last executing test programs: 9.180782348s ago: executing program 3: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffc}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x48) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x2000000000000078, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x2, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x43}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r3}, 0x10) munlock(&(0x7f0000e4a000/0x1000)=nil, 0x1000) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x10000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10) r5 = socket$inet(0x2, 0x1, 0x0) bind$inet(r5, &(0x7f0000000000)={0x2, 0x4e23, @multicast1}, 0x10) r6 = socket(0x0, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=@ipv6_getanyicast={0x14, 0x3e, 0x300, 0x0, 0x25dfdbfc, {}, ["", "", "", "", "", ""]}, 0x14}}, 0x0) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r5, 0x89f3, &(0x7f0000000b80)={'sit0\x00', &(0x7f0000000b00)={'ip_vti0\x00', 0x0, 0x7800, 0x700, 0x5, 0xff, {{0x9, 0x4, 0x3, 0x0, 0x24, 0x64, 0x0, 0x0, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @empty, {[@rr={0x7, 0xf, 0x11, [@private=0xa010102, @rand_addr=0x64010101, @private=0xa010100]}]}}}}}) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000c40)={'ip6gre0\x00', &(0x7f0000000bc0)={'ip6tnl0\x00', 0x0, 0x29, 0x4, 0x3, 0x6, 0x44, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @ipv4={'\x00', '\xff\xff', @private=0xa010101}, 0x40, 0x80, 0x7, 0x80}}) r10 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r10, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'}) r11 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000000)={'syzkaller0\x00', 0x0}) setsockopt$packet_add_memb(r10, 0x107, 0x1, &(0x7f0000000080)={r12, 0x3, 0x6, @dev}, 0x10) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000d00)={'syztnl1\x00', &(0x7f0000000c80)={'ip6_vti0\x00', 0x0, 0x29, 0x3, 0x9, 0x100, 0x40, @local, @loopback, 0x1, 0x8007, 0x3f}}) sendmsg$ETHTOOL_MSG_COALESCE_GET(0xffffffffffffffff, &(0x7f0000000f40)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000f00)={&(0x7f0000000d40)={0x1a4, 0x0, 0x300, 0x70bd27, 0x8a3, {}, [@HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}]}, @HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}]}, @HEADER={0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}]}, @HEADER={0x80, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}]}]}, 0x1a4}, 0x1, 0x0, 0x0, 0x4044484}, 0x4004804) sendmmsg$inet(r5, &(0x7f0000003ac0)=[{{&(0x7f0000000180)={0x2, 0x4e23, @empty}, 0x10, 0x0}}], 0x1, 0x20044840) sendmmsg$inet(r5, &(0x7f0000000a80)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000100)='*', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000380)='\\', 0x1}], 0x1}}], 0x2, 0x0) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) splice(r5, 0x0, r15, 0x0, 0x2, 0x0) r16 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0x7, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000edff00000000000000000018110000", @ANYRES32=r0, @ANYRES32=r4, @ANYRES8=r14, @ANYRES32=r1, @ANYRES64=r5], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r16}, 0x10) 8.440853941s ago: executing program 0: socket(0x0, 0x0, 0x0) syz_mount_image$squashfs(&(0x7f0000000040), &(0x7f0000000240)='./file0\x00', 0x210c00, &(0x7f0000001480)=ANY=[], 0x0, 0x1b8, &(0x7f0000000780)="$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") 8.159754935s ago: executing program 3: syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000600)='./file0\x00', 0x800714, &(0x7f0000000780)={[{@dioread_nolock}, {@abort}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9c7c}}, {@debug}, {@mblk_io_submit}, {@errors_continue}, {@test_dummy_encryption}, {@auto_da_alloc}, {@nodiscard}]}, 0xfe, 0x43a, &(0x7f00000001c0)="$eJzs289vFFUcAPDvzLag/GpFREHQKhobf7S0oHLwotHEgyYmesBjbQtBFmpoTYQ0Wo3BoyHxbjya+Bd40otRTyZe9W5IiDYmoKea2Z0pu0u39Mcui8znkwy8t/N23/vum7fz9r1uAKU1lP2TROyIiN8iYqCebS4wVP/v2uL85D+L85NJLC29+WdSK3d1cX6yKFo8b3ueGU4j0k+TvJJms+cvnJ6oVqfP5fnRuTPvjc6ev/DMqTMTJ6dPTp8dP3bs6JGx558bf7YjcWZxXd3/4cyBfa++fen1yeOX3vnpm6y9ew/WzzfG0SlDWeB/LdW0nnu805X12M6GdNLXw4awLpWIyLqrvzb+B6IS1ztvIF75pKeNA7oquzdtbX96YQm4gyXR6xYAvVHc6LPvv8Vxi6Yet4UrL9a/AGVxX8uP+pm+SPMy/V2sfygiji/8+2V2RJfWIQAAGn2XzX+eXmn+l8behnK78j2UwYi4JyJ2R8S9EbEnIu6LqJW9PyIeWGf9rVtDN85/0ssbCmyNsvnfC/neVvP8r5j9xWAlz+2sxd+fnDhVnT6cvyfD0b81y4+tUsf3L//6ebtzjfO/7MjqL+aCeTsu97Us0E1NzE10alJ65eOI/X0rxZ8s7wQkEbEvIvav76V3FYlTT359oF2hm8e/ig7sMy19FfFEvf8XoiX+QrL6/uToXVGdPjxaXBU3+vmXi2+0q39T8XdA1v/bmq//lhIDfyeN+7Wz66/j4u+ftf1Os9Hrf0vyVm3Pekv+2AcTc3PnxiK2JK/V8k2Pj19/bpEvymfxDx9aefzvzp+Txf9gRGQX8cGIeCgiHs7b/khEPBoRh1aJ/8eXHnt34/F3Vxb/1Iqff8vX/2Bz/68/UTn9w7ft6l9b/x+tpYbzR2qffzex1gZu5r0DAACA/4s0InZEko4sp9N0ZKT+N/x7YltanZmde+rEzPtnp+q/ERiM/rRY6RpoWA8dSxbyV6znx/O14uL8kXzd+IvK3bX8yORMdarHsUPZbW8z/jN/VHrdOqDr/F4Lyqt1/Kc9agdw67n/Q3kZ/1Bexj+U10rj/6OWvL0AuDO5/0N5Gf9QXsY/lJfxD6W0md/1S5Q5Eelt0QyJLiV6/ckEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQGf8FAAD//yWS7pw=") prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() sched_setscheduler(0x0, 0x2, 0x0) setsockopt$inet6_IPV6_HOPOPTS(0xffffffffffffffff, 0x29, 0x36, 0x0, 0x8) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000040)=0x4, 0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000000c0), 0x4000000000001a7, 0x0) recvmmsg(r0, 0x0, 0x0, 0x2, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events.local\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000001400), 0x208e24b) 7.541076279s ago: executing program 0: syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000040)='./file2\x00', 0x0, &(0x7f0000000240)=ANY=[], 0xfd, 0x11f3, &(0x7f0000001b80)="$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") r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0) ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000000)={0x0, 0xaeae}) 5.755879781s ago: executing program 0: bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) syz_mount_image$iso9660(&(0x7f0000002900), &(0x7f0000000000)='./file0/file0\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='nojoliet,mode=0x00000000000000e4,dmode=0x0000000000000005,check=relaxed,overriderockperm,utf8,mode=0x0000000000000000,nojoliet,cruft,mode=0xfffffffffffffffb,utf8,session=0x0000000000000043,hide,dmode=0x000000000000001f,uid=', @ANYRESHEX, @ANYRES32, @ANYRESDEC=0x0, @ANYRES64=0x0, @ANYRESOCT, @ANYRES32=0x0], 0x1, 0x58f, &(0x7f0000000780)="$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") syz_emit_ethernet(0x3e, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff080047000030000000000006907800000000000000008608ffffffff0002"], 0x0) syz_usb_connect(0x0, 0x41, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000e518a708ac0501859d200000690109022f00010000000009040000000e010000152403"], 0x0) 5.629684138s ago: executing program 2: mount(0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000001500)={0x0, 0x0, &(0x7f00000014c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="ac0000001200010500"/56, @ANYRES32=0x0, @ANYBLOB="00000000000000feffffff0000000000040002005c0001000058"], 0xac}}, 0x0) 4.474041991s ago: executing program 4: syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x2000480, &(0x7f0000000140), 0x1, 0x766, &(0x7f0000000580)="$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") r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x6000) io_setup(0x2, &(0x7f0000000200)=0x0) io_submit(r1, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0x0, 0x0, 0x1, 0x0, r0, 0x0}]) 4.35980482s ago: executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f00000003c0)) 4.143711407s ago: executing program 3: bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0x0}, 0x10) r0 = gettid() rt_sigaction(0x0, 0x0, 0x0, 0x0, 0x0) unshare(0x2040400) memfd_create(&(0x7f00000006c0)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\xf2\xed\x04\x00\x00\x00\xd4N\x12\x9b\x1f\t\xd1Z+\x86T\x16\xf8\x01\x00\x00\x00\x9f+\x8d!\x0fG\xab\xc2\xdc\xa3\xb3\xae8\x9f9?\xefo\xa4k\x01\xb2>\xa1\x9c\x86xm\xe6\x9bZ4\x91\x1a\xdb\xdd\x89\xb9\xc0LF;\xd6\x84\x195\x06\x00\x00\x00~\xf3S\x12\"p^\xc1jP\x8a\xc6[\xbd\xe7q]\xdd\r\x1aZS\x01*\x1b\xfd\xbcMA\xdcq\xa1\x00\xb3\xf9\x91r\x7f\xdc\xf1\xc3G,\xdb\xccS\x15\x95b\x17\xab\xe4?\x96\x95\xa4kP\x99YO\xb8V\xd5p\x90X\xaaf', 0x0) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000007c0)={{0xffffffffffffffff, 0xffffffffffffffff}, &(0x7f0000000740), &(0x7f0000000780)='%-5lx \x00'}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x3, &(0x7f0000000140)=@framed, &(0x7f00000000c0)='syzkaller\x00', 0x3f, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000700)={0x1, 0x3}, 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2, &(0x7f0000000800)=[r1], &(0x7f0000000840)=[{0x2, 0x2, 0x10, 0x4}, {0x1, 0x1, 0x4, 0xc}], 0x10, 0x4}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x7, 0x15, &(0x7f0000000a40)=ANY=[@ANYBLOB="180000000900000000000000ffff00001834000003000000000000000000000018510000070000000000000000000000186000000400000000000000ff000000185600000a00000000000000000000000a920100fcffffff18120000", @ANYRES32, @ANYBLOB="0000000000000000b7030000000003d408a388110000245b2007110b581913dd1ac5b545c6e9b864299948e832fad97ec0ee2afd117fb79fcfc06838e17800e5470e05005f6c76b504133f2cfdbb2ca9e313de0af66c29253e571e1c8f37de46f21798f4a05912dad9b01e8fb32749291adb9044612d9ca930721e7c87908d", @ANYRES32, @ANYBLOB="0000000000000000b702000000000000850000008600000095000000"], &(0x7f0000000080)='syzkaller\x00', 0xffffffe5, 0x4c, &(0x7f0000000540)=""/76, 0x41000, 0x41, '\x00', 0x0, 0x4, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000600)={0x0, 0xc, 0x1, 0xff}, 0x10, 0x0, 0xffffffffffffffff, 0x1, &(0x7f0000000640)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000000680)=[{0x3, 0x5, 0x8}], 0x10, 0x4e}, 0x90) timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r2 = timerfd_create(0x0, 0x0) read(r2, &(0x7f0000000140)=""/196, 0xc4) 4.069877462s ago: executing program 1: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003580)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10) clock_nanosleep(0x9, 0x0, &(0x7f0000000080)={0x0, 0x3938700}, &(0x7f0000000200)) 3.692788575s ago: executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000340)={'wlan1\x00', 0x0}) sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)={0x20, 0xd, 0x6, 0x0, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}]}, 0x20}}, 0x0) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[@ANYBLOB="98030000", @ANYRES16=r1, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r3], 0x398}}, 0x0) 3.660229387s ago: executing program 1: r0 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000001500)={0x0, 0x0, &(0x7f00000014c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="ac0000001200010500"/56, @ANYRES32=0x0, @ANYBLOB="00000000000000feffffff0000000000040002"], 0xac}}, 0x0) 3.52445986s ago: executing program 4: add_key$keyring(&(0x7f0000000280), 0x0, 0x0, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = dup(r2) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000580)={"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"}) 3.247437404s ago: executing program 2: syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000040)='./file2\x00', 0x0, &(0x7f0000000240)=ANY=[], 0xfd, 0x11f3, &(0x7f0000001b80)="$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") r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0) ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000000)={0x0, 0xaeae}) 2.760011079s ago: executing program 3: creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f00000000c0)=@framed, &(0x7f00000001c0)='GPL\x00'}, 0x90) bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000240)={{0x1, 0x1, 0x5f}, './file0\x00'}) 2.639931527s ago: executing program 1: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10) futex_waitv(0x0, 0x0, 0x0, 0x0, 0x0) 2.469222546s ago: executing program 4: bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$smc(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$SMC_PNETID_ADD(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01000000000000e60000020000000900010073797a3000000000140002"], 0x34}}, 0x0) sendmsg$SMC_PNETID_FLUSH(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000200)={0x14, r2, 0x1}, 0x14}}, 0x0) 2.358871223s ago: executing program 3: mount(0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000001500)={0x0, 0x0, &(0x7f00000014c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="ac0000001200010500"/56, @ANYRES32=0x0, @ANYBLOB="00000000000000feffffff0000000000040002005c0001000058"], 0xac}}, 0x0) 2.139324648s ago: executing program 0: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x800714, &(0x7f00000003c0)={[{@dioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0x7}}, {@quota}, {@noinit_itable}, {@errors_continue}, {@errors_continue}, {@errors_remount}, {@delalloc}, {@auto_da_alloc}, {@norecovery}, {@errors_continue}, {@nobh}]}, 0xee, 0x442, &(0x7f0000000640)="$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") creat(&(0x7f00000000c0)='./bus\x00', 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) syz_open_procfs(0x0, &(0x7f0000000300)='net/kcm\x00') mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) r0 = open(&(0x7f0000000000)='./bus\x00', 0x40003, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef9cc093fce47d85272036dc78388e3dc177e9b496", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001"}) 2.129632195s ago: executing program 1: bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan1\x00'}) sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x4c}}, 0x0) 1.72936078s ago: executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f00000003c0)) 1.514998614s ago: executing program 1: syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40c8, &(0x7f0000000200), 0xfb, 0x496, &(0x7f0000000f40)="$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") bpf$MAP_CREATE(0x0, 0x0, 0x0) chdir(&(0x7f0000000240)='./file0\x00') r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x41009432, &(0x7f0000000200)) 1.346157209s ago: executing program 2: r0 = socket(0x1d, 0x2, 0x6) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000040)={'vcan0\x00', 0x0}) r2 = socket(0x1d, 0x2, 0x6) bind$can_j1939(r2, &(0x7f0000000000)={0x1d, r1, 0x3}, 0x18) sendmsg$L2TP_CMD_TUNNEL_MODIFY(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[], 0x14}}, 0x0) io_uring_setup(0x32c4, &(0x7f0000000340)) sendmsg$nl_route(r2, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000a00)={0x0, 0x28}}, 0x0) sendmsg$TIPC_NL_MON_GET(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={0x0}}, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 1.015027217s ago: executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000340)={'wlan1\x00', 0x0}) sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)={0x20, 0xd, 0x6, 0x0, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}]}, 0x20}}, 0x0) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[@ANYBLOB="98030000", @ANYRES16=r1, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r3, @ANYBLOB], 0x398}}, 0x0) 1.000000203s ago: executing program 3: bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0x0}, 0x10) r0 = gettid() rt_sigaction(0x0, 0x0, 0x0, 0x0, 0x0) unshare(0x2040400) memfd_create(&(0x7f00000006c0)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\xf2\xed\x04\x00\x00\x00\xd4N\x12\x9b\x1f\t\xd1Z+\x86T\x16\xf8\x01\x00\x00\x00\x9f+\x8d!\x0fG\xab\xc2\xdc\xa3\xb3\xae8\x9f9?\xefo\xa4k\x01\xb2>\xa1\x9c\x86xm\xe6\x9bZ4\x91\x1a\xdb\xdd\x89\xb9\xc0LF;\xd6\x84\x195\x06\x00\x00\x00~\xf3S\x12\"p^\xc1jP\x8a\xc6[\xbd\xe7q]\xdd\r\x1aZS\x01*\x1b\xfd\xbcMA\xdcq\xa1\x00\xb3\xf9\x91r\x7f\xdc\xf1\xc3G,\xdb\xccS\x15\x95b\x17\xab\xe4?\x96\x95\xa4kP\x99YO\xb8V\xd5p\x90X\xaaf', 0x0) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000007c0)={{0xffffffffffffffff, 0xffffffffffffffff}, &(0x7f0000000740), &(0x7f0000000780)='%-5lx \x00'}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x3, &(0x7f0000000140)=@framed, &(0x7f00000000c0)='syzkaller\x00', 0x3f, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000700)={0x1, 0x3}, 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2, &(0x7f0000000800)=[r1], &(0x7f0000000840)=[{0x2, 0x2, 0x10, 0x4}, {0x1, 0x1, 0x4, 0xc}], 0x10, 0x4}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x7, 0x15, &(0x7f0000000a40)=ANY=[@ANYBLOB="180000000900000000000000ffff00001834000003000000000000000000000018510000070000000000000000000000186000000400000000000000ff000000185600000a00000000000000000000000a920100fcffffff18120000", @ANYRES32, @ANYBLOB="0000000000000000b7030000000003d408a388110000245b2007110b581913dd1ac5b545c6e9b864299948e832fad97ec0ee2afd117fb79fcfc06838e17800e5470e05005f6c76b504133f2cfdbb2ca9e313de0af66c29253e571e1c8f37de46f21798f4a05912dad9b01e8fb32749291adb9044612d9ca930721e7c87908d", @ANYRES32, @ANYBLOB="0000000000000000b702000000000000850000008600000095000000"], &(0x7f0000000080)='syzkaller\x00', 0xffffffe5, 0x4c, &(0x7f0000000540)=""/76, 0x41000, 0x41, '\x00', 0x0, 0x4, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000600)={0x0, 0xc, 0x1, 0xff}, 0x10, 0x0, 0xffffffffffffffff, 0x1, &(0x7f0000000640)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000000680)=[{0x3, 0x5, 0x8}], 0x10, 0x4e}, 0x90) timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r2 = timerfd_create(0x0, 0x0) read(r2, &(0x7f0000000140)=""/196, 0xc4) 975.76349ms ago: executing program 4: prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0x9}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r0 = socket$netlink(0x10, 0x3, 0xf) r1 = socket$kcm(0x29, 0x2, 0x0) sendmsg$kcm(r1, &(0x7f00000016c0)={&(0x7f0000000000)=@pptp={0x18, 0x2, {0x0, @broadcast}}, 0x80, 0x0}, 0x40000) sendmsg$sock(r1, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000000), 0x1}, 0x0) bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4) getrlimit(0xb, &(0x7f0000000040)) r2 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000100)={0x20000008}) r3 = signalfd(r2, &(0x7f0000000140), 0x8) r4 = signalfd(r2, &(0x7f0000000180)={[0x5]}, 0x8) r5 = dup3(r2, 0xffffffffffffffff, 0x80000) r6 = eventfd2(0x8, 0x80001) r7 = eventfd2(0x3, 0x800) eventfd(0x6) r8 = eventfd(0x800a6) write$eventfd(r8, &(0x7f0000000000)=0xfffffffffffffffb, 0x8) r9 = dup(r8) read$eventfd(r9, &(0x7f0000000040), 0x8) ioctl$TUNGETIFF(r9, 0x800454d2, &(0x7f0000003680)={'sit0\x00'}) r10 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r10, 0x84, 0x64, &(0x7f00000010c0)=[@in={0x2, 0x0, @empty}], 0x10) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r10, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x4e20, 0x0, @loopback}]}, &(0x7f00000002c0)=0x10) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r10, 0x84, 0x4, 0x0, 0x0) r11 = syz_open_procfs(0x0, &(0x7f0000002180)='net/netstat\x00') preadv(r10, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/8, 0x8}, {&(0x7f0000001400)=""/58, 0x3a}, {&(0x7f0000001480)=""/87, 0x57}, {&(0x7f0000001500)=""/156, 0x9c}], 0x4, 0x0, 0x0) io_submit(0x0, 0x6, &(0x7f00000035c0)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x2, 0x2, r3, &(0x7f0000000240)="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", 0x1000, 0x7, 0x0, 0x0, r4}, &(0x7f0000001300)={0x0, 0x0, 0x0, 0x1, 0x8001, r2, &(0x7f0000001240)="07b208f965398250ca9d947f11fb5c2fc1c77f2e29c41aa841b3a57c00df95998f618560d9ec164a573b1cde0003b774d1eb4043c48473567acd2d450872ab9703c2238514d6e004c93a192616e4d43dcf82389d6f180cb663aeef5a974e94cb67c0bad9461bf0a5276ba6bd086de77770d514ccb4ce05b3d0dbc6bd7bf7500e4bd35cd4ba3d010f67bd6dcb14338350a0b603e4660b5862ec45423d719714", 0x9f, 0x8, 0x0, 0x1}, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x6, 0x8b9c, r5, &(0x7f0000001340)="fb80234f7d7da88baa25ca5c729f027962167103002d4c93d93fe8d15c6fb449022adf7fb289237be2a084cdb12e17ed950c04dc5e680a3650f41a9cbf6084630d6a5941ea8a4732494bb2dfb4e4e2542e89", 0x52, 0x3fc00000000, 0x0, 0x1, r6}, &(0x7f0000002400)={0x0, 0x0, 0x0, 0x2, 0x8eb, r2, &(0x7f0000003700)="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", 0x100e, 0x200, 0x0, 0x2, r7}, &(0x7f00000036c0)={0x0, 0x0, 0x0, 0x3, 0x101, r0, &(0x7f0000002440)="87951d51509b85c173a9c6fcaed4299eca096c17296d67fd14595d4694e98dc274185b0798214bb66b977e21eed24793702916742bc30d4ac4ec92f692d8c40fe43f93049da10179058a820b75db944611ea77ed21fa20919f2e5002a301dd404f6b78b0006243a94f7ba514157c66cb7b170c4495155a40b3253b7db29d886d82a7c927c199ccbf449d7dfb0295285630a648d981791881c366152c430a57fd44a75c397cf7a45f0e14c5b13213c8d0fba73c8f25d98b6fb8083ea3bc38144398b295958d1361109de038a72a11d00541d411ea7b5583ae9d00310952327e0eed72c671e0767e463df39d80e8c8539865aef34ca50c1598a459a34da2beb9a8dde4da84a2d6c43ac27163814d99efe45b10736ce037818a0b7b6ddba5e1325c2aba72656eecedf150e21c2481e81537dcad5d16c7f1e6a8ba5d3fdb81de7d6f6a82062857d33b67bad62afb33150a1c85f06d076230c21c08ca4b8b9d5ce6bad1e1766ab7d294dc3fbaa91218e0820299370ed725bf47ac08e3d8a860b4ac683a904774dbc5ddc099f11ae5cc29336399ad2c2863a04631be44c2d3ae4e84a55ecb5419cceaee10033199f59d0232baf12c24a22a589956828b166502f2af0df873d720cc4834e4e85ef7a147e2862aae0e10373c721f00463f73971abcf8363a40a7753afe4becb077487c0015eca22e3e812343350a4df4a31ed51de6a50d5900967c0df587e5310e8a994771a7c083a3a59e6da32b1c209d86f901ea5a79c69078730cb97cbef47770fe84243f43baa3aefc07d535d041bb96b02f1bb7012ad99d4a4d2171de6e591d566c7d0fa4e3d60d691516c4c93c6b46f039989391b1a341bda3e8f136c6cec6f960c6fbb1c43df8a0d81ed0a9359c013efca6a2f61af53fa6f97076b2438704c77ba7471c9250057238e90fa2ad2be8adbe903918a22db2c9c964194bbb415037af43959690d5b97613ec7c8e3f54343df77b4381256adc24046e01e9d127a02be169be2b2405b76c352688e70923dcaa3fcf4f08d27735d1d10931639dc33a752d421228dd831928ef53800e52c6a48c86581330498a77fe1be7941861b95550e8e5b6a1b49690bb5698653fee6fb147d15bb44072183832b2cfb4c9fc5945b00ad1f09c4dd77af3c88f671abe2681c33103322cb680158e72861b72c3df3c7e7982b31cb01e25425762b9153711a6c0152625ec88be5aaf40da50863aa0ed9389297ceea1250f21f52573fdb234aa6cdb9323256b36a3678cc510208b51c1822611dd7ea4770b0698e019310f826286a5f817b29f98795d467350c978d8261bc3c8adbf080f3415fa8c81221606cced9496fd6677073f7148a8c9bc49e8674d1d7a7dddb9344202e44c1a09cda9cf00e08ed2f9bc6b7a923113e721d92309a8d47233e8b6ff9f9971183af0a85f97e8c3b2e871f4319ce612dd638440ecbb428fb912045d6d2da256b53d16a3781f584397f3af148bb65c038b7c4d9de510f9295786634f825075a4d1cffa0870f1606c03082adcf44db5f2147b189207a281d91da5616a37a458c47cd31016e1b459641e8f0d1d469b3237de47eb24c2aaed31bde7a9902e5dc7536cf77124c199ee7de3a2427e1a991bda71e3677423322e901ad6ddc81932aa3cc19552db2202f09ddd12085741c1582809be888a2dd9cf04b59cfb88ac028f730a3d8c35bec860b456595f624acdd8fdecc348f0dc002db48f47c2a470a718901851fe594a2763f3c07197d2f9db3c735bfe5e90d2704aa828ab644ac1deb27b41b5944dc2d1c7390d8bd51669c869fe8b64f531f897462b58487946aea7b0d38f6ca2d87529b3bed23b386e3a923211589f0f3e43a401c101c317b4cbf8ec838c7285717a9050c9796058da8553217fd6356dbd43e51ea27f2ce6aef61d3c087322cede379329daec4eeeece236bf3f589535ca6c329c3f1bbf44a3ad02f1ca9c1d355bd6097b49e6fd5ac1c8600f970736f3cb6971a3c06e80ef1af90e61ab428ca28df5e66332c3468c5edda7a5305834593117a17c7351fac3277d8418bbe21ff69930eeeef62aa125b9e25c4269c490782c225151893044fb84716cc2fd70e9757c9a49dcc0d8b5b2f848d733dda038dd501acc4d75d13e160fde00731c8d8c0ee0f3581643bfda4afcc31f2426cc0a2d6c73de9490e6cc94e54a7ec3f67fad7afcfee52bdc29bfc080861ff0589c4bb58b40c2472e3bb0f56db13d777e2c616cb90d44848f93fa7f832e5d29006aad4ca97b2264c2fc6217577a1fc539b9c6ddcd542ca9d18bf020174adc301a6cf763ba9a7a22e2ecf1ac5c19858c757d6f39ade9c4763432cbd4d05a0a067c47eabb1b6ccf32d3cf494ddd113e05e167013f64bdc9dea7c9985de468af0175275a1ea93077c081d824b1c402366b2204684b3ae571069b025e1809c2b0bbf703ce43b8431e20abddd3315316aaafaf6036b539c511cf352c73c3151d8d4634e1d85e99afc9daf696b57ecc2bf214f572f314ff530a692b88d99658d136287dda15163cbac25dcbdfbb63f6fe52922e635840eb35d492ebe9452fdeb2237cafb9c89e57fd2b99bb24eb6430279faf09aa9ba400b2a3b5079fd383ee48edb0d27d8af23e2a57edac3af7444161e1d96bb5fffa0e7a435b724ed2788020e31d509daff8d5649a58021a0437cfbffab0bf870fd0d8e44e38f51e2560e6ee4b96e4148cad7d52ea8578f74a809fc8468d92efcd5c35acbc98ac332724d23133bddb17d4bf824adc6c5dd3af465302a4b87498f539563d5951adcfc61194fac275c4b73932b76d81b0225b4701c60bb37a5814392a19c2bf6706a93894fab42642b7e554021eaa69d13db51c8dbd247f3889c08366547f12fc9d3d23145c73d1236c29cc242ba0cf7dbb254b0014dceaf20b9cd1ae472aa9b8876d0574455241bc57bfdc85633d865ec330e5caa04a7520ec982f4439a0d9eb7171d6e4ac085b7c504287ebbfcc00198746b6e261eebb093e5f8b6be597419bad8685f408608507a575e36c6eec0fd3423ee2b7c2ffe3d99dfd17acf6bb907781c2da85beeeb0534c0b3c9b109a2b7c73a61392112466c9c2468145bbc2d67a187376cdaffdf246f8403c76d858107f940e4b7f9ef2f66d77a2f4a113aef4adf84ef4c6913032bf256bfbb0d4d05f3c3e9e7b232a198738f233f1e71b7be4b6e2ed2f175cd01230c242d05497e8f5923650f615a639b908a9b824b8bfe888119bd61200f66c25f55fe4df2d96cb4094d4c2eee71692dff328d474060a9ca66a80193e54c3c497e1f5d9e089f2654a54965a9e588bf002f01d8e74154b750dbc8a36f3fbe82e91aa01c5f6c8f3027ad08227efa3109f1c50ef4356873ec9362ba160dc0eb4981739e45376c825a8f40d7b68e97bf25bf3b46bfeb6cfa1437ffabd876ec16ae67b9393659b6ea922554c9b6d270bad5d9eb9fde7af3c4eb450321c472901dbfed439464d38c06f13af82b410b8b82e90d75dfcf83a4af11bb482ce6686cc9f810f470a269bca06ae07f6c7fd86c3868ce0f147343cd4942208555a64fe621276b06b4c7ee16e3906015cad2c6dcedfa25ea4208f9f06015480a1c65e74c947daf6951f7d78a6039b55e6e54a1d66029a25998e551d366af01ded649bd382e2d907a4aa62072b748c4cc8c5c71b0460763ff0f62e03fa4bb1cc51fecfef990cb233b9d5729093c0b4464a72a6c4b11f67661a6a852b4a4806fe180da53c4c17e1c38979bb6882270e47f151ec61f1ea9e8a22d5b502bef3ce617b7a80dc2fce34184a7447831a0c28a1422aa3510e0ce006682cc3aad40f830dc7bd7252d41408daeffc84d36f094ecdd778d2298bf097071299d2b81e57b1ae5c093904c018b4987dd3df65a93701eff6c1b01e49cb835bad4422d39185962689b9a28245b236df2dfc83d04c6ec09f7cfb6df70f86784073b2cec49c3110801ad024fa1dcbd1e957e45c06775f12d315af12dd12bb3d476e37141f8c55f7494d35d910af97355a4a058905f206ca2c5c8bdfbefe9c6911fad89c4922a759422fb6f4de78d472a70132c7839be2404403a1f5e496d2c6bbdc72fa2b4f7c49c6e12185a7ba1e455dc6ff4ab2c216889bd3dafc8d52def6d4eb5deec2731ece79c70b8f4124b5827f80fcb53ef4233d23f7d619d96820d12435d8e85dce8f1ae52b781e9e393d9e8a082d228b9dd789538feead1562743159c933520b12383f7a6f3855e0dd2408d0ec660f9bdec64cbe29c4f2b5f71b0b69037b89ae06ecb6fcac7e3072892f4617ef12e0917cb4dbe3c1f6e0ae2fa251f0dd15acc01e01bff2bbc3256fd20e5bb187c0eb8e34afe092352a88dc28ada32fe64f1fa7f7931495a27c35de7d94cb845195d2df253b5ced104abb9d973b7826a17f415e9a150f2087c08a42d0754dd55e79b90b8329a8b6ef5c24c3be1a3317c791d2cd84ef63e20b6116be2c70c95bdb5aeba12eebd12fab2c3eebaa5543deeb1b1c801db23476ff6eae7e702ce69b7f4d651a37ff6b973f8f2794a29bf47276ae00af8aa6f08f21c6c6b2e61b538bfaa8697c1e83d66557d13dd0bea1a3b8f58d586dd4a4d6a161352af92c4337bad3859bd533208031cb5c9a47cb7cae2ba5a168cd8ead27c838a9a122842b3456dd4bffa4bb2f8ef92650d03f7e6936ae43b2bcb5a000c1a2a13449b5c2387c40ed61e81bca6dcf966b8eedb05f69166e4a5a7909e6e55d3d9c6f2f49f4dd452002c5b4c8dff8820a57529a7fa901f078c974686465bc61e6a7b3cd0050ce1ba522254f8ecc5ab48c1bf5b79ac948b6c0872c3e563c94a9c2861456418f90048afb2497492d97c378911d3f287a69b73793ef7977f625341f65853dee83dfb08de375210f87e7df9001df2cad1bd93de0731b9787c190419b4e346e9f691543f6a53d329b92cbeaf33017ab5c84acd630fdf5d3b8f9674ab886dc79f7ee03ff6ab840401a845d3fa97c5dc37dd823182317c1470ff3029a473d5b9dbffc4dfb2e275be05cf1ccd11f9e51820a435550692fc6a9ce33d514b97245ee0a7c1cf43edb663e5a8d2a5351904e4aab29f3914673406dfa540ae83ecfc16fcbd4683902d45af558d032a386028e2427650046499c8c73bbb596f42f8987c523aeef18df8baa05e419409f23dc8861fda3a1bff8bacfe66e8f8b4d7050406489a824fa3d8173ba72051c26deed0ef07fee32bfead91bcb8edc412c65f5c7fbbdbd45ee09cc66cf9fb25313456a2023d429fb05520d25d3bb24970866518c21fc2369af9c5a2c261bb16a4631f772f72cba9c2c0a87770ab78af6adf65546d5d7cd4d08b18ae89601a3ca97f5e4c5c8234d31e2ea86d4c05dcdb8d33e172bdb33aabebe98717cdb7e0e5f9ad9d765ef3f5bf1c072dd280b6a02e15bf3e66503692597e04b119842c752093a6b8baf15adab20d5e9cc34d413ff64ccb487bb4876ef60ad65cb0e15a11bd43bb49a69083a478393dea33c288305f8fadc30a3b1a852995723959b302feb438f1b7f59c6438de59d5c924860a5e5dae24157263d243620e1ac5aa3eab0dc5f22b9fe3df1c4f3be924597fb7da1586359c24e1c57e55d3452c1b08ee4aa875f4b83b78f46a4bfadbeb87d34cb345b1339baf8372173a245a128775cb3a016d823235b0826ea45d92a36c8988263af5a2ccc454eb386bdbf26282f1ec1384e4d6f3f13956f504184849ba104608d27d8e9fc7a21b34b02fdbfc660a7e44845ac49d51d44d9f70de79f32b309049c0f50fae80d45045854", 0x1000, 0x8000000000000000, 0x0, 0x2}, &(0x7f0000003580)={0x0, 0x0, 0x0, 0x5, 0x20, r10, &(0x7f0000003480)="3639c77d5793245ac9cf45af4e2568a3bb5ee8da19658ee206972d88b0f586c78eaf7106a1cdc57dc801b82d2f890ce5c1d97d51fc1683b07b2c783377b98c3bb9a7f4024de2772ba1f1689db49146ef229042eb0f9ec40720bc76c4d4ef0fc68f706f38da3fb54c0019558ce5e354fcb04c516e59b51e9c7ac5e752011b64b9197fe0fecd7f7a43568a18fea16707937127fdb4f0107247959dd3ce655a8bef60e73f0f054462a756dd1c9d7433e295a17b7d23c03f68fd8e082a9635a10dc98c7712d2154333b68aa4b54a67655a", 0xcf, 0xffff, 0x0, 0x3, r11}]) getsockopt$ARPT_SO_GET_ENTRIES(r5, 0x0, 0x61, &(0x7f0000001700)=ANY=[@ANYBLOB="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"], &(0x7f0000003640)=0x31) 593.86609ms ago: executing program 1: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xc, &(0x7f0000000a00)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1a30ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000c60000000000000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='rss_stat\x00', r0}, 0x10) syz_genetlink_get_family_id$mptcp(&(0x7f0000000200), 0xffffffffffffffff) 499.061868ms ago: executing program 0: move_pages(0x0, 0x20000000000001ab, &(0x7f0000000000), 0x0, &(0x7f0000000000)=[0x0], 0x0) unshare(0x4000400) socket(0x2000000000000021, 0x2, 0x0) shutdown(0xffffffffffffffff, 0x0) write$binfmt_aout(0xffffffffffffffff, 0x0, 0xff2e) bpf$PROG_LOAD(0x5, 0x0, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2) 49.956279ms ago: executing program 2: bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) syz_mount_image$iso9660(&(0x7f0000002900), &(0x7f0000000000)='./file0/file0\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='nojoliet,mode=0x00000000000000e4,dmode=0x0000000000000005,check=relaxed,overriderockperm,utf8,mode=0x0000000000000000,nojoliet,cruft,mode=0xfffffffffffffffb,utf8,session=0x0000000000000043,hide,dmode=0x000000000000001f,uid=', @ANYRESHEX, @ANYRES32, @ANYRESDEC=0x0, @ANYRES64=0x0, @ANYRESOCT, @ANYRES32=0x0], 0x1, 0x58f, &(0x7f0000000780)="$eJzs3EFv29YdAPDHxK4FFwsGFGvSNEDZtIfsEFeSFwdGd4hGUzZbSRRIunBOQ7E4XTC7G5YNWHPLpVuBDTvtPPS6T7Av1c/ggZKcyrITpU5XucDvB1jvSfzzvf8jaD6I0GMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEKUbDWbrSj0ssHuXvx8yVaR91+w/bi9/54oTlieeg1RCFH9FxqNcG380bU3vo39Wf1yM1wdv7saGnXRCE9ef/OnH76xdKnecTmKwgsS+kE8/uLJ7z49ONj/46ITWZDtdJCVedbvbKdxVubx5sZG84Odbhl3s15a3i+rtB8nRdqp8iK+ldwLIWyux+na/Xx3sL3V6aXxreTncWtz8+7tdrO5EX+0Nkw7RZkPPvhorUx2sl4vG2yPYurNt9vvhLv1ifhxVsVV2ujH8cNHB/vr85Ksg1ovE9SeF9RuttutVrvd2rizeedus9mYnK3PPlhqzgizuywt/qTlB/fa5EQZvTm+xr32/V3F4XyOkn8uOgUAAADg/ywa3WOPRvflr41q3ayXNk/EHEULSw8AAAD4Hoy+2l+d3AAI4VqITn//BwAAAH7c/vbCNXYhikI5XImOl6oM996PDjt1rXN4efzR5dkWq+716MqkkVGxsTR5l6Q3orfGQW8dR38zKR7OyyMqiuXo6aslEP4ero9jrj8Ylw+Ot4x7We1mvXQtyXsftkKnc+VSle5Vf/780V9CKIqjy18N+lei8PDRwf7ab35/8GCUy9O6laeHk19InPqhxMlcVsJULn96tu5xMuJ7J0e8PLoRU4/6q0F/ddxvc3r8l8a7X/oO4/8yvD2OeXt1XK6eHH+j7rO1dsbop7NoDffeX5l09pIjn8nixjjmxq336uK9W5Mty1NZtOdl0Z4+/uc6Fs/JYvpYrM/LYv0VswBYlIezs9Cp+f/UvHuOq9yc2b2ewufO7r+d28uX4d1xzLvXl76dkWau6M15V/TmS87rIZydxX/CzX//K4TdcPM4+HlzbN3vP07MqtHh1/UOX5/q93iledlrHx3Vh2Xl8A/hzcdfPLn96PDTz/Y/2/+83V7faP6i2bzTDsujYUwKcw8AZ0iLb6LV6q9RUWTDX7c2N1udaieNizz5OC6yre00zgZVWiQ7ncF2Gg+LvMqTvFdXPsm20jIud4fDvKjibl7Ew7zM9kZPfoknj34p035nUGVJOeylnTKNk3xQdZIq3srKJB7u/qqXlTtpMdq5HKZJ1s2STpXlg7jMd4skXYvjMk2nArOtdFBl3ayuDuJhkfU7xf34k7y320/jrbRMimxY5eMGj/vKBt286I+aXVv0wQaAC+JxmDzB7tmj7L5zJTTmxCx6jADASbOz9MqiEwIAAAAAAAAAAAAAAE6ZXq73y8kjfV55ReBiK/deP2vTO4tPbLoSQli6AGlcwEoUQrgAacxUGhcjjeXJv+1526kP7vzgn9Qxi7wqAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDZ/hcAAP//3L6Sfw==") syz_emit_ethernet(0x3e, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff080047000030000000000006907800000000000000008608ffffffff0002"], 0x0) syz_usb_connect(0x0, 0x41, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000e518a708ac0501859d200000690109022f00010000000009040000000e010000152403"], 0x0) 0s ago: executing program 4: epoll_create1(0x0) r0 = socket$netlink(0x10, 0x3, 0xf) bind$netlink(r0, 0x0, 0x0) mount$tmpfs(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x0, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x103042, 0x0) ftruncate(r1, 0x2007fff) r2 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) read(r2, &(0x7f0000000180)=""/19, 0xfffffe47) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) read(r3, &(0x7f0000000040)=""/148, 0xffffff96) kernel console output (not intermixed with test programs): 94][ T5397] loop1: detected capacity change from 0 to 64 [ 250.498039][ T5398] loop2: detected capacity change from 0 to 256 [ 250.547250][ T2973] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 250.738319][ T2973] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 250.976682][ T2973] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 251.553533][ T5402] loop2: detected capacity change from 0 to 1024 [ 251.886456][ T2973] bridge_slave_1: left allmulticast mode [ 251.892669][ T2973] bridge_slave_1: left promiscuous mode [ 251.899280][ T2973] bridge0: port 2(bridge_slave_1) entered disabled state [ 251.984985][ T2973] bridge_slave_0: left allmulticast mode [ 251.990991][ T2973] bridge_slave_0: left promiscuous mode [ 251.997567][ T2973] bridge0: port 1(bridge_slave_0) entered disabled state [ 252.026429][ T5405] loop1: detected capacity change from 0 to 2048 [ 252.054772][ T2445] hfsplus: b-tree write err: -5, ino 4 [ 252.150418][ T5078] Bluetooth: hci5: command tx timeout [ 252.284686][ T5405] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 252.716310][ T2973] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 252.807362][ T2973] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 252.867283][ T2973] bond0 (unregistering): Released all slaves [ 252.889625][ T5075] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 252.948107][ T5412] loop2: detected capacity change from 0 to 64 [ 252.973799][ T5374] bridge0: port 1(bridge_slave_0) entered blocking state [ 252.981611][ T5374] bridge0: port 1(bridge_slave_0) entered disabled state [ 252.989356][ T5374] bridge_slave_0: entered allmulticast mode [ 252.998603][ T5374] bridge_slave_0: entered promiscuous mode [ 253.173534][ T5374] bridge0: port 2(bridge_slave_1) entered blocking state [ 253.182712][ T5374] bridge0: port 2(bridge_slave_1) entered disabled state [ 253.190414][ T5374] bridge_slave_1: entered allmulticast mode [ 253.199501][ T5374] bridge_slave_1: entered promiscuous mode [ 253.889258][ T5416] serio: Serial port pts0 [ 254.010199][ T5374] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 254.099772][ T5374] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 254.222362][ T5078] Bluetooth: hci5: command tx timeout [ 254.228510][ T2973] hsr_slave_0: left promiscuous mode [ 254.278333][ T2973] hsr_slave_1: left promiscuous mode [ 254.354352][ T2973] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 254.362318][ T2973] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 254.433125][ T2973] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 254.441052][ T2973] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 254.524079][ T2973] veth1_macvtap: left promiscuous mode [ 254.529931][ T2973] veth0_macvtap: left promiscuous mode [ 254.536351][ T2973] veth1_vlan: left promiscuous mode [ 254.545585][ T2973] veth0_vlan: left promiscuous mode [ 255.155141][ T5421] loop2: detected capacity change from 0 to 4096 [ 255.801692][ T5421] loop2: detected capacity change from 0 to 256 [ 255.843325][ T2973] team0 (unregistering): Port device team_slave_1 removed [ 255.889493][ T5432] loop1: detected capacity change from 0 to 2048 [ 255.982778][ T2973] team0 (unregistering): Port device team_slave_0 removed [ 256.096280][ T5432] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 256.301733][ T5078] Bluetooth: hci5: command tx timeout [ 256.635814][ T5075] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 257.040616][ T5374] team0: Port device team_slave_0 added [ 257.135775][ T5374] team0: Port device team_slave_1 added [ 257.174248][ T5441] loop0: detected capacity change from 0 to 1024 [ 257.491581][ T5374] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 257.498778][ T5374] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 257.526103][ T5374] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 257.691253][ T5374] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 257.698424][ T5374] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 257.725311][ T5374] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 257.786375][ T79] hfsplus: b-tree write err: -5, ino 4 [ 258.158969][ T5374] hsr_slave_0: entered promiscuous mode [ 258.263594][ T5374] hsr_slave_1: entered promiscuous mode [ 258.311109][ T5374] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 258.318993][ T5374] Cannot create hsr debugfs directory [ 258.658232][ T5446] loop2: detected capacity change from 0 to 8192 [ 259.218840][ T5461] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 259.632448][ T5464] serio: Serial port pts0 [ 260.641184][ T5374] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 260.758053][ T5374] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 260.884836][ T5374] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 261.002413][ T5374] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 262.594091][ T5374] 8021q: adding VLAN 0 to HW filter on device bond0 [ 262.835121][ T5374] 8021q: adding VLAN 0 to HW filter on device team0 [ 262.946431][ T5130] bridge0: port 1(bridge_slave_0) entered blocking state [ 262.954243][ T5130] bridge0: port 1(bridge_slave_0) entered forwarding state [ 263.110661][ T5130] bridge0: port 2(bridge_slave_1) entered blocking state [ 263.118332][ T5130] bridge0: port 2(bridge_slave_1) entered forwarding state [ 263.511993][ T5492] loop2: detected capacity change from 0 to 1024 [ 263.666377][ T5492] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a040c118, mo2=0002] [ 263.696666][ T5492] System zones: 0-1, 3-12 [ 263.796007][ T5492] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 264.692436][ T5087] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 265.568519][ T5514] loop2: detected capacity change from 0 to 128 [ 265.672216][ T5515] serio: Serial port pts0 [ 265.677120][ T5514] FAT-fs (loop2): Directory bread(block 3145772) failed [ 265.686539][ T5514] FAT-fs (loop2): Directory bread(block 3145773) failed [ 265.686681][ T5514] FAT-fs (loop2): Directory bread(block 3145774) failed [ 265.686817][ T5514] FAT-fs (loop2): Directory bread(block 3145775) failed [ 265.686954][ T5514] FAT-fs (loop2): Directory bread(block 3145776) failed [ 265.687089][ T5514] FAT-fs (loop2): Directory bread(block 3145777) failed [ 265.687227][ T5514] FAT-fs (loop2): Directory bread(block 3145778) failed [ 265.687361][ T5514] FAT-fs (loop2): Directory bread(block 3145779) failed [ 265.707324][ T5374] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 266.354024][ T5374] veth0_vlan: entered promiscuous mode [ 266.452691][ T5374] veth1_vlan: entered promiscuous mode [ 266.490785][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.490971][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.491174][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.491360][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.491508][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.491650][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.491794][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.491940][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.492164][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.492318][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.492466][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.492609][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.492756][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.492933][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.493078][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.493224][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.493368][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.493509][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.493647][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.493829][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.493973][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.494116][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.494262][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.494413][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.494556][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.494703][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.494855][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.495000][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.495152][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.495298][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.495442][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.495595][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.495742][ T5132] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 266.523232][ T5132] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz1] on syz0 [ 266.724859][ T5374] veth0_macvtap: entered promiscuous mode [ 266.757337][ T5374] veth1_macvtap: entered promiscuous mode [ 266.832015][ T5132] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 266.954891][ T5374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 266.954987][ T5374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 266.955050][ T5374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 266.955134][ T5374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 266.955190][ T5374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 266.955272][ T5374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 266.955331][ T5374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 266.955413][ T5374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 266.960403][ T5374] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 267.038282][ T5374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 267.038377][ T5374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 267.038435][ T5374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 267.038518][ T5374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 267.038576][ T5374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 267.038658][ T5374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 267.038714][ T5374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 267.038796][ T5374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 267.044160][ T5374] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 267.092188][ T5374] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 267.092400][ T5374] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 267.092601][ T5374] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 267.092802][ T5374] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 267.222197][ T5132] usb 5-1: config 0 has no interfaces? [ 267.222364][ T5132] usb 5-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00 [ 267.222520][ T5132] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 267.228556][ T5132] usb 5-1: config 0 descriptor?? [ 267.262964][ T5525] loop1: detected capacity change from 0 to 512 [ 267.679778][ T780] usb 5-1: USB disconnect, device number 2 [ 267.822671][ T5525] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.1: corrupted in-inode xattr: invalid ea_ino [ 267.851574][ T5525] EXT4-fs error (device loop1): ext4_orphan_get:1399: comm syz-executor.1: couldn't read orphan inode 15 (err -117) [ 267.928531][ T5525] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 268.273613][ T5075] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 268.883405][ T5540] warning: `syz-executor.4' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 269.683987][ T5550] loop1: detected capacity change from 0 to 64 [ 269.759876][ T5550] ======================================================= [ 269.759876][ T5550] WARNING: The mand mount option has been deprecated and [ 269.759876][ T5550] and is ignored by this kernel. Remove the mand [ 269.759876][ T5550] option from the mount to silence this warning. [ 269.759876][ T5550] ======================================================= [ 272.046179][ T5568] loop1: detected capacity change from 0 to 512 [ 272.307615][ T5568] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.1: corrupted in-inode xattr: invalid ea_ino [ 272.322297][ T5568] EXT4-fs error (device loop1): ext4_orphan_get:1399: comm syz-executor.1: couldn't read orphan inode 15 (err -117) [ 272.494751][ T5568] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 272.815925][ T5075] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 273.090461][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.098401][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.106306][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.114076][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.122880][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.130987][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.138641][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.146661][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.154406][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.162116][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.169769][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.177523][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.185287][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.193125][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.201363][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.209026][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.216834][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.225600][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.233780][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.241542][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.249191][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.257009][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.269000][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.277711][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.285438][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.293275][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.301059][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.308718][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.316473][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.326027][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.334258][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.342038][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.349702][ T5130] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 273.656112][ T5130] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz1] on syz0 [ 273.771887][ T780] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 274.161165][ T780] usb 3-1: config 0 has no interfaces? [ 274.166977][ T780] usb 3-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00 [ 274.176465][ T780] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 274.191695][ T780] usb 3-1: config 0 descriptor?? [ 274.376107][ T5583] loop1: detected capacity change from 0 to 128 [ 274.509924][ T5583] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 274.572398][ T5583] ext4 filesystem being mounted at /root/syzkaller-testdir492449093/syzkaller.9AeTaR/25/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 274.662464][ T5134] usb 3-1: USB disconnect, device number 2 [ 274.715082][ T5132] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 274.723380][ T5132] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 274.793122][ T5586] netlink: 184 bytes leftover after parsing attributes in process `syz-executor.4'. [ 274.889648][ T5588] loop0: detected capacity change from 0 to 1024 [ 274.928059][ T79] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 274.936457][ T79] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 275.025305][ T5588] EXT4-fs: Mount option(s) incompatible with ext2 [ 275.316562][ T5588] XFS (nullb0): Invalid superblock magic number [ 276.571025][ T5598] loop3: detected capacity change from 0 to 4096 [ 276.618397][ T5598] ntfs3: Unknown parameter 'ÿ01777777777777777777777' [ 276.969441][ T5598] syz-executor.3: attempt to access beyond end of device [ 276.969441][ T5598] loop3: rw=0, sector=1, nr_sectors = 1 limit=0 [ 276.969581][ T5598] qnx4: unable to read the superblock [ 277.547845][ T5610] loop2: detected capacity change from 0 to 512 [ 277.749110][ T5610] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.2: corrupted in-inode xattr: invalid ea_ino [ 277.841277][ T5610] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 277.877954][ T5610] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 277.924069][ T5616] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 277.980163][ T5616] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 278.002888][ T5615] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 278.304373][ T5087] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 278.553493][ T5075] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 278.971373][ T5628] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 278.998617][ T5627] loop4: detected capacity change from 0 to 1024 [ 279.090011][ T5627] EXT4-fs: Mount option(s) incompatible with ext2 [ 279.278943][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.286899][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.296302][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.304108][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.311914][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.319573][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.327687][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.335481][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.343369][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.353250][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.361145][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.369867][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.377915][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.385704][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.393467][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.401219][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.408868][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.417118][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.424886][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.432642][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.440294][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.448208][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.455974][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.463718][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.472485][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.480169][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.488232][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.496059][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.508466][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.517572][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.525861][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.533715][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.541456][ T5130] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 279.586254][ T5130] hid-generic 0000:0000:0000.0003: hidraw0: HID v0.00 Device [syz1] on syz0 [ 279.592078][ T5627] XFS (nullb0): Invalid superblock magic number [ 279.841424][ T780] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 279.912075][ T5632] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 280.292068][ T780] usb 2-1: config 0 has no interfaces? [ 280.297936][ T780] usb 2-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00 [ 280.307758][ T780] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 280.374031][ T780] usb 2-1: config 0 descriptor?? [ 280.611106][ T1228] ieee802154 phy0 wpan0: encryption failed: -22 [ 280.617858][ T1228] ieee802154 phy1 wpan1: encryption failed: -22 [ 280.733835][ T5134] usb 2-1: USB disconnect, device number 2 [ 280.751119][ T5643] loop2: detected capacity change from 0 to 4096 [ 280.839422][ T5643] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 281.164136][ T5643] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 281.295004][ T5643] /dev/loop2: Can't open blockdev [ 281.801947][ T5655] loop3: detected capacity change from 0 to 512 [ 281.973545][ T5655] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.3: corrupted in-inode xattr: invalid ea_ino [ 282.012490][ T5655] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 282.065001][ T5655] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 282.430740][ T5374] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 283.128106][ T5672] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 284.602446][ T5132] libceph: connect (1)[c::]:6789 error -101 [ 284.608825][ T5132] libceph: mon0 (1)[c::]:6789 connect error [ 285.010176][ T5124] libceph: connect (1)[c::]:6789 error -101 [ 285.016713][ T5124] libceph: mon0 (1)[c::]:6789 connect error [ 285.273333][ T5688] ceph: No mds server is up or the cluster is laggy [ 286.224700][ T5703] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 286.280056][ T5700] loop0: detected capacity change from 0 to 8192 [ 286.313735][ T5708] loop1: detected capacity change from 0 to 2048 [ 286.420069][ T5708] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 286.573456][ T5708] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 287.244551][ T5716] loop3: detected capacity change from 0 to 128 [ 287.371830][ T5716] FAT-fs (loop3): Directory bread(block 3145772) failed [ 287.379162][ T5716] FAT-fs (loop3): Directory bread(block 3145773) failed [ 287.386663][ T5716] FAT-fs (loop3): Directory bread(block 3145774) failed [ 287.394000][ T5716] FAT-fs (loop3): Directory bread(block 3145775) failed [ 287.401385][ T5716] FAT-fs (loop3): Directory bread(block 3145776) failed [ 287.408591][ T5716] FAT-fs (loop3): Directory bread(block 3145777) failed [ 287.415962][ T5716] FAT-fs (loop3): Directory bread(block 3145778) failed [ 287.423580][ T5716] FAT-fs (loop3): Directory bread(block 3145779) failed [ 287.618287][ T5711] UDF-fs: warning (device loop1): udf_truncate_tail_extent: Too long extent after EOF in inode 1367: i_size: 3584 lbcount: 4096 extent 6+4096 [ 288.637673][ T5723] serio: Serial port pts0 [ 289.033796][ T5725] loop2: detected capacity change from 0 to 1024 [ 289.158563][ T5725] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 290.043746][ T5728] ceph: No mds server is up or the cluster is laggy [ 290.116410][ T5731] loop3: detected capacity change from 0 to 4096 [ 290.211423][ T5731] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 290.536118][ T5739] loop2: detected capacity change from 0 to 512 [ 290.601189][ T5731] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 290.678319][ T5739] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.2: corrupted in-inode xattr: invalid ea_ino [ 290.758359][ T5743] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 290.794355][ T5739] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 290.828741][ T5731] /dev/loop3: Can't open blockdev [ 290.878211][ T5739] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 291.336461][ T5087] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 291.441979][ T5748] loop1: detected capacity change from 0 to 1024 [ 291.600840][ T5748] EXT4-fs: Mount option(s) incompatible with ext2 [ 291.693580][ T5750] loop4: detected capacity change from 0 to 2048 [ 291.750808][ T5750] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 291.841045][ T5750] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 291.872034][ T5748] XFS (nullb0): Invalid superblock magic number [ 292.280877][ T5762] loop3: detected capacity change from 0 to 128 [ 292.358914][ T5762] FAT-fs (loop3): Directory bread(block 3145772) failed [ 292.366811][ T5762] FAT-fs (loop3): Directory bread(block 3145773) failed [ 292.377173][ T5762] FAT-fs (loop3): Directory bread(block 3145774) failed [ 292.385335][ T5762] FAT-fs (loop3): Directory bread(block 3145775) failed [ 292.392795][ T5762] FAT-fs (loop3): Directory bread(block 3145776) failed [ 292.400019][ T5762] FAT-fs (loop3): Directory bread(block 3145777) failed [ 292.407427][ T5762] FAT-fs (loop3): Directory bread(block 3145778) failed [ 292.414764][ T5762] FAT-fs (loop3): Directory bread(block 3145779) failed [ 292.449692][ T5761] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'. [ 293.505156][ T5750] UDF-fs: warning (device loop4): udf_truncate_tail_extent: Too long extent after EOF in inode 1367: i_size: 36352 lbcount: 36864 extent 6+4608 [ 293.898618][ T5773] loop3: detected capacity change from 0 to 1024 [ 294.136101][ T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!! [ 294.182815][ T5773] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 294.519003][ T5772] ceph: No mds server is up or the cluster is laggy [ 295.648756][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 296.006403][ T5796] loop3: detected capacity change from 0 to 512 [ 296.190338][ T5790] loop2: detected capacity change from 0 to 4096 [ 296.210853][ T5790] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 296.220333][ T5796] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.3: corrupted in-inode xattr: invalid ea_ino [ 296.255801][ T5796] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 296.296688][ T5796] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 296.326127][ T5803] loop0: detected capacity change from 0 to 128 [ 296.380695][ T5803] FAT-fs (loop0): Directory bread(block 3145772) failed [ 296.387866][ T5803] FAT-fs (loop0): Directory bread(block 3145773) failed [ 296.395278][ T5803] FAT-fs (loop0): Directory bread(block 3145774) failed [ 296.402441][ T5803] FAT-fs (loop0): Directory bread(block 3145775) failed [ 296.409530][ T5803] FAT-fs (loop0): Directory bread(block 3145776) failed [ 296.416801][ T5803] FAT-fs (loop0): Directory bread(block 3145777) failed [ 296.424075][ T5803] FAT-fs (loop0): Directory bread(block 3145778) failed [ 296.431247][ T5803] FAT-fs (loop0): Directory bread(block 3145779) failed [ 296.510999][ T5374] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 296.739861][ T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!! [ 296.760168][ T5790] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 296.863004][ T5790] /dev/loop2: Can't open blockdev [ 297.229411][ T5249] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 297.917900][ T5808] loop4: detected capacity change from 0 to 2048 [ 297.921739][ T5811] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. [ 298.110671][ T5808] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 298.225930][ T5808] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 298.232588][ T5815] loop3: detected capacity change from 0 to 1024 [ 298.428151][ T5815] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 299.185085][ T5807] UDF-fs: warning (device loop4): udf_truncate_tail_extent: Too long extent after EOF in inode 1368: i_size: 24576 lbcount: 28672 extent 97+9216 [ 299.495197][ T5808] UDF-fs: warning (device loop4): udf_truncate_tail_extent: Too long extent after EOF in inode 1367: i_size: 36352 lbcount: 36864 extent 6+4608 [ 299.858653][ T5819] ceph: No mds server is up or the cluster is laggy [ 300.602683][ T5832] loop0: detected capacity change from 0 to 512 [ 300.750931][ T5832] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.0: corrupted in-inode xattr: invalid ea_ino [ 300.807537][ T5832] EXT4-fs error (device loop0): ext4_orphan_get:1399: comm syz-executor.0: couldn't read orphan inode 15 (err -117) [ 300.824107][ T5832] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 301.273340][ T5082] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 301.722048][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 303.747688][ T5848] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'. [ 303.864216][ T5850] loop1: detected capacity change from 0 to 1024 [ 303.918027][ T5850] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 305.390443][ T5867] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 305.526296][ T5860] loop1: detected capacity change from 0 to 4096 [ 305.625920][ T5860] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 305.945925][ C0] TCP: request_sock_subflow_v6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 306.975236][ T5871] loop3: detected capacity change from 0 to 8192 [ 307.007283][ T5881] input: syz0 as /devices/virtual/input/input6 [ 307.781033][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.788755][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.796641][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.804481][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.812352][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.820119][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.827926][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.838136][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.846446][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.854214][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.862026][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.869683][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.877794][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.885533][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.893295][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.901402][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.909065][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.916909][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.924660][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.932620][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.942444][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.950798][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.958484][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.966238][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.973978][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.981731][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.989377][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 307.997747][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 308.005525][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 308.013279][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 308.021123][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 308.028803][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 308.039490][ T5130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 308.193286][ T5887] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'. [ 308.270999][ T5130] hid-generic 0000:0000:0000.0004: hidraw0: HID v0.00 Device [syz1] on syz0 [ 308.380982][ T5121] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 308.618290][ T5134] libceph: connect (1)[c::]:6789 error -101 [ 308.624892][ T5134] libceph: mon0 (1)[c::]:6789 connect error [ 308.669174][ T5897] loop3: detected capacity change from 0 to 1024 [ 308.758092][ T5121] usb 1-1: config 0 has no interfaces? [ 308.763993][ T5121] usb 1-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00 [ 308.773598][ T5121] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 308.802912][ T5897] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 308.850781][ T5121] usb 1-1: config 0 descriptor?? [ 308.967635][ T5124] libceph: connect (1)[c::]:6789 error -101 [ 308.974153][ T5124] libceph: mon0 (1)[c::]:6789 connect error [ 309.290168][ T5892] ceph: No mds server is up or the cluster is laggy [ 309.356010][ T5124] usb 1-1: USB disconnect, device number 2 [ 310.087252][ T5906] loop4: detected capacity change from 0 to 512 [ 310.319870][ T5906] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.4: corrupted in-inode xattr: invalid ea_ino [ 310.384427][ T5913] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 310.411569][ T5906] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 310.439676][ T5906] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 310.853114][ T5073] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 311.352874][ T5916] loop0: detected capacity change from 0 to 4096 [ 311.430803][ T5916] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 312.239522][ T5931] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'. [ 312.395262][ T5933] loop2: detected capacity change from 0 to 1024 [ 312.592879][ T5933] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 313.547742][ T5937] ceph: No mds server is up or the cluster is laggy [ 313.594108][ T5947] loop3: detected capacity change from 0 to 512 [ 313.681606][ T5950] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 313.847689][ T5947] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.3: corrupted in-inode xattr: invalid ea_ino [ 313.882811][ T5947] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 313.912132][ T5947] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 314.023512][ T5947] EXT4-fs error (device loop3): htree_dirblock_to_tree:1082: inode #2: comm syz-executor.3: Directory hole found for htree leaf block [ 314.122443][ T5954] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 314.161659][ T5374] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 314.790744][ T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!! [ 314.803783][ T0] NOHZ tick-stop error: local softirq work is pending, handler #242!!! [ 315.804238][ T5967] loop2: detected capacity change from 0 to 4096 [ 315.844481][ T5967] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 315.878622][ T5972] loop3: detected capacity change from 0 to 1024 [ 316.019004][ T5972] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 316.246136][ T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!! [ 316.570453][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 317.909649][ T5130] libceph: connect (1)[c::]:6789 error -101 [ 317.916356][ T5130] libceph: mon0 (1)[c::]:6789 connect error [ 318.015981][ T5985] loop4: detected capacity change from 0 to 512 [ 318.131428][ T5990] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 318.177183][ T5985] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.4: corrupted in-inode xattr: invalid ea_ino [ 318.192777][ T5130] libceph: connect (1)[c::]:6789 error -101 [ 318.199098][ T5130] libceph: mon0 (1)[c::]:6789 connect error [ 318.208655][ T5985] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 318.312193][ T5985] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 318.411313][ T5985] EXT4-fs error (device loop4): htree_dirblock_to_tree:1082: inode #2: comm syz-executor.4: Directory hole found for htree leaf block [ 318.625744][ T5980] ceph: No mds server is up or the cluster is laggy [ 318.759438][ T5073] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 318.962212][ T5999] syz-executor.0 (5999): /proc/5999/oom_adj is deprecated, please use /proc/5999/oom_score_adj instead. [ 319.515867][ T6002] loop4: detected capacity change from 0 to 1024 [ 319.573300][ T6002] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 320.145151][ T6006] loop3: detected capacity change from 0 to 4096 [ 320.221875][ T6006] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 321.094786][ T6022] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 321.602535][ T6025] loop2: detected capacity change from 0 to 512 [ 321.725587][ T6025] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.2: corrupted in-inode xattr: invalid ea_ino [ 321.776657][ T6025] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 321.859466][ T6025] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 321.997498][ T6025] EXT4-fs error (device loop2): htree_dirblock_to_tree:1082: inode #2: comm syz-executor.2: Directory hole found for htree leaf block [ 322.293965][ T5087] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 322.471294][ T6027] ceph: No mds server is up or the cluster is laggy [ 322.739786][ T6041] loop4: detected capacity change from 0 to 1024 [ 322.853128][ T6041] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 323.581211][ T5124] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 323.855922][ T5124] usb 1-1: Using ep0 maxpacket: 8 [ 324.018625][ T5124] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 324.030662][ T5124] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 324.041110][ T5124] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 324.051479][ T5124] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 324.066423][ T5124] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 324.077167][ T5124] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 324.392525][ T6058] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 324.411694][ T5124] usb 1-1: GET_CAPABILITIES returned 2f [ 324.417713][ T5124] usbtmc 1-1:16.0: can't read capabilities [ 325.374937][ T5124] usb 1-1: USB disconnect, device number 3 [ 325.851978][ T5134] libceph: connect (1)[c::]:6789 error -101 [ 325.865680][ T5134] libceph: mon0 (1)[c::]:6789 connect error [ 326.127290][ T6079] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 326.224484][ T6075] loop0: detected capacity change from 0 to 1024 [ 326.242065][ T5124] libceph: connect (1)[c::]:6789 error -101 [ 326.248412][ T5124] libceph: mon0 (1)[c::]:6789 connect error [ 326.343066][ T6075] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 326.595010][ T6071] ceph: No mds server is up or the cluster is laggy [ 327.348970][ T6093] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 328.424182][ T6103] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.4'. [ 328.434895][ T6103] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.4'. [ 329.295119][ T6111] loop4: detected capacity change from 0 to 1024 [ 329.511084][ T6111] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 329.676349][ T6116] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 331.371262][ T6137] netlink: 132 bytes leftover after parsing attributes in process `syz-executor.0'. [ 332.058825][ T6143] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 332.158065][ T6145] loop0: detected capacity change from 0 to 1024 [ 332.344493][ T6145] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 333.831451][ T6140] Bluetooth: hci0: command 0x0406 tx timeout [ 333.837749][ T6140] Bluetooth: hci4: command 0x0406 tx timeout [ 333.850040][ T6140] Bluetooth: hci1: command 0x0406 tx timeout [ 333.855151][ T5078] Bluetooth: hci2: command 0x0406 tx timeout [ 334.120413][ T6170] loop4: detected capacity change from 0 to 512 [ 334.177905][ T6170] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.4: corrupted in-inode xattr: invalid ea_ino [ 334.197236][ T6170] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 334.221871][ T6170] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 334.331410][ T6170] EXT4-fs error (device loop4): htree_dirblock_to_tree:1082: inode #2: comm syz-executor.4: Directory hole found for htree leaf block [ 334.672249][ T5073] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 335.123605][ T6180] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 335.229727][ T6184] loop3: detected capacity change from 0 to 1024 [ 335.332908][ T6184] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 336.436239][ T6198] netdevsim netdevsim3 : renamed from netdevsim3 (while UP) [ 337.072479][ T6204] loop0: detected capacity change from 0 to 512 [ 337.402972][ T6204] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.0: corrupted in-inode xattr: invalid ea_ino [ 337.465877][ T6204] EXT4-fs error (device loop0): ext4_orphan_get:1399: comm syz-executor.0: couldn't read orphan inode 15 (err -117) [ 337.542470][ T6204] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 337.774738][ T6204] EXT4-fs error (device loop0): htree_dirblock_to_tree:1082: inode #2: comm syz-executor.0: Directory hole found for htree leaf block [ 338.110853][ T5080] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 338.122375][ T5080] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 338.133241][ T5082] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 338.150953][ T5080] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 338.190199][ T5080] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 338.205852][ T5080] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 338.221595][ T5080] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 339.107062][ T6223] loop0: detected capacity change from 0 to 1024 [ 339.305654][ T6223] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 339.538047][ T6229] input: syz0 as /devices/virtual/input/input7 [ 340.131675][ T6211] chnl_net:caif_netlink_parms(): no params data found [ 340.301302][ T5080] Bluetooth: hci3: command tx timeout [ 340.535046][ T6237] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 340.545359][ T6237] bridge_slave_1: left allmulticast mode [ 340.551427][ T6237] bridge_slave_1: left promiscuous mode [ 340.558245][ T6237] bridge0: port 2(bridge_slave_1) entered disabled state [ 340.662777][ T6237] bridge_slave_0: left allmulticast mode [ 340.668677][ T6237] bridge_slave_0: left promiscuous mode [ 340.675686][ T6237] bridge0: port 1(bridge_slave_0) entered disabled state [ 341.720812][ T6248] loop0: detected capacity change from 0 to 512 [ 342.048642][ T1228] ieee802154 phy0 wpan0: encryption failed: -22 [ 342.057337][ T1228] ieee802154 phy1 wpan1: encryption failed: -22 [ 342.094447][ T6248] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.0: corrupted in-inode xattr: invalid ea_ino [ 342.207699][ T6248] EXT4-fs error (device loop0): ext4_orphan_get:1399: comm syz-executor.0: couldn't read orphan inode 15 (err -117) [ 342.292734][ T6248] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 342.381174][ T5080] Bluetooth: hci3: command tx timeout [ 342.457954][ T6248] EXT4-fs error (device loop0): htree_dirblock_to_tree:1082: inode #2: comm syz-executor.0: Directory hole found for htree leaf block [ 342.621094][ T6211] bridge0: port 1(bridge_slave_0) entered blocking state [ 342.628844][ T6211] bridge0: port 1(bridge_slave_0) entered disabled state [ 342.636878][ T6211] bridge_slave_0: entered allmulticast mode [ 342.646305][ T6211] bridge_slave_0: entered promiscuous mode [ 342.678905][ T6250] syz-executor.2 (6250): drop_caches: 2 [ 342.685811][ T6211] bridge0: port 2(bridge_slave_1) entered blocking state [ 342.693709][ T6211] bridge0: port 2(bridge_slave_1) entered disabled state [ 342.702690][ T6211] bridge_slave_1: entered allmulticast mode [ 342.714231][ T6211] bridge_slave_1: entered promiscuous mode [ 342.885460][ T5082] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 343.252583][ T6211] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 343.407954][ T2936] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 343.541857][ T6211] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 343.598867][ T2936] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 343.967771][ T2936] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 344.067768][ T6211] team0: Port device team_slave_0 added [ 344.150773][ T2936] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 344.183193][ T6266] loop0: detected capacity change from 0 to 1024 [ 344.192599][ T6211] team0: Port device team_slave_1 added [ 344.363981][ T6266] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 344.461553][ T5080] Bluetooth: hci3: command tx timeout [ 344.507262][ T6211] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 344.514628][ T6211] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 344.541079][ T6211] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 344.623155][ T6211] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 344.630320][ T6211] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 344.656984][ T6211] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 344.983393][ T2936] bridge_slave_1: left allmulticast mode [ 344.989281][ T2936] bridge_slave_1: left promiscuous mode [ 344.996052][ T2936] bridge0: port 2(bridge_slave_1) entered disabled state [ 345.088163][ T2936] bridge_slave_0: left allmulticast mode [ 345.094308][ T2936] bridge_slave_0: left promiscuous mode [ 345.103874][ T2936] bridge0: port 1(bridge_slave_0) entered disabled state [ 345.821108][ T2936] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 345.890787][ T2936] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 345.988807][ T2936] bond0 (unregistering): Released all slaves [ 346.402733][ T6211] hsr_slave_0: entered promiscuous mode [ 346.459512][ T6211] hsr_slave_1: entered promiscuous mode [ 346.503898][ T6211] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 346.511851][ T6211] Cannot create hsr debugfs directory [ 346.524923][ T6282] loop0: detected capacity change from 0 to 512 [ 346.545418][ T5080] Bluetooth: hci3: command tx timeout [ 346.737402][ T6282] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.0: corrupted in-inode xattr: invalid ea_ino [ 346.936617][ T6282] EXT4-fs error (device loop0): ext4_orphan_get:1399: comm syz-executor.0: couldn't read orphan inode 15 (err -117) [ 347.029015][ T6282] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 347.476635][ T5082] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 347.486417][ T2936] hsr_slave_0: left promiscuous mode [ 347.535791][ T2936] hsr_slave_1: left promiscuous mode [ 347.591241][ T2936] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 347.598973][ T2936] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 347.648377][ T2936] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 347.656201][ T2936] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 347.773361][ T2936] veth1_macvtap: left promiscuous mode [ 347.779124][ T2936] veth0_macvtap: left promiscuous mode [ 347.785560][ T2936] veth1_vlan: left promiscuous mode [ 347.791315][ T2936] veth0_vlan: left promiscuous mode [ 348.616576][ T6283] syz-executor.3 (6283): drop_caches: 2 [ 349.143796][ T2936] team0 (unregistering): Port device team_slave_1 removed [ 349.252990][ T2936] team0 (unregistering): Port device team_slave_0 removed [ 350.615252][ T6309] loop3: detected capacity change from 0 to 1024 [ 350.823260][ T6309] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 351.549361][ T6211] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 351.631655][ T6211] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 351.694742][ C0] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies. [ 351.745093][ T6211] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 351.843909][ T6211] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 353.082442][ T6329] loop3: detected capacity change from 0 to 512 [ 353.281576][ T6329] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.3: corrupted in-inode xattr: invalid ea_ino [ 353.404179][ T6329] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 353.501106][ T6329] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 353.839836][ T6211] 8021q: adding VLAN 0 to HW filter on device bond0 [ 354.036520][ T5374] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 354.181598][ T6211] 8021q: adding VLAN 0 to HW filter on device team0 [ 354.326814][ T788] bridge0: port 1(bridge_slave_0) entered blocking state [ 354.334665][ T788] bridge0: port 1(bridge_slave_0) entered forwarding state [ 354.510085][ T788] bridge0: port 2(bridge_slave_1) entered blocking state [ 354.517871][ T788] bridge0: port 2(bridge_slave_1) entered forwarding state [ 356.823403][ T6366] loop3: detected capacity change from 0 to 1024 [ 356.928372][ T6366] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 357.230440][ T6211] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 357.565909][ T5249] udevd[5249]: failed to send result of seq 11184 to main daemon: Connection refused [ 357.995563][ T6367] syz-executor.2 (6367): drop_caches: 2 [ 358.172925][ T6211] veth0_vlan: entered promiscuous mode [ 358.328125][ T6211] veth1_vlan: entered promiscuous mode [ 358.459515][ T6376] tc_dump_action: action bad kind [ 358.539776][ T6377] loop0: detected capacity change from 0 to 512 [ 358.717560][ T6377] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.0: corrupted in-inode xattr: invalid ea_ino [ 358.756064][ T6211] veth0_macvtap: entered promiscuous mode [ 358.863942][ T6377] EXT4-fs error (device loop0): ext4_orphan_get:1399: comm syz-executor.0: couldn't read orphan inode 15 (err -117) [ 358.881033][ T6211] veth1_macvtap: entered promiscuous mode [ 358.926373][ T6377] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 359.199752][ T6211] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 359.212117][ T6211] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 359.222853][ T6211] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 359.233685][ T6211] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 359.255273][ T6211] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 359.267702][ T6211] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 359.277937][ T6211] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 359.289384][ T6211] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 359.304775][ T6211] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 359.463757][ T6211] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 359.472783][ T5082] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 359.475110][ T6211] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 359.494478][ T6211] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 359.505246][ T6211] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 359.515334][ T6211] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 359.526569][ T6211] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 359.536829][ T6211] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 359.552972][ T6211] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 359.569584][ T6211] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 359.725248][ T6211] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 359.734977][ T6211] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 359.744332][ T6211] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 359.760923][ T6211] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 361.427021][ T6408] loop0: detected capacity change from 0 to 1024 [ 361.627699][ T6408] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 362.428816][ T6419] loop0: detected capacity change from 0 to 512 [ 362.582035][ T6419] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.0: corrupted in-inode xattr: invalid ea_ino [ 362.632505][ T6412] syz-executor.2 (6412): drop_caches: 2 [ 362.731967][ T6419] EXT4-fs error (device loop0): ext4_orphan_get:1399: comm syz-executor.0: couldn't read orphan inode 15 (err -117) [ 362.787083][ T6419] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 363.193240][ T5082] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 363.281229][ T5124] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 363.550714][ T5124] usb 4-1: Using ep0 maxpacket: 8 [ 363.681877][ T5124] usb 4-1: config 0 has an invalid interface number: 137 but max is 0 [ 363.690364][ T5124] usb 4-1: config 0 has no interface number 0 [ 363.696924][ T5124] usb 4-1: New USB device found, idVendor=046d, idProduct=08b3, bcdDevice=b9.e1 [ 363.706361][ T5124] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 363.759820][ T5124] usb 4-1: config 0 descriptor?? [ 364.030739][ T5124] usb 4-1: USB disconnect, device number 2 [ 365.461170][ T6452] loop3: detected capacity change from 0 to 1024 [ 365.601212][ T6452] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 365.620759][ T2445] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 365.628703][ T2445] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 365.875745][ T6458] fuse: Bad value for 'fd' [ 365.891522][ T2445] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 365.904133][ T2445] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 366.572321][ T6463] loop3: detected capacity change from 0 to 512 [ 367.771257][ T6470] netlink: 'syz-executor.2': attribute type 3 has an invalid length. [ 367.812416][ T6471] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 368.318696][ T6463] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.3: corrupted in-inode xattr: invalid ea_ino [ 368.339993][ T6463] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 368.367530][ T6463] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 370.692403][ T6484] loop1: detected capacity change from 0 to 1024 [ 371.084710][ T6484] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 371.783164][ T5374] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 372.048248][ T5074] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 372.092165][ T5074] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 372.131133][ T5074] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 372.172828][ T5074] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 372.202331][ T5074] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 372.216707][ T5074] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 372.536729][ T6492] netlink: 'syz-executor.2': attribute type 3 has an invalid length. [ 373.321605][ T6503] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 373.450228][ T6505] loop3: detected capacity change from 0 to 512 [ 373.481087][ T6487] chnl_net:caif_netlink_parms(): no params data found [ 373.585863][ T6507] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 373.651214][ T6505] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.3: corrupted in-inode xattr: invalid ea_ino [ 373.736590][ T6505] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 373.805850][ T6505] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 373.893906][ T6516] input: syz0 as /devices/virtual/input/input8 [ 374.229415][ T5374] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 374.302058][ T5074] Bluetooth: hci1: command tx timeout [ 374.780943][ T5074] Bluetooth: hci5: command 0x0406 tx timeout [ 374.949302][ T6524] loop3: detected capacity change from 0 to 1024 [ 375.070216][ T6487] bridge0: port 1(bridge_slave_0) entered blocking state [ 375.078410][ T6487] bridge0: port 1(bridge_slave_0) entered disabled state [ 375.087592][ T6487] bridge_slave_0: entered allmulticast mode [ 375.096757][ T6524] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 375.096789][ T6487] bridge_slave_0: entered promiscuous mode [ 375.206622][ T6487] bridge0: port 2(bridge_slave_1) entered blocking state [ 375.224611][ T6487] bridge0: port 2(bridge_slave_1) entered disabled state [ 375.232671][ T6487] bridge_slave_1: entered allmulticast mode [ 375.242050][ T6487] bridge_slave_1: entered promiscuous mode [ 375.555141][ T6487] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 375.643351][ T6487] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 375.892469][ T6487] team0: Port device team_slave_0 added [ 376.051099][ T6487] team0: Port device team_slave_1 added [ 376.266025][ T6535] netlink: 'syz-executor.3': attribute type 3 has an invalid length. [ 376.308142][ T6487] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 376.316965][ T6487] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 376.346391][ T6487] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 376.397171][ T5080] Bluetooth: hci1: command tx timeout [ 376.480062][ T2445] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 376.560103][ T6487] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 376.567456][ T6487] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 376.593850][ T6487] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 376.760456][ T2445] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 376.948957][ T2445] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 377.116152][ T2445] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 377.198877][ T6487] hsr_slave_0: entered promiscuous mode [ 377.236030][ T6487] hsr_slave_1: entered promiscuous mode [ 377.320704][ T6487] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 377.328503][ T6487] Cannot create hsr debugfs directory [ 377.709078][ T6547] loop0: detected capacity change from 0 to 512 [ 377.765918][ T2445] bridge_slave_1: left allmulticast mode [ 377.780155][ T2445] bridge_slave_1: left promiscuous mode [ 377.786916][ T2445] bridge0: port 2(bridge_slave_1) entered disabled state [ 377.837927][ T2445] bridge_slave_0: left allmulticast mode [ 377.844061][ T2445] bridge_slave_0: left promiscuous mode [ 377.849355][ T6547] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.0: corrupted in-inode xattr: invalid ea_ino [ 377.850677][ T2445] bridge0: port 1(bridge_slave_0) entered disabled state [ 377.930079][ T6547] EXT4-fs error (device loop0): ext4_orphan_get:1399: comm syz-executor.0: couldn't read orphan inode 15 (err -117) [ 377.995641][ T6547] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 378.403523][ T5082] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 378.471137][ T5080] Bluetooth: hci1: command tx timeout [ 378.626910][ T6555] loop1: detected capacity change from 0 to 1024 [ 378.649377][ T2445] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 378.714118][ T2445] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 378.731502][ T6555] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 378.763564][ T2445] bond0 (unregistering): Released all slaves [ 379.542757][ T2445] hsr_slave_0: left promiscuous mode [ 379.588478][ T2445] hsr_slave_1: left promiscuous mode [ 379.624185][ T2445] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 379.632357][ T2445] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 379.656660][ T2445] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 379.664520][ T2445] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 379.751537][ T2445] veth1_macvtap: left promiscuous mode [ 379.757301][ T2445] veth0_macvtap: left promiscuous mode [ 379.763491][ T2445] veth1_vlan: left promiscuous mode [ 379.769069][ T2445] veth0_vlan: left promiscuous mode [ 379.829522][ T6566] netlink: 'syz-executor.3': attribute type 3 has an invalid length. [ 380.152631][ T6568] sock: sock_set_timeout: `syz-executor.1' (pid 6568) tries to set negative timeout [ 380.560310][ T5080] Bluetooth: hci1: command tx timeout [ 380.883631][ T2445] team0 (unregistering): Port device team_slave_1 removed [ 381.015559][ T2445] team0 (unregistering): Port device team_slave_0 removed [ 382.044148][ T6583] loop0: detected capacity change from 0 to 512 [ 382.202681][ T6586] loop1: detected capacity change from 0 to 1024 [ 382.242832][ T6583] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.0: corrupted in-inode xattr: invalid ea_ino [ 382.324114][ T6583] EXT4-fs error (device loop0): ext4_orphan_get:1399: comm syz-executor.0: couldn't read orphan inode 15 (err -117) [ 382.342465][ T6583] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 382.370953][ T6586] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 382.395099][ T6487] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 382.494423][ T6487] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 382.572033][ T6487] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 382.658349][ T6487] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 382.747123][ T5082] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 384.092918][ T6487] 8021q: adding VLAN 0 to HW filter on device bond0 [ 384.322448][ T6487] 8021q: adding VLAN 0 to HW filter on device team0 [ 384.443560][ T5121] bridge0: port 1(bridge_slave_0) entered blocking state [ 384.451357][ T5121] bridge0: port 1(bridge_slave_0) entered forwarding state [ 384.574336][ T5121] bridge0: port 2(bridge_slave_1) entered blocking state [ 384.582113][ T5121] bridge0: port 2(bridge_slave_1) entered forwarding state [ 384.801473][ T6606] netlink: 'syz-executor.0': attribute type 3 has an invalid length. [ 385.681396][ T6615] loop0: detected capacity change from 0 to 1024 [ 385.796449][ T6615] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 385.858798][ T6617] loop1: detected capacity change from 0 to 512 [ 386.044023][ T6617] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.1: corrupted in-inode xattr: invalid ea_ino [ 386.159650][ T6617] EXT4-fs error (device loop1): ext4_orphan_get:1399: comm syz-executor.1: couldn't read orphan inode 15 (err -117) [ 386.274257][ T6617] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 386.542886][ T6211] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 386.629375][ T6487] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 387.733851][ T6642] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 388.326149][ T6648] netlink: 'syz-executor.0': attribute type 3 has an invalid length. [ 388.792134][ T6487] veth0_vlan: entered promiscuous mode [ 388.897886][ T6487] veth1_vlan: entered promiscuous mode [ 389.199823][ T6487] veth0_macvtap: entered promiscuous mode [ 389.292664][ T6487] veth1_macvtap: entered promiscuous mode [ 389.451380][ T6487] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 389.464966][ T6487] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 389.475080][ T6487] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 389.485885][ T6487] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 389.496055][ T6487] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 389.507840][ T6487] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 389.518274][ T6487] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 389.528977][ T6487] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 389.544459][ T6487] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 389.788950][ T6487] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 389.799833][ T6487] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 389.811532][ T6487] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 389.822437][ T6487] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 389.832555][ T6487] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 389.843445][ T6487] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 389.853577][ T6487] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 389.870822][ T6487] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 389.891104][ T6487] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 390.044722][ T6487] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 390.053940][ T6487] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 390.072481][ T6487] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 390.084193][ T6487] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 390.996138][ T6671] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 391.628327][ T6682] netlink: 'syz-executor.0': attribute type 3 has an invalid length. [ 391.832055][ T788] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 392.231140][ T788] usb 2-1: config 17 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping [ 392.242437][ T788] usb 2-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 392.255696][ T788] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 392.367859][ T788] aiptek 2-1:17.0: interface has no int in endpoints, but must have minimum 1 [ 392.577893][ T5131] usb 2-1: USB disconnect, device number 3 [ 393.012148][ T5080] Bluetooth: hci2: unexpected event for opcode 0x0c46 [ 395.043017][ T6713] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 395.198540][ T6715] loop1: detected capacity change from 0 to 164 [ 395.575509][ T6718] netlink: 'syz-executor.0': attribute type 3 has an invalid length. [ 395.617841][ T2445] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 395.626523][ T2445] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 395.871116][ T5131] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 395.879192][ T5131] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 396.496894][ T6725] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 396.522548][ T6725] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 397.027997][ T5080] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 397.037381][ T5080] Bluetooth: hci2: Injecting HCI hardware error event [ 397.045071][ T5074] Bluetooth: hci2: hardware error 0x00 [ 398.190849][ T6741] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 399.110825][ T5074] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 402.052337][ T6768] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 402.509583][ T6775] loop3: detected capacity change from 0 to 1024 [ 403.452786][ T1228] ieee802154 phy0 wpan0: encryption failed: -22 [ 403.459451][ T1228] ieee802154 phy1 wpan1: encryption failed: -22 [ 404.983045][ T1028] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 405.136454][ T1028] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 405.197333][ T5080] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 405.227533][ T5080] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 405.249572][ T5080] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 405.282149][ T5080] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 405.331048][ T1028] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 405.361272][ T5080] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 405.371958][ T5080] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 405.507950][ T1028] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 405.592790][ T5130] usb 1-1: new low-speed USB device number 4 using dummy_hcd [ 405.835885][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 406.052373][ T5130] usb 1-1: config 168 descriptor has 1 excess byte, ignoring [ 406.060066][ T5130] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 406.071443][ T5130] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 406.222289][ T5130] usb 1-1: config 168 descriptor has 1 excess byte, ignoring [ 406.229859][ T5130] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 406.245032][ T5130] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 406.434418][ T6800] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 406.471299][ T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!! [ 406.509397][ T5130] usb 1-1: config 168 descriptor has 1 excess byte, ignoring [ 406.517360][ T5130] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 406.528952][ T5130] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 406.801011][ T1028] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 406.881313][ T5130] usb 1-1: string descriptor 0 read error: -22 [ 406.881710][ T1028] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 406.888081][ T5130] usb 1-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 406.905732][ T5130] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 406.960790][ T1028] bond0 (unregistering): Released all slaves [ 407.003009][ T5130] adutux 1-1:168.0: interrupt endpoints not found [ 407.278478][ T5130] usb 1-1: USB disconnect, device number 4 [ 407.422523][ T5080] Bluetooth: hci0: command tx timeout [ 407.605234][ T6790] chnl_net:caif_netlink_parms(): no params data found [ 407.796819][ T1028] hsr_slave_0: left promiscuous mode [ 407.833130][ T1028] hsr_slave_1: left promiscuous mode [ 407.861756][ T1028] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 407.869558][ T1028] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 407.916761][ T1028] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 407.924795][ T1028] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 408.015505][ T1028] veth1_macvtap: left promiscuous mode [ 408.021435][ T1028] veth0_macvtap: left promiscuous mode [ 408.027335][ T1028] veth1_vlan: left promiscuous mode [ 408.033035][ T1028] veth0_vlan: left promiscuous mode [ 408.329538][ T6813] input: syz0 as /devices/virtual/input/input10 [ 409.112431][ T1028] team0 (unregistering): Port device team_slave_1 removed [ 409.186152][ T1028] team0 (unregistering): Port device team_slave_0 removed [ 409.500959][ T5080] Bluetooth: hci0: command tx timeout [ 409.800871][ T6826] loop0: detected capacity change from 0 to 1764 [ 409.842667][ T6826] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 409.852649][ T6826] ISOFS: unable to read i-node block [ 409.858152][ T6826] isofs_fill_super: get root inode failed [ 410.612419][ T6833] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 410.912425][ T6790] bridge0: port 1(bridge_slave_0) entered blocking state [ 410.920176][ T6790] bridge0: port 1(bridge_slave_0) entered disabled state [ 410.928194][ T6790] bridge_slave_0: entered allmulticast mode [ 410.937276][ T6790] bridge_slave_0: entered promiscuous mode [ 411.046134][ T6790] bridge0: port 2(bridge_slave_1) entered blocking state [ 411.058026][ T6790] bridge0: port 2(bridge_slave_1) entered disabled state [ 411.066009][ T6790] bridge_slave_1: entered allmulticast mode [ 411.075129][ T6790] bridge_slave_1: entered promiscuous mode [ 411.276989][ T6790] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 411.372369][ T6790] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 411.581031][ T5080] Bluetooth: hci0: command tx timeout [ 411.652853][ T6790] team0: Port device team_slave_0 added [ 411.779537][ T6790] team0: Port device team_slave_1 added [ 412.031766][ T6790] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 412.038940][ T6790] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 412.065613][ T6790] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 412.174794][ T6790] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 412.187138][ T6790] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 412.215101][ T6790] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 412.619436][ T6844] sctp: failed to load transform for md5: -2 [ 412.854447][ T6790] hsr_slave_0: entered promiscuous mode [ 412.919036][ T6790] hsr_slave_1: entered promiscuous mode [ 413.680871][ T5080] Bluetooth: hci0: command tx timeout [ 414.409397][ T6864] loop4: detected capacity change from 0 to 16 [ 414.490028][ T6864] erofs: (device loop4): mounted with root inode @ nid 36. [ 414.801717][ T6790] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 414.853502][ T6790] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 414.908292][ T6790] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 414.988444][ T6790] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 415.328633][ T6867] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 416.083633][ T6790] 8021q: adding VLAN 0 to HW filter on device bond0 [ 416.286027][ T6790] 8021q: adding VLAN 0 to HW filter on device team0 [ 416.403704][ T5121] bridge0: port 1(bridge_slave_0) entered blocking state [ 416.411541][ T5121] bridge0: port 1(bridge_slave_0) entered forwarding state [ 416.503741][ T5121] bridge0: port 2(bridge_slave_1) entered blocking state [ 416.511557][ T5121] bridge0: port 2(bridge_slave_1) entered forwarding state [ 416.868271][ T6790] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 418.549501][ T6790] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 419.067317][ T6790] veth0_vlan: entered promiscuous mode [ 419.209057][ T6790] veth1_vlan: entered promiscuous mode [ 419.278549][ T6906] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 419.593972][ T6790] veth0_macvtap: entered promiscuous mode [ 419.649535][ T6790] veth1_macvtap: entered promiscuous mode [ 419.867106][ T6790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 419.877910][ T6790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 419.888095][ T6790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 419.898821][ T6790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 419.911170][ T6790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 419.923030][ T6790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 419.933272][ T6790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 419.944037][ T6790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 419.959363][ T6790] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 420.172630][ T6790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 420.183959][ T6790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 420.194114][ T6790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 420.204838][ T6790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 420.214955][ T6790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 420.225826][ T6790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 420.235951][ T6790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 420.246727][ T6790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 420.262094][ T6790] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 420.347866][ T6790] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 420.357140][ T6790] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 420.366304][ T6790] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 420.379235][ T6790] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 421.963487][ T6930] pim6reg1: entered promiscuous mode [ 421.969211][ T6930] pim6reg1: entered allmulticast mode [ 423.202214][ T6940] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 423.820026][ T6946] netlink: 'syz-executor.0': attribute type 3 has an invalid length. [ 426.958128][ T2936] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 426.966391][ T2936] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 427.123657][ T2936] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 427.136507][ T2936] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 427.149429][ T6978] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 427.933851][ T6988] netlink: 'syz-executor.1': attribute type 3 has an invalid length. [ 428.451141][ T6993] syz-executor.4[6993] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 428.451721][ T6993] syz-executor.4[6993] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 429.028633][ T7003] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 430.773956][ T7018] netlink: 'syz-executor.2': attribute type 3 has an invalid length. [ 431.989330][ T7031] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 434.282013][ T7049] netlink: 'syz-executor.1': attribute type 3 has an invalid length. [ 434.975052][ T7058] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 436.310811][ T29] audit: type=1800 audit(1717467188.340:4): pid=7076 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1952 res=0 errno=0 [ 436.342264][ T7077] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.4'. [ 436.393309][ T7077] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.4'. [ 436.439872][ T7077] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.4'. [ 436.472358][ T7077] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.4'. [ 436.584634][ T7080] netlink: 'syz-executor.1': attribute type 3 has an invalid length. [ 437.404814][ T7091] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 439.483218][ T7113] netlink: 'syz-executor.0': attribute type 3 has an invalid length. [ 439.559666][ T5074] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 439.571029][ T5074] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 439.580058][ T5074] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 439.620396][ T5074] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 439.642395][ T5074] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 439.683363][ T5074] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 439.748432][ T2936] netdevsim netdevsim3  (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 439.958857][ T2936] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 440.268265][ T2936] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 440.491134][ T2936] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 440.732586][ T7127] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 441.033978][ T2936] bridge_slave_1: left allmulticast mode [ 441.039876][ T2936] bridge_slave_1: left promiscuous mode [ 441.046891][ T2936] bridge0: port 2(bridge_slave_1) entered disabled state [ 441.154983][ T2936] bridge_slave_0: left allmulticast mode [ 441.164554][ T2936] bridge_slave_0: left promiscuous mode [ 441.171440][ T2936] bridge0: port 1(bridge_slave_0) entered disabled state [ 441.842807][ T5074] Bluetooth: hci4: command tx timeout [ 441.934264][ T2936] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 442.012025][ T2936] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 442.054082][ T2936] bond0 (unregistering): Released all slaves [ 442.260253][ T7116] chnl_net:caif_netlink_parms(): no params data found [ 442.878022][ T2936] hsr_slave_0: left promiscuous mode [ 442.932582][ T2936] hsr_slave_1: left promiscuous mode [ 442.966401][ T2936] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 442.974506][ T2936] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 442.998418][ T2936] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 443.009923][ T2936] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 443.068971][ T2936] veth1_macvtap: left promiscuous mode [ 443.074942][ T2936] veth0_macvtap: left promiscuous mode [ 443.081043][ T2936] veth1_vlan: left promiscuous mode [ 443.086596][ T2936] veth0_vlan: left promiscuous mode [ 443.162685][ T7160] syz-executor.0[7160] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 443.163442][ T7160] syz-executor.0[7160] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 443.901053][ T5074] Bluetooth: hci4: command tx timeout [ 443.943569][ T2936] team0 (unregistering): Port device team_slave_1 removed [ 444.090077][ T2936] team0 (unregistering): Port device team_slave_0 removed [ 444.202519][ T7167] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 445.316183][ T7116] bridge0: port 1(bridge_slave_0) entered blocking state [ 445.324380][ T7116] bridge0: port 1(bridge_slave_0) entered disabled state [ 445.332223][ T7116] bridge_slave_0: entered allmulticast mode [ 445.341316][ T7116] bridge_slave_0: entered promiscuous mode [ 445.451650][ T7116] bridge0: port 2(bridge_slave_1) entered blocking state [ 445.467474][ T7116] bridge0: port 2(bridge_slave_1) entered disabled state [ 445.475469][ T7116] bridge_slave_1: entered allmulticast mode [ 445.484694][ T7116] bridge_slave_1: entered promiscuous mode [ 445.726328][ T7116] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 445.822536][ T7116] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 445.980857][ T5074] Bluetooth: hci4: command tx timeout [ 446.119170][ T7116] team0: Port device team_slave_0 added [ 446.229972][ T7116] team0: Port device team_slave_1 added [ 446.477976][ T7116] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 446.492498][ T7116] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 446.520872][ T7116] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 446.670015][ T7116] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 446.677326][ T7116] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 446.709954][ T7116] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 447.115461][ T7116] hsr_slave_0: entered promiscuous mode [ 447.167606][ T7116] hsr_slave_1: entered promiscuous mode [ 447.197397][ T7116] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 447.211839][ T7116] Cannot create hsr debugfs directory [ 447.570231][ T7209] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 448.064036][ T5074] Bluetooth: hci4: command tx timeout [ 448.163811][ T7213] input: syz0 as /devices/virtual/input/input11 [ 449.054138][ T7116] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 449.137779][ T7116] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 449.217398][ T7116] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 449.314266][ T7116] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 450.282791][ T29] audit: type=1326 audit(1717467202.290:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7223 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7429579 code=0x0 [ 450.671891][ T7116] 8021q: adding VLAN 0 to HW filter on device bond0 [ 450.849790][ T7116] 8021q: adding VLAN 0 to HW filter on device team0 [ 450.897618][ T788] bridge0: port 1(bridge_slave_0) entered blocking state [ 450.905548][ T788] bridge0: port 1(bridge_slave_0) entered forwarding state [ 451.034413][ T788] bridge0: port 2(bridge_slave_1) entered blocking state [ 451.042183][ T788] bridge0: port 2(bridge_slave_1) entered forwarding state [ 452.368673][ T7241] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 452.931430][ T7116] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 453.478062][ T7116] veth0_vlan: entered promiscuous mode [ 453.566472][ T7116] veth1_vlan: entered promiscuous mode [ 453.834824][ T7116] veth0_macvtap: entered promiscuous mode [ 453.919678][ T7116] veth1_macvtap: entered promiscuous mode [ 454.126900][ T7116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 454.137766][ T7116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 454.148569][ T7116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 454.159408][ T7116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 454.171887][ T7116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 454.183406][ T7116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 454.193624][ T7116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 454.205011][ T7116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 454.220416][ T7116] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 454.316465][ T7116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 454.327380][ T7116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 454.339454][ T7116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 454.350235][ T7116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 454.360443][ T7116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 454.373757][ T7116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 454.384545][ T7116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 454.395381][ T7116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 454.410902][ T7116] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 454.494943][ T7116] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 454.504183][ T7116] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 454.513795][ T7116] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 454.522939][ T7116] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 456.092310][ T7261] netlink: 'syz-executor.2': attribute type 3 has an invalid length. [ 456.931177][ T5134] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 457.066515][ T7275] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 457.184120][ T5134] usb 2-1: Using ep0 maxpacket: 16 [ 457.302143][ T5134] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 457.313533][ T5134] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 457.323691][ T5134] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 457.342220][ T5134] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 457.353079][ T5134] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 457.398809][ T5134] usb 2-1: config 0 descriptor?? [ 457.959682][ T5134] microsoft 0003:045E:07DA.0005: unknown main item tag 0x0 [ 457.969470][ T5134] microsoft 0003:045E:07DA.0005: unknown main item tag 0x0 [ 457.977105][ T5134] microsoft 0003:045E:07DA.0005: unknown main item tag 0x0 [ 457.984682][ T5134] microsoft 0003:045E:07DA.0005: unknown main item tag 0x0 [ 457.992233][ T5134] microsoft 0003:045E:07DA.0005: unknown main item tag 0x0 [ 457.999720][ T5134] microsoft 0003:045E:07DA.0005: unknown main item tag 0x0 [ 458.007342][ T5134] microsoft 0003:045E:07DA.0005: unknown main item tag 0x0 [ 458.014911][ T5134] microsoft 0003:045E:07DA.0005: unknown main item tag 0x0 [ 458.022742][ T5134] microsoft 0003:045E:07DA.0005: unknown main item tag 0x0 [ 458.030218][ T5134] microsoft 0003:045E:07DA.0005: unknown main item tag 0x0 [ 458.239505][ T5134] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.0005/input/input12 [ 458.341506][ T5134] microsoft 0003:045E:07DA.0005: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0 [ 458.411508][ T5134] usb 2-1: USB disconnect, device number 4 [ 459.201044][ T29] audit: type=1804 audit(1717467211.220:6): pid=7298 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir1008067238/syzkaller.Ukr1dA/33/bus" dev="sda1" ino=1962 res=1 errno=0 [ 459.237343][ T7300] netlink: 'syz-executor.1': attribute type 3 has an invalid length. [ 460.809582][ T2936] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 460.819733][ T2936] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 460.846700][ T7317] €Â: renamed from pim6reg1 [ 460.929331][ T4097] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 460.937536][ T4097] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 461.821356][ T6168] Bluetooth: hci3: command 0x0406 tx timeout [ 462.757877][ T7328] input: syz0 as /devices/virtual/input/input13 [ 463.671918][ T7336] netlink: 'syz-executor.2': attribute type 3 has an invalid length. [ 464.896767][ T1228] ieee802154 phy0 wpan0: encryption failed: -22 [ 464.904476][ T1228] ieee802154 phy1 wpan1: encryption failed: -22 [ 465.342854][ T7348] syz-executor.2 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 467.361765][ T7359] netlink: 'syz-executor.3': attribute type 3 has an invalid length. [ 472.649688][ T7374] loop0: detected capacity change from 0 to 512 [ 472.691483][ T7374] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 472.771160][ T7374] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b842e02c, mo2=0002] [ 472.820826][ T7374] System zones: 1-12 [ 472.827397][ T7374] EXT4-fs (loop0): orphan cleanup on readonly fs [ 472.941960][ T7374] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz-executor.0: bg 0: block 361: padding at end of block bitmap is not set [ 472.993794][ T7374] EXT4-fs (loop0): Remounting filesystem read-only [ 473.046526][ T7374] EXT4-fs (loop0): 1 truncate cleaned up [ 473.052607][ T7374] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 473.363767][ T5082] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 473.942097][ T7382] syzkaller0: entered promiscuous mode [ 473.947822][ T7382] syzkaller0: entered allmulticast mode [ 474.864167][ T7389] netlink: 'syz-executor.3': attribute type 3 has an invalid length. [ 476.640754][ T29] audit: type=1800 audit(1717467228.650:7): pid=7403 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1946 res=0 errno=0 [ 477.076249][ T5128] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 477.449124][ T4097] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 477.481961][ T5128] usb 4-1: config 0 has an invalid interface number: 102 but max is 0 [ 477.490574][ T5128] usb 4-1: config 0 has no interface number 0 [ 477.496899][ T5128] usb 4-1: too many endpoints for config 0 interface 102 altsetting 202: 142, using maximum allowed: 30 [ 477.514923][ T5128] usb 4-1: config 0 interface 102 altsetting 202 has 0 endpoint descriptors, different from the interface descriptor's value: 142 [ 477.530383][ T5128] usb 4-1: config 0 interface 102 has no altsetting 0 [ 477.537580][ T5128] usb 4-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33 [ 477.547199][ T5128] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 477.611572][ T7415] netlink: 'syz-executor.2': attribute type 3 has an invalid length. [ 477.622901][ T5128] usb 4-1: config 0 descriptor?? [ 477.896238][ T4097] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 478.255414][ T4097] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 478.400318][ T4097] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 478.466844][ T5128] usb 4-1: string descriptor 0 read error: -32 [ 478.601217][ T5128] usb 4-1: Cannot read MAC address [ 478.606976][ T5128] MOSCHIP usb-ethernet driver 4-1:0.102: probe with driver MOSCHIP usb-ethernet driver failed with error -71 [ 478.761012][ T5128] usb 4-1: USB disconnect, device number 3 [ 478.832961][ T4097] bridge_slave_1: left allmulticast mode [ 478.838868][ T4097] bridge_slave_1: left promiscuous mode [ 478.849244][ T4097] bridge0: port 2(bridge_slave_1) entered disabled state [ 478.886189][ T4097] bridge_slave_0: left allmulticast mode [ 478.892877][ T4097] bridge_slave_0: left promiscuous mode [ 478.899467][ T4097] bridge0: port 1(bridge_slave_0) entered disabled state [ 478.921720][ T6168] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 478.932439][ T6168] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 478.948559][ T5074] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 478.986573][ T5074] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 478.998131][ T5074] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 479.009645][ T5074] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 479.655732][ T4097] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 479.753081][ T4097] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 479.834511][ T4097] bond0 (unregistering): Released all slaves [ 481.094691][ T4097] hsr_slave_0: left promiscuous mode [ 481.100805][ T5074] Bluetooth: hci1: command tx timeout [ 481.148080][ T4097] hsr_slave_1: left promiscuous mode [ 481.172173][ T4097] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 481.179873][ T4097] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 481.243987][ T4097] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 481.251847][ T4097] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 481.349071][ T4097] veth1_macvtap: left promiscuous mode [ 481.355082][ T4097] veth0_macvtap: left promiscuous mode [ 481.361181][ T4097] veth1_vlan: left promiscuous mode [ 481.366729][ T4097] veth0_vlan: left promiscuous mode [ 482.443565][ T4097] team0 (unregistering): Port device team_slave_1 removed [ 482.557728][ T4097] team0 (unregistering): Port device team_slave_0 removed [ 483.181065][ T5074] Bluetooth: hci1: command tx timeout [ 483.188020][ T7423] chnl_net:caif_netlink_parms(): no params data found [ 484.731817][ T7423] bridge0: port 1(bridge_slave_0) entered blocking state [ 484.739556][ T7423] bridge0: port 1(bridge_slave_0) entered disabled state [ 484.747423][ T7423] bridge_slave_0: entered allmulticast mode [ 484.756530][ T7423] bridge_slave_0: entered promiscuous mode [ 484.874927][ T7423] bridge0: port 2(bridge_slave_1) entered blocking state [ 484.893303][ T7423] bridge0: port 2(bridge_slave_1) entered disabled state [ 484.901201][ T7423] bridge_slave_1: entered allmulticast mode [ 484.910431][ T7423] bridge_slave_1: entered promiscuous mode [ 485.253416][ T7423] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 485.269959][ T5074] Bluetooth: hci1: command tx timeout [ 485.363777][ T7423] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 485.537074][ T7481] syz-executor.0[7481] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 485.541369][ T7481] syz-executor.0[7481] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 485.658335][ T7423] team0: Port device team_slave_0 added [ 485.760456][ T7423] team0: Port device team_slave_1 added [ 486.037824][ T7423] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 486.045455][ T7423] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 486.071885][ T7423] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 486.195400][ T7423] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 486.202880][ T7423] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 486.236565][ T7423] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 486.645983][ T7423] hsr_slave_0: entered promiscuous mode [ 486.702725][ T7423] hsr_slave_1: entered promiscuous mode [ 486.750890][ T7423] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 486.758758][ T7423] Cannot create hsr debugfs directory [ 487.347478][ T5074] Bluetooth: hci1: command tx timeout [ 488.425788][ T7423] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 488.492263][ T7423] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 488.554863][ T7423] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 488.639871][ T7423] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 489.744763][ T7423] 8021q: adding VLAN 0 to HW filter on device bond0 [ 489.779908][ T7508] loop2: detected capacity change from 0 to 512 [ 489.895161][ T7423] 8021q: adding VLAN 0 to HW filter on device team0 [ 489.915135][ T7508] EXT4-fs (loop2): 1 truncate cleaned up [ 489.922407][ T7508] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 489.955056][ T7508] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 489.962729][ T8] bridge0: port 1(bridge_slave_0) entered blocking state [ 489.971952][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state [ 490.016498][ T8] bridge0: port 2(bridge_slave_1) entered blocking state [ 490.024320][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state [ 490.246677][ T7423] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 491.955916][ T7423] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 492.622788][ T7537] loop1: detected capacity change from 0 to 512 [ 492.661630][ T7537] EXT4-fs: Ignoring removed orlov option [ 492.669335][ T7537] EXT4-fs (loop1): unable to read superblock [ 492.908945][ T7537] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 494.284869][ T7423] veth0_vlan: entered promiscuous mode [ 494.339865][ T29] audit: type=1326 audit(1717467246.350:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7560 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746f579 code=0x7ffc0000 [ 494.364269][ T29] audit: type=1326 audit(1717467246.350:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7560 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746f579 code=0x7ffc0000 [ 494.387299][ T29] audit: type=1326 audit(1717467246.350:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7560 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf746f579 code=0x7ffc0000 [ 494.407725][ T7423] veth1_vlan: entered promiscuous mode [ 494.416126][ T29] audit: type=1326 audit(1717467246.350:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7560 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746f579 code=0x7ffc0000 [ 494.440961][ T29] audit: type=1326 audit(1717467246.370:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7560 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=40000003 syscall=36 compat=1 ip=0xf746f579 code=0x7ffc0000 [ 494.603878][ T29] audit: type=1326 audit(1717467246.650:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7560 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746f579 code=0x7ffc0000 [ 494.633958][ T29] audit: type=1326 audit(1717467246.650:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7560 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746f579 code=0x7ffc0000 [ 494.907393][ T7423] veth0_macvtap: entered promiscuous mode [ 495.006716][ T7423] veth1_macvtap: entered promiscuous mode [ 495.301757][ T7423] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 495.312724][ T7423] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 495.322905][ T7423] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 495.341133][ T7423] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 495.353472][ T7423] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 495.364245][ T7423] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 495.374355][ T7423] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 495.385081][ T7423] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 495.400663][ T7423] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 495.595161][ T7423] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 495.605973][ T7423] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 495.616150][ T7423] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 495.627013][ T7423] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 495.644644][ T7423] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 495.657447][ T7423] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 495.667641][ T7423] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 495.678393][ T7423] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 495.707711][ T7423] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 495.871324][ T7423] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 495.880395][ T7423] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 495.889777][ T7423] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 495.899017][ T7423] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 496.207187][ T7581] loop1: detected capacity change from 0 to 512 [ 496.325687][ T7581] EXT4-fs: Ignoring removed orlov option [ 496.332801][ T7581] EXT4-fs (loop1): unable to read superblock [ 496.542287][ T7581] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 497.934846][ T7602] loop1: detected capacity change from 0 to 512 [ 497.982595][ T7602] EXT4-fs: Ignoring removed nobh option [ 498.056417][ T7602] EXT4-fs warning (device loop1): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 498.068388][ T7602] EXT4-fs warning (device loop1): dx_probe:880: Enable large directory feature to access it [ 498.078951][ T7602] EXT4-fs warning (device loop1): dx_probe:965: inode #2: comm syz-executor.1: Corrupt directory, running e2fsck is recommended [ 498.602201][ T7602] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -2 [ 498.645759][ T7602] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.1: corrupted in-inode xattr: invalid ea_ino [ 498.691874][ T7602] EXT4-fs error (device loop1): ext4_orphan_get:1399: comm syz-executor.1: couldn't read orphan inode 15 (err -117) [ 498.747004][ T7602] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 498.868387][ T7602] EXT4-fs warning (device loop1): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 498.880366][ T7602] EXT4-fs warning (device loop1): dx_probe:880: Enable large directory feature to access it [ 498.890993][ T7602] EXT4-fs warning (device loop1): dx_probe:965: inode #2: comm syz-executor.1: Corrupt directory, running e2fsck is recommended [ 499.486900][ T7602] EXT4-fs warning (device loop1): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 499.499200][ T7602] EXT4-fs warning (device loop1): dx_probe:880: Enable large directory feature to access it [ 499.509695][ T7602] EXT4-fs warning (device loop1): dx_probe:965: inode #2: comm syz-executor.1: Corrupt directory, running e2fsck is recommended [ 499.523499][ T7602] EXT4-fs error (device loop1): ext4_find_dest_de:2111: inode #2: block 3: comm syz-executor.1: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0 [ 499.620029][ T7607] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1216: group 0, block bitmap and bg descriptor inconsistent: 219 vs 220 free clusters [ 499.758079][ T7627] loop3: detected capacity change from 0 to 512 [ 499.774001][ T7627] EXT4-fs: Ignoring removed orlov option [ 499.781178][ T7627] EXT4-fs (loop3): unable to read superblock [ 499.896409][ T6211] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 499.962646][ T7627] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 501.024427][ T7646] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 501.818691][ T4097] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 501.828510][ T4097] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 502.087326][ T2445] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 502.096191][ T2445] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 502.926893][ T7670] loop2: detected capacity change from 0 to 512 [ 502.994147][ T7670] EXT4-fs: Ignoring removed orlov option [ 503.001063][ T7670] EXT4-fs (loop2): unable to read superblock [ 503.158080][ T7670] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 504.781324][ T29] audit: type=1326 audit(1717467256.810:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7686 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73e0579 code=0x7ffc0000 [ 504.804636][ T29] audit: type=1326 audit(1717467256.820:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7686 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73e0579 code=0x7ffc0000 [ 504.827525][ T29] audit: type=1326 audit(1717467256.820:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7686 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf73e0579 code=0x7ffc0000 [ 504.856551][ T29] audit: type=1326 audit(1717467256.820:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7686 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73e0579 code=0x7ffc0000 [ 504.881545][ T29] audit: type=1326 audit(1717467256.830:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7686 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf73e0579 code=0x7ffc0000 [ 504.904419][ T29] audit: type=1326 audit(1717467256.840:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7686 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73e0579 code=0x7ffc0000 [ 504.929842][ T29] audit: type=1326 audit(1717467256.840:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7686 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73e0579 code=0x7ffc0000 [ 504.958913][ T29] audit: type=1326 audit(1717467256.840:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7686 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=40000003 syscall=288 compat=1 ip=0xf73e0579 code=0x7ffc0000 [ 504.985486][ T29] audit: type=1326 audit(1717467256.840:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7686 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73e0579 code=0x7ffc0000 [ 505.009175][ T29] audit: type=1326 audit(1717467256.900:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7686 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73e0579 code=0x7ffc0000 [ 506.068334][ T7699] loop0: detected capacity change from 0 to 512 [ 506.157279][ T7699] EXT4-fs: Ignoring removed orlov option [ 506.165316][ T7699] EXT4-fs (loop0): unable to read superblock [ 506.398222][ T7699] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 506.714973][ T7705] netlink: 892 bytes leftover after parsing attributes in process `syz-executor.3'. [ 507.351880][ T7703] loop1: detected capacity change from 0 to 8192 [ 507.394948][ T7714] loop3: detected capacity change from 0 to 1024 [ 507.433645][ T7703] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 508.987422][ T7735] loop0: detected capacity change from 0 to 8 [ 509.134622][ T7735] SQUASHFS error: zlib decompression failed, data probably corrupt [ 509.143051][ T7735] SQUASHFS error: Failed to read block 0x9b: -5 [ 509.149511][ T7735] SQUASHFS error: Unable to read metadata cache entry [99] [ 509.164741][ T7735] SQUASHFS error: Unable to read inode 0x127 [ 509.269000][ T7737] loop3: detected capacity change from 0 to 512 [ 509.375900][ T7737] EXT4-fs: Ignoring removed mblk_io_submit option [ 509.776171][ T7741] netlink: 892 bytes leftover after parsing attributes in process `syz-executor.2'. [ 510.026405][ T7737] EXT4-fs (loop3): Test dummy encryption mode enabled [ 510.103218][ T7737] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a040e01c, mo2=0102] [ 510.154110][ T7737] System zones: 1-12 [ 510.205955][ T7737] EXT4-fs error (device loop3): ext4_orphan_get:1394: inode #15: comm syz-executor.3: casefold flag without casefold feature [ 510.272871][ T7737] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 510.335081][ T7737] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 510.745022][ T7750] binder: 7749:7750 ioctl c0046209 0 returned -22 [ 510.952762][ T7743] loop0: detected capacity change from 0 to 8192 [ 511.057698][ T7743] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 512.246716][ T7756] loop0: detected capacity change from 0 to 736 [ 512.967498][ T7116] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 513.127300][ T7760] loop4: detected capacity change from 0 to 2048 [ 513.256681][ T25] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 513.294221][ T7760] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 513.562292][ T25] usb 1-1: Using ep0 maxpacket: 8 [ 513.627991][ T7423] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 513.650433][ T7772] netlink: 892 bytes leftover after parsing attributes in process `syz-executor.2'. [ 513.731324][ T25] usb 1-1: config 0 has an invalid descriptor of length 44, skipping remainder of the config [ 513.843189][ T25] usb 1-1: New USB device found, idVendor=05ac, idProduct=8501, bcdDevice=20.9d [ 513.853186][ T25] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=105 [ 513.868147][ T25] usb 1-1: SerialNumber: syz [ 513.896638][ T25] usb 1-1: config 0 descriptor?? [ 514.204800][ T25] usb 1-1: Found UVC 0.00 device (05ac:8501) [ 514.212423][ T25] usb 1-1: No valid video chain found. [ 514.236941][ T25] usb 1-1: USB disconnect, device number 5 [ 515.278386][ T7776] loop2: detected capacity change from 0 to 8192 [ 515.432837][ T7792] loop0: detected capacity change from 0 to 512 [ 515.450850][ T7792] EXT4-fs: Ignoring removed nobh option [ 515.468743][ T7776] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 515.574135][ T7792] EXT4-fs error (device loop0): ext4_orphan_get:1394: inode #15: comm syz-executor.0: casefold flag without casefold feature [ 515.686624][ T7792] EXT4-fs error (device loop0): ext4_orphan_get:1399: comm syz-executor.0: couldn't read orphan inode 15 (err -117) [ 515.740443][ T7792] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 515.846227][ T7796] loop1: detected capacity change from 0 to 512 [ 515.893593][ T7792] loop0: detected capacity change from 512 to 64 [ 515.938055][ T7796] EXT4-fs error (device loop1): ext4_orphan_get:1394: inode #17: comm syz-executor.1: iget: bogus i_mode (0) [ 515.961488][ T7796] EXT4-fs error (device loop1): ext4_orphan_get:1399: comm syz-executor.1: couldn't read orphan inode 17 (err -117) [ 516.001479][ T7796] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 516.079113][ T5082] EXT4-fs warning (device loop0): htree_dirblock_to_tree:1082: inode #2: lblock 0: comm syz-executor.0: error -12 reading directory block [ 516.147007][ T7796] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz-executor.1: bg 0: block 7: invalid block bitmap [ 516.183217][ T7796] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6537: Corrupt filesystem [ 516.223884][ T5082] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 516.513383][ T6211] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 516.630198][ T2936] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 516.773759][ T2936] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 516.896048][ T2936] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 517.095000][ T2936] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 517.129216][ T7810] ===================================================== [ 517.136789][ T7810] BUG: KMSAN: uninit-value in strnchr+0x90/0xd0 [ 517.151177][ T7810] strnchr+0x90/0xd0 [ 517.157734][ T7810] bpf_bprintf_prepare+0x1c2/0x23c0 [ 517.163271][ T7810] bpf_trace_printk+0xec/0x3e0 [ 517.168237][ T7810] ___bpf_prog_run+0x13fe/0xe0f0 [ 517.173454][ T7810] __bpf_prog_run224+0xb5/0xe0 [ 517.178394][ T7810] bpf_trace_run2+0x116/0x300 [ 517.183403][ T7810] __bpf_trace_rss_stat+0x27/0x40 [ 517.188603][ T7810] set_pte_range+0xfaa/0x1260 [ 517.193569][ T7810] finish_fault+0x66e/0x11c0 2024/06/04 02:14:29 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF [ 517.198355][ T7810] handle_mm_fault+0x87d8/0xce10 [ 517.205185][ T7810] exc_page_fault+0x419/0x6f0 [ 517.210059][ T7810] asm_exc_page_fault+0x2b/0x30 [ 517.215340][ T7810] [ 517.217748][ T7810] Local variable stack created at: [ 517.223034][ T7810] __bpf_prog_run224+0x45/0xe0 [ 517.227994][ T7810] bpf_trace_run2+0x116/0x300 [ 517.232921][ T7810] [ 517.235348][ T7810] CPU: 1 PID: 7810 Comm: syz-executor.1 Not tainted 6.9.0-syzkaller-02339-g101b7a97143a #0 [ 517.253104][ T7810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 517.266727][ T7810] ===================================================== [ 517.274028][ T7810] Disabling lock debugging due to kernel taint [ 517.280305][ T7810] Kernel panic - not syncing: kmsan.panic set ... [ 517.286851][ T7810] CPU: 1 PID: 7810 Comm: syz-executor.1 Tainted: G B 6.9.0-syzkaller-02339-g101b7a97143a #0 [ 517.298496][ T7810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 517.308717][ T7810] Call Trace: [ 517.312111][ T7810] [ 517.315153][ T7810] dump_stack_lvl+0x216/0x2d0 [ 517.320038][ T7810] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 517.326045][ T7810] dump_stack+0x1e/0x30 [ 517.330385][ T7810] panic+0x4e2/0xcd0 [ 517.334484][ T7810] ? kmsan_get_metadata+0xf1/0x1d0 [ 517.339800][ T7810] kmsan_report+0x2d5/0x2e0 [ 517.344491][ T7810] ? kmsan_get_metadata+0x146/0x1d0 [ 517.349876][ T7810] ? __msan_warning+0x95/0x120 [ 517.354819][ T7810] ? strnchr+0x90/0xd0 [ 517.359092][ T7810] ? bpf_bprintf_prepare+0x1c2/0x23c0 [ 517.364692][ T7810] ? bpf_trace_printk+0xec/0x3e0 [ 517.369835][ T7810] ? ___bpf_prog_run+0x13fe/0xe0f0 [ 517.375144][ T7810] ? __bpf_prog_run224+0xb5/0xe0 [ 517.380265][ T7810] ? bpf_trace_run2+0x116/0x300 [ 517.385341][ T7810] ? __bpf_trace_rss_stat+0x27/0x40 [ 517.390721][ T7810] ? set_pte_range+0xfaa/0x1260 [ 517.395778][ T7810] ? finish_fault+0x66e/0x11c0 [ 517.400731][ T7810] ? handle_mm_fault+0x87d8/0xce10 [ 517.406035][ T7810] ? exc_page_fault+0x419/0x6f0 [ 517.411065][ T7810] ? asm_exc_page_fault+0x2b/0x30 [ 517.416269][ T7810] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 517.422255][ T7810] ? __rmqueue_pcplist+0x4e53/0x5600 [ 517.427707][ T7810] ? kmsan_get_metadata+0x146/0x1d0 [ 517.433067][ T7810] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 517.439053][ T7810] ? bpf_bprintf_prepare+0x193/0x23c0 [ 517.444638][ T7810] ? filter_irq_stacks+0x60/0x1a0 [ 517.449872][ T7810] ? kmsan_get_metadata+0x146/0x1d0 [ 517.455246][ T7810] ? kmsan_get_metadata+0x146/0x1d0 [ 517.460608][ T7810] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 517.466587][ T7810] __msan_warning+0x95/0x120 [ 517.471364][ T7810] strnchr+0x90/0xd0 [ 517.475462][ T7810] bpf_bprintf_prepare+0x1c2/0x23c0 [ 517.480874][ T7810] ? kmsan_get_metadata+0x146/0x1d0 [ 517.486261][ T7810] ? kmsan_internal_memmove_metadata+0x91/0x230 [ 517.492745][ T7810] ? __msan_memcpy+0x108/0x1c0 [ 517.497719][ T7810] bpf_trace_printk+0xec/0x3e0 [ 517.502674][ T7810] ? kmsan_get_metadata+0x146/0x1d0 [ 517.508033][ T7810] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 517.514016][ T7810] ___bpf_prog_run+0x13fe/0xe0f0 [ 517.519126][ T7810] ? kmsan_get_metadata+0x146/0x1d0 [ 517.524504][ T7810] __bpf_prog_run224+0xb5/0xe0 [ 517.529453][ T7810] ? stack_depot_save_flags+0x2c/0x6e0 [ 517.535093][ T7810] ? kmsan_get_metadata+0x146/0x1d0 [ 517.540470][ T7810] ? kmsan_get_metadata+0x146/0x1d0 [ 517.545845][ T7810] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 517.551828][ T7810] ? __pfx___bpf_prog_run224+0x10/0x10 [ 517.557474][ T7810] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 517.563454][ T7810] ? __pfx___bpf_prog_run224+0x10/0x10 [ 517.569111][ T7810] bpf_trace_run2+0x116/0x300 [ 517.573971][ T7810] ? kmsan_get_metadata+0x146/0x1d0 [ 517.579340][ T7810] __bpf_trace_rss_stat+0x27/0x40 [ 517.584534][ T7810] set_pte_range+0xfaa/0x1260 [ 517.589406][ T7810] ? kmsan_get_metadata+0x146/0x1d0 [ 517.594795][ T7810] finish_fault+0x66e/0x11c0 [ 517.599566][ T7810] ? kmsan_get_shadow_origin_ptr+0x38/0xb0 [ 517.605560][ T7810] handle_mm_fault+0x87d8/0xce10 [ 517.610742][ T7810] exc_page_fault+0x419/0x6f0 [ 517.615610][ T7810] asm_exc_page_fault+0x2b/0x30 [ 517.620652][ T7810] RIP: 0023:0xf7314ffa [ 517.624843][ T7810] Code: 89 c6 53 83 ec 0c 8b 81 d4 75 b6 00 8b 99 cc 75 b6 00 8b 91 d0 75 b6 00 01 c3 39 c2 72 1d 8d 6a 04 39 dd 73 16 89 32 83 c2 08 <89> 7a fc 89 91 d0 75 b6 00 83 c4 0c 5b 5e 5f 5d c3 83 ec 0c 53 50 [ 517.644638][ T7810] RSP: 002b:00000000ffebbc60 EFLAGS: 00010212 [ 517.650859][ T7810] RAX: 000000002f520000 RBX: 000000002f920000 RCX: 00000000f745fff4 [ 517.658987][ T7810] RDX: 000000002f523004 RSI: 00000000865c5425 RDI: 00000000ffffffff [ 517.667103][ T7810] RBP: 000000002f523000 R08: 0000000000000000 R09: 0000000000000000 [ 517.675216][ T7810] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 517.683314][ T7810] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 517.691442][ T7810] [ 517.694961][ T7810] Kernel Offset: disabled [ 517.699399][ T7810] Rebooting in 86400 seconds..