last executing test programs: 1m18.822206552s ago: executing program 2: syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000a40), 0x6, 0x77c, &(0x7f00000002c0)="$eJzs3E9rVOcaAPDnHDMmxtw7uXDh3nZRBAUFcZKYja5MN90UQRC6tSGZhJCTTMhMrJMKatcF0U0L3bRdl34GsR+gW6GF7gultemidDPlTCYTnM7EMYmOf34/OJ7nPf+e93EOb+aEvCeAN9aJ/J8kYiwirkREsbU9jYijzWgk4vb2cVuPb87lSxKNxtVfk/y02GoU29dKWuvj0Twl/h8RDwsRZz/5Z95qfXN5NsvK6632RG1lbaJa3zy3NBKL5cXy6tT0xckL09MXJqefWsP/+qz11AcXj937/r377zcajbvvDJ1LYqZZd7Rq2/Pk230m6bD9f1KImY7tq/u73EsrGXQHAADoS/49/0hEDDW/pRbz+MGg+wQAAAAcrsZwo6tHoxHd9wAAAACvnqS/5/wT4RcCAAAA8Ira+TuAnbm9T50He8h+eTcixrvlH2pNuR2JQkSMbiXNOQo7ku3T4EBu34mIBzOd99/X+R22zynfbZMd7SfnSB894NU5DA/y8WemPf6MRHv8SdvjT3QZf4Z23p1wQL3Hv938R3qMf1f6zHEr3ir0zH8n4u2hbvlb9//ISDNXt/wf9pn/7v1P7/Xa1/gq4nTXnz/JE7l23w+xMtvxfoiZhaUsiRjumf/hX2ce7VX/aK/8zS70rn+tz/o/3vp9uddYkuc/c3Lvz79b/iPf7n6kaUTca63zY+935Di58sN3e9U/H9Ho+fnvUf+Xfdb/0zfDN/o8FAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJrSiBiLJC214zQtlSKOR8R/YzTNKtXa2YXKxup8vi9iPArpwlJWnoyI4nY7ydtTzXi3fb6jPR0R//nx2HbSpaxcmqtk84MuHgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgLbjETEWSVqKiDQi/iimaakUMdTHucMvoH8AAADAIRkfdAcAAACA587zPwAAALz+9vv8nxxyPwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDX2pXLl/OlsfX45lzenr9e31iuXD83X64ul1Y25kpzlfW10mKlspiVS3OVladdL6tU1qYuxsaNiVq5Wpuo1jevrVQ2VmvXllZmF8vXyoUXUhUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADPaqy5JGkpItJmnKalUsS/ImI8CsnCUlaejIh/R8SjYmE4b08NutMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcump9c3k2y8rrAoGgZ3DpkC94KyJehrp6B4MemQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGIRqfXN5NsvK69VB9wQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDBSn9OIiJfThdPjXXuPZr8WWyuI+KjL65+dmN2pLX9t/b22uf59lpt/fyL7z0AAAC8IS49y8E7z+nN9dTz6xQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPD6qdY3l2ezrLx+sOBS1DcbSY9jBl0jAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACwP38HAAD//2XXvc4=") chdir(0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) 1m18.32741431s ago: executing program 1: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000880)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10) setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x27, &(0x7f0000000040)={@multicast1, @local, @loopback}, 0xc) getsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000040)=""/185, &(0x7f0000000100)=0xb9) 1m18.03596871s ago: executing program 2: r0 = openat$uhid(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$UHID_CREATE(r0, &(0x7f0000000240)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000040)=""/2, 0x2}}, 0x120) readv(r0, &(0x7f0000000140)=[{&(0x7f0000000080)=""/155, 0x9b}, {0x0, 0x4}], 0x2) write$UHID_DESTROY(r0, &(0x7f0000000200), 0x4) 1m17.705255313s ago: executing program 1: bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0) rt_sigprocmask(0x0, &(0x7f0000000200)={[0xffffffff]}, 0x0, 0x8) r0 = gettid() userfaultfd(0x0) tkill(r0, 0x11) rt_sigaction(0x11, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f0000000000)) 1m17.393060571s ago: executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x439, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_MAX_AGE={0x8}]}}}]}, 0x3c}}, 0x0) 1m17.354097716s ago: executing program 1: sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) clock_gettime(0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$gtp(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x2c, r2, 0x1, 0x0, 0x0, {0x3}, [@GTPA_LINK={0x8}, @GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @remote}]}, 0x2c}}, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) syz_mount_image$squashfs(&(0x7f0000000040), &(0x7f0000000240)='./file0\x00', 0x800, &(0x7f0000004140)=ANY=[@ANYBLOB="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"], 0x1, 0x1cf, &(0x7f0000000780)="$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") mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) chdir(&(0x7f0000000240)='./file0\x00') r3 = open(&(0x7f00000001c0)='.\x00', 0x0, 0x0) getdents(r3, &(0x7f0000000280)=""/4096, 0x9005) 1m16.754226606s ago: executing program 2: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r0, 0x84, 0x81, &(0x7f00000002c0)="1a000000020000", 0x7) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000040)=ANY=[@ANYBLOB="03"], 0xa) 1m16.698607748s ago: executing program 4: syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000a40), 0x6, 0x77c, &(0x7f00000002c0)="$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") chdir(0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) 1m16.201028082s ago: executing program 2: socketpair$unix(0x1, 0x2, 0x0, 0x0) openat$tun(0xffffffffffffff9c, 0x0, 0xc03, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x2) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002023207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) socket$nl_netfilter(0x10, 0x3, 0xc) syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000400)={{{@in=@loopback, @in6=@mcast2}}, {{@in=@multicast1}, 0x0, @in6=@mcast1}}, &(0x7f0000000000)=0xe8) sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="b200000018255e1bbfb4dde7759b4b8d01003a6c00000300000002000008001055784ca4613957afb05e52f125002a00080008"], 0x1c}}, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000001640)={&(0x7f00000001c0)=ANY=[@ANYBLOB], 0x24}}, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x10, 0x2, 0x0) sendmsg$TIPC_NL_BEARER_ADD(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000003c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="00082cbd70000000000015000000dfef4138772f892b042a8286b7248f02202173295963d62a7f1d47d0114e0eff1e12517f9e33a095dcbf"], 0x14}}, 0x20000050) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r3, 0x89f1, &(0x7f00000000c0)={'ip6gre0\x00', &(0x7f00000009c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @mcast1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r3, 0x89f3, &(0x7f0000000080)={'syztnl1\x00', &(0x7f0000000640)={'ip6_vti0\x00', 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, @dev, @remote, 0x20}}) setsockopt$TIPC_MCAST_REPLICAST(0xffffffffffffffff, 0x10f, 0x4) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x4b, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x10) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700) 1m15.608661343s ago: executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001880), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="a18300000000"], 0x1c}}, 0x0) 1m15.461576027s ago: executing program 2: bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0) rt_sigprocmask(0x0, &(0x7f0000000200)={[0xffffffff]}, 0x0, 0x8) r0 = gettid() userfaultfd(0x0) tkill(r0, 0x11) rt_sigaction(0x11, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f0000000000)) 1m15.065780883s ago: executing program 4: r0 = socket$inet6(0xa, 0x5, 0x0) setsockopt$inet_int(r0, 0x0, 0xf, &(0x7f0000d10ffc)=0xfffffffffffffff9, 0x4) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x1, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x6}, 0x1c) r1 = socket$inet6(0xa, 0x5, 0x0) setsockopt$inet_int(r1, 0x0, 0xf, &(0x7f0000d10ffc)=0xfffffffffffffff9, 0x4) bind$inet6(r1, 0x0, 0x0) 1m14.231897248s ago: executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0) write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000000000000000000000000000bb", @ANYRES32=0x41424344], 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000327000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000180)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) sendmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000), 0x10, &(0x7f0000000080)={0x0}, 0x8}, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000ec0)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000100)='k', 0x1}], 0x1}}], 0x1, 0x0) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x1c) getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x0, 0x0, &(0x7f0000000000)) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'syz_tun\x00'}) ioctl$KVM_X86_SETUP_MCE(r3, 0x4008ae9c, &(0x7f0000000240)={0x20, 0x4}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 1m13.860677999s ago: executing program 0: syz_mount_image$nilfs2(&(0x7f00000000c0), &(0x7f0000000100)='./file1\x00', 0xc800, &(0x7f0000000040)=ANY=[], 0x1, 0xda6, &(0x7f0000003c80)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) syz_mount_image$fuse(0x0, &(0x7f0000004d40)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$overlay(0x0, &(0x7f00000022c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]}) chdir(&(0x7f00000000c0)='./bus\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0) 1m12.856191593s ago: executing program 4: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000012c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f00000013c0)="d080", 0x2}], 0x1}, 0x20000801) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r3, 0x0, 0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700) write$cgroup_int(0xffffffffffffffff, &(0x7f0000000100), 0x1001) close(r4) recvmsg(r2, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x2002) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001280), 0x17) syz_emit_vhci(0x0, 0x0) 1m12.220380175s ago: executing program 3: r0 = openat(0xffffffffffffff9c, 0x0, 0x42, 0x1ec) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, 0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r5}, 0x10) r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2}) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r7}, 0x10) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @broadcast}) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000003c0)=ANY=[@ANYRESDEC=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r9}, 0x10) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800702, &(0x7f0000000300)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x7}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@nodelalloc}, {@grpquota}, {@usrjquota}]}, 0x3, 0x464, &(0x7f0000000fc0)="$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") 1m12.207975227s ago: executing program 0: syz_usb_connect(0x0, 0x4a, &(0x7f0000000340)=ANY=[@ANYBLOB="120100005520f010402038b1420000000001090238000100000000090400000371055900091582"], 0x0) 47.155201846s ago: executing program 3: sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) clock_gettime(0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$gtp(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x2c, r2, 0x1, 0x0, 0x0, {0x3}, [@GTPA_LINK={0x8}, @GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @remote}]}, 0x2c}}, 0x0) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) r4 = syz_mount_image$squashfs(&(0x7f0000000040), &(0x7f0000000240)='./file0\x00', 0x800, &(0x7f0000004140)=ANY=[@ANYBLOB="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"], 0x1, 0x1cf, &(0x7f0000000780)="$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") chdir(&(0x7f0000000240)='./file0\x00') r5 = open(0x0, 0x0, 0x0) getdents(r5, &(0x7f0000000280)=""/4096, 0x9005) r6 = syz_open_dev$audion(&(0x7f0000000000), 0x3, 0x202) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x50032, 0xffffffffffffffff, 0x0) r7 = userfaultfd(0x801) ioctl$UFFDIO_API(r7, 0xc018aa3f, &(0x7f00000000c0)) ioctl$UFFDIO_REGISTER(r7, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x5}) ioctl$UFFDIO_CONTINUE(r7, 0xc020aa08, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}}) mlock(&(0x7f0000408000/0x3000)=nil, 0x3000) write$binfmt_script(r4, &(0x7f0000001500)={'#! ', './file0/../file0', [{0x20, 'x+%'}, {0x20, '/dev/audio#\x00'}, {0x20, '\x00'}], 0xa, "a95b5b621218d0a9d9b7d24092837c87de5daab60798ce843598a90641a8588fc7b3e1b85e611fad482f35eb9f18c2fc97cd987e58cf89090ec2c5e5ad72a6bf7f091793340ebc3571e88142dc11b355cedc3ca04d445a33fbe38900ab55fdeaf29ac18b7d23374e917d59c7261c17feb80c"}, 0x99) write$binfmt_elf64(r6, &(0x7f0000001280)={{0x7f, 0x45, 0x4c, 0x46, 0x1, 0x6, 0xed, 0x8, 0x401, 0x3, 0x6, 0x0, 0x234, 0x40, 0x2a9, 0x4c1, 0x3f, 0x38, 0x2, 0x5, 0x0, 0x4ea3}, [{0x0, 0x401, 0x80000001, 0x5, 0x81, 0x8000000000000000, 0x35a, 0xb2}], "357c4f37c3d3791043024cf4b76d63c59ab15980bd49b744491a522798ba3ba4efb33018124f793baea31656d94f7b23031d3765356ef96d67c0db9ffec9c6b5c3d7d6bb7aac6fb3719490f357c021b821a76b067f36c540300167d505a1fe162642937d7983171c320153cb862e20a186e484eed6ed42ca07b63a3c22c846661c288d66ebc89b5b1ed3c25011979409361372650ad31c0c9b9808b7be15f0ed86350eca38d84445529fa1e3337c1f1dd9b94ca93cd6a3e4", ['\x00']}, 0x230) ioctl$F2FS_IOC_RESIZE_FS(r3, 0x4008f510, &(0x7f0000000100)=0x7ff) 44.466529361s ago: executing program 0: iopl(0x3) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000100)={&(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f00001b1000/0x4000)=nil, &(0x7f0000ff2000/0xc000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00001ca000/0x1000)=nil, &(0x7f0000d54000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, 0x0}, 0x68) 42.3989375s ago: executing program 3: socketpair$unix(0x1, 0x2, 0x0, 0x0) openat$tun(0xffffffffffffff9c, 0x0, 0xc03, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x2) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002023207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) socket$nl_netfilter(0x10, 0x3, 0xc) syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000400)={{{@in=@loopback, @in6=@mcast2}}, {{@in=@multicast1}, 0x0, @in6=@mcast1}}, &(0x7f0000000000)=0xe8) sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="b200000018255e1bbfb4dde7759b4b8d01003a6c00000300000002000008001055784ca4613957afb05e52f125002a00080008"], 0x1c}}, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000001640)={&(0x7f00000001c0)=ANY=[@ANYBLOB="240000001a00010000000000000000000a00"], 0x24}}, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x10, 0x2, 0x0) sendmsg$TIPC_NL_BEARER_ADD(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000003c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="00082cbd70000000000015000000dfef4138772f892b042a8286b7248f02202173295963d62a7f1d47d0114e0eff1e12517f9e33a095dcbf"], 0x14}}, 0x20000050) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r3, 0x89f1, &(0x7f00000000c0)={'ip6gre0\x00', &(0x7f00000009c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @mcast1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r3, 0x89f3, &(0x7f0000000080)={'syztnl1\x00', &(0x7f0000000640)={'ip6_vti0\x00', 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, @dev, @remote, 0x20}}) setsockopt$TIPC_MCAST_REPLICAST(0xffffffffffffffff, 0x10f, 0x4) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x4b, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x10) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700) 42.110572924s ago: executing program 4: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x5}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r2}, 0x10) r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r3}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) 42.104366295s ago: executing program 1: socket$packet(0x11, 0x2, 0x300) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f00000001c0)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b000ee6d2f2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x3a}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040)) syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00') r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x0, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, {0x0, 0x0, 0x74}]}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2004cb], 0x0, 0x200}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 4.839795696s ago: executing program 0: iopl(0x3) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000100)={&(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f00001b1000/0x4000)=nil, &(0x7f0000ff2000/0xc000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00001ca000/0x1000)=nil, &(0x7f0000d54000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, 0x0}, 0x68) 4.066518071s ago: executing program 0: r0 = socket$inet6(0xa, 0x5, 0x0) setsockopt$inet_int(r0, 0x0, 0xf, &(0x7f0000d10ffc)=0xfffffffffffffff9, 0x4) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x1, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x6}, 0x1c) r1 = socket$inet6(0xa, 0x5, 0x0) setsockopt$inet_int(r1, 0x0, 0xf, &(0x7f0000d10ffc)=0xfffffffffffffff9, 0x4) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0xa}, 0x1c) 3.371653616s ago: executing program 0: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x4008032, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) set_mempolicy_home_node(&(0x7f00002e3000/0x1000)=nil, 0x1000, 0x0, 0x0) 1.424065143s ago: executing program 3: socketpair$unix(0x1, 0x2, 0x0, 0x0) openat$tun(0xffffffffffffff9c, 0x0, 0xc03, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x2) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002023207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) socket$nl_netfilter(0x10, 0x3, 0xc) syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000400)={{{@in=@loopback, @in6=@mcast2}}, {{@in=@multicast1}, 0x0, @in6=@mcast1}}, &(0x7f0000000000)=0xe8) sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="b200000018255e1bbfb4dde7759b4b8d01003a6c00000300000002000008001055784ca4613957afb05e52f125002a00080008"], 0x1c}}, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000001640)={&(0x7f00000001c0)=ANY=[@ANYBLOB="240000001a00010000000000000000000a00"], 0x24}}, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x10, 0x2, 0x0) sendmsg$TIPC_NL_BEARER_ADD(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000003c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="00082cbd70000000000015000000dfef4138772f892b042a8286b7248f02202173295963d62a7f1d47d0114e0eff1e12517f9e33a095dcbf"], 0x14}}, 0x20000050) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r3, 0x89f1, &(0x7f00000000c0)={'ip6gre0\x00', &(0x7f00000009c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @mcast1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r3, 0x89f3, &(0x7f0000000080)={'syztnl1\x00', &(0x7f0000000640)={'ip6_vti0\x00', 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, @dev, @remote, 0x20}}) setsockopt$TIPC_MCAST_REPLICAST(0xffffffffffffffff, 0x10f, 0x4) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x4b, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x10) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700) 975.202789ms ago: executing program 1: socket$packet(0x11, 0x2, 0x300) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f00000001c0)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b000ee6d2f2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x3a}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040)) syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00') r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x0, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, {0x0, 0x0, 0x74}]}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2004cb], 0x0, 0x200}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 740.303605ms ago: executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = dup(r2) bpf$MAP_CREATE(0x0, 0x0, 0x0) ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000000080000024d564b"]) 90.661006ms ago: executing program 1: syz_mount_image$nilfs2(&(0x7f00000000c0), &(0x7f0000000100)='./file1\x00', 0xc800, &(0x7f0000000040)=ANY=[], 0x1, 0xda6, &(0x7f0000003c80)="$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") mkdir(&(0x7f0000000300)='./bus\x00', 0x0) syz_mount_image$fuse(0x0, &(0x7f0000004d40)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$overlay(0x0, &(0x7f00000022c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]}) chdir(&(0x7f00000000c0)='./bus\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0) 0s ago: executing program 3: socket$packet(0x11, 0x0, 0x300) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='syzkaller\x00'}, 0x80) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x560b0007, &(0x7f0000000000)="259a53f271a76d2610054c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) kernel console output (not intermixed with test programs): 7 [ 324.448812][ T5132] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 324.459940][ T5132] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 324.469481][ T5132] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 324.575636][ T5943] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22 [ 325.108714][ T5132] usb 3-1: USB disconnect, device number 2 [ 325.250357][ T5225] udevd[5225]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 325.312081][ T5948] loop3: detected capacity change from 0 to 4096 [ 325.351064][ T5948] ======================================================= [ 325.351064][ T5948] WARNING: The mand mount option has been deprecated and [ 325.351064][ T5948] and is ignored by this kernel. Remove the mand [ 325.351064][ T5948] option from the mount to silence this warning. [ 325.351064][ T5948] ======================================================= [ 325.819041][ T5948] ntfs3: loop3: Failed to load $Extend (-22). [ 325.825553][ T5948] ntfs3: loop3: Failed to initialize $Extend. [ 327.175945][ T5957] syz-executor.2 (pid 5957) is setting deprecated v1 encryption policy; recommend upgrading to v2. [ 328.373179][ T5962] syz-executor.2[5962] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 328.373809][ T5962] syz-executor.2[5962] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 329.948127][ T5123] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 330.386845][ T5123] usb 3-1: Using ep0 maxpacket: 32 [ 330.445274][ T5971] delete_channel: no stack [ 330.506237][ T5973] input: syz0 as /devices/virtual/input/input8 [ 330.525447][ T5123] usb 3-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config [ 330.536059][ T5123] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 330.549206][ T5123] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 330.558527][ T5123] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 330.754866][ T5123] usb 3-1: config 0 descriptor?? [ 330.810066][ T5123] hub 3-1:0.0: bad descriptor, ignoring hub [ 330.816279][ T5123] hub 3-1:0.0: probe with driver hub failed with error -5 [ 330.828139][ T5123] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 332.475072][ T5123] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 332.884946][ T5123] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 332.896536][ T5123] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 332.906811][ T5123] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 332.916203][ T5123] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 332.996907][ T5982] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 333.484887][ T5133] usb 4-1: USB disconnect, device number 8 [ 333.897331][ T780] usb 3-1: USB disconnect, device number 3 [ 335.625201][ T6000] syz-executor.2[6000] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 335.625818][ T6000] syz-executor.2[6000] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 336.561420][ T6006] loop3: detected capacity change from 0 to 64 [ 336.990583][ T6007] delete_channel: no stack [ 337.918862][ T6014] input: syz0 as /devices/virtual/input/input9 [ 339.048889][ T5083] Bluetooth: hci0: command 0x0406 tx timeout [ 339.055424][ T5083] Bluetooth: hci1: command 0x0406 tx timeout [ 339.060012][ T50] Bluetooth: hci2: command 0x0406 tx timeout [ 339.061918][ T5083] Bluetooth: hci4: command 0x0406 tx timeout [ 339.068419][ T50] Bluetooth: hci3: command 0x0406 tx timeout [ 340.585311][ T5123] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 340.844843][ T5123] usb 3-1: Using ep0 maxpacket: 32 [ 341.000706][ T5123] usb 3-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config [ 341.011565][ T5123] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 341.025080][ T5123] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 341.040272][ T5123] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 341.102476][ T5123] usb 3-1: config 0 descriptor?? [ 341.176347][ T5123] hub 3-1:0.0: bad descriptor, ignoring hub [ 341.182495][ T5123] hub 3-1:0.0: probe with driver hub failed with error -5 [ 341.194991][ T5123] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 342.077585][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 342.084578][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 342.559386][ T6036] syz-executor.0[6036] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 342.559996][ T6036] syz-executor.0[6036] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 343.586366][ T6044] delete_channel: no stack [ 344.305321][ T5133] usb 3-1: USB disconnect, device number 4 [ 345.423732][ T6065] input: syz0 as /devices/virtual/input/input10 [ 345.577627][ T6067] syz-executor.2[6067] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 345.578220][ T6067] syz-executor.2[6067] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 346.901503][ T6081] delete_channel: no stack [ 347.395573][ T5133] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 347.755037][ T5133] usb 4-1: Using ep0 maxpacket: 32 [ 347.903559][ T5133] usb 4-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config [ 347.914524][ T5133] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 347.928206][ T5133] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 347.937733][ T5133] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 348.035685][ T5133] usb 4-1: config 0 descriptor?? [ 348.099425][ T5133] hub 4-1:0.0: bad descriptor, ignoring hub [ 348.106955][ T5133] hub 4-1:0.0: probe with driver hub failed with error -5 [ 348.120990][ T5133] usbhid 4-1:0.0: couldn't find an input interrupt endpoint [ 349.088213][ T6104] syz-executor.1[6104] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 349.088991][ T6104] syz-executor.1[6104] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 350.419988][ T6117] delete_channel: no stack [ 351.296606][ T5132] usb 4-1: USB disconnect, device number 9 [ 351.792372][ T6132] input: syz0 as /devices/virtual/input/input11 [ 352.480677][ T6138] syz-executor.0[6138] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 352.481267][ T6138] syz-executor.0[6138] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 353.958590][ T6151] delete_channel: no stack [ 354.570600][ T5140] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 354.874851][ T5140] usb 1-1: Using ep0 maxpacket: 32 [ 355.023846][ T5140] usb 1-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config [ 355.034885][ T5140] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 355.048436][ T5140] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 355.057899][ T5140] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 355.147149][ T5140] usb 1-1: config 0 descriptor?? [ 355.244488][ T5140] hub 1-1:0.0: bad descriptor, ignoring hub [ 355.250927][ T5140] hub 1-1:0.0: probe with driver hub failed with error -5 [ 355.274076][ T5140] usbhid 1-1:0.0: couldn't find an input interrupt endpoint [ 355.648124][ T6170] syz-executor.2[6170] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 355.648727][ T6170] syz-executor.2[6170] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 357.480661][ T6190] sctp: [Deprecated]: syz-executor.1 (pid 6190) Use of int in maxseg socket option. [ 357.480661][ T6190] Use struct sctp_assoc_value instead [ 357.645859][ T6189] delete_channel: no stack [ 358.254966][ T6197] input: syz0 as /devices/virtual/input/input12 [ 358.531168][ T5140] usb 1-1: USB disconnect, device number 8 [ 361.331956][ T6230] sctp: [Deprecated]: syz-executor.1 (pid 6230) Use of int in maxseg socket option. [ 361.331956][ T6230] Use struct sctp_assoc_value instead [ 361.504143][ T6229] delete_channel: no stack [ 361.927357][ T5140] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 362.225245][ T5140] usb 1-1: Using ep0 maxpacket: 32 [ 362.379592][ T5140] usb 1-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping [ 362.391192][ T5140] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 362.400735][ T5140] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 362.484847][ T5140] usb 1-1: config 0 descriptor?? [ 362.537355][ T6234] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 362.678871][ T5140] hub 1-1:0.0: bad descriptor, ignoring hub [ 362.685352][ T5140] hub 1-1:0.0: probe with driver hub failed with error -5 [ 362.699262][ T5140] usbhid 1-1:0.0: couldn't find an input interrupt endpoint [ 364.571386][ T6271] sctp: [Deprecated]: syz-executor.3 (pid 6271) Use of int in maxseg socket option. [ 364.571386][ T6271] Use struct sctp_assoc_value instead [ 364.834764][ T6269] delete_channel: no stack [ 366.187017][ T5140] usb 1-1: USB disconnect, device number 9 [ 366.730606][ T6275] input: syz0 as /devices/virtual/input/input13 [ 369.402476][ T5140] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 369.663492][ T5140] usb 5-1: Using ep0 maxpacket: 32 [ 369.796905][ T5140] usb 5-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping [ 369.813788][ T5140] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 369.825139][ T5140] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 369.937624][ T5140] usb 5-1: config 0 descriptor?? [ 369.956456][ T6313] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 370.002396][ T5140] hub 5-1:0.0: bad descriptor, ignoring hub [ 370.017625][ T5140] hub 5-1:0.0: probe with driver hub failed with error -5 [ 370.034445][ T5140] usbhid 5-1:0.0: couldn't find an input interrupt endpoint [ 372.917606][ T6362] input: syz0 as /devices/virtual/input/input14 [ 373.213116][ T5133] usb 5-1: USB disconnect, device number 3 [ 374.114719][ T5133] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 374.404516][ T5133] usb 5-1: Using ep0 maxpacket: 16 [ 374.645556][ T5133] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0 [ 374.955262][ T5133] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 374.964838][ T5133] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 374.973099][ T5133] usb 5-1: Product: syz [ 374.977661][ T5133] usb 5-1: Manufacturer: syz [ 374.982491][ T5133] usb 5-1: SerialNumber: syz [ 375.169853][ T5133] cdc_ether 5-1:1.0: probe with driver cdc_ether failed with error -22 [ 375.378627][ T5133] usb 5-1: USB disconnect, device number 4 [ 376.344954][ T29] audit: type=1804 audit(1718198099.967:4): pid=6387 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir488935854/syzkaller.xvZ6mz/74/bus" dev="sda1" ino=1960 res=1 errno=0 [ 376.615338][ T6392] loop3: detected capacity change from 0 to 512 [ 378.044603][ T5140] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 378.324770][ T5140] usb 3-1: Using ep0 maxpacket: 32 [ 378.505091][ T5140] usb 3-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping [ 378.522058][ T5140] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 378.533774][ T5140] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 378.649239][ T5140] usb 3-1: config 0 descriptor?? [ 378.676604][ T6403] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 378.748918][ T5140] hub 3-1:0.0: bad descriptor, ignoring hub [ 378.755454][ T5140] hub 3-1:0.0: probe with driver hub failed with error -5 [ 378.769500][ T5140] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 379.092561][ T6416] input: syz0 as /devices/virtual/input/input15 [ 380.718937][ T6423] loop3: detected capacity change from 0 to 8192 [ 381.494540][ T781] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 381.825898][ T781] usb 2-1: Using ep0 maxpacket: 16 [ 381.855929][ T6435] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 381.876662][ T5133] usb 3-1: USB disconnect, device number 5 [ 381.892778][ T781] usb 2-1: too many configurations: 129, using maximum allowed: 8 [ 382.617962][ T781] usb 2-1: New USB device found, idVendor=108c, idProduct=0159, bcdDevice=20.64 [ 382.627550][ T781] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 382.720874][ T781] usb 2-1: config 0 descriptor?? [ 383.019809][ T781] usb 2-1: USB disconnect, device number 5 [ 383.253513][ T6453] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'. [ 384.402363][ T6465] loop0: detected capacity change from 0 to 1764 [ 384.524747][ T5123] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 384.886886][ T5123] usb 2-1: Using ep0 maxpacket: 32 [ 384.948176][ T6474] input: syz0 as /devices/virtual/input/input16 [ 385.004639][ T5123] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 385.016288][ T5123] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 385.027763][ T5123] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 385.037382][ T5123] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 385.126143][ T5123] usb 2-1: config 0 descriptor?? [ 385.146862][ T6472] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 385.306930][ T5123] hub 2-1:0.0: USB hub found [ 385.525158][ T6476] batadv_slave_1: entered promiscuous mode [ 385.555355][ T6475] batadv_slave_1: left promiscuous mode [ 385.636254][ T5123] hub 2-1:0.0: config failed, can't read hub descriptor (err -22) [ 386.020466][ T5123] usbhid 2-1:0.0: can't add hid device: -71 [ 386.027618][ T5123] usbhid 2-1:0.0: probe with driver usbhid failed with error -71 [ 386.171603][ T5123] usb 2-1: USB disconnect, device number 6 [ 387.816321][ T6494] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'. [ 389.037198][ T6508] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'. [ 389.048050][ T6508] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'. [ 389.112943][ T6508] netlink: 'syz-executor.4': attribute type 3 has an invalid length. [ 389.683158][ T781] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 389.947107][ T781] usb 1-1: Using ep0 maxpacket: 32 [ 390.086463][ T781] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 390.098079][ T781] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 390.111432][ T781] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 390.121174][ T781] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 390.208144][ T781] usb 1-1: config 0 descriptor?? [ 390.225821][ T6512] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 390.296333][ T781] hub 1-1:0.0: USB hub found [ 390.605775][ T781] hub 1-1:0.0: config failed, can't read hub descriptor (err -22) [ 390.689905][ T6528] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. [ 390.955235][ T781] usbhid 1-1:0.0: can't add hid device: -71 [ 390.962010][ T781] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 391.056221][ T781] usb 1-1: USB disconnect, device number 10 [ 391.563302][ T6537] loop3: detected capacity change from 0 to 1024 [ 392.250629][ T6544] loop0: detected capacity change from 0 to 512 [ 392.396985][ T6544] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 392.477552][ T6544] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended [ 392.634537][ T6544] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz-executor.0: bg 0: block 18: invalid block bitmap [ 392.729540][ T6544] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6537: Corrupt filesystem [ 392.779830][ T6544] EXT4-fs (loop0): 1 truncate cleaned up [ 392.786248][ T6544] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 392.799121][ T6544] ext2 filesystem being mounted at /root/syzkaller-testdir1087591445/syzkaller.taRloQ/71/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 392.991129][ T6543] EXT4-fs error (device loop0): ext4_map_blocks:580: inode #2: block 3: comm syz-executor.0: lblock 0 mapped to illegal pblock 3 (length 1) [ 393.212637][ T6544] EXT4-fs error (device loop0): ext4_map_blocks:580: inode #2: block 3: comm syz-executor.0: lblock 0 mapped to illegal pblock 3 (length 1) [ 395.634982][ T5123] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 395.888506][ T6579] loop1: detected capacity change from 0 to 1764 [ 395.954400][ T5123] usb 4-1: Using ep0 maxpacket: 32 [ 396.174922][ T5123] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 396.186786][ T5123] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 396.198574][ T5123] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 396.207913][ T5123] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 396.280818][ T5123] usb 4-1: config 0 descriptor?? [ 396.306063][ T6574] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 396.440490][ T5123] hub 4-1:0.0: USB hub found [ 396.824743][ T5123] hub 4-1:0.0: config failed, can't read hub descriptor (err -22) [ 396.992558][ T6581] loop2: detected capacity change from 0 to 1024 [ 397.195006][ T5123] usbhid 4-1:0.0: can't add hid device: -71 [ 397.201808][ T5123] usbhid 4-1:0.0: probe with driver usbhid failed with error -71 [ 397.313824][ T5123] usb 4-1: USB disconnect, device number 10 [ 400.369199][ T6615] loop1: detected capacity change from 0 to 1764 [ 401.017584][ T5123] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 401.364950][ T5123] usb 3-1: Using ep0 maxpacket: 32 [ 401.545594][ T5123] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 401.561138][ T5123] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 401.573801][ T5123] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 401.583101][ T5123] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 401.687282][ T5123] usb 3-1: config 0 descriptor?? [ 401.706279][ T6618] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 401.767373][ T5123] hub 3-1:0.0: USB hub found [ 401.983943][ T6625] loop4: detected capacity change from 0 to 1024 [ 402.115046][ T5123] hub 3-1:0.0: config failed, can't read hub descriptor (err -22) [ 402.456307][ T5123] usbhid 3-1:0.0: can't add hid device: -71 [ 402.462981][ T5123] usbhid 3-1:0.0: probe with driver usbhid failed with error -71 [ 402.594712][ T5123] usb 3-1: USB disconnect, device number 6 [ 403.506540][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 403.513228][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 404.038970][ T6639] loop1: detected capacity change from 0 to 512 [ 404.042169][ T6634] loop4: detected capacity change from 0 to 2048 [ 404.186017][ T6639] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 404.261690][ T6634] UDF-fs: error (device loop4): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 404.388621][ T6639] EXT4-fs error (device loop1): ext4_orphan_get:1394: inode #15: comm syz-executor.1: iget: bad i_size value: -67835469387268086 [ 404.511772][ T6639] EXT4-fs error (device loop1): ext4_orphan_get:1399: comm syz-executor.1: couldn't read orphan inode 15 (err -117) [ 404.590153][ T6639] EXT4-fs (loop1): mounted filesystem f7ff0000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 404.603210][ T6639] ext2 filesystem being mounted at /root/syzkaller-testdir2501446248/syzkaller.1BhTqy/104/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 407.113009][ T6659] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 407.135270][ T6665] loop2: detected capacity change from 0 to 1024 [ 407.193211][ T6659] kvm: pic: non byte read [ 407.232060][ T6659] kvm: pic: non byte read [ 407.280740][ T6659] kvm: pic: non byte read [ 407.308881][ T6659] kvm: pic: non byte read [ 407.370738][ T6659] kvm: pic: non byte read [ 408.087348][ T781] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 408.375096][ T781] usb 5-1: Using ep0 maxpacket: 32 [ 408.457761][ T29] audit: type=1800 audit(1718198132.087:5): pid=6672 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1958 res=0 errno=0 [ 408.576574][ T781] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 408.588434][ T781] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 408.599995][ T781] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 408.609302][ T781] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 408.722087][ T781] usb 5-1: config 0 descriptor?? [ 408.758405][ T6670] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 408.799406][ T781] hub 5-1:0.0: USB hub found [ 409.124986][ T781] hub 5-1:0.0: config failed, can't read hub descriptor (err -22) [ 409.455361][ T781] usbhid 5-1:0.0: can't add hid device: -71 [ 409.462511][ T781] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 409.571008][ T781] usb 5-1: USB disconnect, device number 5 [ 411.724806][ T5072] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 412.997813][ T6703] loop0: detected capacity change from 0 to 1024 [ 413.106951][ T6700] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 413.284890][ T6700] kvm: pic: non byte read [ 413.342496][ T6700] kvm: pic: non byte read [ 413.403065][ T6700] kvm: pic: non byte read [ 413.450065][ T6700] kvm: pic: non byte read [ 413.489137][ T6700] kvm: pic: non byte read [ 413.549503][ T6700] kvm: pic: non byte read [ 413.683761][ T6700] kvm: pic: single mode not supported [ 413.683869][ T6700] kvm: pic: level sensitive irq not supported [ 413.801345][ T6700] kvm: pic: non byte read [ 413.831821][ T6700] kvm: pic: non byte read [ 413.875111][ T6700] kvm: pic: non byte read [ 413.919834][ T6700] kvm: pic: non byte read [ 413.968565][ T6700] kvm: pic: single mode not supported [ 415.693379][ T781] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 416.034639][ T781] usb 5-1: Using ep0 maxpacket: 32 [ 416.178484][ T781] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 416.190779][ T781] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 416.207413][ T781] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 416.215234][ T6728] loop3: detected capacity change from 0 to 512 [ 416.216850][ T781] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 416.290949][ T6728] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 416.307646][ T781] usb 5-1: config 0 descriptor?? [ 416.335161][ T6718] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 416.379630][ T781] hub 5-1:0.0: USB hub found [ 416.411087][ T6728] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended [ 416.487679][ T6728] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz-executor.3: bg 0: block 18: invalid block bitmap [ 416.528920][ T6728] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6537: Corrupt filesystem [ 416.575718][ T6728] EXT4-fs (loop3): 1 truncate cleaned up [ 416.581674][ T6728] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 416.594863][ T6728] ext2 filesystem being mounted at /root/syzkaller-testdir2650581069/syzkaller.ctSH6w/117/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 416.695427][ T781] hub 5-1:0.0: config failed, can't read hub descriptor (err -22) [ 416.872493][ T6728] EXT4-fs error (device loop3): ext4_map_blocks:580: inode #2: block 3: comm syz-executor.3: lblock 0 mapped to illegal pblock 3 (length 1) [ 417.044005][ T781] usbhid 5-1:0.0: can't add hid device: -71 [ 417.050990][ T781] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 417.120107][ T781] usb 5-1: USB disconnect, device number 6 [ 417.236544][ T6736] EXT4-fs error (device loop3): ext4_map_blocks:580: inode #2: block 3: comm syz-executor.3: lblock 0 mapped to illegal pblock 3 (length 1) [ 417.769500][ T6739] loop2: detected capacity change from 0 to 1024 [ 418.384389][ T6745] netlink: 'syz-executor.4': attribute type 4 has an invalid length. [ 419.095289][ T6746] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 419.289122][ T6746] picdev_read: 2 callbacks suppressed [ 419.289175][ T6746] kvm: pic: non byte read [ 419.370468][ T6746] kvm: pic: non byte read [ 419.420634][ T6746] kvm: pic: non byte read [ 419.447995][ T6746] kvm: pic: non byte read [ 419.518312][ T6746] kvm: pic: non byte read [ 419.581951][ T6746] kvm: pic: non byte read [ 419.729227][ T6746] kvm: pic: single mode not supported [ 419.729313][ T6746] kvm: pic: level sensitive irq not supported [ 419.831658][ T6746] kvm: pic: non byte read [ 420.058003][ T6746] kvm: pic: non byte read [ 420.063955][ T6746] kvm: pic: non byte read [ 420.156910][ T6746] kvm: pic: non byte read [ 420.169861][ T6746] kvm: pic: single mode not supported [ 422.765325][ T781] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 423.094655][ T781] usb 3-1: Using ep0 maxpacket: 32 [ 423.216792][ T781] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 423.228633][ T781] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 423.240299][ T781] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 423.249598][ T781] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 423.321023][ T781] usb 3-1: config 0 descriptor?? [ 423.346663][ T6771] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 423.433398][ T781] hub 3-1:0.0: USB hub found [ 423.754886][ T781] hub 3-1:0.0: config failed, can't read hub descriptor (err -22) [ 423.834741][ T6779] loop4: detected capacity change from 0 to 1024 [ 424.095069][ T781] usbhid 3-1:0.0: can't add hid device: -71 [ 424.101549][ T781] usbhid 3-1:0.0: probe with driver usbhid failed with error -71 [ 424.159053][ T5085] EXT4-fs (loop1): unmounting filesystem f7ff0000-0000-0000-0000-000000000000. [ 424.217942][ T781] usb 3-1: USB disconnect, device number 7 [ 424.926373][ T6783] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 427.029815][ T5081] Bluetooth: hci3: unexpected event for opcode 0x0c1c [ 427.795228][ T6816] loop4: detected capacity change from 0 to 1024 [ 429.065143][ T5123] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 429.334537][ T5123] usb 2-1: Using ep0 maxpacket: 32 [ 429.475859][ T5123] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 429.487403][ T5123] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 429.498870][ T5123] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 429.512082][ T5123] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 429.619348][ T5123] usb 2-1: config 0 descriptor?? [ 429.670234][ T6822] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 429.831203][ T5123] hub 2-1:0.0: USB hub found [ 430.127932][ T5123] hub 2-1:0.0: config failed, can't read hub descriptor (err -22) [ 430.451071][ T6835] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 430.513250][ T5123] usbhid 2-1:0.0: can't add hid device: -71 [ 430.520141][ T5123] usbhid 2-1:0.0: probe with driver usbhid failed with error -71 [ 430.656257][ T5123] usb 2-1: USB disconnect, device number 7 [ 432.597099][ T6857] loop1: detected capacity change from 0 to 1024 [ 435.166541][ T6875] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 435.429240][ T5090] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 435.513975][ T6880] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 436.646158][ T6884] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 437.077389][ T6899] loop2: detected capacity change from 0 to 1024 [ 438.360392][ T6915] loop1: detected capacity change from 0 to 512 [ 438.476255][ T6915] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 438.503398][ T6915] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended [ 438.540364][ T6915] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz-executor.1: bg 0: block 18: invalid block bitmap [ 438.605027][ T6915] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6537: Corrupt filesystem [ 438.675603][ T6915] EXT4-fs (loop1): 1 truncate cleaned up [ 438.681643][ T6915] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 438.694714][ T6915] ext2 filesystem being mounted at /root/syzkaller-testdir2501446248/syzkaller.1BhTqy/115/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 438.966475][ T6915] EXT4-fs error (device loop1): ext4_map_blocks:580: inode #2: block 3: comm syz-executor.1: lblock 0 mapped to illegal pblock 3 (length 1) [ 439.117961][ T6927] EXT4-fs error (device loop1): ext4_map_blocks:580: inode #2: block 3: comm syz-executor.1: lblock 0 mapped to illegal pblock 3 (length 1) [ 441.065265][ T6935] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 441.783986][ T6944] loop4: detected capacity change from 0 to 1024 [ 444.025273][ T6960] loop3: detected capacity change from 0 to 128 [ 444.115855][ T6960] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1) [ 445.598903][ T3493] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1) [ 446.144863][ T6978] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 446.224887][ T6981] loop0: detected capacity change from 0 to 1024 [ 451.553077][ T7020] loop0: detected capacity change from 0 to 1024 [ 451.865094][ T7022] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 452.195051][ T5140] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 452.663595][ T5140] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 452.674595][ T5140] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 452.686857][ T5140] usb 3-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 452.995939][ T5140] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 453.005677][ T5140] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 453.013959][ T5140] usb 3-1: Product: syz [ 453.018580][ T5140] usb 3-1: Manufacturer: syz [ 453.023422][ T5140] usb 3-1: SerialNumber: syz [ 454.318498][ T5140] cdc_ncm 3-1:1.0: bind() failure [ 454.424135][ T5140] cdc_ncm 3-1:1.1: probe with driver cdc_ncm failed with error -71 [ 454.476367][ T5140] cdc_mbim 3-1:1.1: probe with driver cdc_mbim failed with error -71 [ 456.137910][ T5140] usbtest 3-1:1.1: probe with driver usbtest failed with error -71 [ 456.174692][ T5140] usb 3-1: USB disconnect, device number 8 [ 457.324129][ T7056] loop0: detected capacity change from 0 to 1024 [ 458.908379][ T5085] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 461.184668][ T5133] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 461.466332][ T5133] usb 1-1: Using ep0 maxpacket: 32 [ 461.585208][ T5133] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 461.596719][ T5133] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 461.607005][ T5133] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x2 has an invalid bInterval 0, changing to 7 [ 461.618302][ T5133] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 461.628591][ T5133] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5 [ 461.641933][ T5133] usb 1-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00 [ 461.651406][ T5133] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 461.731208][ T5133] usb 1-1: config 0 descriptor?? [ 461.830117][ T5133] usbhid 1-1:0.0: can't add hid device: -22 [ 461.837024][ T5133] usbhid 1-1:0.0: probe with driver usbhid failed with error -22 [ 461.882823][ T7096] loop1: detected capacity change from 0 to 1024 [ 462.153878][ T7087] loop0: detected capacity change from 0 to 512 [ 462.233099][ T7087] EXT4-fs: Ignoring removed bh option [ 462.288115][ T7087] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 462.302007][ T7087] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 462.862573][ T7087] EXT4-fs error (device loop0): ext4_orphan_get:1420: comm syz-executor.0: bad orphan inode 17 [ 462.877445][ T7087] EXT4-fs (loop0): Remounting filesystem read-only [ 462.884498][ T7087] ext4_test_bit(bit=16, block=4) = 1 [ 462.892839][ T7087] is_bad_inode(inode)=0 [ 462.898443][ T7087] NEXT_ORPHAN(inode)=1048336 [ 462.903385][ T7087] max_ino=32 [ 462.906907][ T7087] i_nlink=0 [ 462.910273][ T7087] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 463.765158][ T7108] loop1: detected capacity change from 0 to 1024 [ 464.254986][ T43] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 464.697630][ T43] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 464.709873][ T43] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has an invalid bInterval 97, changing to 10 [ 464.721295][ T43] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 24729, setting to 1024 [ 464.968167][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 464.975314][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 464.988323][ T43] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 464.997800][ T43] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 465.006543][ T43] usb 2-1: Product: syz [ 465.010948][ T43] usb 2-1: Manufacturer: syz [ 465.015895][ T43] usb 2-1: SerialNumber: syz [ 465.061113][ T5133] usb 1-1: USB disconnect, device number 11 [ 465.129565][ T5072] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 466.248470][ T43] cdc_ncm 2-1:1.0: bind() failure [ 466.314846][ T43] cdc_ncm 2-1:1.1: probe with driver cdc_ncm failed with error -71 [ 466.359602][ T43] cdc_mbim 2-1:1.1: probe with driver cdc_mbim failed with error -71 [ 466.477078][ T43] usbtest 2-1:1.1: probe with driver usbtest failed with error -71 [ 466.558909][ T43] usb 2-1: USB disconnect, device number 8 [ 467.507889][ T7131] pim6reg1: entered promiscuous mode [ 467.513543][ T7131] pim6reg1: entered allmulticast mode [ 468.140189][ T7134] loop1: detected capacity change from 0 to 1024 [ 470.017941][ T7161] loop1: detected capacity change from 0 to 1024 [ 470.425971][ T781] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 470.814816][ T781] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 470.826221][ T781] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has an invalid bInterval 97, changing to 10 [ 470.837488][ T781] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 24729, setting to 1024 [ 471.065085][ T781] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 471.074568][ T781] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 471.084743][ T781] usb 2-1: Product: syz [ 471.089077][ T781] usb 2-1: Manufacturer: syz [ 471.093792][ T781] usb 2-1: SerialNumber: syz [ 471.555840][ T7173] loop2: detected capacity change from 0 to 512 [ 471.588525][ T7173] ext4: Bad value for 'min_batch_time' [ 472.280867][ T7180] loop0: detected capacity change from 0 to 1024 [ 472.344935][ T781] cdc_ncm 2-1:1.0: bind() failure [ 472.399403][ T781] cdc_ncm 2-1:1.1: probe with driver cdc_ncm failed with error -71 [ 472.474942][ T781] cdc_mbim 2-1:1.1: probe with driver cdc_mbim failed with error -71 [ 472.565153][ T781] usbtest 2-1:1.1: probe with driver usbtest failed with error -71 [ 472.626322][ T781] usb 2-1: USB disconnect, device number 9 [ 475.593683][ T7200] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 476.958949][ T7216] loop0: detected capacity change from 0 to 1024 [ 477.256651][ T7218] loop4: detected capacity change from 0 to 1024 [ 477.815135][ T5140] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 478.263384][ T5140] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 478.274934][ T5140] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x3 has an invalid bInterval 97, changing to 10 [ 478.286808][ T5140] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 24729, setting to 1024 [ 478.545042][ T5140] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 478.560151][ T5140] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 478.570258][ T5140] usb 5-1: Product: syz [ 478.574961][ T5140] usb 5-1: Manufacturer: syz [ 478.579797][ T5140] usb 5-1: SerialNumber: syz [ 479.954950][ T5140] cdc_ncm 5-1:1.0: bind() failure [ 480.039459][ T5140] cdc_ncm 5-1:1.1: probe with driver cdc_ncm failed with error -71 [ 480.081489][ T5140] cdc_mbim 5-1:1.1: probe with driver cdc_mbim failed with error -71 [ 480.184553][ T5140] usbtest 5-1:1.1: probe with driver usbtest failed with error -71 [ 480.251617][ T5140] usb 5-1: USB disconnect, device number 7 [ 480.426235][ T7244] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 483.461162][ T7281] loop0: detected capacity change from 0 to 1024 [ 483.901164][ T7286] loop3: detected capacity change from 0 to 512 [ 483.955798][ T10] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 484.100185][ T7286] EXT4-fs error (device loop3): __ext4_fill_super:5464: inode #2: comm syz-executor.3: iget: special inode unallocated [ 484.189806][ T7286] EXT4-fs (loop3): get root inode failed [ 484.195977][ T7286] EXT4-fs (loop3): mount failed [ 484.415324][ T10] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 484.426915][ T10] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x3 has an invalid bInterval 97, changing to 10 [ 484.438190][ T10] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 24729, setting to 1024 [ 484.655885][ T10] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 484.665870][ T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 484.674132][ T10] usb 1-1: Product: syz [ 484.678720][ T10] usb 1-1: Manufacturer: syz [ 484.683566][ T10] usb 1-1: SerialNumber: syz [ 484.717024][ T7291] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 485.755614][ T10] cdc_ncm 1-1:1.0: bind() failure [ 485.815454][ T10] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found [ 485.822605][ T10] cdc_ncm 1-1:1.1: bind() failure [ 485.920597][ T10] usb 1-1: USB disconnect, device number 12 [ 486.561914][ T7309] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.2'. [ 488.573692][ T7330] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 488.699565][ T7330] kvm: pic: level sensitive irq not supported [ 488.699914][ T7330] picdev_read: 2 callbacks suppressed [ 488.700011][ T7330] kvm: pic: non byte read [ 488.823444][ T7330] kvm: pic: level sensitive irq not supported [ 488.823809][ T7330] kvm: pic: non byte read [ 488.881876][ T7330] kvm: pic: level sensitive irq not supported [ 488.882296][ T7330] kvm: pic: non byte read [ 488.977056][ T7330] kvm: pic: level sensitive irq not supported [ 488.977425][ T7330] kvm: pic: non byte read [ 489.857637][ T7347] loop1: detected capacity change from 0 to 1024 [ 490.132751][ T7349] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.3'. [ 490.586420][ T25] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 491.053442][ T25] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 491.065298][ T25] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has an invalid bInterval 97, changing to 10 [ 491.076770][ T25] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 24729, setting to 1024 [ 491.365816][ T25] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 491.375406][ T25] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 491.383664][ T25] usb 2-1: Product: syz [ 491.388570][ T25] usb 2-1: Manufacturer: syz [ 491.393411][ T25] usb 2-1: SerialNumber: syz [ 492.415692][ T25] cdc_ncm 2-1:1.0: bind() failure [ 492.488052][ T25] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found [ 492.495344][ T25] cdc_ncm 2-1:1.1: bind() failure [ 492.573167][ T7368] Zero length message leads to an empty skb [ 492.648873][ T25] usb 2-1: USB disconnect, device number 10 [ 492.880091][ T7371] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 492.990707][ T7371] kvm: pic: level sensitive irq not supported [ 492.995042][ T7371] kvm: pic: non byte read [ 493.018876][ T7380] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.2'. [ 493.145646][ T7371] kvm: pic: level sensitive irq not supported [ 493.146081][ T7371] kvm: pic: non byte read [ 493.256746][ T7371] kvm: pic: level sensitive irq not supported [ 493.257188][ T7371] kvm: pic: non byte read [ 493.686708][ T7371] kvm: pic: level sensitive irq not supported [ 493.687031][ T7371] kvm: pic: non byte read [ 493.687600][ T7371] kvm: pic: level sensitive irq not supported [ 493.687898][ T7371] kvm: pic: non byte read [ 496.190667][ T7401] netlink: 104 bytes leftover after parsing attributes in process `syz-executor.3'. [ 496.200650][ T7401] netlink: 104 bytes leftover after parsing attributes in process `syz-executor.3'. [ 496.967212][ T7411] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.0'. [ 497.062756][ T7412] loop3: detected capacity change from 0 to 1024 [ 497.675452][ T43] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 497.951766][ T7416] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 498.070466][ T7416] kvm: pic: level sensitive irq not supported [ 498.070847][ T7416] kvm: pic: non byte read [ 498.126627][ T43] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 498.138682][ T43] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x3 has an invalid bInterval 97, changing to 10 [ 498.150678][ T43] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 24729, setting to 1024 [ 498.185162][ T7416] kvm: pic: level sensitive irq not supported [ 498.185531][ T7416] kvm: pic: non byte read [ 498.228862][ T7416] kvm: pic: level sensitive irq not supported [ 498.229217][ T7416] kvm: pic: non byte read [ 498.327368][ T43] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 498.337117][ T43] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 498.345657][ T43] usb 4-1: Product: syz [ 498.350066][ T43] usb 4-1: Manufacturer: syz [ 498.355106][ T43] usb 4-1: SerialNumber: syz [ 498.412564][ T7416] kvm: pic: level sensitive irq not supported [ 498.412924][ T7416] kvm: pic: non byte read [ 498.539831][ T7416] kvm: pic: level sensitive irq not supported [ 498.540210][ T7416] kvm: pic: non byte read [ 498.858764][ T5081] Bluetooth: hci3: unexpected event for opcode 0x0c5b [ 498.956822][ T7430] syz-executor.0[7430] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 498.957438][ T7430] syz-executor.0[7430] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 499.385615][ T43] cdc_ncm 4-1:1.0: bind() failure [ 499.475881][ T43] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found [ 499.483038][ T43] cdc_ncm 4-1:1.1: bind() failure [ 499.561501][ T43] usb 4-1: USB disconnect, device number 11 [ 500.090502][ T7447] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.2'. [ 500.735073][ T7454] loop3: detected capacity change from 0 to 128 [ 501.048904][ T5081] Bluetooth: hci4: unexpected event for opcode 0x0419 [ 501.741382][ T7460] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 501.865025][ T7460] kvm: pic: non byte read [ 501.898637][ T7460] kvm: pic: non byte read [ 501.920061][ T7467] syz-executor.4[7467] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 501.920663][ T7467] syz-executor.4[7467] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 501.975087][ T7460] kvm: pic: non byte read [ 502.036857][ T7460] kvm: pic: non byte read [ 502.089444][ T7460] kvm: pic: non byte read [ 502.273120][ T7460] kvm: pic: single mode not supported [ 502.273176][ T7460] kvm: pic: level sensitive irq not supported [ 502.333465][ T7460] kvm: pic: single mode not supported [ 503.953798][ T7489] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 504.290499][ T7486] loop1: detected capacity change from 0 to 1024 [ 504.720890][ T10] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 505.064873][ T5081] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0 [ 505.074022][ T5081] Bluetooth: hci4: Injecting HCI hardware error event [ 505.091018][ T5081] Bluetooth: hci4: hardware error 0x00 [ 505.195747][ T10] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 505.207327][ T10] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has an invalid bInterval 97, changing to 10 [ 505.218831][ T10] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 24729, setting to 1024 [ 505.463636][ T7500] loop4: detected capacity change from 0 to 2048 [ 505.475294][ T10] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 505.487960][ T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 505.497133][ T10] usb 2-1: Product: syz [ 505.501533][ T10] usb 2-1: Manufacturer: syz [ 505.506604][ T10] usb 2-1: SerialNumber: syz [ 505.550924][ T7500] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 505.581675][ T7500] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 506.031158][ T7511] syz-executor.0[7511] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 506.031856][ T7511] syz-executor.0[7511] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 506.327913][ T10] cdc_ncm 2-1:1.0: failed GET_NTB_PARAMETERS [ 506.346543][ T10] cdc_ncm 2-1:1.0: bind() failure [ 506.363086][ T10] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found [ 506.371090][ T10] cdc_ncm 2-1:1.1: bind() failure [ 506.463344][ T7507] fscrypt (sda1, inode 1955): Missing crypto API support for Adiantum (API name: "adiantum(xchacha12,aes)") [ 506.646125][ T10] usb 2-1: USB disconnect, device number 11 [ 507.147188][ T5081] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 507.609902][ T7530] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.1'. [ 510.015877][ T7562] loop3: detected capacity change from 0 to 1024 [ 510.356369][ T7557] fscrypt (sda1, inode 1949): Missing crypto API support for Adiantum (API name: "adiantum(xchacha12,aes)") [ 510.566095][ T43] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 511.008666][ T43] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 511.025768][ T43] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x3 has an invalid bInterval 97, changing to 10 [ 511.038912][ T43] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 24729, setting to 1024 [ 511.335029][ T43] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 511.344726][ T43] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 511.353159][ T43] usb 4-1: Product: syz [ 511.357717][ T43] usb 4-1: Manufacturer: syz [ 511.363239][ T43] usb 4-1: SerialNumber: syz [ 511.608611][ T7584] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.0'. [ 512.431465][ T43] cdc_ncm 4-1:1.0: failed GET_NTB_PARAMETERS [ 512.438284][ T43] cdc_ncm 4-1:1.0: bind() failure [ 512.462082][ T43] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found [ 512.471565][ T43] cdc_ncm 4-1:1.1: bind() failure [ 512.596095][ T7593] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 512.605762][ T43] usb 4-1: USB disconnect, device number 12 [ 512.612119][ T7593] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 512.690691][ T7595] loop0: detected capacity change from 0 to 64 [ 512.978475][ T29] audit: type=1804 audit(1718198236.617:6): pid=7595 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir1087591445/syzkaller.taRloQ/141/file0/bus" dev="loop0" ino=4 res=1 errno=0 [ 514.043960][ T7602] fscrypt (sda1, inode 1952): Missing crypto API support for Adiantum (API name: "adiantum(xchacha12,aes)") [ 514.996568][ T7626] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.4'. [ 516.796214][ T7642] loop3: detected capacity change from 0 to 1024 [ 517.170819][ T7645] tipc: Started in network mode [ 517.176949][ T7645] tipc: Node identity ac1414aa, cluster identity 4711 [ 517.186619][ T7645] tipc: Enabled bearer , priority 10 [ 517.256583][ T7645] tipc: Disabling bearer [ 517.334751][ T781] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 517.736095][ T781] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 517.747588][ T781] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x3 has an invalid bInterval 97, changing to 10 [ 517.759069][ T781] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 24729, setting to 1024 [ 517.955558][ T781] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 517.965293][ T781] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 517.973558][ T781] usb 4-1: Product: syz [ 517.981578][ T781] usb 4-1: Manufacturer: syz [ 517.987516][ T781] usb 4-1: SerialNumber: syz [ 518.630202][ T7650] fscrypt: Adiantum using implementation "adiantum(xchacha12-generic,aes-fixed-time,nhpoly1305-generic)" [ 518.755197][ T781] cdc_ncm 4-1:1.0: failed GET_NTB_PARAMETERS [ 518.761601][ T781] cdc_ncm 4-1:1.0: bind() failure [ 518.777921][ T781] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found [ 518.785224][ T781] cdc_ncm 4-1:1.1: bind() failure [ 518.885903][ T781] usb 4-1: USB disconnect, device number 13 [ 519.074080][ T7665] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.4'. [ 522.158985][ T7702] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.3'. [ 522.525177][ T7701] loop4: detected capacity change from 0 to 1024 [ 523.127352][ T5123] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 523.556101][ T5123] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 523.567803][ T5123] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x3 has an invalid bInterval 97, changing to 10 [ 523.580974][ T5123] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 24729, setting to 1024 [ 523.821507][ T5123] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 523.831030][ T5123] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 523.839885][ T5123] usb 5-1: Product: syz [ 523.844656][ T5123] usb 5-1: Manufacturer: syz [ 523.849513][ T5123] usb 5-1: SerialNumber: syz [ 524.644998][ T5123] cdc_ncm 5-1:1.0: failed GET_NTB_PARAMETERS [ 524.651506][ T5123] cdc_ncm 5-1:1.0: bind() failure [ 524.697633][ T5123] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found [ 524.705347][ T5123] cdc_ncm 5-1:1.1: bind() failure [ 524.865732][ T5123] usb 5-1: USB disconnect, device number 8 [ 525.429708][ T7739] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.3'. [ 526.045442][ T5123] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 526.324539][ T5123] usb 1-1: Using ep0 maxpacket: 32 [ 526.387407][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 526.394397][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 526.604080][ T7753] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 526.695889][ T5123] usb 1-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=99.d3 [ 526.705617][ T5123] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 526.713889][ T5123] usb 1-1: Product: syz [ 526.718478][ T5123] usb 1-1: Manufacturer: syz [ 526.723345][ T5123] usb 1-1: SerialNumber: syz [ 526.792133][ T5123] usb 1-1: config 0 descriptor?? [ 526.874038][ T5123] radio-si470x 1-1:0.0: could not find interrupt in endpoint [ 526.882225][ T5123] radio-si470x 1-1:0.0: probe with driver radio-si470x failed with error -5 [ 527.084812][ T5123] radio-raremono 1-1:0.0: Thanko's Raremono connected: (10C4:818A) [ 527.352134][ T5123] radio-raremono 1-1:0.0: raremono_cmd_main failed (-71) [ 527.422349][ T5123] radio-raremono 1-1:0.0: V4L2 device registered as radio32 [ 527.466131][ T5123] usb 1-1: USB disconnect, device number 13 [ 527.473084][ T5123] radio-raremono 1-1:0.0: Thanko's Raremono disconnected [ 528.247019][ T7772] loop1: detected capacity change from 0 to 1024 [ 528.764280][ T43] usb 2-1: new high-speed USB device number 12 using dummy_hcd [ 528.878241][ T7785] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 529.205388][ T43] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 529.216873][ T43] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has an invalid bInterval 97, changing to 10 [ 529.228398][ T43] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 24729, setting to 1024 [ 529.501348][ T43] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 529.511774][ T43] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 529.520378][ T43] usb 2-1: Product: syz [ 529.524954][ T43] usb 2-1: Manufacturer: syz [ 529.529788][ T43] usb 2-1: SerialNumber: syz [ 529.936560][ T7799] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 530.191175][ T7801] Bluetooth: MGMT ver 1.22 [ 530.329396][ T43] cdc_ncm 2-1:1.0: failed GET_NTB_PARAMETERS [ 530.335970][ T43] cdc_ncm 2-1:1.0: bind() failure [ 530.353590][ T43] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found [ 530.360892][ T43] cdc_ncm 2-1:1.1: bind() failure [ 530.506761][ T4426] Bluetooth: hci3: command 0x0406 tx timeout [ 530.603318][ T43] usb 2-1: USB disconnect, device number 12 [ 532.042696][ T7831] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 532.323333][ T7834] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 533.249053][ T7845] loop0: detected capacity change from 0 to 1024 [ 533.715184][ T781] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 534.176731][ T781] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 534.188473][ T781] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x3 has an invalid bInterval 97, changing to 10 [ 534.200029][ T781] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 24729, setting to 1024 [ 534.389176][ T7863] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 534.470203][ T781] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 534.479930][ T781] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 534.488384][ T781] usb 1-1: Product: syz [ 534.492785][ T781] usb 1-1: Manufacturer: syz [ 534.497763][ T781] usb 1-1: SerialNumber: syz [ 535.017830][ T7868] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 535.345002][ T781] cdc_ncm 1-1:1.0: failed GET_NTB_PARAMETERS [ 535.351463][ T781] cdc_ncm 1-1:1.0: bind() failure [ 535.367838][ T781] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found [ 535.376247][ T781] cdc_ncm 1-1:1.1: bind() failure [ 535.576086][ T781] usb 1-1: USB disconnect, device number 14 [ 535.874694][ T7884] warning: `syz-executor.3' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 536.882207][ T7897] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 537.990881][ T7913] loop1: detected capacity change from 0 to 1024 [ 538.285825][ T7919] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 538.586775][ T781] usb 2-1: new high-speed USB device number 13 using dummy_hcd [ 538.995975][ T781] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 539.008494][ T781] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has an invalid bInterval 97, changing to 10 [ 539.020733][ T781] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 24729, setting to 1024 [ 539.238235][ T781] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 539.247930][ T781] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 539.256407][ T781] usb 2-1: Product: syz [ 539.260813][ T781] usb 2-1: Manufacturer: syz [ 539.265863][ T781] usb 2-1: SerialNumber: syz [ 539.465394][ T7932] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 539.677204][ T7936] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 540.045762][ T781] cdc_ncm 2-1:1.0: failed GET_NTB_PARAMETERS [ 540.052287][ T781] cdc_ncm 2-1:1.0: bind() failure [ 540.068900][ T781] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found [ 540.076190][ T781] cdc_ncm 2-1:1.1: bind() failure [ 540.247079][ T781] usb 2-1: USB disconnect, device number 13 [ 541.486599][ T7955] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 542.426798][ T7975] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 543.247079][ T7987] loop2: detected capacity change from 0 to 1024 [ 543.874578][ T10] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 543.975004][ T8002] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 544.005712][ T8002] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 544.014985][ T8002] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 544.024080][ T8002] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 544.033325][ T8002] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 544.042633][ T8002] vxlan0: entered promiscuous mode [ 544.253577][ T8003] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 544.305355][ T10] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 544.317621][ T10] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x3 has an invalid bInterval 97, changing to 10 [ 544.329624][ T10] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 24729, setting to 1024 [ 544.401904][ T8003] picdev_read: 6 callbacks suppressed [ 544.402005][ T8003] kvm: pic: non byte read [ 544.487763][ T8003] kvm: pic: non byte read [ 544.558989][ T10] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 544.568858][ T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 544.574914][ T8003] kvm: pic: non byte read [ 544.577533][ T10] usb 3-1: Product: syz [ 544.582909][ T8003] kvm: pic: non byte read [ 544.586080][ T10] usb 3-1: Manufacturer: syz [ 544.586190][ T10] usb 3-1: SerialNumber: syz [ 544.655648][ T8003] kvm: pic: non byte read [ 544.661212][ T8003] kvm: pic: non byte read [ 544.713081][ T8003] kvm: pic: single mode not supported [ 544.713156][ T8003] kvm: pic: level sensitive irq not supported [ 544.756253][ T8003] kvm: pic: non byte read [ 544.854487][ T8003] kvm: pic: non byte read [ 544.875762][ T8003] kvm: pic: non byte read [ 544.881415][ T8003] kvm: pic: non byte read [ 544.975732][ T8003] kvm: pic: single mode not supported [ 545.395245][ T10] cdc_ncm 3-1:1.0: failed GET_NTB_PARAMETERS [ 545.408402][ T10] cdc_ncm 3-1:1.0: bind() failure [ 545.430537][ T10] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found [ 545.437789][ T10] cdc_ncm 3-1:1.1: bind() failure [ 545.616717][ T10] usb 3-1: USB disconnect, device number 9 [ 545.821534][ T8020] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 547.359274][ T8041] sctp: [Deprecated]: syz-executor.0 (pid 8041) Use of struct sctp_assoc_value in delayed_ack socket option. [ 547.359274][ T8041] Use struct sctp_sack_info instead [ 548.014928][ T8052] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 548.123570][ T8050] kvm: pic: single mode not supported [ 548.123645][ T8050] kvm: pic: level sensitive irq not supported [ 548.150548][ T8059] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 548.217707][ T8050] kvm: pic: single mode not supported [ 548.245511][ T8060] loop2: detected capacity change from 0 to 1024 [ 548.290476][ T8046] syz-executor.4 (8046) used greatest stack depth: 5312 bytes left [ 548.694867][ T5123] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 549.155019][ T5123] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 549.166797][ T5123] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x3 has an invalid bInterval 97, changing to 10 [ 549.178381][ T5123] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 24729, setting to 1024 [ 549.405036][ T5123] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 549.420702][ T5123] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 549.431284][ T5123] usb 3-1: Product: syz [ 549.435822][ T5123] usb 3-1: Manufacturer: syz [ 549.440662][ T5123] usb 3-1: SerialNumber: syz [ 550.265477][ T5123] cdc_ncm 3-1:1.0: failed GET_NTB_PARAMETERS [ 550.272007][ T5123] cdc_ncm 3-1:1.0: bind() failure [ 550.288558][ T5123] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found [ 550.296029][ T5123] cdc_ncm 3-1:1.1: bind() failure [ 550.416371][ T5123] usb 3-1: USB disconnect, device number 10 [ 550.501385][ T8085] netlink: 'syz-executor.0': attribute type 4 has an invalid length. [ 551.291657][ T8093] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 552.062568][ T8110] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.2'. [ 552.179661][ T8110] Illegal XDP return value 4294967274 on prog (id 152) dev N/A, expect packet loss! [ 553.029149][ T8127] dvmrp0: entered allmulticast mode [ 554.038979][ T8133] loop2: detected capacity change from 0 to 1024 [ 554.734129][ T8141] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 554.868858][ T8144] picdev_read: 14 callbacks suppressed [ 554.868932][ T8144] kvm: pic: non byte read [ 554.956493][ T8144] kvm: pic: non byte read [ 554.962101][ T8144] kvm: pic: non byte read [ 555.035384][ T8144] kvm: pic: non byte read [ 555.041138][ T8144] kvm: pic: non byte read [ 555.119742][ T8144] kvm: pic: non byte read [ 555.168480][ T8144] kvm: pic: single mode not supported [ 555.168583][ T8144] kvm: pic: level sensitive irq not supported [ 555.226001][ T8144] kvm: pic: non byte read [ 555.296928][ T8144] kvm: pic: non byte read [ 555.302689][ T8144] kvm: pic: non byte read [ 555.464110][ T8144] kvm: pic: non byte read [ 555.507489][ T8144] kvm: pic: single mode not supported [ 557.088590][ T8175] netlink: 'syz-executor.0': attribute type 1 has an invalid length. [ 557.285118][ T8177] loop2: detected capacity change from 0 to 1024 [ 558.522362][ T8192] syz-executor.0[8192] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 558.522988][ T8192] syz-executor.0[8192] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 563.899421][ T8206] qrtr: Invalid version 0 [ 564.567108][ T8216] loop1: detected capacity change from 0 to 256 [ 564.730994][ T8218] loop3: detected capacity change from 0 to 2048 [ 564.903608][ T8219] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 564.949914][ T8216] FAT-fs (loop1): Directory bread(block 64) failed [ 564.956805][ T8216] FAT-fs (loop1): Directory bread(block 65) failed [ 564.963636][ T8216] FAT-fs (loop1): Directory bread(block 66) failed [ 564.970433][ T8216] FAT-fs (loop1): Directory bread(block 67) failed [ 564.977343][ T8216] FAT-fs (loop1): Directory bread(block 68) failed [ 564.986488][ T8216] FAT-fs (loop1): Directory bread(block 69) failed [ 564.994101][ T8216] FAT-fs (loop1): Directory bread(block 70) failed [ 565.000974][ T8216] FAT-fs (loop1): Directory bread(block 71) failed [ 565.008017][ T8216] FAT-fs (loop1): Directory bread(block 72) failed [ 565.014755][ T8216] FAT-fs (loop1): Directory bread(block 73) failed [ 565.508331][ T8221] bridge0: entered promiscuous mode [ 566.384665][ T8223] loop2: detected capacity change from 0 to 1024 [ 566.788578][ T4482] udevd[4482]: worker [5277] terminated by signal 33 (Unknown signal 33) [ 566.840931][ T4482] udevd[4482]: worker [5277] failed while handling '/devices/virtual/block/loop3' [ 568.247623][ T29] audit: type=1326 audit(1718198292.870:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8232 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73d3579 code=0x0 [ 568.317939][ T8235] syz-executor.3[8235] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 568.318553][ T8235] syz-executor.3[8235] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 569.454135][ T8236] loop2: detected capacity change from 0 to 8192 [ 571.427040][ T4482] udevd[4482]: worker [7791] terminated by signal 33 (Unknown signal 33) [ 571.498194][ T4482] udevd[4482]: worker [7791] failed while handling '/devices/virtual/block/loop2' [ 572.931712][ T8262] loop2: detected capacity change from 0 to 128 [ 573.047807][ T8262] VFS: could not find a valid V7 on loop2. [ 573.317543][ T8264] syz-executor.3[8264] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 573.317960][ T8264] syz-executor.3[8264] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 575.003882][ T8272] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 575.170693][ T8276] picdev_read: 2 callbacks suppressed [ 575.170794][ T8276] kvm: pic: non byte read [ 575.285325][ T8276] kvm: pic: non byte read [ 575.337596][ T8276] kvm: pic: non byte read [ 575.343202][ T8276] kvm: pic: non byte read [ 575.433878][ T8276] kvm: pic: non byte read [ 575.481238][ T8276] kvm: pic: non byte read [ 575.538795][ T8276] kvm: pic: single mode not supported [ 575.538871][ T8276] kvm: pic: level sensitive irq not supported [ 575.598908][ T8276] kvm: pic: non byte read [ 575.679740][ T8276] kvm: pic: non byte read [ 577.878878][ T8299] afs: Unknown parameter 'd' [ 578.145851][ T8301] syz-executor.3[8301] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 578.146455][ T8301] syz-executor.3[8301] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 578.266475][ T5123] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 578.286665][ T5123] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 578.372706][ T5123] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz0] on syz1 [ 579.105146][ T8315] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 579.211416][ T8312] kvm: pic: non byte read [ 579.235847][ T8312] kvm: pic: non byte read [ 579.270360][ T8312] kvm: pic: single mode not supported [ 579.270465][ T8312] kvm: pic: level sensitive irq not supported [ 579.338859][ T8312] kvm: pic: single mode not supported [ 580.562324][ T8337] syz-executor.1[8337] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 580.581642][ T8337] syz-executor.1[8337] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 580.620267][ T8338] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.3'. [ 580.642010][ T8338] block nbd0: not configured, cannot reconfigure [ 581.204087][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 581.212112][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 581.287381][ T10] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz0] on syz1 [ 581.419225][ T8345] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 581.530463][ T8352] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3) [ 581.537307][ T8352] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 581.546185][ T8352] vhci_hcd vhci_hcd.0: Device attached [ 581.559139][ T8350] loop2: detected capacity change from 0 to 2048 [ 581.661736][ T8358] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 585.434944][ T8353] vhci_hcd: connection closed [ 585.595026][ T4146] vhci_hcd: stop threads [ 585.604715][ T4146] vhci_hcd: release socket [ 585.609422][ T4146] vhci_hcd: disconnect device [ 587.922945][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 587.929877][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 591.180934][ T5132] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 591.188872][ T5132] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 591.264564][ T5132] hid-generic 0000:0000:0000.0003: hidraw0: HID v0.00 Device [syz0] on syz1 [ 591.671013][ T8426] loop4: detected capacity change from 0 to 2048 [ 591.757911][ T8426] UDF-fs: error (device loop4): udf_process_sequence: Primary Volume Descriptor not found! [ 591.781172][ T8426] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 592.371904][ T8432] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 594.556710][ T5140] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 594.974814][ T5140] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 594.992102][ T5140] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 595.004382][ T5140] usb 3-1: New USB device found, idVendor=056a, idProduct=00d0, bcdDevice= 0.00 [ 595.013725][ T5140] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 595.034453][ T5140] usb 3-1: config 0 descriptor?? [ 595.155538][ T8436] capability: warning: `syz-executor.4' uses deprecated v2 capabilities in a way that may be insecure [ 595.491872][ T5140] usbhid 3-1:0.0: can't add hid device: -71 [ 595.513346][ T5140] usbhid 3-1:0.0: probe with driver usbhid failed with error -71 [ 595.563180][ T5140] usb 3-1: USB disconnect, device number 11 [ 597.114767][ T5132] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 597.122639][ T5132] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 597.183402][ T5132] hid-generic 0000:0000:0000.0004: hidraw0: HID v0.00 Device [syz0] on syz1 [ 597.595007][ T5132] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 597.888430][ T5132] usb 5-1: Using ep0 maxpacket: 32 [ 598.045827][ T5132] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 598.059712][ T5132] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 598.070940][ T5132] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 598.285687][ T5132] usb 5-1: New USB device found, idVendor=05ac, idProduct=0221, bcdDevice= 0.40 [ 598.295646][ T5132] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 598.303986][ T5132] usb 5-1: Product: syz [ 598.308698][ T5132] usb 5-1: Manufacturer: syz [ 598.313512][ T5132] usb 5-1: SerialNumber: syz [ 598.639200][ T8468] loop1: detected capacity change from 0 to 1024 [ 598.665635][ T5132] usbhid 5-1:1.0: can't add hid device: -22 [ 598.676091][ T5132] usbhid 5-1:1.0: probe with driver usbhid failed with error -22 [ 598.725770][ T5132] usb 5-1: USB disconnect, device number 9 [ 599.025037][ T8473] loop0: detected capacity change from 0 to 512 [ 599.294855][ T8473] EXT4-fs warning (device loop0): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 599.307228][ T8473] EXT4-fs warning (device loop0): dx_probe:880: Enable large directory feature to access it [ 599.317768][ T8473] EXT4-fs warning (device loop0): dx_probe:965: inode #2: comm syz-executor.0: Corrupt directory, running e2fsck is recommended [ 599.356072][ T8473] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2 [ 599.425725][ T8473] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.0: corrupted in-inode xattr: invalid ea_ino [ 599.526526][ T8473] EXT4-fs (loop0): Remounting filesystem read-only [ 599.533517][ T8473] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 599.676325][ T8478] Non-string source [ 599.810590][ T5072] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 600.275405][ T8478] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 600.281645][ T8478] Bluetooth: hci0: Error when powering off device on rfkill (-4) [ 600.329025][ T8478] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 600.335594][ T8478] Bluetooth: hci1: Error when powering off device on rfkill (-4) [ 600.428093][ T8478] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 600.434465][ T8478] Bluetooth: hci2: Error when powering off device on rfkill (-4) [ 600.498021][ T8478] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 600.505215][ T8478] Bluetooth: hci3: Error when powering off device on rfkill (-4) [ 600.701222][ T8488] loop4: detected capacity change from 0 to 4096 [ 600.948724][ T8495] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 601.131671][ T8488] NILFS (loop4): inode bitmap is inconsistent for reserved inodes [ 601.140736][ T8488] NILFS (loop4): repaired inode bitmap for reserved inodes [ 603.154865][ T780] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 603.162588][ T780] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 603.264795][ T780] hid-generic 0000:0000:0000.0005: hidraw0: HID v0.00 Device [syz0] on syz1 [ 604.477567][ T8541] 9pnet: Unknown protocol version 9 [ 604.910688][ T8537] loop0: detected capacity change from 0 to 4096 [ 605.075443][ T8547] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 605.216160][ T8537] NILFS (loop0): inode bitmap is inconsistent for reserved inodes [ 605.224717][ T8537] NILFS (loop0): repaired inode bitmap for reserved inodes [ 605.656613][ T8551] Non-string source [ 606.795087][ T8496] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 606.802817][ T8496] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 606.847307][ T8573] 9pnet: Unknown protocol version 9 [ 606.891592][ T8496] hid-generic 0000:0000:0000.0006: hidraw0: HID v0.00 Device [syz0] on syz1 [ 608.633693][ T8593] Non-string source [ 608.687845][ T8588] loop3: detected capacity change from 0 to 4096 [ 608.956631][ T8598] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 610.016734][ T8614] 9pnet: Unknown protocol version 9 [ 610.322701][ T8620] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 610.853575][ T8630] Non-string source [ 612.017177][ T8641] loop1: detected capacity change from 0 to 4096 [ 612.215473][ T8655] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 612.505279][ T8659] netlink: 'syz-executor.3': attribute type 1 has an invalid length. [ 612.679346][ T8659] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 612.695127][ T8659] bond1: (slave batadv1): Enslaving as a backup interface with an up link [ 613.528843][ T8677] loop2: detected capacity change from 0 to 64 [ 615.509179][ T8674] loop1: detected capacity change from 0 to 8 [ 615.533669][ T5071] hfs: request for non-existent node 131072 in B*Tree [ 617.753728][ T8686] syz-executor.2[8686] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 617.754659][ T8686] syz-executor.2[8686] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 620.208439][ T8718] loop3: detected capacity change from 0 to 8 [ 620.312543][ T8724] syz-executor.2[8724] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 620.313157][ T8724] syz-executor.2[8724] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 623.122697][ T8759] syz-executor.0[8759] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 623.143160][ T8759] syz-executor.0[8759] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 626.222992][ T8794] syz-executor.2[8794] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 626.300441][ T8794] syz-executor.2[8794] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 629.049641][ T8822] syz-executor.0[8822] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 629.125396][ T8822] syz-executor.0[8822] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 631.873520][ T8853] syz-executor.1[8853] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 631.928333][ T8853] syz-executor.1[8853] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 634.088258][ T8885] syz-executor.4[8885] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 634.123279][ T8885] syz-executor.4[8885] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 634.662005][ T8501] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 634.681951][ T8501] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 634.848121][ T8501] hid-generic 0000:0000:0000.0007: hidraw0: HID v0.00 Device [syz0] on syz1 [ 637.027976][ T8913] syz-executor.4[8913] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 637.028588][ T8913] syz-executor.4[8913] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 638.473287][ T8926] loop0: detected capacity change from 0 to 2048 [ 638.680092][ T8926] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 638.693062][ T8926] ext4 filesystem being mounted at /root/syzkaller-testdir1087591445/syzkaller.taRloQ/233/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 639.075186][ T5072] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 640.279546][ T8944] syz-executor.1[8944] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 640.280170][ T8944] syz-executor.1[8944] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 641.638567][ T8960] loop2: detected capacity change from 0 to 2048 [ 641.753470][ T8960] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 641.766379][ T8960] ext4 filesystem being mounted at /root/syzkaller-testdir488935854/syzkaller.xvZ6mz/294/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 641.852440][ T8930] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 192: padding at end of block bitmap is not set [ 641.916763][ T5071] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 642.214746][ T8973] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 643.019659][ T8989] loop1: detected capacity change from 0 to 8 [ 643.889192][ T8998] loop4: detected capacity change from 0 to 2048 [ 644.060269][ T8998] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 644.073283][ T8998] ext4 filesystem being mounted at /root/syzkaller-testdir374070671/syzkaller.DRNXQG/258/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 644.383864][ T5076] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 644.865806][ T9018] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 646.241276][ T9034] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 646.252299][ T9034] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 646.306169][ T9034] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 646.327700][ T9034] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 646.340708][ T9034] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 646.360694][ T9034] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 646.396417][ T5081] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 646.454960][ T5081] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 646.473093][ T5081] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 646.515124][ T5081] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 646.533008][ T5081] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 646.550760][ T5081] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 647.167251][ T9039] loop0: detected capacity change from 0 to 4096 [ 647.280660][ T9039] NILFS (loop0): invalid segment: Checksum error in segment payload [ 647.289401][ T9039] NILFS (loop0): trying rollback from an earlier position [ 647.386605][ T9039] NILFS (loop0): recovery complete [ 647.397743][ T9046] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 647.761677][ T9033] chnl_net:caif_netlink_parms(): no params data found [ 647.872422][ T2950] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 648.664847][ T9034] Bluetooth: hci5: command tx timeout [ 672.416981][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 672.423654][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 672.436828][ T9034] Bluetooth: hci5: command tx timeout [ 672.667046][ T2950] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 672.901724][ T2950] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 673.068234][ T2950] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 673.383962][ T2950] bridge_slave_1: left allmulticast mode [ 673.390231][ T2950] bridge_slave_1: left promiscuous mode [ 673.396917][ T2950] bridge0: port 2(bridge_slave_1) entered disabled state [ 673.463592][ T2950] bridge_slave_0: left allmulticast mode [ 673.470224][ T2950] bridge_slave_0: left promiscuous mode [ 673.476749][ T2950] bridge0: port 1(bridge_slave_0) entered disabled state [ 673.909247][ T2950] dvmrp0 (unregistering): left allmulticast mode [ 674.124800][ T2950] bridge0 (unregistering): left promiscuous mode [ 674.339335][ T2950] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 674.454743][ T2950] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 674.505652][ T5081] Bluetooth: hci5: command tx timeout [ 674.518765][ T2950] bond0 (unregistering): Released all slaves [ 675.571493][ T9033] bridge0: port 1(bridge_slave_0) entered blocking state [ 675.580867][ T9033] bridge0: port 1(bridge_slave_0) entered disabled state [ 675.588897][ T9033] bridge_slave_0: entered allmulticast mode [ 675.598221][ T9033] bridge_slave_0: entered promiscuous mode [ 675.738225][ T2950] hsr_slave_0: left promiscuous mode [ 675.760772][ T2950] hsr_slave_1: left promiscuous mode [ 675.783727][ T2950] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 675.797424][ T2950] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 675.830946][ T2950] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 675.838709][ T2950] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 675.885782][ T2950] veth1_macvtap: left promiscuous mode [ 675.891540][ T2950] veth0_macvtap: left promiscuous mode [ 675.897643][ T2950] veth1_vlan: left promiscuous mode [ 675.903299][ T2950] veth0_vlan: left promiscuous mode [ 676.614438][ T5081] Bluetooth: hci5: command tx timeout [ 676.714903][ T9034] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 676.786278][ T9034] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 676.789998][ T2950] team0 (unregistering): Port device team_slave_1 removed [ 676.854469][ T2950] team0 (unregistering): Port device team_slave_0 removed [ 676.862774][ T9034] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 677.157702][ T9034] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 677.208922][ T9034] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 677.218370][ T9034] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 677.429294][ T9033] bridge0: port 2(bridge_slave_1) entered blocking state [ 677.436922][ T9033] bridge0: port 2(bridge_slave_1) entered disabled state [ 677.444660][ T9033] bridge_slave_1: entered allmulticast mode [ 677.452688][ T9033] bridge_slave_1: entered promiscuous mode [ 678.063160][ T9033] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 678.217483][ T9033] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 679.372416][ T9033] team0: Port device team_slave_0 added [ 679.390232][ T9033] team0: Port device team_slave_1 added [ 679.399487][ T9034] Bluetooth: hci0: command tx timeout [ 679.826914][ T5081] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 679.864442][ T5081] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 679.874042][ T5081] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 679.891017][ T5081] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 679.904635][ T5081] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 679.919037][ T5081] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 680.045031][ T9033] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 680.052198][ T9033] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 680.078626][ T9033] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 680.340622][ T5081] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 680.346896][ T9033] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 680.355115][ T9033] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 680.381442][ T9033] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 680.397173][ T5081] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 680.407122][ T5081] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 680.424011][ T5081] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 680.457826][ T5081] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 680.467456][ T5081] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 680.485149][ T9070] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 680.494833][ T9070] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 680.510946][ T9070] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 680.548034][ T9070] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 680.566644][ T9070] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 680.575964][ T9070] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 680.792103][ T9033] hsr_slave_0: entered promiscuous mode [ 680.876629][ T9033] hsr_slave_1: entered promiscuous mode [ 680.931197][ T9033] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 680.939112][ T9033] Cannot create hsr debugfs directory [ 681.145951][ T9056] chnl_net:caif_netlink_parms(): no params data found [ 681.471023][ T4426] Bluetooth: hci0: command tx timeout [ 682.030008][ T4426] Bluetooth: hci1: command tx timeout [ 682.563417][ T9062] chnl_net:caif_netlink_parms(): no params data found [ 682.598781][ T4426] Bluetooth: hci4: command tx timeout [ 682.681813][ T4426] Bluetooth: hci6: command tx timeout [ 683.358217][ T9056] bridge0: port 1(bridge_slave_0) entered blocking state [ 683.366241][ T9056] bridge0: port 1(bridge_slave_0) entered disabled state [ 683.373964][ T9056] bridge_slave_0: entered allmulticast mode [ 683.385333][ T9056] bridge_slave_0: entered promiscuous mode [ 683.540823][ T9056] bridge0: port 2(bridge_slave_1) entered blocking state [ 683.544632][ T4426] Bluetooth: hci0: command tx timeout [ 683.548595][ T9056] bridge0: port 2(bridge_slave_1) entered disabled state [ 683.561466][ T9056] bridge_slave_1: entered allmulticast mode [ 683.570729][ T9056] bridge_slave_1: entered promiscuous mode [ 683.585510][ T9067] chnl_net:caif_netlink_parms(): no params data found [ 684.063735][ T9065] chnl_net:caif_netlink_parms(): no params data found [ 684.105232][ T4426] Bluetooth: hci1: command tx timeout [ 684.185675][ T9056] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 684.311982][ T9056] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 684.375422][ T2950] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 684.674842][ T4426] Bluetooth: hci4: command tx timeout [ 684.689193][ T2950] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 684.748026][ T4426] Bluetooth: hci6: command tx timeout [ 684.821504][ T9056] team0: Port device team_slave_0 added [ 684.896902][ T9056] team0: Port device team_slave_1 added [ 684.972684][ T2950] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 685.028718][ T9033] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 685.202599][ T2950] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 685.296697][ T9033] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 685.469143][ T9056] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 685.476498][ T9056] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 685.504758][ T9056] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 685.631456][ T4426] Bluetooth: hci0: command tx timeout [ 685.674647][ T9033] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 685.725229][ T9033] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 685.760672][ T9056] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 685.768156][ T9056] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 685.797963][ T9056] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 685.896134][ T9065] bridge0: port 1(bridge_slave_0) entered blocking state [ 685.904014][ T9065] bridge0: port 1(bridge_slave_0) entered disabled state [ 685.912258][ T9065] bridge_slave_0: entered allmulticast mode [ 685.923757][ T9065] bridge_slave_0: entered promiscuous mode [ 686.051044][ T9062] bridge0: port 1(bridge_slave_0) entered blocking state [ 686.059944][ T9062] bridge0: port 1(bridge_slave_0) entered disabled state [ 686.068397][ T9062] bridge_slave_0: entered allmulticast mode [ 686.091004][ T9062] bridge_slave_0: entered promiscuous mode [ 686.184929][ T4426] Bluetooth: hci1: command tx timeout [ 686.322417][ T9065] bridge0: port 2(bridge_slave_1) entered blocking state [ 686.330350][ T9065] bridge0: port 2(bridge_slave_1) entered disabled state [ 686.338141][ T9065] bridge_slave_1: entered allmulticast mode [ 686.346510][ T9065] bridge_slave_1: entered promiscuous mode [ 686.381607][ T9067] bridge0: port 1(bridge_slave_0) entered blocking state [ 686.389354][ T9067] bridge0: port 1(bridge_slave_0) entered disabled state [ 686.397230][ T9067] bridge_slave_0: entered allmulticast mode [ 686.406086][ T9067] bridge_slave_0: entered promiscuous mode [ 686.451830][ T9062] bridge0: port 2(bridge_slave_1) entered blocking state [ 686.459677][ T9062] bridge0: port 2(bridge_slave_1) entered disabled state [ 686.467456][ T9062] bridge_slave_1: entered allmulticast mode [ 686.476093][ T9062] bridge_slave_1: entered promiscuous mode [ 686.668420][ T9067] bridge0: port 2(bridge_slave_1) entered blocking state [ 686.676413][ T9067] bridge0: port 2(bridge_slave_1) entered disabled state [ 686.684586][ T9067] bridge_slave_1: entered allmulticast mode [ 686.693948][ T9067] bridge_slave_1: entered promiscuous mode [ 686.758553][ T4426] Bluetooth: hci4: command tx timeout [ 686.824563][ T4426] Bluetooth: hci6: command tx timeout [ 686.970990][ T9056] hsr_slave_0: entered promiscuous mode [ 686.983726][ T9056] hsr_slave_1: entered promiscuous mode [ 687.026852][ T9056] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 687.035021][ T9056] Cannot create hsr debugfs directory [ 687.239907][ T2950] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 687.414736][ T9065] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 687.435518][ T9067] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 687.468620][ T9067] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 687.520884][ T9065] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 687.620577][ T2950] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 687.681754][ T9062] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 687.963854][ T2950] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 688.169310][ T9062] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 688.204013][ T9067] team0: Port device team_slave_0 added [ 688.264544][ T4426] Bluetooth: hci1: command tx timeout [ 688.409175][ T2950] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 688.505090][ T9067] team0: Port device team_slave_1 added [ 688.541520][ T9065] team0: Port device team_slave_0 added [ 688.717331][ T9062] team0: Port device team_slave_0 added [ 688.820033][ T9065] team0: Port device team_slave_1 added [ 688.846714][ T4426] Bluetooth: hci4: command tx timeout [ 688.904551][ T4426] Bluetooth: hci6: command tx timeout [ 689.041394][ T9062] team0: Port device team_slave_1 added [ 689.228019][ T9067] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 689.235542][ T9067] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 689.262009][ T9067] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 689.279538][ T9065] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 689.287569][ T9065] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 689.313965][ T9065] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 689.455784][ T2950] bridge_slave_1: left allmulticast mode [ 689.461686][ T2950] bridge_slave_1: left promiscuous mode [ 689.470053][ T2950] bridge0: port 2(bridge_slave_1) entered disabled state [ 689.490624][ T2950] bridge_slave_0: left allmulticast mode [ 689.496780][ T2950] bridge_slave_0: left promiscuous mode [ 689.503039][ T2950] bridge0: port 1(bridge_slave_0) entered disabled state [ 689.521229][ T2950] bridge_slave_1: left allmulticast mode [ 689.527242][ T2950] bridge_slave_1: left promiscuous mode [ 689.533677][ T2950] bridge0: port 2(bridge_slave_1) entered disabled state [ 689.547472][ T2950] bridge_slave_0: left allmulticast mode [ 689.553380][ T2950] bridge_slave_0: left promiscuous mode [ 689.560144][ T2950] bridge0: port 1(bridge_slave_0) entered disabled state [ 690.434786][ T2950] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 690.451915][ T2950] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 690.476184][ T2950] bond0 (unregistering): Released all slaves [ 690.500628][ T2950] bond1 (unregistering): (slave batadv1): Releasing backup interface [ 690.517526][ T2950] bond1 (unregistering): Released all slaves [ 690.564607][ T2950] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 690.595967][ T2950] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 690.618347][ T2950] bond0 (unregistering): Released all slaves [ 690.638344][ T9065] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 690.645615][ T9065] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 690.672569][ T9065] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 690.687059][ T9067] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 690.694519][ T9067] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 690.720893][ T9067] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 690.833337][ T9062] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 690.842159][ T9062] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 690.869950][ T9062] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 691.141747][ T9062] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 691.150204][ T9062] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 691.178528][ T9062] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 691.293675][ T9067] hsr_slave_0: entered promiscuous mode [ 691.302939][ T9067] hsr_slave_1: entered promiscuous mode [ 691.313132][ T9067] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 691.321526][ T9067] Cannot create hsr debugfs directory [ 691.534602][ T9065] hsr_slave_0: entered promiscuous mode [ 691.552456][ T9065] hsr_slave_1: entered promiscuous mode [ 691.580644][ T9065] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 691.588655][ T9065] Cannot create hsr debugfs directory [ 691.770140][ T9062] hsr_slave_0: entered promiscuous mode [ 691.781837][ T9062] hsr_slave_1: entered promiscuous mode [ 691.791536][ T9062] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 691.800990][ T9062] Cannot create hsr debugfs directory [ 691.941705][ T9033] 8021q: adding VLAN 0 to HW filter on device bond0 [ 692.427898][ T9033] 8021q: adding VLAN 0 to HW filter on device team0 [ 692.640990][ T5123] bridge0: port 1(bridge_slave_0) entered blocking state [ 692.648819][ T5123] bridge0: port 1(bridge_slave_0) entered forwarding state [ 692.719825][ T2950] hsr_slave_0: left promiscuous mode [ 692.739369][ T2950] hsr_slave_1: left promiscuous mode [ 692.756729][ T2950] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 692.765338][ T2950] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 692.776887][ T2950] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 692.785300][ T2950] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 692.808449][ T2950] hsr_slave_0: left promiscuous mode [ 692.817955][ T2950] hsr_slave_1: left promiscuous mode [ 692.827105][ T2950] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 692.835059][ T2950] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 692.849038][ T2950] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 692.857202][ T2950] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 692.879870][ T2950] veth1_macvtap: left promiscuous mode [ 692.885855][ T2950] veth0_macvtap: left promiscuous mode [ 692.891761][ T2950] veth1_vlan: left promiscuous mode [ 692.897522][ T2950] veth0_vlan: left promiscuous mode [ 692.909890][ T2950] veth1_macvtap: left promiscuous mode [ 692.915902][ T2950] veth0_macvtap: left promiscuous mode [ 692.921875][ T2950] veth1_vlan: left promiscuous mode [ 692.927735][ T2950] veth0_vlan: left promiscuous mode [ 693.714447][ T2950] team0 (unregistering): Port device team_slave_1 removed [ 693.790036][ T2950] team0 (unregistering): Port device team_slave_0 removed [ 694.262358][ T2950] team0 (unregistering): Port device team_slave_1 removed [ 694.323804][ T2950] team0 (unregistering): Port device team_slave_0 removed [ 694.617312][ T9056] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 694.669737][ T9056] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 694.869456][ T8501] bridge0: port 2(bridge_slave_1) entered blocking state [ 694.877416][ T8501] bridge0: port 2(bridge_slave_1) entered forwarding state [ 694.892324][ T9056] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 695.107199][ T9056] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 695.793169][ T9065] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 695.804540][ T9065] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 695.919499][ T9065] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 695.930390][ T9065] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 696.048252][ T9065] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 696.061103][ T9065] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 696.171462][ T9065] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 696.183427][ T9065] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 696.410857][ T9067] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 696.572762][ T9067] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 696.693344][ T9067] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 696.808607][ T9056] 8021q: adding VLAN 0 to HW filter on device bond0 [ 696.845441][ T9067] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 696.973585][ T9033] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 697.024872][ T9056] 8021q: adding VLAN 0 to HW filter on device team0 [ 697.093979][ T5123] bridge0: port 1(bridge_slave_0) entered blocking state [ 697.101899][ T5123] bridge0: port 1(bridge_slave_0) entered forwarding state [ 697.176611][ T5123] bridge0: port 2(bridge_slave_1) entered blocking state [ 697.184447][ T5123] bridge0: port 2(bridge_slave_1) entered forwarding state [ 697.395271][ T9067] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 697.630523][ T9062] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 697.650955][ T9067] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 697.676090][ T9067] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 697.707259][ T9067] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 697.766656][ T9065] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 697.816017][ T9062] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 697.875046][ T9062] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 697.920867][ T9065] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 697.943981][ T9065] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 697.991361][ T9062] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 698.068537][ T9065] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 698.117096][ T2950] bridge_slave_1: left allmulticast mode [ 698.123023][ T2950] bridge_slave_1: left promiscuous mode [ 698.129937][ T2950] bridge0: port 2(bridge_slave_1) entered disabled state [ 698.166771][ T2950] bridge_slave_0: left allmulticast mode [ 698.172694][ T2950] bridge_slave_0: left promiscuous mode [ 698.182287][ T2950] bridge0: port 1(bridge_slave_0) entered disabled state [ 698.243445][ T2950] bridge_slave_1: left allmulticast mode [ 698.250634][ T2950] bridge_slave_1: left promiscuous mode [ 698.257449][ T2950] bridge0: port 2(bridge_slave_1) entered disabled state [ 698.299265][ T2950] bridge_slave_0: left allmulticast mode [ 698.305379][ T2950] bridge_slave_0: left promiscuous mode [ 698.312408][ T2950] bridge0: port 1(bridge_slave_0) entered disabled state [ 699.332529][ T2950] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 699.361540][ T2950] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 699.383916][ T2950] bond0 (unregistering): Released all slaves [ 699.407617][ T2950] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 699.424434][ T2950] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 699.448998][ T2950] bond0 (unregistering): Released all slaves [ 699.486361][ T9033] veth0_vlan: entered promiscuous mode [ 699.719484][ T2950] tipc: Left network mode [ 699.822954][ T9033] veth1_vlan: entered promiscuous mode [ 700.587262][ T9033] veth0_macvtap: entered promiscuous mode [ 700.710702][ T2950] hsr_slave_0: left promiscuous mode [ 700.731489][ T2950] hsr_slave_1: left promiscuous mode [ 700.764919][ T2950] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 700.772703][ T2950] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 700.786159][ T2950] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 700.793838][ T2950] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 700.823748][ T2950] hsr_slave_0: left promiscuous mode [ 700.834770][ T2950] hsr_slave_1: left promiscuous mode [ 700.842535][ T2950] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 700.850473][ T2950] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 700.866664][ T2950] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 700.875903][ T2950] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 700.897495][ T2950] veth1_macvtap: left promiscuous mode [ 700.903300][ T2950] veth0_macvtap: left promiscuous mode [ 700.909414][ T2950] veth1_vlan: left promiscuous mode [ 700.915140][ T2950] veth0_vlan: left promiscuous mode [ 700.927452][ T2950] veth1_macvtap: left promiscuous mode [ 700.933165][ T2950] veth0_macvtap: left promiscuous mode [ 700.939493][ T2950] veth1_vlan: left promiscuous mode [ 700.945201][ T2950] veth0_vlan: left promiscuous mode [ 701.780562][ T2950] team0 (unregistering): Port device team_slave_1 removed [ 701.818226][ T2950] team0 (unregistering): Port device team_slave_0 removed [ 702.353814][ T2950] team0 (unregistering): Port device team_slave_1 removed [ 702.388907][ T2950] team0 (unregistering): Port device team_slave_0 removed [ 702.641292][ T9033] veth1_macvtap: entered promiscuous mode [ 702.940700][ T9067] 8021q: adding VLAN 0 to HW filter on device bond0 [ 703.027088][ T9033] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 703.085770][ T9062] 8021q: adding VLAN 0 to HW filter on device bond0 [ 703.162307][ T9033] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 703.245568][ T9033] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 703.254705][ T9033] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 703.263705][ T9033] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 703.272940][ T9033] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 703.301054][ T9067] 8021q: adding VLAN 0 to HW filter on device team0 [ 703.349071][ T9065] 8021q: adding VLAN 0 to HW filter on device bond0 [ 703.388921][ T5123] bridge0: port 1(bridge_slave_0) entered blocking state [ 703.396759][ T5123] bridge0: port 1(bridge_slave_0) entered forwarding state [ 703.449927][ T9056] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 703.508580][ T9062] 8021q: adding VLAN 0 to HW filter on device team0 [ 703.553297][ T5123] bridge0: port 2(bridge_slave_1) entered blocking state [ 703.561141][ T5123] bridge0: port 2(bridge_slave_1) entered forwarding state [ 703.616202][ T9065] 8021q: adding VLAN 0 to HW filter on device team0 [ 703.790526][ T5123] bridge0: port 1(bridge_slave_0) entered blocking state [ 703.798319][ T5123] bridge0: port 1(bridge_slave_0) entered forwarding state [ 703.822076][ T5123] bridge0: port 2(bridge_slave_1) entered blocking state [ 703.829852][ T5123] bridge0: port 2(bridge_slave_1) entered forwarding state [ 704.045826][ T9067] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 704.056542][ T9067] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 704.121153][ T5123] bridge0: port 1(bridge_slave_0) entered blocking state [ 704.128974][ T5123] bridge0: port 1(bridge_slave_0) entered forwarding state [ 704.174465][ T5123] bridge0: port 2(bridge_slave_1) entered blocking state [ 704.182154][ T5123] bridge0: port 2(bridge_slave_1) entered forwarding state [ 704.317018][ T9056] veth0_vlan: entered promiscuous mode [ 704.453479][ T9056] veth1_vlan: entered promiscuous mode [ 704.563286][ T9062] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 704.574439][ T9062] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 704.772441][ T9065] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 705.100066][ T9056] veth0_macvtap: entered promiscuous mode [ 705.198761][ T9056] veth1_macvtap: entered promiscuous mode [ 705.456330][ T9056] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 705.467164][ T9056] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 705.482400][ T9056] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 705.725917][ T9056] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 705.736807][ T9056] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 705.752075][ T9056] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 705.963368][ T9056] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 705.972620][ T9056] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 705.983193][ T9056] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 705.993032][ T9056] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 706.558143][ T9067] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 706.998610][ T9062] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 707.018744][ T9065] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 707.719703][ T9065] veth0_vlan: entered promiscuous mode [ 707.740468][ T9062] veth0_vlan: entered promiscuous mode [ 707.879291][ T9065] veth1_vlan: entered promiscuous mode [ 707.942486][ T9062] veth1_vlan: entered promiscuous mode [ 708.487385][ T9065] veth0_macvtap: entered promiscuous mode [ 708.593333][ T9062] veth0_macvtap: entered promiscuous mode [ 708.613210][ T9065] veth1_macvtap: entered promiscuous mode [ 708.742574][ T9062] veth1_macvtap: entered promiscuous mode [ 709.108357][ T9062] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 709.119216][ T9062] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 709.129396][ T9062] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 709.140146][ T9062] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 709.155815][ T9062] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 709.173298][ T9065] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 709.184147][ T9065] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 709.194444][ T9065] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 709.205174][ T9065] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 709.215311][ T9065] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 709.228213][ T9065] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 709.243804][ T9065] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 709.405483][ T9065] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 709.418373][ T9065] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 709.429392][ T9065] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 709.440204][ T9065] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 709.455483][ T9065] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 709.472903][ T9062] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 709.483817][ T9062] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 709.495489][ T9062] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 709.508638][ T9062] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 709.518867][ T9062] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 709.529662][ T9062] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 709.545252][ T9062] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 709.701386][ T9065] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 709.712579][ T9065] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 709.722367][ T9065] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 709.731633][ T9065] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 709.775053][ T9062] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 709.784156][ T9062] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 709.793472][ T9062] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 709.802731][ T9062] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 710.057680][ T9070] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 710.099785][ T9070] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 710.117046][ T9070] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 710.144108][ T9070] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 710.161204][ T9070] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 710.170890][ T9070] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 710.239412][ T2950] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 710.422619][ T2950] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 710.651139][ T2950] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 710.691567][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 710.699210][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 710.892711][ T2950] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 710.957498][ T9067] veth0_vlan: entered promiscuous mode [ 711.126156][ T9067] veth1_vlan: entered promiscuous mode [ 711.340518][ T2950] bridge_slave_1: left allmulticast mode [ 711.347841][ T2950] bridge_slave_1: left promiscuous mode [ 711.354790][ T2950] bridge0: port 2(bridge_slave_1) entered disabled state [ 711.405525][ T2950] bridge_slave_0: left allmulticast mode [ 711.411456][ T2950] bridge_slave_0: left promiscuous mode [ 711.418384][ T2950] bridge0: port 1(bridge_slave_0) entered disabled state [ 711.937676][ T2950] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 711.960431][ T2950] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 711.980437][ T2950] bond0 (unregistering): Released all slaves [ 712.365314][ T9070] Bluetooth: hci2: command tx timeout [ 712.399703][ T9067] veth0_macvtap: entered promiscuous mode [ 712.515548][ T2950] hsr_slave_0: left promiscuous mode [ 712.545469][ T2950] hsr_slave_1: left promiscuous mode [ 712.581456][ T2950] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 712.599767][ T2950] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 712.618318][ T2950] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 712.628280][ T2950] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 712.657577][ T2950] veth1_macvtap: left promiscuous mode [ 712.663305][ T2950] veth0_macvtap: left promiscuous mode [ 712.670350][ T2950] veth1_vlan: left promiscuous mode [ 712.676047][ T2950] veth0_vlan: left promiscuous mode [ 713.147899][ T2950] team0 (unregistering): Port device team_slave_1 removed [ 713.172092][ T2950] team0 (unregistering): Port device team_slave_0 removed [ 713.481896][ T9067] veth1_macvtap: entered promiscuous mode [ 713.814864][ T9067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 713.825847][ T9067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 713.836145][ T9067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 713.846957][ T9067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 713.857121][ T9067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 713.871116][ T9067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 713.886888][ T9067] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 713.992661][ T9067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 714.003553][ T9067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 714.013930][ T9067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 714.024770][ T9067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 714.034922][ T9067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 714.045728][ T9067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 714.060760][ T9067] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 714.155429][ T9142] chnl_net:caif_netlink_parms(): no params data found [ 714.190163][ T9067] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 714.199421][ T9067] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 714.208653][ T9067] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 714.217901][ T9067] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 714.429146][ T9070] Bluetooth: hci2: command tx timeout [ 714.623459][ T3493] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 714.632681][ T3493] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 714.819561][ T4222] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 714.828363][ T4222] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 715.748746][ T9142] bridge0: port 1(bridge_slave_0) entered blocking state [ 715.756726][ T9142] bridge0: port 1(bridge_slave_0) entered disabled state [ 715.764721][ T9142] bridge_slave_0: entered allmulticast mode [ 715.774104][ T9142] bridge_slave_0: entered promiscuous mode [ 715.933422][ T9142] bridge0: port 2(bridge_slave_1) entered blocking state [ 715.949786][ T9142] bridge0: port 2(bridge_slave_1) entered disabled state [ 715.959005][ T9142] bridge_slave_1: entered allmulticast mode [ 715.968288][ T9142] bridge_slave_1: entered promiscuous mode [ 716.255322][ T9142] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 716.337620][ T9142] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 716.514724][ T9070] Bluetooth: hci2: command tx timeout [ 716.692253][ T9142] team0: Port device team_slave_0 added [ 716.748749][ T9142] team0: Port device team_slave_1 added [ 716.982120][ T9142] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 716.990830][ T9142] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 717.018455][ T9142] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 717.112603][ T9142] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 717.120591][ T9142] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 717.147634][ T9142] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 717.593646][ T9142] hsr_slave_0: entered promiscuous mode [ 717.636823][ T9142] hsr_slave_1: entered promiscuous mode [ 717.696895][ T5128] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 717.708481][ T5128] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 718.056865][ T2462] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 718.065484][ T2462] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 718.446291][ T4420] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 718.454725][ T4420] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 718.584434][ T9070] Bluetooth: hci2: command tx timeout [ 718.718968][ T4420] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 718.727504][ T4420] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 718.855674][ T9214] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 719.500438][ T9142] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 719.583636][ T9142] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 719.692548][ T9142] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 719.773099][ T9142] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 720.210261][ T98] ===================================================== [ 720.217559][ T98] BUG: KMSAN: uninit-value in virtqueue_add+0x1e86/0x65c0 [ 720.224847][ T98] virtqueue_add+0x1e86/0x65c0 [ 720.229777][ T98] virtqueue_add_sgs+0x186/0x1b0 [ 720.234879][ T98] virtscsi_add_cmd+0x838/0xad0 [ 720.239893][ T98] virtscsi_queuecommand+0x898/0xa60 [ 720.245342][ T98] scsi_queue_rq+0x4cc7/0x5a80 [ 720.250263][ T98] blk_mq_dispatch_rq_list+0x79b/0x3440 [ 720.256031][ T98] __blk_mq_sched_dispatch_requests+0x11b7/0x26e0 [ 720.262650][ T98] blk_mq_sched_dispatch_requests+0x12f/0x270 [ 720.268917][ T98] blk_mq_run_work_fn+0xd0/0x280 [ 720.274185][ T98] process_scheduled_works+0xa81/0x1bd0 [ 720.280022][ T98] worker_thread+0xea5/0x1560 [ 720.284887][ T98] kthread+0x3e2/0x540 [ 720.289136][ T98] ret_from_fork+0x6d/0x90 [ 720.293752][ T98] ret_from_fork_asm+0x1a/0x30 [ 720.298824][ T98] [ 720.301225][ T98] Uninit was stored to memory at: [ 720.306606][ T98] copy_page_from_iter_atomic+0x12b7/0x2ae0 [ 720.312750][ T98] generic_perform_write+0x4c1/0xc60 [ 720.318340][ T98] ext4_buffered_write_iter+0x564/0xaa0 [ 720.324109][ T98] ext4_file_write_iter+0x208/0x3450 [ 720.329598][ T98] __kernel_write_iter+0x64d/0xc80 [ 720.334905][ T98] dump_user_range+0x8dc/0xee0 [ 720.339841][ T98] elf_core_dump+0x59f5/0x5d50 [ 720.344901][ T98] do_coredump+0x32d5/0x4920 [ 720.349705][ T98] get_signal+0x267e/0x2d00 [ 720.354388][ T98] arch_do_signal_or_restart+0x53/0xcb0 [ 720.360146][ T98] syscall_exit_to_user_mode+0x5d/0x160 [ 720.365915][ T98] __do_fast_syscall_32+0xc4/0x120 [ 720.371252][ T98] do_fast_syscall_32+0x38/0x80 [ 720.376304][ T98] do_SYSENTER_32+0x1f/0x30 [ 720.380987][ T98] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 720.387520][ T98] [ 720.389915][ T98] Uninit was created at: [ 720.394350][ T98] __alloc_pages+0x9d6/0xe70 [ 720.399082][ T98] alloc_pages_mpol+0x299/0x990 [ 720.404091][ T98] alloc_pages+0x1bf/0x1e0 [ 720.408660][ T98] dump_user_range+0x4a/0xee0 [ 720.413514][ T98] elf_core_dump+0x59f5/0x5d50 [ 720.418457][ T98] do_coredump+0x32d5/0x4920 [ 720.423204][ T98] get_signal+0x267e/0x2d00 [ 720.427867][ T98] arch_do_signal_or_restart+0x53/0xcb0 [ 720.433614][ T98] syscall_exit_to_user_mode+0x5d/0x160 [ 720.439334][ T98] __do_fast_syscall_32+0xc4/0x120 [ 720.444628][ T98] do_fast_syscall_32+0x38/0x80 [ 720.449657][ T98] do_SYSENTER_32+0x1f/0x30 [ 720.454342][ T98] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 720.460882][ T98] [ 720.463275][ T98] Bytes 0-1023 of 1024 are uninitialized [ 720.469003][ T98] Memory access of size 1024 starts at ffff888020e77c00 [ 720.476041][ T98] [ 720.478454][ T98] CPU: 1 PID: 98 Comm: kworker/1:1H Not tainted 6.9.0-syzkaller-02339-g101b7a97143a #0 [ 720.488242][ T98] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 720.498432][ T98] Workqueue: kblockd blk_mq_run_work_fn [ 720.504182][ T98] ===================================================== [ 720.511231][ T98] Disabling lock debugging due to kernel taint [ 720.517490][ T98] Kernel panic - not syncing: kmsan.panic set ... [ 720.524004][ T98] CPU: 1 PID: 98 Comm: kworker/1:1H Tainted: G B 6.9.0-syzkaller-02339-g101b7a97143a #0 [ 720.535282][ T98] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 720.545479][ T98] Workqueue: kblockd blk_mq_run_work_fn [ 720.551216][ T98] Call Trace: [ 720.554600][ T98] [ 720.557622][ T98] dump_stack_lvl+0x216/0x2d0 [ 720.562493][ T98] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 720.568501][ T98] dump_stack+0x1e/0x30 [ 720.572826][ T98] panic+0x4e2/0xcd0 [ 720.576900][ T98] ? kmsan_get_metadata+0xf1/0x1d0 [ 720.582194][ T98] kmsan_report+0x2d5/0x2e0 [ 720.586852][ T98] ? kmsan_get_metadata+0x146/0x1d0 [ 720.592210][ T98] ? kmsan_internal_set_shadow_origin+0x66/0xe0 [ 720.598659][ T98] ? kmsan_internal_check_memory+0x48c/0x560 [ 720.604843][ T98] ? kmsan_handle_dma+0xac/0xc0 [ 720.609841][ T98] ? virtqueue_add+0x1e86/0x65c0 [ 720.614953][ T98] ? virtqueue_add_sgs+0x186/0x1b0 [ 720.620234][ T98] ? virtscsi_add_cmd+0x838/0xad0 [ 720.625425][ T98] ? virtscsi_queuecommand+0x898/0xa60 [ 720.631084][ T98] ? scsi_queue_rq+0x4cc7/0x5a80 [ 720.636210][ T98] ? blk_mq_dispatch_rq_list+0x79b/0x3440 [ 720.642159][ T98] ? __blk_mq_sched_dispatch_requests+0x11b7/0x26e0 [ 720.648987][ T98] ? blk_mq_sched_dispatch_requests+0x12f/0x270 [ 720.655443][ T98] ? blk_mq_run_work_fn+0xd0/0x280 [ 720.660719][ T98] ? process_scheduled_works+0xa81/0x1bd0 [ 720.666615][ T98] ? worker_thread+0xea5/0x1560 [ 720.671629][ T98] ? kthread+0x3e2/0x540 [ 720.676043][ T98] ? ret_from_fork+0x6d/0x90 [ 720.680792][ T98] ? ret_from_fork_asm+0x1a/0x30 [ 720.685918][ T98] ? scsi_queue_rq+0x4335/0x5a80 [ 720.691022][ T98] ? blk_mq_dispatch_rq_list+0x79b/0x3440 [ 720.696943][ T98] ? __blk_mq_sched_dispatch_requests+0x11b7/0x26e0 [ 720.703760][ T98] ? blk_mq_sched_dispatch_requests+0x12f/0x270 [ 720.710210][ T98] ? blk_mq_run_work_fn+0xd0/0x280 [ 720.715482][ T98] ? process_scheduled_works+0xa81/0x1bd0 [ 720.721370][ T98] ? worker_thread+0xea5/0x1560 [ 720.726384][ T98] ? kthread+0x3e2/0x540 [ 720.730793][ T98] ? ret_from_fork+0x6d/0x90 [ 720.735543][ T98] ? ret_from_fork_asm+0x1a/0x30 [ 720.740656][ T98] ? kmsan_get_metadata+0x146/0x1d0 [ 720.746018][ T98] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 720.752019][ T98] ? kmsan_get_metadata+0x146/0x1d0 [ 720.757386][ T98] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 720.763369][ T98] ? should_fail_ex+0x4a/0x800 [ 720.768300][ T98] ? kmsan_get_metadata+0x146/0x1d0 [ 720.773668][ T98] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 720.779650][ T98] ? kmsan_get_metadata+0x146/0x1d0 [ 720.785011][ T98] kmsan_internal_check_memory+0x48c/0x560 [ 720.791047][ T98] kmsan_handle_dma+0xac/0xc0 [ 720.795887][ T98] virtqueue_add+0x1e86/0x65c0 [ 720.800832][ T98] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 720.806808][ T98] ? kmsan_get_metadata+0x146/0x1d0 [ 720.812168][ T98] ? kmsan_get_metadata+0x146/0x1d0 [ 720.817530][ T98] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 720.823531][ T98] virtqueue_add_sgs+0x186/0x1b0 [ 720.828658][ T98] virtscsi_add_cmd+0x838/0xad0 [ 720.833718][ T98] virtscsi_queuecommand+0x898/0xa60 [ 720.839191][ T98] ? __pfx_virtscsi_queuecommand+0x10/0x10 [ 720.845169][ T98] scsi_queue_rq+0x4cc7/0x5a80 [ 720.850133][ T98] ? __pfx_scsi_queue_rq+0x10/0x10 [ 720.855409][ T98] blk_mq_dispatch_rq_list+0x79b/0x3440 [ 720.861161][ T98] ? sbitmap_get+0x431/0x670 [ 720.865924][ T98] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 720.871940][ T98] ? dd_dispatch_request+0x9a1/0xa20 [ 720.877420][ T98] __blk_mq_sched_dispatch_requests+0x11b7/0x26e0 [ 720.884053][ T98] ? finish_task_switch+0x1c8/0x8f0 [ 720.889449][ T98] ? __blk_mq_sched_dispatch_requests+0x1031/0x26e0 [ 720.896259][ T98] blk_mq_sched_dispatch_requests+0x12f/0x270 [ 720.902530][ T98] blk_mq_run_work_fn+0xd0/0x280 [ 720.907637][ T98] ? __pfx_blk_mq_run_work_fn+0x10/0x10 [ 720.913353][ T98] process_scheduled_works+0xa81/0x1bd0 [ 720.919110][ T98] worker_thread+0xea5/0x1560 [ 720.923958][ T98] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 720.929955][ T98] kthread+0x3e2/0x540 [ 720.934199][ T98] ? __pfx_worker_thread+0x10/0x10 [ 720.939492][ T98] ? __pfx_kthread+0x10/0x10 [ 720.944253][ T98] ret_from_fork+0x6d/0x90 [ 720.948826][ T98] ? __pfx_kthread+0x10/0x10 [ 720.953593][ T98] ret_from_fork_asm+0x1a/0x30 [ 720.958561][ T98] [ 720.961921][ T98] Kernel Offset: disabled [ 720.966303][ T98] Rebooting in 86400 seconds..