last executing test programs: 8.223265299s ago: executing program 0 (id=168): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) close(r0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r1, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00', 0x1, 0xa6, &(0x7f00000003c0)=""/166}, 0x80) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=@base={0x12, 0x1, 0x8, 0xb}, 0x50) bpf$BPF_PROG_DETACH(0x8, &(0x7f00000001c0)={@map=r3, r2, 0x7}, 0x10) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r3, &(0x7f0000000240), &(0x7f00000004c0)=@tcp6=r1}, 0x20) sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[], 0x14}}, 0x0) syz_emit_ethernet(0x46, 0x0, 0x0) sendmsg$SOCK_DESTROY(r0, &(0x7f0000001100)={0x0, 0x0, &(0x7f00000010c0)={&(0x7f0000002440)={0x14}, 0xc3ec}}, 0x0) 8.120802373s ago: executing program 0 (id=172): syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000000180)='./file1\x00', 0x8000, &(0x7f00000007c0)=ANY=[@ANYRES64=0x0, @ANYBLOB="6d0f43b69e36884d0d57b3c631e82662f8cdfb382d7a8b76551b2a06b00a60482102e266b6013b612d7e97a8ce821c746acc5ad4debd2ea9e8b6ee1418f09312abdafee862a935342dbc7bcf24932a5857d5c468e3c504241affed101dbd0c3708935c9245362a3ec266af7d6ff1b92dc5c8eb36ceb947cc66900d42288311645c63dbdd29bd79ec78c8758d643779b5df2d085ecc8674dbe7f059fca8314047", @ANYBLOB="f514768a835ab39aac9407eea6c6b43a35f12323a76e5d79f10b2d4d3dcf3088398a0aaf35ba658295546c3b9aede5af1a1519020a023398243505d6aea5e2335d2a41d5b22fa83e", @ANYRES16], 0x1, 0x14fe, &(0x7f0000001580)="$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") r0 = open(&(0x7f0000000100)='./file1\x00', 0x147842, 0x88) preadv2(r0, &(0x7f0000000040)=[{&(0x7f0000001200)=""/4096, 0xfffffdef}], 0x1, 0x0, 0x0, 0x7) 8.055862034s ago: executing program 0 (id=176): bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800000}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000180)=r0, 0x4) sendmsg$inet(r2, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x20000000) 7.712523175s ago: executing program 0 (id=182): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x1c917, &(0x7f0000000140)={[{}, {@noblock_validity}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x2}}, {@barrier_val}, {@nogrpid}, {@resgid={'resgid', 0x3d, 0xee01}}, {@noinit_itable}, {@noinit_itable}, {@journal_dev={'journal_dev', 0x3d, 0x7}, 0x32}]}, 0x9b, 0x4f2, &(0x7f0000000a40)="$eJzs3V1rHNcZAOB3Rlp/ypVMe+Ea6praRXJb70pWbYteuB+U9srQ1r2urUorIbTSCu3KtoRpZfoDCqW0hUKhV7kJ5AcEgn9CCBiS+5CEhJDYyYUvEm/YL3/Iu5KMV1qhfR4YzTlnZvSed5ed3TMzzATQs05HxJmIeFypVM5FxGCjPW1MP6pW1uvrPXxwZ6o6JVGpXPssiUjqbdVVRp75n0frm8ShiPjDbyP+nLwYt7S6Nj9ZKOSXG/VceWEpV1pdOz+3MDmbn80vjo+PXZq4PHFxYrQjeQ5ExJVff/Svv7/2mytv/eTW+9c/GflL0miPeJpHp9VTz9Rei6b+iFjeiWBd0NfIJ9NsaPFeAwCwdzR/5/8gIs7FYPTVfs0BAAAA+0nl5wPxVRJRAQAAAPattHYNbJJmG9cBDESaZrP1a3i/E0fSQrFU/vFMcWVxun6t7FBk0pm5Qn60ca3wUGSSan2sVn5av7ChPh4RxyPin4OHa/XsVLEw3e2DHwAAANAjjm4Y/385WB//AwAAAPvMULc7AAAAAOw4438AAADY/4z/AQAAYF/73dWr1anSfP719M3VlfnizfPT+dJ8dmFlKjtVXF7KzhaLs7V79i1s9f8KxeLST2Nx5XaunC+Vc6XVtesLxZXF8vW55x6BDQAAAOyi49+/914SEes/O1ybqg50u1PAruh/mZU/3Ll+ALuvr9sdALrmpb7/gX0l0+0OAF2XRMT/Nlne9uKdt3emPwAAQOcNf7f1+f9ky2MD6+kudRHYIY7/Qe9y/h96l/P/0Lsy0RcG8tDbki2Wv/r5/0rlpToEAAB03EBtStJsRO04wECkaTYbcaz2WIBMMjNXyI9GxLci4t3BzMFqfay2ZbLlmAEAAAAAAAAAAAAAAAAAAAAAAAAAqKtUkqgAAAAA+1pE+nHSeP7X8ODZgY3HBw4kjwZr84i49d9r/749WS4vj1XbP3/SXv5Po/1CN45gAAAAABs1x+nNcTwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdNLDB3emmtNuxv30lxEx1Cp+fxyqzQ9FJiKOfJFE/zPbJRHR14H463cj4ld/ahE/qXYrhhq9aBX/cKfin2iV/+bx04g42oH40MvuVfc/v2j1+UvjdG2+8fN38Mm2/R2I337/lz7Z//W12f8c22aMk/ffyLWNfzfiZH/r/U8zftIm/pltxr/xx7W1dssq/48Ybvn9kzwXK1deWMqVVtfOzy1MzuZn84vj42OXJi5PXJwYzc3MFfKNvy1j/ON7bz7eLP8jbeIPbZH/2W3m//X92w++XS9mWsUfOdP6/T/RJn7a+O77YaNcXT7cLK/Xy8869fo7pzbLf7pN/lu9/yPbzP/c7//2wTZXBQB2QWl1bX6yUMgv93ThlV6N6s+iPZGFwlaFSmPw1mz5617p2B4sND8Tj7qzYwIAADruxTHwdtzYuQ4BAAAAAAAAAAAAAAAAAABAD+rMPcOa98Te/O56Tev12Qv3QgYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6KZvAgAA//9F0tDB") bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000800)={0xffffffffffffffff, 0x0, 0x25, 0x18, @void}, 0x10) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0) mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0) mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1887008, 0x0) r0 = syz_pidfd_open(0x0, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) r1 = pidfd_getfd(r0, r0, 0x0) setns(r1, 0x66020000) mount$9p_fd(0x0, &(0x7f0000000980)='.\x00', 0x0, 0x104000, 0x0) syz_clone(0x498144ee5f62e149, 0x0, 0x17, 0x0, 0x0, 0x0) umount2(&(0x7f0000000040)='.\x00', 0x2) 7.579883949s ago: executing program 0 (id=186): syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f0000000000)='.\x02\x00', 0x8c48, &(0x7f0000000240)=ANY=[@ANYBLOB='nojoliet,mode=0x00000000000000e4,dmode=0x0000000000000005,check=relaxed,overriderockperm,utf8,mode=0x0000000000000000,nojoliet,cruft,mode=0xfffffffffffffffb,utf8,session=0x0000000000000043,hide,dmode=0x000000000000001f,uid=', @ANYRESDEC, @ANYBLOB="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"], 0x1, 0x5ae, &(0x7f00000004c0)="$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") lsetxattr$trusted_overlay_redirect(&(0x7f0000000080)='.\x02\x00', 0x0, 0x0, 0x0, 0x2) 7.220683585s ago: executing program 0 (id=197): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) madvise(&(0x7f0000396000/0x4000)=nil, 0x4000, 0x17) 7.186609678s ago: executing program 32 (id=197): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) madvise(&(0x7f0000396000/0x4000)=nil, 0x4000, 0x17) 2.400710041s ago: executing program 1 (id=307): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./bus\x00', 0x2, &(0x7f00000009c0)={[{@errors_remount}, {@grpquota}]}, 0x2, 0x517, &(0x7f0000000140)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x8004587d, &(0x7f0000000080)={@desc={0x1, 0x0, @desc2}}) fanotify_init(0x20, 0x800) fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffffb) 1.740444427s ago: executing program 3 (id=309): r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0) ioctl$VHOST_GET_VRING_BASE(r0, 0xc008af12, &(0x7f0000000880)) 1.652758593s ago: executing program 1 (id=310): r0 = syz_clone(0x485000, 0x0, 0x0, 0x0, 0x0, 0x0) syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x56a, 0x315, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0xc0, 0x5, [{{0x9, 0x4, 0x0, 0x0, 0x81, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x28, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x200, 0x9, 0xa, 0x11}}}}}]}}]}}, 0x0) syz_open_procfs(r0, &(0x7f00000000c0)='net/netlink\x00') capset(&(0x7f0000000080)={0x20080522}, &(0x7f0000000040)={0x200000, 0x208000}) write$cgroup_pressure(0xffffffffffffffff, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0xa, 0x4, 0x4, 0xa, 0x40, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xfffc}, 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) 1.65246675s ago: executing program 3 (id=311): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x802, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100)) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0}) r2 = dup3(r1, r0, 0x0) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000300)={@flat=@weak_binder={0x77622a85, 0x100a, 0x1}, @flat=@weak_binder={0x77622a85, 0x1100, 0x3}, @flat=@binder={0x73622a85, 0xa}}, &(0x7f0000000200)={0x0, 0x4, 0x30}}, 0x1000}], 0x0, 0x0, 0x0}) 1.564697694s ago: executing program 3 (id=314): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=@newnexthop={0x18, 0x68, 0x1, 0x2, 0x7ffffffc}, 0x18}, 0x1, 0x0, 0x0, 0x24008000}, 0x4000) r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x56a, 0xe3, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x3, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x2, 0x8, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x6, 0xa, 0x7}}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0x2d, {[@local=@item_012={0x0, 0x2, 0x2}, @main=@item_012={0x2, 0x0, 0x8, "e9ff"}, @main=@item_012={0x1, 0x0, 0xb, '@'}]}}, 0x0}, 0x0) 1.444614531s ago: executing program 5 (id=320): r0 = syz_open_dev$loop(&(0x7f0000000040), 0x7fff, 0x101000) ioctl$BLKALIGNOFF(r0, 0x127a, &(0x7f0000000080)) 1.444425465s ago: executing program 5 (id=321): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) epoll_create1(0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r2}, 0x10) close_range(r1, 0xffffffffffffffff, 0x0) 1.444311909s ago: executing program 5 (id=322): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)={0x6c, 0x0, 0x1, 0x401, 0x0, 0x1a14, {0x2, 0x0, 0x4}, [@CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x1}, @CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_NAT_SRC={0x8, 0x6, 0x0, 0x1, [@CTA_NAT_PROTO={0x4}]}]}, 0x6c}}, 0x0) 1.443678047s ago: executing program 5 (id=323): io_setup(0x2, 0x0) syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x1a00048, &(0x7f0000000340), 0x1, 0x597, &(0x7f0000001140)="$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") r0 = open(&(0x7f0000000040)='.\x00', 0x0, 0x28) ioctl$EXT4_IOC_GROUP_ADD(r0, 0xc0185879, &(0x7f0000000680)={0x40008, 0x8, 0x7ffe, 0x800000000000004, 0xd95, 0xfffe, 0x2401}) 1.441259402s ago: executing program 2 (id=324): sched_setscheduler(0x0, 0x1, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) unshare(0x2040400) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xb, 0xff, 0x5, 0x7f, 0x1, 0x1}, 0x50) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000340)={{r1}, &(0x7f0000000780)=0x7d8, &(0x7f0000000180)='%pK \x00'}, 0x20) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000440)={{r1, 0xffffffffffffffff}, &(0x7f0000000100)=0x7d8, &(0x7f0000000140)='%pi6 \x00'}, 0x20) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000480)={0x0, &(0x7f0000000200)=""/197, &(0x7f0000000380), &(0x7f0000000300), 0x2, r2}, 0x38) 1.380334003s ago: executing program 5 (id=325): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = socket$inet6_udp(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000000500)={0xa, 0x4e20, 0xffffffff, @loopback, 0x4}, 0x1c) connect$netlink(r0, &(0x7f00000000c0)=@unspec, 0xc) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000001a300)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r4, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) write(r4, &(0x7f0000000340)="07000000010040", 0x7) 1.288805563s ago: executing program 2 (id=326): syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x1000c1f, &(0x7f0000000180)={[{@norecovery}, {@nouid32}, {@acl}, {@errors_continue}]}, 0x8, 0x5cd, &(0x7f0000001400)="$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") open(&(0x7f0000000100)='./file2\x00', 0x147842, 0x9c) 1.279787492s ago: executing program 2 (id=327): r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002000), 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000000100), &(0x7f0000000040)='./file0\x00', 0x48, &(0x7f0000000600)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@default_permissions}]}}, 0x0, 0x0, 0x0) 1.26635117s ago: executing program 2 (id=328): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x88a, &(0x7f0000000000)={[{@errors_remount}, {@usrjquota, 0x22}, {@errors_continue}, {@noload}, {@data_err_ignore}, {@grpjquota, 0x22}, {@grpquota}, {@jqfmt_vfsold}, {@noblock_validity}]}, 0xfe, 0x45a, &(0x7f0000000d80)="$eJzs3L1vG2UYAPDHduz0k4RSPlpaCBRExUfSpB90YCkCiQEkJBiKmEKSVqVug5og0aqCwhBGVIkdMSLxF7BQFgRMSKywI6QIZaEwIKOz71InsZM4duJQ/37S1e/re6/v+9zdaz++sxNAzxpK/slF7ImIXyNioFZd2mCo9nB74frE3wvXJ3JRqbzxZ67a7q+F6xNZ02y73bVKpbJKv3NvR4yXy1NX0vrI7KX3RmauXnvuwqXx81Pnpy6PnT594vjh0qmxk+0F2F972JuM9eCH04cOvPLWzdcmzt5858evk/HuSZvVx9EpQ7W929CTne6sy/bWlXN9XRwILSlERHK4itX5PxCF2Lm4biBe/qSrgwM2VaWSr/zbfPWNCnAXSxL1tZWqrxXA3SR7o08+/2bLFqUe28L8mVi8jnE7XWpr+iKftimmn5E2w1BEnL3xzxfJEpt0HQIAoN6tMxHxbKP8Lx8P1LW7J703NBgR90bEvoi4LyL2R8T9EdW2D0bEQy32v/wOycr8pzKwocDWKcn/XkjvbS3N/7LsLwYLaW1vNf5i7tyF8tSxdJ8cjWJ/Uh9dpY/vXvrls2br6vO/ZEn6z3LBdBx/9PUv3WZyfHa8nZjrzX8ccbCvUfy5xZw3yY8PRMTBDfZx4emvDjVbt3b8q+hAUl75MuKp2vG/Ecviz+Sa3p8cff7U2MmRHVGeOjaSnRUr/fTz3OvN+m8r/g6Yv1WJXQ3P/8X4B3M7ImauXrtYvV8703ofc7992vQzzUbP/1LuzWq5lD73wfjs7JXRiFLu1ZXPj93ZNqtn7ZPz/+iRxvN/X9zZEw9HRHISH46IRyLi0XTsj0XE4xFxZJX4f3jxiXdbj79/lf+xc5L4J9c6/lF//FsvFC5+/03r8WeS43+iWjqaPrOe17/1DrCdfQcAAAD/F/nqd+Bz+eHFcj4/PFz7Dv/+2JUvT8/MPnNu+v3Lk7Xvyg9GMZ9d6Rqoux46ml4bzupjy+rH0+vGnxd2VuvDE9PlyW4HDz1ud5P5n/i90O3RAZvO77Wgd5n/0LvMf+hd5j/0LvMfelej+f9RF8YBbL013v93btU4gK0n/4feZf5D7zL/oSc1/W18vq2f/Ct0qfBtqb2/1bD+QuQ3uvmO9NzbHnts+xSK0XBV32bvqP6Gq7r8wgQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANAh/wUAAP//hQ/crg==") bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x48a, &(0x7f0000000000)={[{@jqfmt_vfsold}, {@usrjquota, 0x22}, {@errors_continue}, {@noload}, {@data_err_ignore}, {@usrjquota, 0x22}, {@errors_continue}, {@errors_remount}, {@noblock_validity}]}, 0x1, 0x44e, &(0x7f0000000900)="$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") mount(0x0, &(0x7f0000000240)='.\x00', 0x0, 0x2200020, &(0x7f0000000000)) 968.645841ms ago: executing program 1 (id=329): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) r1 = syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3) r2 = fcntl$dupfd(r1, 0x406, r0) getsockopt$bt_BT_RCVMTU(r2, 0x112, 0xd, 0x0, &(0x7f0000000000)=0x30) 968.221562ms ago: executing program 2 (id=331): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000080)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0xf, {[@global=@item_012={0x2, 0x1, 0x4, "1221"}, @local=@item_4={0x3, 0x2, 0x0, "93bf0280"}, @main=@item_012={0x1, 0x0, 0xb, '\x00'}, @global=@item_4={0x3, 0x1, 0x5, "3d83d39b"}]}}, 0x0}, 0x0) 968.143028ms ago: executing program 1 (id=332): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_GET_NODE_INFO_FOR_REF(r0, 0xc018620c, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x2000000}) 952.191861ms ago: executing program 1 (id=334): syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f00000017c0)={[{@noblock_validity}, {@noauto_da_alloc}, {@jqfmt_vfsold}, {@stripe={'stripe', 0x3d, 0x3}}, {@noauto_da_alloc}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x5}}, {@dioread_lock}, {@init_itable}, {@jqfmt_vfsv1}, {@bh}]}, 0xfc, 0x550, &(0x7f0000000340)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x21) r1 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r1, 0x8004587d, &(0x7f0000000040)={@desc={0x1, 0x0, @desc4}}) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000)=0x10) 868.164681ms ago: executing program 3 (id=335): r0 = syz_open_dev$sndpcmp(&(0x7f0000000000), 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_FORWARD(r0, 0x40084149, &(0x7f0000000180)=0x4) 867.804628ms ago: executing program 1 (id=337): r0 = open(&(0x7f0000000000)='./file0\x00', 0x8060, 0x1a0) flock(r0, 0x2) ioctl$PPPIOCGDEBUG(r0, 0x80047441, 0x0) mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0) socket$nl_route(0x10, 0x3, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x15, 0xe, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000000c0), 0x10}, 0x94) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0xf9dd, 0x132, 0xc000}) syz_usb_connect(0x2, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000009968810524711004f320102030109021b0001000000000904000001ff01320009050d", @ANYRES16], 0x0) 867.686067ms ago: executing program 3 (id=338): setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, 0x0, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x1e, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) gettid() r3 = socket$inet6_udp(0xa, 0x2, 0x0) r4 = socket(0x10, 0x3, 0x0) write(r4, &(0x7f0000000100)="1400000052004f7fb3e45f2024d2f1c9fb470000", 0x14) recvmmsg(r4, &(0x7f0000005c80), 0x1b, 0x10122, 0x0) sigaltstack(&(0x7f0000000000)={0xffffffffffffffff}, 0x0) sigaltstack(0x0, &(0x7f00000003c0)={0x0}) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, 0x0, 0x0) 470.996628ms ago: executing program 5 (id=343): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) socket$inet_udplite(0x2, 0x2, 0x88) prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_mreq(r4, 0x29, 0x1b, &(0x7f0000000480)={@dev={0xfe, 0x80, '\x00', 0xfd}}, 0x14) 332.807184ms ago: executing program 4 (id=345): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x1000c40, &(0x7f00000002c0), 0x5, 0x51c, &(0x7f0000000700)="$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") open(&(0x7f0000000780)='./bus\x00', 0x145c7e, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0) r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x14, 0x0, "f7359f413bb93852f7d6a4ae06b0fbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9adfab4af0c0055a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4d66810000000000d300e6d60000000100000100008000", [0x200, 0x40000000000009]}) ioctl$FITRIM(r0, 0xc0185879, 0x0) sendmsg$NLBL_MGMT_C_PROTOCOLS(0xffffffffffffffff, 0x0, 0x4000000) 102.150905ms ago: executing program 4 (id=346): mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) r0 = socket$vsock_stream(0x28, 0x1, 0x0) getsockopt(r0, 0x28, 0x1, 0x0, &(0x7f00000002c0)) 73.127649ms ago: executing program 4 (id=347): r0 = userfaultfd(0x80001) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000)) ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000040)={&(0x7f00006c6000/0x400000)=nil, &(0x7f0000685000/0x4000)=nil, 0x400000, 0x0, 0x18100}) 12.779973ms ago: executing program 4 (id=348): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) ioctl$F2FS_IOC_START_ATOMIC_WRITE(r0, 0x4004556e, 0x0) 12.589673ms ago: executing program 4 (id=349): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000100)={0x2c, r2, 0x1, 0x70bd25, 0x0, {{0x2}, {@val={0x8, 0x3, r1}, @void}}, [@chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x9b4}]]}, 0x2c}, 0x1, 0x0, 0x0, 0x4c855}, 0x4040000) 12.307448ms ago: executing program 4 (id=350): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x94) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) sendmmsg$inet(r4, 0x0, 0x0, 0x4004) connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_GET(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0) r7 = syz_genetlink_get_family_id$wireguard(&(0x7f00000003c0), 0xffffffffffffffff) sendmsg$WG_CMD_SET_DEVICE(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b80)={0x54, r7, 0x1, 0x70bd28, 0x0, {}, [@WGDEVICE_A_PEERS={0x2c, 0x8, 0x0, 0x1, [{0x28, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @neg}]}]}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}]}, 0x54}, 0x1, 0x0, 0x0, 0x4004840}, 0x40000) socket$inet6_udp(0xa, 0x2, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000780)='devpts\x00', 0x0, 0x0) mount$binder(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x28, &(0x7f0000000400)={[{}]}) 9.385938ms ago: executing program 2 (id=351): syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000080)='./file1\x00', 0x80, &(0x7f00000002c0)=ANY=[], 0x81, 0x4ac, &(0x7f00000011c0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000000)={0xffffffffffffff23, 0x17, 0x2, {0x7, './file0'}}, 0xfffffdab) 0s ago: executing program 3 (id=352): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6, 0x0, 0x0, 0x81}, 0x1c) mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, r0, 0x0) r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) process_vm_writev(r1, &(0x7f00000001c0)=[{&(0x7f0000001bc0)=""/156, 0x9c}], 0x1, &(0x7f0000000140)=[{&(0x7f0000000240)=""/115, 0x73}], 0x1, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.82' (ED25519) to the list of known hosts. [ 29.144681][ T6517] cgroup: Unknown subsys name 'net' [ 29.267630][ T6517] cgroup: Unknown subsys name 'cpuset' [ 29.269629][ T6517] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 29.427843][ T6517] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SS [ 30.554194][ T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 30.558844][ T6529] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 30.561047][ T6532] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 30.561655][ T6536] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 30.563608][ T6532] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 30.564344][ T6532] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 30.564551][ T6532] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 30.567804][ T6532] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 30.569878][ T6532] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 30.571646][ T6536] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 30.572347][ T6536] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 30.572627][ T6536] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 30.572762][ T6536] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 30.573070][ T6536] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 30.573254][ T6536] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 30.579427][ T6122] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 30.579801][ T6536] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 30.582897][ T6532] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 30.590475][ T52] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 30.599633][ T52] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 30.606215][ T6529] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 30.611016][ T6540] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 30.612803][ T6540] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 30.614783][ T6540] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 30.618252][ T6540] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 30.704620][ T6538] chnl_net:caif_netlink_parms(): no params data found [ 30.753997][ T6538] bridge0: port 1(bridge_slave_0) entered blocking state [ 30.754235][ T6538] bridge0: port 1(bridge_slave_0) entered disabled state [ 30.754319][ T6538] bridge_slave_0: entered allmulticast mode [ 30.754755][ T6538] bridge_slave_0: entered promiscuous mode [ 30.782704][ T6538] bridge0: port 2(bridge_slave_1) entered blocking state [ 30.782973][ T6538] bridge0: port 2(bridge_slave_1) entered disabled state [ 30.783046][ T6538] bridge_slave_1: entered allmulticast mode [ 30.783560][ T6538] bridge_slave_1: entered promiscuous mode [ 30.812643][ T6538] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 30.819775][ T6534] chnl_net:caif_netlink_parms(): no params data found [ 30.830015][ T6527] chnl_net:caif_netlink_parms(): no params data found [ 30.833422][ T6538] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 30.843400][ T6538] team0: Port device team_slave_0 added [ 30.859257][ T6528] chnl_net:caif_netlink_parms(): no params data found [ 30.861856][ T6531] chnl_net:caif_netlink_parms(): no params data found [ 30.865064][ T6538] team0: Port device team_slave_1 added [ 30.893059][ T6534] bridge0: port 1(bridge_slave_0) entered blocking state [ 30.894342][ T6534] bridge0: port 1(bridge_slave_0) entered disabled state [ 30.895911][ T6534] bridge_slave_0: entered allmulticast mode [ 30.897550][ T6534] bridge_slave_0: entered promiscuous mode [ 30.898605][ T6534] bridge0: port 2(bridge_slave_1) entered blocking state [ 30.898622][ T6534] bridge0: port 2(bridge_slave_1) entered disabled state [ 30.898669][ T6534] bridge_slave_1: entered allmulticast mode [ 30.899063][ T6534] bridge_slave_1: entered promiscuous mode [ 30.904134][ T6538] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 30.905319][ T6538] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 30.906670][ T6538] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 30.930749][ T6538] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 30.930775][ T6538] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 30.930789][ T6538] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 30.961013][ T6534] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 30.962499][ T6534] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 30.966077][ T6531] bridge0: port 1(bridge_slave_0) entered blocking state [ 30.967422][ T6531] bridge0: port 1(bridge_slave_0) entered disabled state [ 30.967510][ T6531] bridge_slave_0: entered allmulticast mode [ 30.967958][ T6531] bridge_slave_0: entered promiscuous mode [ 30.972910][ T6538] hsr_slave_0: entered promiscuous mode [ 30.974248][ T6538] hsr_slave_1: entered promiscuous mode [ 30.988579][ T6531] bridge0: port 2(bridge_slave_1) entered blocking state [ 30.988658][ T6531] bridge0: port 2(bridge_slave_1) entered disabled state [ 30.988708][ T6531] bridge_slave_1: entered allmulticast mode [ 30.989131][ T6531] bridge_slave_1: entered promiscuous mode [ 31.003307][ T6534] team0: Port device team_slave_0 added [ 31.004044][ T6534] team0: Port device team_slave_1 added [ 31.012264][ T6531] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 31.013112][ T6531] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 31.016528][ T6528] bridge0: port 1(bridge_slave_0) entered blocking state [ 31.017715][ T6528] bridge0: port 1(bridge_slave_0) entered disabled state [ 31.019132][ T6528] bridge_slave_0: entered allmulticast mode [ 31.020694][ T6528] bridge_slave_0: entered promiscuous mode [ 31.022431][ T6527] bridge0: port 1(bridge_slave_0) entered blocking state [ 31.022490][ T6527] bridge0: port 1(bridge_slave_0) entered disabled state [ 31.022554][ T6527] bridge_slave_0: entered allmulticast mode [ 31.022968][ T6527] bridge_slave_0: entered promiscuous mode [ 31.023971][ T6527] bridge0: port 2(bridge_slave_1) entered blocking state [ 31.023993][ T6527] bridge0: port 2(bridge_slave_1) entered disabled state [ 31.024042][ T6527] bridge_slave_1: entered allmulticast mode [ 31.024433][ T6527] bridge_slave_1: entered promiscuous mode [ 31.041101][ T6528] bridge0: port 2(bridge_slave_1) entered blocking state [ 31.041172][ T6528] bridge0: port 2(bridge_slave_1) entered disabled state [ 31.041241][ T6528] bridge_slave_1: entered allmulticast mode [ 31.041670][ T6528] bridge_slave_1: entered promiscuous mode [ 31.046032][ T6534] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 31.046056][ T6534] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 31.046068][ T6534] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 31.046908][ T6534] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 31.046917][ T6534] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 31.046933][ T6534] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 31.059582][ T6531] team0: Port device team_slave_0 added [ 31.060419][ T6531] team0: Port device team_slave_1 added [ 31.081673][ T6534] hsr_slave_0: entered promiscuous mode [ 31.081965][ T6534] hsr_slave_1: entered promiscuous mode [ 31.082148][ T6534] debugfs: 'hsr0' already exists in 'hsr' [ 31.082189][ T6534] Cannot create hsr debugfs directory [ 31.086552][ T6527] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 31.087506][ T6527] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 31.094525][ T6528] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 31.095591][ T6528] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 31.101834][ T6531] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 31.101861][ T6531] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 31.101877][ T6531] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 31.103051][ T6531] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 31.103060][ T6531] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 31.103073][ T6531] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 31.123518][ T6527] team0: Port device team_slave_0 added [ 31.133323][ T6527] team0: Port device team_slave_1 added [ 31.137845][ T6528] team0: Port device team_slave_0 added [ 31.141001][ T6528] team0: Port device team_slave_1 added [ 31.152035][ T6527] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 31.153498][ T6527] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 31.156232][ T6527] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 31.172592][ T6527] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 31.172615][ T6527] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 31.172628][ T6527] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 31.174926][ T6528] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 31.174936][ T6528] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 31.174953][ T6528] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 31.175510][ T6528] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 31.175516][ T6528] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 31.175530][ T6528] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 31.182614][ T6531] hsr_slave_0: entered promiscuous mode [ 31.182913][ T6531] hsr_slave_1: entered promiscuous mode [ 31.183124][ T6531] debugfs: 'hsr0' already exists in 'hsr' [ 31.183136][ T6531] Cannot create hsr debugfs directory [ 31.221396][ T6527] hsr_slave_0: entered promiscuous mode [ 31.221717][ T6527] hsr_slave_1: entered promiscuous mode [ 31.221911][ T6527] debugfs: 'hsr0' already exists in 'hsr' [ 31.221920][ T6527] Cannot create hsr debugfs directory [ 31.232028][ T6528] hsr_slave_0: entered promiscuous mode [ 31.234542][ T6528] hsr_slave_1: entered promiscuous mode [ 31.236330][ T6528] debugfs: 'hsr0' already exists in 'hsr' [ 31.237283][ T6528] Cannot create hsr debugfs directory [ 31.323440][ T6538] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 31.331144][ T6538] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 31.339287][ T6538] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 31.341549][ T6538] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 31.357889][ T6538] bridge0: port 2(bridge_slave_1) entered blocking state [ 31.357956][ T6538] bridge0: port 2(bridge_slave_1) entered forwarding state [ 31.358120][ T6538] bridge0: port 1(bridge_slave_0) entered blocking state [ 31.358150][ T6538] bridge0: port 1(bridge_slave_0) entered forwarding state [ 31.364105][ T6531] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 31.365354][ T6531] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 31.370350][ T6531] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 31.372605][ T6531] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 31.395981][ T6534] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 31.404537][ T6531] bridge0: port 2(bridge_slave_1) entered blocking state [ 31.404586][ T6531] bridge0: port 2(bridge_slave_1) entered forwarding state [ 31.404661][ T6531] bridge0: port 1(bridge_slave_0) entered blocking state [ 31.404690][ T6531] bridge0: port 1(bridge_slave_0) entered forwarding state [ 31.405754][ T6534] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 31.409470][ T6534] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 31.415268][ T6534] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 31.434790][ T6538] 8021q: adding VLAN 0 to HW filter on device bond0 [ 31.444815][ T6534] bridge0: port 2(bridge_slave_1) entered blocking state [ 31.444865][ T6534] bridge0: port 2(bridge_slave_1) entered forwarding state [ 31.444944][ T6534] bridge0: port 1(bridge_slave_0) entered blocking state [ 31.444976][ T6534] bridge0: port 1(bridge_slave_0) entered forwarding state [ 31.451260][ T6527] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 31.453769][ T6527] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 31.461986][ T520] bridge0: port 1(bridge_slave_0) entered disabled state [ 31.463347][ T520] bridge0: port 2(bridge_slave_1) entered disabled state [ 31.467287][ T520] bridge0: port 1(bridge_slave_0) entered disabled state [ 31.468841][ T520] bridge0: port 2(bridge_slave_1) entered disabled state [ 31.470933][ T520] bridge0: port 1(bridge_slave_0) entered disabled state [ 31.472625][ T520] bridge0: port 2(bridge_slave_1) entered disabled state [ 31.485340][ T6527] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 31.487853][ T6527] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 31.500518][ T6538] 8021q: adding VLAN 0 to HW filter on device team0 [ 31.504667][ T42] bridge0: port 1(bridge_slave_0) entered blocking state [ 31.504717][ T42] bridge0: port 1(bridge_slave_0) entered forwarding state [ 31.521209][ T41] bridge0: port 2(bridge_slave_1) entered blocking state [ 31.521254][ T41] bridge0: port 2(bridge_slave_1) entered forwarding state [ 31.534132][ T6528] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 31.537109][ T6528] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 31.539748][ T6528] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 31.542813][ T6531] 8021q: adding VLAN 0 to HW filter on device bond0 [ 31.545782][ T6531] 8021q: adding VLAN 0 to HW filter on device team0 [ 31.555330][ T6538] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 31.556846][ T6538] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 31.559442][ T6528] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 31.584017][ T41] bridge0: port 1(bridge_slave_0) entered blocking state [ 31.584099][ T41] bridge0: port 1(bridge_slave_0) entered forwarding state [ 31.584441][ T41] bridge0: port 2(bridge_slave_1) entered blocking state [ 31.584461][ T41] bridge0: port 2(bridge_slave_1) entered forwarding state [ 31.611098][ T6527] 8021q: adding VLAN 0 to HW filter on device bond0 [ 31.615932][ T6527] 8021q: adding VLAN 0 to HW filter on device team0 [ 31.625798][ T520] bridge0: port 1(bridge_slave_0) entered blocking state [ 31.625851][ T520] bridge0: port 1(bridge_slave_0) entered forwarding state [ 31.634250][ T520] bridge0: port 2(bridge_slave_1) entered blocking state [ 31.634307][ T520] bridge0: port 2(bridge_slave_1) entered forwarding state [ 31.637674][ T6534] 8021q: adding VLAN 0 to HW filter on device bond0 [ 31.651428][ T6528] 8021q: adding VLAN 0 to HW filter on device bond0 [ 31.661585][ T6527] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 31.663480][ T6527] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 31.668138][ T6538] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 31.680502][ T6538] veth0_vlan: entered promiscuous mode [ 31.683994][ T6538] veth1_vlan: entered promiscuous mode [ 31.699081][ T6534] 8021q: adding VLAN 0 to HW filter on device team0 [ 31.707728][ T41] bridge0: port 1(bridge_slave_0) entered blocking state [ 31.707781][ T41] bridge0: port 1(bridge_slave_0) entered forwarding state [ 31.708694][ T41] bridge0: port 2(bridge_slave_1) entered blocking state [ 31.708712][ T41] bridge0: port 2(bridge_slave_1) entered forwarding state [ 31.718669][ T6538] veth0_macvtap: entered promiscuous mode [ 31.721037][ T6538] veth1_macvtap: entered promiscuous mode [ 31.724361][ T6528] 8021q: adding VLAN 0 to HW filter on device team0 [ 31.741312][ T6534] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 31.741348][ T6534] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 31.748199][ T6538] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 31.751723][ T520] bridge0: port 1(bridge_slave_0) entered blocking state [ 31.751764][ T520] bridge0: port 1(bridge_slave_0) entered forwarding state [ 31.752856][ T520] bridge0: port 2(bridge_slave_1) entered blocking state [ 31.752879][ T520] bridge0: port 2(bridge_slave_1) entered forwarding state [ 31.762596][ T6528] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 31.762970][ T6528] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 31.766036][ T6538] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 31.781621][ T1927] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 31.782815][ T1927] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 31.782838][ T1927] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 31.782856][ T1927] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 31.787959][ T6531] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 31.798567][ T6531] veth0_vlan: entered promiscuous mode [ 31.801180][ T6531] veth1_vlan: entered promiscuous mode [ 31.835055][ T6527] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 31.838726][ T6531] veth0_macvtap: entered promiscuous mode [ 31.839713][ T6531] veth1_macvtap: entered promiscuous mode [ 31.854842][ T6531] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 31.857764][ T6531] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 31.861579][ T41] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 31.861680][ T41] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 31.861702][ T41] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 31.861722][ T41] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 31.882424][ T6534] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 31.893927][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 31.896832][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 31.920148][ T1367] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 31.920175][ T1367] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 31.922973][ T6528] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 31.949981][ T6534] veth0_vlan: entered promiscuous mode [ 31.950649][ T6527] veth0_vlan: entered promiscuous mode [ 31.953791][ T6527] veth1_vlan: entered promiscuous mode [ 31.960265][ T41] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 31.960298][ T41] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 31.975840][ T6534] veth1_vlan: entered promiscuous mode [ 31.979037][ T6527] veth0_macvtap: entered promiscuous mode [ 31.979978][ T6527] veth1_macvtap: entered promiscuous mode [ 31.980341][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 31.980355][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 31.992249][ T6527] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 31.993186][ T6527] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 31.999563][ T1367] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 31.999616][ T1367] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 31.999639][ T1367] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 31.999657][ T1367] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 32.011321][ T6534] veth0_macvtap: entered promiscuous mode [ 32.012326][ T6534] veth1_macvtap: entered promiscuous mode [ 32.015376][ T6534] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 32.017576][ T6538] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 32.019930][ T6534] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 32.028636][ T41] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 32.029231][ T41] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 32.029731][ T41] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 32.030165][ T41] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 32.080003][ T6640] loop0: detected capacity change from 0 to 512 [ 32.087032][ T6640] vfat: Unknown parameter 'uni_xla' [ 32.104607][ T6640] loop0: detected capacity change from 0 to 512 [ 32.110002][ T6528] veth0_vlan: entered promiscuous mode [ 32.112632][ T6528] veth1_vlan: entered promiscuous mode [ 32.115762][ T6640] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843e028, mo2=0002] [ 32.115839][ T6640] System zones: 1-12 [ 32.151529][ T6528] veth0_macvtap: entered promiscuous mode [ 32.157014][ T6528] veth1_macvtap: entered promiscuous mode [ 32.161259][ T6528] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 32.163515][ T6528] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 32.188553][ T6640] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.1: invalid indirect mapped block 8 (level 2) [ 32.191782][ T15] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 32.191816][ T15] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 32.196327][ T6640] EXT4-fs (loop0): Remounting filesystem read-only [ 32.197359][ T6640] EXT4-fs (loop0): 1 truncate cleaned up [ 32.198931][ T6640] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 32.206830][ T520] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 32.208649][ T1367] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 32.209137][ T1367] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 32.209522][ T1367] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 32.996573][ T6650] loop3: detected capacity change from 0 to 32768 [ 32.997371][ T6540] Bluetooth: hci0: command tx timeout [ 32.997559][ T6540] Bluetooth: hci3: command tx timeout [ 32.997716][ T6540] Bluetooth: hci4: command tx timeout [ 32.997881][ T6540] Bluetooth: hci2: command tx timeout [ 32.998039][ T6540] Bluetooth: hci1: command tx timeout [ 33.083737][ T6650] ======================================================= [ 33.083737][ T6650] WARNING: The mand mount option has been deprecated and [ 33.083737][ T6650] and is ignored by this kernel. Remove the mand [ 33.083737][ T6650] option from the mount to silence this warning. [ 33.083737][ T6650] ======================================================= [ 33.102297][ T6650] (syz.3.6,6650,0):ocfs2_find_entry:1083 ERROR: status = -117 [ 33.103031][ T6650] (syz.3.6,6650,0):ocfs2_init_global_system_inodes:465 ERROR: status = -22 [ 33.103102][ T6650] (syz.3.6,6650,0):ocfs2_init_global_system_inodes:467 ERROR: Unable to load system inode 1, possibly corrupt fs? [ 33.103135][ T6650] (syz.3.6,6650,0):ocfs2_init_global_system_inodes:476 ERROR: status = -22 [ 33.103167][ T6650] (syz.3.6,6650,0):ocfs2_initialize_super:2198 ERROR: status = -22 [ 33.103381][ T6650] (syz.3.6,6650,0):ocfs2_fill_super:1177 ERROR: status = -22 [ 33.297499][ T6640] EXT4-fs warning (device loop0): dx_probe:791: inode #2: lblock 0: comm syz.0.1: error -117 reading directory block [ 33.298522][ T6640] EXT4-fs warning (device loop0): dx_probe:791: inode #2: lblock 0: comm syz.0.1: error -117 reading directory block [ 33.320935][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 33.320972][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 33.325228][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 33.325239][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 33.355812][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 33.355839][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 33.416288][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 33.416312][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 33.438567][ T6653] loop2: detected capacity change from 0 to 7 [ 33.444727][ T6653] loop2: [ 33.445635][ T6653] loop2: partition table partially beyond EOD, truncated [ 33.465231][ T1367] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 33.465267][ T1367] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 33.551849][ T6660] loop4: detected capacity change from 0 to 16 [ 33.555075][ T6660] erofs (device loop4): mounted with root inode @ nid 36. [ 33.562975][ T6660] erofs (device loop4): readahead error at folio 2 @ nid 89 [ 33.564905][ T6660] syz.4.5: attempt to access beyond end of device [ 33.564905][ T6660] loop4: rw=524288, sector=524296, nr_sectors = 8 limit=16 [ 33.570562][ T6660] erofs (device loop4): failed to decompress -5 in[4096, 0] out[4096] [ 33.570599][ T6660] erofs (device loop4): read error -117 @ 0 of nid 89 [ 33.570662][ T6660] erofs (device loop4): failed to decompress -5 in[4096, 0] out[4096] [ 33.570677][ T6660] erofs (device loop4): read error -117 @ 0 of nid 89 [ 33.576116][ T6660] erofs (device loop4): failed to decompress -5 in[4096, 0] out[4096] [ 33.579217][ T6660] erofs (device loop4): read error -117 @ 0 of nid 89 [ 33.579278][ T6660] erofs (device loop4): failed to decompress -5 in[4096, 0] out[4096] [ 33.579297][ T6660] erofs (device loop4): read error -117 @ 0 of nid 89 [ 33.584876][ T6660] syz.4.5: attempt to access beyond end of device [ 33.584876][ T6660] loop4: rw=0, sector=524296, nr_sectors = 8 limit=16 [ 33.585583][ T6660] erofs (device loop4): failed to decompress -5 in[4096, 0] out[4100] [ 33.585637][ T6660] erofs (device loop4): read error -5 @ 1 of nid 89 [ 33.585687][ T6660] syz.4.5: attempt to access beyond end of device [ 33.585687][ T6660] loop4: rw=0, sector=524296, nr_sectors = 8 limit=16 [ 33.585729][ T6660] erofs (device loop4): failed to decompress -5 in[4096, 0] out[4100] [ 33.585745][ T6660] erofs (device loop4): read error -5 @ 1 of nid 89 [ 33.585916][ T6660] syz.4.5: attempt to access beyond end of device [ 33.585916][ T6660] loop4: rw=0, sector=524296, nr_sectors = 8 limit=16 [ 33.585999][ T6660] erofs (device loop4): failed to decompress -5 in[4096, 0] out[4100] [ 33.586016][ T6660] erofs (device loop4): read error -5 @ 1 of nid 89 [ 33.911160][ T6597] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 34.734521][ T6673] loop4: detected capacity change from 0 to 32768 [ 35.327055][ T6597] usb 1-1: Using ep0 maxpacket: 32 [ 35.515082][ T6540] Bluetooth: hci2: command tx timeout [ 35.515137][ T6540] Bluetooth: hci4: command tx timeout [ 35.515159][ T6540] Bluetooth: hci3: command tx timeout [ 35.515176][ T6540] Bluetooth: hci0: command tx timeout [ 35.519057][ T52] Bluetooth: hci1: command tx timeout [ 35.539367][ T6597] usb 1-1: config 1 interface 0 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 8 [ 35.539424][ T6597] usb 1-1: config 1 interface 0 has no altsetting 0 [ 35.587796][ T6673] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 35.638208][ T6597] usb 1-1: New USB device found, idVendor=04b8, idProduct=0202, bcdDevice= 0.40 [ 35.638244][ T6597] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 35.692939][ T2321] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 35.709236][ T6597] usb 1-1: can't set config #1, error -71 [ 35.713353][ T6597] usb 1-1: USB disconnect, device number 2 [ 36.381767][ T2321] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz1] on syz0 [ 36.667620][ T6531] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 37.014953][ T6681] loop1: detected capacity change from 0 to 40427 [ 37.017769][ T6681] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 37.019266][ T6681] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 37.025926][ T6681] F2FS-fs (loop1): invalid crc value [ 37.029959][ T6528] ocfs2: Unmounting device (7,4) on (node local) [ 37.085649][ T6681] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 37.110330][ T6681] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 37.110444][ T6681] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 37.202422][ T6698] loop0: detected capacity change from 0 to 32768 [ 37.205682][ T6698] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.14 (6698) [ 37.220731][ T6698] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 37.220816][ T6698] BTRFS info (device loop0): using crc32c (crc32c-lib) checksum algorithm [ 37.285472][ T6698] BTRFS info (device loop0): turning off barriers [ 37.285511][ T6698] BTRFS info (device loop0): enabling free space tree [ 37.285534][ T6698] BTRFS info (device loop0): use zstd compression, level 3 [ 37.606633][ T52] Bluetooth: hci1: command tx timeout [ 37.610538][ T52] Bluetooth: hci0: command tx timeout [ 37.611691][ T52] Bluetooth: hci3: command tx timeout [ 37.612817][ T52] Bluetooth: hci4: command tx timeout [ 37.613985][ T52] Bluetooth: hci2: command tx timeout [ 37.702780][ T6705] loop4: detected capacity change from 0 to 32768 [ 37.718317][ T6705] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.16 (6705) [ 37.743010][ T6728] loop3: detected capacity change from 0 to 1024 [ 37.787571][ T6705] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 37.789800][ T6705] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm [ 38.168322][ T6705] BTRFS info (device loop4): enabling ssd optimizations [ 38.168360][ T6705] BTRFS info (device loop4): enabling free space tree [ 38.170209][ T6531] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 38.172132][ T6751] loop3: detected capacity change from 0 to 1024 [ 38.230762][ T6705] BTRFS info (device loop4): setting incompat feature flag for SIMPLE_QUOTA (0x10000) [ 38.253825][ T6722] loop2: detected capacity change from 0 to 32768 [ 38.664002][ T6722] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 38.672781][ T6722] XFS (loop2): Ending clean mount [ 39.082746][ T6668] hfsplus: b-tree write err: -5, ino 8 [ 39.088472][ T6528] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 39.154745][ T6769] loop1: detected capacity change from 0 to 1024 [ 39.183228][ T6722] Zero length message leads to an empty skb [ 39.204903][ T6769] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 39.209938][ T6534] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 39.210133][ T6779] netlink: 8 bytes leftover after parsing attributes in process `syz.0.21'. [ 39.269311][ T6527] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 39.341502][ T6790] loop1: detected capacity change from 0 to 16 [ 39.352437][ T6790] erofs (device loop1): mounted with root inode @ nid 36. [ 39.362703][ T6792] capability: warning: `syz.3.30' uses deprecated v2 capabilities in a way that may be insecure [ 39.449682][ T6802] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 39.464115][ T6804] loop4: detected capacity change from 0 to 512 [ 39.470600][ T6804] /dev/loop4: Can't open blockdev [ 39.530542][ T6631] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 39.580138][ T6812] loop3: detected capacity change from 0 to 2048 [ 39.598137][ T6812] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 39.627051][ T6529] Bluetooth: hci2: command tx timeout [ 39.627070][ T52] Bluetooth: hci4: command tx timeout [ 39.627099][ T52] Bluetooth: hci3: command tx timeout [ 39.627117][ T52] Bluetooth: hci0: command tx timeout [ 39.627133][ T52] Bluetooth: hci1: command tx timeout [ 39.632033][ T6815] loop2: detected capacity change from 0 to 256 [ 39.665869][ T6815] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 39.665920][ T6815] FAT-fs (loop2): Filesystem has been set read-only [ 39.674182][ T6815] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 39.674349][ T6815] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 39.699864][ T6631] usb 1-1: New USB device found, idVendor=2001, idProduct=b301, bcdDevice=45.a9 [ 39.699908][ T6631] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 39.699936][ T6631] usb 1-1: Product: syz [ 39.699949][ T6631] usb 1-1: Manufacturer: syz [ 39.699961][ T6631] usb 1-1: SerialNumber: syz [ 39.720588][ T6631] r8152-cfgselector 1-1: Unknown version 0x0000 [ 39.720720][ T6631] r8152-cfgselector 1-1: config 0 descriptor?? [ 39.722554][ T6631] r8152 1-1:0.0: Expected endpoints are not found [ 39.850378][ T6819] loop1: detected capacity change from 0 to 1024 [ 39.893105][ T6823] input: syz0 as /devices/virtual/input/input2 [ 39.942897][ T6825] pim6reg0: tun_chr_ioctl cmd 1074025677 [ 39.943043][ T6825] pim6reg0: linktype set to 778 [ 39.968478][ T6827] loop1: detected capacity change from 0 to 1024 [ 39.981394][ T6642] r8152-cfgselector 1-1: USB disconnect, device number 3 [ 39.982163][ T6827] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 39.982200][ T6827] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869) [ 39.982347][ T6827] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 39.985104][ T6827] EXT4-fs error (device loop1): ext4_get_journal_inode:5800: inode #5: comm syz.1.43: unexpected bad inode w/o EXT4_IGET_BAD [ 39.985848][ T6827] EXT4-fs (loop1): no journal found [ 39.985859][ T6827] EXT4-fs (loop1): can't get journal size [ 39.986361][ T6827] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=8840e11c, mo2=0102] [ 39.987052][ T6827] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 40.028496][ T6831] loop3: detected capacity change from 0 to 512 [ 40.031636][ T6827] EXT4-fs error (device loop1): __ext4_remount:6740: comm syz.1.43: Abort forced by user [ 40.033467][ T6827] EXT4-fs (loop1): Remounting filesystem read-only [ 40.033522][ T6827] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000. [ 40.053462][ T6527] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 40.232008][ T6845] loop2: detected capacity change from 0 to 256 [ 40.310995][ T6848] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 40.312564][ T6848] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 40.510217][ T6845] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 40.511045][ T6845] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 40.511170][ T6845] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 40.553271][ T6851] Illegal XDP return value 4294967274 on prog (id 10) dev syz_tun, expect packet loss! [ 40.618795][ T6858] loop4: detected capacity change from 0 to 256 [ 40.675503][ T6863] loop2: detected capacity change from 0 to 512 [ 40.678765][ T6863] EXT4-fs: Ignoring removed i_version option [ 40.681574][ T6863] ext4: Unknown parameter 'noacl' [ 40.800234][ T6878] loop4: detected capacity change from 0 to 512 [ 40.803559][ T6878] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 40.804098][ T6878] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 40.809396][ T6878] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 40.810130][ T6878] EXT4-fs (loop4): 1 truncate cleaned up [ 40.810578][ T6878] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 40.814168][ T6878] EXT4-fs warning (device loop4): verify_group_input:137: Cannot add at group 880048229 (only 1 groups) [ 40.852251][ T6528] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 40.899421][ T6887] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 40.901499][ T6887] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 40.932493][ T6891] loop4: detected capacity change from 0 to 8 [ 41.055029][ T6903] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 41.065486][ T6905] loop4: detected capacity change from 0 to 512 [ 41.071318][ T6905] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 41.071362][ T6905] EXT4-fs (loop4): blocks per group (3008) and clusters per group (32768) inconsistent [ 41.296280][ T9] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 41.601186][ T9] usb 1-1: Using ep0 maxpacket: 16 [ 41.613859][ T9] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 41.614692][ T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 41.614704][ T9] usb 1-1: Product: syz [ 41.614712][ T9] usb 1-1: Manufacturer: syz [ 41.614719][ T9] usb 1-1: SerialNumber: syz [ 41.623941][ T9] r8152-cfgselector 1-1: Unknown version 0x0000 [ 41.623989][ T9] r8152-cfgselector 1-1: config 0 descriptor?? [ 41.643662][ T6917] netlink: 16 bytes leftover after parsing attributes in process `syz.2.80'. [ 41.648585][ T6917] netlink: 'syz.2.80': attribute type 16 has an invalid length. [ 41.650015][ T6917] netlink: 'syz.2.80': attribute type 17 has an invalid length. [ 41.678830][ T6917] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 41.788747][ T6926] af_packet: tpacket_rcv: packet too big, clamped from 102 to 4294967286. macoff=82 [ 41.819056][ T6931] batadv_slave_0: entered promiscuous mode [ 41.820398][ T6930] batadv_slave_0: left promiscuous mode [ 41.876952][ T6935] loop2: detected capacity change from 0 to 1024 [ 41.894583][ T6937] loop1: detected capacity change from 0 to 1764 [ 41.902012][ T6935] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 41.905700][ T6937] loop1: Can't mount, would change RO state [ 41.917957][ T6935] EXT4-fs error (device loop2): mb_free_blocks:2017: group 0, inode 15: block 225:freeing already freed block (bit 14); block bitmap corrupt. [ 41.940909][ T6534] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 41.965461][ T6941] loop1: detected capacity change from 0 to 2048 [ 41.977631][ T6941] UDF-fs: error (device loop1): udf_process_sequence: Primary Volume Descriptor not found! [ 41.982622][ T6941] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 41.988009][ T6941] capability: warning: `syz.1.90' uses 32-bit capabilities (legacy support in use) [ 42.031812][ T6946] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 42.036634][ T6946] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 42.043101][ T9] r8152-cfgselector 1-1: USB disconnect, device number 4 [ 42.150376][ T6956] loop4: detected capacity change from 0 to 1024 [ 42.160977][ T6956] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 42.273724][ T6966] loop4: detected capacity change from 0 to 128 [ 42.282330][ T6966] FAT-fs (loop4): Directory bread(block 414) failed [ 42.282373][ T6966] FAT-fs (loop4): Directory bread(block 415) failed [ 42.282386][ T6966] FAT-fs (loop4): Directory bread(block 416) failed [ 42.282399][ T6966] FAT-fs (loop4): Directory bread(block 417) failed [ 42.282410][ T6966] FAT-fs (loop4): Directory bread(block 418) failed [ 42.282420][ T6966] FAT-fs (loop4): Directory bread(block 419) failed [ 42.282430][ T6966] FAT-fs (loop4): Directory bread(block 420) failed [ 42.282439][ T6966] FAT-fs (loop4): Directory bread(block 421) failed [ 43.166907][ T6989] loop3: detected capacity change from 0 to 256 [ 43.167473][ T6989] exfat: Deprecated parameter 'namecase' [ 43.167487][ T6989] exfat: Deprecated parameter 'namecase' [ 43.167510][ T6989] exfat: Bad value for 'errors' [ 43.168876][ T6989] process 'syz.3.109' launched './file1' with NULL argv: empty string added [ 43.273513][ T6999] loop4: detected capacity change from 0 to 16 [ 43.275917][ T6999] erofs (device loop4): mounted with root inode @ nid 36. [ 43.309141][ T7003] warning: `syz.3.116' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 43.320766][ T7005] netlink: 20 bytes leftover after parsing attributes in process `syz.4.117'. [ 43.362754][ T7011] loop4: detected capacity change from 0 to 512 [ 43.364368][ T7011] EXT4-fs: Ignoring removed bh option [ 43.371715][ T7011] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 43.388186][ T7011] EXT4-fs (loop4): 1 truncate cleaned up [ 43.389204][ T7011] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 43.402587][ T7015] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 43.404266][ T7015] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 43.415950][ T7016] netlink: 20 bytes leftover after parsing attributes in process `syz.3.122'. [ 43.440223][ T6528] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 43.581039][ T7031] loop3: detected capacity change from 0 to 256 [ 43.585172][ T7031] exFAT-fs (loop3): error, The cluster chain has a loop [ 43.587990][ T7031] exFAT-fs (loop3): failed to count the number of clusters in root [ 43.589478][ T7031] exFAT-fs (loop3): failed to recognize exfat type [ 43.621111][ T7033] loop0: detected capacity change from 0 to 512 [ 43.631824][ T7033] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 43.637086][ T7035] binder: 7034:7035 tried to acquire reference to desc 0, got 1 instead [ 43.639523][ T6590] binder: undelivered TRANSACTION_COMPLETE [ 43.642518][ T7033] EXT4-fs (loop0): 1 truncate cleaned up [ 43.644067][ T7033] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 43.645766][ T6590] binder: undelivered transaction 5, process died. [ 43.655914][ T7033] EXT4-fs error (device loop0): ext4_lookup:1787: inode #16: comm syz.0.130: iget: bad i_size value: 5497558147880 [ 43.659514][ T7033] EXT4-fs (loop0): Remounting filesystem read-only [ 43.679531][ T6531] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 43.728789][ T7042] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 43.729001][ T7042] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 43.733980][ T7044] Bluetooth: MGMT ver 1.23 [ 43.753820][ T7046] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 43.754141][ T7046] batadv_slave_0: entered promiscuous mode [ 43.754154][ T7046] batadv_slave_0: entered allmulticast mode [ 43.774840][ T7048] loop0: detected capacity change from 0 to 8 [ 43.779129][ T7048] SQUASHFS error: Failed to read block 0x63a: -5 [ 43.779160][ T7048] SQUASHFS error: Unable to read metadata cache entry [638] [ 43.779681][ T7048] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 43.797956][ T7050] loop0: detected capacity change from 0 to 512 [ 43.823332][ T7050] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 43.921416][ T7054] loop1: detected capacity change from 0 to 512 [ 43.946638][ T7054] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 43.967487][ T7060] loop2: detected capacity change from 0 to 2048 [ 43.980272][ T7060] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 44.009276][ T6527] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 44.013426][ T6534] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 44.056258][ T6590] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 44.074366][ T7068] loop1: detected capacity change from 0 to 512 [ 44.093352][ T7068] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 44.110193][ T6527] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 44.157605][ T7076] loop1: detected capacity change from 0 to 512 [ 44.176915][ T7076] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.146: couldn't read orphan inode 26 (err -116) [ 44.177579][ T7076] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 44.194967][ T6527] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 44.215289][ T6590] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0 [ 44.215325][ T6590] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xA has an invalid bInterval 110, changing to 7 [ 44.215337][ T6590] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid maxpacket 24941, setting to 1024 [ 44.223653][ T6590] usb 1-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 44.223683][ T6590] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 44.223710][ T6590] usb 1-1: Product: syz [ 44.223722][ T6590] usb 1-1: Manufacturer: syz [ 44.223733][ T6590] usb 1-1: SerialNumber: syz [ 44.249835][ T6590] usb 1-1: config 0 descriptor?? [ 44.262515][ T6590] usb 1-1: 0:0 : invalid sync pipe. bmAttributes e5, bLength 9, bSynchAddress 78 [ 44.311906][ T7084] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 44.312082][ T7084] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 44.614281][ T6590] usb 1-1: USB disconnect, device number 5 [ 44.646901][ T6519] udevd[6519]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 44.664465][ T7091] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 44.664787][ T7091] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 44.941645][ T7096] loop2: detected capacity change from 0 to 512 [ 44.942018][ T7096] EXT4-fs: Ignoring removed orlov option [ 44.942036][ T7096] EXT4-fs: Ignoring removed mblk_io_submit option [ 44.948036][ T7096] EXT4-fs (loop2): orphan cleanup on readonly fs [ 44.950346][ T7096] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -13 [ 44.950647][ T7096] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 44.957328][ T7096] EXT4-fs error (device loop2): ext4_clear_blocks:876: inode #13: comm syz.2.153: attempt to clear invalid blocks 2 len 1 [ 44.960530][ T7096] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.153: invalid indirect mapped block 1819239214 (level 0) [ 44.963355][ T7096] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.153: invalid indirect mapped block 1819239214 (level 1) [ 44.967204][ T7096] EXT4-fs (loop2): 1 truncate cleaned up [ 44.968689][ T7096] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 44.973056][ T7096] EXT4-fs error (device loop2): ext4_lookup:1784: inode #2: comm syz.2.153: 'file1' linked to parent dir [ 44.982471][ T6534] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 45.035490][ T7103] loop2: detected capacity change from 0 to 512 [ 45.037527][ T7103] EXT4-fs: Ignoring removed nobh option [ 45.045316][ T7103] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 45.064326][ T7103] EXT4-fs error (device loop2): ext4_lookup:1787: inode #15: comm syz.2.156: iget: bad i_size value: 15393162788874 [ 45.080745][ T6534] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 45.115147][ T6531] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 45.222666][ T7124] loop2: detected capacity change from 0 to 764 [ 45.233406][ T7124] rock: directory entry would overflow storage [ 45.233411][ T7124] rock: sig=0x4654, size=5, remaining=4 [ 45.268819][ T7132] binder: BC_ACQUIRE_RESULT not supported [ 45.268860][ T7132] binder: 7131:7132 ioctl c0306201 20000380 returned -22 [ 45.329269][ T7136] loop0: detected capacity change from 0 to 256 [ 45.342150][ T7140] loop4: detected capacity change from 0 to 512 [ 45.350824][ T7136] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 45.355229][ T7140] EXT4-fs (loop4): blocks per group (95) and clusters per group (32768) inconsistent [ 45.426912][ T7148] Invalid ELF header len 16 [ 45.692428][ T7147] loop1: detected capacity change from 0 to 2048 [ 45.695801][ T7147] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 45.759299][ T7162] loop0: detected capacity change from 0 to 512 [ 45.808973][ T7162] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 45.809007][ T7162] EXT4-fs (loop0): blocks per group (42) and clusters per group (32768) inconsistent [ 45.881826][ T31] audit: type=1326 audit(2000000001.480:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7160 comm="syz.2.183" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffbbd5b3a8 code=0x0 [ 45.943045][ T7181] loop4: detected capacity change from 0 to 512 [ 45.958610][ T7181] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 45.972712][ T7181] EXT4-fs (loop4): 1 truncate cleaned up [ 45.973211][ T7181] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 45.991917][ T6528] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.051707][ T7191] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 46.051879][ T7191] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 46.358435][ T7204] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 46.361271][ T7204] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 46.369250][ T6540] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 46.371817][ T6540] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 46.373463][ T6540] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 46.377303][ T6540] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 46.379322][ T6540] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 46.416347][ T42] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.459396][ T42] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.507024][ T42] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.533545][ T7203] chnl_net:caif_netlink_parms(): no params data found [ 46.563100][ T42] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.579139][ T7203] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.580917][ T7203] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.582715][ T7203] bridge_slave_0: entered allmulticast mode [ 46.584558][ T7203] bridge_slave_0: entered promiscuous mode [ 46.591236][ T7203] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.592693][ T7203] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.594447][ T7203] bridge_slave_1: entered allmulticast mode [ 46.598792][ T7203] bridge_slave_1: entered promiscuous mode [ 46.629759][ T7217] loop4: detected capacity change from 0 to 1024 [ 46.653300][ T7203] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.654321][ T7203] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.675344][ T7217] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 46.675414][ T7217] ext4 filesystem being mounted at /49/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 46.677434][ T7203] team0: Port device team_slave_0 added [ 46.678196][ T7203] team0: Port device team_slave_1 added [ 46.704455][ T7203] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.704483][ T7203] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.704510][ T7203] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.705043][ T7203] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.705048][ T7203] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.705057][ T7203] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.725230][ T6528] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.728733][ T7223] loop2: detected capacity change from 0 to 128 [ 46.761247][ T7203] hsr_slave_0: entered promiscuous mode [ 46.761577][ T7203] hsr_slave_1: entered promiscuous mode [ 46.761756][ T7203] debugfs: 'hsr0' already exists in 'hsr' [ 46.761767][ T7203] Cannot create hsr debugfs directory [ 46.813556][ T42] bridge_slave_1: left allmulticast mode [ 46.813605][ T42] bridge_slave_1: left promiscuous mode [ 46.814214][ T42] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.821238][ T42] bridge_slave_0: left allmulticast mode [ 46.821267][ T42] bridge_slave_0: left promiscuous mode [ 46.821383][ T42] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.880995][ T7235] loop2: detected capacity change from 0 to 2048 [ 46.904948][ T7235] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 46.976001][ T6534] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 47.105902][ T42] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 47.148005][ T42] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 47.187696][ T42] bond0 (unregistering): Released all slaves [ 47.279216][ T7203] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 47.283346][ T7203] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 47.287912][ T7203] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 47.365359][ T7203] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 47.442988][ T7203] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.449678][ T7203] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.456566][ T15] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.456616][ T15] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.461958][ T15] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.461998][ T15] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.505804][ T7276] loop3: detected capacity change from 0 to 16 [ 47.510682][ T7276] erofs (device loop3): mounted with root inode @ nid 36. [ 47.613292][ T42] hsr_slave_0: left promiscuous mode [ 47.614417][ T42] hsr_slave_1: left promiscuous mode [ 47.614750][ T42] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 47.615851][ T42] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 47.615869][ T42] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 47.624872][ T42] veth1_macvtap: left promiscuous mode [ 47.624950][ T42] veth0_macvtap: left promiscuous mode [ 47.625010][ T42] veth1_vlan: left promiscuous mode [ 47.625069][ T42] veth0_vlan: left promiscuous mode [ 47.669427][ T7285] loop3: detected capacity change from 0 to 1024 [ 47.695194][ T7285] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 47.695268][ T7285] ext4 filesystem being mounted at /46/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 47.703697][ T7285] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #15: comm syz.3.215: lblock 0 mapped to illegal pblock 0 (length 1) [ 47.708733][ T7285] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117 [ 47.708782][ T7285] EXT4-fs (loop3): This should not happen!! Data will be lost [ 47.708782][ T7285] [ 47.713778][ T7285] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #15: block 2: comm syz.3.215: lblock 2 mapped to illegal pblock 2 (length 4) [ 47.736770][ T7289] mmap: syz.4.216 (7289) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 47.740764][ T6538] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 47.814806][ T7296] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 47.815019][ T7296] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 47.816466][ T7297] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 47.816612][ T7297] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 47.822021][ T7293] loop4: detected capacity change from 0 to 8192 [ 47.874698][ T7299] loop2: detected capacity change from 0 to 1024 [ 47.955534][ T7299] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 48.058899][ T7305] loop2: detected capacity change from 0 to 2048 [ 48.070879][ T7305] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 48.170103][ T7307] binder_alloc: binder_alloc_mmap_handler: 7301 20ffd000-20fff000 already mapped failed -16 [ 48.336440][ T6534] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.350243][ T42] team0 (unregistering): Port device team_slave_1 removed [ 48.394436][ T42] team0 (unregistering): Port device team_slave_0 removed [ 48.406399][ T7312] loop2: detected capacity change from 0 to 4096 [ 48.408290][ T7312] EXT4-fs: Ignoring removed bh option [ 48.411819][ T7312] EXT4-fs (loop2): Test dummy encryption mode enabled [ 48.423029][ T7312] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003] [ 48.423080][ T7312] System zones: 0-5 [ 48.423885][ T7312] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 48.427166][ T6529] Bluetooth: hci2: command tx timeout [ 48.441124][ T7312] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-ce" [ 48.452681][ T7312] fscrypt: AES-256-XTS using implementation "xts-aes-ce" [ 48.454339][ T7312] EXT4-fs (loop2): Online resizing not supported with bigalloc [ 48.465492][ T6534] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.613715][ T7325] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 48.613900][ T7325] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 48.803012][ T7203] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 48.829932][ T7339] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 48.830133][ T7339] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 48.844517][ T31] audit: type=1326 audit(2000000004.440:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7344 comm="syz.4.235" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff9b55b3a8 code=0x0 [ 48.919424][ T7203] veth0_vlan: entered promiscuous mode [ 48.923620][ T7203] veth1_vlan: entered promiscuous mode [ 48.933759][ T7203] veth0_macvtap: entered promiscuous mode [ 48.935487][ T7203] veth1_macvtap: entered promiscuous mode [ 48.942650][ T7203] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.947095][ T7203] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.953524][ T12] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.953939][ T12] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.953962][ T12] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.953977][ T12] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.017265][ T1367] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.017291][ T1367] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.033468][ T1367] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.033502][ T1367] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.089858][ T7367] loop5: detected capacity change from 0 to 8 [ 49.229389][ T7388] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 49.232176][ T7388] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 49.384907][ T7403] loop1: detected capacity change from 0 to 512 [ 49.387987][ T7403] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 49.393527][ T7403] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters [ 49.397250][ T7403] EXT4-fs (loop1): 1 truncate cleaned up [ 49.397913][ T7403] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 49.466362][ T7406] loop2: detected capacity change from 0 to 16 [ 49.475784][ T7406] erofs (device loop2): invalid lz4 cfgs, size=4 [ 49.651943][ T6527] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.796631][ T7429] loop1: detected capacity change from 0 to 256 [ 49.805880][ T7429] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 49.806833][ T7429] FAT-fs (loop1): Filesystem has been set read-only [ 49.864404][ T7424] 9pnet_fd: Insufficient options for proto=fd [ 49.876016][ T7436] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 49.877932][ T7436] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 49.927563][ T7442] loop1: detected capacity change from 0 to 164 [ 49.957947][ T7446] loop5: detected capacity change from 0 to 16 [ 49.958848][ T7445] loop1: detected capacity change from 0 to 128 [ 49.960807][ T7445] FAT-fs (loop1): bogus logical sector size 0 [ 49.962936][ T7446] erofs (device loop5): mounted with root inode @ nid 36. [ 49.964168][ T7445] FAT-fs (loop1): This doesn't look like a DOS 1.x volume; no bootstrapping code [ 49.966232][ T7445] FAT-fs (loop1): Can't find a valid FAT filesystem [ 50.074884][ T7456] loop1: detected capacity change from 0 to 512 [ 50.078765][ T7456] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 50.101265][ T7456] EXT4-fs error (device loop1): ext4_quota_enable:7128: inode #4: comm syz.1.268: iget: bad i_size value: 5910974510929920 [ 50.103760][ T7456] EXT4-fs error (device loop1): ext4_quota_enable:7131: comm syz.1.268: Bad quota inode: 4, type: 1 [ 50.105622][ T7456] EXT4-fs warning (device loop1): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 50.105910][ T7456] EXT4-fs (loop1): mount failed [ 50.237871][ T7471] netlink: 12 bytes leftover after parsing attributes in process `syz.2.271'. [ 50.300697][ T7477] loop2: detected capacity change from 0 to 1024 [ 50.302646][ T7477] EXT4-fs: Ignoring removed nobh option [ 50.303978][ T7477] EXT4-fs: Ignoring removed bh option [ 50.334302][ T7477] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 50.341023][ T7477] EXT4-fs warning (device loop2): ext4_resize_begin:72: won't resize using backup superblock at 1 [ 50.362995][ T6534] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 50.383269][ T7485] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 50.386121][ T7485] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 50.413799][ T7489] loop4: detected capacity change from 0 to 512 [ 50.417254][ T7489] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 50.425902][ T7489] EXT4-fs (loop4): 1 truncate cleaned up [ 50.429089][ T7487] loop1: detected capacity change from 0 to 2048 [ 50.431153][ T7489] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 50.438503][ T7489] EXT4-fs warning (device loop4): verify_group_input:137: Cannot add at group 25 (only 1 groups) [ 50.451384][ T6528] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 50.459308][ T7487] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 50.483381][ T6527] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 50.516973][ T6529] Bluetooth: hci2: command 0x041b tx timeout [ 50.521886][ T7498] loop1: detected capacity change from 0 to 4096 [ 50.538196][ T7500] loop1: detected capacity change from 0 to 128 [ 50.540145][ T7500] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none. [ 50.559916][ T7500] EXT4-fs (loop1): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w. [ 50.569217][ T6527] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 50.615992][ T7505] loop4: detected capacity change from 0 to 2048 [ 50.623669][ T7507] loop1: detected capacity change from 0 to 8 [ 50.646490][ T7505] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 50.659962][ T7505] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 50.667601][ T7505] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 34 with error 28 [ 50.670889][ T7505] EXT4-fs (loop4): This should not happen!! Data will be lost [ 50.670889][ T7505] [ 50.670946][ T7505] EXT4-fs (loop4): Total free blocks count 0 [ 50.670970][ T7505] EXT4-fs (loop4): Free/Dirty block details [ 50.670989][ T7505] EXT4-fs (loop4): free_blocks=2415919504 [ 50.671010][ T7505] EXT4-fs (loop4): dirty_blocks=48 [ 50.671020][ T7505] EXT4-fs (loop4): Block reservation details [ 50.671030][ T7505] EXT4-fs (loop4): i_reserved_data_blocks=3 [ 50.685399][ T7505] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 50.692943][ T6631] kernel write not supported for file /136/gid_map (pid: 6631 comm: kworker/1:5) [ 50.760610][ T7519] binder: 7518:7519 ioctl 400c620e 0 returned -14 [ 50.857355][ T7531] loop3: detected capacity change from 0 to 2048 [ 50.877612][ T7531] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 50.895267][ T7539] loop4: detected capacity change from 0 to 512 [ 50.911130][ T7539] ext4: Unknown parameter 'seclabel' [ 50.918218][ T6538] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 50.963852][ T7545] loop4: detected capacity change from 0 to 8 [ 51.042552][ T7554] loop1: detected capacity change from 0 to 512 [ 51.076346][ T7554] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 51.724968][ T7554] EXT4-fs (loop1): warning: maximal mount count reached, running e2fsck is recommended [ 51.730645][ T7554] EXT4-fs error (device loop1): ext4_orphan_get:1392: comm syz.1.307: inode #15: comm syz.1.307: iget: illegal inode # [ 51.731585][ T7554] EXT4-fs (loop1): Remounting filesystem read-only [ 51.732089][ T7554] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 51.750227][ T7554] EXT4-fs (loop1): shut down requested (1) [ 51.773715][ T6527] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 51.795752][ T7568] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 51.796034][ T7568] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 51.828575][ T7571] binder: 7569:7571 tried to acquire reference to desc 0, got 1 instead [ 51.831260][ T7571] binder: 7569:7571 got transaction with invalid data ptr [ 51.831403][ T7571] binder: 7569:7571 transaction async to 7569:0 failed 12/29201/-14, code 0 size 72-24 line 3438 [ 51.833671][ T6631] binder: undelivered TRANSACTION_ERROR: 29201 [ 51.868349][ T7575] loop4: detected capacity change from 0 to 512 [ 51.870763][ T7577] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 51.872507][ T7577] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 51.876667][ T7575] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 51.880445][ T7575] EXT4-fs (loop4): 1 truncate cleaned up [ 51.880896][ T7575] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 51.898001][ T6528] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 51.954895][ T7586] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 51.955105][ T7586] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 51.960290][ T7588] loop5: detected capacity change from 0 to 128 [ 51.961973][ T7588] vfat: Unknown parameter 's' [ 52.049582][ T7598] loop5: detected capacity change from 0 to 1024 [ 52.069456][ T7598] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 52.069522][ T7598] ext4 filesystem being mounted at /17/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 52.085842][ T7203] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 52.143796][ T7605] loop2: detected capacity change from 0 to 1024 [ 52.144568][ T7605] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 52.145080][ T7605] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869) [ 52.145909][ T7605] EXT4-fs error (device loop2): __ext4_iget:5464: inode #2: block 127754: comm syz.2.326: invalid block [ 52.146090][ T7605] EXT4-fs (loop2): no journal found [ 52.146105][ T7605] EXT4-fs (loop2): can't get journal size [ 52.166491][ T7605] EXT4-fs error (device loop2): __ext4_iget:5464: inode #2: block 127754: comm syz.2.326: invalid block [ 52.170406][ T7605] EXT4-fs (loop2): get root inode failed [ 52.170433][ T7605] EXT4-fs (loop2): mount failed [ 52.207768][ T7611] loop2: detected capacity change from 0 to 512 [ 52.210148][ T7611] EXT4-fs error (device loop2): ext4_get_journal_inode:5800: comm syz.2.328: inode #1792: comm syz.2.328: iget: illegal inode # [ 52.210331][ T7611] EXT4-fs (loop2): Remounting filesystem read-only [ 52.210337][ T7611] EXT4-fs (loop2): no journal found [ 52.210342][ T7611] EXT4-fs (loop2): can't get journal size [ 52.213862][ T7611] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended [ 52.214395][ T7611] EXT4-fs (loop2): Errors on filesystem, clearing orphan list. [ 52.214834][ T7611] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 52.470914][ T7611] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000. [ 52.480066][ T7616] loop4: detected capacity change from 0 to 256 [ 52.482979][ T7616] exfat: Invalid uid '0x00000000ffffffff' [ 52.485366][ T6534] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 52.503172][ T7619] binder: 7618 BINDER_GET_NODE_INFO_FOR_REF: only handle may be non-zero. [ 52.503215][ T7619] binder: 7618:7619 ioctl c018620c 20000240 returned -22 [ 52.529099][ T7623] loop1: detected capacity change from 0 to 1024 [ 52.530982][ T7623] EXT4-fs: Ignoring removed bh option [ 52.547586][ T7623] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 52.553861][ T7625] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 52.555903][ T7625] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 52.569115][ T7623] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 52.582351][ T7623] EXT4-fs (loop1): shut down requested (1) [ 52.586611][ T6529] Bluetooth: hci2: command 0x041b tx timeout [ 52.594178][ T6527] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 52.670116][ T7638] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 52.670383][ T7638] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 52.692398][ T7641] loop4: detected capacity change from 0 to 128 [ 52.693238][ T7641] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 52.694276][ T7641] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 52.976412][ T7643] loop4: detected capacity change from 0 to 512 [ 52.979983][ T7643] EXT4-fs (loop4): Test dummy encryption mode enabled [ 52.980284][ T7643] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 52.995114][ T7643] EXT4-fs (loop4): 1 truncate cleaned up [ 52.995586][ T7643] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 53.080771][ T7651] netlink: 44 bytes leftover after parsing attributes in process `syz.4.344'. [ 53.103628][ T7653] loop4: detected capacity change from 0 to 512 [ 53.348691][ T7653] ext4 filesystem being mounted at /84/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 53.475994][ T7667] loop2: detected capacity change from 0 to 128 [ 53.481771][ T7667] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 53.494834][ T7667] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 53.511630][ T7667] ------------[ cut here ]------------ [ 53.511651][ T7667] WARNING: CPU: 0 PID: 7667 at fs/udf/truncate.c:224 udf_truncate_extents+0xa80/0xbd4 [ 53.514242][ T7667] Modules linked in: [ 53.514883][ T7667] CPU: 0 UID: 0 PID: 7667 Comm: syz.2.351 Not tainted syzkaller #0 PREEMPT [ 53.516266][ T7667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 53.517942][ T7667] pstate: 83400005 (Nzcv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 53.519150][ T7667] pc : udf_truncate_extents+0xa80/0xbd4 [ 53.520024][ T7667] lr : udf_truncate_extents+0xa7c/0xbd4 [ 53.520939][ T7667] sp : ffff8000a1457640 [ 53.521542][ T7667] x29: ffff8000a14577f0 x28: 0000000000000000 x27: 000000000000000a [ 53.522922][ T7667] x26: ffff0000f3631360 x25: ffff0000df48e018 x24: dfff800000000000 [ 53.524338][ T7667] x23: 000000000000000a x22: ffff8000a1457700 x21: 0000000000000000 [ 53.525696][ T7667] x20: ffff8000a14576e0 x19: ffff0000f3631478 x18: 00000000ffffffff [ 53.527110][ T7667] x17: ffff80009353a000 x16: ffff8000805379bc x15: 0000000000000001 [ 53.528339][ T7667] x14: 0000000000000002 x13: 0000000000000001 x12: 0000000000ff0100 [ 53.529662][ T7667] x11: 0000000000080000 x10: 0000000000002fa4 x9 : ffff8000a93c1000 [ 53.530940][ T7667] x8 : 0000000000002fa5 x7 : ffff800081b920b0 x6 : 0000000000000000 [ 53.532255][ T7667] x5 : 0000000000000001 x4 : ffff8000a1457790 x3 : 0000000000000001 [ 53.533569][ T7667] x2 : ffff8000a1457708 x1 : 000000000000000a x0 : 0000000000000000 [ 53.534889][ T7667] Call trace: [ 53.535380][ T7667] udf_truncate_extents+0xa80/0xbd4 (P) [ 53.536268][ T7667] udf_write_failed+0x164/0x1b4 [ 53.537084][ T7667] udf_write_begin+0x1f0/0x230 [ 53.537858][ T7667] generic_perform_write+0x244/0x7bc [ 53.538719][ T7667] __generic_file_write_iter+0xfc/0x204 [ 53.539684][ T7667] udf_file_write_iter+0x254/0x5a4 [ 53.540553][ T7667] vfs_write+0x540/0xa3c [ 53.541269][ T7667] ksys_write+0x120/0x210 [ 53.542023][ T7667] __arm64_sys_write+0x7c/0x90 [ 53.542821][ T7667] invoke_syscall+0x98/0x254 [ 53.543592][ T7667] el0_svc_common+0x130/0x23c [ 53.544406][ T7667] do_el0_svc+0x48/0x58 [ 53.545107][ T7667] el0_svc+0x5c/0x254 [ 53.545721][ T7667] el0t_64_sync_handler+0x84/0x12c [ 53.546473][ T7667] el0t_64_sync+0x198/0x19c [ 53.547204][ T7667] irq event stamp: 1472 [ 53.547891][ T7667] hardirqs last enabled at (1471): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 53.549606][ T7667] hardirqs last disabled at (1472): [] el1_brk64+0x20/0x54 [ 53.551040][ T7667] softirqs last enabled at (1438): [] handle_softirqs+0xaf8/0xc88 [ 53.552575][ T7667] softirqs last disabled at (1425): [] __do_softirq+0x14/0x20 [ 53.554068][ T7667] ---[ end trace 0000000000000000 ]--- [ 54.666217][ T6540] Bluetooth: hci2: command 0x041b tx timeout [ 56.746225][ T6540] Bluetooth: hci2: command 0x041b tx timeout [ 58.826220][ T6540] Bluetooth: hci2: command 0x041b tx timeout