\xbf\x82r\xa2\xdf\xc6M\xf4\xeb2\xa1 \xfb]w\x837\x04\x17B\x04p\xd0\x11\x14N\x96\xb8\xbb7\x83\xae\xd5{\'\xdcAo\xad\x8b\x86\x06\xab\xacKL\xe7\xa0j\x87\xa71U\xeeD\xda\xfcH==\xca\vmRN\x95p'}, {0x20, '\x04\x00\x00\x00\x00\x00\x00'}, {0x20, '\xbf'}, {0x20, 'p\x04\x00\x00\x00\x00\x00\x00\x00'}, {0x20, 'nodiscard'}]}, 0xa74e2d) 7.167742455s ago: executing program 3 (id=65): r0 = socket$inet6(0xa, 0x3, 0x6) bind$inet6(r0, &(0x7f0000000000)={0xa, 0xce22, 0x0, @mcast1, 0xb}, 0x1c) syz_emit_ethernet(0x4e, &(0x7f00000000c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd6000000000180600fe8000000000000000000000000000bbfe8000000000000000000000000000aa"], 0x0) 6.258819993s ago: executing program 2 (id=69): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090200000000000000000100000008000600ac1414aa08000b0077daa387"], 0x24}}, 0x0) 6.116402529s ago: executing program 3 (id=70): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000300)={0x14, 0x3, 0x1, 0x201, 0x0, 0x0, {0xa}}, 0x14}}, 0x0) sendmsg$NFT_MSG_GETRULE(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000d80)={0x14, 0x7, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0x3}}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x4804) 5.582048773s ago: executing program 1 (id=72): r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000100), 0x200, 0x0) ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000640)=0x10) mmap$dsp(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x100000b, 0x8012, r0, 0x0) 5.262482172s ago: executing program 0 (id=73): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000fdffffff03000000400001802c0004001400010002000000ac14140f000000000000000014000200020000000a01010200100000000000000d0001007564703a73"], 0x54}}, 0x0) 4.791835883s ago: executing program 3 (id=74): r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$smc(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$SMC_PNETID_DEL(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {0x2, 0x2, 0x2}, [@SMC_PNETID_IBNAME={0x9, 0x3, 'syz0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0xff}]}, 0x34}, 0x1, 0x40030000000000, 0x0, 0x40084}, 0x20000000) 4.596172186s ago: executing program 2 (id=76): mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0) madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17) mlockall(0x6) 4.515638388s ago: executing program 0 (id=77): r0 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000300)=@newqdisc={0x5c, 0x24, 0xd0f, 0x3, 0x0, {0x60, 0x0, 0x0, r1, {0x0, 0x2}, {0xffff, 0xffff}, {0x4}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x2c, 0x2, {{0x10, 0x3, 0x1, 0x3, 0x400, 0x8}, [@TCA_NETEM_DELAY_DIST={0xe, 0x2, "9f2b57f6fd6d293bfe5b"}]}}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x40001d4}, 0x8840) 4.332650749s ago: executing program 1 (id=78): r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000100)={0x1000000d}) 4.084650594s ago: executing program 4 (id=79): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000600), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RATE_GET(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x14, r1, 0x303, 0x0, 0x0, {0x3d}}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x0) 3.938641638s ago: executing program 3 (id=80): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x4000) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a94000000000a010800000000000000000200000708000240000000020900010073797a3000"], 0xbc}, 0x1, 0x0, 0x0, 0x24040800}, 0x0) 3.724359826s ago: executing program 0 (id=81): syz_mount_image$udf(&(0x7f0000000100), &(0x7f0000000500)='./file0\x00', 0x200000, &(0x7f00000004c0)=ANY=[@ANYRES32=0x0, @ANYRES16], 0x1, 0x495, &(0x7f0000000a40)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) open_by_handle_at(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="0c0000005100000005"], 0xd800) 3.388318553s ago: executing program 1 (id=82): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r0, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000500)=ANY=[@ANYBLOB="0200000003000134"], 0x8) 3.033884951s ago: executing program 4 (id=83): r0 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0) capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0xf, 0x0, 0x0, 0x4}) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) 2.900699246s ago: executing program 3 (id=84): syz_usb_connect(0x0, 0x24, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000da473f083b0902a1010001020301090212"], 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) futex(&(0x7f000000cffc), 0x3, 0x2, 0x0, &(0x7f0000000040), 0x0) 2.697005463s ago: executing program 2 (id=85): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)={0x18, r1, 0x1, 0x4, 0x0, {}, [@IPVS_CMD_ATTR_DAEMON={0x4}]}, 0x18}}, 0x20000000) 2.675741244s ago: executing program 0 (id=86): openat$adsp1(0xffffffffffffff9c, &(0x7f0000000100), 0x200, 0x0) r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000540), 0x42a00) ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r0, 0xc0505405, &(0x7f0000000580)={{0x3, 0x0, 0x1, 0x1, 0x1}, 0x5, 0xc, 0x400001}) 2.591938838s ago: executing program 1 (id=87): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000540)={0x6c, r1, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x58, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e24, 0x3, @mcast1, 0x9}}, {0x20, 0x2, @in6={0xa, 0x0, 0x0, @mcast1, 0x3}}}}]}]}, 0x6c}}, 0x0) 2.332978959s ago: executing program 4 (id=88): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000480), 0xc0d00) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x4058534c, &(0x7f0000000180)={0x80, 0x2b, 0x5, 0x0, 0xff, 0x105}) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x4058534c, &(0x7f0000000040)={0x80, 0x2b, 0x5, 0x0, 0x9, 0x8}) 2.069854596s ago: executing program 2 (id=89): syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x3014850, &(0x7f0000000000)={[{@noquota}, {@barrier_val={'barrier', 0x3d, 0x1003}}, {@errors_remount}, {@noauto_da_alloc}, {@dioread_lock}]}, 0x1, 0x4e4, &(0x7f0000002d40)="$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") setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f00000002c0)=ANY=[@ANYBLOB="0200000001000000000000000400000000000000100000000000000020"], 0x24, 0x0) removexattr(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)=@known='system.posix_acl_access\x00') 1.680950297s ago: executing program 1 (id=90): syz_mount_image$hfs(&(0x7f0000000080), &(0x7f0000000240)='./file0\x00', 0x200000, &(0x7f0000020c00)={[{@uid}, {@dir_umask={'dir_umask', 0x3d, 0x7}}, {@gid}, {@part={'part', 0x3d, 0x400}}, {@codepage={'codepage', 0x3d, 'iso8859-3'}}, {}, {@iocharset={'iocharset', 0x3d, 'macgreek'}}, {@creator={'creator', 0x3d, "b6b72a1e"}}, {@gid}]}, 0x4, 0x337, &(0x7f0000000540)="$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") setresuid(0x0, 0xee00, 0x0) utimes(&(0x7f00000000c0)='./file0\x00', 0x0) 1.598684255s ago: executing program 4 (id=91): mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='hugetlbfs\x00', 0x0, 0x0) mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x820061, &(0x7f00000002c0)={[{@mode={'mode', 0x3d, 0x7f}}]}) 1.456652366s ago: executing program 0 (id=92): r0 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) r1 = socket$netlink(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_PORT_GET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000005780)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01000000000000000000350000000e0001"], 0x64}}, 0x0) 795.182599ms ago: executing program 0 (id=93): r0 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IPVS_CMD_NEW_DAEMON(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01000000000000000000090000003c0003"], 0x50}}, 0x0) 704.96632ms ago: executing program 4 (id=94): sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{0x0, 0x18}], 0x1}, 0x0) r0 = syz_io_uring_setup(0x10c, &(0x7f0000000240)={0x0, 0xffeffffe, 0x3000, 0x3, 0x108}, &(0x7f00000001c0), &(0x7f00000000c0)) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x21, &(0x7f0000000000), 0x1) 645.047525ms ago: executing program 1 (id=95): r0 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x42, 0x2, 0x2}, 0x10) sendmsg$tipc(r0, &(0x7f0000002340)={&(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x4, 0x4}}, 0x10, 0x0}, 0x0) 628.729691ms ago: executing program 2 (id=96): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f0000000000)=@updpolicy={0xb8, 0x19, 0x1, 0x70bd2a, 0x0, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @in6=@dev={0xfe, 0x80, '\x00', 0x2f}, 0x0, 0x0, 0x4e24, 0x0, 0x2}, {0xfffffffffffffff2, 0xa9, 0x0, 0x2, 0x0, 0xfffff7ffffffffff, 0x0, 0xfffffffffffffffd}, {0x2cf, 0xa04, 0x40800000000000}, 0x0, 0x6e6bc0}}, 0xb8}}, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000240)={@local, @broadcast, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @empty, @empty}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x10}}}}}}, 0x0) 519.639142ms ago: executing program 3 (id=97): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x70, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x40, 0x1, 0x0, 0x1, @byteorder={{0xe}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_BYTEORDER_SREG={0x8, 0x1, 0x1, 0x0, 0xb}, @NFTA_BYTEORDER_DREG={0x8}, @NFTA_BYTEORDER_LEN={0x8}, @NFTA_BYTEORDER_OP={0x8}, @NFTA_BYTEORDER_SIZE={0x8, 0x5, 0x1, 0x0, 0x54}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x98}}, 0x0) 0s ago: executing program 4 (id=98): r0 = syz_init_net_socket$llc(0x1a, 0x2, 0x0) bind$llc(r0, &(0x7f0000000040)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x10) getpeername$llc(r0, 0x0, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.69' (ED25519) to the list of known hosts. [ 202.860928][ T5786] cgroup: Unknown subsys name 'net' [ 203.011522][ T5786] cgroup: Unknown subsys name 'cpuset' [ 203.028301][ T5786] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 229.710000][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 229.716961][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.876287][ T5786] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 262.564570][ T5811] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 262.575203][ T5811] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 262.592604][ T5811] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 262.603057][ T5811] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 262.625886][ T5813] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 262.637373][ T5813] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 262.647689][ T5818] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 262.657173][ T5818] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 262.658736][ T5820] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 262.677247][ T5822] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 262.690407][ T5825] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 262.692025][ T5820] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 262.704144][ T5825] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 262.706051][ T5820] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 262.716045][ T5825] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 262.730536][ T5825] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 262.730687][ T5820] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 262.743881][ T5825] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 262.745935][ T5820] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 262.757174][ T5825] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 262.764546][ T5820] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 262.815360][ T5825] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 262.830086][ T49] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 262.840434][ T49] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 262.853333][ T49] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 264.378776][ T5809] chnl_net:caif_netlink_parms(): no params data found [ 264.507555][ T5808] chnl_net:caif_netlink_parms(): no params data found [ 264.733505][ T5817] chnl_net:caif_netlink_parms(): no params data found [ 264.830443][ T5825] Bluetooth: hci1: command tx timeout [ 264.836496][ T5825] Bluetooth: hci4: command tx timeout [ 264.910469][ T5811] Bluetooth: hci2: command tx timeout [ 264.916197][ T5811] Bluetooth: hci0: command tx timeout [ 264.974938][ T5825] Bluetooth: hci3: command tx timeout [ 265.432609][ T5812] chnl_net:caif_netlink_parms(): no params data found [ 265.667063][ T5824] chnl_net:caif_netlink_parms(): no params data found [ 265.732751][ T5808] bridge0: port 1(bridge_slave_0) entered blocking state [ 265.740609][ T5808] bridge0: port 1(bridge_slave_0) entered disabled state [ 265.748200][ T5808] bridge_slave_0: entered allmulticast mode [ 265.757768][ T5808] bridge_slave_0: entered promiscuous mode [ 265.837455][ T5809] bridge0: port 1(bridge_slave_0) entered blocking state [ 265.845252][ T5809] bridge0: port 1(bridge_slave_0) entered disabled state [ 265.853272][ T5809] bridge_slave_0: entered allmulticast mode [ 265.863429][ T5809] bridge_slave_0: entered promiscuous mode [ 265.925903][ T5808] bridge0: port 2(bridge_slave_1) entered blocking state [ 265.933996][ T5808] bridge0: port 2(bridge_slave_1) entered disabled state [ 265.942231][ T5808] bridge_slave_1: entered allmulticast mode [ 265.952087][ T5808] bridge_slave_1: entered promiscuous mode [ 266.013114][ T5809] bridge0: port 2(bridge_slave_1) entered blocking state [ 266.020997][ T5809] bridge0: port 2(bridge_slave_1) entered disabled state [ 266.028803][ T5809] bridge_slave_1: entered allmulticast mode [ 266.044213][ T5809] bridge_slave_1: entered promiscuous mode [ 266.371591][ T5808] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 266.389732][ T5817] bridge0: port 1(bridge_slave_0) entered blocking state [ 266.397774][ T5817] bridge0: port 1(bridge_slave_0) entered disabled state [ 266.408123][ T5817] bridge_slave_0: entered allmulticast mode [ 266.420233][ T5817] bridge_slave_0: entered promiscuous mode [ 266.447289][ T5808] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 266.468491][ T5809] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 266.663065][ T5817] bridge0: port 2(bridge_slave_1) entered blocking state [ 266.675905][ T5817] bridge0: port 2(bridge_slave_1) entered disabled state [ 266.683947][ T5817] bridge_slave_1: entered allmulticast mode [ 266.693985][ T5817] bridge_slave_1: entered promiscuous mode [ 266.717342][ T5809] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 266.889202][ T5808] team0: Port device team_slave_0 added [ 266.891292][ T5825] Bluetooth: hci4: command tx timeout [ 266.897848][ T5811] Bluetooth: hci1: command tx timeout [ 266.984442][ T5811] Bluetooth: hci0: command tx timeout [ 266.993012][ T5825] Bluetooth: hci2: command tx timeout [ 267.049303][ T5808] team0: Port device team_slave_1 added [ 267.055428][ T5811] Bluetooth: hci3: command tx timeout [ 267.187427][ T5817] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 267.233992][ T5812] bridge0: port 1(bridge_slave_0) entered blocking state [ 267.241846][ T5812] bridge0: port 1(bridge_slave_0) entered disabled state [ 267.249536][ T5812] bridge_slave_0: entered allmulticast mode [ 267.260041][ T5812] bridge_slave_0: entered promiscuous mode [ 267.316278][ T5809] team0: Port device team_slave_0 added [ 267.324396][ T5824] bridge0: port 1(bridge_slave_0) entered blocking state [ 267.332120][ T5824] bridge0: port 1(bridge_slave_0) entered disabled state [ 267.340501][ T5824] bridge_slave_0: entered allmulticast mode [ 267.350460][ T5824] bridge_slave_0: entered promiscuous mode [ 267.375545][ T5817] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 267.421173][ T5812] bridge0: port 2(bridge_slave_1) entered blocking state [ 267.428985][ T5812] bridge0: port 2(bridge_slave_1) entered disabled state [ 267.437139][ T5812] bridge_slave_1: entered allmulticast mode [ 267.446996][ T5812] bridge_slave_1: entered promiscuous mode [ 267.462226][ T5808] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 267.469499][ T5808] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 267.496028][ T5808] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 267.516695][ T5809] team0: Port device team_slave_1 added [ 267.526913][ T5808] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 267.534576][ T5808] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 267.561345][ T5808] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 267.575037][ T5824] bridge0: port 2(bridge_slave_1) entered blocking state [ 267.582842][ T5824] bridge0: port 2(bridge_slave_1) entered disabled state [ 267.590849][ T5824] bridge_slave_1: entered allmulticast mode [ 267.600833][ T5824] bridge_slave_1: entered promiscuous mode [ 267.798152][ T5809] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 267.805837][ T5809] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 267.833249][ T5809] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 268.025410][ T5812] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 268.037458][ T5809] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 268.045206][ T5809] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 268.071757][ T5809] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 268.115927][ T5824] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 268.141229][ T5824] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 268.156482][ T5817] team0: Port device team_slave_0 added [ 268.219211][ T5812] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 268.276654][ T5817] team0: Port device team_slave_1 added [ 268.530664][ T5808] hsr_slave_0: entered promiscuous mode [ 268.541238][ T5808] hsr_slave_1: entered promiscuous mode [ 268.601662][ T5812] team0: Port device team_slave_0 added [ 268.617841][ T5824] team0: Port device team_slave_0 added [ 268.628679][ T5817] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 268.636107][ T5817] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 268.662612][ T5817] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 268.680157][ T5817] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 268.687387][ T5817] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 268.713882][ T5817] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 268.772392][ T5812] team0: Port device team_slave_1 added [ 268.787714][ T5824] team0: Port device team_slave_1 added [ 268.937752][ T5809] hsr_slave_0: entered promiscuous mode [ 268.948206][ T5809] hsr_slave_1: entered promiscuous mode [ 268.957107][ T5809] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 268.965143][ T5809] Cannot create hsr debugfs directory [ 268.970181][ T5811] Bluetooth: hci1: command tx timeout [ 268.976880][ T5825] Bluetooth: hci4: command tx timeout [ 269.050476][ T5825] Bluetooth: hci2: command tx timeout [ 269.051694][ T5811] Bluetooth: hci0: command tx timeout [ 269.058739][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 269.069314][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 269.095790][ T5824] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 269.114492][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 269.121842][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 269.136904][ T5825] Bluetooth: hci3: command tx timeout [ 269.148659][ T5824] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 269.337515][ T5812] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 269.344889][ T5812] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 269.371484][ T5812] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 269.540046][ T5812] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 269.547300][ T5812] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 269.574483][ T5812] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 269.656407][ T5817] hsr_slave_0: entered promiscuous mode [ 269.666766][ T5817] hsr_slave_1: entered promiscuous mode [ 269.675408][ T5817] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 269.683323][ T5817] Cannot create hsr debugfs directory [ 270.065093][ T5824] hsr_slave_0: entered promiscuous mode [ 270.075548][ T5824] hsr_slave_1: entered promiscuous mode [ 270.084691][ T5824] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 270.092726][ T5824] Cannot create hsr debugfs directory [ 270.210228][ T5812] hsr_slave_0: entered promiscuous mode [ 270.220737][ T5812] hsr_slave_1: entered promiscuous mode [ 270.229609][ T5812] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 270.237658][ T5812] Cannot create hsr debugfs directory [ 271.051531][ T5825] Bluetooth: hci4: command tx timeout [ 271.057354][ T5825] Bluetooth: hci1: command tx timeout [ 271.109170][ T5809] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 271.130359][ T5825] Bluetooth: hci2: command tx timeout [ 271.135790][ T5811] Bluetooth: hci0: command tx timeout [ 271.212865][ T5811] Bluetooth: hci3: command tx timeout [ 271.219477][ T5809] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 271.336381][ T5809] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 271.423776][ T5809] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 271.545615][ T5808] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 271.650499][ T5808] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 271.746997][ T5808] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 271.767968][ T5808] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 271.964325][ T5817] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 271.991399][ T5817] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 272.024878][ T5817] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 272.089182][ T5824] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 272.119301][ T5824] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 272.148343][ T5817] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 272.208842][ T5824] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 272.306000][ T5824] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 272.584281][ T5812] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 272.651464][ T5812] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 272.706082][ T5812] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 272.742067][ T5812] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 273.236050][ T5809] 8021q: adding VLAN 0 to HW filter on device bond0 [ 273.324109][ T5809] 8021q: adding VLAN 0 to HW filter on device team0 [ 273.403075][ T1850] bridge0: port 1(bridge_slave_0) entered blocking state [ 273.410866][ T1850] bridge0: port 1(bridge_slave_0) entered forwarding state [ 273.436634][ T5808] 8021q: adding VLAN 0 to HW filter on device bond0 [ 273.517062][ T1850] bridge0: port 2(bridge_slave_1) entered blocking state [ 273.524811][ T1850] bridge0: port 2(bridge_slave_1) entered forwarding state [ 273.751258][ T5808] 8021q: adding VLAN 0 to HW filter on device team0 [ 273.876914][ T5817] 8021q: adding VLAN 0 to HW filter on device bond0 [ 273.961015][ T1850] bridge0: port 1(bridge_slave_0) entered blocking state [ 273.968805][ T1850] bridge0: port 1(bridge_slave_0) entered forwarding state [ 274.028114][ T5809] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 274.068637][ T5824] 8021q: adding VLAN 0 to HW filter on device bond0 [ 274.118681][ T1850] bridge0: port 2(bridge_slave_1) entered blocking state [ 274.126473][ T1850] bridge0: port 2(bridge_slave_1) entered forwarding state [ 274.347574][ T5817] 8021q: adding VLAN 0 to HW filter on device team0 [ 274.372605][ T5812] 8021q: adding VLAN 0 to HW filter on device bond0 [ 274.413470][ T1850] bridge0: port 1(bridge_slave_0) entered blocking state [ 274.421289][ T1850] bridge0: port 1(bridge_slave_0) entered forwarding state [ 274.444004][ T5824] 8021q: adding VLAN 0 to HW filter on device team0 [ 274.557351][ T1850] bridge0: port 2(bridge_slave_1) entered blocking state [ 274.565225][ T1850] bridge0: port 2(bridge_slave_1) entered forwarding state [ 274.647808][ T5812] 8021q: adding VLAN 0 to HW filter on device team0 [ 274.775812][ T1850] bridge0: port 1(bridge_slave_0) entered blocking state [ 274.783761][ T1850] bridge0: port 1(bridge_slave_0) entered forwarding state [ 274.818543][ T1850] bridge0: port 2(bridge_slave_1) entered blocking state [ 274.826308][ T1850] bridge0: port 2(bridge_slave_1) entered forwarding state [ 274.867032][ T1850] bridge0: port 1(bridge_slave_0) entered blocking state [ 274.874875][ T1850] bridge0: port 1(bridge_slave_0) entered forwarding state [ 275.088637][ T5824] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 275.101186][ T5824] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 275.223078][ T1850] bridge0: port 2(bridge_slave_1) entered blocking state [ 275.230949][ T1850] bridge0: port 2(bridge_slave_1) entered forwarding state [ 275.494998][ T5812] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 275.506256][ T5812] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 276.317435][ T5809] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 277.001450][ T5809] veth0_vlan: entered promiscuous mode [ 277.106523][ T5809] veth1_vlan: entered promiscuous mode [ 277.221916][ T5808] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 277.506204][ T5809] veth0_macvtap: entered promiscuous mode [ 277.538394][ T5817] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 277.608176][ T5809] veth1_macvtap: entered promiscuous mode [ 277.806235][ T5824] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 277.897599][ T5812] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 277.928397][ T5809] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 277.991487][ T5808] veth0_vlan: entered promiscuous mode [ 278.033039][ T5809] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 278.167097][ T5808] veth1_vlan: entered promiscuous mode [ 278.195158][ T5809] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 278.205696][ T5809] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 278.216586][ T5809] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 278.225829][ T5809] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 278.409631][ T5817] veth0_vlan: entered promiscuous mode [ 278.488565][ T5817] veth1_vlan: entered promiscuous mode [ 278.686781][ T5808] veth0_macvtap: entered promiscuous mode [ 278.752694][ T5824] veth0_vlan: entered promiscuous mode [ 278.775278][ T5808] veth1_macvtap: entered promiscuous mode [ 278.923599][ T5824] veth1_vlan: entered promiscuous mode [ 279.028069][ T5808] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 279.071203][ T5808] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 279.082956][ T5817] veth0_macvtap: entered promiscuous mode [ 279.126115][ T5817] veth1_macvtap: entered promiscuous mode [ 279.162579][ T5808] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 279.172049][ T5808] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 279.181452][ T5808] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 279.190831][ T5808] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 279.337108][ T5817] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 279.408600][ T5824] veth0_macvtap: entered promiscuous mode [ 279.457937][ T5817] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 279.547207][ T5824] veth1_macvtap: entered promiscuous mode [ 279.580952][ T5817] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 279.590365][ T5817] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 279.599460][ T5817] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 279.608930][ T5817] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 279.736302][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 279.846456][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 279.978635][ T5824] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 279.988046][ T5824] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 279.998093][ T5824] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 280.007426][ T5824] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 281.088716][ T5812] veth0_vlan: entered promiscuous mode [ 281.245338][ T5812] veth1_vlan: entered promiscuous mode [ 281.585794][ T5812] veth0_macvtap: entered promiscuous mode [ 281.665878][ T5812] veth1_macvtap: entered promiscuous mode [ 281.890793][ T5812] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 282.013513][ T5812] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 282.145107][ T5812] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 282.154442][ T5812] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 282.164066][ T5812] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 282.173502][ T5812] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 286.321573][ T3590] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 286.332118][ T3590] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 286.578650][ T3590] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 286.587869][ T3590] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 287.042033][ T5809] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 287.360037][ T4176] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 287.368229][ T4176] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 287.685579][ T3786] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 287.694331][ T3786] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 287.824490][ T5992] loop1: detected capacity change from 0 to 1024 [ 287.865680][ T5992] ======================================================= [ 287.865680][ T5992] WARNING: The mand mount option has been deprecated and [ 287.865680][ T5992] and is ignored by this kernel. Remove the mand [ 287.865680][ T5992] option from the mount to silence this warning. [ 287.865680][ T5992] ======================================================= [ 287.903674][ T5992] EXT4-fs: Ignoring removed nobh option [ 287.909679][ T5992] EXT4-fs: Ignoring removed bh option [ 288.003501][ T3677] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 288.012541][ T3677] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 288.105305][ T3003] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 288.113661][ T3003] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 288.276953][ T5992] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 288.420596][ T4064] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 288.428739][ T4064] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 288.465963][ T1850] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 288.479100][ T1850] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 288.846836][ T6003] Bluetooth: MGMT ver 1.23 [ 288.870913][ T5809] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 289.374851][ T6009] loop2: detected capacity change from 0 to 128 [ 290.092682][ T4008] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 290.101595][ T4008] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 290.415442][ T3786] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 290.430433][ T3786] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 291.152172][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 291.159357][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 291.760892][ T6035] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 291.867967][ T6038] loop0: detected capacity change from 0 to 128 [ 291.909477][ T6039] lo speed is unknown, defaulting to 1000 [ 291.916478][ T6039] lo speed is unknown, defaulting to 1000 [ 291.924193][ T6039] lo speed is unknown, defaulting to 1000 [ 291.943626][ T6039] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 291.997629][ T6039] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 292.113167][ T6039] lo speed is unknown, defaulting to 1000 [ 292.122813][ T6039] lo speed is unknown, defaulting to 1000 [ 292.132240][ T6039] lo speed is unknown, defaulting to 1000 [ 292.141737][ T6039] lo speed is unknown, defaulting to 1000 [ 292.151697][ T6039] lo speed is unknown, defaulting to 1000 [ 293.670548][ T6045] loop3: detected capacity change from 0 to 32768 [ 293.865593][ T6045] o2cb: This node has not been configured. [ 293.871794][ T6045] o2cb: Cluster check failed. Fix errors before retrying. [ 293.879237][ T6045] (syz.3.16,6045,1):ocfs2_dlm_init:3354 ERROR: status = -22 [ 293.887768][ T6045] (syz.3.16,6045,1):ocfs2_mount_volume:1735 ERROR: status = -22 [ 293.910838][ T6045] (syz.3.16,6045,1):ocfs2_fill_super:1177 ERROR: status = -22 [ 294.863780][ T6060] loop2: detected capacity change from 0 to 512 [ 294.960515][ T6060] EXT4-fs: Invalid want_extra_isize 759 [ 296.883979][ T6073] loop2: detected capacity change from 0 to 32768 [ 297.085396][ T6073] (syz.2.30,6073,0):ocfs2_check_set_options:1259 ERROR: Group quotas were requested, but this filesystem does not have the feature enabled. [ 297.108358][ T6073] (syz.2.30,6073,0):ocfs2_fill_super:1177 ERROR: status = -22 [ 299.546531][ T6106] loop3: detected capacity change from 0 to 64 [ 300.794423][ T6122] loop1: detected capacity change from 0 to 512 [ 300.950209][ T6122] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2848: Unable to expand inode 17. Delete some EAs or run e2fsck. [ 300.963824][ T6122] EXT4-fs (loop1): 1 truncate cleaned up [ 300.974774][ T6122] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 301.551710][ T6130] netlink: 16 bytes leftover after parsing attributes in process `syz.0.55'. [ 301.711082][ T5809] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 301.728007][ T6132] loop2: detected capacity change from 0 to 64 [ 302.291549][ T6140] capability: warning: `syz.1.57' uses deprecated v2 capabilities in a way that may be insecure [ 302.327658][ T6135] loop3: detected capacity change from 0 to 512 [ 302.360925][ T6139] netlink: 8 bytes leftover after parsing attributes in process `syz.0.60'. [ 302.373217][ T6135] EXT4-fs: Ignoring removed bh option [ 302.438838][ T6135] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 302.551548][ T6135] EXT4-fs (loop3): 1 truncate cleaned up [ 302.561544][ T6135] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 302.906780][ T6145] loop2: detected capacity change from 0 to 512 [ 303.000590][ T6145] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 303.014627][ T6145] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 303.164065][ T5824] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 303.214353][ T6145] EXT4-fs (loop2): 1 truncate cleaned up [ 303.226591][ T6145] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 304.074014][ T5817] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 305.222521][ T6172] tipc: Started in network mode [ 305.227955][ T6172] tipc: Node identity ac14140f, cluster identity 4711 [ 305.236049][ T6172] tipc: New replicast peer: 10.1.1.2 [ 305.243134][ T6172] tipc: Enabled bearer , priority 10 [ 306.494973][ T5868] tipc: Node number set to 2886997007 [ 306.766311][ T6188] loop0: detected capacity change from 0 to 128 [ 306.801280][ T6189] netlink: 108 bytes leftover after parsing attributes in process `syz.3.80'. [ 306.984979][ T6188] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 307.089405][ T6188] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 308.051158][ T5868] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 308.121029][ T6202] tipc: Started in network mode [ 308.126533][ T6202] tipc: Node identity ff010000000000000000000000000001, cluster identity 4711 [ 308.138713][ T6202] tipc: Enabling of bearer rejected, failed to enable media [ 308.260418][ T5868] usb 4-1: Using ep0 maxpacket: 8 [ 308.323027][ T5868] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 308.334469][ T5868] usb 4-1: config 0 has no interfaces? [ 308.388653][ T5868] usb 4-1: New USB device found, idVendor=093b, idProduct=a102, bcdDevice= 0.01 [ 308.399121][ T5868] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 308.407984][ T5868] usb 4-1: Product: syz [ 308.418271][ T5868] usb 4-1: Manufacturer: syz [ 308.428848][ T5868] usb 4-1: SerialNumber: syz [ 308.576922][ T5868] usb 4-1: config 0 descriptor?? [ 308.791307][ T6206] loop2: detected capacity change from 0 to 512 [ 308.877440][ T5868] usb 4-1: USB disconnect, device number 2 [ 308.935071][ T6206] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 308.948833][ T6206] ext4 filesystem being mounted at /15/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 308.982382][ T6211] loop1: detected capacity change from 0 to 64 [ 309.054083][ T6216] netlink: 64 bytes leftover after parsing attributes in process `syz.0.92'. [ 309.080788][ T6206] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 309.190133][ T6206] EXT4-fs (loop2): Remounting filesystem read-only [ 309.662936][ T5817] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 309.692585][ T3003] Quota error (device loop2): dquot_write_dquot: Can't write quota structure (error -30). Quota may get out of sync! [ 309.706621][ T3003] Quota error (device loop2): dquot_write_dquot: Can't write quota structure (error -30). Quota may get out of sync! [ 310.146713][ T6222] netlink: 56 bytes leftover after parsing attributes in process `syz.0.93'. [ 310.261415][ T4176] ===================================================== [ 310.268755][ T4176] BUG: KMSAN: uninit-value in xas_load+0xd20/0xd70 [ 310.275933][ T4176] xas_load+0xd20/0xd70 [ 310.284512][ T4176] xas_find+0x2c8/0xd40 [ 310.303683][ T4176] xa_find+0x15a/0x2a0 [ 310.308047][ T4176] io_unregister_zcrx_ifqs+0x75/0x1d0 [ 310.313899][ T4176] io_ring_ctx_free+0x61/0x740 [ 310.319020][ T4176] io_ring_exit_work+0xdec/0xe20 [ 310.325309][ T4176] process_scheduled_works+0xb8e/0x1d80 [ 310.344634][ T4176] worker_thread+0xedf/0x1590 [ 310.349683][ T4176] kthread+0xd5c/0xf00 [ 310.359246][ T4176] ret_from_fork+0x1e3/0x310 [ 310.364207][ T4176] ret_from_fork_asm+0x1a/0x30 [ 310.369290][ T4176] [ 310.373476][ T4176] Uninit was stored to memory at: [ 310.378878][ T4176] xa_find+0x26c/0x2a0 [ 310.383812][ T4176] io_unregister_zcrx_ifqs+0x75/0x1d0 [ 310.397575][ T4176] io_ring_ctx_free+0x61/0x740 [ 310.405205][ T4176] io_ring_exit_work+0xdec/0xe20 [ 310.411433][ T4176] process_scheduled_works+0xb8e/0x1d80 [ 310.417290][ T4176] worker_thread+0xedf/0x1590 [ 310.422438][ T4176] kthread+0xd5c/0xf00 [ 310.426772][ T4176] ret_from_fork+0x1e3/0x310 [ 310.431707][ T4176] ret_from_fork_asm+0x1a/0x30 [ 310.436764][ T4176] [ 310.439235][ T4176] Local variable id created at: [ 310.444344][ T4176] io_unregister_zcrx_ifqs+0x3d/0x1d0 [ 310.450086][ T4176] io_ring_ctx_free+0x61/0x740 [ 310.455126][ T4176] [ 310.457728][ T4176] CPU: 1 UID: 0 PID: 4176 Comm: kworker/u8:26 Not tainted 6.15.0-syzkaller-12426-ge271ed52b344 #0 PREEMPT(undef) [ 310.470566][ T4176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 310.481118][ T4176] Workqueue: iou_exit io_ring_exit_work [ 310.486988][ T4176] ===================================================== [ 310.501980][ T4176] Disabling lock debugging due to kernel taint [ 310.508426][ T4176] Kernel panic - not syncing: kmsan.panic set ... [ 310.515163][ T4176] CPU: 1 UID: 0 PID: 4176 Comm: kworker/u8:26 Tainted: G B 6.15.0-syzkaller-12426-ge271ed52b344 #0 PREEMPT(undef) [ 310.529095][ T4176] Tainted: [B]=BAD_PAGE [ 310.533415][ T4176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 310.543978][ T4176] Workqueue: iou_exit io_ring_exit_work [ 310.550010][ T4176] Call Trace: [ 310.553473][ T4176] [ 310.556589][ T4176] __dump_stack+0x26/0x30 [ 310.561207][ T4176] dump_stack_lvl+0x53/0x270 [ 310.566357][ T4176] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 310.572494][ T4176] dump_stack+0x1e/0x25 [ 310.576933][ T4176] panic+0x4bd/0xd50 [ 310.581161][ T4176] kmsan_report+0x31c/0x320 [ 310.585979][ T4176] ? __msan_warning+0x1b/0x30 [ 310.590981][ T4176] ? xas_load+0xd20/0xd70 [ 310.595660][ T4176] ? xas_find+0x2c8/0xd40 [ 310.600249][ T4176] ? xa_find+0x15a/0x2a0 [ 310.604766][ T4176] ? io_unregister_zcrx_ifqs+0x75/0x1d0 [ 310.610589][ T4176] ? io_ring_ctx_free+0x61/0x740 [ 310.615807][ T4176] ? io_ring_exit_work+0xdec/0xe20 [ 310.621191][ T4176] ? process_scheduled_works+0xb8e/0x1d80 [ 310.627221][ T4176] ? worker_thread+0xedf/0x1590 [ 310.632387][ T4176] ? kthread+0xd5c/0xf00 [ 310.636971][ T4176] ? ret_from_fork+0x1e3/0x310 [ 310.641987][ T4176] ? ret_from_fork_asm+0x1a/0x30 [ 310.647236][ T4176] ? _raw_spin_unlock_irqrestore+0x3f/0x60 [ 310.653315][ T4176] ? stack_depot_save_flags+0x60f/0x7b0 [ 310.659585][ T4176] ? stack_depot_save+0x12/0x20 [ 310.664695][ T4176] ? kmsan_internal_chain_origin+0xb6/0xd0 [ 310.670810][ T4176] ? kmsan_internal_chain_origin+0x5d/0xd0 [ 310.676931][ T4176] ? __msan_chain_origin+0xc3/0x140 [ 310.682413][ T4176] ? xa_find+0x26c/0x2a0 [ 310.686976][ T4176] ? io_unregister_zcrx_ifqs+0x75/0x1d0 [ 310.692791][ T4176] ? io_ring_ctx_free+0x61/0x740 [ 310.698013][ T4176] ? io_ring_exit_work+0xdec/0xe20 [ 310.703403][ T4176] ? process_scheduled_works+0xb8e/0x1d80 [ 310.709446][ T4176] ? worker_thread+0xedf/0x1590 [ 310.714595][ T4176] ? kthread+0xd5c/0xf00 [ 310.719072][ T4176] ? ret_from_fork+0x1e3/0x310 [ 310.724075][ T4176] ? ret_from_fork_asm+0x1a/0x30 [ 310.729311][ T4176] ? kmsan_get_metadata+0xfb/0x160 [ 310.734741][ T4176] ? io_sqe_files_unregister+0xea/0x120 [ 310.740570][ T4176] __msan_warning+0x1b/0x30 [ 310.745432][ T4176] xas_load+0xd20/0xd70 [ 310.749850][ T4176] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 310.756253][ T4176] ? kmsan_get_metadata+0xfb/0x160 [ 310.761852][ T4176] ? io_sqe_files_unregister+0xea/0x120 [ 310.767779][ T4176] ? io_sqe_files_unregister+0xea/0x120 [ 310.773632][ T4176] xas_find+0x2c8/0xd40 [ 310.778413][ T4176] ? kmsan_get_metadata+0xfb/0x160 [ 310.783864][ T4176] ? kmsan_get_metadata+0xfb/0x160 [ 310.789384][ T4176] ? io_sqe_files_unregister+0xea/0x120 [ 310.795249][ T4176] ? io_sqe_files_unregister+0xea/0x120 [ 310.801077][ T4176] xa_find+0x15a/0x2a0 [ 310.805417][ T4176] ? io_sqe_files_unregister+0xea/0x120 [ 310.811260][ T4176] io_unregister_zcrx_ifqs+0x75/0x1d0 [ 310.817075][ T4176] ? io_sqe_files_unregister+0xea/0x120 [ 310.822933][ T4176] io_ring_ctx_free+0x61/0x740 [ 310.827975][ T4176] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 310.834114][ T4176] io_ring_exit_work+0xdec/0xe20 [ 310.839426][ T4176] ? __pfx_io_tctx_exit_cb+0x10/0x10 [ 310.845014][ T4176] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 310.851675][ T4176] ? __pfx_io_ring_exit_work+0x10/0x10 [ 310.857454][ T4176] process_scheduled_works+0xb8e/0x1d80 [ 310.863366][ T4176] worker_thread+0xedf/0x1590 [ 310.868433][ T4176] kthread+0xd5c/0xf00 [ 310.872706][ T4176] ? __pfx_worker_thread+0x10/0x10 [ 310.878123][ T4176] ? __pfx_kthread+0x10/0x10 [ 310.882944][ T4176] ret_from_fork+0x1e3/0x310 [ 310.887768][ T4176] ? __pfx_kthread+0x10/0x10 [ 310.892577][ T4176] ret_from_fork_asm+0x1a/0x30 [ 310.897697][ T4176] [ 310.901216][ T4176] Kernel Offset: disabled [ 310.905940][ T4176] Rebooting in 86400 seconds..