last executing test programs: 4.597442791s ago: executing program 0: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$KDFONTOP_COPY(r0, 0x5450, 0x0) open$dir(0x0, 0x0, 0x0) fsetxattr$trusted_overlay_nlink(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) msgget$private(0x0, 0x0) r1 = shmget(0xffffffffffffffff, 0x1000, 0x0, &(0x7f0000ffe000/0x1000)=nil) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TIOCNXCL(r2, 0x5450) socket$unix(0x1, 0x0, 0x0) semctl$IPC_RMID(r1, 0x0, 0x0) memfd_create(0x0, 0x0) write$binfmt_script(0xffffffffffffffff, 0x0, 0x0) 4.199307745s ago: executing program 3: sendmsg$kcm(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000240)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x7}, 0x80, &(0x7f0000000540)=[{&(0x7f0000000c00)="b564", 0x2}], 0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000002900000004"], 0x18}, 0x8080) 3.949859716s ago: executing program 0: syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000280), 0x1, 0x787, &(0x7f0000001000)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0) write$binfmt_script(r1, &(0x7f00000017c0)={'#! ', '', [], 0xa, "f5bb67e01eef76cdc580e78fdfbf4ec302fbbafcc8aaf214e38b5855a327edb2248835b57a807eb61596e4c5f43270c8abe9503f82775bff1b5752f2f64c"}, 0x42) ioctl$EXT4_IOC_MOVE_EXT(r0, 0x40305829, &(0x7f00000000c0)={0x17c04, 0xffffffffffffffff, 0x0, 0x100000001}) 3.745792288s ago: executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7, 0x13, r3, 0xff40000) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup(r4) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)=ANY=[]) 3.710947513s ago: executing program 4: r0 = socket$kcm(0x10, 0x400000002, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xf, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="600000001e007f109e", 0x2a}, {&(0x7f0000000140)="78cafb73fc02010700000000ef02258f2e440ab8f9e6aaeb1ae2f6e8bcb5ee52dc06b6c9ad11cb5dbc249798093c5102a1bca0b6050000004f6e6b788b3219c233e60ddc36024a99a63e7238fe9f9b06f96137c8af12b6", 0x98}], 0x2}, 0x4000000) 3.538272659s ago: executing program 1: r0 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) r1 = memfd_create(&(0x7f0000000080)='\xc0\x87:*v\xea>\xeb\x87[\xa0o8\xaaK\xa5\xd3\v\x86\xca<\x7f\xfd6\x8d}\xd8\xf2G\xb8\xeae)\x90\x86\xe3\x96\b\xe0\xfa\xb1\xd8N\xb2W\xcb\x8d}3lm8\xa57\xc9\x00HOA\xc8\x80kR\xfc\xcb%u3\xec\xde%\x00\xb1\x9aF\xe2\xba[\xc7%\x88 \xeeQR\x9f\x81\x8b\xdc\xc7\xdc\xdem\xbe\x7f2\x11)W\x9c\x82\x91\x17\xd8\xda@4\x9f\xc5\xe3\x8d. \x1cR.\xe1\xd1=\xcf\xbf\x81\xb5\x8d%K\x1d\xe7_\xde\x87\xdd\xc1\xf0\x91\x1a!\x9c\xd3\v\xc9\x95d\xe3*\xa9\xfa\x99\x80\x00\x89>\xc9\xf2/\x13{\x1a\x7f\x00\x00\x00\x00+$\xedX\xb7KV\x90\xc3D\x82`\xea\x16\xc6\xcef\xab\x05\x19\x96\xb9_6*-\xf3\x8c\x9a\x15\x9c\xf5\xb4O\x17@d\x81+\xf6\xe6+\xed\r\xd2\xb3\xaa\x9b\x7fC\'\xa2\xf6\x12\xa1\x15Punfo\x7f\x92G\x0e.\xce\xd8h\xb9p2\xccC\xbaH\xc4\xdc\xe2\xa1%)\x85\xc7O]\'9\x92\xad\xfbJ\x02\x1d\x91-\xc99\t&\xbdq\x06`T\xc8\x92\xaf\xad#\xd8b\x90\xeb\x05\x9f\t5\x06\xdd\xaf\x84\xf4\"\x13\xcf\xe5\x93D\xad~F\xe5\x19\xaa\xaa\xb2\xb1\x03m\x82+\x06\x1bF^\xd3n\xc4F\xc1\xc08\x94\xe6\xe5\x1f\xa7\xf6\xcaA\x90T\x1b\xe6\xb9\xe7\xff\xc5H\x04\x8d\xca\xad\x17UlY\x9a}\r4\xac\x93\xac\v2\xc6\xf9\xbe\xfeI\x8b\xd4/`\xab\x1e\xcf\x7f\b\x94 2.{\xc1\xbe\x9bth~\xcb\xb9\x01\x00\x00\x00\x00\x00\x00\x00\xc5\xeb\xb1ux\x94\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xdem\xe3+q:3\xfa*\x98o\'f\xbcY\x8e?\xf9\x84y\x89Y\x1c]\xad$\x7fp\xf1\xa3\x99[\xff\x1f\x94\xc2\xdb\xbaG\xa6UD\x88Y6\x11Y\xd4\xd1\xde\x9a{]\xe2\x98W\xb9\x13\x17<\x8b!?\x8e\xbc\xae\xf9\xcc\b\x90n\x15\x7f\xd5WS\xfbN\xec)B\xe7R\xa5\xd7O\x83\x80}\xcc5\x99\xdb\xd6\xbd\x9c\x05l\xfc.\xf4\xbbeF\xa3\xea}\xf1\x86B\xcb\xad\x82\xd9IRV5\xa77\'\x1a\x1c\x89\xef:\xee\x10\xb2\xd6\xc8\xf4\xb5\xdd\xd8c!@JRY\xa3|Pjk\xdc\xa5d\xc2\xecn\xc9X\xfc\xd4D\x13\"\xb2\x06\xbd&\xf86\xddXv\xc9\x1322L\xd6\x99\xf6\t\x9d\xbeZ\x02\xc0\xa41\xf9sNG\x02\x83\xe6Bl\xd2\x02\xfb[\x82\xc0I\xb7\xf6\xe5Z\xa1}\xee}\x8b\x89\x04\x8a\'\xc7J\xca\xdf:\x8ft\xe0\xf8\a', 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x11, r1, 0xffffd000) fallocate(r1, 0x0, 0x0, 0x800000b) ioctl$BTRFS_IOC_FS_INFO(r0, 0x8901, &(0x7f0000001340)) 3.001018445s ago: executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000a156000085000000a8000000070000001000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) 2.889941165s ago: executing program 2: syz_open_procfs$namespace(0x0, 0x0) r0 = mq_open(&(0x7f00000028c0)=' \x01\x00', 0x40, 0x0, 0x0) ioctl$FAT_IOCTL_GET_VOLUME_ID(r0, 0x5451, 0x0) 2.817648793s ago: executing program 1: r0 = mq_open(&(0x7f0000000040)='*(*$\',@&-\x00', 0x40, 0x0, 0x0) fcntl$getown(r0, 0x9) 2.745484339s ago: executing program 0: r0 = socket(0x2b, 0x1, 0x1) timer_create(0x0, &(0x7f0000000080)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000140)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, 0x0) timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000040)) 2.660330854s ago: executing program 3: r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000880), 0x1, 0x0) write$cgroup_subtree(r0, 0x0, 0x0) 2.458031801s ago: executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl802154(&(0x7f0000001f00), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000001f80)={'wpan1\x00'}) sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r0, &(0x7f0000002140)={0x0, 0x0, &(0x7f0000002100)={0x0}}, 0x0) 2.32436864s ago: executing program 2: sendmsg$kcm(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000240)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x7}, 0x80, &(0x7f0000000540)=[{&(0x7f0000000c00)="b564", 0x2}], 0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000002900000004"], 0x18}, 0x8080) 2.189967821s ago: executing program 1: bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x15, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES64, @ANYBLOB="0000000000000000b7080000000000047b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xfffffffffffffd13) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="8f0ccb7907081175f37538e486dd"], 0xfdef) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f00000001c0)=0x3) 1.980167247s ago: executing program 3: r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002) r1 = fcntl$dupfd(r0, 0x0, r0) write$sndseq(0xffffffffffffffff, &(0x7f0000000180)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @control}, {0x0, 0x0, 0x0, 0x0, @time={0x0, 0xfffffffc}}], 0x38) readv(r1, &(0x7f0000000000)=[{&(0x7f0000001140)=""/136, 0x88}], 0x1) 1.880017607s ago: executing program 0: syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x1a3c82) syz_open_dev$sg(0x0, 0x0, 0x1800) 1.857221077s ago: executing program 4: r0 = creat(&(0x7f0000000540)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8020003) utime(&(0x7f0000000180)='./file0\x00', 0x0) 1.757456985s ago: executing program 2: r0 = socket(0x2, 0x80805, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10) add_key$fscrypt_v1(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) r1 = socket$inet(0x2, 0x80001, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x7a, &(0x7f0000000080)={r2, 0x4, "179da51e"}, &(0x7f0000000240)=0xc) 1.363615974s ago: executing program 2: timer_create(0x0, &(0x7f0000000780), 0x0) pipe2$9p(0x0, 0x0) write$P9_RSETATTR(0xffffffffffffffff, &(0x7f0000000000)={0x7}, 0x69ff9a93bfc25838) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x3938700}, {0x0, 0x9}}, 0x0) tkill(0x0, 0x1000000000016) pipe(0x0) r0 = mq_open(&(0x7f0000000000)='\'8\xa2@\x1e^\x00', 0x40, 0x0, 0x0) ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r0, 0x5452, &(0x7f00000005c0)) 1.328204414s ago: executing program 0: syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000280), 0x1, 0x787, &(0x7f0000001000)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) write$binfmt_script(r1, &(0x7f00000017c0)={'#! ', '', [], 0xa, "f5bb67e01eef76cdc580e78fdfbf4ec302fbbafcc8aaf214e38b5855a327edb2248835b57a807eb61596e4c5f43270c8abe9503f82775bff1b5752f2f64c"}, 0x42) ioctl$EXT4_IOC_MOVE_EXT(r0, 0x40305829, &(0x7f00000000c0)={0x17c04, 0xffffffffffffffff, 0x0, 0x100000001}) 1.260670224s ago: executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7, 0x13, r3, 0xff40000) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup(r4) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)=ANY=[]) 1.23899915s ago: executing program 1: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000a156000085000000a8000000070000001000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) 769.57219ms ago: executing program 2: r0 = mq_open(&(0x7f0000000000)='\\\x00', 0x40, 0x0, &(0x7f0000000040)={0x4, 0x7, 0x6}) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000000800)=[{{&(0x7f0000000180)=@abs, 0x6e, 0x0}}], 0x1, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) fcntl$lock(r0, 0x24, &(0x7f0000001d00)={0x1, 0x0, 0x0, 0x6f}) openat$sysfs(0xffffffffffffff9c, &(0x7f0000001d40)='/sys/class/power_supply', 0x0, 0x0) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x1) 719.731897ms ago: executing program 1: ioctl$TIOCSERGETLSR(0xffffffffffffffff, 0x5459, 0x0) preadv2(0xffffffffffffffff, &(0x7f0000000000)=[{0x0}], 0x1, 0x0, 0x6, 0x0) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0) r0 = mq_open(&(0x7f00000000c0)='[,\x00', 0x40, 0x0, 0x0) ioctl$TIOCCBRK(r0, 0x5450) 582.077713ms ago: executing program 3: r0 = mq_open(&(0x7f0000000540)=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x40, 0x0, 0x0) close(r0) memfd_create(&(0x7f00000004c0)='\x00\x8e\xdd48\xe1\xff', 0x0) write$P9_RREAD(r0, 0x0, 0x0) 418.087407ms ago: executing program 0: r0 = socket(0x2b, 0x1, 0x1) timer_create(0x0, &(0x7f0000000080)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000140)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, 0x0) timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000040)) 167.539107ms ago: executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl802154(&(0x7f0000001f00), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000001f80)={'wpan1\x00'}) sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r0, &(0x7f0000002140)={0x0, 0x0, &(0x7f0000002100)={0x0}}, 0x0) 114.07505ms ago: executing program 1: sendmsg$kcm(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000240)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x7}, 0x80, &(0x7f0000000540)=[{&(0x7f0000000c00)="b564", 0x2}], 0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000002900000004"], 0x18}, 0x8080) 34.200041ms ago: executing program 2: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x12, 0x4, 0x8, 0xc}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000000702e9fff7ffffffb703000008000000b7040000000000008500000003000000850000000f00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={0x0, 0x0}) close(r2) socket$kcm(0x10, 0x2, 0x10) setsockopt$sock_attach_bpf(r2, 0x10e, 0x2, &(0x7f0000000000), 0x4) 0s ago: executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c000000100001eeffffffff0000000800000000", @ANYRES32=r2, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=@newqdisc={0x48, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18}}}]}, 0x48}}, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.23' (ED25519) to the list of known hosts. 2024/06/03 20:18:17 fuzzer started 2024/06/03 20:18:18 dialing manager at 10.128.0.169:30026 [ 186.558518][ T5047] cgroup: Unknown subsys name 'net' [ 186.828229][ T5047] cgroup: Unknown subsys name 'rlimit' [ 224.225105][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 224.231951][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 2024/06/03 20:19:14 starting 5 executor processes [ 241.273786][ T5050] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 244.413847][ T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 244.441394][ T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 244.460914][ T5076] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 244.475234][ T5076] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 244.490867][ T5076] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 244.500582][ T5076] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 244.512624][ T5076] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 244.522494][ T5076] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 244.536485][ T4434] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 244.571339][ T5083] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 244.599312][ T5083] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 244.611148][ T5083] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 244.832964][ T5079] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 244.842799][ T5079] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 244.857002][ T5079] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 244.871437][ T5079] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 244.882327][ T5079] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 244.892968][ T5079] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 244.917940][ T5079] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 244.926138][ T5076] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 244.949696][ T5079] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 244.960360][ T5079] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 244.979741][ T5079] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 244.991637][ T5079] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 245.045160][ T5079] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 245.066716][ T5079] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 245.089110][ T5079] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 245.176568][ T5079] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 245.238905][ T5079] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 245.289168][ T5079] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 245.635768][ T5075] chnl_net:caif_netlink_parms(): no params data found [ 246.607691][ T5076] Bluetooth: hci0: command tx timeout [ 246.646771][ T5078] chnl_net:caif_netlink_parms(): no params data found [ 246.699634][ T5076] Bluetooth: hci1: command tx timeout [ 246.856853][ T5075] bridge0: port 1(bridge_slave_0) entered blocking state [ 246.864829][ T5075] bridge0: port 1(bridge_slave_0) entered disabled state [ 246.872908][ T5075] bridge_slave_0: entered allmulticast mode [ 246.882644][ T5075] bridge_slave_0: entered promiscuous mode [ 247.012929][ T5076] Bluetooth: hci2: command tx timeout [ 247.038432][ T5084] chnl_net:caif_netlink_parms(): no params data found [ 247.063600][ T5075] bridge0: port 2(bridge_slave_1) entered blocking state [ 247.071559][ T5075] bridge0: port 2(bridge_slave_1) entered disabled state [ 247.079554][ T5075] bridge_slave_1: entered allmulticast mode [ 247.087900][ T5076] Bluetooth: hci3: command tx timeout [ 247.089324][ T5075] bridge_slave_1: entered promiscuous mode [ 247.271563][ T5086] chnl_net:caif_netlink_parms(): no params data found [ 247.488566][ T5076] Bluetooth: hci4: command tx timeout [ 247.493504][ T5075] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 247.519858][ T5075] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 247.778507][ T5075] team0: Port device team_slave_0 added [ 247.788834][ T5090] chnl_net:caif_netlink_parms(): no params data found [ 247.842791][ T5075] team0: Port device team_slave_1 added [ 248.020029][ T5075] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 248.027250][ T5075] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 248.057643][ T5075] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 248.221894][ T5075] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 248.230599][ T5075] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 248.257188][ T5075] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 248.390963][ T5084] bridge0: port 1(bridge_slave_0) entered blocking state [ 248.399008][ T5084] bridge0: port 1(bridge_slave_0) entered disabled state [ 248.406928][ T5084] bridge_slave_0: entered allmulticast mode [ 248.416387][ T5084] bridge_slave_0: entered promiscuous mode [ 248.430184][ T5078] bridge0: port 1(bridge_slave_0) entered blocking state [ 248.441503][ T5078] bridge0: port 1(bridge_slave_0) entered disabled state [ 248.449540][ T5078] bridge_slave_0: entered allmulticast mode [ 248.458935][ T5078] bridge_slave_0: entered promiscuous mode [ 248.489638][ T5084] bridge0: port 2(bridge_slave_1) entered blocking state [ 248.497653][ T5084] bridge0: port 2(bridge_slave_1) entered disabled state [ 248.505936][ T5084] bridge_slave_1: entered allmulticast mode [ 248.515699][ T5084] bridge_slave_1: entered promiscuous mode [ 248.531674][ T5078] bridge0: port 2(bridge_slave_1) entered blocking state [ 248.539916][ T5078] bridge0: port 2(bridge_slave_1) entered disabled state [ 248.548160][ T5078] bridge_slave_1: entered allmulticast mode [ 248.558109][ T5078] bridge_slave_1: entered promiscuous mode [ 248.687669][ T5076] Bluetooth: hci0: command tx timeout [ 248.800079][ T5076] Bluetooth: hci1: command tx timeout [ 248.968568][ T5075] hsr_slave_0: entered promiscuous mode [ 248.981151][ T5075] hsr_slave_1: entered promiscuous mode [ 249.008589][ T5078] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 249.031203][ T5084] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 249.088479][ T5076] Bluetooth: hci2: command tx timeout [ 249.109767][ T5078] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 249.129783][ T5084] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 249.177757][ T5076] Bluetooth: hci3: command tx timeout [ 249.395362][ T5086] bridge0: port 1(bridge_slave_0) entered blocking state [ 249.403419][ T5086] bridge0: port 1(bridge_slave_0) entered disabled state [ 249.411416][ T5086] bridge_slave_0: entered allmulticast mode [ 249.421069][ T5086] bridge_slave_0: entered promiscuous mode [ 249.551636][ T5084] team0: Port device team_slave_0 added [ 249.561762][ T5086] bridge0: port 2(bridge_slave_1) entered blocking state [ 249.572428][ T5086] bridge0: port 2(bridge_slave_1) entered disabled state [ 249.575194][ T5076] Bluetooth: hci4: command tx timeout [ 249.580470][ T5086] bridge_slave_1: entered allmulticast mode [ 249.597319][ T5086] bridge_slave_1: entered promiscuous mode [ 249.615479][ T5078] team0: Port device team_slave_0 added [ 249.673788][ T5090] bridge0: port 1(bridge_slave_0) entered blocking state [ 249.681756][ T5090] bridge0: port 1(bridge_slave_0) entered disabled state [ 249.689795][ T5090] bridge_slave_0: entered allmulticast mode [ 249.699057][ T5090] bridge_slave_0: entered promiscuous mode [ 249.729239][ T5090] bridge0: port 2(bridge_slave_1) entered blocking state [ 249.737065][ T5090] bridge0: port 2(bridge_slave_1) entered disabled state [ 249.745088][ T5090] bridge_slave_1: entered allmulticast mode [ 249.754917][ T5090] bridge_slave_1: entered promiscuous mode [ 249.772159][ T5084] team0: Port device team_slave_1 added [ 249.824005][ T5078] team0: Port device team_slave_1 added [ 250.001312][ T5086] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 250.037031][ T5086] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 250.094142][ T5090] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 250.106950][ T5084] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 250.114380][ T5084] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 250.140782][ T5084] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 250.244105][ T5090] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 250.257088][ T5084] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 250.265950][ T5084] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 250.293656][ T5084] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 250.308787][ T5078] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 250.315979][ T5078] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 250.342572][ T5078] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 250.473482][ T5078] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 250.481008][ T5078] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 250.507391][ T5078] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 250.567972][ T5086] team0: Port device team_slave_0 added [ 250.737120][ T5086] team0: Port device team_slave_1 added [ 250.762219][ T5084] hsr_slave_0: entered promiscuous mode [ 250.767960][ T5076] Bluetooth: hci0: command tx timeout [ 250.778052][ T5084] hsr_slave_1: entered promiscuous mode [ 250.786549][ T5084] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 250.794824][ T5084] Cannot create hsr debugfs directory [ 250.830084][ T5090] team0: Port device team_slave_0 added [ 250.849399][ T5076] Bluetooth: hci1: command tx timeout [ 251.015671][ T5090] team0: Port device team_slave_1 added [ 251.069455][ T5078] hsr_slave_0: entered promiscuous mode [ 251.079665][ T5078] hsr_slave_1: entered promiscuous mode [ 251.090469][ T5078] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 251.098461][ T5078] Cannot create hsr debugfs directory [ 251.167701][ T5076] Bluetooth: hci2: command tx timeout [ 251.254726][ T5076] Bluetooth: hci3: command tx timeout [ 251.259854][ T5090] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 251.267621][ T5090] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 251.294022][ T5090] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 251.308895][ T5086] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 251.316089][ T5086] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 251.342552][ T5086] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 251.460334][ T5090] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 251.468066][ T5090] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 251.495308][ T5090] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 251.510125][ T5086] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 251.517300][ T5086] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 251.543942][ T5086] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 251.667610][ T5076] Bluetooth: hci4: command tx timeout [ 251.858122][ T5090] hsr_slave_0: entered promiscuous mode [ 251.870111][ T5090] hsr_slave_1: entered promiscuous mode [ 251.879534][ T5090] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 251.887336][ T5090] Cannot create hsr debugfs directory [ 252.055221][ T5075] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 252.223960][ T5075] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 252.258756][ T5086] hsr_slave_0: entered promiscuous mode [ 252.272239][ T5086] hsr_slave_1: entered promiscuous mode [ 252.281604][ T5086] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 252.289650][ T5086] Cannot create hsr debugfs directory [ 252.367000][ T5075] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 252.392376][ T5075] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 252.853930][ T5076] Bluetooth: hci0: command tx timeout [ 252.927827][ T5076] Bluetooth: hci1: command tx timeout [ 253.229575][ T5084] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 253.253357][ T5076] Bluetooth: hci2: command tx timeout [ 253.325695][ T5084] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 253.333215][ T5076] Bluetooth: hci3: command tx timeout [ 253.353208][ T5084] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 253.432251][ T5084] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 253.731316][ T5078] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 253.764146][ T5076] Bluetooth: hci4: command tx timeout [ 253.779313][ T5078] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 253.822036][ T5090] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 253.870789][ T5090] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 253.898259][ T5078] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 253.974165][ T5090] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 254.001346][ T5078] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 254.122535][ T5090] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 254.209586][ T5086] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 254.287272][ T5086] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 254.407030][ T5086] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 254.456117][ T5086] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 254.506665][ T5075] 8021q: adding VLAN 0 to HW filter on device bond0 [ 254.894293][ T5075] 8021q: adding VLAN 0 to HW filter on device team0 [ 255.089677][ T5127] bridge0: port 1(bridge_slave_0) entered blocking state [ 255.097723][ T5127] bridge0: port 1(bridge_slave_0) entered forwarding state [ 255.245301][ T5127] bridge0: port 2(bridge_slave_1) entered blocking state [ 255.253391][ T5127] bridge0: port 2(bridge_slave_1) entered forwarding state [ 255.352266][ T5084] 8021q: adding VLAN 0 to HW filter on device bond0 [ 255.603865][ T5084] 8021q: adding VLAN 0 to HW filter on device team0 [ 255.766826][ T5078] 8021q: adding VLAN 0 to HW filter on device bond0 [ 255.790011][ T5127] bridge0: port 1(bridge_slave_0) entered blocking state [ 255.797975][ T5127] bridge0: port 1(bridge_slave_0) entered forwarding state [ 255.919718][ T5133] bridge0: port 2(bridge_slave_1) entered blocking state [ 255.927677][ T5133] bridge0: port 2(bridge_slave_1) entered forwarding state [ 256.072370][ T5090] 8021q: adding VLAN 0 to HW filter on device bond0 [ 256.117158][ T5078] 8021q: adding VLAN 0 to HW filter on device team0 [ 256.306420][ T5133] bridge0: port 1(bridge_slave_0) entered blocking state [ 256.314317][ T5133] bridge0: port 1(bridge_slave_0) entered forwarding state [ 256.408081][ T5090] 8021q: adding VLAN 0 to HW filter on device team0 [ 256.451605][ T5133] bridge0: port 2(bridge_slave_1) entered blocking state [ 256.459470][ T5133] bridge0: port 2(bridge_slave_1) entered forwarding state [ 256.569861][ T779] bridge0: port 1(bridge_slave_0) entered blocking state [ 256.577870][ T779] bridge0: port 1(bridge_slave_0) entered forwarding state [ 256.722062][ T10] bridge0: port 2(bridge_slave_1) entered blocking state [ 256.730002][ T10] bridge0: port 2(bridge_slave_1) entered forwarding state [ 256.869877][ T5086] 8021q: adding VLAN 0 to HW filter on device bond0 [ 257.067276][ T5078] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 257.282981][ T5090] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 257.345794][ T5086] 8021q: adding VLAN 0 to HW filter on device team0 [ 257.545123][ T10] bridge0: port 1(bridge_slave_0) entered blocking state [ 257.553255][ T10] bridge0: port 1(bridge_slave_0) entered forwarding state [ 257.670339][ T10] bridge0: port 2(bridge_slave_1) entered blocking state [ 257.678287][ T10] bridge0: port 2(bridge_slave_1) entered forwarding state [ 258.490155][ T5075] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 259.116429][ T5084] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 259.220092][ T5075] veth0_vlan: entered promiscuous mode [ 259.393254][ T5075] veth1_vlan: entered promiscuous mode [ 259.557404][ T5090] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 259.752495][ T5078] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 259.908304][ T5084] veth0_vlan: entered promiscuous mode [ 260.023384][ T5075] veth0_macvtap: entered promiscuous mode [ 260.097967][ T5084] veth1_vlan: entered promiscuous mode [ 260.132415][ T5075] veth1_macvtap: entered promiscuous mode [ 260.441311][ T5075] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 260.594721][ T5086] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 260.606312][ T5090] veth0_vlan: entered promiscuous mode [ 260.655861][ T5075] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 260.670230][ T5078] veth0_vlan: entered promiscuous mode [ 260.742108][ T5090] veth1_vlan: entered promiscuous mode [ 260.825380][ T5084] veth0_macvtap: entered promiscuous mode [ 260.855873][ T5075] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 260.865181][ T5075] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 260.876946][ T5075] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 260.886459][ T5075] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 260.933275][ T5078] veth1_vlan: entered promiscuous mode [ 260.957581][ T5084] veth1_macvtap: entered promiscuous mode [ 261.303419][ T5084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 261.314297][ T5084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 261.331948][ T5084] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 261.392904][ T5090] veth0_macvtap: entered promiscuous mode [ 261.437343][ T5078] veth0_macvtap: entered promiscuous mode [ 261.486574][ T5090] veth1_macvtap: entered promiscuous mode [ 261.545482][ T5084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 261.556441][ T5084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 261.574988][ T5084] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 261.649956][ T5078] veth1_macvtap: entered promiscuous mode [ 261.754098][ T5084] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 261.765901][ T5084] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 261.776935][ T5084] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 261.787855][ T5084] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 261.930965][ T5090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 261.944086][ T5090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 261.955917][ T5090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 261.968465][ T5090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 261.987598][ T5090] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 262.056453][ T5078] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 262.067578][ T5078] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 262.077754][ T5078] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 262.088565][ T5078] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 262.098797][ T5078] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 262.109685][ T5078] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 262.126150][ T5078] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 262.233036][ T5090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 262.245542][ T5090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 262.255874][ T5090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 262.266721][ T5090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 262.282712][ T5090] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 262.371175][ T5078] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 262.382076][ T5078] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 262.392499][ T5078] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 262.403411][ T5078] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 262.413665][ T5078] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 262.424443][ T5078] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 262.440786][ T5078] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 262.574087][ T5090] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 262.583431][ T5090] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 262.593835][ T5090] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 262.603091][ T5090] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 262.774373][ T5078] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 262.783732][ T5078] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 262.793017][ T5078] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 262.802215][ T5078] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 264.177886][ T5086] veth0_vlan: entered promiscuous mode [ 264.324180][ T5086] veth1_vlan: entered promiscuous mode [ 264.700569][ T5086] veth0_macvtap: entered promiscuous mode [ 264.818882][ T5086] veth1_macvtap: entered promiscuous mode [ 265.131785][ T5086] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 265.143614][ T5086] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 265.156838][ T5086] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 265.176007][ T5086] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 265.187569][ T5086] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 265.198371][ T5086] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 265.208516][ T5086] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 265.219399][ T5086] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 265.235198][ T5086] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 265.580480][ T5086] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 265.591948][ T5086] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 265.602283][ T5086] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 265.613242][ T5086] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 265.623477][ T5086] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 265.634457][ T5086] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 265.644633][ T5086] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 265.655544][ T5086] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 265.671763][ T5086] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 265.792092][ T5086] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.801537][ T5086] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.886085][ T5086] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.896555][ T5086] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 269.120207][ T2912] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 269.128386][ T2912] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 269.320458][ T4339] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 269.328727][ T4339] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 269.643255][ T5131] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 269.659233][ T5131] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 269.944724][ T4428] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 269.954400][ T4428] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 270.322892][ T4116] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 270.331212][ T4116] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 270.701074][ T4116] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 270.709566][ T4116] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 270.952188][ T5131] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 270.963924][ T5131] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 271.271085][ T4224] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 271.280030][ T4224] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 273.643212][ T5278] loop3: detected capacity change from 0 to 256 [ 273.703922][ T5278] ======================================================= [ 273.703922][ T5278] WARNING: The mand mount option has been deprecated and [ 273.703922][ T5278] and is ignored by this kernel. Remove the mand [ 273.703922][ T5278] option from the mount to silence this warning. [ 273.703922][ T5278] ======================================================= [ 273.777961][ T2912] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 273.785959][ T2912] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 274.117004][ T4116] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 274.125425][ T4116] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 274.404989][ T5278] FAT-fs (loop3): Directory bread(block 64) failed [ 274.413148][ T5278] FAT-fs (loop3): Directory bread(block 65) failed [ 274.421549][ T5278] FAT-fs (loop3): Directory bread(block 66) failed [ 274.428860][ T5278] FAT-fs (loop3): Directory bread(block 67) failed [ 274.436059][ T5278] FAT-fs (loop3): Directory bread(block 68) failed [ 274.447767][ T5278] FAT-fs (loop3): Directory bread(block 69) failed [ 274.454772][ T5278] FAT-fs (loop3): Directory bread(block 70) failed [ 274.463123][ T5278] FAT-fs (loop3): Directory bread(block 71) failed [ 274.470310][ T5278] FAT-fs (loop3): Directory bread(block 72) failed [ 274.477118][ T5278] FAT-fs (loop3): Directory bread(block 73) failed [ 274.738244][ T5278] syz-executor.3: attempt to access beyond end of device [ 274.738244][ T5278] loop3: rw=524288, sector=1160, nr_sectors = 4 limit=256 [ 274.758501][ T5278] syz-executor.3: attempt to access beyond end of device [ 274.758501][ T5278] loop3: rw=0, sector=1160, nr_sectors = 4 limit=256 [ 274.807626][ T29] audit: type=1800 audit(1717445988.275:2): pid=5278 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.3" name="file0" dev="loop3" ino=1048595 res=0 errno=0 [ 275.996338][ T5293] loop0: detected capacity change from 0 to 256 [ 276.310917][ T5293] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 276.588248][ T5298] loop3: detected capacity change from 0 to 1024 [ 277.230067][ T4116] hfsplus: b-tree write err: -5, ino 4 [ 278.778419][ T5318] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 279.554646][ T5326] loop1: detected capacity change from 0 to 512 [ 279.693476][ T5326] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 279.742332][ T5326] EXT4-fs (loop1): orphan cleanup on readonly fs [ 279.816198][ T5326] EXT4-fs warning (device loop1): ext4_enable_quotas:7100: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 279.900734][ T5326] EXT4-fs (loop1): Cannot turn on quotas: error -22 [ 279.943149][ T5326] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz-executor.1: bg 0: block 40: padding at end of block bitmap is not set [ 280.036839][ T5326] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6537: Corrupt filesystem [ 280.050512][ T5335] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 280.089198][ T5326] EXT4-fs (loop1): 1 truncate cleaned up [ 280.095265][ T5326] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 280.127208][ T5333] loop2: detected capacity change from 0 to 1024 [ 280.811350][ T2912] hfsplus: b-tree write err: -5, ino 4 [ 280.978667][ T5075] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 282.372609][ T5357] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 283.078032][ T5062] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 283.361081][ T5062] usb 2-1: Using ep0 maxpacket: 8 [ 283.480548][ T5062] usb 2-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 283.490127][ T5062] usb 2-1: config 1 has no interface number 1 [ 283.496507][ T5062] usb 2-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 283.510150][ T5062] usb 2-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 283.671741][ T5370] loop0: detected capacity change from 0 to 1024 [ 283.738095][ T5062] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 283.748394][ T5062] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 283.756708][ T5062] usb 2-1: Product: syz [ 283.767188][ T5062] usb 2-1: Manufacturer: syz [ 283.773870][ T5062] usb 2-1: SerialNumber: syz [ 284.190471][ T5062] usb 2-1: 2:1 : format type 0 is detected, processed as PCM [ 284.199229][ T5062] usb 2-1: 2:1 : invalid UAC_FORMAT_TYPE desc [ 284.205596][ T5062] usb 2-1: 2:1 : invalid channels 0 [ 284.287220][ T4339] hfsplus: b-tree write err: -5, ino 4 [ 284.409387][ T5062] usb 2-1: USB disconnect, device number 2 [ 285.110050][ T5386] loop0: detected capacity change from 0 to 512 [ 285.359450][ T5386] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz-executor.0: invalid indirect mapped block 256 (level 2) [ 285.469821][ T5386] EXT4-fs (loop0): 2 truncates cleaned up [ 285.475989][ T5386] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 285.548298][ T5392] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 5: invalid block bitmap [ 285.588784][ T5386] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz-executor.0: bg 0: block 5: invalid block bitmap [ 285.631326][ T5241] udevd[5241]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 285.690665][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 285.697536][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 286.024915][ T5078] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 286.287193][ T5402] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 287.096105][ T5411] loop3: detected capacity change from 0 to 1024 [ 287.819507][ T4428] hfsplus: b-tree write err: -5, ino 4 [ 290.045670][ T5433] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 290.726985][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 290.737088][ T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!! [ 291.671959][ T5445] loop1: detected capacity change from 0 to 256 [ 292.105270][ T5445] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 294.254566][ T5463] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 296.125599][ T5481] loop3: detected capacity change from 0 to 256 [ 296.283915][ T5481] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 297.612407][ T5490] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.0'. [ 297.973014][ T5492] warning: `syz-executor.2' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 298.918734][ T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!! [ 300.716527][ T5515] loop1: detected capacity change from 0 to 256 [ 300.734755][ T5513] loop4: detected capacity change from 0 to 256 [ 300.928648][ T5513] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 301.658312][ T5519] loop0: detected capacity change from 0 to 256 [ 302.230207][ T5522] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 304.878557][ T5543] loop0: detected capacity change from 0 to 1024 [ 305.235045][ T4339] hfsplus: b-tree write err: -5, ino 4 [ 306.031776][ T5550] loop0: detected capacity change from 0 to 256 [ 306.357328][ T5550] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 307.502197][ T5558] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.0'. [ 308.736266][ T5572] loop0: detected capacity change from 0 to 1024 [ 309.167068][ T2912] hfsplus: b-tree write err: -5, ino 4 [ 309.578081][ T5583] loop4: detected capacity change from 0 to 256 [ 309.791612][ T5583] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 310.359710][ T5590] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 310.622511][ T5595] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.0'. [ 311.308576][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 311.356220][ T5605] netlink: 'syz-executor.1': attribute type 10 has an invalid length. [ 311.365504][ T5605] netlink: 132 bytes leftover after parsing attributes in process `syz-executor.1'. [ 311.417141][ T5605] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 312.323619][ T5615] loop4: detected capacity change from 0 to 1024 [ 312.856173][ T4428] hfsplus: b-tree write err: -5, ino 4 [ 313.161998][ T5623] loop2: detected capacity change from 0 to 256 [ 313.351201][ T5623] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 313.789651][ T5629] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 313.939278][ T5628] Illegal XDP return value 4294967274 on prog (id 14) dev N/A, expect packet loss! [ 314.240703][ T5633] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.0'. [ 314.327286][ T5632] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 314.423339][ T5632] bridge0: entered promiscuous mode [ 314.429355][ T5632] macvtap1: entered promiscuous mode [ 314.435779][ T5632] macvtap1: entered allmulticast mode [ 314.441892][ T5632] bridge0: entered allmulticast mode [ 314.545612][ T5632] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 314.589808][ T5632] bridge0: left allmulticast mode [ 314.596185][ T5632] bridge0: left promiscuous mode [ 314.658265][ T5632] macvtap1: left promiscuous mode [ 314.663766][ T5632] macvtap1: left allmulticast mode [ 314.689840][ T0] NOHZ tick-stop error: local softirq work is pending, handler #242!!! [ 315.018865][ T5640] netlink: 'syz-executor.1': attribute type 10 has an invalid length. [ 315.027357][ T5640] netlink: 132 bytes leftover after parsing attributes in process `syz-executor.1'. [ 315.133977][ T5640] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 315.369441][ T5646] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 315.379105][ T5646] netdevsim netdevsim2 netdevsim2: entered promiscuous mode [ 315.386697][ T5646] netdevsim netdevsim2 netdevsim2: entered allmulticast mode [ 315.521298][ T5646] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 315.613216][ T5646] netdevsim netdevsim2 netdevsim2: left promiscuous mode [ 315.620964][ T5646] netdevsim netdevsim2 netdevsim2: left allmulticast mode [ 316.275083][ T5652] loop4: detected capacity change from 0 to 1024 [ 316.929014][ T2912] hfsplus: b-tree write err: -5, ino 4 [ 316.979060][ T5664] loop0: detected capacity change from 0 to 256 [ 317.013621][ T5665] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 317.122012][ T5664] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 317.665378][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 317.749172][ T5672] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 318.394692][ T5131] IPVS: starting estimator thread 0... [ 318.497993][ T5684] IPVS: using max 240 ests per chain, 12000 per kthread [ 318.685523][ T5683] netlink: 'syz-executor.3': attribute type 10 has an invalid length. [ 318.911232][ T5692] Zero length message leads to an empty skb [ 320.060776][ T5701] loop3: detected capacity change from 0 to 1024 [ 320.258712][ T5705] __nla_validate_parse: 2 callbacks suppressed [ 320.258793][ T5705] netlink: 16126 bytes leftover after parsing attributes in process `syz-executor.2'. [ 320.275704][ T5705] netlink: 105116 bytes leftover after parsing attributes in process `syz-executor.2'. [ 320.330172][ T5704] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 320.641301][ T5707] loop4: detected capacity change from 0 to 256 [ 320.730820][ T3581] hfsplus: b-tree write err: -5, ino 4 [ 320.761583][ T5707] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 320.892266][ T5709] net_ratelimit: 44 callbacks suppressed [ 320.892346][ T5709] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 321.747299][ T5718] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.3'. [ 322.465670][ T5726] netlink: 'syz-executor.1': attribute type 10 has an invalid length. [ 322.481815][ T5726] netlink: 132 bytes leftover after parsing attributes in process `syz-executor.1'. [ 322.611137][ T5726] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 323.559600][ T5740] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 323.638582][ T5743] netlink: 16126 bytes leftover after parsing attributes in process `syz-executor.1'. [ 323.648657][ T5743] netlink: 105116 bytes leftover after parsing attributes in process `syz-executor.1'. [ 323.759336][ T5742] loop3: detected capacity change from 0 to 1024 [ 324.492081][ T5748] loop2: detected capacity change from 0 to 256 [ 324.540939][ T3581] hfsplus: b-tree write err: -5, ino 4 [ 324.550150][ T5752] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 324.700434][ T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!! [ 324.772966][ T5748] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 326.169149][ T5767] netlink: 'syz-executor.2': attribute type 10 has an invalid length. [ 326.177892][ T5767] netlink: 132 bytes leftover after parsing attributes in process `syz-executor.2'. [ 326.554535][ T5772] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 327.122909][ T5779] netlink: 16126 bytes leftover after parsing attributes in process `syz-executor.4'. [ 327.132961][ T5779] netlink: 105116 bytes leftover after parsing attributes in process `syz-executor.4'. [ 327.569143][ T5784] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 327.750150][ T5786] loop0: detected capacity change from 0 to 1024 [ 328.527016][ T5793] loop3: detected capacity change from 0 to 256 [ 328.622245][ T4116] hfsplus: b-tree write err: -5, ino 4 [ 328.689937][ T5793] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 329.419573][ T5803] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 330.368101][ T5813] netlink: 16126 bytes leftover after parsing attributes in process `syz-executor.1'. [ 330.378257][ T5813] netlink: 105116 bytes leftover after parsing attributes in process `syz-executor.1'. [ 330.594032][ T5816] netlink: 'syz-executor.0': attribute type 10 has an invalid length. [ 330.602969][ T5816] netlink: 132 bytes leftover after parsing attributes in process `syz-executor.0'. [ 331.222802][ T5824] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 331.929962][ T5831] loop3: detected capacity change from 0 to 1024 [ 332.294506][ T5836] loop2: detected capacity change from 0 to 256 [ 332.391996][ T4116] hfsplus: b-tree write err: -5, ino 4 [ 332.658035][ T5836] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 333.212352][ T5848] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 334.263765][ T5861] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.3'. [ 335.325577][ T5871] loop0: detected capacity change from 0 to 1024 [ 335.649688][ T5880] loop2: detected capacity change from 0 to 256 [ 335.814310][ T5880] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 335.905089][ T4428] hfsplus: b-tree write err: -5, ino 4 [ 336.216296][ T5884] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 336.833717][ T5889] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 337.250668][ T5897] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.3'. [ 338.451456][ T779] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 338.605551][ T5913] loop0: detected capacity change from 0 to 1024 [ 338.737910][ T779] usb 4-1: Using ep0 maxpacket: 8 [ 338.878508][ T779] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 338.890020][ T779] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 338.900535][ T779] usb 4-1: New USB device found, idVendor=05ac, idProduct=0267, bcdDevice= 0.00 [ 338.910203][ T779] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 338.935549][ T5917] loop4: detected capacity change from 0 to 256 [ 339.019271][ T779] usb 4-1: config 0 descriptor?? [ 339.114582][ T3581] hfsplus: b-tree write err: -5, ino 4 [ 339.226640][ T5917] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 339.306387][ T5919] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 339.435101][ T5921] loop1: detected capacity change from 0 to 512 [ 339.627705][ T779] apple 0003:05AC:0267.0001: hidraw0: USB HID v0.00 Device [HID 05ac:0267] on usb-dummy_hcd.3-1/input0 [ 339.713815][ T5921] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 339.727820][ T5921] ext4 filesystem being mounted at /root/syzkaller-testdir2850326734/syzkaller.aJeuns/57/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 340.109966][ T5921] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 340.157877][ T779] usb 4-1: USB disconnect, device number 2 [ 340.192659][ T29] audit: type=1800 audit(1717446053.595:3): pid=5921 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=18 res=0 errno=0 [ 340.449399][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 340.815999][ T5075] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 341.213454][ T5933] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 341.859374][ T5941] usb usb5: usbfs: process 5941 (syz-executor.1) did not claim interface 0 before use [ 342.813647][ T5952] loop3: detected capacity change from 0 to 1024 [ 342.896634][ T5954] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 342.991418][ T5956] loop4: detected capacity change from 0 to 256 [ 343.274036][ T5956] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 343.408402][ T4116] hfsplus: b-tree write err: -5, ino 4 [ 344.960659][ T5976] loop2: detected capacity change from 0 to 1024 [ 345.163699][ T5976] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 345.291153][ T5986] loop4: detected capacity change from 0 to 1024 [ 345.346031][ T5976] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2847: Unable to expand inode 12. Delete some EAs or run e2fsck. [ 345.416222][ T29] audit: type=1800 audit(1717446058.855:4): pid=5976 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=18 res=0 errno=0 [ 345.630549][ T5986] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 345.729919][ T5986] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'. [ 345.827926][ T5995] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 345.844737][ T5090] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 346.287694][ T5086] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 346.462518][ T5999] loop3: detected capacity change from 0 to 256 [ 346.561565][ T6001] loop2: detected capacity change from 0 to 1024 [ 346.630655][ T5999] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 346.798194][ T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!! [ 347.036581][ T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!! [ 347.124011][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 347.131085][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 347.227654][ T3581] hfsplus: b-tree write err: -5, ino 4 [ 347.938969][ T29] audit: type=1326 audit(1717446061.345:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6009 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf744b579 code=0x7ffc0000 [ 347.962619][ T29] audit: type=1326 audit(1717446061.355:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6009 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf744b579 code=0x7ffc0000 [ 347.991289][ T29] audit: type=1326 audit(1717446061.365:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6009 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=40000003 syscall=83 compat=1 ip=0xf744b579 code=0x7ffc0000 [ 348.015772][ T29] audit: type=1326 audit(1717446061.385:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6009 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf744b579 code=0x7ffc0000 [ 348.038596][ T29] audit: type=1326 audit(1717446061.395:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6009 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=40000003 syscall=229 compat=1 ip=0xf744b579 code=0x7ffc0000 [ 348.063116][ T29] audit: type=1326 audit(1717446061.415:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6009 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf744b579 code=0x7ffc0000 [ 348.091928][ T29] audit: type=1326 audit(1717446061.415:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6009 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=40000003 syscall=360 compat=1 ip=0xf744b579 code=0x7ffc0000 [ 348.117096][ T29] audit: type=1326 audit(1717446061.415:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6009 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf744b579 code=0x7ffc0000 [ 348.140225][ T29] audit: type=1326 audit(1717446061.425:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6009 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=40000003 syscall=102 compat=1 ip=0xf744b579 code=0x7ffc0000 [ 349.238794][ T6026] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 349.413418][ T6025] vlan2: entered promiscuous mode [ 349.425571][ T6025] nlmon0: entered promiscuous mode [ 349.442596][ T6025] bond0: (slave vlan2): Enslaving as an active interface with an up link [ 349.469251][ T6024] vlan2: entered promiscuous mode [ 349.478213][ T6024] bond0: (slave vlan2): Opening slave failed [ 349.635452][ T6031] loop1: detected capacity change from 0 to 1024 [ 349.981866][ T6031] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 350.232141][ T6031] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'. [ 350.533310][ T6040] loop2: detected capacity change from 0 to 1024 [ 350.615829][ T6042] loop0: detected capacity change from 0 to 256 [ 350.879759][ T6042] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 350.949172][ T5075] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 351.134923][ T3581] hfsplus: b-tree write err: -5, ino 4 [ 351.972388][ T6054] loop1: detected capacity change from 0 to 128 [ 352.378923][ T6064] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 352.417881][ T29] kauditd_printk_skb: 6 callbacks suppressed [ 352.417960][ T29] audit: type=1326 audit(1717446065.905:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6058 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7433579 code=0x7ffc0000 [ 352.447199][ T29] audit: type=1326 audit(1717446065.905:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6058 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7433579 code=0x7ffc0000 [ 352.543582][ T29] audit: type=1326 audit(1717446065.985:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6058 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=40000003 syscall=83 compat=1 ip=0xf7433579 code=0x7ffc0000 [ 352.566578][ T29] audit: type=1326 audit(1717446065.985:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6058 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7433579 code=0x7ffc0000 [ 352.593465][ T29] audit: type=1326 audit(1717446065.985:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6058 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=40000003 syscall=229 compat=1 ip=0xf7433579 code=0x7ffc0000 [ 352.617729][ T29] audit: type=1326 audit(1717446065.985:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6058 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7433579 code=0x7ffc0000 [ 352.640672][ T29] audit: type=1326 audit(1717446066.005:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6058 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7433579 code=0x7ffc0000 [ 352.663564][ T29] audit: type=1326 audit(1717446066.015:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6058 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=40000003 syscall=360 compat=1 ip=0xf7433579 code=0x7ffc0000 [ 352.691859][ T29] audit: type=1326 audit(1717446066.015:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6058 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7433579 code=0x7ffc0000 [ 352.715915][ T29] audit: type=1326 audit(1717446066.015:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6058 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=40000003 syscall=102 compat=1 ip=0xf7433579 code=0x7ffc0000 [ 353.582838][ T6071] vlan2: entered promiscuous mode [ 353.592076][ T6071] bond0: (slave vlan2): Opening slave failed [ 353.615964][ T6074] loop4: detected capacity change from 0 to 1024 [ 353.858102][ T6074] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 354.157787][ T6074] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'. [ 354.302784][ T6083] loop2: detected capacity change from 0 to 1024 [ 354.736515][ T5086] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 354.845928][ T6088] loop0: detected capacity change from 0 to 256 [ 355.061628][ T4339] hfsplus: b-tree write err: -5, ino 4 [ 355.128407][ T6088] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 355.923241][ T6099] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 356.372666][ T6106] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 357.718619][ T6124] vlan2: entered promiscuous mode [ 357.727303][ T6124] bond0: (slave vlan2): Opening slave failed [ 358.392019][ T6131] loop2: detected capacity change from 0 to 1024 [ 358.520864][ T6134] loop3: detected capacity change from 0 to 256 [ 358.525419][ T6132] loop1: detected capacity change from 0 to 1024 [ 358.673548][ T6132] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 358.830732][ T6132] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'. [ 358.888876][ T6134] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 359.064066][ T4224] hfsplus: b-tree write err: -5, ino 4 [ 359.355742][ T5075] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 359.818437][ T6144] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 359.889824][ T6145] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 360.858162][ T29] kauditd_printk_skb: 47 callbacks suppressed [ 360.858245][ T29] audit: type=1326 audit(1717446074.345:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6151 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7433579 code=0x7ffc0000 [ 361.030356][ T29] audit: type=1326 audit(1717446074.425:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6151 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=40000003 syscall=83 compat=1 ip=0xf7433579 code=0x7ffc0000 [ 361.053602][ T29] audit: type=1326 audit(1717446074.485:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6151 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7433579 code=0x7ffc0000 [ 361.080241][ T29] audit: type=1326 audit(1717446074.485:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6151 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7433579 code=0x7ffc0000 [ 361.104467][ T29] audit: type=1326 audit(1717446074.515:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6151 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=40000003 syscall=360 compat=1 ip=0xf7433579 code=0x7ffc0000 [ 361.127483][ T29] audit: type=1326 audit(1717446074.525:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6151 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7433579 code=0x7ffc0000 [ 361.150485][ T29] audit: type=1326 audit(1717446074.585:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6151 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=40000003 syscall=102 compat=1 ip=0xf7433579 code=0x7ffc0000 [ 361.174199][ T29] audit: type=1326 audit(1717446074.585:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6151 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=40000003 syscall=102 compat=1 ip=0xf7433579 code=0x7ffc0000 [ 361.200712][ T29] audit: type=1326 audit(1717446074.635:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6151 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=40000003 syscall=102 compat=1 ip=0xf7433579 code=0x7ffc0000 [ 361.224918][ T29] audit: type=1326 audit(1717446074.645:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6151 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=40000003 syscall=102 compat=1 ip=0xf7433579 code=0x7ffc0000 [ 361.680832][ T6154] vlan2: entered promiscuous mode [ 361.701868][ T6154] nlmon0: entered promiscuous mode [ 361.718581][ T6154] bond0: (slave vlan2): Enslaving as an active interface with an up link [ 362.153701][ T6170] loop4: detected capacity change from 0 to 1024 [ 362.382624][ T6168] vlan3: entered promiscuous mode [ 362.391380][ T6168] bond0: (slave vlan3): Opening slave failed [ 362.495478][ T6174] loop3: detected capacity change from 0 to 256 [ 362.716525][ T6174] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 362.827655][ T4339] hfsplus: b-tree write err: -5, ino 4 [ 363.506944][ T6177] loop0: detected capacity change from 0 to 1024 [ 363.604255][ T6177] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 363.970969][ T6186] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 364.176146][ T5078] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 364.406919][ T6188] netlink: 'syz-executor.3': attribute type 5 has an invalid length. [ 366.516987][ T6212] loop3: detected capacity change from 0 to 1024 [ 366.573492][ T6213] loop4: detected capacity change from 0 to 1024 [ 366.828685][ T6213] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 366.873831][ T6219] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 367.247610][ T59] hfsplus: b-tree write err: -5, ino 4 [ 367.294844][ T5086] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 367.501531][ T6226] netlink: 'syz-executor.2': attribute type 5 has an invalid length. [ 367.607211][ T6229] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.1'. [ 368.459141][ T6236] loop4: detected capacity change from 0 to 512 [ 368.686355][ T6244] loop2: detected capacity change from 0 to 256 [ 368.739606][ T6245] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.1'. [ 368.810622][ T6236] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 368.824203][ T6236] ext4 filesystem being mounted at /root/syzkaller-testdir3047842080/syzkaller.JVwx6T/68/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 369.080369][ T6244] FAT-fs (loop2): Directory bread(block 64) failed [ 369.087330][ T6244] FAT-fs (loop2): Directory bread(block 65) failed [ 369.094677][ T6244] FAT-fs (loop2): Directory bread(block 66) failed [ 369.101804][ T6244] FAT-fs (loop2): Directory bread(block 67) failed [ 369.109005][ T6244] FAT-fs (loop2): Directory bread(block 68) failed [ 369.115814][ T6244] FAT-fs (loop2): Directory bread(block 69) failed [ 369.123130][ T6244] FAT-fs (loop2): Directory bread(block 70) failed [ 369.130117][ T6244] FAT-fs (loop2): Directory bread(block 71) failed [ 369.137209][ T6244] FAT-fs (loop2): Directory bread(block 72) failed [ 369.144404][ T6244] FAT-fs (loop2): Directory bread(block 73) failed [ 369.512159][ T6250] process 'syz-executor.0' launched './file0' with NULL argv: empty string added [ 369.596376][ T5086] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 369.659228][ T6230] Bluetooth: hci3: command 0x0406 tx timeout [ 369.728053][ T51] Bluetooth: hci0: command 0x0406 tx timeout [ 369.734478][ T5079] Bluetooth: hci1: command 0x0406 tx timeout [ 369.742097][ T51] Bluetooth: hci2: command 0x0406 tx timeout [ 369.748041][ T5076] Bluetooth: hci4: command 0x0406 tx timeout [ 370.696086][ T6259] loop1: detected capacity change from 0 to 1024 [ 371.046556][ T6261] loop3: detected capacity change from 0 to 1024 [ 371.184637][ T2912] hfsplus: b-tree write err: -5, ino 4 [ 371.221671][ T6261] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 371.509848][ T5422] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 371.642331][ T6269] netlink: 'syz-executor.2': attribute type 5 has an invalid length. [ 371.655012][ T5084] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 372.524271][ T6278] loop2: detected capacity change from 0 to 164 [ 372.664981][ T6278] Unable to read rock-ridge attributes [ 372.766304][ T6278] Unable to read rock-ridge attributes [ 374.309012][ T6295] loop1: detected capacity change from 0 to 1024 [ 374.586434][ T6295] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 374.894034][ T6308] netlink: 'syz-executor.4': attribute type 5 has an invalid length. [ 374.994057][ T5075] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 375.994923][ T6319] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.2'. [ 376.344638][ T6323] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4) [ 376.351617][ T6323] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 376.360050][ T6323] vhci_hcd vhci_hcd.0: Device attached [ 376.384705][ T6322] vlan2: entered promiscuous mode [ 376.397215][ T6322] nlmon0: entered promiscuous mode [ 376.414134][ T6322] bond0: (slave vlan2): Enslaving as an active interface with an up link [ 376.688136][ T779] vhci_hcd: vhci_device speed not set [ 376.757787][ T779] usb 9-1: new full-speed USB device number 2 using vhci_hcd [ 377.023901][ T6324] vhci_hcd: connection reset by peer [ 377.050444][ T59] vhci_hcd: stop threads [ 377.054938][ T59] vhci_hcd: release socket [ 377.059798][ T59] vhci_hcd: disconnect device [ 378.629641][ T6353] loop4: detected capacity change from 0 to 256 [ 378.640253][ T6351] netlink: 'syz-executor.0': attribute type 5 has an invalid length. [ 378.736412][ T6353] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 380.149088][ T6371] loop2: detected capacity change from 0 to 128 [ 380.338023][ T6374] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4) [ 380.344960][ T6374] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 380.353189][ T6374] vhci_hcd vhci_hcd.0: Device attached [ 380.374269][ T6369] vlan2: entered promiscuous mode [ 380.386371][ T6369] nlmon0: entered promiscuous mode [ 380.402731][ T6369] bond0: (slave vlan2): Enslaving as an active interface with an up link [ 380.578578][ T6376] vhci_hcd: connection closed [ 380.579311][ T4224] vhci_hcd: stop threads [ 380.589249][ T4224] vhci_hcd: release socket [ 380.593938][ T4224] vhci_hcd: disconnect device [ 380.648570][ T4682] vhci_hcd: vhci_device speed not set [ 381.560911][ T6389] loop4: detected capacity change from 0 to 256 [ 381.786716][ T6389] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 381.888569][ T779] vhci_hcd: vhci_device speed not set [ 381.913977][ T6391] loop3: detected capacity change from 0 to 512 [ 382.017945][ T6391] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 382.031519][ T6391] EXT4-fs (loop3): filesystem is read-only [ 382.098760][ T6394] netlink: 'syz-executor.0': attribute type 5 has an invalid length. [ 383.212343][ T6408] bridge0: port 1(bridge_slave_0) entered disabled state [ 383.302328][ T6408] bridge_slave_1: left allmulticast mode [ 383.310215][ T6408] bridge_slave_1: left promiscuous mode [ 383.317123][ T6408] bridge0: port 2(bridge_slave_1) entered disabled state [ 383.530097][ T6408] bond0: (slave bond_slave_0): Releasing backup interface [ 383.690305][ T6408] bond0: (slave bond_slave_1): Releasing backup interface [ 383.821420][ T6408] team0: Port device team_slave_0 removed [ 383.997068][ T6408] team0: Port device team_slave_1 removed [ 384.008807][ T6408] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 384.025454][ T6408] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 384.077714][ T6408] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 384.085451][ T6408] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 384.331385][ T6416] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4) [ 384.338243][ T6416] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 384.346318][ T6416] vhci_hcd vhci_hcd.0: Device attached [ 384.556986][ T6418] vhci_hcd: connection closed [ 384.557971][ T4116] vhci_hcd: stop threads [ 384.567845][ T4116] vhci_hcd: release socket [ 384.572551][ T4116] vhci_hcd: disconnect device [ 384.692998][ T6408] bond0: (slave vlan2): Releasing backup interface [ 384.789137][ T6408] nlmon0: left promiscuous mode [ 385.019488][ T6414] vlan2: entered promiscuous mode [ 385.158396][ T6425] loop1: detected capacity change from 0 to 256 [ 385.191190][ T6424] loop3: detected capacity change from 0 to 1024 [ 385.230524][ T6425] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 385.285779][ T6424] EXT4-fs: Ignoring removed nomblk_io_submit option [ 385.513834][ T6424] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 385.551669][ T29] kauditd_printk_skb: 13 callbacks suppressed [ 385.551754][ T29] audit: type=1800 audit(1717446099.035:100): pid=6424 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 385.666639][ T6424] EXT4-fs (loop3): Online defrag not supported with bigalloc [ 385.691287][ T29] audit: type=1800 audit(1717446099.135:101): pid=6424 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file2" dev="loop3" ino=16 res=0 errno=0 [ 385.998718][ T5084] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 386.631921][ T6438] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 389.085360][ T6464] loop0: detected capacity change from 0 to 256 [ 389.180758][ T6461] loop2: detected capacity change from 0 to 1024 [ 389.187940][ T6464] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 389.188011][ T6461] EXT4-fs: Ignoring removed nomblk_io_submit option [ 389.304236][ T6461] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 389.514904][ T6461] EXT4-fs (loop2): Online defrag not supported with bigalloc [ 389.738001][ T29] audit: type=1800 audit(1717446102.945:102): pid=6461 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 389.738341][ T29] audit: type=1800 audit(1717446102.975:103): pid=6461 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="file2" dev="loop2" ino=16 res=0 errno=0 [ 389.883412][ T5090] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 390.798182][ T6481] netlink: 'syz-executor.3': attribute type 5 has an invalid length. [ 391.705330][ T6496] loop0: detected capacity change from 0 to 512 [ 391.832168][ T6496] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 391.841007][ T6496] EXT4-fs (loop0): inodes count not valid: 32 vs 800 [ 392.065606][ T6501] loop4: detected capacity change from 0 to 1024 [ 392.139260][ T6501] EXT4-fs: Ignoring removed nomblk_io_submit option [ 392.229133][ T6501] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 392.426510][ T29] audit: type=1800 audit(1717446105.915:104): pid=6501 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 392.462903][ T29] audit: type=1800 audit(1717446105.945:105): pid=6501 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="file2" dev="loop4" ino=16 res=0 errno=0 [ 392.465001][ T6501] EXT4-fs (loop4): Online defrag not supported with bigalloc [ 392.747857][ T5086] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 395.145176][ T6544] loop1: detected capacity change from 0 to 1024 [ 395.167020][ T6545] loop3: detected capacity change from 0 to 512 [ 395.180266][ T6544] EXT4-fs: Ignoring removed nomblk_io_submit option [ 395.241678][ T6545] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 395.251719][ T6545] EXT4-fs (loop3): inodes count not valid: 32 vs 800 [ 395.309654][ T6544] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 395.396082][ T29] audit: type=1800 audit(1717446108.885:106): pid=6544 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 395.417593][ T29] audit: type=1800 audit(1717446108.885:107): pid=6544 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file2" dev="loop1" ino=16 res=0 errno=0 [ 395.444801][ T6544] EXT4-fs (loop1): Online defrag not supported with bigalloc [ 395.794196][ T5075] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 396.306872][ T6560] loop0: detected capacity change from 0 to 2048 [ 396.451692][ T6560] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 396.835874][ T6560] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1216: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 397.096003][ T5078] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 398.508932][ T6583] vlan2: entered promiscuous mode [ 398.521129][ T6583] nlmon0: entered promiscuous mode [ 398.537941][ T6583] bond0: (slave vlan2): Enslaving as an active interface with an up link [ 399.248410][ T6598] loop0: detected capacity change from 0 to 512 [ 399.304961][ T6598] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 399.314030][ T6598] EXT4-fs (loop0): inodes count not valid: 32 vs 800 [ 399.666114][ T6602] loop3: detected capacity change from 0 to 2048 [ 399.796275][ T6610] loop4: detected capacity change from 0 to 256 [ 399.828295][ T6602] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 399.856779][ T6606] loop2: detected capacity change from 0 to 2048 [ 400.029052][ T6602] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1216: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 400.080773][ T6606] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 400.206119][ T6606] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1216: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 400.453031][ T5090] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 400.563874][ T5084] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 402.607030][ T6647] loop2: detected capacity change from 0 to 256 [ 403.004790][ T6649] loop3: detected capacity change from 0 to 2048 [ 403.169384][ T6649] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 403.246630][ T6653] loop1: detected capacity change from 0 to 512 [ 403.293828][ T6653] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 403.303086][ T6653] EXT4-fs (loop1): inodes count not valid: 32 vs 800 [ 403.312716][ T6649] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1216: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 403.521554][ T6652] loop4: detected capacity change from 0 to 2048 [ 403.648514][ T6652] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 403.750576][ T5084] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 403.944327][ T6652] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1216: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 404.310270][ T5086] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 405.154626][ T6687] loop3: detected capacity change from 0 to 1024 [ 405.353869][ T6687] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 405.700133][ T5084] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 405.840069][ T6694] loop2: detected capacity change from 0 to 256 [ 406.604672][ T6700] loop3: detected capacity change from 0 to 2048 [ 406.765997][ T6700] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 406.786749][ T6708] loop2: detected capacity change from 0 to 512 [ 406.837675][ T6708] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 406.850615][ T6708] EXT4-fs (loop2): inodes count not valid: 32 vs 800 [ 406.982041][ T6712] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 407.071622][ T6700] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1216: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 407.432127][ T5084] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 407.721300][ T6726] vivid-000: ================= START STATUS ================= [ 407.729735][ T6726] vivid-000: Volume: 200 [ 407.734344][ T6726] vivid-000: Mute: false [ 407.739411][ T6726] vivid-000: Boolean: true [ 407.744408][ T6726] vivid-000: Integer 32 Bits: 0 [ 407.749845][ T6726] vivid-000: Integer 64 Bits: 0 [ 407.755045][ T6726] vivid-000: Menu: Menu Item 3 [ 407.760292][ T6726] vivid-000: String: [ 407.764794][ T6726] vivid-000: Bitmask: 0x80002000 [ 407.774762][ T6726] vivid-000: Integer Menu: 5 [ 407.781046][ T6726] vivid-000: U32 1 Element Array: [1] 24 [ 407.787144][ T6726] vivid-000: U16 8x16 Matrix: [8][16] 24 [ 407.793524][ T6726] vivid-000: U8 2x3x4x5 Array: [2][3][4][5] 24 [ 407.800965][ T6726] vivid-000: Area: unknown type 262 [ 407.811572][ T6726] vivid-000: Read-Only Integer 32 Bits: 0 [ 407.817826][ T6726] vivid-000: U32 Dynamic Array: [100] 50 [ 407.824016][ T6726] vivid-000: U8 Pixel Array: [640][368] 128 [ 407.830686][ T6726] vivid-000: S32 2 Element Array: [2] 2 [ 407.836720][ T6726] vivid-000: S64 5 Element Array: [5] 4 [ 407.842890][ T6726] vivid-000: RDS Program ID: 32904 [ 407.848442][ T6726] vivid-000: RDS Program Type: 3 [ 407.853752][ T6726] vivid-000: RDS PS Name: VIVID-TX [ 407.859323][ T6726] vivid-000: RDS Radio Text: This is a VIVID default Radio Text template text, change at will [ 407.874479][ T6726] vivid-000: RDS Stereo: true [ 407.880923][ T6726] vivid-000: RDS Artificial Head: false [ 407.886875][ T6726] vivid-000: RDS Compressed: false [ 407.892952][ T6726] vivid-000: RDS Dynamic PTY: false [ 407.898607][ T6726] vivid-000: RDS Traffic Announcement: false [ 407.904937][ T6726] vivid-000: RDS Traffic Program: true [ 407.910870][ T6726] vivid-000: RDS Music: true [ 407.915800][ T6726] vivid-000: RDS Tx I/O Mode: Controls [ 407.922606][ T6726] vivid-000: ================== END STATUS ================== [ 408.477792][ T6734] loop3: detected capacity change from 0 to 1024 [ 408.502415][ T6737] loop1: detected capacity change from 0 to 256 [ 408.568713][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 408.575434][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 408.685015][ T6734] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 409.032426][ T5084] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 409.390282][ T6741] syz-executor.4 (pid 6741) is setting deprecated v1 encryption policy; recommend upgrading to v2. [ 409.640790][ T6746] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 409.874022][ T6753] loop0: detected capacity change from 0 to 2048 [ 410.033620][ T6753] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 410.368768][ T6753] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1216: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 410.484170][ T6759] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 410.642202][ T5078] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 411.283304][ T6772] loop2: detected capacity change from 0 to 256 [ 411.569784][ T6776] loop4: detected capacity change from 0 to 1024 [ 411.723056][ T6776] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 412.016963][ T6784] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 412.129476][ T5086] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 413.106532][ T6800] loop4: detected capacity change from 0 to 2048 [ 413.469155][ T6800] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 413.759763][ T6800] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1216: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 414.281599][ T5086] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 414.938874][ T6814] loop0: detected capacity change from 0 to 256 [ 415.956387][ T6822] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'. [ 416.352280][ T6827] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 417.005415][ T6836] loop4: detected capacity change from 0 to 64 [ 417.375507][ T29] audit: type=1800 audit(1717446130.835:108): pid=6836 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=8 res=0 errno=0 [ 417.471012][ T6839] loop3: detected capacity change from 0 to 2048 [ 417.662787][ T6839] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 417.807959][ T6839] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1216: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 418.104575][ T5084] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 418.205462][ T6848] loop4: detected capacity change from 0 to 256 [ 419.128991][ T6864] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 419.785754][ T6870] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 419.795706][ T6870] bridge_slave_1: left allmulticast mode [ 419.802286][ T6870] bridge_slave_1: left promiscuous mode [ 419.809543][ T6870] bridge0: port 2(bridge_slave_1) entered disabled state [ 419.909973][ T6870] bridge_slave_0: left allmulticast mode [ 419.916204][ T6870] bridge_slave_0: left promiscuous mode [ 419.923498][ T6870] bridge0: port 1(bridge_slave_0) entered disabled state [ 420.442679][ T6879] loop3: detected capacity change from 0 to 64 [ 420.687777][ T29] audit: type=1800 audit(1717446134.085:109): pid=6879 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="loop3" ino=8 res=0 errno=0 [ 421.329762][ T6887] loop3: detected capacity change from 0 to 256 [ 421.409321][ T6883] loop4: detected capacity change from 0 to 2048 [ 421.637079][ T6883] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 421.875968][ T6883] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1216: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 422.350903][ T5086] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 422.859500][ T6901] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 423.525997][ T6912] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 423.543864][ T6912] bridge_slave_1: left allmulticast mode [ 423.552106][ T6912] bridge_slave_1: left promiscuous mode [ 423.559316][ T6912] bridge0: port 2(bridge_slave_1) entered disabled state [ 423.586059][ T6912] bridge_slave_0: left allmulticast mode [ 423.592597][ T6912] bridge_slave_0: left promiscuous mode [ 423.599743][ T6912] bridge0: port 1(bridge_slave_0) entered disabled state [ 424.314767][ T6922] loop4: detected capacity change from 0 to 64 [ 425.035841][ T6926] loop1: detected capacity change from 0 to 256 [ 425.618740][ T6928] loop3: detected capacity change from 0 to 2048 [ 425.772845][ T6928] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 426.059909][ T6928] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1216: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 426.533706][ T5084] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 427.147798][ T6958] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 427.156625][ T6961] loop1: detected capacity change from 0 to 64 [ 427.157231][ T6958] bridge_slave_1: left allmulticast mode [ 427.157334][ T6958] bridge_slave_1: left promiscuous mode [ 427.158891][ T6958] bridge0: port 2(bridge_slave_1) entered disabled state [ 427.268087][ T6958] bridge_slave_0: left allmulticast mode [ 427.274309][ T6958] bridge_slave_0: left promiscuous mode [ 427.282426][ T6958] bridge0: port 1(bridge_slave_0) entered disabled state [ 428.560276][ T6972] loop1: detected capacity change from 0 to 256 [ 429.573243][ T6983] loop4: detected capacity change from 0 to 2048 [ 429.730696][ T6983] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 429.831202][ T6983] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1216: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 429.996997][ T5086] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 430.658196][ T7002] loop1: detected capacity change from 0 to 64 [ 430.851774][ T7006] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 432.167986][ T7016] loop0: detected capacity change from 0 to 256 [ 433.359297][ T7028] loop3: detected capacity change from 0 to 2048 [ 433.619944][ T7028] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 433.744119][ T29] audit: type=1800 audit(1717446147.235:110): pid=7040 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1961 res=0 errno=0 [ 433.790860][ T7028] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1216: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 434.070510][ T5084] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 434.328933][ T7047] loop4: detected capacity change from 0 to 256 [ 435.983115][ T7062] loop4: detected capacity change from 0 to 256 [ 436.049626][ T7062] exfat: Deprecated parameter 'utf8' [ 436.050692][ T7062] exfat: Deprecated parameter 'namecase' [ 436.212253][ T7062] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x16b5df41, utbl_chksum : 0xe619d30d) [ 437.834506][ T29] audit: type=1800 audit(1717446151.295:111): pid=7072 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1956 res=0 errno=0 [ 438.014314][ T7071] loop4: detected capacity change from 0 to 2048 [ 438.216792][ T7071] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 438.235064][ T7075] loop3: detected capacity change from 0 to 256 [ 438.454280][ T7075] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 438.600198][ T5086] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 438.736967][ T7081] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'. [ 439.753937][ T7094] loop1: detected capacity change from 0 to 2048 [ 439.949309][ T7101] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 440.317927][ T29] audit: type=1800 audit(1717446153.745:112): pid=7105 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1953 res=0 errno=0 [ 440.770227][ T7109] loop4: detected capacity change from 0 to 2048 [ 440.906568][ T7109] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 441.185574][ T7121] loop0: detected capacity change from 0 to 1024 [ 441.423489][ T5086] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 441.695146][ T59] hfsplus: b-tree write err: -5, ino 4 [ 442.959237][ T4434] Bluetooth: hci4: ACL packet for unknown connection handle 200 [ 443.315069][ T7142] loop0: detected capacity change from 0 to 64 [ 443.757925][ T7146] loop2: detected capacity change from 0 to 2048 [ 443.864618][ T7146] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 444.050123][ T7153] loop4: detected capacity change from 0 to 256 [ 444.111681][ T7153] exfat: Deprecated parameter 'namecase' [ 444.118431][ T7153] exfat: Deprecated parameter 'namecase' [ 444.124494][ T7153] exfat: Deprecated parameter 'namecase' [ 444.215113][ T7153] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 444.218950][ T7157] loop1: detected capacity change from 0 to 1024 [ 444.360856][ T5090] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 444.803442][ T4224] hfsplus: b-tree write err: -5, ino 4 [ 445.901567][ T7180] loop1: detected capacity change from 0 to 64 [ 447.052225][ T7196] loop0: detected capacity change from 0 to 1024 [ 447.076659][ T7188] loop3: detected capacity change from 0 to 2048 [ 447.269949][ T7188] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 447.372015][ T4339] hfsplus: b-tree write err: -5, ino 4 [ 447.656582][ T5084] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 448.543549][ T7222] loop0: detected capacity change from 0 to 64 [ 449.540487][ T7233] pim6reg1: entered promiscuous mode [ 449.551912][ T7233] pim6reg1: entered allmulticast mode [ 450.099934][ T7236] loop0: detected capacity change from 0 to 2048 [ 450.338334][ T7236] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 450.704040][ T7254] loop1: detected capacity change from 0 to 64 [ 450.811959][ T5078] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 453.000337][ T7283] loop3: detected capacity change from 0 to 2048 [ 453.005279][ T7291] loop0: detected capacity change from 0 to 64 [ 453.189129][ T7283] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 453.486053][ T5084] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 455.883161][ T7327] loop3: detected capacity change from 0 to 2048 [ 455.923843][ T7316] fscrypt (sda1, inode 1944): Missing crypto API support for Adiantum (API name: "adiantum(xchacha12,aes)") [ 456.242082][ T7327] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 456.318166][ T7340] loop2: detected capacity change from 0 to 64 [ 456.411889][ T7327] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1216: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 456.783682][ T5084] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 459.111701][ T7360] fscrypt (sda1, inode 1939): Missing crypto API support for Adiantum (API name: "adiantum(xchacha12,aes)") [ 459.128048][ T7383] loop3: detected capacity change from 0 to 64 [ 459.432939][ T29] audit: type=1800 audit(1717446172.835:113): pid=7383 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="loop3" ino=8 res=0 errno=0 [ 460.121137][ T7396] loop1: detected capacity change from 0 to 512 [ 460.263069][ T7396] EXT4-fs error (device loop1): ext4_orphan_get:1394: inode #15: comm syz-executor.1: casefold flag without casefold feature [ 460.377938][ T7396] EXT4-fs error (device loop1): ext4_orphan_get:1399: comm syz-executor.1: couldn't read orphan inode 15 (err -117) [ 460.478587][ T7396] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 460.761021][ T5075] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 465.444268][ T7486] loop3: detected capacity change from 0 to 2048 [ 465.566740][ T7486] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 466.080148][ T5084] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 466.757410][ C1] hrtimer: interrupt took 356840 ns [ 468.243807][ T7530] loop2: detected capacity change from 0 to 2048 [ 468.368728][ T7530] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 468.636415][ T5090] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 470.001244][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 470.008368][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 470.795281][ T7570] loop0: detected capacity change from 0 to 2048 [ 470.909827][ T7570] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 471.469467][ T5078] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 473.277308][ T7612] loop0: detected capacity change from 0 to 2048 [ 473.541945][ T7612] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 473.764071][ T5078] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 474.439400][ T4339] ===================================================== [ 474.446724][ T4339] BUG: KMSAN: uninit-value in sock_hash_delete_elem+0x239/0x710 [ 474.454727][ T4339] sock_hash_delete_elem+0x239/0x710 [ 474.460393][ T4339] bpf_map_delete_elem+0x5c/0x80 [ 474.465553][ T4339] ___bpf_prog_run+0x13fe/0xe0f0 [ 474.470900][ T4339] __bpf_prog_run32+0xb2/0xe0 [ 474.475778][ T4339] bpf_trace_run2+0x116/0x300 [ 474.480708][ T4339] __bpf_trace_kfree+0x29/0x40 [ 474.485766][ T4339] kfree+0x69e/0xa60 [ 474.489950][ T4339] ieee80211_inform_bss+0x138d/0x1460 [ 474.495616][ T4339] cfg80211_inform_single_bss_data+0x1c40/0x3100 [ 474.502636][ T4339] cfg80211_inform_bss_data+0x2c8/0x8930 [ 474.508597][ T4339] cfg80211_inform_bss_frame_data+0x739/0x9e0 [ 474.514999][ T4339] ieee80211_bss_info_update+0x900/0xad0 [ 474.520955][ T4339] ieee80211_ibss_rx_queued_mgmt+0x2f3b/0x3de0 [ 474.527463][ T4339] ieee80211_iface_work+0x1028/0x18e0 [ 474.533151][ T4339] cfg80211_wiphy_work+0x471/0x510 [ 474.538593][ T4339] process_scheduled_works+0xa81/0x1bd0 [ 474.544370][ T4339] worker_thread+0xea5/0x1560 [ 474.549342][ T4339] kthread+0x3e2/0x540 [ 474.553624][ T4339] ret_from_fork+0x6d/0x90 [ 474.558365][ T4339] ret_from_fork_asm+0x1a/0x30 [ 474.563418][ T4339] [ 474.565854][ T4339] Local variable stack created at: [ 474.571155][ T4339] __bpf_prog_run32+0x43/0xe0 [ 474.576209][ T4339] bpf_trace_run2+0x116/0x300 [ 474.581151][ T4339] [ 474.583591][ T4339] CPU: 1 PID: 4339 Comm: kworker/u8:31 Not tainted 6.9.0-syzkaller-02339-g101b7a97143a #0 [ 474.593845][ T4339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 474.604137][ T4339] Workqueue: events_unbound cfg80211_wiphy_work [ 474.610703][ T4339] ===================================================== [ 474.617822][ T4339] Disabling lock debugging due to kernel taint [ 474.624100][ T4339] Kernel panic - not syncing: kmsan.panic set ... [ 474.630630][ T4339] CPU: 1 PID: 4339 Comm: kworker/u8:31 Tainted: G B 6.9.0-syzkaller-02339-g101b7a97143a #0 [ 474.642263][ T4339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 474.652647][ T4339] Workqueue: events_unbound cfg80211_wiphy_work [ 474.659077][ T4339] Call Trace: [ 474.662452][ T4339] [ 474.665493][ T4339] dump_stack_lvl+0x216/0x2d0 [ 474.670365][ T4339] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 474.676438][ T4339] dump_stack+0x1e/0x30 [ 474.680783][ T4339] panic+0x4e2/0xcd0 [ 474.684877][ T4339] ? kmsan_get_metadata+0xf1/0x1d0 [ 474.690188][ T4339] kmsan_report+0x2d5/0x2e0 [ 474.694869][ T4339] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 474.700839][ T4339] ? __msan_warning+0x95/0x120 [ 474.705747][ T4339] ? sock_hash_delete_elem+0x239/0x710 [ 474.711389][ T4339] ? bpf_map_delete_elem+0x5c/0x80 [ 474.716683][ T4339] ? ___bpf_prog_run+0x13fe/0xe0f0 [ 474.721978][ T4339] ? __bpf_prog_run32+0xb2/0xe0 [ 474.727063][ T4339] ? bpf_trace_run2+0x116/0x300 [ 474.732059][ T4339] ? __bpf_trace_kfree+0x29/0x40 [ 474.737147][ T4339] ? kfree+0x69e/0xa60 [ 474.741345][ T4339] ? ieee80211_inform_bss+0x138d/0x1460 [ 474.747161][ T4339] ? cfg80211_inform_single_bss_data+0x1c40/0x3100 [ 474.753845][ T4339] ? cfg80211_inform_bss_data+0x2c8/0x8930 [ 474.759831][ T4339] ? cfg80211_inform_bss_frame_data+0x739/0x9e0 [ 474.766278][ T4339] ? ieee80211_bss_info_update+0x900/0xad0 [ 474.772298][ T4339] ? ieee80211_ibss_rx_queued_mgmt+0x2f3b/0x3de0 [ 474.778848][ T4339] ? ieee80211_iface_work+0x1028/0x18e0 [ 474.784579][ T4339] ? cfg80211_wiphy_work+0x471/0x510 [ 474.790014][ T4339] ? process_scheduled_works+0xa81/0x1bd0 [ 474.795893][ T4339] ? worker_thread+0xea5/0x1560 [ 474.800920][ T4339] ? kthread+0x3e2/0x540 [ 474.805320][ T4339] ? ret_from_fork+0x6d/0x90 [ 474.810050][ T4339] ? ret_from_fork_asm+0x1a/0x30 [ 474.815161][ T4339] ? kmsan_metadata_is_contiguous+0x66/0x1e0 [ 474.821335][ T4339] ? kmsan_internal_set_shadow_origin+0x66/0xe0 [ 474.827766][ T4339] ? kmsan_get_metadata+0x146/0x1d0 [ 474.833110][ T4339] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 474.839079][ T4339] ? _raw_spin_unlock_irqrestore+0x3f/0x60 [ 474.845048][ T4339] ? kmsan_get_metadata+0x146/0x1d0 [ 474.850575][ T4339] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 474.856643][ T4339] ? kmsan_get_metadata+0x146/0x1d0 [ 474.861989][ T4339] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 474.867952][ T4339] __msan_warning+0x95/0x120 [ 474.872730][ T4339] sock_hash_delete_elem+0x239/0x710 [ 474.878291][ T4339] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 474.884435][ T4339] ? __pfx_sock_hash_delete_elem+0x10/0x10 [ 474.890439][ T4339] bpf_map_delete_elem+0x5c/0x80 [ 474.895762][ T4339] ___bpf_prog_run+0x13fe/0xe0f0 [ 474.900904][ T4339] ? kmsan_get_metadata+0x146/0x1d0 [ 474.906300][ T4339] __bpf_prog_run32+0xb2/0xe0 [ 474.911163][ T4339] ? __pfx___bpf_prog_run32+0x10/0x10 [ 474.916750][ T4339] bpf_trace_run2+0x116/0x300 [ 474.921606][ T4339] ? ieee80211_inform_bss+0x138d/0x1460 [ 474.927560][ T4339] ? kmsan_get_metadata+0x146/0x1d0 [ 474.932950][ T4339] ? ieee80211_inform_bss+0x138d/0x1460 [ 474.938695][ T4339] __bpf_trace_kfree+0x29/0x40 [ 474.943627][ T4339] kfree+0x69e/0xa60 [ 474.947709][ T4339] ? kmsan_get_metadata+0x146/0x1d0 [ 474.953151][ T4339] ? ieee80211_inform_bss+0x138d/0x1460 [ 474.958895][ T4339] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 474.964876][ T4339] ieee80211_inform_bss+0x138d/0x1460 [ 474.970462][ T4339] ? __pfx_ieee80211_inform_bss+0x10/0x10 [ 474.976392][ T4339] cfg80211_inform_single_bss_data+0x1c40/0x3100 [ 474.982937][ T4339] ? filter_irq_stacks+0x60/0x1a0 [ 474.988180][ T4339] cfg80211_inform_bss_data+0x2c8/0x8930 [ 474.994020][ T4339] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 474.999984][ T4339] ? kmsan_get_metadata+0x146/0x1d0 [ 475.005347][ T4339] ? kmsan_get_metadata+0x146/0x1d0 [ 475.010711][ T4339] ? kmsan_get_metadata+0x146/0x1d0 [ 475.016063][ T4339] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 475.022031][ T4339] ? ieee802_11_parse_elems_full+0x1a6f/0x46b0 [ 475.028393][ T4339] ? filter_irq_stacks+0x60/0x1a0 [ 475.033642][ T4339] ? stack_depot_save_flags+0x2c/0x6e0 [ 475.039357][ T4339] ? kmsan_get_metadata+0x146/0x1d0 [ 475.044718][ T4339] ? cfg80211_defragment_element+0x111/0x520 [ 475.050884][ T4339] ? kmsan_get_metadata+0x146/0x1d0 [ 475.056257][ T4339] ? kmsan_get_metadata+0x146/0x1d0 [ 475.061653][ T4339] ? ieee80211_bss_info_update+0x16e/0xad0 [ 475.067760][ T4339] cfg80211_inform_bss_frame_data+0x739/0x9e0 [ 475.074061][ T4339] ? kmsan_report+0x2a0/0x2e0 [ 475.078888][ T4339] ? kmsan_internal_check_memory+0x4a4/0x560 [ 475.085082][ T4339] ieee80211_bss_info_update+0x900/0xad0 [ 475.090905][ T4339] ? kmsan_get_metadata+0xf1/0x1d0 [ 475.096180][ T4339] ieee80211_ibss_rx_queued_mgmt+0x2f3b/0x3de0 [ 475.102537][ T4339] ? kmsan_get_metadata+0x146/0x1d0 [ 475.107927][ T4339] ieee80211_iface_work+0x1028/0x18e0 [ 475.113500][ T4339] ? __pfx_ieee80211_iface_work+0x10/0x10 [ 475.119505][ T4339] cfg80211_wiphy_work+0x471/0x510 [ 475.124779][ T4339] ? __pfx_cfg80211_wiphy_work+0x10/0x10 [ 475.130567][ T4339] process_scheduled_works+0xa81/0x1bd0 [ 475.136400][ T4339] worker_thread+0xea5/0x1560 [ 475.141254][ T4339] kthread+0x3e2/0x540 [ 475.145500][ T4339] ? __pfx_worker_thread+0x10/0x10 [ 475.150779][ T4339] ? __pfx_kthread+0x10/0x10 [ 475.155534][ T4339] ret_from_fork+0x6d/0x90 [ 475.160096][ T4339] ? __pfx_kthread+0x10/0x10 [ 475.164853][ T4339] ret_from_fork_asm+0x1a/0x30 [ 475.169803][ T4339] [ 476.635249][ T4339] Shutting down cpus with NMI [ 476.640390][ T4339] Kernel Offset: disabled [ 476.644820][ T4339] Rebooting in 86400 seconds..