last executing test programs: 32.821596084s ago: executing program 3 (id=475): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0) r2 = dup3(r1, r0, 0x0) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$BINDER_THREAD_EXIT(r2, 0x40046208, 0x0) 32.006264118s ago: executing program 3 (id=476): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x441, 0x0) r1 = syz_io_uring_setup(0x239, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=0x0, &(0x7f00000001c0)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000380)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}) io_uring_enter(r1, 0x2def, 0x0, 0x0, 0x0, 0x0) ioctl$TCXONC(r0, 0x540a, 0x2) 30.988528248s ago: executing program 3 (id=479): r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r1 = dup(r0) r2 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$sock_inet6_SIOCADDRT(r2, 0x5452, &(0x7f00000002c0)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private0, @empty}) close_range(r1, 0xffffffffffffffff, 0x0) 30.06271947s ago: executing program 3 (id=484): r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000001340)=0x1fe, 0x4) sendmmsg$inet(r0, &(0x7f0000001980)=[{{&(0x7f00000002c0)={0x2, 0x4e22, @loopback}, 0x10, 0x0}}], 0x1, 0x240080e4) write(r0, &(0x7f0000003000)='\t', 0x1) recvmmsg(r0, &(0x7f0000006600)=[{{0x0, 0x0, &(0x7f00000016c0)=[{&(0x7f0000000300)=""/4096, 0x1000}], 0x1}}], 0x1, 0x2000, 0x0) 29.596969531s ago: executing program 3 (id=487): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000280)={0x0, 0x4}, 0xe) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000240)=0x10) setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f00000001c0)={r1}, 0x8) 29.056112542s ago: executing program 3 (id=490): socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x14d802, 0x0) ioctl$FS_IOC_RESVSP(r0, 0x402c5839, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x8000000009a88}) sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) 7.948485884s ago: executing program 2 (id=559): r0 = socket$l2tp(0x2, 0x2, 0x73) recvfrom$l2tp(r0, 0x0, 0x0, 0x2120, 0x0, 0x0) setsockopt$inet_int(r0, 0x0, 0xd, &(0x7f0000000300)=0xe6b9, 0x4) bind$l2tp(r0, &(0x7f0000000000)={0x2, 0x0, @empty}, 0x10) sendto$l2tp(r0, &(0x7f00000002c0)="e5786a0d000000000000c83b", 0xc, 0x0, &(0x7f0000000180)={0x2, 0x0, @loopback}, 0x10) 7.598138662s ago: executing program 0 (id=560): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r1 = memfd_create(&(0x7f00000005c0)='\x00\xc76\xbe\x91\x8d\x182)!\x9a%\xa2\xd28\xd6\x06\a\x0e\xfc\xfe\x12\x8f&\x13\xae%@T\xa3Q@6A\x10\x8cn|\x00\x00\x00\x00\x00\x00\x00\x00\xeb0\xdd\xe8\x87\x05=\xfb\x8b$\xdcQ\xee\xc5\x1f\x8bQ\xf7fo\"i\xa1hk\x1f\xf5z\xc1\x7f\xa4\\]\xc4\xbe3\xf9\xa8\t?:\xd8\xda\x84\xeepI[\x1c\x00\x00\x00\x00\xf9v\x00\x00\x00\x00\x00T\xb6\xbe\x0f~\xc0\x92\xe9O{\xa8\x81(\x01\x14\xfc\x83\xf9\xfb\x05\x94Tr@Lq]\xf9\x15zj\x87\xc4\x8e\xe8/\xb9-&R\x8e\xb2\xb3bBx\x1e1\x18\x8f\x19\xf7]#\xed,\xc7\x11\tp\xf4\xa3\xee\x00\x00\x00\x00\'}\x18\xe8O\xa8#K\xb6\xe4U\x92\xd2\x99\xb80x0) syz_io_uring_setup(0x5e6, &(0x7f0000000280), &(0x7f0000000040)=0x0, &(0x7f0000000840)) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r2, r1, &(0x7f00000001c0)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}) io_uring_enter(r0, 0xb15, 0x0, 0x0, 0x0, 0x0) 5.928304197s ago: executing program 4 (id=563): r0 = syz_io_uring_setup(0x34b3, &(0x7f0000000180)={0x0, 0x0, 0x30c0}, &(0x7f0000000100), &(0x7f0000000140)) r1 = epoll_create(0xaf2) io_uring_register$IORING_REGISTER_ENABLE_RINGS(r0, 0xc, 0x0, 0x0) epoll_pwait2(r1, &(0x7f0000000240)=[{}], 0x1, 0x0, 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)) 5.833584987s ago: executing program 1 (id=564): r0 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) bind$can_j1939(r0, &(0x7f00000000c0)={0x1d, r1}, 0x18) connect$can_j1939(r0, &(0x7f0000000140)={0x1d, r1}, 0x18) getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f0000000240)) 5.379396031s ago: executing program 2 (id=565): mkdir(&(0x7f0000000440)='./file1\x00', 0x0) mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota') chdir(&(0x7f0000000080)='./file1\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='rdma.current\x00', 0x26e1, 0x0) quotactl_fd$Q_SETINFO(r0, 0xffffffff80000600, 0x0, &(0x7f0000000140)={0x0, 0x0, 0x1, 0x7}) 4.55676384s ago: executing program 1 (id=566): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) io_setup(0x2007, &(0x7f0000000200)=0x0) r2 = eventfd2(0xb, 0x0) io_submit(r1, 0x1, &(0x7f0000000280)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x5, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x1, r2}]) io_getevents(r1, 0x0, 0x1, &(0x7f0000000040)=[{}], 0x0) 4.249569154s ago: executing program 2 (id=567): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xca}, 0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) sendmmsg$inet6(r0, &(0x7f0000003c40)=[{{&(0x7f0000000180)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)="03", 0x1}], 0x1}}], 0x1, 0x2008800) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r0, 0x84, 0x78, &(0x7f0000000380), 0x4) 3.551424425s ago: executing program 4 (id=568): socket$inet_tcp(0x2, 0x1, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c) listen(r0, 0xfff) syz_emit_ethernet(0x96, &(0x7f00000004c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x60, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x18, 0x2, 0x0, 0x0, 0x0, {[@exp_smc={0xfe, 0x6}, @fastopen={0x22, 0x6, "1b879b18"}, @md5sig={0x13, 0x12, "d082e275205e556149a021cc13c33d89"}, @window={0x3, 0x3}, @window={0x3, 0x3}, @sack_perm={0x4, 0x2}, @sack_perm={0x4, 0x2}, @fastopen={0x22, 0xf, "cf6af75d5cdcf048b19c939556"}, @md5sig={0x13, 0x12, '\'@\aC\x00'}]}}}}}}}}, 0x0) 3.389106433s ago: executing program 0 (id=569): r0 = memfd_create(&(0x7f0000001900)='D\xa3\xd5Wj\xfcwx0\xc1\xac\x12\x1a\vG\xa9~vB\xbc\\$w\xb5VoA\xaa\t\xc3\xe3Q\xbc\xee[\xbe\xe1\xa2\xe0\xff\x8e\t\xb0\x1a\xe7\xa4\xcaN\x84\xadS\x8bqE\x99\x01t\xde*W\x1dPL\x92\x8f\xc2\xf9\xcd\x8cj\x03X\x05\x17mwI\xf0\x01\xe5z\xcdJ)\xc7\xfa)\xaa}\xef\xbb\xf5\xcd\xb1o5\x18\xd6\v\x85q\x98\x9bB\xb9\xea\xe7\x92\xad\xd0\xa2\x9a\x1cV\xcc6P-Qi:T\xc0\xd2\t?\bpBl\xf4*', 0x0) write(r0, &(0x7f00000000c0)='i', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1, 0x11, r0, 0x0) r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) getsockopt$netrom_NETROM_N2(r1, 0x103, 0x7, 0x0, &(0x7f0000000000)=0xffffffffffffff9c) 3.388863892s ago: executing program 1 (id=570): r0 = inotify_init1(0x80800) inotify_add_watch(r0, &(0x7f0000000040)='.\x00', 0xa) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0) dup3(r0, r1, 0x0) readv(r1, &(0x7f0000000400)=[{&(0x7f0000000340)=""/48, 0x30}, {&(0x7f0000000380)=""/27, 0x1b}], 0x2) 2.959348378s ago: executing program 2 (id=571): prctl$PR_SET_SECUREBITS(0x1c, 0x1d) r0 = socket$unix(0x1, 0x5, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0x0, r1, 0x0) syz_clone3(&(0x7f0000003540)={0x80, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003500)=[0x0], 0x1}, 0x58) 2.799892898s ago: executing program 0 (id=572): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan1\x00', 0x0}) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_NEW_KEY(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000005c0)={0x44, r3, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_KEY={0x28, 0x50, 0x0, 0x1, [@NL80211_KEY_IDX={0x5, 0x2, 0x4}, @NL80211_KEY_DATA_WEP104={0x11, 0x1, "97853734805a54b21f7e004e71"}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac05}]}]}, 0x44}}, 0x0) 2.692653874s ago: executing program 1 (id=573): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000001900), 0x1, 0x4e6, &(0x7f0000001400)="$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") setresuid(0x0, 0xee01, 0x0) setfsuid(0x0) setresuid(0xffffffffffffffff, 0xee01, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) 2.681203525s ago: executing program 4 (id=574): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x0, 0x0) openat2(r1, &(0x7f0000000400)='./file0/../file0/file0\x00', &(0x7f0000000380)={0x0, 0x0, 0x8}, 0x18) 1.978107569s ago: executing program 4 (id=575): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000002c80)={0x0, 0x0, &(0x7f0000002c40)={&(0x7f0000003180)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a01080000e0030000000e02000000090001007300803000000000080002400000000214000000110001"], 0x50}}, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff000000000200a8140900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_MSG_GETSET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x20, 0xa, 0xa, 0x201, 0x0, 0x0, {0x2}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x20}}, 0x0) 1.744289479s ago: executing program 1 (id=576): mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0) mount$overlay(0x0, &(0x7f0000000080)='./file1\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c}) mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000000c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c}) 1.71475085s ago: executing program 0 (id=585): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f00000002c0)={[{@init_itable}, {@resuid}, {@stripe}]}, 0x3, 0x445, &(0x7f0000000b00)="$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") creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1) link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') rename(&(0x7f0000000600)='./file0\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 1.289580303s ago: executing program 2 (id=577): syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x4000, &(0x7f0000000380)={[{@test_dummy_encryption}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@stripe={'stripe', 0x3d, 0x7}}, {@commit={'commit', 0x3d, 0x5}}, {@orlov}, {@barrier_val={'barrier', 0x3d, 0x5}}, {@max_batch_time}, {@data_err_abort}]}, 0xd, 0x5d8, &(0x7f0000000c00)="$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") syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x1881c00, 0x0, 0x0, 0x0, &(0x7f0000000000)) r0 = open(&(0x7f00000005c0)='./bus\x00', 0x0, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') renameat2(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', r0, &(0x7f0000000980)='./file0\x00', 0x0) 1.176493112s ago: executing program 4 (id=578): syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) prlimit64(0x0, 0x7, &(0x7f0000000140), 0x0) openat$yama_ptrace_scope(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) 934.321798ms ago: executing program 0 (id=579): r0 = socket(0x2, 0x80805, 0x0) sendmmsg$inet_sctp(r0, &(0x7f0000001a40)=[{&(0x7f0000000000)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000300)="8d", 0x1}], 0x1}], 0x1, 0x0) r1 = socket$inet(0x2, 0x80001, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x11, &(0x7f0000000380)={r2}, 0x8) 346.771784ms ago: executing program 4 (id=580): r0 = io_uring_setup(0x77f, &(0x7f0000000340)) r1 = socket(0x2b, 0x1, 0x1) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @local, 0x3}, 0x1c) ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 263.597267ms ago: executing program 1 (id=581): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r0, 0x0) setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000200)=0x8, 0x4) syz_emit_ethernet(0x4a, &(0x7f0000000440)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x10}}}}}}}, 0x0) 0s ago: executing program 0 (id=582): r0 = syz_open_dev$radio(&(0x7f00000001c0), 0x2, 0x2) r1 = dup(r0) r2 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00') read$FUSE(r2, &(0x7f0000003100)={0x2020}, 0x2042) read$FUSE(r1, &(0x7f00000010c0)={0x2020}, 0x2020) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.217' (ED25519) to the list of known hosts. [ 177.272723][ T5172] cgroup: Unknown subsys name 'net' [ 177.447074][ T5172] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 229.351281][ T1245] ieee802154 phy0 wpan0: encryption failed: -22 [ 229.358096][ T1245] ieee802154 phy1 wpan1: encryption failed: -22 [ 232.193366][ T5172] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 236.612456][ T5193] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 236.624632][ T5193] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 236.636322][ T5193] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 236.644830][ T5196] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 236.656039][ T5196] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 236.664624][ T5200] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 236.698116][ T5196] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 236.700652][ T5201] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 236.707794][ T5196] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 236.715607][ T5201] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 236.721103][ T5196] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 236.732462][ T5201] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 236.752294][ T5201] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 236.758909][ T5196] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 236.761002][ T5201] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 236.772003][ T5196] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 236.778340][ T5201] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 236.786338][ T5202] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 236.790085][ T5201] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 236.796309][ T5202] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 236.811808][ T5202] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 236.826292][ T5202] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 236.836273][ T5196] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 236.838670][ T5201] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 236.857446][ T5201] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 236.874062][ T4564] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 236.896758][ T5196] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 236.900045][ T4564] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 236.915652][ T5201] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 236.924304][ T5201] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 238.197253][ T5199] chnl_net:caif_netlink_parms(): no params data found [ 238.422459][ T5189] chnl_net:caif_netlink_parms(): no params data found [ 238.941117][ T5200] Bluetooth: hci1: command tx timeout [ 238.946800][ T5200] Bluetooth: hci0: command tx timeout [ 239.013392][ T4564] Bluetooth: hci4: command tx timeout [ 239.019272][ T5200] Bluetooth: hci3: command tx timeout [ 239.024923][ T5200] Bluetooth: hci2: command tx timeout [ 239.086862][ T5190] chnl_net:caif_netlink_parms(): no params data found [ 239.232866][ T5199] bridge0: port 1(bridge_slave_0) entered blocking state [ 239.245870][ T5199] bridge0: port 1(bridge_slave_0) entered disabled state [ 239.254498][ T5199] bridge_slave_0: entered allmulticast mode [ 239.264244][ T5199] bridge_slave_0: entered promiscuous mode [ 239.314979][ T5188] chnl_net:caif_netlink_parms(): no params data found [ 239.409806][ T5199] bridge0: port 2(bridge_slave_1) entered blocking state [ 239.417637][ T5199] bridge0: port 2(bridge_slave_1) entered disabled state [ 239.425673][ T5199] bridge_slave_1: entered allmulticast mode [ 239.435477][ T5199] bridge_slave_1: entered promiscuous mode [ 239.488072][ T5197] chnl_net:caif_netlink_parms(): no params data found [ 239.818075][ T5199] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 239.896469][ T5189] bridge0: port 1(bridge_slave_0) entered blocking state [ 239.905322][ T5189] bridge0: port 1(bridge_slave_0) entered disabled state [ 239.913376][ T5189] bridge_slave_0: entered allmulticast mode [ 239.922943][ T5189] bridge_slave_0: entered promiscuous mode [ 239.948848][ T5199] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 240.112224][ T5189] bridge0: port 2(bridge_slave_1) entered blocking state [ 240.120486][ T5189] bridge0: port 2(bridge_slave_1) entered disabled state [ 240.128298][ T5189] bridge_slave_1: entered allmulticast mode [ 240.137975][ T5189] bridge_slave_1: entered promiscuous mode [ 240.180209][ T5199] team0: Port device team_slave_0 added [ 240.202782][ T5199] team0: Port device team_slave_1 added [ 240.538338][ T5189] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 240.766674][ T5189] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 240.785622][ T5190] bridge0: port 1(bridge_slave_0) entered blocking state [ 240.796890][ T5190] bridge0: port 1(bridge_slave_0) entered disabled state [ 240.804947][ T5190] bridge_slave_0: entered allmulticast mode [ 240.814575][ T5190] bridge_slave_0: entered promiscuous mode [ 240.842467][ T5199] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 240.849801][ T5199] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 240.876300][ T5199] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 240.889843][ T5190] bridge0: port 2(bridge_slave_1) entered blocking state [ 240.897629][ T5190] bridge0: port 2(bridge_slave_1) entered disabled state [ 240.905621][ T5190] bridge_slave_1: entered allmulticast mode [ 240.915232][ T5190] bridge_slave_1: entered promiscuous mode [ 241.015926][ T4564] Bluetooth: hci0: command tx timeout [ 241.021926][ T5200] Bluetooth: hci1: command tx timeout [ 241.053482][ T5199] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 241.060805][ T5199] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 241.087726][ T5199] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 241.097104][ T4564] Bluetooth: hci3: command tx timeout [ 241.104328][ T4564] Bluetooth: hci4: command tx timeout [ 241.110231][ T4564] Bluetooth: hci2: command tx timeout [ 241.185758][ T5189] team0: Port device team_slave_0 added [ 241.204351][ T5190] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 241.238629][ T5190] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 241.385990][ T5189] team0: Port device team_slave_1 added [ 241.427033][ T5188] bridge0: port 1(bridge_slave_0) entered blocking state [ 241.435063][ T5188] bridge0: port 1(bridge_slave_0) entered disabled state [ 241.443030][ T5188] bridge_slave_0: entered allmulticast mode [ 241.451796][ T5188] bridge_slave_0: entered promiscuous mode [ 241.644000][ T5188] bridge0: port 2(bridge_slave_1) entered blocking state [ 241.652500][ T5188] bridge0: port 2(bridge_slave_1) entered disabled state [ 241.660386][ T5188] bridge_slave_1: entered allmulticast mode [ 241.672609][ T5188] bridge_slave_1: entered promiscuous mode [ 241.750475][ T5189] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 241.757760][ T5189] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 241.784148][ T5189] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 241.805842][ T5190] team0: Port device team_slave_0 added [ 241.860980][ T5199] hsr_slave_0: entered promiscuous mode [ 241.871972][ T5199] hsr_slave_1: entered promiscuous mode [ 241.883701][ T5197] bridge0: port 1(bridge_slave_0) entered blocking state [ 241.891738][ T5197] bridge0: port 1(bridge_slave_0) entered disabled state [ 241.899625][ T5197] bridge_slave_0: entered allmulticast mode [ 241.908145][ T5197] bridge_slave_0: entered promiscuous mode [ 241.923185][ T5189] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 241.930485][ T5189] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 241.957893][ T5189] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 241.978373][ T5190] team0: Port device team_slave_1 added [ 242.024768][ T5197] bridge0: port 2(bridge_slave_1) entered blocking state [ 242.032722][ T5197] bridge0: port 2(bridge_slave_1) entered disabled state [ 242.040731][ T5197] bridge_slave_1: entered allmulticast mode [ 242.050605][ T5197] bridge_slave_1: entered promiscuous mode [ 242.198414][ T5188] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 242.210581][ T5190] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 242.217780][ T5190] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 242.244223][ T5190] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 242.263223][ T5190] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 242.273358][ T5190] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 242.300071][ T5190] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 242.406569][ T5188] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 242.454937][ T5197] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 242.476908][ T5197] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 242.793669][ T5189] hsr_slave_0: entered promiscuous mode [ 242.805349][ T5189] hsr_slave_1: entered promiscuous mode [ 242.816283][ T5189] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 242.824196][ T5189] Cannot create hsr debugfs directory [ 242.890389][ T5188] team0: Port device team_slave_0 added [ 242.905433][ T5197] team0: Port device team_slave_0 added [ 242.944991][ T5190] hsr_slave_0: entered promiscuous mode [ 242.954511][ T5190] hsr_slave_1: entered promiscuous mode [ 242.964509][ T5190] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 242.972441][ T5190] Cannot create hsr debugfs directory [ 242.986818][ T5188] team0: Port device team_slave_1 added [ 243.044565][ T5197] team0: Port device team_slave_1 added [ 243.106375][ T5200] Bluetooth: hci0: command tx timeout [ 243.107714][ T4564] Bluetooth: hci1: command tx timeout [ 243.170536][ T4564] Bluetooth: hci2: command tx timeout [ 243.176216][ T4564] Bluetooth: hci4: command tx timeout [ 243.183644][ T4564] Bluetooth: hci3: command tx timeout [ 243.339944][ T5188] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 243.347233][ T5188] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 243.373623][ T5188] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 243.460958][ T5197] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 243.468237][ T5197] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 243.494938][ T5197] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 243.545652][ T5188] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 243.554483][ T5188] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 243.581289][ T5188] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 243.641947][ T5197] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 243.649358][ T5197] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 243.675875][ T5197] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 244.098133][ T5188] hsr_slave_0: entered promiscuous mode [ 244.107681][ T5188] hsr_slave_1: entered promiscuous mode [ 244.118934][ T5188] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 244.126892][ T5188] Cannot create hsr debugfs directory [ 244.199627][ T5197] hsr_slave_0: entered promiscuous mode [ 244.208983][ T5197] hsr_slave_1: entered promiscuous mode [ 244.219602][ T5197] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 244.227374][ T5197] Cannot create hsr debugfs directory [ 244.685028][ T5199] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 244.716047][ T5199] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 244.835559][ T5199] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 244.873476][ T5199] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 244.999266][ T5190] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 245.114495][ T5190] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 245.169831][ T4564] Bluetooth: hci0: command tx timeout [ 245.175427][ T5201] Bluetooth: hci1: command tx timeout [ 245.245784][ T5190] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 245.259438][ T5201] Bluetooth: hci3: command tx timeout [ 245.265121][ T5201] Bluetooth: hci4: command tx timeout [ 245.269809][ T4564] Bluetooth: hci2: command tx timeout [ 245.344343][ T5190] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 245.656453][ T5189] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 245.690594][ T5189] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 245.733923][ T5189] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 245.760263][ T5189] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 246.030603][ T5188] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 246.136365][ T5197] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 246.161932][ T5197] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 246.203134][ T5188] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 246.232616][ T5188] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 246.263600][ T5188] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 246.327399][ T5197] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 246.414224][ T5197] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 246.893690][ T5199] 8021q: adding VLAN 0 to HW filter on device bond0 [ 247.131993][ T5190] 8021q: adding VLAN 0 to HW filter on device bond0 [ 247.293389][ T5199] 8021q: adding VLAN 0 to HW filter on device team0 [ 247.463943][ T70] bridge0: port 1(bridge_slave_0) entered blocking state [ 247.471974][ T70] bridge0: port 1(bridge_slave_0) entered forwarding state [ 247.526585][ T5189] 8021q: adding VLAN 0 to HW filter on device bond0 [ 247.578007][ T5190] 8021q: adding VLAN 0 to HW filter on device team0 [ 247.699789][ T70] bridge0: port 2(bridge_slave_1) entered blocking state [ 247.707620][ T70] bridge0: port 2(bridge_slave_1) entered forwarding state [ 247.731966][ T70] bridge0: port 1(bridge_slave_0) entered blocking state [ 247.739807][ T70] bridge0: port 1(bridge_slave_0) entered forwarding state [ 247.831932][ T5189] 8021q: adding VLAN 0 to HW filter on device team0 [ 247.912566][ T5188] 8021q: adding VLAN 0 to HW filter on device bond0 [ 247.973970][ T1054] bridge0: port 2(bridge_slave_1) entered blocking state [ 247.981860][ T1054] bridge0: port 2(bridge_slave_1) entered forwarding state [ 248.091942][ T1054] bridge0: port 1(bridge_slave_0) entered blocking state [ 248.099819][ T1054] bridge0: port 1(bridge_slave_0) entered forwarding state [ 248.204007][ T5188] 8021q: adding VLAN 0 to HW filter on device team0 [ 248.343198][ T1054] bridge0: port 2(bridge_slave_1) entered blocking state [ 248.351167][ T1054] bridge0: port 2(bridge_slave_1) entered forwarding state [ 248.412040][ T5197] 8021q: adding VLAN 0 to HW filter on device bond0 [ 248.451933][ T4428] bridge0: port 1(bridge_slave_0) entered blocking state [ 248.459778][ T4428] bridge0: port 1(bridge_slave_0) entered forwarding state [ 248.653181][ T4428] bridge0: port 2(bridge_slave_1) entered blocking state [ 248.661248][ T4428] bridge0: port 2(bridge_slave_1) entered forwarding state [ 248.716149][ T5197] 8021q: adding VLAN 0 to HW filter on device team0 [ 248.787468][ T5190] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 248.991796][ T4428] bridge0: port 1(bridge_slave_0) entered blocking state [ 248.999666][ T4428] bridge0: port 1(bridge_slave_0) entered forwarding state [ 249.125209][ T5189] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 249.238323][ T4428] bridge0: port 2(bridge_slave_1) entered blocking state [ 249.246244][ T4428] bridge0: port 2(bridge_slave_1) entered forwarding state [ 249.355481][ T5188] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 249.758004][ T5197] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 249.770355][ T5197] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 250.746335][ T5199] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 251.306783][ T5190] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 251.531936][ T5199] veth0_vlan: entered promiscuous mode [ 251.638948][ T5189] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 251.705289][ T5188] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 251.726590][ T5199] veth1_vlan: entered promiscuous mode [ 252.096668][ T5197] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 252.300562][ T5199] veth0_macvtap: entered promiscuous mode [ 252.381511][ T5199] veth1_macvtap: entered promiscuous mode [ 252.535028][ T5189] veth0_vlan: entered promiscuous mode [ 252.588599][ T5188] veth0_vlan: entered promiscuous mode [ 252.745653][ T5199] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 252.764336][ T5189] veth1_vlan: entered promiscuous mode [ 252.798285][ T5188] veth1_vlan: entered promiscuous mode [ 252.934665][ T5199] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 253.067453][ T5199] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 253.080500][ T5199] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 253.092656][ T5199] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 253.104408][ T5199] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 253.155521][ T5197] veth0_vlan: entered promiscuous mode [ 253.247137][ T5197] veth1_vlan: entered promiscuous mode [ 253.376959][ T5189] veth0_macvtap: entered promiscuous mode [ 253.446314][ T5189] veth1_macvtap: entered promiscuous mode [ 253.534549][ T5188] veth0_macvtap: entered promiscuous mode [ 253.645135][ T5188] veth1_macvtap: entered promiscuous mode [ 253.755328][ T5197] veth0_macvtap: entered promiscuous mode [ 253.785497][ T5189] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 253.797826][ T5189] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 253.814159][ T5189] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 253.925278][ T5197] veth1_macvtap: entered promiscuous mode [ 253.998538][ T5188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 254.009549][ T5188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 254.020079][ T5188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 254.032690][ T5188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 254.050692][ T5188] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 254.074570][ T5189] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 254.087211][ T5189] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 254.108421][ T5189] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 254.189590][ T5188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 254.204034][ T5188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 254.214520][ T5188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 254.225339][ T5188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 254.241557][ T5188] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 254.337797][ T5189] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 254.348834][ T5189] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 254.358374][ T5189] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 254.367589][ T5189] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 254.442209][ T5197] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 254.455240][ T5197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 254.468476][ T5197] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 254.479536][ T5197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 254.489711][ T5197] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 254.500535][ T5197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 254.516378][ T5197] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 254.527684][ T5188] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 254.539465][ T5188] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 254.548609][ T5188] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 254.558172][ T5188] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 254.734524][ T5197] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 254.747361][ T5197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 254.758817][ T5197] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 254.770483][ T5197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 254.781193][ T5197] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 254.792146][ T5197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 254.810998][ T5197] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 255.097275][ T5197] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 255.108908][ T5197] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 255.118272][ T5197] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 255.127508][ T5197] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 255.328465][ T5190] veth0_vlan: entered promiscuous mode [ 255.514311][ T5190] veth1_vlan: entered promiscuous mode [ 256.035994][ T5190] veth0_macvtap: entered promiscuous mode [ 256.143383][ T5190] veth1_macvtap: entered promiscuous mode [ 256.393567][ T5190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 256.404608][ T5190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 256.415025][ T5190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 256.425849][ T5190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 256.436013][ T5190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 256.446821][ T5190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 256.461160][ T5190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 256.473683][ T5190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 256.490128][ T5190] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 256.741285][ T5190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 256.752265][ T5190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 256.762606][ T5190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 256.773512][ T5190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 256.784102][ T5190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 256.794865][ T5190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 256.805173][ T5190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 256.816037][ T5190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 256.832025][ T5190] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 256.931493][ T5190] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 256.940769][ T5190] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 256.950094][ T5190] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 256.959536][ T5190] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 260.766066][ T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 260.776224][ T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 261.035416][ T1054] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 261.044976][ T1054] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 262.070381][ T4428] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 262.078479][ T4428] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 262.255622][ T70] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 262.263827][ T70] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 262.443627][ T3391] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 262.453212][ T3391] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 262.557322][ T34] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 262.565532][ T34] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 263.281395][ T4428] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 263.289585][ T4428] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 263.492046][ T147] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 263.501384][ T147] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 263.836305][ T5372] loop2: detected capacity change from 0 to 2048 [ 263.905199][ T5377] loop1: detected capacity change from 0 to 128 [ 263.924560][ T5377] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 264.020782][ T5377] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 264.032174][ T5379] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 264.378149][ T5379] NILFS (loop2): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 264.389501][ T5379] NILFS error (device loop2): nilfs_bmap_propagate: broken bmap (inode number=4) [ 264.515947][ T34] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 264.524228][ T34] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 264.578356][ T5379] Remounting filesystem read-only [ 264.588024][ T3391] NILFS (loop2): discard dirty page: offset=0, ino=6 [ 264.597609][ T3391] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 264.608000][ T3391] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 264.617428][ T3391] NILFS (loop2): discard dirty block: blocknr=37, size=1024 [ 264.625180][ T3391] NILFS (loop2): discard dirty block: blocknr=38, size=1024 [ 264.721715][ T3391] NILFS (loop2): discard dirty page: offset=0, ino=12 [ 264.728889][ T3391] NILFS (loop2): discard dirty block: blocknr=17, size=1024 [ 264.737254][ T3391] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 264.746730][ T3391] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 264.756359][ T3391] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 264.866008][ T70] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 264.874418][ T70] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 264.921957][ T5372] NILFS (loop2): mounting fs with errors [ 265.039969][ T5372] NILFS error (device loop2): nilfs_bmap_lookup_at_level: broken bmap (inode number=6) [ 265.050344][ T5372] Remounting filesystem read-only [ 265.055685][ T5372] NILFS (loop2): error -5 reading inode: ino=2 [ 265.062398][ T5372] NILFS (loop2): cannot mark inode dirty (ino=2): error -5 loading inode block [ 265.216752][ T5386] loop3: detected capacity change from 0 to 256 [ 265.281885][ T5386] ======================================================= [ 265.281885][ T5386] WARNING: The mand mount option has been deprecated and [ 265.281885][ T5386] and is ignored by this kernel. Remove the mand [ 265.281885][ T5386] option from the mount to silence this warning. [ 265.281885][ T5386] ======================================================= [ 265.317085][ C0] vkms_vblank_simulate: vblank timer overrun [ 265.619732][ T5199] NILFS (loop2): disposed unprocessed dirty file(s) when stopping log writer [ 265.630137][ T5199] NILFS (loop2): discard dirty page: offset=0, ino=2 [ 265.637124][ T5199] NILFS (loop2): discard dirty block: blocknr=18, size=1024 [ 265.645011][ T5199] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 265.654334][ T5199] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 265.663750][ T5199] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 265.804240][ T5199] NILFS (loop2): discard dirty page: offset=0, ino=6 [ 265.812723][ T5199] NILFS (loop2): discard dirty block: blocknr=35, size=1024 [ 265.821113][ T5199] NILFS (loop2): discard dirty block: blocknr=36, size=1024 [ 265.828756][ T5199] NILFS (loop2): discard dirty block: blocknr=37, size=1024 [ 265.836554][ T5199] NILFS (loop2): discard dirty block: blocknr=38, size=1024 [ 265.844302][ T5199] NILFS (loop2): discard dirty page: offset=4096, ino=6 [ 265.851882][ T5199] NILFS (loop2): discard dirty block: blocknr=39, size=1024 [ 265.859688][ T5199] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 265.869224][ T5199] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 265.878439][ T5199] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 266.103605][ T5199] NILFS (loop2): discard dirty page: offset=0, ino=5 [ 266.115595][ T5199] NILFS (loop2): discard dirty block: blocknr=41, size=1024 [ 266.124826][ T5199] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 266.134423][ T5199] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 266.143872][ T5199] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 266.248944][ T5199] NILFS (loop2): discard dirty page: offset=0, ino=4 [ 266.256287][ T5199] NILFS (loop2): discard dirty block: blocknr=40, size=1024 [ 266.264201][ T5199] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 266.274171][ T5199] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 266.283549][ T5199] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 266.410509][ T5199] NILFS (loop2): discard dirty page: offset=0, ino=3 [ 266.424586][ T5199] NILFS (loop2): discard dirty block: blocknr=42, size=1024 [ 266.434544][ T5199] NILFS (loop2): discard dirty block: blocknr=43, size=1024 [ 266.442402][ T5199] NILFS (loop2): discard dirty block: blocknr=44, size=1024 [ 266.461639][ T5199] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 266.479402][ T5199] NILFS (loop2): discard dirty page: offset=131072, ino=3 [ 266.486829][ T5199] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 266.496314][ T5199] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 266.505743][ T5199] NILFS (loop2): discard dirty block: blocknr=46, size=1024 [ 266.513554][ T5199] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 266.859393][ T44] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 267.145455][ T44] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 267.159692][ T44] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 267.170914][ T44] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 267.180386][ T44] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 267.281550][ T5395] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 267.309846][ T5399] loop1: detected capacity change from 0 to 1764 [ 267.406785][ T44] usb 4-1: Quirk or no altset; falling back to MIDI 1.0 [ 268.227847][ T44] usb 4-1: USB disconnect, device number 2 [ 268.724579][ T5418] capability: warning: `syz.4.19' uses deprecated v2 capabilities in a way that may be insecure [ 268.824845][ T5420] loop0: detected capacity change from 0 to 128 [ 268.839738][ T25] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 268.969571][ T29] audit: type=1800 audit(1726548587.589:2): pid=5420 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.20" name="file1" dev="loop0" ino=1048599 res=0 errno=0 [ 269.087322][ T29] audit: type=1800 audit(1726548587.659:3): pid=5420 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.20" name="file1" dev="loop0" ino=1048599 res=0 errno=0 [ 269.108632][ T29] audit: type=1800 audit(1726548587.679:4): pid=5420 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.20" name="file1" dev="loop0" ino=1048599 res=0 errno=0 [ 269.159349][ T25] usb 2-1: Using ep0 maxpacket: 32 [ 269.170150][ T5420] FAT-fs (loop0): error, invalid FAT chain (i_pos 548, last_block 8) [ 269.183513][ T5420] FAT-fs (loop0): Filesystem has been set read-only [ 269.192144][ T5420] FAT-fs (loop0): error, corrupted file size (i_pos 548, 522) [ 269.204564][ T25] usb 2-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7 [ 269.214091][ T25] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 269.302507][ T25] usb 2-1: config 0 descriptor?? [ 269.333544][ T5381] udevd[5381]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 269.396730][ T25] gspca_main: sunplus-2.14.0 probing 041e:400b [ 270.321336][ T5430] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 270.372603][ T5431] loop4: detected capacity change from 0 to 256 [ 270.464420][ T5432] netlink: 'syz.2.24': attribute type 3 has an invalid length. [ 270.566187][ T25] gspca_sunplus: reg_w_riv err -71 [ 270.572619][ T25] sunplus 2-1:0.0: probe with driver sunplus failed with error -71 [ 270.644748][ T25] usb 2-1: USB disconnect, device number 2 [ 271.269940][ T5439] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 272.884340][ T5455] netlink: 8 bytes leftover after parsing attributes in process `syz.4.34'. [ 273.051433][ T44] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 273.296839][ T44] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 273.309867][ T44] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 273.320365][ T44] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 273.333788][ T44] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 273.343559][ T44] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 273.431323][ T44] usb 4-1: config 0 descriptor?? [ 273.805160][ T5464] netlink: 8 bytes leftover after parsing attributes in process `syz.0.38'. [ 274.060595][ T44] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 [ 274.068454][ T44] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 [ 274.146203][ T44] plantronics 0003:047F:FFFF.0001: No inputs registered, leaving [ 274.281839][ T44] plantronics 0003:047F:FFFF.0001: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 274.536089][ T44] usb 4-1: USB disconnect, device number 3 [ 277.877468][ T5494] loop4: detected capacity change from 0 to 4096 [ 277.945388][ T5494] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512). [ 278.027205][ T5510] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 278.403410][ T5494] ntfs3: loop4: Failed to initialize $Extend/$Reparse. [ 278.476989][ T5513] netlink: 4 bytes leftover after parsing attributes in process `syz.2.60'. [ 280.676232][ T5535] Bluetooth: MGMT ver 1.23 [ 281.008364][ T5536] loop4: detected capacity change from 0 to 2048 [ 281.178707][ T5536] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 281.409685][ T5536] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.69: bg 0: block 136: padding at end of block bitmap is not set [ 281.832347][ T5190] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 282.937505][ T5569] loop2: detected capacity change from 0 to 512 [ 282.960888][ T5571] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 282.983983][ T5569] ext4: Unknown parameter 'noacl' [ 283.458264][ T5575] loop0: detected capacity change from 0 to 256 [ 283.492880][ T5575] exfat: Deprecated parameter 'namecase' [ 283.573684][ T5575] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x1aabf3fb, utbl_chksum : 0xe619d30d) [ 284.725096][ T5586] loop3: detected capacity change from 0 to 2048 [ 284.788555][ T5586] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 284.888987][ T5594] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 285.463430][ T0] NOHZ tick-stop error: local softirq work is pending, handler #242!!! [ 285.674138][ T0] NOHZ tick-stop error: local softirq work is pending, handler #242!!! [ 287.681391][ T5615] loop3: detected capacity change from 0 to 256 [ 287.693844][ T5610] loop2: detected capacity change from 0 to 1024 [ 287.745768][ T5616] loop0: detected capacity change from 0 to 512 [ 287.793163][ T5610] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 287.846343][ T5610] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 287.857755][ T5610] EXT4-fs (loop2): too many log groups per flexible block group [ 287.866586][ T5610] EXT4-fs (loop2): failed to initialize mballoc (-12) [ 287.873910][ T5610] EXT4-fs (loop2): mount failed [ 287.954542][ T5615] exFAT-fs (loop3): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d) [ 288.766757][ T5626] warning: `syz.3.110' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 288.924917][ T5631] loop4: detected capacity change from 0 to 1024 [ 289.258976][ T5633] loop2: detected capacity change from 0 to 128 [ 289.300011][ T5633] ufs: You didn't specify the type of your ufs filesystem [ 289.300011][ T5633] [ 289.300011][ T5633] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 289.300011][ T5633] [ 289.300011][ T5633] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 289.331294][ T5633] ufs: ufstype=old is supported read-only [ 289.356956][ T5620] loop1: detected capacity change from 0 to 4096 [ 289.421478][ T5633] ufs: ufs_fill_super(): fragment size 3263967611 is not a power of 2 [ 289.645858][ T5635] loop0: detected capacity change from 0 to 2048 [ 289.865787][ T5620] ntfs3: loop1: ino=0, ntfs_iget5 [ 289.872848][ T5620] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 289.987841][ T5620] ntfs3: loop1: failed to convert "046c" to maccroatian [ 290.792198][ T1245] ieee802154 phy0 wpan0: encryption failed: -22 [ 290.798960][ T1245] ieee802154 phy1 wpan1: encryption failed: -22 [ 290.930976][ T5655] netlink: 4 bytes leftover after parsing attributes in process `syz.4.124'. [ 291.489907][ T5662] loop2: detected capacity change from 0 to 1024 [ 291.627256][ T5668] loop0: detected capacity change from 0 to 256 [ 291.660256][ T5669] loop4: detected capacity change from 0 to 128 [ 291.771889][ T5668] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000006) [ 291.775793][ T5669] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 291.780522][ T5668] FAT-fs (loop0): Filesystem has been set read-only [ 291.840786][ T29] audit: type=1800 audit(1726548610.389:5): pid=5668 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.129" name="bus" dev="loop0" ino=1048602 res=0 errno=0 [ 291.878137][ T5669] ext4 filesystem being mounted at /22/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 292.308569][ T5190] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 293.375406][ T5691] loop3: detected capacity change from 0 to 16 [ 293.433608][ T5691] erofs: (device loop3): mounted with root inode @ nid 36. [ 293.606158][ T29] audit: type=1800 audit(1726548612.159:6): pid=5691 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.140" name="file1" dev="loop3" ino=86 res=0 errno=0 [ 294.309379][ T29] audit: type=1326 audit(1726548612.889:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5701 comm="syz.3.146" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f50579 code=0x0 [ 294.442705][ T5711] loop1: detected capacity change from 0 to 256 [ 295.403117][ T5723] netlink: 4 bytes leftover after parsing attributes in process `syz.4.155'. [ 295.886523][ T5732] loop1: detected capacity change from 0 to 128 [ 295.932130][ T5729] loop2: detected capacity change from 0 to 512 [ 295.967407][ T5730] sctp: [Deprecated]: syz.0.157 (pid 5730) Use of struct sctp_assoc_value in delayed_ack socket option. [ 295.967407][ T5730] Use struct sctp_sack_info instead [ 296.000835][ T5729] EXT4-fs error (device loop2): ext4_get_journal_inode:5740: comm syz.2.158: inode #196608: comm syz.2.158: iget: illegal inode # [ 296.039408][ T5729] EXT4-fs (loop2): Remounting filesystem read-only [ 296.046456][ T5729] EXT4-fs (loop2): no journal found [ 296.052424][ T5729] EXT4-fs (loop2): can't get journal size [ 296.087968][ T5732] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 296.137478][ T5729] EXT4-fs (loop2): failed to initialize system zone (-22) [ 296.167919][ T5729] EXT4-fs (loop2): mount failed [ 296.170215][ T5732] ext4 filesystem being mounted at /26/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 296.546128][ T5189] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 297.189331][ T5750] syz.3.166 uses obsolete (PF_INET,SOCK_PACKET) [ 298.179834][ T5761] loop0: detected capacity change from 0 to 1024 [ 298.221668][ T5761] EXT4-fs: Ignoring removed orlov option [ 298.230438][ T5761] EXT4-fs: Ignoring removed nomblk_io_submit option [ 298.335623][ T5761] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 298.439480][ T5761] process 'syz.0.171' launched './file0/file0' with NULL argv: empty string added [ 298.724044][ T5772] loop3: detected capacity change from 0 to 128 [ 298.800504][ T5772] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 298.847554][ T5197] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 299.065908][ T5772] UDF-fs: error (device loop3): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40) [ 299.139835][ T5778] netlink: 40 bytes leftover after parsing attributes in process `syz.2.178'. [ 299.236455][ T5777] loop4: detected capacity change from 0 to 1024 [ 299.363841][ T5777] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 299.444070][ T5780] loop0: detected capacity change from 0 to 2048 [ 299.572679][ T5780] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 299.581075][ T5780] UDF-fs: Scanning with blocksize 512 failed [ 299.687954][ T5780] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 299.936286][ T5190] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 300.456061][ T5788] loop3: detected capacity change from 0 to 2048 [ 300.546080][ T5788] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 300.562134][ T5784] loop1: detected capacity change from 0 to 4096 [ 300.611212][ T5784] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 300.677940][ T29] audit: type=1800 audit(1726548619.309:8): pid=5788 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.182" name="bus" dev="loop3" ino=18 res=0 errno=0 [ 300.701322][ T5788] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 300.891914][ T5784] ntfs3: loop1: Failed to initialize $Extend/$Reparse. [ 301.064055][ T5784] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 301.071673][ T5188] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 301.787556][ T5804] loop4: detected capacity change from 0 to 1024 [ 301.832031][ T5804] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 301.937990][ T5804] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 302.079325][ T10] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 302.200868][ T5245] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 302.290886][ T10] usb 4-1: Using ep0 maxpacket: 8 [ 302.304327][ T10] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 302.315775][ T10] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 302.326202][ T10] usb 4-1: New USB device found, idVendor=054c, idProduct=0ce6, bcdDevice= 0.00 [ 302.335804][ T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 302.422282][ T10] usb 4-1: config 0 descriptor?? [ 302.430142][ T5190] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 302.469393][ T5245] usb 1-1: Using ep0 maxpacket: 32 [ 302.536721][ T5245] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 302.586100][ T5245] usb 1-1: New USB device found, idVendor=08ca, idProduct=2060, bcdDevice=c6.58 [ 302.596627][ T5245] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 302.605702][ T5245] usb 1-1: Product: syz [ 302.610667][ T5245] usb 1-1: Manufacturer: syz [ 302.615712][ T5245] usb 1-1: SerialNumber: syz [ 302.683986][ T5245] usb 1-1: config 0 descriptor?? [ 302.712654][ T5245] gspca_main: sunplus-2.14.0 probing 08ca:2060 [ 302.739185][ C0] hrtimer: interrupt took 216423 ns [ 302.996337][ T10] playstation 0003:054C:0CE6.0002: unknown main item tag 0x0 [ 303.006655][ T10] playstation 0003:054C:0CE6.0002: unknown main item tag 0x0 [ 303.015677][ T10] playstation 0003:054C:0CE6.0002: unknown main item tag 0x0 [ 303.023991][ T10] playstation 0003:054C:0CE6.0002: unknown main item tag 0x0 [ 303.032331][ T10] playstation 0003:054C:0CE6.0002: unknown main item tag 0x0 [ 303.040800][ T10] playstation 0003:054C:0CE6.0002: unknown main item tag 0x0 [ 303.048798][ T10] playstation 0003:054C:0CE6.0002: unknown main item tag 0x0 [ 303.131248][ T10] playstation 0003:054C:0CE6.0002: hidraw0: USB HID v0.00 Device [HID 054c:0ce6] on usb-dummy_hcd.3-1/input0 [ 303.241592][ T10] playstation 0003:054C:0CE6.0002: Failed to retrieve feature with reportID 9: -71 [ 303.251839][ T10] playstation 0003:054C:0CE6.0002: Failed to retrieve DualSense pairing info: -71 [ 303.262161][ T10] playstation 0003:054C:0CE6.0002: Failed to get MAC address from DualSense [ 303.271599][ T10] playstation 0003:054C:0CE6.0002: Failed to create dualsense. [ 303.375187][ T10] playstation 0003:054C:0CE6.0002: probe with driver playstation failed with error -71 [ 303.422041][ T10] usb 4-1: USB disconnect, device number 4 [ 303.943751][ T5245] gspca_sunplus: reg_w_riv err -71 [ 303.949720][ T5245] sunplus 1-1:0.0: probe with driver sunplus failed with error -71 [ 304.010829][ T5245] usb 1-1: USB disconnect, device number 2 [ 304.533706][ T5829] loop2: detected capacity change from 0 to 1764 [ 305.170244][ T5843] netlink: 60 bytes leftover after parsing attributes in process `syz.1.207'. [ 305.193974][ T5841] loop0: detected capacity change from 0 to 1024 [ 305.323882][ T5841] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 305.466416][ T5849] loop2: detected capacity change from 0 to 2048 [ 305.560243][ T5841] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2862: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 305.626913][ T5849] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 305.991312][ T5197] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 306.048688][ T5199] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 306.269633][ T25] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 306.273357][ T5860] loop4: detected capacity change from 0 to 1024 [ 306.337335][ T5860] EXT4-fs: Ignoring removed mblk_io_submit option [ 306.400644][ T5860] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 306.520039][ T25] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 306.532021][ T25] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 306.544618][ T25] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 306.562589][ T25] usb 4-1: New USB device found, idVendor=056a, idProduct=00fb, bcdDevice= 0.00 [ 306.573964][ T25] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 306.598953][ T5860] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none. [ 306.604563][ T25] usb 4-1: config 0 descriptor?? [ 306.908494][ T5190] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 307.364330][ T25] wacom 0003:056A:00FB.0003: hidraw0: USB HID v0.00 Device [HID 056a:00fb] on usb-dummy_hcd.3-1/input0 [ 307.538922][ T5877] loop2: detected capacity change from 0 to 512 [ 307.565962][ T5877] EXT4-fs: Ignoring removed i_version option [ 307.601699][ T5258] usb 4-1: USB disconnect, device number 5 [ 307.641669][ T5877] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.219: bad orphan inode 1 [ 307.666097][ T5877] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 308.079676][ T5199] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 308.260146][ T5886] loop1: detected capacity change from 0 to 512 [ 308.310080][ T5886] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 308.323806][ T5886] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 308.431111][ T5886] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 308.471241][ T5886] EXT4-fs (loop1): 1 truncate cleaned up [ 308.479567][ T5886] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 308.682194][ T5886] EXT4-fs error (device loop1): ext4_nfs_get_inode:1537: inode #18: comm syz.1.223: iget: bad extra_isize 46 (inode size 256) [ 308.775991][ T5894] loop4: detected capacity change from 0 to 128 [ 308.873701][ T29] audit: type=1800 audit(1726548627.499:9): pid=5894 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.226" name="bus" dev="loop4" ino=1048606 res=0 errno=0 [ 309.042152][ T5189] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 309.616821][ T5902] loop4: detected capacity change from 0 to 512 [ 309.618868][ T5258] kernel read not supported for file /swradio3 (pid: 5258 comm: kworker/0:5) [ 309.712586][ T5902] EXT4-fs warning (device loop4): ext4_multi_mount_protect:318: fsck is running on the filesystem [ 309.724840][ T5902] EXT4-fs warning (device loop4): ext4_multi_mount_protect:318: MMP failure info: last update time: 1669132786, last update node: dvyukov-desk.muc.corp.google.com, last update device: loop4 [ 310.002659][ T5909] loop2: detected capacity change from 0 to 64 [ 310.116924][ T5908] loop3: detected capacity change from 0 to 1024 [ 310.264640][ T5908] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 310.369648][ T5201] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0 [ 310.378323][ T5201] Bluetooth: hci4: Injecting HCI hardware error event [ 310.388732][ T5201] Bluetooth: hci4: hardware error 0x00 [ 310.639826][ T5906] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 310.701480][ T5906] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 12 with error 28 [ 310.714501][ T5906] EXT4-fs (loop3): This should not happen!! Data will be lost [ 310.714501][ T5906] [ 310.725463][ T5906] EXT4-fs (loop3): Total free blocks count 0 [ 310.731918][ T5906] EXT4-fs (loop3): Free/Dirty block details [ 310.738075][ T5906] EXT4-fs (loop3): free_blocks=68451041280 [ 310.744408][ T5906] EXT4-fs (loop3): dirty_blocks=16 [ 310.750142][ T5906] EXT4-fs (loop3): Block reservation details [ 310.761888][ T5906] EXT4-fs (loop3): i_reserved_data_blocks=1 [ 311.148473][ T5188] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 311.171306][ T5922] loop1: detected capacity change from 0 to 512 [ 311.248616][ T5922] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 311.272623][ T5922] ext4 filesystem being mounted at /43/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 311.655096][ T5929] EXT4-fs error (device loop1): ext4_empty_dir:3103: inode #12: block 31: comm syz.1.237: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=1, rec_len=6, size=1024 fake=1 [ 311.720912][ T5929] EXT4-fs warning (device loop1): ext4_empty_dir:3105: inode #12: comm syz.1.237: directory missing '..' [ 312.056814][ T5189] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 312.454381][ T5201] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 312.482242][ T5943] loop3: detected capacity change from 0 to 128 [ 312.560552][ T5943] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 312.804406][ T29] audit: type=1804 audit(1726548631.399:10): pid=5943 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.247" name="/newroot/44/file0/bus" dev="loop3" ino=95 res=1 errno=0 [ 313.508352][ C0] vxcan0: j1939_xtp_rx_abort_one: 0xffff8880240be200: 0x00000: (2) System resources were needed for another task so this connection managed session was terminated. [ 313.525957][ T5958] ------------[ cut here ]------------ [ 313.537213][ T5958] refcount_t: underflow; use-after-free. [ 313.546889][ T5958] WARNING: CPU: 0 PID: 5958 at lib/refcount.c:28 refcount_warn_saturate+0x2cb/0x370 [ 313.556912][ T5958] Modules linked in: [ 313.561316][ T5958] CPU: 0 UID: 0 PID: 5958 Comm: syz.2.252 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 313.572134][ T5958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 313.582705][ T5958] RIP: 0010:refcount_warn_saturate+0x2cb/0x370 [ 313.589491][ T5958] Code: d5 91 e8 b8 a7 29 fc c6 00 00 c6 05 cc 3d b6 0b 01 90 49 c7 86 80 0c 00 00 00 00 00 00 48 c7 c7 09 cb f5 90 e8 b6 f9 3a fb 90 <0f> 0b 90 90 e9 c4 fe ff ff 8b 3a e8 45 b4 29 fc f6 c3 01 0f 85 83 [ 313.610591][ T5958] RSP: 0018:ffff8881261e7868 EFLAGS: 00010283 [ 313.617029][ T5958] RAX: ffffffff815a86f1 RBX: 0000000000000000 RCX: 0000000000040000 [ 313.631324][ T5958] RDX: ffffc90006a40000 RSI: 00000000000066a6 RDI: 00000000000066a7 [ 313.641602][ T5958] RBP: ffff8881261e7880 R08: ffffffff815a86cf R09: 0000000000000000 [ 313.650781][ T5958] R10: ffff8881259e74d0 R11: 0000000000000004 R12: 0000000000000000 [ 313.659213][ T5958] R13: ffff8881261d2c00 R14: ffff8881261d2c00 R15: 0000000000000003 [ 313.667485][ T5958] FS: 0000000000000000(0000) GS:ffff88813fc00000(0063) knlGS:00000000f5786b40 [ 313.677074][ T5958] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 313.684450][ T5958] CR2: 000000002000a000 CR3: 000000013f572000 CR4: 00000000003506f0 [ 313.693024][ T5958] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 313.701490][ T5958] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 313.710099][ T5958] Call Trace: [ 313.713608][ T5958] [ 313.716783][ T5958] ? show_trace_log_lvl+0x3b1/0x500 [ 313.728387][ T5958] ? sk_skb_reason_drop+0x154/0x480 [ 313.738256][ T5958] ? show_regs+0x148/0x160 [ 313.743712][ T5958] ? __warn+0x2c2/0x770 [ 313.748213][ T5958] ? refcount_warn_saturate+0x2cb/0x370 [ 313.754350][ T5958] ? report_bug+0x929/0xbd0 [ 313.759379][ T5958] ? refcount_warn_saturate+0x2cb/0x370 [ 313.765385][ T5958] ? handle_bug+0x47/0x70 [ 313.770493][ T5958] ? exc_invalid_op+0x1f/0x50 [ 313.775562][ T5958] ? asm_exc_invalid_op+0x1f/0x30 [ 313.781111][ T5958] ? __warn_printk+0x43f/0x470 [ 313.786213][ T5958] ? __warn_printk+0x461/0x470 [ 313.791473][ T5958] ? refcount_warn_saturate+0x2cb/0x370 [ 313.797358][ T5958] ? refcount_warn_saturate+0x2ca/0x370 [ 313.803564][ T5958] sk_skb_reason_drop+0x154/0x480 [ 313.808977][ T5958] j1939_session_put+0x2a0/0x620 [ 313.817853][ T5958] j1939_sk_sendmsg+0x1f2d/0x2740 [ 313.830917][ T5958] ? __pfx_j1939_sk_sendmsg+0x10/0x10 [ 313.836710][ T5958] ? __pfx_j1939_sk_sendmsg+0x10/0x10 [ 313.844367][ T5958] __sock_sendmsg+0x30f/0x380 [ 313.849532][ T5958] ____sys_sendmsg+0x877/0xb60 [ 313.854730][ T5958] ___sys_sendmsg+0x28d/0x3c0 [ 313.860576][ T5958] ? kmsan_get_metadata+0x13e/0x1c0 [ 313.866235][ T5958] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 313.872638][ T5958] ? __rcu_read_unlock+0x7b/0xe0 [ 313.877909][ T5958] ? __fget_files+0x4f5/0x5c0 [ 313.883103][ T5958] ? kmsan_get_metadata+0x13e/0x1c0 [ 313.888685][ T5958] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 313.895222][ T5958] __sys_sendmsg+0x21f/0x3c0 [ 313.900403][ T5958] __ia32_compat_sys_sendmsg+0x9d/0xe0 [ 313.906262][ T5958] ia32_sys_call+0x3aac/0x40d0 [ 313.911543][ T5958] __do_fast_syscall_32+0xb0/0x110 [ 313.917065][ T5958] ? irqentry_exit+0x16/0x60 [ 313.922233][ T5958] do_fast_syscall_32+0x38/0x80 [ 313.933326][ T5958] do_SYSENTER_32+0x1f/0x30 [ 313.938219][ T5958] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 313.946794][ T5958] RIP: 0023:0xf749d579 [ 313.951469][ T5958] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 313.971700][ T5958] RSP: 002b:00000000f578656c EFLAGS: 00000206 ORIG_RAX: 0000000000000172 [ 313.980671][ T5958] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000380 [ 313.988934][ T5958] RDX: 0000000000feffff RSI: 0000000000000000 RDI: 0000000000000000 [ 313.997349][ T5958] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 314.005753][ T5958] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 314.014307][ T5958] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 314.022790][ T5958] [ 314.026036][ T5958] ---[ end trace 0000000000000000 ]--- [ 315.649809][ T5200] Bluetooth: hci1: command 0x0406 tx timeout [ 316.097248][ T5986] loop3: detected capacity change from 0 to 2048 [ 316.121504][ T5985] loop0: detected capacity change from 0 to 2048 [ 316.157368][ T5986] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 316.192532][ T5992] loop2: detected capacity change from 0 to 256 [ 316.219671][ T5258] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 316.241785][ T5993] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 316.266180][ T5985] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 316.338216][ T5986] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=15) [ 316.357307][ T5986] Remounting filesystem read-only [ 316.363840][ T5986] NILFS (loop3): DAT doesn't have a block to manage vblocknr = 3044605952 [ 316.375208][ T5986] NILFS error (device loop3): nilfs_bmap_truncate: broken bmap (inode number=15) [ 316.385377][ T5986] NILFS (loop3): error -5 truncating bmap (ino=15) [ 316.445419][ T5986] syz.3.264 (5986) used greatest stack depth: 4552 bytes left [ 316.480843][ T29] audit: type=1800 audit(1726548635.079:11): pid=5985 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.263" name="bus" dev="loop0" ino=1367 res=0 errno=0 [ 316.481610][ T5258] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 316.519407][ T5258] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 316.529779][ T5258] usb 5-1: New USB device found, idVendor=1038, idProduct=12b6, bcdDevice= 0.00 [ 316.539342][ T5258] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 316.609890][ T5258] usb 5-1: config 0 descriptor?? [ 316.840584][ T5188] NILFS (loop3): discard dirty page: offset=0, ino=6 [ 316.847775][ T5188] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 316.858402][ T5188] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 316.868062][ T5188] NILFS (loop3): discard dirty block: blocknr=37, size=1024 [ 316.876072][ T5188] NILFS (loop3): discard dirty block: blocknr=38, size=1024 [ 316.961960][ T5188] NILFS (loop3): disposed unprocessed dirty file(s) when detaching log writer [ 316.971672][ T5188] NILFS (loop3): discard dirty page: offset=0, ino=15 [ 316.978919][ T5188] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 316.988610][ T5188] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 317.033956][ T5188] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 317.043529][ T5188] NILFS (loop3): discard dirty block: blocknr=0, size=1024 [ 317.051491][ T5188] NILFS (loop3): discard dirty page: offset=134217728, ino=15 [ 317.059588][ T5188] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 317.068925][ T5188] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 317.078604][ T5188] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 317.088867][ T5188] NILFS (loop3): discard dirty block: blocknr=0, size=1024 [ 317.136878][ T5188] NILFS (loop3): discard dirty page: offset=0, ino=3 [ 317.145007][ T5188] NILFS (loop3): discard dirty block: blocknr=42, size=1024 [ 317.153074][ T5188] NILFS (loop3): discard dirty block: blocknr=43, size=1024 [ 317.160826][ T5188] NILFS (loop3): discard dirty block: blocknr=44, size=1024 [ 317.168412][ T5188] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 317.177744][ T5188] NILFS (loop3): discard dirty page: offset=229376, ino=3 [ 317.185431][ T5188] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 317.194688][ T5188] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 317.210137][ T5188] NILFS (loop3): discard dirty block: blocknr=50, size=1024 [ 317.219450][ T5188] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 317.255502][ T5258] steelseries 0003:1038:12B6.0004: hidraw0: USB HID v0.00 Device [HID 1038:12b6] on usb-dummy_hcd.4-1/input0 [ 317.905423][ T10] usb 5-1: USB disconnect, device number 2 [ 318.012302][ T6001] loop1: detected capacity change from 0 to 2048 [ 318.110596][ T6009] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 318.259882][ T6009] NILFS (loop1): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 318.271334][ T6009] NILFS error (device loop1): nilfs_bmap_propagate: broken bmap (inode number=4) [ 318.361805][ T6009] Remounting filesystem read-only [ 318.448711][ T5189] NILFS (loop1): disposed unprocessed dirty file(s) when stopping log writer [ 318.461454][ T5189] NILFS (loop1): discard dirty page: offset=0, ino=2 [ 318.468434][ T5189] NILFS (loop1): discard dirty block: blocknr=18, size=1024 [ 318.477079][ T5189] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 318.486529][ T5189] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 318.495909][ T5189] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 318.612696][ T5189] NILFS (loop1): discard dirty page: offset=0, ino=6 [ 318.619979][ T5189] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 318.629412][ T5189] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 318.644867][ T5189] NILFS (loop1): discard dirty block: blocknr=37, size=1024 [ 318.654483][ T5189] NILFS (loop1): discard dirty block: blocknr=38, size=1024 [ 318.758713][ T5189] NILFS (loop1): discard dirty page: offset=0, ino=5 [ 318.766064][ T5189] NILFS (loop1): discard dirty block: blocknr=41, size=1024 [ 318.774051][ T5189] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 318.783438][ T5189] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 318.792844][ T5189] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 318.819910][ T6014] netlink: 8 bytes leftover after parsing attributes in process `syz.3.275'. [ 318.880271][ T5189] NILFS (loop1): discard dirty page: offset=0, ino=4 [ 318.887301][ T5189] NILFS (loop1): discard dirty block: blocknr=40, size=1024 [ 318.895880][ T5189] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 318.905354][ T5189] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 318.914715][ T5189] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 319.007623][ T5189] NILFS (loop1): discard dirty page: offset=0, ino=3 [ 319.015032][ T5189] NILFS (loop1): discard dirty block: blocknr=42, size=1024 [ 319.022829][ T5189] NILFS (loop1): discard dirty block: blocknr=43, size=1024 [ 319.030571][ T5189] NILFS (loop1): discard dirty block: blocknr=44, size=1024 [ 319.038152][ T5189] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 319.479390][ T10] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 319.699758][ T10] usb 1-1: Using ep0 maxpacket: 8 [ 319.732338][ T10] usb 1-1: config 0 has no interfaces? [ 319.806703][ T10] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 319.816405][ T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 319.824926][ T10] usb 1-1: Product: syz [ 319.829480][ T10] usb 1-1: Manufacturer: syz [ 319.834339][ T10] usb 1-1: SerialNumber: syz [ 319.892096][ T10] usb 1-1: config 0 descriptor?? [ 320.170707][ T5258] usb 1-1: USB disconnect, device number 3 [ 320.228703][ T6033] loop3: detected capacity change from 0 to 1024 [ 320.428783][ T6033] hfsplus: bad catalog entry type [ 320.710747][ T4428] hfsplus: b-tree write err: -5, ino 4 [ 321.900463][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 321.908391][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 321.922421][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 321.928406][ T6056] loop2: detected capacity change from 0 to 256 [ 321.932067][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 321.944685][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 321.952600][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 321.960523][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 321.968281][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 321.970395][ T6056] exfat: Deprecated parameter 'namecase' [ 321.976205][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 321.989816][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 321.997594][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 322.005541][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 322.013558][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 322.027160][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 322.036819][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 322.044744][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 322.055644][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 322.063560][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 322.071568][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 322.079449][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 322.087222][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 322.095203][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 322.102995][ T6056] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 322.103166][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 322.131591][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 322.140220][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 322.148025][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 322.156034][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 322.163990][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 322.171951][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 322.179883][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 322.187703][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 322.195601][ T5258] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 322.409568][ T29] audit: type=1800 audit(1726548640.989:12): pid=6056 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.294" name="file1" dev="loop2" ino=1048610 res=0 errno=0 [ 322.435375][ T29] audit: type=1800 audit(1726548641.019:13): pid=6056 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.294" name="file1" dev="loop2" ino=1048610 res=0 errno=0 [ 322.465652][ T6054] loop1: detected capacity change from 0 to 2048 [ 322.493556][ T5258] hid-generic 0000:0000:0000.0005: hidraw0: HID v0.00 Device [syz0] on syz0 [ 322.598591][ T6054] EXT4-fs (loop1): couldn't mount as ext3 due to feature incompatibilities [ 322.689614][ T6060] loop4: detected capacity change from 0 to 128 [ 322.756962][ T6060] VFS: Found a Xenix FS (block size = 512) on device loop4 [ 322.827147][ T6060] sysv_free_block: trying to free block not in datazone [ 322.936221][ T29] audit: type=1804 audit(1726548641.509:14): pid=6060 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.296" name="/newroot/57/file0" dev="loop4" ino=2 res=1 errno=0 [ 323.138767][ T6066] syzkaller1: entered promiscuous mode [ 323.151609][ T6066] syzkaller1: entered allmulticast mode [ 323.322353][ T5190] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 324.136139][ T10] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 324.369430][ T10] usb 5-1: Using ep0 maxpacket: 8 [ 324.422077][ T10] usb 5-1: config index 0 descriptor too short (expected 301, got 45) [ 324.431154][ T10] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 324.441544][ T10] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 324.453864][ T10] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 324.464924][ T10] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 324.483115][ T10] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 324.494542][ T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 324.939992][ T10] usb 5-1: usb_control_msg returned -32 [ 324.945981][ T10] usbtmc 5-1:16.0: can't read capabilities [ 325.456533][ T6097] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 326.053376][ T6105] delete_channel: no stack [ 326.330283][ T6110] netlink: 188 bytes leftover after parsing attributes in process `syz.0.313'. [ 326.801015][ T6115] program syz.1.315 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 326.818409][ T10] usb 5-1: USB disconnect, device number 3 [ 327.644909][ T6122] IPVS: Scheduler module ip_vs_sip not found [ 327.678016][ T6129] netlink: 4 bytes leftover after parsing attributes in process `syz.3.321'. [ 328.513054][ T6142] netlink: 140 bytes leftover after parsing attributes in process `syz.4.325'. [ 328.522661][ T6142] netlink: 'syz.4.325': attribute type 2 has an invalid length. [ 328.531038][ T6142] netlink: 'syz.4.325': attribute type 2 has an invalid length. [ 328.538944][ T6142] netlink: 'syz.4.325': attribute type 4 has an invalid length. [ 328.547153][ T6142] netlink: 4 bytes leftover after parsing attributes in process `syz.4.325'. [ 328.556850][ T6142] netlink: 'syz.4.325': attribute type 3 has an invalid length. [ 328.565064][ T6142] netlink: 24 bytes leftover after parsing attributes in process `syz.4.325'. [ 329.067091][ T6146] loop0: detected capacity change from 0 to 2048 [ 329.180835][ T6146] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 329.273707][ T6148] loop2: detected capacity change from 0 to 2048 [ 329.374574][ T6146] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 329.418333][ T6148] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 329.440740][ T6146] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 15 with max blocks 1 with error 28 [ 329.453982][ T6146] EXT4-fs (loop0): This should not happen!! Data will be lost [ 329.453982][ T6146] [ 329.464300][ T6146] EXT4-fs (loop0): Total free blocks count 0 [ 329.471530][ T6146] EXT4-fs (loop0): Free/Dirty block details [ 329.478129][ T6146] EXT4-fs (loop0): free_blocks=2415919104 [ 329.484417][ T6146] EXT4-fs (loop0): dirty_blocks=16 [ 329.490005][ T6146] EXT4-fs (loop0): Block reservation details [ 329.502260][ T6146] EXT4-fs (loop0): i_reserved_data_blocks=1 [ 329.847931][ T34] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 330.030355][ T6164] netlink: 'syz.4.335': attribute type 6 has an invalid length. [ 330.521972][ T6166] loop2: detected capacity change from 0 to 2048 [ 330.678083][ T6176] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 330.796052][ T6176] NILFS (loop2): vblocknr = 15 has abnormal lifetime: start cno (= 4128770) > current cno (= 3) [ 330.807420][ T6176] NILFS error (device loop2): nilfs_bmap_propagate: broken bmap (inode number=16) [ 330.870909][ T6176] Remounting filesystem read-only [ 331.013183][ T5199] NILFS (loop2): disposed unprocessed dirty file(s) when stopping log writer [ 331.023469][ T5199] NILFS (loop2): discard dirty page: offset=0, ino=16 [ 331.038736][ T5199] NILFS (loop2): discard dirty block: blocknr=23, size=1024 [ 331.049164][ T5199] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 331.058385][ T5199] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 331.067740][ T5199] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 331.092163][ T5199] NILFS (loop2): discard dirty page: offset=4096, ino=6 [ 331.101545][ T5199] NILFS (loop2): discard dirty block: blocknr=39, size=1024 [ 331.109372][ T5199] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 331.118546][ T5199] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 331.127872][ T5199] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 331.225338][ T5199] NILFS (loop2): discard dirty page: offset=0, ino=5 [ 331.238398][ T5199] NILFS (loop2): discard dirty block: blocknr=41, size=1024 [ 331.247858][ T5199] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 331.257303][ T5199] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 331.269273][ T5199] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 331.895396][ T6190] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies. [ 332.459684][ T5258] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 332.649373][ T6205] mmap: syz.4.351 (6205) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 332.982723][ T5258] usb 2-1: New USB device found, idVendor=0eb1, idProduct=7007, bcdDevice= 2.04 [ 332.982909][ T5258] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 332.988016][ T5258] usb 2-1: config 0 descriptor?? [ 333.015421][ T5258] go7007 2-1:0.0: probe with driver go7007 failed with error -12 [ 333.420665][ T44] usb 2-1: USB disconnect, device number 3 [ 334.666320][ T6227] loop2: detected capacity change from 0 to 128 [ 335.649609][ T6239] loop2: detected capacity change from 0 to 256 [ 336.369761][ T6245] netlink: 8 bytes leftover after parsing attributes in process `syz.3.366'. [ 336.816574][ T6252] loop4: detected capacity change from 0 to 1024 [ 336.926374][ T6252] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 337.247536][ T6252] overlay: Unknown parameter 'ime [ 337.247536][ T6252] string [ 337.247536][ T6252] statistic [ 337.247536][ T6252] state [ 337.247536][ T6252] realm [ 337.247536][ T6252] rateest [ 337.247536][ T6252] quota [ 337.247536][ T6252] pkttype [ 337.247536][ T6252] physdev [ 337.247536][ T6252] cgroup [ 337.247536][ T6252] cgroup [ 337.247536][ T6252] cgroup [ 337.247536][ T6252] owner [ 337.247536][ T6252] nfacct [ 337.247536][ T6252] nfacct [ 337.247536][ T6252] mac [ 337.247536][ T6252] limit [ 337.247536][ T6252] ipvs [ 337.247536][ T6252] helper [ 337.247536][ T6252] devgroup [ 337.247536][ T6252] cpu [ 337.247536][ T6252] conntrack [ 337.247536][ T6252] conntrack [ 337.247536][ T6252] conntrack [ 337.247536][ T6252] connlimit [ 337.247536][ T6252] connlabel [ 337.247536][ T6252] connbytes [ 337.247536][ T6252] comment [ 337.247536][ T6252] cluster [ 337.247536][ T6252] bpf [ 337.247536][ T6252] bpf [ 337.247536][ T6252] addrtype [ 337.247536][ T6252] connmark [ 337.247536][ T6252] mark [ 337.247536][ T6252] rpfilter [ 337.247536][ T6252] ah [ 337.247536][ T6252] tcpmss [ 337.247536][ T6252] socket [ 337.247536][ T6252] socket [ 337.247536][ T6252] socket [ 337.247536][ T6252] socket [ 337.247536][ T6252] sctp [ 337.247536][ T6252] recent [ 337.247536][ T6252] recent [ 337.247536][ T6252] policy [ 337.247536][ T6252] osf [ 337.247536][ T6252] multiport [ 337.247536][ T6252] length [ 337.247536][ T6252] l2tp [ 337.247536][ T6252] iprange [ 337.247536][ T6252] ipcomp [ 337.247536][ T6252] ttl [ 337.247536][ T6252] hashlimit [ 337.247536][ T6252] hashlimit [ 337.247536][ T6252] hashlimit [ 337.247536][ T6252] esp [ 337.247536][ T6252] ecn [ 337.247536][ T6252] tos [ 337.247536][ T6252] dscp [ 337.247536][ T6252] dccp [ 337.247536][ T6252] addrtype [ 337.247536][ T6252] set [ 337.247536][ T6252] set [ 337.247536][ T6252] set [ 337.247536][ T6252] set [ 337.247536][ T6252] set [ 337.247536][ T6252] icmp [ 337.429919][ C0] vkms_vblank_simulate: vblank timer overrun [ 337.894410][ T5190] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 338.729447][ T29] audit: type=1326 audit(1726548657.319:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6277 comm="syz.0.379" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73dd579 code=0x7ffc0000 [ 338.752943][ T29] audit: type=1326 audit(1726548657.319:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6277 comm="syz.0.379" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73dd579 code=0x7ffc0000 [ 338.859669][ T29] audit: type=1326 audit(1726548657.419:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6277 comm="syz.0.379" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf73dd579 code=0x7ffc0000 [ 338.881651][ C0] vkms_vblank_simulate: vblank timer overrun [ 338.889398][ T29] audit: type=1326 audit(1726548657.419:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6277 comm="syz.0.379" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73dd579 code=0x7ffc0000 [ 338.911336][ C0] vkms_vblank_simulate: vblank timer overrun [ 338.924703][ T29] audit: type=1326 audit(1726548657.419:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6277 comm="syz.0.379" exe="/root/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf73dd579 code=0x7ffc0000 [ 338.946558][ C0] vkms_vblank_simulate: vblank timer overrun [ 338.953456][ T29] audit: type=1326 audit(1726548657.419:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6277 comm="syz.0.379" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73dd579 code=0x7ffc0000 [ 338.975968][ T29] audit: type=1326 audit(1726548657.439:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6277 comm="syz.0.379" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73dd579 code=0x7ffc0000 [ 338.997903][ C0] vkms_vblank_simulate: vblank timer overrun [ 339.004724][ T29] audit: type=1326 audit(1726548657.439:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6277 comm="syz.0.379" exe="/root/syz-executor" sig=0 arch=40000003 syscall=459 compat=1 ip=0xf73dd579 code=0x7ffc0000 [ 339.033160][ T29] audit: type=1326 audit(1726548657.439:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6277 comm="syz.0.379" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73dd579 code=0x7ffc0000 [ 339.412608][ T6284] bridge0: entered allmulticast mode [ 340.186618][ T6301] netlink: 4 bytes leftover after parsing attributes in process `syz.0.388'. [ 340.196091][ T6301] netlink: 4 bytes leftover after parsing attributes in process `syz.0.388'. [ 340.205704][ T6301] netlink: 4 bytes leftover after parsing attributes in process `syz.0.388'. [ 340.317369][ T6303] loop4: detected capacity change from 0 to 16 [ 340.380999][ T6303] erofs: (device loop4): mounted with root inode @ nid 36. [ 341.961438][ T6308] loop0: detected capacity change from 0 to 4096 [ 342.738413][ T6308] syz.0.391 (6308) used greatest stack depth: 4416 bytes left [ 343.415972][ T6323] 9p: Unknown uid 00000000004294967295 [ 344.829614][ T6325] netlink: 'syz.3.400': attribute type 2 has an invalid length. [ 345.846235][ T6333] loop4: detected capacity change from 0 to 2048 [ 345.939228][ T6333] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 346.028207][ T6339] netlink: 'syz.1.407': attribute type 15 has an invalid length. [ 346.195983][ T5258] usb 4-1: new low-speed USB device number 6 using dummy_hcd [ 346.437048][ T5258] usb 4-1: config index 0 descriptor too short (expected 6427, got 27) [ 346.445993][ T5258] usb 4-1: config 0 has an invalid interface number: 21 but max is 0 [ 346.454816][ T5258] usb 4-1: config 0 has no interface number 0 [ 346.461337][ T5258] usb 4-1: config 0 interface 21 altsetting 0 endpoint 0x82 is Bulk; changing to Interrupt [ 346.472102][ T5258] usb 4-1: New USB device found, idVendor=06cd, idProduct=0202, bcdDevice=92.d4 [ 346.481607][ T5258] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 346.561614][ T5258] usb 4-1: config 0 descriptor?? [ 346.569427][ T6337] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 346.691242][ T6344] Zero length message leads to an empty skb [ 347.357074][ T5258] input: USB Keyspan Remote 06cd:0202 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.21/input/input9 [ 347.710762][ T44] usb 4-1: USB disconnect, device number 6 [ 347.710983][ C0] keyspan_remote 4-1:0.21: keyspan_irq_recv - usb_submit_urb failed with result: -19 [ 348.488227][ T6355] loop4: detected capacity change from 0 to 2048 [ 348.656978][ T6355] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 348.790567][ T6362] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 2: invalid block bitmap [ 348.880872][ T6355] EXT4-fs error (device loop4): ext4_find_extent:936: inode #2: comm syz.4.414: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 349.212202][ T5190] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 349.222695][ T6370] netlink: 44 bytes leftover after parsing attributes in process `syz.2.419'. [ 350.510354][ T6386] loop3: detected capacity change from 0 to 512 [ 350.553616][ T29] audit: type=1326 audit(1726548669.119:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6387 comm="syz.4.426" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73dd579 code=0x0 [ 350.751790][ T6386] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 350.765155][ T6386] ext4 filesystem being mounted at /83/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 350.922563][ T6384] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 351.843609][ T5188] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 351.957566][ T6402] syz.1.431[6402] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 351.958203][ T6402] syz.1.431[6402] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 352.238186][ T1245] ieee802154 phy0 wpan0: encryption failed: -22 [ 352.259514][ T1245] ieee802154 phy1 wpan1: encryption failed: -22 [ 352.287197][ T6407] input: syz1 as /devices/virtual/input/input10 [ 352.679294][ T44] kernel write not supported for file /input/mouse0 (pid: 44 comm: kworker/1:1) [ 352.884481][ T6414] macvlan2: entered promiscuous mode [ 352.893925][ T6414] team_slave_0: entered promiscuous mode [ 352.900128][ T6414] team_slave_1: entered promiscuous mode [ 352.906188][ T6414] team0: entered promiscuous mode [ 352.916836][ T6414] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 352.934558][ T6414] bond0: (slave macvlan2): Enslaving as an active interface with an up link [ 353.232267][ T6417] netlink: 4 bytes leftover after parsing attributes in process `syz.2.437'. [ 354.225179][ T6427] loop3: detected capacity change from 0 to 1024 [ 354.244124][ T5200] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 354.263028][ T6427] hfsplus: request for non-existent node 3 in B*Tree [ 354.267647][ T5200] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 354.270218][ T6427] hfsplus: request for non-existent node 3 in B*Tree [ 354.321474][ T5200] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 354.360835][ T5200] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 354.387460][ T5200] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 354.398390][ T5200] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 355.434683][ T44] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured! [ 355.960302][ T6429] chnl_net:caif_netlink_parms(): no params data found [ 356.197720][ T6454] loop2: detected capacity change from 0 to 128 [ 356.388159][ T44] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured! [ 356.462583][ T5200] Bluetooth: hci5: command tx timeout [ 356.789496][ T4428] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 357.011213][ T4428] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 357.178480][ T4428] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 357.282945][ T6469] loop4: detected capacity change from 0 to 256 [ 357.424572][ T6470] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 357.454222][ C1] Illegal XDP return value 1603896156 on prog (id 51) dev veth1, expect packet loss! [ 357.618147][ T4428] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 357.795005][ T6429] bridge0: port 1(bridge_slave_0) entered blocking state [ 357.804221][ T6473] netlink: 24 bytes leftover after parsing attributes in process `syz.2.460'. [ 357.805998][ T6429] bridge0: port 1(bridge_slave_0) entered disabled state [ 357.825145][ T6429] bridge_slave_0: entered allmulticast mode [ 357.838795][ T6429] bridge_slave_0: entered promiscuous mode [ 357.934284][ T6429] bridge0: port 2(bridge_slave_1) entered blocking state [ 357.942672][ T6429] bridge0: port 2(bridge_slave_1) entered disabled state [ 357.950794][ T6429] bridge_slave_1: entered allmulticast mode [ 357.973672][ T6429] bridge_slave_1: entered promiscuous mode [ 358.089302][ T6475] loop1: detected capacity change from 0 to 64 [ 358.258159][ T6429] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 358.318096][ T4428] bridge_slave_1: left allmulticast mode [ 358.324178][ T4428] bridge_slave_1: left promiscuous mode [ 358.331166][ T4428] bridge0: port 2(bridge_slave_1) entered disabled state [ 358.388438][ T4428] bridge_slave_0: left allmulticast mode [ 358.394844][ T4428] bridge_slave_0: left promiscuous mode [ 358.401834][ T4428] bridge0: port 1(bridge_slave_0) entered disabled state [ 358.530097][ T5193] Bluetooth: hci5: command tx timeout [ 359.049448][ T6485] loop1: detected capacity change from 0 to 512 [ 359.095779][ T4428] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 359.131003][ T6485] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.465: corrupted in-inode xattr: invalid ea_ino [ 359.152610][ T6485] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.465: couldn't read orphan inode 15 (err -117) [ 359.173568][ T6485] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 359.196420][ T4428] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 359.246749][ T4428] bond0 (unregistering): Released all slaves [ 359.338220][ T6429] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 359.410494][ T5193] Bluetooth: hci1: command 0x0406 tx timeout [ 359.416038][ T5202] Bluetooth: hci3: command 0x0406 tx timeout [ 359.417524][ T5193] Bluetooth: hci2: command 0x0406 tx timeout [ 359.771123][ T5189] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 359.881999][ T6429] team0: Port device team_slave_0 added [ 359.888587][ T44] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 360.057462][ T6429] team0: Port device team_slave_1 added [ 360.137613][ T6498] loop1: detected capacity change from 0 to 128 [ 360.238843][ T44] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 360.256420][ T44] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 360.266658][ T44] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 360.280193][ T44] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 360.289753][ T44] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 360.385208][ T4428] hsr_slave_0: left promiscuous mode [ 360.401865][ T44] usb 3-1: config 0 descriptor?? [ 360.427979][ T4428] hsr_slave_1: left promiscuous mode [ 360.462279][ T4428] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 360.471464][ T4428] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 360.504287][ T4428] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 360.512452][ T4428] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 360.600299][ T4428] veth1_macvtap: left promiscuous mode [ 360.606128][ T4428] veth0_macvtap: left promiscuous mode [ 360.612553][ T4428] veth1_vlan: left promiscuous mode [ 360.618347][ T4428] veth0_vlan: left promiscuous mode [ 360.623677][ T5200] Bluetooth: hci5: command tx timeout [ 360.914026][ T44] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0 [ 360.956055][ T44] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving [ 361.033055][ T44] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 361.709400][ T4428] team0 (unregistering): Port device team_slave_1 removed [ 361.741523][ T4428] team0 (unregistering): Port device team_slave_0 removed [ 362.161590][ T5248] usb 3-1: USB disconnect, device number 2 [ 362.232240][ T6429] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 362.241932][ T6429] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 362.273435][ T6429] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 362.417782][ T6429] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 362.425698][ T6429] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 362.457582][ T6429] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 362.699237][ T5200] Bluetooth: hci5: command tx timeout [ 363.023569][ T6429] hsr_slave_0: entered promiscuous mode [ 363.071596][ T6429] hsr_slave_1: entered promiscuous mode [ 363.141582][ T6429] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 363.150289][ T6429] Cannot create hsr debugfs directory [ 364.060765][ T6523] netlink: 4 bytes leftover after parsing attributes in process `syz.2.483'. [ 365.082094][ T6429] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 365.190350][ T6429] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 365.340990][ T6429] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 365.475804][ T6429] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 365.823907][ T5258] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 366.030625][ T5258] usb 5-1: Using ep0 maxpacket: 16 [ 366.060878][ T5258] usb 5-1: config 0 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 366.073290][ T5258] usb 5-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0 [ 366.083802][ T5258] usb 5-1: config 0 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 366.097194][ T5258] usb 5-1: config 0 interface 0 has no altsetting 0 [ 366.104331][ T5258] usb 5-1: New USB device found, idVendor=045e, idProduct=05da, bcdDevice= 0.00 [ 366.114205][ T5258] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 366.141200][ T5258] usb 5-1: config 0 descriptor?? [ 366.716338][ T5258] hid-generic 0003:045E:05DA.0007: item fetching failed at offset 30/34 [ 366.738560][ T5258] hid-generic 0003:045E:05DA.0007: probe with driver hid-generic failed with error -22 [ 366.862241][ T6429] 8021q: adding VLAN 0 to HW filter on device bond0 [ 366.944833][ T44] usb 5-1: USB disconnect, device number 4 [ 367.038420][ T6429] 8021q: adding VLAN 0 to HW filter on device team0 [ 367.085148][ T34] bridge0: port 1(bridge_slave_0) entered blocking state [ 367.093359][ T34] bridge0: port 1(bridge_slave_0) entered forwarding state [ 367.241882][ T34] bridge0: port 2(bridge_slave_1) entered blocking state [ 367.249876][ T34] bridge0: port 2(bridge_slave_1) entered forwarding state [ 368.020527][ T6569] netlink: 8 bytes leftover after parsing attributes in process `syz.4.500'. [ 369.064066][ T6579] loop4: detected capacity change from 0 to 128 [ 369.231084][ T6429] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 369.294433][ T6580] syz.4.504: attempt to access beyond end of device [ 369.294433][ T6580] loop4: rw=2049, sector=145, nr_sectors = 512 limit=128 [ 369.552158][ T6429] veth0_vlan: entered promiscuous mode [ 369.598765][ T6429] veth1_vlan: entered promiscuous mode [ 369.905876][ T6429] veth0_macvtap: entered promiscuous mode [ 369.907393][ T6587] loop2: detected capacity change from 0 to 7 [ 369.962008][ T6587] Dev loop2: unable to read RDB block 7 [ 369.967911][ T6429] veth1_macvtap: entered promiscuous mode [ 369.967954][ T6587] loop2: AHDI p1 p3 p4 [ 369.981317][ T6587] loop2: partition table partially beyond EOD, truncated [ 369.988954][ T6587] loop2: p1 start 2048 is beyond EOD, truncated [ 369.995705][ T6587] loop2: p3 size 16779293 extends beyond EOD, truncated [ 370.138517][ T6429] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 370.154985][ T6429] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 370.166860][ T6429] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 370.179528][ T6429] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 370.190945][ T6429] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 370.201793][ T6429] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 370.207677][ T34] kworker/u8:2: attempt to access beyond end of device [ 370.207677][ T34] loop4: rw=1, sector=657, nr_sectors = 384 limit=128 [ 370.211854][ T6429] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 370.211953][ T6429] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 370.217833][ T6429] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 370.350350][ T6429] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 370.361901][ T6429] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 370.372248][ T6429] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 370.383882][ T6429] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 370.394026][ T6429] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 370.404972][ T6429] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 370.422170][ T6429] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 370.432956][ T6429] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 370.448635][ T6429] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 370.503202][ T6429] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 370.512442][ T6429] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 370.521833][ T6429] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 370.532972][ T6429] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 371.308854][ T6597] TCP: request_sock_TCP: Possible SYN flooding on port 0.0.0.0:20002. Sending cookies. [ 372.383273][ T6613] program syz.1.516 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 372.540410][ T10] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 372.691910][ C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured! [ 372.783599][ T10] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 372.795719][ T10] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 372.812308][ T10] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 372.824803][ T10] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 372.838279][ T10] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 372.847905][ T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 372.869762][ T10] usb 5-1: config 0 descriptor?? [ 373.160783][ T6620] bridge0: port 3(vlan2) entered blocking state [ 373.167939][ T6620] bridge0: port 3(vlan2) entered disabled state [ 373.175313][ T6620] vlan2: entered allmulticast mode [ 373.184694][ T6620] vlan2: entered promiscuous mode [ 373.191080][ T6620] bridge0: adding interface vlan2 with same address as a received packet (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 373.436667][ T10] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0 [ 373.460334][ T10] plantronics 0003:047F:FFFF.0008: No inputs registered, leaving [ 373.499985][ T10] plantronics 0003:047F:FFFF.0008: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0 [ 373.774159][ T44] usb 5-1: USB disconnect, device number 5 [ 373.911104][ T6627] loop1: detected capacity change from 0 to 128 [ 375.961557][ T1054] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 375.969943][ T1054] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 376.088329][ T147] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 376.097007][ T147] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 376.111632][ T5201] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 376.122034][ T5201] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 376.136534][ T5201] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 376.155368][ T5201] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 376.204479][ T5201] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 376.224335][ T5201] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 377.349211][ T6663] netlink: 4 bytes leftover after parsing attributes in process `syz.1.532'. [ 377.751485][ T6650] chnl_net:caif_netlink_parms(): no params data found [ 378.371576][ T5201] Bluetooth: hci4: command tx timeout [ 379.802669][ T6650] bridge0: port 1(bridge_slave_0) entered blocking state [ 379.810818][ T6650] bridge0: port 1(bridge_slave_0) entered disabled state [ 379.825693][ T6650] bridge_slave_0: entered allmulticast mode [ 379.835624][ T6650] bridge_slave_0: entered promiscuous mode [ 379.859930][ T6650] bridge0: port 2(bridge_slave_1) entered blocking state [ 379.867766][ T6650] bridge0: port 2(bridge_slave_1) entered disabled state [ 379.882357][ T6650] bridge_slave_1: entered allmulticast mode [ 379.892225][ T6650] bridge_slave_1: entered promiscuous mode [ 380.196986][ T6650] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 380.294451][ T6650] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 380.451017][ T6650] team0: Port device team_slave_0 added [ 380.455626][ T5201] Bluetooth: hci4: command tx timeout [ 380.471616][ T6650] team0: Port device team_slave_1 added [ 380.681569][ T6650] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 380.688790][ T6650] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 380.718661][ T6650] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 380.747294][ T6650] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 380.756947][ T6650] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 380.783505][ T6650] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 380.853079][ T6690] loop4: detected capacity change from 0 to 1024 [ 381.494707][ T6650] hsr_slave_0: entered promiscuous mode [ 381.565870][ T6650] hsr_slave_1: entered promiscuous mode [ 381.578428][ T6650] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 381.586677][ T6650] Cannot create hsr debugfs directory [ 381.644089][ T6690] EXT4-fs: Ignoring removed orlov option [ 381.653160][ T6690] EXT4-fs: Ignoring removed i_version option [ 381.704245][ T6690] EXT4-fs (loop4): Test dummy encryption mode enabled [ 381.884398][ T6690] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 382.473216][ T5190] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 382.548014][ T5201] Bluetooth: hci4: command tx timeout [ 382.809694][ T6650] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 383.054125][ T6650] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 383.175828][ T6650] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 383.289963][ T10] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 383.366843][ T6650] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 383.385973][ T6719] loop2: detected capacity change from 0 to 64 [ 383.497007][ T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 383.508640][ T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 383.519585][ T10] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 383.533155][ T10] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 383.542684][ T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 383.567785][ T10] usb 2-1: config 0 descriptor?? [ 383.951410][ T6650] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 383.982679][ T6650] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 384.111801][ T6650] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 384.167648][ T10] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 384.183498][ T10] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 384.205038][ T10] plantronics 0003:047F:FFFF.0009: No inputs registered, leaving [ 384.223530][ T10] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 384.260210][ T6650] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 384.592178][ T10] usb 2-1: USB disconnect, device number 4 [ 384.619305][ T5201] Bluetooth: hci4: command tx timeout [ 384.726286][ T6726] loop0: detected capacity change from 0 to 512 [ 384.880678][ T6726] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 384.896843][ T6726] ext4 filesystem being mounted at /7/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 385.164321][ T6726] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0 [ 385.176950][ T6726] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 64512 [ 385.189890][ T6726] EXT4-fs error (device loop0): ext4_acquire_dquot:6848: comm syz.0.554: Failed to acquire dquot type 0 [ 385.343013][ T6650] 8021q: adding VLAN 0 to HW filter on device bond0 [ 385.462416][ T6650] 8021q: adding VLAN 0 to HW filter on device team0 [ 385.473157][ T6726] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0 [ 385.484392][ T6726] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0 [ 385.494425][ T6726] EXT4-fs error (device loop0): ext4_acquire_dquot:6848: comm syz.0.554: Failed to acquire dquot type 0 [ 385.510402][ T2985] bridge0: port 1(bridge_slave_0) entered blocking state [ 385.510955][ T2985] bridge0: port 1(bridge_slave_0) entered forwarding state [ 385.567902][ T4428] bridge0: port 2(bridge_slave_1) entered blocking state [ 385.575904][ T4428] bridge0: port 2(bridge_slave_1) entered forwarding state [ 386.271165][ T6732] loop4: detected capacity change from 0 to 4096 [ 386.313094][ T6732] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512). [ 386.353835][ T6429] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 387.513125][ T6650] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 388.736354][ T6650] veth0_vlan: entered promiscuous mode [ 388.950634][ T6650] veth1_vlan: entered promiscuous mode [ 389.520805][ T6747] Invalid ELF header magic: != ELF [ 389.677548][ T6650] veth0_macvtap: entered promiscuous mode [ 389.712668][ T6650] veth1_macvtap: entered promiscuous mode [ 389.790130][ T6650] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 389.801984][ T6650] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 389.818365][ T6650] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 389.830566][ T6650] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 389.840838][ T6650] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 389.852124][ T6650] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 389.862368][ T6650] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 389.873247][ T6650] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 389.883836][ T6650] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 389.894701][ T6650] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 389.919397][ T6650] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 390.029624][ T6650] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 390.041197][ T6650] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 390.051473][ T6650] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 390.062992][ T6650] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 390.073246][ T6650] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 390.084120][ T6650] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 390.094475][ T6650] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 390.105308][ T6650] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 390.121653][ T6650] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 390.134164][ T6650] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 390.150563][ T6650] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 390.357393][ T6650] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 390.366910][ T6650] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 390.376633][ T6650] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 390.385857][ T6650] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 391.456833][ T6776] loop1: detected capacity change from 0 to 512 [ 391.625303][ T6776] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 391.638728][ T6776] ext4 filesystem being mounted at /123/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 392.232741][ T5189] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 392.270402][ T6790] loop0: detected capacity change from 0 to 512 [ 392.336085][ T6790] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 392.432300][ T6790] EXT4-fs (loop0): 1 truncate cleaned up [ 392.441150][ T6790] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 393.011505][ T6796] loop2: detected capacity change from 0 to 1024 [ 393.029622][ T6796] EXT4-fs: Ignoring removed orlov option [ 393.033197][ T6429] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 393.037965][ T6796] EXT4-fs (loop2): Test dummy encryption mode enabled [ 393.059749][ T6796] EXT4-fs (loop2): stripe (7) is not aligned with cluster size (16), stripe is disabled [ 393.145253][ T6796] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 393.955544][ T6809] ===================================================== [ 393.963181][ T6809] BUG: KMSAN: uninit-value in nf_reject_ip6_tcphdr_put+0x688/0x6c0 [ 393.971694][ T6809] nf_reject_ip6_tcphdr_put+0x688/0x6c0 [ 393.977527][ T6809] nf_send_reset6+0xd84/0x15b0 [ 393.982700][ T6809] nft_reject_inet_eval+0x3c1/0x880 [ 393.988202][ T6809] nft_do_chain+0x426/0x2290 [ 393.993189][ T6809] nft_do_chain_inet+0x41a/0x4f0 [ 393.998367][ T6809] nf_hook_slow+0xf4/0x400 [ 394.003156][ T6809] ipv6_rcv+0x29b/0x390 [ 394.007675][ T6809] __netif_receive_skb+0x1da/0xa00 [ 394.013181][ T6809] netif_receive_skb+0x58/0x660 [ 394.018291][ T6809] tun_rx_batched+0x3ee/0x980 [ 394.023404][ T6809] tun_get_user+0x5783/0x6c60 [ 394.028284][ T6809] tun_chr_write_iter+0x3ac/0x5d0 [ 394.033674][ T6809] vfs_write+0xb28/0x1540 [ 394.038235][ T6809] ksys_write+0x20f/0x4c0 [ 394.042905][ T6809] __ia32_sys_write+0x91/0xe0 [ 394.047777][ T6809] ia32_sys_call+0x2e34/0x40d0 [ 394.052942][ T6809] __do_fast_syscall_32+0xb0/0x110 [ 394.058324][ T6809] do_fast_syscall_32+0x38/0x80 [ 394.063573][ T6809] do_SYSENTER_32+0x1f/0x30 [ 394.068420][ T6809] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 394.075163][ T6809] [ 394.077603][ T6809] Uninit was stored to memory at: [ 394.083075][ T6809] nf_reject_ip6_tcphdr_put+0x60c/0x6c0 [ 394.088885][ T6809] nf_send_reset6+0xd84/0x15b0 [ 394.093982][ T6809] nft_reject_inet_eval+0x3c1/0x880 [ 394.099583][ T6809] nft_do_chain+0x426/0x2290 [ 394.104408][ T6809] nft_do_chain_inet+0x41a/0x4f0 [ 394.109726][ T6809] nf_hook_slow+0xf4/0x400 [ 394.114357][ T6809] ipv6_rcv+0x29b/0x390 [ 394.118722][ T6809] __netif_receive_skb+0x1da/0xa00 [ 394.124219][ T6809] netif_receive_skb+0x58/0x660 [ 394.129482][ T6809] tun_rx_batched+0x3ee/0x980 [ 394.134361][ T6809] tun_get_user+0x5783/0x6c60 [ 394.139364][ T6809] tun_chr_write_iter+0x3ac/0x5d0 [ 394.144608][ T6809] vfs_write+0xb28/0x1540 [ 394.149270][ T6809] ksys_write+0x20f/0x4c0 [ 394.153795][ T6809] __ia32_sys_write+0x91/0xe0 [ 394.158663][ T6809] ia32_sys_call+0x2e34/0x40d0 [ 394.163833][ T6809] __do_fast_syscall_32+0xb0/0x110 [ 394.169316][ T6809] do_fast_syscall_32+0x38/0x80 [ 394.174441][ T6809] do_SYSENTER_32+0x1f/0x30 [ 394.179331][ T6809] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 394.185944][ T6809] [ 394.188393][ T6809] Uninit was stored to memory at: [ 394.193874][ T6809] nf_reject_ip6_tcphdr_put+0x2ca/0x6c0 [ 394.199811][ T6809] nf_send_reset6+0xd84/0x15b0 [ 394.204811][ T6809] nft_reject_inet_eval+0x3c1/0x880 [ 394.210398][ T6809] nft_do_chain+0x426/0x2290 [ 394.215230][ T6809] nft_do_chain_inet+0x41a/0x4f0 [ 394.220550][ T6809] nf_hook_slow+0xf4/0x400 [ 394.225181][ T6809] ipv6_rcv+0x29b/0x390 [ 394.229685][ T6809] __netif_receive_skb+0x1da/0xa00 [ 394.235056][ T6809] netif_receive_skb+0x58/0x660 [ 394.240300][ T6809] tun_rx_batched+0x3ee/0x980 [ 394.245185][ T6809] tun_get_user+0x5783/0x6c60 [ 394.250209][ T6809] tun_chr_write_iter+0x3ac/0x5d0 [ 394.255453][ T6809] vfs_write+0xb28/0x1540 [ 394.260111][ T6809] ksys_write+0x20f/0x4c0 [ 394.264637][ T6809] __ia32_sys_write+0x91/0xe0 [ 394.269660][ T6809] ia32_sys_call+0x2e34/0x40d0 [ 394.274712][ T6809] __do_fast_syscall_32+0xb0/0x110 [ 394.280227][ T6809] do_fast_syscall_32+0x38/0x80 [ 394.283082][ T6796] fscrypt: AES-256-CBC-CTS using implementation "cts(cbc(ecb(aes-fixed-time)))" [ 394.285273][ T6809] do_SYSENTER_32+0x1f/0x30 [ 394.299406][ T6809] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 394.306005][ T6809] [ 394.308451][ T6809] Uninit was created at: [ 394.313138][ T6809] kmem_cache_alloc_node_noprof+0x6bf/0xb80 [ 394.319402][ T6809] kmalloc_reserve+0x13d/0x4a0 [ 394.324398][ T6809] __alloc_skb+0x363/0x7b0 [ 394.329181][ T6809] nf_send_reset6+0x98d/0x15b0 [ 394.334198][ T6809] nft_reject_inet_eval+0x3c1/0x880 [ 394.339786][ T6809] nft_do_chain+0x426/0x2290 [ 394.344619][ T6809] nft_do_chain_inet+0x41a/0x4f0 [ 394.349945][ T6809] nf_hook_slow+0xf4/0x400 [ 394.354598][ T6809] ipv6_rcv+0x29b/0x390 [ 394.359085][ T6809] __netif_receive_skb+0x1da/0xa00 [ 394.364454][ T6809] netif_receive_skb+0x58/0x660 [ 394.369690][ T6809] tun_rx_batched+0x3ee/0x980 [ 394.374577][ T6809] tun_get_user+0x5783/0x6c60 [ 394.379623][ T6809] tun_chr_write_iter+0x3ac/0x5d0 [ 394.384856][ T6809] vfs_write+0xb28/0x1540 [ 394.389542][ T6809] ksys_write+0x20f/0x4c0 [ 394.394060][ T6809] __ia32_sys_write+0x91/0xe0 [ 394.398933][ T6809] ia32_sys_call+0x2e34/0x40d0 [ 394.404067][ T6809] __do_fast_syscall_32+0xb0/0x110 [ 394.409628][ T6809] do_fast_syscall_32+0x38/0x80 [ 394.414732][ T6809] do_SYSENTER_32+0x1f/0x30 [ 394.419626][ T6809] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 394.426231][ T6809] [ 394.428688][ T6809] CPU: 0 UID: 0 PID: 6809 Comm: syz.1.581 Tainted: G W 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 394.440844][ T6809] Tainted: [W]=WARN [ 394.444788][ T6809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 394.455173][ T6809] ===================================================== [ 394.462392][ T6809] Disabling lock debugging due to kernel taint [ 394.468711][ T6809] Kernel panic - not syncing: kmsan.panic set ... [ 394.475296][ T6809] CPU: 0 UID: 0 PID: 6809 Comm: syz.1.581 Tainted: G B W 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 394.487302][ T6809] Tainted: [B]=BAD_PAGE, [W]=WARN [ 394.492478][ T6809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 394.502729][ T6809] Call Trace: [ 394.506145][ T6809] [ 394.509196][ T6809] dump_stack_lvl+0x216/0x2d0 [ 394.514125][ T6809] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 394.520191][ T6809] dump_stack+0x1e/0x30 [ 394.524567][ T6809] panic+0x4e2/0xcd0 [ 394.528760][ T6809] ? kmsan_get_metadata+0xc1/0x1c0 [ 394.534117][ T6809] kmsan_report+0x2c7/0x2d0 [ 394.538871][ T6809] ? kmsan_internal_chain_origin+0x10/0xd0 [ 394.544922][ T6809] ? __msan_warning+0x95/0x120 [ 394.549899][ T6809] ? nf_reject_ip6_tcphdr_put+0x688/0x6c0 [ 394.555842][ T6809] ? nf_send_reset6+0xd84/0x15b0 [ 394.560986][ T6809] ? nft_reject_inet_eval+0x3c1/0x880 [ 394.566580][ T6809] ? nft_do_chain+0x426/0x2290 [ 394.571559][ T6809] ? nft_do_chain_inet+0x41a/0x4f0 [ 394.576868][ T6809] ? nf_hook_slow+0xf4/0x400 [ 394.581658][ T6809] ? ipv6_rcv+0x29b/0x390 [ 394.586168][ T6809] ? __netif_receive_skb+0x1da/0xa00 [ 394.591673][ T6809] ? netif_receive_skb+0x58/0x660 [ 394.596913][ T6809] ? tun_rx_batched+0x3ee/0x980 [ 394.601939][ T6809] ? tun_get_user+0x5783/0x6c60 [ 394.606958][ T6809] ? tun_chr_write_iter+0x3ac/0x5d0 [ 394.612328][ T6809] ? vfs_write+0xb28/0x1540 [ 394.617003][ T6809] ? ksys_write+0x20f/0x4c0 [ 394.621702][ T6809] ? __ia32_sys_write+0x91/0xe0 [ 394.626742][ T6809] ? ia32_sys_call+0x2e34/0x40d0 [ 394.631940][ T6809] ? __do_fast_syscall_32+0xb0/0x110 [ 394.637524][ T6809] ? do_fast_syscall_32+0x38/0x80 [ 394.642817][ T6809] ? do_SYSENTER_32+0x1f/0x30 [ 394.647737][ T6809] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 394.654465][ T6809] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 394.661186][ T6809] ? kmsan_get_metadata+0x13e/0x1c0 [ 394.666627][ T6809] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 394.672688][ T6809] ? kmem_cache_alloc_node_noprof+0x6df/0xb80 [ 394.678969][ T6809] ? kmsan_get_metadata+0x13e/0x1c0 [ 394.684411][ T6809] ? kmsan_get_metadata+0x13e/0x1c0 [ 394.689851][ T6809] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 394.695945][ T6809] ? csum_partial+0x45e/0x4b0 [ 394.700850][ T6809] __msan_warning+0x95/0x120 [ 394.705654][ T6809] nf_reject_ip6_tcphdr_put+0x688/0x6c0 [ 394.711447][ T6809] nf_send_reset6+0xd84/0x15b0 [ 394.716467][ T6809] nft_reject_inet_eval+0x3c1/0x880 [ 394.721892][ T6809] ? kmsan_get_metadata+0x13e/0x1c0 [ 394.727326][ T6809] ? __pfx_nft_reject_inet_eval+0x10/0x10 [ 394.733371][ T6809] nft_do_chain+0x426/0x2290 [ 394.738182][ T6809] ? kmsan_get_metadata+0x13e/0x1c0 [ 394.743612][ T6809] ? kmsan_get_metadata+0x13e/0x1c0 [ 394.749057][ T6809] ? ipv6_find_hdr+0xe8d/0x12f0 [ 394.754124][ T6809] ? kmsan_get_metadata+0x13e/0x1c0 [ 394.759544][ T6809] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 394.765598][ T6809] nft_do_chain_inet+0x41a/0x4f0 [ 394.770750][ T6809] ? __pfx_nft_do_chain_inet+0x10/0x10 [ 394.776417][ T6809] nf_hook_slow+0xf4/0x400 [ 394.781038][ T6809] ipv6_rcv+0x29b/0x390 [ 394.785387][ T6809] ? __pfx_ip6_rcv_finish+0x10/0x10 [ 394.790819][ T6809] __netif_receive_skb+0x1da/0xa00 [ 394.796148][ T6809] ? kmsan_get_metadata+0x13e/0x1c0 [ 394.801568][ T6809] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 394.807622][ T6809] netif_receive_skb+0x58/0x660 [ 394.812687][ T6809] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 394.818724][ T6809] ? tun_rx_batched+0x37c/0x980 [ 394.823761][ T6809] tun_rx_batched+0x3ee/0x980 [ 394.828644][ T6809] ? kmsan_get_metadata+0x13e/0x1c0 [ 394.834068][ T6809] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 394.840139][ T6809] tun_get_user+0x5783/0x6c60 [ 394.844996][ T6809] ? kmsan_get_metadata+0x13e/0x1c0 [ 394.850426][ T6809] ? kmsan_get_metadata+0x13e/0x1c0 [ 394.855935][ T6809] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 394.862535][ T6809] tun_chr_write_iter+0x3ac/0x5d0 [ 394.867754][ T6809] vfs_write+0xb28/0x1540 [ 394.872262][ T6809] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 394.878005][ T6809] ksys_write+0x20f/0x4c0 [ 394.882567][ T6809] __ia32_sys_write+0x91/0xe0 [ 394.887428][ T6809] ia32_sys_call+0x2e34/0x40d0 [ 394.892422][ T6809] __do_fast_syscall_32+0xb0/0x110 [ 394.897764][ T6809] ? irqentry_exit+0x16/0x60 [ 394.902559][ T6809] do_fast_syscall_32+0x38/0x80 [ 394.907630][ T6809] do_SYSENTER_32+0x1f/0x30 [ 394.912354][ T6809] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 394.918905][ T6809] RIP: 0023:0xf7f53579 [ 394.923119][ T6809] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 394.942933][ T6809] RSP: 002b:00000000f56d6530 EFLAGS: 00000206 ORIG_RAX: 0000000000000004 [ 394.951531][ T6809] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000020000440 [ 394.959674][ T6809] RDX: 000000000000004a RSI: 00000000f73dbff4 RDI: 0000000000000000 [ 394.967790][ T6809] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 394.976018][ T6809] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 394.984177][ T6809] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 394.992420][ T6809] [ 394.995884][ T6809] Kernel Offset: disabled [ 395.000314][ T6809] Rebooting in 86400 seconds..