last executing test programs: 9.382958479s ago: executing program 4 (id=174): syz_io_uring_setup(0x799f, &(0x7f0000000000)={0x0, 0x0, 0x2}, 0x0, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='fdinfo/3\x00') preadv(r0, &(0x7f0000000340)=[{&(0x7f0000000080)=""/135, 0x87}], 0x1, 0x0, 0x0) 8.342910329s ago: executing program 4 (id=177): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000200)={[{@quota}, {@oldalloc}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@block_validity}, {@jqfmt_vfsv1}]}, 0x3, 0x434, &(0x7f0000000940)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) write$binfmt_script(r1, &(0x7f0000000240)={'#! ', './file1', [], 0xa, "b26c45b0ba9f93e1b884d7ee0fa7c5c76f1c3fb93b37678feb7121427c1f78066c84fa85fce5d562792cbf969492b749b81ec1da8d58"}, 0x41) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x0) r2 = socket(0xa, 0x6, 0x0) getsockopt$inet6_mreq(r2, 0x10d, 0xa4, 0x0, &(0x7f0000000040)) 8.082265258s ago: executing program 5 (id=181): add_key$fscrypt_v1(0x0, &(0x7f00000003c0)={'fscrypt:', @desc1}, &(0x7f0000000400)={0x0, "0af1784c4756434308e123c352fe741eb5aabe375a28c9b40be3ffc10e22cc89b3e00a725dfb89db7302d61e0d78f8a02fd4db020432f7550a8664579f66160e", 0x21}, 0x48, 0xfffffffffffffff9) keyctl$get_persistent(0x16, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10) connect$inet(r0, &(0x7f0000000140)={0x2, 0x4e21, @empty}, 0x10) sendto$inet(r0, &(0x7f00000000c0)='G', 0xfffffffffffffca0, 0x8001, 0x0, 0x0) r1 = add_key$keyring(&(0x7f00000021c0), &(0x7f0000000000)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r1, &(0x7f0000000f00)='asymmetric\x00', &(0x7f0000002240)=@chain) shutdown(r0, 0x1) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000009240)=[{{&(0x7f0000000380), 0x10, 0x0}}], 0x1, 0xc000800) bind$unix(0xffffffffffffffff, 0x0, 0x0) r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6}]}) arch_prctl$ARCH_REQ_XCOMP_PERM(0x1023, 0x20000000000) close_range(r2, 0xffffffffffffffff, 0x0) 7.874174787s ago: executing program 1 (id=184): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffecc, &(0x7f0000000200)=0x101) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) set_mempolicy_home_node(&(0x7f0000349000/0xa000)=nil, 0xa000, 0x0, 0x0) preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0xc806, &(0x7f0000000180)={0x2, 0x4e21, @multicast2}, 0x10) connect$inet6(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'}) sendmsg$NL80211_CMD_NEW_STATION(0xffffffffffffffff, &(0x7f0000001080)={0x0, 0x0, 0x0}, 0x0) syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x18000, &(0x7f0000000000), 0x80, 0x62d, &(0x7f0000000c40)="$eJzs3c9rHNcdAPDvzEqyZauVXUqpTUsFPdhQvJZcU7c92e6hPhhqqA8h5GBhSY7w+geWDLZjsAw5JJBACLmG4Ev+gZBr0DXkFgKJbzkHnBCc5JAEb5jZWWuz2rU3kla78Xw+MDNv3szue98dvZ03MzuaAEprKhulEfsi4lwSMdmybCIaC6eK9R5+fft8NiRRr///qySSIq+5/qNiujsbJY3XfHwy4neV9eUu3bx1cbZWb7gTcXj50tXDSzdvHVq8NHth/sL85Zkj/zx6bPpfMx9uTZy7i+mp0//70+svv/iPhU9qh5I4HmdHX5qLtji2ylTj040sxNb8kYg4liU6fC6wnSrF3+NoRPwhJqOSzzVMxuJrA60c0Ff1SmP/VB+rA6WTxKBrAAxGsx/QPLbvx3HwMHtwIhvf6BD/SHH0vjM/Ntr1MGk5MspyI/ZsQfkrEfHj7f1vZ0N0OQ8xsgXldC3/bkT8sdP2T/L49+SRZvGnkba8LktPF+c2svr9ZxN1SFrSvf393dlEaT/3S+Jv3Q5Z/MeLaZZ/ssv7P+0Uz1TbfNnaHwCDsXqi2JFnHZFY2/9lPcNm/yfa+z/19/NrQ+37ro3ovv9Lt+Ddny7v/4102v839/c783142tYPS2Ll2zOd33K0PePzV0+92a38qZb+XzZk5Tf7gj3YdNfwwd2I/W3xv5J/9Mnj7Z906P9mq5zrsYz/fvrlqW7LNhn/ptXvRRzoePyz1ivNUm3XJ5NoXp88OnN4YbE2P90Ydyzjg49eeLdb+YOOP9v+u7rE/6Ttn+Vd7bGM987cu9RI7Vi3bOKp8adfjCVn89RYPl5rXmPJ6WKVxuTG7PLytSNPrktznXw604j/4F87t/8u8ecHH+PNr8weXH3u4sNuyza5/R/Ve1yxmyz+uQ1u/zd6LOO756//uduy9fGvnZMY32hQAAAAAAAAUFJpfg02SauP02laLS68/T52pbUrS8t/W7hy/fJcxMH895CjafNK92RjPsnmZ4rfwzbnj7TN/z0i9kbEW5XxfL56/kptbtDBAwAAAAAAAAAAAAAAAAAAwJDYXdz//6h4Htg3lTStVgddK2Db9PMBc8Bw0/6hvPL2vz3PWwOGjP0/lFfH9u9LAUpBU4fy0v6hvLR/KC/tH8pL+4fy6t7+1y252++6AAAAAABbZu9fVu+PRMTKv8fzITNWLBsdaM2AftPGobwqg64AMDCPL/C7/R9Kp6f+//fFPwfsf3WAAUg6Zeadg/qTG/9qx1cCAAAAAAAAAAAAAH1wYN/q/cT9/1BKbvuD8trY/f+Vjb8UGBqd/vW/x4FAOTjGh5Lr4STAzm4L3P8PAAAAAAAAAAAAANtmIh+StFr8DHgi0rRajfhNROyJ0WRhsTY/HRG/jYjPKqM7svmZQVcaAAAAAAAAAAAAAAAAAAAAnjFLN29dnK3V5q+1Jn5Yl/NsJ5pPPB2W+rQmIul7EWm05YxHxDDE3p/ESEtOErGSbfmteOdk838/MQyfT5EY8BcTAAAAAAAAAAAAAAAAAACUUMu9x53tf2ebawQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA22/t+f/9Sww6RgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADg1+mnAAAA//+EYjvS") sysfs$3(0x3) r1 = socket$kcm(0x29, 0x2, 0x0) sendmsg$kcm(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f00000020c0)="dc", 0x1}], 0x1}, 0x40050) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001000)=ANY=[@ANYBLOB="bf16000000000000b70700000100f0ff5070000000000000300000000000c00095000000000000002ba728041598d6fbd30cb599e83d24bd8137a3aa81e0ed139a85d36bb3019d13bd2321af3c2bd67ce68f15c0ec71d0e6adfefcf1d8f7faf75e0f226bd917060000007142fa9ea4318123751c0a0e168c1886d0d4d35379bd223ec839bc16ee988e6e0dc8cedf3ceb9fbfbf9b0a49ef42d430f6296b72a83438810720a159cda90363db3d221e152dfca64057ff3c4744aeaccd3641110bec4e9027a0c8055bbfc3a96d2e8910c2c39e4babe802f5ab3e89cf6c662ed40000000022278d00031e5388ee5c867ddd58211d6ece3ccb0cd2b6d3cffd962867a3a2f624f992daa94a6a556f3218ce740068725c37074e468ee207d2f73902ebcfcf49822775985bf31b715f5888b24efa190000000000000000000000000000ddffffff020000000000000000ddffffff0000b27cf3d1848a54d7132be1bfb0adf9deab3323aa9fdfb52faf9cb09c3bfd09000000b91ab219ef00bb7b3de8f67ffcad3f6c3c2b1f03550000000000001cf41ab11f12fb1e0a494034007de7c6592df1a6c64d8f20a67745409e011f1264d43f153b3d34889f40159e800ea2474b540500a30b23bcee46762e2093bcc9eae5ee3e980026c96f80ee1a00000000740750fa4d9aaa705989b8e673e3296e52d337c56abf112874ec51d6fe048ba6866adebab53168770a71ad901ace383e41d277b103923a9d961f7a2591dbe4a912ffaf6f658f3f9cd16286744f83a83f138f8f92efd92239eafcc5c1b3f97a297c9e49a0c3300ef7b7fb5f09e0c8a868a353409e34d3e82279637599f35ad3f7ffffff3cac394c7bbdcd0e0eb52162e0c410ade7000026a4e739c60f03cc4146a77af02c1d4cefd4a2b94c0aed8477dfa8ceefb467f05c6977c78cdbf3f704ec73754910fe050038ec9e47de89298b7bf4d769ccc18eedd9068ca1457870eb30d219e23ccc8e06dddeb61799257ab5000013c86ba99523d61a00000000c270246c878d01160e6c07bf6cf8809c3a0d062357ba2515567230a6f8b2ad1e1f4933545fc3c741374211663f6b63b1dd044dd0a2768e825972fc4300001467c89fa0f82e8440105051e5510a33dcda5e4e202bd622549c4cffffff501d3a5dd7143fbf221fff161c12ca389cbe0000000000000fff2ecf631c6c5fd9c26a54d43fa050b88d1d43a8645bd9109b7e07869bba7131421c0f397073943330baafd243c0c6ffe673bab4113be7664e08bdd7115c61afcb718cf3c4680b2f6c7a8400e378a9b15bc20f49e298727340e87cdefb40e56e9cfad9931b8c552b2c7c503f3d0e7ab0e958adb8629aeec90e6d1857da822e40009995ae166deb9856291a43a6f7eb2e32cefbf463789eaf79b8d4c22be89f44b032dad13007b82e6044f643fc8cd07ae636a5dbe9864a117d27326850a7c3b570863f532c218b10af13d7be94987005088a83880ccab9c9920c2d2af8c5e13d52c83ac3fa7c3ae6c08384865b66d2204c2e4f3ae200f279b512b4dcb5dd9cba16b62040bf8702ae12c77e6e34991af603e3856a346cf708feeb708ab22b560cf8a4a6f31ba6d9b8cb0908000000000000001a342c010000000000e667a7592b33406f1f71c739b55db91d2309dc7ae401005f52053a39e7307c09ff3ac3e820b01c57dd74d4aafc4c383a17bc1de5347bb71ca16dcbbbaa2935ae662082b56cf666e63a759e0ef3ea7af6881513be94b362e15ffca8ec453b3a2a67be70c17b0f9c2eac765816c30c2e7133dca1c7669522e8dff8bc570a93fbdb688c3aef810000007a6ea6b11163392a19d87995b51cb6febd5f34a34998d2010fd5facf68c4f84e2f66e27c81a149d7b331983d3b74444953fc1216dfec10b724be3733c26f12538376e177ffef6fd2020000000000000008e4919a463d5332a2546032a3c06b94f168e8fc4bda0c294723fe306f26c477af4b926644672985fab7cc67bc5b5f5d38cdd8df95147ebe1cd88b0a4c6cde9951be10ba7dfddfefb238fac2303cc8982f1e55b005afcfea5eb037248fefad6bb02c162ce92ab17744c8ec3d2e80cf3205d36699fd381bc81231fb5e12e45f3059f361d08d6a6d019ebf105eaf43083c29512bcedd79ca9bf24e063d0c273ed70a2b70be521ea27dc8cf3c9bdf83b93405db07e82e2db484f8673e0e97dd7e8a872148613c3a04f3d67f4375ba5c7f1b00ffffff7f000000000801f71d79d812ced782646b5f79c8fc08bb5c11020108d702edd2ea9c96cf0d2d48aa5fc0a7bf1b51afd85350ad00b78c598fa8701b000884de790b54e5ab2e8ff0c7ae23e0b6eeac95c4c2eef2e5eb1d019d52099fbd404e8ece970f67856ba7e960bd8b1e4105ce7e31f7c9c3e3fa61aaa967b90087e91d703e98535b107b8f4653be4c46a3a1adb07d226952b8573b417018316fa96e2b8e7370baa16d4122c863709b08d4639a19a46ac90ac48a13ee9bcaa875fc700000000000003b40dc5c745fe2491e8425e600000000000000000000000000000000000000000000000000000000000000250318a44ad31baac0520a913301e630ae540f3289aebde8633f6f450c0738e16df6c7f1e0832a2a16fe6e39959735758248032cdf7320c6dc87b01e3f9a7811b200000000ae189de4b9b25f7c7a9c070000002af1c06315270de4a6605e4b4b58bef76fac54f11b84bd7bcd6b6a485edfb7684c770a39b38b08e18a51a4d4e66ca21c06a4b4198e1bc2ef990c9ba911efed626e5ee341a17bf8132b09000000d31df213c802d74797056fd3bca8b2d6cb134437cba0193ba4360bdcc98aad2560aa48291c4eb9d4e08ad7a9c5f04be1ab597124d84dfc7bd8cca8f68154a0ed356e773a797ca6d66748857b4abbf8830abeea2a46342e6a7378173cb29d5cdcd698a0203f78116b710008000000000000007c2d86b94472807c10eb9a8e2fb8bd79fe3a8316deff3ee641c9a080a2173642e673a672279bae4e7e28055da9497d7edb53be6e80482bd4d9a74b8dd4221fff0f0000705d7257ff7f76c78ba0b44ec0bdfa0d32d7042059b13a079639f14f9032b856d892ad6af5124c9c3130485e9682ff1f3c54e475d5bb496aef4bb537d7e191dfdeba109fdcf7864763f87a6d711cf52e520a6ce30e134c55e0caac037209d2f14fcddd00000000000000000000000000000000e609893bdce015e8ccfb36399844db61f6171b0b0e845e48728450c6ba4f7098f8e000676b59ab9f851f3ab77847ce05c89411277ec69c409b7ec50a3337a78675f38a568612c235ab5f2cd6d035d5f5f6a693c381adbbf7b37e37292783b2c7efe7d3a067906552f76d419e0300000000000000000000008f3a20b49fe7636806867283e35cff8d00e7b251bab3cf6377a24f8e8d4bda7503674bc94bf7f4d2fa6f25944bf0a186436d9f6831995976328a1fdc78492c65c1434855dc35c3cf7cf9610c5387794443c99b304799114132362849c3fa85d6379729ff9094933db0cfbe8887c50b87e1469fdf454cef4cbc5f7bf384000000000000a4e8c1a25f47c440144a9776be6cb40aafdb9d3cc8f6a6050974e1c4000000000000008b753f4e1bef9556efcc087a99dbf231167013a4b2eaf6338a0b100c98a331dffc09"], &(0x7f0000000140)='GPL\x00'}, 0x48) r3 = socket$kcm(0x2, 0x1, 0x0) sendmsg$inet(r3, &(0x7f0000000280)={&(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x20000811) ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x89e0, &(0x7f0000000040)={r3, r2}) sendmsg$kcm(r1, &(0x7f0000002080)={0x0, 0x0, &(0x7f0000002000)=[{&(0x7f0000000880)="1a", 0x1a002}], 0x1}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) close(0xffffffffffffffff) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045542, &(0x7f0000000040)=0x2000) syz_open_dev$dmmidi(&(0x7f0000000080), 0x200, 0x0) 7.548862576s ago: executing program 4 (id=187): openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0) sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x20, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x4}]}, 0x20}}, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) socket$rds(0x15, 0x5, 0x0) syz_open_dev$tty1(0xc, 0x4, 0x1) pipe2(&(0x7f0000000180)={0xffffffffffffffff}, 0x0) syz_usb_connect$uac1(0x0, 0xa4, &(0x7f0000000200)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d2407000005000000000000000c240000e9fffff5ffffffff092403f3ff000005024524", @ANYRES8=r0, @ANYBLOB="05", @ANYRES16=r0, @ANYRES8, @ANYRES16=r1, @ANYRES16=r2], 0x0) 7.53678156s ago: executing program 5 (id=188): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000240)={'syzkaller1\x00', @link_local}) writev(r0, &(0x7f00000002c0)=[{&(0x7f0000000a40)="2e9b3d0007e03dd65193dfb6c575963f86ddf06712e9232f2b8db0049d90491ceaebfd26d4eef23248000000f858dbb8a19052343f", 0x35}, {&(0x7f0000000200)="c67f0d7df9", 0x28}], 0x2) 6.059517622s ago: executing program 5 (id=191): syz_mount_image$fuse(0x0, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$tmpfs(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)={[{}]}) mount(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f0000000000)='smb3\x00', 0x0, &(0x7f0000000400)) 5.957054146s ago: executing program 1 (id=192): r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file2\x00', 0x200801f, &(0x7f00000000c0), 0xfe, 0x4ec, &(0x7f0000000380)="$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") r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) sendfile(r0, r1, 0x0, 0xa) 5.640561506s ago: executing program 5 (id=194): r0 = creat(&(0x7f0000000280)='./file0\x00', 0x0) close(r0) r1 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000380)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r0, 0xc01864b0, &(0x7f00000000c0)={r2}) 4.661428288s ago: executing program 5 (id=195): syz_mount_image$vfat(&(0x7f0000000480), &(0x7f0000000000)='./file0\x00', 0x2000082, &(0x7f00000008c0)={[{@numtail}, {@utf8no}, {@iocharset={'iocharset', 0x3d, 'cp852'}}, {@uni_xlate}, {@fat=@codepage={'codepage', 0x3d, '869'}}, {@iocharset={'iocharset', 0x3d, 'macceltic'}}, {@uni_xlate}, {@shortname_mixed}, {@numtail}, {@uni_xlate}, {@iocharset={'iocharset', 0x3d, 'iso8859-14'}}, {@uni_xlate}, {@shortname_mixed}, {@shortname_lower}, {@shortname_mixed}]}, 0x25, 0x34f, &(0x7f0000001f80)="$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") creat(&(0x7f0000000300)='./bus\x00', 0x0) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) r0 = open(&(0x7f00000005c0)='./bus\x00', 0x147842, 0x0) preadv2(r0, &(0x7f00000000c0)=[{&(0x7f0000000180)=""/192, 0xc0}], 0x1, 0x2, 0x0, 0x0) 4.424654265s ago: executing program 1 (id=197): syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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") mkdir(&(0x7f00000020c0)='./file0\x00', 0x0) r0 = open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000140)=@v1={0x0, @aes128, 0x0, @desc3}) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x8010661b, &(0x7f0000000280)=@v1={0x0, @aes128, 0x0, @auto="ec590953d5fd8e2d"}) 3.686531459s ago: executing program 5 (id=199): mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000e40)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48) r2 = syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x3, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}}) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10) ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000200)) ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r5 = dup2(0xffffffffffffffff, r1) r6 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000002c0)=ANY=[@ANYBLOB="12010000000000407d1eb42d000000090001090224000100000000090400000103000000092100000001220b0009058103"], 0x0) syz_usb_control_io(r6, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=@bloom_filter={0x1e, 0x2, 0x3, 0x80000001, 0x1030, 0xffffffffffffffff, 0x3ff80000, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x3, 0x5, 0x7}, 0x48) syz_usb_control_io(r6, 0x0, 0x0) syz_usb_control_io$hid(r6, &(0x7f0000000500)={0x24, &(0x7f0000000580)={0x40, 0x0, 0x4f, {0x4f, 0xe, "d1abc63f6e686bbc4d2183b32ffe220d53e5e35b6655581f5be24ea18556cec844dbee46eb81659a4e7d27f02bba9f8ec90570d354e15c3b4793d381da5b93bdc6740006e4f7f9d35ca9b58748"}}, &(0x7f0000000300)=ANY=[@ANYBLOB="009cc66b18d12e15509f767fd4a28999ed80760ba6f579950020957a073f42ce793360ec740adf31290901256e0e4728b4351b92ce2bf20486dd"], 0x0, 0x0}, &(0x7f0000000880)={0x2c, &(0x7f0000000640)={0x0, 0x17, 0x61, "6cb459d822116988b5de75911ce563c616807a6f9e55092370fdacfa508ef889518f84806474f16c9de063398f91a9e319592f7d74d4a7a9d7e767e2a505744aba64f1621a15006a95eeff1e9558a9180c222a7ad6b5942a5553f0d5622b7d7a56"}, 0x0, &(0x7f00000007c0)={0x0, 0x8, 0x1, 0xfd}, &(0x7f0000000800), 0x0}) ioctl$RTC_PIE_OFF(r5, 0x7006) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000180)=ANY=[], 0x78) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="b5af00000000000000000100000004000300040002800c0001800800010005"], 0x28}}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000180)='sys_enter\x00'}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000004"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) 3.659289429s ago: executing program 1 (id=200): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000200)={[{@quota}, {@oldalloc}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@block_validity}, {@jqfmt_vfsv1}]}, 0x3, 0x434, &(0x7f0000000940)="$eJzs289vFFUcAPDvzLZFKNiK+IOCWkVj44+WFlQOXjSaeNDERA94rG0hlYUaWhMhjVZj8GhIvBuPJv4FnvRi1JOJV70bEmJ6AT2tmd2ZdrvdLW3ZdtH9fJKB92be5n2/O/N238zrBtC1hrN/koj9EfF7RAzUqmsbDNf+u7m8OPX38uJUEpXKW38l1XY3lheniqbF6/rzykgakX6WxJEm/c5funxuslyeuZjXxxbOvz82f+nys7PnJ8/OnJ25MHHq1MkT4y88P/FcW/LMYrox9NHc0cOvvXP1janTV9/9+dukyL8hjzYZ3ujgE5VKm7vrrAN15aSng4GwJaWIyE5Xb3X8D0QpVk/eQLz6aUeDA3ZUpVKp9Lc+vFQB/seS6HQEQGcUX/TZ/W+x7dLU445w/aXaDVCW9818qx3piTRv09twf9tOwxFxeumfr7ItduY5BADAGt9n859nms3/0ri/rt3d+drQYETcExEHI+LeiDgUEfdFVNs+EBEPbrH/xkWS9fOf9Nq2EtukbP73Yr62tXb+V8z+YrCU1w5U8+9NzsyWZ47n78lI9O7J6uMb9PHDK7990epY/fwv27L+i7lgHse1nj1rXzM9uTB5OznXu/5JxFBPs/yTlZWAJCIOR8TQNvuYfeqbo62O3Tr/DbRhnanydcSTtfO/FA35F5KN1yfH7oryzPGx4qpY75dfr7zZqv/byr8NsvO/r+n1v5L/YFK/Xju/9T6u/PF5y3ua7V7/fcnb1XJfvu/DyYWFi+MRfcnrtaDr90+svraoF+2z/EeONR//B2P1nTgSEdlF/FBEPBwRj+SxPxoRj0XEsQ3y/+nlx9/bfv47K8t/ekvnf7XQF417mhdK5378bk2ng1vJPzv/J6ulkXzPZj7/NhPX9q5mAAAA+O9JI2J/JOnoSjlNR0drfy9/KPal5bn5hafPzH1wYbr2G4HB6E2LJ10Ddc9Dx/Pb+qI+0VA/kT83/rK0t1ofnZorT3c6eehy/S3Gf+bPUqejA3ac32tB9zL+oXsZ/9C9jH/oXk3G/95OxAHsvmbf/x93IA5g9zWMf8t+0EXc/0P3Mv6hexn/0JXm98atfySvoLCuEOkdEYbCDhU6/ckEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQHv8GAAD//5LX5s8=") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) write$binfmt_script(r1, &(0x7f0000000240)={'#! ', './file1', [], 0xa, "b26c45b0ba9f93e1b884d7ee0fa7c5c76f1c3fb93b37678feb7121427c1f78066c84fa85fce5d562792cbf969492b749b81ec1da8d58"}, 0x41) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x0) r2 = socket(0xa, 0x6, 0x0) getsockopt$inet6_mreq(r2, 0x10d, 0xa4, 0x0, &(0x7f0000000040)) 3.532960161s ago: executing program 2 (id=201): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000380)={0x2, 0x4e22, @empty}, 0x10) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e22, @empty}, 0x10) r2 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r2, &(0x7f0000000040)=[{&(0x7f0000000280)="580000001400192340834b80040d8c560a0677bc45ff810500000000000058000b480400945f64009400050028925a01000000000000008000f0fffeffe809000000fff5dd0000001000014001080800418e00000004fcff", 0x58}], 0x1) 3.49864469s ago: executing program 4 (id=202): socket$key(0xf, 0x3, 0x2) socket$key(0xf, 0x3, 0x2) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={0x38, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_VHT_CAPABILITY={0x10}]}, 0x38}}, 0x0) socket$key(0xf, 0x3, 0x2) r3 = socket$inet6(0xa, 0x3, 0x4) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000140)={{{@in=@broadcast, @in6=@ipv4={'\x00', '\xff\xff', @private}, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x33}, 0x0, @in6=@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}, 0xe8) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c) 3.191743233s ago: executing program 0 (id=204): setrlimit(0x0, &(0x7f0000000100)={0x0, 0xffffffffffffffff}) r0 = add_key$user(&(0x7f0000000380), &(0x7f00000001c0), &(0x7f0000000000)="01", 0x1, 0xfffffffffffffffe) r1 = add_key$user(&(0x7f0000000200), &(0x7f00000005c0), &(0x7f00000000c0), 0x390, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000100)={r0, r1, r1}, 0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={'crct10dif\x00\x00\x00 \x00\x00\x00+\xcc\xff%\xd2cTH,\x00'}}) 3.115487017s ago: executing program 1 (id=205): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffecc, &(0x7f0000000200)=0x101) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) set_mempolicy_home_node(&(0x7f0000349000/0xa000)=nil, 0xa000, 0x0, 0x0) preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0xc806, &(0x7f0000000180)={0x2, 0x4e21, @multicast2}, 0x10) connect$inet6(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'}) sendmsg$NL80211_CMD_NEW_STATION(0xffffffffffffffff, &(0x7f0000001080)={0x0, 0x0, 0x0}, 0x0) syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x18000, &(0x7f0000000000), 0x80, 0x62d, &(0x7f0000000c40)="$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") sysfs$3(0x3) r1 = socket$kcm(0x29, 0x2, 0x0) sendmsg$kcm(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f00000020c0)="dc", 0x1}], 0x1}, 0x40050) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x48) r3 = socket$kcm(0x2, 0x1, 0x0) sendmsg$inet(r3, &(0x7f0000000280)={&(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x20000811) ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x89e0, &(0x7f0000000040)={r3, r2}) sendmsg$kcm(r1, &(0x7f0000002080)={0x0, 0x0, &(0x7f0000002000)=[{&(0x7f0000000880)="1a", 0x1a002}], 0x1}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) close(0xffffffffffffffff) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045542, &(0x7f0000000040)=0x2000) syz_open_dev$dmmidi(&(0x7f0000000080), 0x200, 0x0) 3.111130091s ago: executing program 4 (id=206): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = socket$kcm(0x29, 0x5, 0x0) getsockopt$kcm_KCM_RECV_DISABLE(0xffffffffffffffff, 0x119, 0x1, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) preadv(r1, &(0x7f0000000840)=[{&(0x7f0000033a80)=""/102386, 0x18ff2}, {&(0x7f0000000980)=""/192, 0xc0}, {&(0x7f0000000a40)=""/159, 0x9f}, {&(0x7f0000000b00)=""/65, 0x41}], 0x4, 0x0, 0x0) r2 = gettid() timer_create(0x6, &(0x7f0000533fa0)={0x0, 0x27, 0x4, @thr={&(0x7f0000000880)="2b3f45715178386518b6ea6f2ee6faf13eb9e32b9d1bb8b14fb819759fb1cb152b8a10824e9e36a8285dab23382bf7c87e8e294359b05ad0c055230f5e22344cd38e1386252c8429178f120ee138f8318e3cf47ce0af9018b798175d4f0a7b0babb29609fe0a30d4066e178dfc15c55f3119cb522ad8f595781981ac885ee5fc8c51672da04c9620587b7d7b016a51e9917e0000000000000009282703103e22798b1b58accea6edd38bac0e565cc71a104acde597bb38520f01b1f987e9caf22f0dbc35a52dcbffba6a6631d04c4b6d889393fbfa084dbde029e9f0d9", &(0x7f0000000800)="0a980f87c5428d715df8a3cd53635585c4bfcdd9622f9b2dc1b205517dfcdc"}}, &(0x7f00000007c0)=0x0) timer_settime(r3, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="04050401c9"], 0x7) add_key(0x0, &(0x7f0000000140)={'syz', 0x1}, &(0x7f0000000100), 0x0, 0xfffffffffffffffe) add_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000280)={'syz', 0x1}, &(0x7f00000002c0)="1d", 0x10, 0xfffffffffffffffe) r4 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) ioctl$int_in(r4, 0x40000000af01, 0x0) ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f0000000300)) r5 = socket$packet(0x11, 0x3, 0x300) ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f00000001c0)={0x0, 0x0, 0x0, &(0x7f00000003c0)=""/75, 0x0}) r6 = dup(r5) ioctl$VHOST_NET_SET_BACKEND(r4, 0x4008af30, &(0x7f0000000000)={0x0, r6}) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r8, &(0x7f0000000200), 0xf000) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r7, 0x0) pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) syz_emit_ethernet(0xfdef, &(0x7f0000000700)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa00080045000070000000000001cecaf7a3b588e32b84352932b2a4907864010100ac1414aa0b0090780300000045000000000000000089000000000000ac1414aa862a00000000000d000000000000000000000000054eb8a600529606053d0006ff00800000b61af93a93070700e0000001860c000000000006f116177b000000"], 0x0) fcntl$setlease(0xffffffffffffffff, 0x400, 0x1) fcntl$setownex(r0, 0xf, &(0x7f0000000180)={0x0, r2}) r9 = socket$kcm(0x10, 0x2, 0x0) close(r9) socket$kcm(0x10, 0x7, 0x0) 3.069510644s ago: executing program 2 (id=207): r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000780), 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0505405, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) socket(0x10, 0x0, 0x0) sendto(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) socket$inet(0x2, 0x0, 0x0) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, 0x0, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ppoll(&(0x7f0000000080)=[{r1}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000100)=0xcf5) ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7ffffff00"}) r2 = syz_open_pts(r1, 0x0) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000280)=0x3) 2.674847954s ago: executing program 0 (id=209): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)={0x40, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_TAGLST={0x1c, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x5}, {0x5, 0x3, 0x5}, {0x5, 0x3, 0x80}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}]}, 0x40}}, 0x0) 1.730469479s ago: executing program 3 (id=210): r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000140)) ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000080)=0x200000000) r1 = dup2(r0, r0) ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000400)={0x0, 0x0, 0x0, &(0x7f0000000300)=""/121, 0x0}) write$vhost_msg_v2(r1, &(0x7f0000000280)={0x2, 0x0, {&(0x7f00000001c0)=""/128, 0xfe6e, 0x0, 0x3, 0x2}}, 0x48) ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000380)=0x1) 1.500757538s ago: executing program 0 (id=211): r0 = gettid() syz_clone3(&(0x7f0000000600)={0x28004000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000580)=[r0], 0x1}, 0x58) 1.390488483s ago: executing program 3 (id=212): syz_mount_image$vfat(&(0x7f0000000480), &(0x7f0000000000)='./file0\x00', 0x2000082, &(0x7f00000008c0)={[{@numtail}, {@utf8no}, {@iocharset={'iocharset', 0x3d, 'cp852'}}, {@uni_xlate}, {@fat=@codepage={'codepage', 0x3d, '869'}}, {@iocharset={'iocharset', 0x3d, 'macceltic'}}, {@uni_xlate}, {@shortname_mixed}, {@numtail}, {@uni_xlate}, {@iocharset={'iocharset', 0x3d, 'iso8859-14'}}, {@uni_xlate}, {@shortname_mixed}, {@shortname_lower}, {@shortname_mixed}]}, 0x25, 0x34f, &(0x7f0000001f80)="$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") creat(&(0x7f0000000300)='./bus\x00', 0x0) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) r0 = open(&(0x7f00000005c0)='./bus\x00', 0x147842, 0x0) preadv2(r0, &(0x7f00000000c0)=[{&(0x7f0000000180)=""/192, 0xc0}], 0x1, 0x2, 0x0, 0x0) 1.28726266s ago: executing program 2 (id=213): r0 = socket(0xa, 0x1, 0x0) setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x480, 0x0, 0x0) 1.211155007s ago: executing program 4 (id=214): r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000240)={0x6, 0x3, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2d}, 0x90) socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r1, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00) sendmsg$tipc(r2, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0) r3 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'syz_tun\x00', 0x0}) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r0, r4}, 0x40) syz_emit_ethernet(0x11dc0, &(0x7f0000000100)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "2a8435", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x4, 0x5}}}}}}}, 0x0) 1.075296242s ago: executing program 3 (id=215): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0x7ffffffb}]}) mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) getrlimit(0x0, &(0x7f00000001c0)) 985.591462ms ago: executing program 2 (id=216): r0 = socket(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x48, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0xc, "0003000000000102030008030403ffff"}}}]}, 0x48}}, 0x0) 952.726319ms ago: executing program 0 (id=217): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x60, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8}, @IPSET_ATTR_MAXELEM={0x8}]}]}, 0x7d}}, 0x0) 807.710411ms ago: executing program 3 (id=218): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000200)={[{@quota}, {@oldalloc}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@block_validity}, {@jqfmt_vfsv1}]}, 0x3, 0x434, &(0x7f0000000940)="$eJzs289vFFUcAPDvzLZFKNiK+IOCWkVj44+WFlQOXjSaeNDERA94rG0hlYUaWhMhjVZj8GhIvBuPJv4FnvRi1JOJV70bEmJ6AT2tmd2ZdrvdLW3ZdtH9fJKB92be5n2/O/N238zrBtC1hrN/koj9EfF7RAzUqmsbDNf+u7m8OPX38uJUEpXKW38l1XY3lheniqbF6/rzykgakX6WxJEm/c5funxuslyeuZjXxxbOvz82f+nys7PnJ8/OnJ25MHHq1MkT4y88P/FcW/LMYrox9NHc0cOvvXP1janTV9/9+dukyL8hjzYZ3ujgE5VKm7vrrAN15aSng4GwJaWIyE5Xb3X8D0QpVk/eQLz6aUeDA3ZUpVKp9Lc+vFQB/seS6HQEQGcUX/TZ/W+x7dLU445w/aXaDVCW9818qx3piTRv09twf9tOwxFxeumfr7ItduY5BADAGt9n859nms3/0ri/rt3d+drQYETcExEHI+LeiDgUEfdFVNs+EBEPbrH/xkWS9fOf9Nq2EtukbP73Yr62tXb+V8z+YrCU1w5U8+9NzsyWZ47n78lI9O7J6uMb9PHDK7990epY/fwv27L+i7lgHse1nj1rXzM9uTB5OznXu/5JxFBPs/yTlZWAJCIOR8TQNvuYfeqbo62O3Tr/DbRhnanydcSTtfO/FA35F5KN1yfH7oryzPGx4qpY75dfr7zZqv/byr8NsvO/r+n1v5L/YFK/Xju/9T6u/PF5y3ua7V7/fcnb1XJfvu/DyYWFi+MRfcnrtaDr90+svraoF+2z/EeONR//B2P1nTgSEdlF/FBEPBwRj+SxPxoRj0XEsQ3y/+nlx9/bfv47K8t/ekvnf7XQF417mhdK5378bk2ng1vJPzv/J6ulkXzPZj7/NhPX9q5mAAAA+O9JI2J/JOnoSjlNR0drfy9/KPal5bn5hafPzH1wYbr2G4HB6E2LJ10Ddc9Dx/Pb+qI+0VA/kT83/rK0t1ofnZorT3c6eehy/S3Gf+bPUqejA3ac32tB9zL+oXsZ/9C9jH/oXk3G/95OxAHsvmbf/x93IA5g9zWMf8t+0EXc/0P3Mv6hexn/0JXm98atfySvoLCuEOkdEYbCDhU6/ckEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQHv8GAAD//5LX5s8=") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) write$binfmt_script(r1, &(0x7f0000000240)={'#! ', './file1', [], 0xa, "b26c45b0ba9f93e1b884d7ee0fa7c5c76f1c3fb93b37678feb7121427c1f78066c84fa85fce5d562792cbf969492b749b81ec1da8d58"}, 0x41) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x0) r2 = socket(0xa, 0x6, 0x0) getsockopt$inet6_mreq(r2, 0x10d, 0xa4, 0x0, &(0x7f0000000040)) 685.18638ms ago: executing program 2 (id=219): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x200000000000011, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'hsr0\x00'}) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000540)=@bridge_getvlan={0x18, 0x72, 0x301}, 0x18}, 0x1, 0xf00}, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r2, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0x19000}], 0x1, 0x0, 0x0) r3 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xa) setresgid(0x0, r4, 0x0) keyctl$session_to_parent(0x12) r5 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$wireguard(&(0x7f0000000180), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wg0\x00'}) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x4) r6 = open_tree(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', 0x89901) move_mount(r6, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) mount_setattr(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, &(0x7f0000000080)={0x0, 0x0, 0x100000}, 0x20) mkdir(&(0x7f0000000040)='./file0/file0\x00', 0x0) mount(&(0x7f0000000080)=@filename='\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, 0x0) open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x0) umount2(&(0x7f0000000180)='./file0/file0\x00', 0x0) sendmsg$WG_CMD_SET_DEVICE(r5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x28, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$UHID_CREATE2(r7, &(0x7f00000001c0)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r7, 0x0) socket$inet6(0xa, 0x1, 0x0) 546.517436ms ago: executing program 0 (id=220): r0 = timerfd_create(0x0, 0x0) readv(r0, &(0x7f00000031c0)=[{&(0x7f00000020c0)=""/4088, 0xff8}], 0x1) timerfd_settime(r0, 0x3, &(0x7f0000000140), 0x0) ioctl$TFD_IOC_SET_TICKS(r0, 0x40085400, &(0x7f0000000080)=0x6) 478.384026ms ago: executing program 3 (id=221): r0 = syz_open_procfs(0x0, &(0x7f0000000080)='ns\x00') r1 = socket$nl_generic(0x10, 0x3, 0x10) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x28011, r1, 0x0) getdents(r0, &(0x7f00000002c0)=""/137, 0x89) 335.236376ms ago: executing program 1 (id=222): r0 = socket$inet_mptcp(0x2, 0x1, 0x106) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @empty}, 0x10) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000100), 0x4) connect$inet(r0, &(0x7f0000000140)={0x2, 0x4e21, @empty}, 0x10) sendto$inet(r0, &(0x7f0000000180)="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", 0x481, 0x0, 0x0, 0x0) shutdown(r0, 0x1) 205.239926ms ago: executing program 3 (id=223): bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x2, &(0x7f0000000200)=ANY=[], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x13}, 0x90) r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) poll(&(0x7f0000000200)=[{r0}], 0x1, 0x0) read$FUSE(0xffffffffffffffff, &(0x7f0000006440)={0x2020}, 0x2020) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x4, 0x21}) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={0xffffffffffffffff, 0xfca804a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_STATION(r2, 0x0, 0x0) ioctl$PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, 0x0) mkdirat(r0, &(0x7f0000000300)='./file0\x00', 0x100) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000600)={[], [{@euid_gt}, {@uid_lt}, {@dont_hash}, {@obj_user={'obj_user', 0x3d, '\'$5$/\'-'}}]}, 0x1, 0x46a, &(0x7f0000000980)="$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") quotactl$Q_QUOTAON(0xffffffff80000200, &(0x7f00000002c0)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000340)='./file0\x00') bpf$OBJ_GET_PROG(0x7, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x800040, &(0x7f0000000140)={[{@stripe={'stripe', 0x3d, 0xee}}, {@resuid}, {@jqfmt_vfsv1}]}, 0x11, 0x4f6, &(0x7f00000012c0)="$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") 179.917147ms ago: executing program 0 (id=224): syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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") mkdir(&(0x7f00000020c0)='./file0\x00', 0x0) r0 = open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000140)=@v1={0x0, @aes128, 0x0, @desc3}) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x8010661b, &(0x7f0000000280)=@v1={0x0, @aes128, 0x0, @auto="ec590953d5fd8e2d"}) 0s ago: executing program 2 (id=225): landlock_create_ruleset(&(0x7f0000000080)={0x8000}, 0x10, 0x0) socket$alg(0x26, 0x5, 0x0) r0 = syz_io_uring_setup(0xd2, &(0x7f0000000480), &(0x7f0000000040)=0x0, &(0x7f0000000080)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) unshare(0x2a020400) r6 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) syz_io_uring_setup(0x4bd7, &(0x7f00000000c0)={0x0, 0x5ab7, 0x0, 0x0, 0x23c, 0x0, r0}, &(0x7f0000000240), &(0x7f0000000280)) ioctl$SNDCTL_DSP_GETISPACE(r6, 0x80045005, 0x0) io_uring_enter(r0, 0x47ba, 0x0, 0x0, 0x0, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.159' (ED25519) to the list of known hosts. [ 75.081102][ T5218] cgroup: Unknown subsys name 'net' [ 75.204188][ T5218] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 76.771191][ T5218] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 80.938251][ C0] eth0: bad gso: type: 1, size: 1408 [ 80.945916][ C0] eth0: bad gso: type: 1, size: 1408 [ 81.983297][ T5240] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 81.994033][ T5246] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 82.004844][ T5246] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 82.012594][ T5250] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 82.012614][ T5246] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 82.012961][ T5246] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 82.021530][ T5250] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 82.028077][ T5246] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 82.034526][ T5250] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 82.041535][ T5246] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 82.048418][ T5253] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 82.055687][ T5246] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 82.064443][ T5250] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 82.069671][ T5246] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 82.075855][ T5253] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 82.084649][ T5246] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 82.091516][ T5250] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 82.096771][ T5246] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 82.104028][ T5253] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 82.111841][ T5246] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 82.117588][ T5250] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 82.140237][ T5253] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 82.143104][ T5246] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 82.151370][ T5253] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 82.154833][ T5246] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 82.161497][ T5250] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 82.176863][ T5253] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 82.189053][ T5254] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 82.317694][ T54] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 82.326845][ T54] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 82.404408][ T5240] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 82.414011][ T5240] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 82.421663][ T5240] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 82.431275][ T5240] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 82.440128][ T5240] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 82.464491][ T5240] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 83.055363][ T5235] chnl_net:caif_netlink_parms(): no params data found [ 83.326485][ T5234] chnl_net:caif_netlink_parms(): no params data found [ 83.347750][ T5241] chnl_net:caif_netlink_parms(): no params data found [ 83.364203][ T5235] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.371373][ T5235] bridge0: port 1(bridge_slave_0) entered disabled state [ 83.379334][ T5235] bridge_slave_0: entered allmulticast mode [ 83.386914][ T5235] bridge_slave_0: entered promiscuous mode [ 83.437349][ T5235] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.444944][ T5235] bridge0: port 2(bridge_slave_1) entered disabled state [ 83.452153][ T5235] bridge_slave_1: entered allmulticast mode [ 83.460558][ T5235] bridge_slave_1: entered promiscuous mode [ 83.482155][ T5236] chnl_net:caif_netlink_parms(): no params data found [ 83.598894][ T5249] chnl_net:caif_netlink_parms(): no params data found [ 83.722061][ T5235] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 83.790643][ T5235] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 83.834063][ T5252] chnl_net:caif_netlink_parms(): no params data found [ 83.858624][ T5241] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.866061][ T5241] bridge0: port 1(bridge_slave_0) entered disabled state [ 83.873462][ T5241] bridge_slave_0: entered allmulticast mode [ 83.880622][ T5241] bridge_slave_0: entered promiscuous mode [ 83.954368][ T5241] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.961567][ T5241] bridge0: port 2(bridge_slave_1) entered disabled state [ 83.969037][ T5241] bridge_slave_1: entered allmulticast mode [ 83.976407][ T5241] bridge_slave_1: entered promiscuous mode [ 84.001436][ T5235] team0: Port device team_slave_0 added [ 84.014007][ T5235] team0: Port device team_slave_1 added [ 84.020132][ T5234] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.027974][ T5234] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.035766][ T5234] bridge_slave_0: entered allmulticast mode [ 84.043336][ T5234] bridge_slave_0: entered promiscuous mode [ 84.073882][ T5249] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.081038][ T5249] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.088515][ T5249] bridge_slave_0: entered allmulticast mode [ 84.096120][ T5249] bridge_slave_0: entered promiscuous mode [ 84.153891][ T5234] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.161144][ T5234] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.169015][ T5234] bridge_slave_1: entered allmulticast mode [ 84.177672][ T5234] bridge_slave_1: entered promiscuous mode [ 84.211993][ T5249] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.219308][ T5249] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.227320][ T5249] bridge_slave_1: entered allmulticast mode [ 84.234945][ T5249] bridge_slave_1: entered promiscuous mode [ 84.242343][ T5236] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.249882][ T5236] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.257202][ T5236] bridge_slave_0: entered allmulticast mode [ 84.257480][ T54] Bluetooth: hci1: command tx timeout [ 84.264852][ T5236] bridge_slave_0: entered promiscuous mode [ 84.278362][ T5236] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.285615][ T5236] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.293392][ T5236] bridge_slave_1: entered allmulticast mode [ 84.300677][ T5236] bridge_slave_1: entered promiscuous mode [ 84.310649][ T5241] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 84.333347][ T54] Bluetooth: hci0: command tx timeout [ 84.333376][ T5240] Bluetooth: hci3: command tx timeout [ 84.350556][ T5235] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 84.357579][ T5235] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 84.383717][ T5235] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 84.413397][ T54] Bluetooth: hci2: command tx timeout [ 84.418254][ T5240] Bluetooth: hci4: command tx timeout [ 84.490075][ T5241] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 84.499365][ T5240] Bluetooth: hci5: command tx timeout [ 84.519701][ T5235] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 84.530556][ T5235] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 84.557114][ T5235] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 84.571542][ T5234] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 84.584667][ T5234] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 84.601958][ T5249] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 84.615220][ T5236] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 84.643462][ T5241] team0: Port device team_slave_0 added [ 84.707252][ T5249] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 84.719886][ T5236] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 84.745187][ T5241] team0: Port device team_slave_1 added [ 84.770508][ T5236] team0: Port device team_slave_0 added [ 84.792380][ T5252] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.800201][ T5252] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.812688][ T5252] bridge_slave_0: entered allmulticast mode [ 84.820964][ T5252] bridge_slave_0: entered promiscuous mode [ 84.876836][ T5236] team0: Port device team_slave_1 added [ 84.900013][ T5234] team0: Port device team_slave_0 added [ 84.907526][ T5252] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.917820][ T5252] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.926079][ T5252] bridge_slave_1: entered allmulticast mode [ 84.933842][ T5252] bridge_slave_1: entered promiscuous mode [ 84.989557][ T5241] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 84.996665][ T5241] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 85.023119][ T5241] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 85.050259][ T5234] team0: Port device team_slave_1 added [ 85.075166][ T5249] team0: Port device team_slave_0 added [ 85.118344][ T5235] hsr_slave_0: entered promiscuous mode [ 85.125608][ T5235] hsr_slave_1: entered promiscuous mode [ 85.148821][ T5241] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 85.155882][ T5241] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 85.182721][ T5241] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 85.195255][ T5236] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 85.202199][ T5236] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 85.228703][ T5236] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 85.259667][ T5249] team0: Port device team_slave_1 added [ 85.284452][ T5252] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 85.297802][ T5252] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 85.323736][ T5236] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 85.330681][ T5236] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 85.357070][ T5236] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 85.384334][ T5234] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 85.391331][ T5234] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 85.417864][ T5234] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 85.500783][ T5234] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 85.508910][ T5234] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 85.536401][ T5234] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 85.548658][ T5249] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 85.555963][ T5249] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 85.582776][ T5249] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 85.668957][ T5249] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 85.677014][ T5249] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 85.703526][ T5249] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 85.726708][ T5252] team0: Port device team_slave_0 added [ 85.736604][ T5252] team0: Port device team_slave_1 added [ 85.747396][ T5241] hsr_slave_0: entered promiscuous mode [ 85.754204][ T5241] hsr_slave_1: entered promiscuous mode [ 85.760495][ T5241] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 85.768407][ T5241] Cannot create hsr debugfs directory [ 85.900274][ T5234] hsr_slave_0: entered promiscuous mode [ 85.907364][ T5234] hsr_slave_1: entered promiscuous mode [ 85.914684][ T5234] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 85.922243][ T5234] Cannot create hsr debugfs directory [ 85.958075][ T5252] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 85.965206][ T5252] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 85.991243][ T5252] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 86.026457][ T5236] hsr_slave_0: entered promiscuous mode [ 86.033227][ T5236] hsr_slave_1: entered promiscuous mode [ 86.039540][ T5236] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 86.047673][ T5236] Cannot create hsr debugfs directory [ 86.076416][ T5249] hsr_slave_0: entered promiscuous mode [ 86.083804][ T5249] hsr_slave_1: entered promiscuous mode [ 86.090080][ T5249] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 86.098308][ T5249] Cannot create hsr debugfs directory [ 86.121705][ T5252] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 86.128699][ T5252] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.154657][ T5252] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 86.333980][ T5240] Bluetooth: hci1: command tx timeout [ 86.335806][ T2631] cfg80211: failed to load regulatory.db [ 86.413584][ T5240] Bluetooth: hci0: command tx timeout [ 86.414296][ T54] Bluetooth: hci3: command tx timeout [ 86.451980][ T5252] hsr_slave_0: entered promiscuous mode [ 86.458947][ T5252] hsr_slave_1: entered promiscuous mode [ 86.465654][ T5252] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 86.473716][ T5252] Cannot create hsr debugfs directory [ 86.494005][ T54] Bluetooth: hci4: command tx timeout [ 86.494096][ T5240] Bluetooth: hci2: command tx timeout [ 86.572832][ T5240] Bluetooth: hci5: command tx timeout [ 86.897466][ T5235] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 86.930833][ T5235] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 86.993165][ T5235] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 87.007623][ T5241] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 87.019079][ T5241] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 87.039539][ T5235] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 87.050663][ T5241] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 87.064836][ T5241] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 87.186184][ T5234] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 87.205915][ T5234] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 87.241278][ T5234] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 87.268250][ T5234] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 87.383182][ T5249] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 87.418402][ T5249] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 87.465090][ T5249] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 87.499026][ T5236] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 87.513532][ T5236] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 87.530543][ T5249] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 87.556733][ T5236] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 87.604162][ T5236] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 87.715578][ T5235] 8021q: adding VLAN 0 to HW filter on device bond0 [ 87.731688][ T5252] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 87.776514][ T5235] 8021q: adding VLAN 0 to HW filter on device team0 [ 87.797194][ T5252] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 87.808432][ T5252] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 87.823333][ T5252] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 87.858137][ T5241] 8021q: adding VLAN 0 to HW filter on device bond0 [ 87.940137][ T2631] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.947755][ T2631] bridge0: port 1(bridge_slave_0) entered forwarding state [ 87.979945][ T5241] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.025394][ T5294] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.032643][ T5294] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.051322][ T5234] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.158330][ T5299] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.166096][ T5299] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.214706][ T5234] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.251512][ T5300] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.258743][ T5300] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.269658][ T5300] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.276838][ T5300] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.298136][ T5236] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.358045][ T5301] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.365286][ T5301] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.405146][ T5236] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.412998][ T5240] Bluetooth: hci1: command tx timeout [ 88.493535][ T5240] Bluetooth: hci0: command tx timeout [ 88.493912][ T54] Bluetooth: hci3: command tx timeout [ 88.533856][ T5294] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.541041][ T5294] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.575944][ T54] Bluetooth: hci2: command tx timeout [ 88.576023][ T5240] Bluetooth: hci4: command tx timeout [ 88.606293][ T5299] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.613559][ T5299] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.656393][ T5240] Bluetooth: hci5: command tx timeout [ 88.661807][ T5249] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.766928][ T5249] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.814161][ T5299] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.821359][ T5299] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.875081][ T5300] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.882258][ T5300] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.929871][ T5235] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.022426][ T5252] 8021q: adding VLAN 0 to HW filter on device bond0 [ 89.209055][ T5249] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 89.221064][ T5249] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 89.266555][ T5252] 8021q: adding VLAN 0 to HW filter on device team0 [ 89.287981][ T5235] veth0_vlan: entered promiscuous mode [ 89.354318][ T5241] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.368458][ T5235] veth1_vlan: entered promiscuous mode [ 89.396186][ T5301] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.403419][ T5301] bridge0: port 1(bridge_slave_0) entered forwarding state [ 89.430723][ T5234] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.484425][ T5300] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.491605][ T5300] bridge0: port 2(bridge_slave_1) entered forwarding state [ 89.686420][ T5235] veth0_macvtap: entered promiscuous mode [ 89.726904][ T5236] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.766303][ T5235] veth1_macvtap: entered promiscuous mode [ 89.939247][ T5235] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 89.989117][ T5249] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 90.038725][ T5235] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.088162][ T5235] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.116553][ T5235] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.126990][ T5235] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.136913][ T5235] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.159276][ T5236] veth0_vlan: entered promiscuous mode [ 90.237644][ T5236] veth1_vlan: entered promiscuous mode [ 90.438652][ T5241] veth0_vlan: entered promiscuous mode [ 90.490924][ T5234] veth0_vlan: entered promiscuous mode [ 90.496864][ T5240] Bluetooth: hci1: command tx timeout [ 90.515482][ T5236] veth0_macvtap: entered promiscuous mode [ 90.532088][ T5249] veth0_vlan: entered promiscuous mode [ 90.539067][ T5234] veth1_vlan: entered promiscuous mode [ 90.573404][ T5240] Bluetooth: hci0: command tx timeout [ 90.573831][ T1063] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.578845][ T5240] Bluetooth: hci3: command tx timeout [ 90.602859][ T1063] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.620013][ T5241] veth1_vlan: entered promiscuous mode [ 90.640485][ T5252] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 90.653242][ T5240] Bluetooth: hci4: command tx timeout [ 90.654983][ T54] Bluetooth: hci2: command tx timeout [ 90.680252][ T5236] veth1_macvtap: entered promiscuous mode [ 90.733087][ T54] Bluetooth: hci5: command tx timeout [ 90.735103][ T5249] veth1_vlan: entered promiscuous mode [ 90.765534][ T1063] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.770250][ T5234] veth0_macvtap: entered promiscuous mode [ 90.775874][ T1063] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.800625][ T5234] veth1_macvtap: entered promiscuous mode [ 90.838889][ T5236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 90.857671][ T5236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.870571][ T5236] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.886255][ T5236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 90.897212][ T5236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.909567][ T5236] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.946710][ T5236] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.962032][ T5236] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.971729][ T5236] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.981934][ T5236] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.038742][ T5241] veth0_macvtap: entered promiscuous mode [ 91.066097][ T5252] veth0_vlan: entered promiscuous mode [ 91.079240][ T5241] veth1_macvtap: entered promiscuous mode [ 91.113851][ T5234] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.141129][ T5234] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.154009][ T5234] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.164903][ T5234] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.177055][ T5234] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 91.198470][ T5234] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.219710][ T5234] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.231976][ T5234] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.246749][ T5234] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.258759][ T5234] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 91.317769][ T5252] veth1_vlan: entered promiscuous mode [ 91.334104][ T5234] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.369545][ T5234] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.380142][ T5234] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.390099][ T5234] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.420259][ T5347] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 91.435567][ T5249] veth0_macvtap: entered promiscuous mode [ 91.540281][ T5249] veth1_macvtap: entered promiscuous mode [ 91.604335][ T5241] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.604512][ T5241] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.604530][ T5241] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.604550][ T5241] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.604565][ T5241] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.604584][ T5241] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.609241][ T5241] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 91.684565][ T5348] usb usb9: usbfs: interface 0 claimed by hub while 'syz.3.8' sets config #-1 [ 91.701864][ T1271] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.701888][ T1271] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.739702][ T5241] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.739728][ T5241] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.739743][ T5241] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.739760][ T5241] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.739774][ T5241] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.739790][ T5241] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.752224][ T5241] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 91.935431][ T5249] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.952151][ T5249] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.962251][ T5249] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.972962][ T5249] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.986593][ T5249] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.999051][ T5249] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.009364][ T5249] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 92.026839][ T5249] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.042035][ T5249] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 92.060289][ T5241] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.069518][ T5241] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.078644][ T5241] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.087726][ T5241] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.120756][ T1271] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.144242][ T1271] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.148308][ T5249] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 92.166050][ T5249] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.177125][ T5249] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 92.188207][ T5249] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.205363][ T5249] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 92.221008][ T5249] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.239066][ T5249] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 92.251159][ T5249] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.275278][ T5249] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 92.310690][ T5252] veth0_macvtap: entered promiscuous mode [ 92.369648][ T5249] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.381382][ T5249] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.400091][ T5249] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.409109][ T5249] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.441915][ T2970] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.454573][ T2970] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.485429][ T5252] veth1_macvtap: entered promiscuous mode [ 92.569548][ T2970] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.583726][ T2970] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.736900][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.765963][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.806798][ T5252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 92.842714][ T5252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.874429][ T5252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 92.909646][ T5252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.936647][ T5252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 92.957602][ T5252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.980225][ T5252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 93.016088][ T5252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.047599][ T5252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 93.075768][ T5252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.107441][ T5252] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 93.155056][ T5252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 93.183705][ T5252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.216640][ T5252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 93.249596][ T5252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.285218][ T5252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 93.326595][ T5252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.349219][ T5252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 93.372533][ T5252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.412577][ T5252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 93.439348][ T5252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.471905][ T5252] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 93.581661][ T2502] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.596924][ T2502] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.651883][ T5252] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.690155][ T5252] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.721055][ T5252] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.740200][ T5252] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.879057][ T5369] loop4: detected capacity change from 0 to 64 [ 93.956638][ T2509] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.004057][ T2509] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.290406][ T1271] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.355068][ T1271] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.395561][ T8] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 94.864822][ T1107] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.099441][ T1107] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 95.402907][ T2509] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.443943][ T8] usb 2-1: Using ep0 maxpacket: 8 [ 95.451319][ T2509] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 95.490120][ T8] usb 2-1: New USB device found, idVendor=093b, idProduct=a104, bcdDevice= 0.01 [ 95.530940][ T8] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 95.568863][ T8] usb 2-1: Product: syz [ 95.585690][ T8] usb 2-1: Manufacturer: syz [ 95.590344][ T8] usb 2-1: SerialNumber: syz [ 95.637830][ T8] usb 2-1: config 0 descriptor?? [ 95.683390][ T8] go7007 2-1:0.0: probe with driver go7007 failed with error -12 [ 96.023915][ T5297] usb 2-1: USB disconnect, device number 2 [ 96.269556][ T5403] loop0: detected capacity change from 0 to 128 [ 96.397603][ T5403] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 96.527492][ T5403] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 96.566873][ T5410] tap0: tun_chr_ioctl cmd 1074025673 [ 96.603025][ T5299] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 96.813598][ T5240] Bluetooth: hci5: command 0x0405 tx timeout [ 96.826227][ T5299] usb 4-1: Using ep0 maxpacket: 8 [ 96.850032][ T5299] usb 4-1: New USB device found, idVendor=05dc, idProduct=0001, bcdDevice= 0.01 [ 96.888625][ T5299] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 96.941249][ T5299] usb 4-1: config 0 descriptor?? [ 96.956946][ T5299] ums-jumpshot 4-1:0.0: USB Mass Storage device detected [ 97.594603][ T5422] syz.1.32 uses obsolete (PF_INET,SOCK_PACKET) [ 97.925943][ T5299] ums-jumpshot 4-1:0.0: Quirks match for vid 05dc pid 0001: 2 [ 98.053650][ T5299] usb 4-1: USB disconnect, device number 2 [ 98.793378][ T5445] loop0: detected capacity change from 0 to 1024 [ 100.430462][ T5240] Bluetooth: hci5: command 0x0405 tx timeout [ 100.819110][ T5452] loop5: detected capacity change from 0 to 128 [ 100.894981][ T5452] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256 [ 100.898930][ T2919] hfsplus: b-tree write err: -5, ino 4 [ 101.869702][ T5481] netlink: 'syz.1.54': attribute type 2 has an invalid length. [ 102.068605][ T5301] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 102.336669][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 102.489620][ T5301] usb 1-1: Using ep0 maxpacket: 8 [ 102.569879][ T5301] usb 1-1: New USB device found, idVendor=05dc, idProduct=0001, bcdDevice= 0.01 [ 102.620377][ T5301] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 102.721915][ T5301] usb 1-1: config 0 descriptor?? [ 102.781089][ T5301] ums-jumpshot 1-1:0.0: USB Mass Storage device detected [ 102.882807][ T5301] ums-jumpshot 1-1:0.0: Quirks match for vid 05dc pid 0001: 2 [ 102.969366][ T5502] overlayfs: metacopy file 'file0' has too small xattr [ 103.172744][ T5301] usb 1-1: USB disconnect, device number 2 [ 103.402987][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 103.443654][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 103.579989][ T58] I/O error, dev loop0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 0 prio class 0 [ 104.494595][ T5240] Bluetooth: hci5: command 0x0405 tx timeout [ 104.941904][ T5541] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 105.823098][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 106.692451][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 107.213086][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 107.235483][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 107.383550][ T5548] netlink: 12 bytes leftover after parsing attributes in process `syz.2.79'. [ 107.422715][ T2631] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 107.636007][ T5568] loop1: detected capacity change from 0 to 256 [ 107.640866][ T2631] usb 5-1: config 0 has an invalid interface number: 50 but max is 1 [ 107.666900][ T2631] usb 5-1: config 0 has an invalid interface number: 50 but max is 1 [ 107.681710][ T2631] usb 5-1: config 0 has an invalid interface number: 234 but max is 1 [ 107.700199][ T2631] usb 5-1: config 0 has no interface number 0 [ 107.712643][ T2631] usb 5-1: config 0 has no interface number 1 [ 107.746656][ T2631] usb 5-1: config 0 interface 50 altsetting 8 endpoint 0x5 has invalid wMaxPacketSize 0 [ 107.801118][ T2631] usb 5-1: config 0 interface 50 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 107.813876][ T2631] usb 5-1: config 0 interface 50 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 107.868330][ T2631] usb 5-1: too many endpoints for config 0 interface 234 altsetting 32: 218, using maximum allowed: 30 [ 107.890383][ T5568] FAT-fs (loop1): Directory bread(block 64) failed [ 107.910367][ T5568] FAT-fs (loop1): Directory bread(block 65) failed [ 107.940504][ T5568] FAT-fs (loop1): Directory bread(block 66) failed [ 107.962810][ T2631] usb 5-1: config 0 interface 234 altsetting 32 endpoint 0xC has invalid wMaxPacketSize 0 [ 107.972754][ T5568] FAT-fs (loop1): Directory bread(block 67) failed [ 108.000526][ T5568] FAT-fs (loop1): Directory bread(block 68) failed [ 108.012420][ T5572] loop3: detected capacity change from 0 to 512 [ 108.019519][ T2631] usb 5-1: config 0 interface 234 altsetting 32 has 1 endpoint descriptor, different from the interface descriptor's value: 218 [ 108.030856][ T5568] FAT-fs (loop1): Directory bread(block 69) failed [ 108.052829][ T5568] FAT-fs (loop1): Directory bread(block 70) failed [ 108.065890][ T5572] ext4: Unknown parameter 'euid>00000000000000000000' [ 108.077859][ T5568] FAT-fs (loop1): Directory bread(block 71) failed [ 108.082818][ T2631] usb 5-1: config 0 interface 50 has no altsetting 1 [ 108.119588][ T5568] FAT-fs (loop1): Directory bread(block 72) failed [ 108.126905][ T2631] usb 5-1: config 0 interface 234 has no altsetting 0 [ 108.148940][ T2631] usb 5-1: New USB device found, idVendor=046d, idProduct=08c1, bcdDevice=15.dd [ 108.175083][ T5568] FAT-fs (loop1): Directory bread(block 73) failed [ 108.178366][ T2631] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 108.194565][ T5574] loop2: detected capacity change from 0 to 512 [ 108.201632][ T5572] loop3: detected capacity change from 0 to 512 [ 108.221474][ T2631] usb 5-1: Product: syz [ 108.232839][ T5574] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 108.246677][ T5572] ======================================================= [ 108.246677][ T5572] WARNING: The mand mount option has been deprecated and [ 108.246677][ T5572] and is ignored by this kernel. Remove the mand [ 108.246677][ T5572] option from the mount to silence this warning. [ 108.246677][ T5572] ======================================================= [ 108.252717][ T2631] usb 5-1: Manufacturer: syz [ 108.281602][ C0] vkms_vblank_simulate: vblank timer overrun [ 108.343312][ T5574] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended [ 108.354514][ T2631] usb 5-1: SerialNumber: syz [ 108.463232][ T5572] EXT4-fs (loop3): unsupported inode size: 0 [ 108.514857][ T5574] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 108.567106][ T5572] EXT4-fs (loop3): blocksize: 4096 [ 108.721277][ T5574] System zones: 0-2, 18-18, 34-35 [ 109.103831][ T5574] EXT4-fs (loop2): mounted filesystem 00000000-0700-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 109.162666][ T29] audit: type=1800 audit(1722023028.938:2): pid=5580 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.88" name="bus" dev="loop1" ino=1048601 res=0 errno=0 [ 109.183017][ C0] vkms_vblank_simulate: vblank timer overrun [ 109.203327][ T2631] usb 5-1: config 0 descriptor?? [ 109.295684][ T2631] usb 5-1: USB disconnect, device number 2 [ 109.435326][ T5585] loop5: detected capacity change from 0 to 1024 [ 109.512923][ T5585] EXT4-fs (loop5): unsupported inode size: 16384 [ 109.556162][ T5585] EXT4-fs (loop5): blocksize: 1024 [ 109.598020][ T5249] EXT4-fs (loop2): unmounting filesystem 00000000-0700-0000-0000-000000000000. [ 109.683054][ T5591] Bluetooth: MGMT ver 1.23 [ 109.908333][ T5598] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 110.039454][ T5608] loop3: detected capacity change from 0 to 256 [ 110.089368][ T5608] exfat: Deprecated parameter 'utf8' [ 110.138987][ T5608] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x0ec8ca35, utbl_chksum : 0xe619d30d) [ 110.639260][ T5621] xt_cgroup: path and classid specified [ 110.689252][ T5626] netlink: 'syz.2.108': attribute type 3 has an invalid length. [ 110.703338][ T5621] x_tables: ip_tables: osf match: only valid for protocol 6 [ 110.752203][ T5626] netlink: 130984 bytes leftover after parsing attributes in process `syz.2.108'. [ 111.705667][ T5650] loop2: detected capacity change from 0 to 47 [ 111.740675][ T5649] netlink: 'syz.4.116': attribute type 25 has an invalid length. [ 111.780518][ T5649] netlink: 'syz.4.116': attribute type 7 has an invalid length. [ 112.033560][ T5661] process 'syz.0.119' launched './file1' with NULL argv: empty string added [ 112.183141][ T5661] loop0: detected capacity change from 0 to 2048 [ 112.262645][ T5661] Alternate GPT is invalid, using primary GPT. [ 112.269612][ T5661] loop0: p1 p2 p3 [ 112.896218][ T5663] loop5: detected capacity change from 0 to 16 [ 112.909318][ T5663] erofs: (device loop5): erofs_read_inode: bogus i_mode (162700) @ nid 36 [ 112.933550][ T5666] netlink: 'syz.4.122': attribute type 3 has an invalid length. [ 112.943216][ T5666] netlink: 130984 bytes leftover after parsing attributes in process `syz.4.122'. [ 113.128097][ T5676] loop3: detected capacity change from 0 to 128 [ 113.196957][ T5676] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 113.331000][ T5373] udevd[5373]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 113.416551][ T5412] udevd[5412]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory [ 113.443716][ T5684] loop5: detected capacity change from 0 to 1024 [ 113.466914][ T5427] udevd[5427]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory [ 113.944515][ T54] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 113.954422][ T54] Bluetooth: hci0: Injecting HCI hardware error event [ 113.982799][ T54] Bluetooth: hci0: hardware error 0x00 [ 114.544620][ T5684] fuse: Unknown parameter 'user_i00000000000000000000' [ 114.621387][ T5684] warning: `syz.5.127' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 114.722468][ T5684] trusted_key: encrypted_key: keylen parameter is missing [ 114.839532][ T5700] loop1: detected capacity change from 0 to 256 [ 114.895903][ T5702] netlink: 'syz.3.135': attribute type 25 has an invalid length. [ 114.908055][ T5700] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 114.921291][ T5702] netlink: 'syz.3.135': attribute type 7 has an invalid length. [ 114.953388][ T5341] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 114.988613][ T5703] loop0: detected capacity change from 0 to 1024 [ 115.133882][ T0] NOHZ tick-stop error: local softirq work is pending, handler #48!!! [ 115.227319][ T5707] loop5: detected capacity change from 0 to 47 [ 115.293419][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 115.371648][ T5709] mmap: syz.0.134 (5709) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 115.704589][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 116.527651][ T5341] usb 5-1: Using ep0 maxpacket: 32 [ 116.549152][ T5341] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 116.572767][ T54] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 116.579274][ T5341] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 116.586820][ T5717] syz_tun: refused to change device tx_queue_len [ 116.601453][ T5341] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2d51, bcdDevice= 0.00 [ 116.610663][ T5341] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 116.671926][ T5341] usb 5-1: config 0 descriptor?? [ 117.027324][ T2631] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 117.167967][ T5341] koneplus 0003:1E7D:2D51.0001: unbalanced collection at end of report description [ 117.206295][ T5341] koneplus 0003:1E7D:2D51.0001: parse failed [ 117.223424][ T5341] koneplus 0003:1E7D:2D51.0001: probe with driver koneplus failed with error -22 [ 117.235991][ T2631] usb 4-1: New USB device found, idVendor=17cc, idProduct=041d, bcdDevice=fe.95 [ 117.274091][ T2631] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 117.321899][ T2631] usb 4-1: config 0 descriptor?? [ 117.360753][ T2631] usb 4-1: selecting invalid altsetting 1 [ 117.399417][ T2631] snd-usb-caiaq 4-1:0.0: can't set alt interface. [ 117.411119][ T46] usb 5-1: USB disconnect, device number 3 [ 117.427266][ T2631] usb 4-1: unable to init card! (ret=-5) [ 117.464288][ T2631] snd-usb-caiaq 4-1:0.0: probe with driver snd-usb-caiaq failed with error -5 [ 117.598961][ T5297] usb 4-1: USB disconnect, device number 3 [ 118.119205][ T5297] kernel write not supported for file /sysvipc/msg (pid: 5297 comm: kworker/0:4) [ 118.496962][ T5786] netlink: 'syz.1.169': attribute type 3 has an invalid length. [ 118.522763][ T2631] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 118.549420][ T5786] netlink: 130984 bytes leftover after parsing attributes in process `syz.1.169'. [ 118.686497][ T5792] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 118.773005][ T2631] usb 3-1: Using ep0 maxpacket: 16 [ 118.781354][ T5792] CIFS mount error: No usable UNC path provided in device string! [ 118.781354][ T5792] [ 118.799386][ T5792] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 118.811416][ T2631] usb 3-1: New USB device found, idVendor=110a, idProduct=1653, bcdDevice=5e.a7 [ 118.835084][ T2631] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 118.863645][ T2631] usb 3-1: Product: syz [ 118.889815][ T2631] usb 3-1: Manufacturer: syz [ 118.934963][ T5800] program syz.1.173 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 118.980335][ T2631] usb 3-1: SerialNumber: syz [ 119.346287][ T2631] usb 3-1: config 0 descriptor?? [ 119.763586][ T2631] mxuport 3-1:0.0: mxuport_send_ctrl_data_urb - usb_control_msg failed (-71) [ 119.812710][ T2631] mxuport 3-1:0.0: mxuport_send_ctrl_data_urb - usb_control_msg failed (-71) [ 119.892875][ T2631] mxuport 3-1:0.0: probe with driver mxuport failed with error -71 [ 119.971754][ T2631] usb 3-1: USB disconnect, device number 2 [ 119.984327][ T5810] loop4: detected capacity change from 0 to 512 [ 120.043065][ T5810] EXT4-fs: Ignoring removed oldalloc option [ 120.121036][ T5810] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 120.207169][ T5810] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2862: Unable to expand inode 11. Delete some EAs or run e2fsck. [ 120.271135][ T29] audit: type=1326 audit(1722023040.048:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5811 comm="syz.5.181" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd789177299 code=0x0 [ 120.293579][ T5810] EXT4-fs (loop4): 1 truncate cleaned up [ 120.300876][ T5810] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 120.555957][ T5824] loop1: detected capacity change from 0 to 1024 [ 120.598341][ T5828] loop2: detected capacity change from 0 to 128 [ 120.607744][ T5824] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 120.649970][ T5824] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 120.660805][ T5234] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 120.663506][ T5824] EXT4-fs (loop1): orphan cleanup on readonly fs [ 120.678547][ T5824] EXT4-fs error (device loop1): ext4_free_blocks:6590: comm syz.1.184: Freeing blocks not in datazone - block = 0, count = 4096 [ 120.717118][ T5824] EXT4-fs (loop1): 1 orphan inode deleted [ 120.737461][ T5824] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 120.832724][ T5297] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 120.848063][ T5828] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 120.996415][ T5836] program syz.0.189 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 121.892833][ T5297] usb 4-1: Using ep0 maxpacket: 8 [ 121.924688][ T5297] usb 4-1: config 0 contains an unexpected descriptor of type 0x1, skipping [ 121.975618][ T5297] usb 4-1: config 0 contains an unexpected descriptor of type 0x2, skipping [ 122.015407][ T5297] usb 4-1: config 0 has an invalid descriptor of length 13, skipping remainder of the config [ 122.060358][ T5297] usb 4-1: New USB device found, idVendor=1608, idProduct=0615, bcdDevice=e5.2b [ 122.077526][ T5297] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 122.106531][ T5297] usb 4-1: config 0 descriptor?? [ 122.179076][ T5236] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 122.234520][ T5844] CIFS mount error: No usable UNC path provided in device string! [ 122.234520][ T5844] [ 122.262644][ T2631] usb 1-1: new full-speed USB device number 3 using dummy_hcd [ 122.270499][ T5844] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 122.282807][ T5300] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 122.447876][ T5848] loop1: detected capacity change from 0 to 512 [ 122.497514][ T2631] usb 1-1: New USB device found, idVendor=06be, idProduct=a232, bcdDevice=33.f3 [ 122.541933][ T5848] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 122.552556][ T2631] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 122.587433][ T5848] EXT4-fs (loop1): orphan cleanup on readonly fs [ 122.605124][ T2631] usb 1-1: Product: syz [ 122.605576][ T5848] Quota error (device loop1): v2_read_file_info: Block with free entry 1 out of range (1, 6). [ 122.616291][ T2631] usb 1-1: Manufacturer: syz [ 122.629208][ T2631] usb 1-1: SerialNumber: syz [ 122.636124][ T5848] EXT4-fs warning (device loop1): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 122.804470][ T5854] loop2: detected capacity change from 0 to 1024 [ 123.040990][ T5300] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 123.304765][ T5848] EXT4-fs (loop1): Cannot turn on quotas: error -117 [ 123.322657][ T5300] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 123.348529][ T5848] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.192: bad orphan inode 16 [ 123.389857][ T5300] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 123.454573][ T5300] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 123.463060][ T5848] ext4_test_bit(bit=15, block=18) = 1 [ 123.490457][ T5848] is_bad_inode(inode)=0 [ 123.495876][ T2631] usb 1-1: config 0 descriptor?? [ 123.517742][ T62] hfsplus: b-tree write err: -5, ino 4 [ 123.523520][ T5300] usb 5-1: SerialNumber: syz [ 123.524237][ T5848] NEXT_ORPHAN(inode)=0 [ 123.532336][ T5848] max_ino=32 [ 123.542901][ T5848] i_nlink=2 [ 123.547909][ T5848] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 123.633284][ T5857] loop5: detected capacity change from 0 to 256 [ 123.703720][ T5236] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 123.800512][ T5300] usb 5-1: 0:2 : does not exist [ 123.818439][ T5300] usb 5-1: unit 255 not found! [ 123.825228][ T5857] FAT-fs (loop5): Directory bread(block 64) failed [ 123.846636][ T5857] FAT-fs (loop5): Directory bread(block 65) failed [ 123.854064][ T5857] FAT-fs (loop5): Directory bread(block 66) failed [ 123.864272][ T5857] FAT-fs (loop5): Directory bread(block 67) failed [ 123.871861][ T5857] FAT-fs (loop5): Directory bread(block 68) failed [ 123.879092][ T5857] FAT-fs (loop5): Directory bread(block 69) failed [ 123.887129][ T5300] usb 5-1: 5:0: cannot get min/max values for control 2 (id 5) [ 123.900636][ T5857] FAT-fs (loop5): Directory bread(block 70) failed [ 123.916171][ T5300] usb 5-1: 5:0: cannot get min/max values for control 3 (id 5) [ 123.926725][ T5857] FAT-fs (loop5): Directory bread(block 71) failed [ 123.947018][ T5861] loop1: detected capacity change from 0 to 128 [ 123.962964][ T5857] FAT-fs (loop5): Directory bread(block 72) failed [ 123.979569][ T2631] dvb-usb: found a 'AME DTV-5100 USB2.0 DVB-T' in warm state. [ 123.985359][ C0] eth0: bad gso: type: 1, size: 1408 [ 124.001867][ T5857] FAT-fs (loop5): Directory bread(block 73) failed [ 124.016466][ T5300] usb 5-1: USB disconnect, device number 4 [ 124.069464][ T5864] loop2: detected capacity change from 0 to 64 [ 124.074602][ T5861] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 124.094732][ T2631] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter) [ 124.096326][ T5861] ext4 filesystem being mounted at /39/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 124.112721][ T46] usb 4-1: USB disconnect, device number 4 [ 124.137826][ C0] vkms_vblank_simulate: vblank timer overrun [ 124.215221][ T2631] dvb-usb: AME DTV-5100 USB2.0 DVB-T error while loading driver (-19) [ 124.220398][ T5861] syz.1.197 (pid 5861) is setting deprecated v1 encryption policy; recommend upgrading to v2. [ 124.238107][ T5864] Trying to free block not in datazone [ 124.267620][ T2631] usb 1-1: USB disconnect, device number 3 [ 124.275836][ T5864] Trying to free block not in datazone [ 124.281563][ T29] audit: type=1800 audit(1722023044.048:4): pid=5865 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.195" name="bus" dev="loop5" ino=1048607 res=0 errno=0 [ 124.284197][ T5693] udevd[5693]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 124.335016][ T5864] Trying to free block not in datazone [ 124.340541][ T5864] Trying to free block not in datazone [ 124.384509][ T5864] Trying to free block not in datazone [ 124.400828][ T5864] minix_free_block (loop2:6): bit already cleared [ 124.450561][ T5864] Trying to free block not in datazone [ 124.461510][ T5864] Trying to free block not in datazone [ 124.489707][ T5236] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 124.657625][ T5868] hub 6-0:1.0: USB hub found [ 124.691315][ T5868] hub 6-0:1.0: 1 port detected [ 124.697601][ T5870] loop1: detected capacity change from 0 to 512 [ 124.740796][ T5870] EXT4-fs: Ignoring removed oldalloc option [ 124.786925][ T5870] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 124.847296][ T5870] EXT4-fs (loop1): 1 truncate cleaned up [ 124.888797][ T5870] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 125.039731][ T5236] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 125.112726][ T2631] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 125.940677][ T2631] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 126.409788][ T2631] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 126.459266][ T5899] loop1: detected capacity change from 0 to 1024 [ 126.490926][ T2631] usb 6-1: New USB device found, idVendor=1e7d, idProduct=2db4, bcdDevice= 0.00 [ 126.497005][ T5899] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 126.524551][ T2631] usb 6-1: New USB device strings: Mfr=0, Product=9, SerialNumber=0 [ 126.542039][ T2631] usb 6-1: Product: syz [ 126.579108][ T2631] usb 6-1: config 0 descriptor?? [ 126.596287][ T5899] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 126.616477][ T5899] EXT4-fs (loop1): orphan cleanup on readonly fs [ 126.629411][ T5899] EXT4-fs error (device loop1): ext4_free_blocks:6590: comm syz.1.205: Freeing blocks not in datazone - block = 0, count = 4096 [ 126.688824][ T5899] EXT4-fs (loop1): 1 orphan inode deleted [ 126.745412][ T5899] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 127.099393][ T2631] konepure 0003:1E7D:2DB4.0002: item fetching failed at offset 10/11 [ 127.136919][ T2631] konepure 0003:1E7D:2DB4.0002: parse failed [ 127.185884][ T2631] konepure 0003:1E7D:2DB4.0002: probe with driver konepure failed with error -22 [ 127.448823][ T5300] usb 6-1: USB disconnect, device number 2 [ 127.827643][ T5236] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 128.071349][ T5942] loop0: detected capacity change from 0 to 128 [ 128.107051][ C0] ================================================================== [ 128.115170][ C0] BUG: KASAN: stack-out-of-bounds in bq_flush_to_queue+0x3a/0x610 [ 128.123004][ C0] Read of size 8 at addr ffffc90002e0f8f0 by task syz.4.214/5924 [ 128.130740][ C0] [ 128.133071][ C0] CPU: 0 UID: 0 PID: 5924 Comm: syz.4.214 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0 [ 128.143322][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 128.153403][ C0] Call Trace: [ 128.153419][ C0] [ 128.153430][ C0] dump_stack_lvl+0x241/0x360 [ 128.153471][ C0] ? __pfx_dump_stack_lvl+0x10/0x10 [ 128.153507][ C0] ? __pfx__printk+0x10/0x10 [ 128.153538][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 128.153580][ C0] ? _printk+0xd5/0x120 [ 128.153609][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 128.153653][ C0] print_report+0x169/0x550 [ 128.153696][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 128.153736][ C0] ? __virt_addr_valid+0x45f/0x530 [ 128.153766][ C0] ? bq_flush_to_queue+0x3a/0x610 [ 128.153799][ C0] kasan_report+0x143/0x180 [ 128.153839][ C0] ? validate_chain+0x11e/0x5900 [ 128.153868][ C0] ? bq_flush_to_queue+0x3a/0x610 [ 128.153906][ C0] bq_flush_to_queue+0x3a/0x610 [ 128.153941][ C0] ? __pfx_validate_chain+0x10/0x10 [ 128.153973][ C0] __cpu_map_flush+0x5d/0xd0 [ 128.154006][ C0] xdp_do_check_flushed+0x136/0x240 [ 128.154040][ C0] __napi_poll+0xe4/0x490 [ 128.154071][ C0] net_rx_action+0x89b/0x1240 [ 128.154118][ C0] ? __pfx_net_rx_action+0x10/0x10 [ 128.154150][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 128.154191][ C0] ? sched_clock+0x4a/0x70 [ 128.154236][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 128.154283][ C0] handle_softirqs+0x2c6/0x970 [ 128.154323][ C0] ? __irq_exit_rcu+0xf4/0x1c0 [ 128.154362][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 128.154400][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 128.154440][ C0] ? irqtime_account_irq+0xd4/0x1e0 [ 128.154487][ C0] __irq_exit_rcu+0xf4/0x1c0 [ 128.154523][ C0] ? __pfx___irq_exit_rcu+0x10/0x10 [ 128.154566][ C0] irq_exit_rcu+0x9/0x30 [ 128.154599][ C0] common_interrupt+0xaa/0xd0 [ 128.154637][ C0] [ 128.154647][ C0] [ 128.154658][ C0] asm_common_interrupt+0x26/0x40 [ 128.154695][ C0] RIP: 0010:refill_stock+0x2bd/0x470 [ 128.154736][ C0] Code: 40 42 80 3c 2b 00 74 08 4c 89 f7 e8 1d f8 f7 ff f6 44 24 41 02 75 54 41 f7 c7 00 02 00 00 74 01 fb 48 c7 44 24 20 0e 36 e0 45 <4b> c7 44 25 00 00 00 00 00 66 43 c7 44 25 09 00 00 43 c6 44 25 0b [ 128.154758][ C0] RSP: 0018:ffffc90002e0f8a0 EFLAGS: 00000206 [ 128.154783][ C0] RAX: dbf477da80d49a00 RBX: 1ffff920005c1f1c RCX: ffffffff94f1e903 [ 128.154804][ C0] RDX: dffffc0000000000 RSI: ffffffff8c0ad5a0 RDI: ffffffff8c606920 [ 128.154826][ C0] RBP: ffffc90002e0f970 R08: ffffffff90179c2f R09: 1ffffffff202f385 [ 128.154847][ C0] R10: dffffc0000000000 R11: fffffbfff202f386 R12: 1ffff920005c1f18 [ 128.154868][ C0] R13: dffffc0000000000 R14: ffffc90002e0f8e0 R15: 0000000000000246 [ 128.154902][ C0] ? refill_stock+0x112/0x470 [ 128.154941][ C0] ? __pfx_refill_stock+0x10/0x10 [ 128.154981][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 128.155024][ C0] ? obj_cgroup_uncharge_pages+0xfa/0x200 [ 128.155068][ C0] obj_cgroup_uncharge_pages+0x157/0x200 [ 128.155111][ C0] ? __pfx_lock_release+0x10/0x10 [ 128.155150][ C0] ? __pfx_obj_cgroup_uncharge_pages+0x10/0x10 [ 128.155191][ C0] ? account_kernel_stack+0x38d/0x3f0 [ 128.155228][ C0] ? __pfx_account_kernel_stack+0x10/0x10 [ 128.155262][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 128.155307][ C0] __memcg_kmem_uncharge_page+0xe9/0x290 [ 128.155353][ C0] exit_task_stack_account+0x226/0x340 [ 128.155389][ C0] do_exit+0x1d02/0x27f0 [ 128.155420][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 128.155462][ C0] ? __pfx_do_exit+0x10/0x10 [ 128.155492][ C0] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 128.155528][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 128.155567][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 128.155608][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 128.155645][ C0] ? _raw_spin_lock_irq+0xdf/0x120 [ 128.155676][ C0] do_group_exit+0x207/0x2c0 [ 128.155702][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 128.155727][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 128.155768][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 128.155798][ C0] get_signal+0x16a1/0x1740 [ 128.155841][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 128.155882][ C0] ? __pfx_get_signal+0x10/0x10 [ 128.155922][ C0] arch_do_signal_or_restart+0x96/0x860 [ 128.155962][ C0] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 128.155997][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 128.156045][ C0] ? syscall_exit_to_user_mode+0xa3/0x370 [ 128.156078][ C0] syscall_exit_to_user_mode+0xc9/0x370 [ 128.156111][ C0] do_syscall_64+0x100/0x230 [ 128.156146][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 128.156182][ C0] RIP: 0033:0x7f8366b77299 [ 128.156204][ C0] Code: Unable to access opcode bytes at 0x7f8366b7726f. [ 128.156217][ C0] RSP: 002b:00007f83678b90f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 128.156245][ C0] RAX: fffffffffffffe00 RBX: 00007f8366d06210 RCX: 00007f8366b77299 [ 128.156265][ C0] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f8366d06210 [ 128.156283][ C0] RBP: 00007f8366d06208 R08: 00007f83678b96c0 R09: 00007f83678b96c0 [ 128.156304][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8366d06214 [ 128.156322][ C0] R13: 000000000000006e R14: 00007ffdfad84390 R15: 00007ffdfad84478 [ 128.156353][ C0] [ 128.156363][ C0] [ 128.156370][ C0] The buggy address belongs to stack of task syz.4.214/5924 [ 128.156385][ C0] internal error: frame has invalid marker: 1172321806 [ 128.156398][ C0] [ 128.156408][ C0] The buggy address belongs to the virtual mapping at [ 128.156408][ C0] [ffffc90002e08000, ffffc90002e11000) created by: [ 128.156408][ C0] copy_process+0x5d1/0x3dc0 [ 128.156454][ C0] [ 128.156461][ C0] The buggy address belongs to the physical page: [ 128.156472][ C0] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x3 pfn:0x7ce5e [ 128.156499][ C0] memcg:ffff8880232e1682 [ 128.156511][ C0] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 128.156543][ C0] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 128.156567][ C0] raw: 0000000000000003 0000000000000000 00000001ffffffff ffff8880232e1682 [ 128.156581][ C0] page dumped because: kasan: bad access detected [ 128.156593][ C0] page_owner tracks the page as allocated [ 128.156602][ C0] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x102dc2(GFP_HIGHUSER|__GFP_NOWARN|__GFP_ZERO), pid 5914, tgid 5914 (syz.4.214), ts 127362904797, free_ts 127138102143 [ 128.156644][ C0] post_alloc_hook+0x1f3/0x230 [ 128.156678][ C0] get_page_from_freelist+0x2e4c/0x2f10 [ 128.156717][ C0] __alloc_pages_noprof+0x256/0x6c0 [ 128.156754][ C0] alloc_pages_mpol_noprof+0x3e8/0x680 [ 128.156795][ C0] __vmalloc_node_range_noprof+0x971/0x1460 [ 128.156821][ C0] dup_task_struct+0x444/0x8c0 [ 128.156855][ C0] copy_process+0x5d1/0x3dc0 [ 128.156888][ C0] kernel_clone+0x226/0x8f0 [ 128.156924][ C0] __se_sys_clone3+0x2cb/0x350 [ 128.156962][ C0] do_syscall_64+0xf3/0x230 [ 128.156990][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 128.157023][ C0] page last free pid 5909 tgid 5908 stack trace: [ 128.157038][ C0] free_unref_folios+0x103a/0x1b00 [ 128.157073][ C0] folios_put_refs+0x76e/0x860 [ 128.157096][ C0] free_pages_and_swap_cache+0x2ea/0x690 [ 128.157131][ C0] tlb_flush_mmu+0x3a3/0x680 [ 128.157161][ C0] tlb_finish_mmu+0xd4/0x200 [ 128.157191][ C0] exit_mmap+0x44f/0xc80 [ 128.157216][ C0] __mmput+0x115/0x390 [ 128.157245][ C0] exit_mm+0x220/0x310 [ 128.157266][ C0] do_exit+0x9b2/0x27f0 [ 128.157288][ C0] do_group_exit+0x207/0x2c0 [ 128.157312][ C0] get_signal+0x16a1/0x1740 [ 128.157340][ C0] arch_do_signal_or_restart+0x96/0x860 [ 128.157373][ C0] syscall_exit_to_user_mode+0xc9/0x370 [ 128.157400][ C0] do_syscall_64+0x100/0x230 [ 128.157428][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 128.157462][ C0] [ 128.157468][ C0] Memory state around the buggy address: [ 128.157486][ C0] ffffc90002e0f780: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 128.157503][ C0] ffffc90002e0f800: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 128.157521][ C0] >ffffc90002e0f880: 00 00 00 00 00 00 00 00 f1 f1 f1 f1 00 f2 f2 f2 [ 128.157534][ C0] ^ [ 128.157550][ C0] ffffc90002e0f900: 00 f3 f3 f3 00 00 00 00 00 00 00 00 00 00 00 00 [ 128.157567][ C0] ffffc90002e0f980: 00 00 00 00 f1 f1 f1 f1 00 f2 f2 f2 00 f3 f3 f3 [ 128.157581][ C0] ================================================================== [ 128.157712][ C0] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 128.157728][ C0] CPU: 0 UID: 0 PID: 5924 Comm: syz.4.214 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0 [ 128.157758][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 128.157772][ C0] Call Trace: [ 128.157781][ C0] [ 128.157791][ C0] dump_stack_lvl+0x241/0x360 [ 128.157823][ C0] ? __pfx_dump_stack_lvl+0x10/0x10 [ 128.157854][ C0] ? __pfx__printk+0x10/0x10 [ 128.157887][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 128.157925][ C0] ? vscnprintf+0x5d/0x90 [ 128.157962][ C0] panic+0x349/0x860 [ 128.157990][ C0] ? check_panic_on_warn+0x21/0xb0 [ 128.158018][ C0] ? __pfx_panic+0x10/0x10 [ 128.158047][ C0] ? _raw_spin_unlock_irqrestore+0xd8/0x140 [ 128.158074][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 128.158112][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 128.158139][ C0] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 128.158164][ C0] ? print_report+0x502/0x550 [ 128.158207][ C0] check_panic_on_warn+0x86/0xb0 [ 128.158235][ C0] ? bq_flush_to_queue+0x3a/0x610 [ 128.158266][ C0] end_report+0x77/0x160 [ 128.158304][ C0] kasan_report+0x154/0x180 [ 128.158342][ C0] ? validate_chain+0x11e/0x5900 [ 128.158370][ C0] ? bq_flush_to_queue+0x3a/0x610 [ 128.158406][ C0] bq_flush_to_queue+0x3a/0x610 [ 128.158440][ C0] ? __pfx_validate_chain+0x10/0x10 [ 128.158470][ C0] __cpu_map_flush+0x5d/0xd0 [ 128.158506][ C0] xdp_do_check_flushed+0x136/0x240 [ 128.158538][ C0] __napi_poll+0xe4/0x490 [ 128.158567][ C0] net_rx_action+0x89b/0x1240 [ 128.158611][ C0] ? __pfx_net_rx_action+0x10/0x10 [ 128.158642][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 128.158681][ C0] ? sched_clock+0x4a/0x70 [ 128.158724][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 128.158769][ C0] handle_softirqs+0x2c6/0x970 [ 128.158806][ C0] ? __irq_exit_rcu+0xf4/0x1c0 [ 128.158844][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 128.158881][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 128.158919][ C0] ? irqtime_account_irq+0xd4/0x1e0 [ 128.158960][ C0] __irq_exit_rcu+0xf4/0x1c0 [ 128.158994][ C0] ? __pfx___irq_exit_rcu+0x10/0x10 [ 128.159035][ C0] irq_exit_rcu+0x9/0x30 [ 128.159067][ C0] common_interrupt+0xaa/0xd0 [ 128.159102][ C0] [ 128.159111][ C0] [ 128.159122][ C0] asm_common_interrupt+0x26/0x40 [ 128.159157][ C0] RIP: 0010:refill_stock+0x2bd/0x470 [ 128.159195][ C0] Code: 40 42 80 3c 2b 00 74 08 4c 89 f7 e8 1d f8 f7 ff f6 44 24 41 02 75 54 41 f7 c7 00 02 00 00 74 01 fb 48 c7 44 24 20 0e 36 e0 45 <4b> c7 44 25 00 00 00 00 00 66 43 c7 44 25 09 00 00 43 c6 44 25 0b [ 128.159216][ C0] RSP: 0018:ffffc90002e0f8a0 EFLAGS: 00000206 [ 128.159239][ C0] RAX: dbf477da80d49a00 RBX: 1ffff920005c1f1c RCX: ffffffff94f1e903 [ 128.159260][ C0] RDX: dffffc0000000000 RSI: ffffffff8c0ad5a0 RDI: ffffffff8c606920 [ 128.159280][ C0] RBP: ffffc90002e0f970 R08: ffffffff90179c2f R09: 1ffffffff202f385 [ 128.159301][ C0] R10: dffffc0000000000 R11: fffffbfff202f386 R12: 1ffff920005c1f18 [ 128.159321][ C0] R13: dffffc0000000000 R14: ffffc90002e0f8e0 R15: 0000000000000246 [ 128.159354][ C0] ? refill_stock+0x112/0x470 [ 128.159392][ C0] ? __pfx_refill_stock+0x10/0x10 [ 128.159430][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 128.159471][ C0] ? obj_cgroup_uncharge_pages+0xfa/0x200 [ 128.159517][ C0] obj_cgroup_uncharge_pages+0x157/0x200 [ 128.159559][ C0] ? __pfx_lock_release+0x10/0x10 [ 128.159595][ C0] ? __pfx_obj_cgroup_uncharge_pages+0x10/0x10 [ 128.159634][ C0] ? account_kernel_stack+0x38d/0x3f0 [ 128.159669][ C0] ? __pfx_account_kernel_stack+0x10/0x10 [ 128.159702][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 128.159745][ C0] __memcg_kmem_uncharge_page+0xe9/0x290 [ 128.159788][ C0] exit_task_stack_account+0x226/0x340 [ 128.159823][ C0] do_exit+0x1d02/0x27f0 [ 128.159852][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 128.159892][ C0] ? __pfx_do_exit+0x10/0x10 [ 128.159917][ C0] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 128.159951][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 128.159989][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 128.160028][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 128.160064][ C0] ? _raw_spin_lock_irq+0xdf/0x120 [ 128.160092][ C0] do_group_exit+0x207/0x2c0 [ 128.160118][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 128.160142][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 128.160180][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 128.160209][ C0] get_signal+0x16a1/0x1740 [ 128.160249][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 128.160289][ C0] ? __pfx_get_signal+0x10/0x10 [ 128.160327][ C0] arch_do_signal_or_restart+0x96/0x860 [ 128.160365][ C0] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 128.160399][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 128.160445][ C0] ? syscall_exit_to_user_mode+0xa3/0x370 [ 128.160476][ C0] syscall_exit_to_user_mode+0xc9/0x370 [ 128.160512][ C0] do_syscall_64+0x100/0x230 [ 128.160546][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 128.160580][ C0] RIP: 0033:0x7f8366b77299 [ 128.160600][ C0] Code: Unable to access opcode bytes at 0x7f8366b7726f. [ 128.160613][ C0] RSP: 002b:00007f83678b90f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 128.160639][ C0] RAX: fffffffffffffe00 RBX: 00007f8366d06210 RCX: 00007f8366b77299 [ 128.160659][ C0] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f8366d06210 [ 128.160676][ C0] RBP: 00007f8366d06208 R08: 00007f83678b96c0 R09: 00007f83678b96c0 [ 128.160696][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8366d06214 [ 128.160713][ C0] R13: 000000000000006e R14: 00007ffdfad84390 R15: 00007ffdfad84478 [ 128.160744][ C0] [ 128.161256][ C0] Kernel Offset: disabled