last executing test programs: 3.957087548s ago: executing program 2 (id=189): syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x25, 0x5586, &(0x7f00000079c0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0) pwritev2(r0, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0x40305829, &(0x7f0000000180)={0x17c04, 0xffffffffffffffff, 0x4a7a, 0x75ea, 0x2}) 3.120270707s ago: executing program 1 (id=197): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x8, 0x8, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) pwritev(0xffffffffffffffff, 0x0, 0x0, 0x7, 0x8000) 2.639716125s ago: executing program 0 (id=201): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000140)={0x38, r1, 0x101, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x7}]]}, 0x38}, 0x1, 0x0, 0x0, 0x20004000}, 0x0) 2.440852127s ago: executing program 2 (id=203): r0 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$inet6_int(r0, 0x29, 0x46, &(0x7f0000000080)=0x4, 0x4) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e2a, 0xffffffff, @mcast2, 0x9}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000003cc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4001c00) 2.38795994s ago: executing program 0 (id=204): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$gtp(&(0x7f0000000040), r0) r2 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000200)='ns/pid_for_children\x00') sendmsg$GTP_CMD_NEWPDP(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x3c, r1, 0x1, 0x70bd2a, 0x0, {0x3}, [@GTPA_LINK={0x8}, @GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @remote}, @GTPA_NET_NS_FD={0x8, 0x7, r2}, @GTPA_MS_ADDRESS={0x8, 0x5, @rand_addr=0x64010101}]}, 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x0) 2.156083854s ago: executing program 0 (id=206): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x28100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CAP_HYPERV_ENLIGHTENED_VMCS(r2, 0x4068aea3, &(0x7f0000000000)={0xa3, 0x0, 0xfffffffffffffffe}) 2.155851443s ago: executing program 1 (id=207): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x7}]}, &(0x7f00000002c0)=0x10) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[], 0x84}}, 0x0) getsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x83, &(0x7f0000000000)=@assoc_value, &(0x7f0000000300)=0x8) 1.976384824s ago: executing program 3 (id=209): syz_mount_image$msdos(&(0x7f00000006c0), &(0x7f0000001280)='./file0\x00', 0xc0, &(0x7f0000000080)=ANY=[@ANYRES8=0x0], 0x1, 0x246, &(0x7f0000001940)="$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") bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001240)={&(0x7f0000001180)=ANY=[], &(0x7f0000000100)=""/4112, 0x1a, 0x1010, 0x1}, 0x28) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x63) 1.88111275s ago: executing program 0 (id=210): r0 = socket$kcm(0xa, 0x1, 0x106) sendmsg$kcm(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x20000011) sendmsg$kcm(r0, &(0x7f0000000780)={&(0x7f0000000000)=@in6={0xa, 0x0, 0x0, @dev, 0x4}, 0x80, 0x0}, 0xe07e872420dfefca) close(r0) 1.750312648s ago: executing program 0 (id=211): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000001000000000000000000000850000002f00000018010000207834b000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000a00ef00850000009b00000095"], &(0x7f0000000080)='syzkaller\x00'}, 0x94) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)) r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x800) ioctl$SG_GET_VERSION_NUM(r0, 0x2284, &(0x7f0000000080)) 1.633024554s ago: executing program 3 (id=212): syz_mount_image$reiserfs(&(0x7f00000000c0), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000100), 0x81, 0x1144, &(0x7f0000000180)="$eJzs2L1rFE8YB/Dv7F1+yeUnrMR+sUwhIRBsfSkUrrVVLAyp7JJKCZh/xM7Gzj9EUtmHVBZqkV5Yye69cMEX0OMQ/HyafWbmmWdnymcCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAl4bJ55LcqJKt6VyVpCRNczo+T9IkeX07yfX3g2yUPDoYHz043Ht4NEmtUh4n5TJMeXunr7G3tddOrL14+TwbyWG38Oz/kiZnF8nTpV1ifRYN1n+cVXW3TTLqx+NqaQcAAACAv1r7x+qUWbXRQu3BLPqYvLu2kNDWy/o/AAAA8CureGMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+Jm2nsfbB5OgSlKSpjkdnydpktRX9q31n82VHRQAAAD4bSVVnlxt7vv2v3sG6F1Gt/KhLuvTUdu7W2U3b+qMurRhFnZM9Gv52rbfWQQAAIB/UNs12LmZcjJvk8t/5WTaj29nOJ/vMofZ2enHO5MG/Mv9fNpMNnYXa4/upX2VHO+fXRzvl3YwWNmtAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPjGDhwLAAAAAAjzt06jYwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgqgAAAP//zsHphg==") sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='<\x00'], 0x3c}}, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x48041, 0x0) 1.553196079s ago: executing program 0 (id=213): r0 = syz_usb_connect(0x0, 0x24, &(0x7f00000001c0)=ANY=[@ANYBLOB="120100009dea7840b418fbff7bdc01020301090212000100000000090401"], 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f00000008c0)={0x1c, &(0x7f0000000100)=ANY=[@ANYBLOB="00000100000001"], 0x0, 0x0}) r1 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402) ioctl$I2C_RDWR(r1, 0x707, &(0x7f0000000680)={&(0x7f00000006c0)=[{0xcab, 0x11, 0x0, 0x0}, {0x2, 0x7810, 0x0, 0x0}], 0x2}) 1.459639184s ago: executing program 2 (id=214): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x200000, &(0x7f0000000000)={[{@init_itable_val={'init_itable', 0x3d, 0xa}}, {@mblk_io_submit}]}, 0x1, 0x574, &(0x7f0000001980)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x81cb36812652978f) pwrite64(r0, &(0x7f0000000140)='3', 0x1, 0xa28) truncate(&(0x7f00000002c0)='./file1\x00', 0x3) 1.112224075s ago: executing program 1 (id=215): r0 = creat(&(0x7f0000000040)='./file0\x00', 0x4b) close(r0) syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x200) ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f0000000300)={0x0, 0xae, 0x3ff, 0x20203443, 0x3, [], [0x2b8], [0x800000], [0x0, 0x0, 0x0, 0xfffffffffffffffe]}) 985.167442ms ago: executing program 3 (id=216): io_setup(0x8, &(0x7f0000000540)=0x0) sendmsg$inet(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000600)=[{0x0}], 0x1}, 0x42090) r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) io_submit(r0, 0x1, &(0x7f0000000340)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x8, 0x4, r1, &(0x7f0000000080)="01fd", 0x2, 0x2a25}]) 955.548174ms ago: executing program 2 (id=217): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="010000000300000004000000ff07"], 0x48) syz_fuse_handle_req(0xffffffffffffffff, &(0x7f00000003c0)="057e30aae10df4f97559054b9a301ecfe91b645115e1421774006df60cb393573839b0078ce169ec2fde0afea66b5bbefa9d4f3cd8c2458336ceb1f0efe647d6d7b1cdbd12c9b8e3a822cbd51494bf79a1dbe5c22338ce37ed467a1d3d616564cbb81faa2e935b2697c12efb0ed141fa2eaad4747725c4bf20f8975e402b03eb77d1aa3f10f512397b5037b1b4cd4b7c08c03dc5e52a066e5982969fa044125ae251f46c26e2536cc8b77e8edb251378be4beedfb8dca0d449123f57677ca3da5bdebf91b195f1a5d49d7c292f20f58d490de36d8ee0e8a86bd04c3165549465cbee7891fc747d7def370ce644db894b56bd53af0d0e261bcfa6bf72a684dafc5bcafe07ece74cbd1d5fa32716dd03f7acd4f32d935438c91e033beaf49e3963e13d05e7a8334a858639636799f04a9033193e7d18a2a4b20bcc96811bb5efe476db70a76b7456ac4e71f3e89c00da0c7761c188570c7902bf2fee1be273be8a9f7a2d7508ef2188d3ba1db4fa9d1533d2f2a288cdfe3b0c50908d56ba69e81386e7e979e9d7ff78685ffb8de6baea2451762736a2bbafa11d541790b0564aef9b0b80fa24832090b84341a9fdf712d3296f911020f8021eda8130befaaab01cbe91dfc5768e6ff31ec50dd88596832a9f5fd4f558d367f40e454d3c97ad16a7f30b93629ee2def77b99f8a17c157529b0782fd847a4c75a2302ca96bbdcff660c2cca753e1a8c60dbcfb319a1594565a2e15bb6124316e196e3cafaf1a29eef84a0908d1dc80af7e333c65736699f1254addf2ab582f5c87c4f6ca234d7ca9673dc29444044b95abdaea958274e39aeb163ee2d05bc2ade5c33a0466e14fbdf8aa70ca2964c06ee5bc57b894b0143a7a503cc43574a07958940b029678df44d6c82fa2e6937ea6aeb5b8f33c21628e3b0d623c23c2e5a3546194fea742d90c1d61f343a005b9e58c3e8292b256fd0ecca81cda433f3bb0ed633607f0b635cdd8b4919bfa37c1e99df087d3f8f3ba5dec7930657eb3a4d8febb5234e048881fbfc499fe5eb6a0ce34546f7010ae2291e6731d0798ca451387a123998e68f6f577ba4e556bb9a119011a191a6bbcf55beb1fb0b8252deeed5721b271b964534a04462720c4c03e8ea7f120cfa1be630e7fc680d1f6e067075c72f642babcacf6b00cd3fdb9f3200e4ff8935b17ebe222053c78c3752666088017c2150dd014b9578af6adb15527a483eff5bb623710ca7b37ed49ff7cf1525f296af6f27846524e4aaea7476a2d08dceeca84a1ab11e2767abff12d10deaf63681dcabe9b1fb9ebe207d8e3793dba9a73a02ebea4e3a072397a88c47795d5e88b2040c9fe3f96f66f8f7d593547c8fc8f4e75a1c20962ecf2dd1e7bddf896f2a6c5f37a8784e2bc5b10cef2feab3b6eee7430908eeadd372248041a09b0c29385cd7a75754d2c429e72bf5fdac34097bbbbb3790f86399c60cb5054fbeb8eb1241608b506beb135091c18110c1d10d9a80f4adb11a6fd3001957cae0b4f8f730cc4fa4a7328e23f390caab014cfeec0ebfd0e14021f47fe330a68680678d23e7ca1ff18e7e242f4c1e3cca51dec73c58b596c2a92267ee76d3657c1e2b34102b09fa4c59c2619148440bf26802c6f858b8eee6d8c697bad2c4d5a0f76c6a4cdd3b8fdc21e447920491ef40578b68a7a5dfda04fa235fac01ad4e824b627137dc48807100e52ec5ae2f3a3fd84d68b824033b4f0ee28a9e72333b4e209ae905d0781e4fe8116e03b1ca5c3b1ea84974cabaa0214ed15bfe01e974491e8a20f9d03ed1b73799b083f3a65e809c3ff3cf126288fc1627409d46f78b5fe8b8ba0b3ddc3ac79aecd6eee2e0cc59826e5798f48f80f0c7f549b3a656e9acbc5e51bdc3becef93533166c1d9ffe4335ec973d3d27ce5987d150f554c4095650528578fe4858b670b0786f23c886612191f89ec57970dbc0e33cd62b57a08fa940b339577fd12d07dec2ac50e9e0b27f0716b3233803153389a95df956637af8d9778e27bce49ab0a832978712a074d3f7516ad512ed0d9b43049b5990c841a7b7146a24c62fb70645b8d85b6c8863d5c6aab03638ffa4e30c8de24383cf320eee735a4fd37262d473076f495da8b2f0f028b8f178c238010738d6afb1dc2e48089e80f6a7658ad3496f1a1f7f78abdcf934c733d22abb0671a0d41b9b33a5faf99d7b82166e27df0f97a7953dcc1fb364478200253757e8311ba61cb4c78a380cdd820553c7296816210f64b34619966f1540a407c8d6e8e30788909de19ede4116d09a14ce26ad59957add80b90602855c0134ba7fe8afd4493f7cd9ced61fda7d0ae02505c046acf68d68ecd9b1507a4d4eba4c2c834777b2c3c5a8b3c06677fe468072dcab48c1ac9deec30265c7f6c5864df89e25bba52715c82e9921db601b3935f5047b8cc07351b9965b1a1f6ef36c1fba89d9d96e332eacc1e8a78e09d7d6ba30845866449ed5264f763735d4e7cc133dba4b296b2dd9331efea01e5b3d05f38055e41c49993d679ef133b9b1af435fd0ac5fad33f571c76d02c40d4e301110b4442aa134364f0456da0cf362b2c27ebd667c0969ae09dad18becba9d6918fb1e741f685735cc7078f0e6328181a83da67516fac31522f9d9fc64a4b769e57e76bfff6f9867fa2fee1e7dddd11128322210e44eeef6db7269dfa1bfbd9099dd6f8219d585c22c20483251447772719a6115ccb690609de352989610a138110c884562b65de3cf63c3ebe9adfeb53c6e4ecc637c98b60161f71952b84c6fc4cea6af0ed533144bde4f8fbab2d3ffe0b2a5d0c55ec9979ea85a25045ad3a84becf0e891b89c1a83178d7368aea4bdfa0ebd46b8e110a2972c8ac96e10ac630e89f8d76bf35b03b5ecd393d1986fc61318e08ef02721e5f2cd2fe098ebcd1bd30a8f87b2a5650b51dd50d0d78ab7fe66490f5827372f1779d3d389e9fa66bd0296f0203af010d8f76783837cdde2555a90be577626a12de47d4da638efd0017750a230485f6ade34a27284d85dd87f9db8a832c571106d8296629418777b4d933fa049f0f4e5958c193e889305074091be14c66a4bf02cdfe1e8d26a5d21fa78c5628a7ee3d7a0c550296b2f0625e2dd18d45f2d45bee6746d4462c92bc3cf50503c7479bd121393821afe1cd7144ea37f4e8e5ee21f739024ad25af9430dee006b76617725556ff8a820b767fa821629819732f086a5fdf2ccb4edae0aceb3d6dea698e798ead905a2eef9065d633b007271e93101a71cbe385f56e32b3a8fb081c5c1ab09b729f89294a0007df3a3b8e93686020d993b812c6f85fe1618db897cd67be6cd5053dc8490bbebee133d140503c4aa51eea0c156523a1d81ae849dbe5a273bfc0de94836f8160ea9f146147fc02dd7b55dca6a2a43692268ee98f51fcd2d3faa76071d9716e877b2a3dcb51a51d5359a2ee705da52b43306f1f3caf33342fc281bc9c58d1ce05ecdeca371e3a788542f8fa999e4d8e10e66f0b6053d7d4cfc6acb815628bc2409b3dec01726121c267b3ee85fd61bbbdda68ae2c13026863e4a54b93d956fe692707a179411c841ca7d2f33a5223181b18b7ba2eebdd7c2a8dec3ac2a317b5fbd996e8598c394ee627308f0e887480a8dcd59b0256b636f4c62566501a733fa74232945ba1d9e2bae347391bf9ae2da4d3af2b262b772421fd3a5cab46862ea6049f5c9c76dd8549ce0e6c31c792b81b6b21f0bcca18bb2fa6a9d4d6e0a837bb119e2e002a69d6ca95a4b2acc463076c2e05731ef0cfaea84387a6baf6737cc14a25f5329ea924090311213344625a69ee382dd4bc72e00e63329956f3e021092585c9affa06a95bd0ef653ae9ff0abed5ee561ada4f83d8ef202d9c0b2225ebe8660cc408859d45e0332f4f78f6a339bce9d12ca2bc5116a8fd4007c485f5c1c41af96c41d96db35411842d7babc05c8b228066dccb9b67f348974363be521e41fa94d2034a0bc1e87360a80606e1e1bfa8e6399601b30bf93ac41129869158bc2b791b50e51519133ab58afd4023d4d721129b1307f054103a47c49e0524ac4df511c3409fa62d8b5c1a897794600f53efdcc987e06bffd77c9fc75fb7221ef29ed2f7e3e8abcb4a1875b85bd5176a6fba9a361d8684876508443bd50e630f4c684002b15930cf81d740b880eed25d22d8de8c00066790df084fea7c5021184a210a6d24f9bc862c4e3eafbb1782fa240ecfa5959d7a681bae84e8a96a5ff45dea4f9e16dd2cff2dccc6cf4042b44b7ad1f55dc1db5998ed40a409c0e67e1e64fab423d2c00fabb8976d9dacf0c82530e356a99f75082f3411adddfe4ab1ad3b55599fa15450dd5feee23591f1ce398e4c5ae8aad71ad26ea189c333c8467d1eaba9589bb8c41bbfe8c0c173e5446bc06b578c1db849fabe5fcd8fe0fca94bdc799b53b897249826037499e8b6213d640724fda1bcc9341ac61fbea02c8f39a53c496902d5c7922f678a273cdf5ffff38ea028ae19dc72f0b0688f2b9b7d5a9c04153c10ff4168cf9f243dea03b336be778f6c79d67a2d0ade82863eaf95d6fc7f745569864f369f4b39177c356c8c393bded485df28622f01251e58f3d39498520ff90e6c670f0dce5b494cb1d78dfad108406dc5857086d386bd42bd03fe716f049407e5e55caa0e73e96c1a4f6d5791ce7195b2ce72de52ed617ecefaeeabfa9350af49d1d91f9a4b97dc0808869b916f34ee242c40fe8c8aee57b6ddb69f9a10636e481dfa059ef001bad7020266f0d74b14edce6c18ffef854768a60885bad798658a6b9d0b438c483ba159346d5ce0771f53ff18e0bd47d8583bd56237f8da2747ac7eb2a87b6e26c4820d4fe18b76e06bb6e0c0cdf478b4aecd381c2a6ca9f10ec433f0aca63a66d04f70557baf9f2844005351a21664c2430fb0002cd03bcf0b2004068a2567f91a9fbee8c6d948fb35d48527b23e1398ce9f535e2b0b33c2bc31ab737ba4b980f46f5d424e33892c8093f3cd18510a3157afc023f63ad3ba999e950747c78c06ab141a26d74ffc049a6f76c465f9f9f03a8d339a8e61fef26a5239fbc11c01a87800c81efd7b9f28ee2ab2ed88a383f5013bfd6671ea3086121b235a0cc45ccb300c02588895f8d13ec7e00a3aaaa8b0e739f666fd1b13a90b23998704859c9c76108ed7ecdc63770e6ebaa0aeb9208b92ec4e948ac7fc81cc6f305f06c2f2d8c9267463af92e185ff627eed54313fa2ee0bff2cfa8be411982fd19fa88db5ec99f238f88782f8c7a957bef14f79351b63799a4cce160357c068987a5516b04c79644c140850cddc8bd5541fcca9e30826aad864240f434bd1fc67b58e3d664f782e9e46edcb34e2db98a39c23e334e51c71c9fa466470992cc1fbc36c3c8ff4340be67f9b85a74c9114cb9fe5ca4dcbb641ea17a54ba4658aeaa515109e117625a6196dd66d3584d293b468fce63b5a9c4b9461700c74ae955539bfbbe3eccfa7d9c9f737792a9d4b978baa2e92819e88340b73c88c2900b723248b18ae9414cb37a64ef8cb8ca85cda9677d9f1e71a6b70fe3ad17f2d13c1df48d93bfa50fd939a72ea26f9fbeaa6f8af2eec91b04a8fa7dc14fec0f54fcd1c5c848b4432f979f10e661cd2d7f8ff669ce99f9813fc5440fbbeb35f1a5e5115f5ca35dcc270bdbcae07a9ae8e22aabf8178379dee08874ec7840de27815890a88fc9a3bcfa88a33f9baef9af0ae01b2bd34a907f1151cb14bc8b396bc43a60f884f425e4a04348cc645aae68db49980139ddad0fed303e40b124fd654b36c961a56c44cc3686a7529b1f1ee47da3a0f1158542337df15780444790a2ff1b57e062f0db66730c9f98de395f939f44188225211c514447f67fcbf320a34c43ce09ed272bb992db3a35ae2c3c491c36f2de88984129fcea1ffd235aff7bef7fa95d65894db9a5f1b348efcb571a81b3d73ccd07cbef052389001e4d456800e05ca53bcf3485ce05791ff65a9f7913416ae26972f34f51a3270580b81307ce31c98eda06f3b35890ce317e79a16d728cd0bb6a3835667555c0c5138cfa5305a91db1f873b2a75b82ffcb27616ee67777708f7dc2ed9ddbeb38a60f446d3ac88ded25265c25ef38b0755a9d34bab5e669b6501d8c9787aae7eced9945cad3d4d1c32fa68b48a1d773750f814631db3e088c1b5e7ffa854ea1343d94ec1343918d7a1c5a095bb72b00eb3bff210aeec0b8a581a2a13429b83a193f4d447059265b63c4b8f8ea1b9494f65e79844d956c5d80780849dc086506e9eba002e682a1bae1543f8289588c574bb6ca9a2e57b908aaffed23ecf3536abaf96fe08291f3d70773288b4698e972b0187385dfff4cba59175814e75e7e5146205c7f2d2f749583b393f46c448c152d8be50d60ed8d8bdb30fc7925656a0f90b1de967c729980815e5f19ed453fbefcff67832cb90d753410a0b18eb7504600b11b0360c3d3594d48d832160d357afc1f17dc71dccabef7bbcf1fdd55b48cb02135c32650ab07b902f36b48be9376b2dd68343eacfe80d9dab3205a393a4c6ffd405f6db323dea11be4f22ce50df1e0cfec9e9b1e23acb94d66ea787d08f615a7c7288cdf1921a13a85d885e47cf1067d89ebad5b92ce5000000008d74bd2d5b78366f998cc35bf35e45d06128f1c5984fabee7542642bbf6d981b60759d3e7900e5b3d1d7310f90df0c88a600ff2f39932bf7411e61c692c9444dc9ae0dff28c0b94292c430ac4464e83ce8a29b886f45c98b8396667740c5be51e592eac0250d6e479505d36e930ca3a32cb671d58707d25b10e2660cd5e661b08e268c8bf1b3cbceb2d995a2a6fdfe5475cccc965f71baa7c84054e3bb6cbcb7167b06c708cd72ad4301e943dd1b2b2c325f682be3eaae730a8ed8bc3134b28d1ce04543bc66a529744561c42d25e65c7b5cc2a17875ebf35e53aa46e1edec29ff8d046a7e01459d9639c10d1df998cd9a12d7e50b2dc71ee7338cf71beb72d5020dc69eeafc354bf822d65ee0328eb07d04ac0d266fdb53227a158411da5ded254b3c359ee710e0278e1a06f06002538e108450fd6b11949fdc618a29baf34f232aa192230ddb318aa6d59d122257e50713fe73e6c0059399589c382dc901a8c3381139436f7331b69f457bbb38ed54daaa07a52cceb053c32690836c664b73d86261216b8610fc7b4d53dd3e5d9bcb3e25528e132911cac37e7f2618274c733b5ae02f9c27638d9e11988f1dfbb281ffd8cddf8558a481861cbe9d53a4ad8282d3587449cd51759ca397eda122d286e117d01539359870b94c98a3ce383ed1d280bcceb228acf73193e87fd3650e4dfd563cc55bfbc8626a41293cc90ef76e28e2dedaf968602d2997ae1c2752a0febe3a78f3756d40201ae13074091238324422caabe22c66b7866065264261fc2c3e0569493468d1c1c36259aedd5f078a231e72decd70f4de8532f6753287435296f33a096bc1c8b0ebb68c9f783881e45ac54159ec1c2f9e1f5cb48f96729a62d1b4fdaa89ef5de8741bca04e953534dc977e881a61281812af435206378eff173d7929ab4967e511bdc14e6d49cba517b0563c14fcd6ba38ef32bc48a00643416d7e34f7465b3e6240589d854db4d9714e998f2edf3a03986598a52aaf647d938f4a8e07c1c29615803af6cd403d261ad6da3c1c804034b4a4eef3ea1cc8db39d9e171b3f6dd074388577a4eb901c25c8031e4592cea80b6354850657f53b2acd910ec2c5a7db6abb0153e051dadfbcdf047e35591b96b5657ca55d99ef6fb48e07c34321cd20c40b30a646132f8afcb9426fe84a790567fb847076a8762ca29cfb037e0c948edc12122a1160a55d465f5c912406a10dc0d3c1156cd207e9ffe906d267c9c870521934e1c56af460c0ad0dea9c929acf85768e22bb65eca6e25e4ec8e6edb7a6215e8c7e5fdb56c7131b156ab6a78fc808f8f17a2708ff68b37778c00b3b546004fb2b2c588d8ca8276d281026bfe896698569814410422f27421b8fc5c09d47635f17ddf6b9f56a203c991514678c18a4afabe1eeca6fce1187fffcb6ebdacfc6cac9750766ed40c80e7eceb342a3fa6f86d014949f9d111bfd96e2a39d364f2e2722f2d9ab0577befe26055890161d780e52eff4022461c1d3b019b86af28c4f02fd1f7496d8c141344ad5756bcdc45158f3af7aac227c8853f607cae412db6fa924c039859fe455857bd5fde66cc1b773c12f516401a31c80d750079247c128a103361e7f0a392d21b4b1b594307ff6b37e5a242666209ec517561e04645b92e7cf3cff1a6c76c900d12d9556e2962c535401b1e61fa85e06551ed678703fb3bf8590f2608ae3c278b8d1ac286af38061afbbc3cb27ee7adc6ad299151cd00a84506e6a97648ff99f2a9d35d8421e71589437406fa8e6def8ce34c9abe5de3481c492887176d4485dac794b84567d5ebaf68d0007cb2256a0f1ce4318f6891f750fa9696fed3525059688cf973e70d688b1759cd0f3dfb0b2a7078174b978767cbdbfc3f7d5850e2f7772e2bd6e3ed69ef13cc141238b5ee04b6615e33c42fcd6cf979a0ac848458b713b9a988c1e3fc32f2a182fc0cab2e6933e9aa5c2d77db8c6a1802b43bd8220ff0ca92229fc26a44761d00eeebec834e5f7d382b4f58a2759c56e53b163dae034ffa1970acc57165746e575470e13c4044f392ae4bea93e7d666256436507bb987a247785301274d4f262f94989cdc94b209b7499bd0cb4437525b72be79c87c6076533e4a14799a60bd3563d46ee4767108bed7e637cfed6f3139637bb01f36385dc5873eed726fbec9a87da294cc11db8b49fe45b798ae74e1a8cb0f2907eb0178d2baf5f0f88f654baab9f147741945c496ddea1cfed65a82e913a131c4ac7bb6f0d8d5d28225dab8a33c6e60c0d2b2d5dbd8c35089f13f9a2ae81ec9addaefea9b8ddabc8cdeb6437381ce346db6e14d9d1e8bb4662b508d61da77fc8d9ebebceb1c23be5d0a7bba4a48c0591333ab7779bae78ff23c4bbf8a8cf30f3120a5b63a047064d7ed7d37191cf39b6d1e8ffe3b47379767bd691cb855a9c938e9a0235a5ec9c316a6dceca63fa5fe6df0b9f0d6b38add216aaf2726d3377ab827b00b4cbf490708a0f679b8cd7caadb3dee40cc98f778917d6a6263fcc0747bf75fd676d84abb7d10087da323f95c2571139fd4c9826ad5db6ee4c246b9da20592cae11f9264bd2945aa1a427b2acefb514a2daafbbae35ff761eb1e3b98b4a1dfca348b8c4ff96325a618d677180ceb7e916654ecc2deecb4e61d01080f44b98776b1b43aebeffe2c14006dd1d78c8babf1179f42fd20d87654d3246d41e9dc633eac1741be44f8d751d8c9fd57316fe06d60872939b7a2906bb27a299a3408a51d74e5d98417f05f85fc1b332e103e79203e9fe344dc1d1572de39d914c5270c839870d2b33da5a6efc08c4f0c8227cc35a7f77c6a55f80ceef90e217c80e5ecb4c236685f5219787b01612cfbac90794e8269c07fb7ca4f7dba4defb2aae2b37f7b1696e78de15dbb1b6d4ee0cc4c0fae274b2c2de9343862de1d9847515ad235b1837daa9b814f19e895ae3966ed262e3e7add9f19009e6b61462917b29502b67e124c43538a6bcab7296529e01bb26ab8b3ef094ed057383c4f92790b6f705ae9d943c4e8dad84f6ef82b54d062713c16960fb475d74d46a1b16062563da3391cc6ff5185162c31ff7339e4837e38adab8ab911abaaa006e313dd19a1f92b4f7bede4525b154e1b9f796136a85f3602da011ae2232be902347e08ce0bbf3d23d91c4aac11c8824caafa1d1ff0343ce655802c1915f3ae7c0c670b18e56e139be66a33613afcb3b1928613b3afba9d635070af678216d57023d1911f0eb7ebddefc96f0efd8e9dc10e8a87a68393e19733ef900c6264722940750ae16f664e445414e85e98570303c6d87d7f265cfae0a1e9314fc14674c2871c0d59bbe2eddaf9330a4e2a28673af73910d6cb90790f800e89d55a2930910a8430ade9551819d83d5ea6da4e58326b7ce555d01da86ea78200f0219ec92473da95cd5a632c525ca9fbcddebb8168881cdb2f5da787d0e31881e2b17d78184f3a0bed8662486d3937dab275d050b9dd5a2ce904208a91a467afc33e10fb6c1ca788a5ef30d6e8b615ec0ae1503fea7006569559b7b155c31b196b85881c5671173c06fc5373e9fd973e7111ed45874609bf3c88c6db732210a3ea04cb68662bbc2048bb55d811482af5c658e29bd18c57ffa25e88d7297cd20d4c2b13007cfae89f4dcd90177a0806a2ceb2095333b58f828c093b9bf63cd07e3d56a446fd12e755fd651211bc160948836939c17623b317b9e935307044bab2c11879a62288e7ecbbb97f10f52516f517b7b8e44cff5964fdfaf8044065056b48db13b1365004c336afa3535af1242c9b7271b8b1ba2213fcbb80926bcd394815cd7c27e3aeb2348dc45f5e06e32f5bd56d1c472f41b564ec0939cd012028412883cc098d086fd43858747b746be72b979d175f6a6447fc5908616dec7fc6c962e12e96e09bd068acd2fcf0ce1cc26d9f82b2b91bc9aafcbf8435011f73b6a8ea1bb2f3289b23236136b31656600762feff53e607df8cf3c9a7f257b212630c19f142e4cf5094250b629cabb145c77f1f14ad60ab7617078f810a766cfa341fb7c16086609bc0a768fb1cd782606f32b83a0a55d883269a05b80275612dc571cb993ea9e447b4d32570d412203ab4c8b050b63bb5ac0f8d6f4e9a1644e4b622587b2ae125c2093bd363493d58544d6303a0de17780fcd83e993aa83f4432274eee1e6333fcdc77bcfdea95b8b9ed787723e35b71f1dbe89ff1e3e6fde146c05b6fe9eae52b472624e412253a63e7fcf1b77dbff7509eec5a55501e222f66bd84d36663cd244fa1556bd34b4c9957a93a71e63961ffc7700c5545acdd3e79da41e1cfaca0956d4978222cda23a574d691dbb6c6bd083c70c2782c045bbbe0fcaa10efbc002af6832e3fa7dda0ec8ff6ded69302d55d5a62a7ec213f16ecc5e3304a83103d1c2b21e04e3f5f3730339a630a407e8cc6a5afd2f2ed78ff992035a3783a2708195a46e565a9113be8c228ccaae3510363b475732ad48fe8ff34801f4c35132359d4c5c5bff65141f4a8684d462cf5d97b44496440fff3f7a28d28bbaa8e6db2a6064cbe9fca4679afe8ca6dd27a25c56f3e58165040f19a0455199a0ece4583f060979427f2f3495f40a83bc6ee3eaadab18705d464662b8aba9c7aa2f29114f7acc247548a85bd44723064abeee18f7f558f6d0d74fa08103dd906124454745d23005c425b260b0034372123b642a0cbebbc1a0bcf0cfc3639876eceac5f9734057ff659cfd35b1a3eaa768b86d66244aabc23a45676a59d492614f1c0011c9253e53fc7bb3e20d303afdb5b6614dcc7bbf72a339e414672aac23c2e2983083f08dbc34e3452def00f402598b6aaa4f0d896d1648b1442621993b7d0c930560cb6152b9ce59f94356726816a224fca84da5dbde6675d20f546a3e4635e82ff9575cac9160e6819f", 0xfffffffffffffd8a, 0x0) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000000300), 0xce4, r0}, 0x38) bpf$MAP_UPDATE_BATCH(0x1b, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000600), 0x0, 0x401, r0, 0x0, 0x100000000000000}, 0x38) 732.766757ms ago: executing program 1 (id=218): r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000001180)=0x2000000) mmap$dsp(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3, 0x12, r0, 0x0) writev(r0, &(0x7f0000000080)=[{&(0x7f0000000100)='A', 0x1}], 0x1) 525.058429ms ago: executing program 3 (id=219): ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000240)={[0x7, 0x5, 0xa, 0x1, 0x6, 0x2, 0x1041, 0x4, 0x9, 0x33d, 0xffffffffffffffff, 0xffffffff, 0x4, 0x9, 0x800006, 0x6c], 0x4, 0x140057}) r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0) ioctl$VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000200)={0x203, 0xa, 0x2}) ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f0000000500)=@userptr={0x6, 0xa, 0x4, 0x1, 0x0, {0x0, 0x2710}, {0x1, 0xc, 0xd2, 0x6, 0x77, 0x6, "0080ca6f"}, 0xff, 0x2, {&(0x7f00000002c0)}, 0x6}) 461.808163ms ago: executing program 1 (id=220): r0 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r0, 0x29, 0x2a, &(0x7f0000000340)={0x5, {{0xa, 0x4e20, 0x8, @mcast1={0xff, 0x7}, 0x8}}, {{0xa, 0x0, 0x0, @mcast1, 0x3ff}}}, 0x108) setsockopt$inet6_group_source_req(r0, 0x29, 0x2b, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x108) setsockopt$inet6_group_source_req(r0, 0x29, 0x2c, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x108) 413.041076ms ago: executing program 3 (id=221): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000003c0)='./bus\x00', 0xe, &(0x7f0000000540)={[{@resuid}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1ff}}, {@stripe}, {@noblock_validity}]}, 0x3, 0x451, &(0x7f0000000f80)="$eJzs3M2PU1UbAPDn3k6HlxdwRsQPPtRRNE78mGEAlYULNZq4wMREF7qczAwEKYxhxkQIUTAGV8aYuDcu/Rdc6cYYVyZudW9IiGEDuKq57b1MW9rCdFqq098vuXDOvedyztNzT3vuPS0BjKyp7I8kYntE/B4RE/Vsc4Gp+l/Xr55fuHH1/EIS1erbfyW1cteunl8oihbnbcsz02lE+lkSe9vUu3L23Mn5SmXpTJ6fXT31wezK2XPPnTg1f3zp+NLpg0eOHD409+ILB5/vS5xZm67t+Xh53+433vvqzaNfNMXfEkefTHU7+GS12ufqhmtHQzoZG2JDWJdSRGTdVa6N/4koxVrnTcTrnw61ccBAVavV6rbOhy9UgU0siea8IQ+jovigz+5/i611EvDy4KYfQ3fllfoNUBb39XyrHxmLNC9Tbrm/7aepiHj3wt/fZFsM5jkEAECTH7L5z7Pt5n9pPNBQ7p58bWgyIu6NiJ0RcV9E7IqI+yNqZR+MiIfWWX/rIsmt85/0ck+B3aFs/vdSvrbVPP8rZn8xWcpzO2rxl5NjJypLB/LXZDrKW7L8XJc6fnztty87HWuc/2VbVn8xF8zbcXlsS/M5i/Or8xuJudGVixF7xtrFn9xcCUgiYndE7OmxjhNPf7ev07Hbx99FH9aZqt9GPFXv/wvREn8h6b4+Ofu/qCwdmC2uilv98uultzrVv6H4+yDr//+3vf5vxj+ZNK7Xrqy/jkt/fN7xnqbX6388eaeWHs/3fTS/unpmLmI8OVpvdOP+g2vnFvmifBb/9P72439nrL0SeyMiu4gfjohHIuLRvO2PRcTjEbG/S/w/v/rE+73HP1hZ/Ivr6v+1xHi07mmfKJ386fumSidvif9G9/4/XEtN53vu5P3vTtrV29UMAAAA/z1pRGyPJJ25mU7TmZn69+V3RaSV5ZXVZ44tf3h6sf4bgckop8WTromG56Fz+W19PX8xIupfLSiOH8qfG39d2lrLzywsVxaHHTyMuG0dxn/mz9KwWwcMnN9rwegy/mF0Gf8wuox/GF1txv/WYbQDuPvaff5/MoR2AHdfy/i37AcjxP0/jK6O438z/88/QI3PfxhJK1vj9j+S75oo/qUeT9+0iSj/K5qx8UQ1adu5kQ67YRKDTAz3fQkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKBf/gkAAP//qmHgTw==") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='.\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000) getdents64(r0, 0x0, 0x0) 294.858733ms ago: executing program 2 (id=222): mount$tmpfs(0x0, &(0x7f0000000040)='./cgroup\x00', 0x0, 0xc10, 0x0) r0 = socket$inet_sctp(0x2, 0x5, 0x84) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) getsockopt$inet_opts(r0, 0x84, 0x7d, 0xfffffffffffffffe, &(0x7f0000000040)) 294.672573ms ago: executing program 1 (id=223): r0 = socket(0xa, 0x1, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x20008010, &(0x7f0000000380)={0xa, 0x4e23, 0xb, @remote, 0x7}, 0x1c) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000000)={0x10000009}) 57.061607ms ago: executing program 3 (id=224): unshare(0x2c020400) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x20) poll(&(0x7f0000000040)=[{r0, 0x29}], 0x1, 0x400) 0s ago: executing program 2 (id=225): unshare(0x8040480) r0 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0) pwrite64(r0, &(0x7f0000000640)='/', 0x1, 0xe) copy_file_range(r0, 0x0, r0, &(0x7f0000000080)=0x1e0, 0xff, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.124' (ED25519) to the list of known hosts. [ 82.147501][ T5762] cgroup: Unknown subsys name 'net' [ 82.319547][ T5762] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 84.021562][ T5762] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 85.678734][ T5784] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 85.686822][ T5784] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 85.696328][ T5784] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 85.704350][ T5784] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 85.712094][ T5784] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 85.720454][ T5784] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 85.728262][ T5784] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 85.735735][ T5784] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 85.743610][ T5784] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 85.748815][ T5785] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 85.758599][ T5788] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 85.767003][ T5788] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 85.775851][ T5788] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 85.787570][ T5786] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 85.802085][ T5780] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 85.809544][ T5780] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 85.818290][ T5780] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 85.826619][ T5780] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 85.839211][ T5780] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 85.848240][ T5786] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 85.856232][ T5786] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 85.863819][ T5786] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 85.873192][ T51] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 85.880794][ T51] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 86.348247][ T5775] chnl_net:caif_netlink_parms(): no params data found [ 86.417338][ T5776] chnl_net:caif_netlink_parms(): no params data found [ 86.519122][ T5774] chnl_net:caif_netlink_parms(): no params data found [ 86.566143][ T5775] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.574462][ T5775] bridge0: port 1(bridge_slave_0) entered disabled state [ 86.582331][ T5775] bridge_slave_0: entered allmulticast mode [ 86.589509][ T5775] bridge_slave_0: entered promiscuous mode [ 86.598210][ T5773] chnl_net:caif_netlink_parms(): no params data found [ 86.636413][ T5775] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.644436][ T5775] bridge0: port 2(bridge_slave_1) entered disabled state [ 86.652215][ T5775] bridge_slave_1: entered allmulticast mode [ 86.659878][ T5775] bridge_slave_1: entered promiscuous mode [ 86.695920][ T5776] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.703884][ T5776] bridge0: port 1(bridge_slave_0) entered disabled state [ 86.711436][ T5776] bridge_slave_0: entered allmulticast mode [ 86.718670][ T5776] bridge_slave_0: entered promiscuous mode [ 86.776989][ T5776] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.784313][ T5776] bridge0: port 2(bridge_slave_1) entered disabled state [ 86.791614][ T5776] bridge_slave_1: entered allmulticast mode [ 86.798696][ T5776] bridge_slave_1: entered promiscuous mode [ 86.814488][ T5775] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 86.850582][ T5775] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 86.944697][ T5776] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 86.954129][ T5774] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.961770][ T5774] bridge0: port 1(bridge_slave_0) entered disabled state [ 86.968956][ T5774] bridge_slave_0: entered allmulticast mode [ 86.976743][ T5774] bridge_slave_0: entered promiscuous mode [ 86.999993][ T5775] team0: Port device team_slave_0 added [ 87.009097][ T5776] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 87.018770][ T5774] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.027119][ T5774] bridge0: port 2(bridge_slave_1) entered disabled state [ 87.036710][ T5774] bridge_slave_1: entered allmulticast mode [ 87.044357][ T5774] bridge_slave_1: entered promiscuous mode [ 87.063512][ T5773] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.080588][ T5773] bridge0: port 1(bridge_slave_0) entered disabled state [ 87.087918][ T5773] bridge_slave_0: entered allmulticast mode [ 87.095469][ T5773] bridge_slave_0: entered promiscuous mode [ 87.104470][ T5773] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.111819][ T5773] bridge0: port 2(bridge_slave_1) entered disabled state [ 87.119469][ T5773] bridge_slave_1: entered allmulticast mode [ 87.127196][ T5773] bridge_slave_1: entered promiscuous mode [ 87.136462][ T5775] team0: Port device team_slave_1 added [ 87.232561][ T5774] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 87.245709][ T5776] team0: Port device team_slave_0 added [ 87.266895][ T5773] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 87.278391][ T5775] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 87.291557][ T5775] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.317892][ T5775] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 87.335757][ T5774] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 87.360291][ T5776] team0: Port device team_slave_1 added [ 87.382455][ T5773] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 87.394006][ T5775] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 87.401163][ T5775] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.427245][ T5775] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 87.458071][ T5774] team0: Port device team_slave_0 added [ 87.515382][ T5776] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 87.522579][ T5776] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.553983][ T5776] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 87.568309][ T5774] team0: Port device team_slave_1 added [ 87.589360][ T5776] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 87.597270][ T5776] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.624885][ T5776] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 87.668300][ T5773] team0: Port device team_slave_0 added [ 87.683761][ T5773] team0: Port device team_slave_1 added [ 87.783820][ T5773] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 87.792048][ T5773] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.818134][ T5773] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 87.852519][ T5775] hsr_slave_0: entered promiscuous mode [ 87.865120][ T5775] hsr_slave_1: entered promiscuous mode [ 87.871824][ T51] Bluetooth: hci3: command tx timeout [ 87.880688][ T51] Bluetooth: hci2: command tx timeout [ 87.882797][ T5774] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 87.893547][ T5774] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.925047][ T5774] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 87.946612][ T5773] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 87.953797][ T51] Bluetooth: hci0: command tx timeout [ 87.959521][ T5773] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.985578][ T51] Bluetooth: hci1: command tx timeout [ 87.992883][ T5773] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 88.010583][ T5776] hsr_slave_0: entered promiscuous mode [ 88.018290][ T5776] hsr_slave_1: entered promiscuous mode [ 88.024812][ T5776] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 88.033389][ T5776] Cannot create hsr debugfs directory [ 88.041196][ T5774] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 88.048182][ T5774] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 88.075209][ T5774] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 88.150053][ T5773] hsr_slave_0: entered promiscuous mode [ 88.156890][ T5773] hsr_slave_1: entered promiscuous mode [ 88.163372][ T5773] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 88.171089][ T5773] Cannot create hsr debugfs directory [ 88.284447][ T5774] hsr_slave_0: entered promiscuous mode [ 88.292028][ T5774] hsr_slave_1: entered promiscuous mode [ 88.298262][ T5774] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 88.306969][ T5774] Cannot create hsr debugfs directory [ 88.732155][ T5775] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 88.753010][ T5775] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 88.764668][ T5775] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 88.787620][ T5775] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 88.849453][ T5773] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 88.861486][ T5773] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 88.909239][ T5773] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 88.921635][ T5773] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 88.969469][ T5776] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 89.015750][ T5776] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 89.050277][ T5776] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 89.062200][ T5776] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 89.107298][ T5774] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 89.139337][ T5774] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 89.164326][ T5774] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 89.175975][ T5774] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 89.287543][ T5773] 8021q: adding VLAN 0 to HW filter on device bond0 [ 89.323961][ T5775] 8021q: adding VLAN 0 to HW filter on device bond0 [ 89.370198][ T5773] 8021q: adding VLAN 0 to HW filter on device team0 [ 89.405419][ T2941] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.412903][ T2941] bridge0: port 1(bridge_slave_0) entered forwarding state [ 89.427826][ T5775] 8021q: adding VLAN 0 to HW filter on device team0 [ 89.445926][ T59] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.453158][ T59] bridge0: port 2(bridge_slave_1) entered forwarding state [ 89.484785][ T1036] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.491987][ T1036] bridge0: port 1(bridge_slave_0) entered forwarding state [ 89.517412][ T5776] 8021q: adding VLAN 0 to HW filter on device bond0 [ 89.552666][ T2903] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.559879][ T2903] bridge0: port 2(bridge_slave_1) entered forwarding state [ 89.593838][ T5774] 8021q: adding VLAN 0 to HW filter on device bond0 [ 89.612206][ T5776] 8021q: adding VLAN 0 to HW filter on device team0 [ 89.646142][ T5774] 8021q: adding VLAN 0 to HW filter on device team0 [ 89.676395][ T2903] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.683688][ T2903] bridge0: port 1(bridge_slave_0) entered forwarding state [ 89.705936][ T5775] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 89.729481][ T2903] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.736681][ T2903] bridge0: port 1(bridge_slave_0) entered forwarding state [ 89.765398][ T1036] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.772565][ T1036] bridge0: port 2(bridge_slave_1) entered forwarding state [ 89.785812][ T1036] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.792990][ T1036] bridge0: port 2(bridge_slave_1) entered forwarding state [ 89.951551][ T51] Bluetooth: hci2: command tx timeout [ 89.957040][ T51] Bluetooth: hci3: command tx timeout [ 90.031713][ T51] Bluetooth: hci1: command tx timeout [ 90.037296][ T51] Bluetooth: hci0: command tx timeout [ 90.158952][ T5773] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 90.325153][ T5773] veth0_vlan: entered promiscuous mode [ 90.370349][ T5773] veth1_vlan: entered promiscuous mode [ 90.502282][ T5775] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 90.513373][ T5773] veth0_macvtap: entered promiscuous mode [ 90.526444][ T5773] veth1_macvtap: entered promiscuous mode [ 90.549071][ T5773] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.563503][ T5774] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 90.575640][ T5776] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 90.601504][ T5773] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.642876][ T5773] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.652409][ T5773] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.664738][ T5773] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.673697][ T5773] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.772178][ T5776] veth0_vlan: entered promiscuous mode [ 90.839317][ T5776] veth1_vlan: entered promiscuous mode [ 90.846675][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.860126][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.892252][ T5775] veth0_vlan: entered promiscuous mode [ 90.943596][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.954384][ T5774] veth0_vlan: entered promiscuous mode [ 90.961444][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.987007][ T5775] veth1_vlan: entered promiscuous mode [ 91.006258][ T5776] veth0_macvtap: entered promiscuous mode [ 91.019774][ T5774] veth1_vlan: entered promiscuous mode [ 91.038171][ T5776] veth1_macvtap: entered promiscuous mode [ 91.094550][ T5776] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.105482][ T5776] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.123427][ T5776] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 91.177318][ T5776] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.188574][ T5776] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.200287][ T5776] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 91.226128][ T5776] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.235800][ T5776] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.253616][ T5776] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.262766][ T5776] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.306272][ T5775] veth0_macvtap: entered promiscuous mode [ 91.333516][ T5774] veth0_macvtap: entered promiscuous mode [ 91.355790][ T5775] veth1_macvtap: entered promiscuous mode [ 91.374121][ T5774] veth1_macvtap: entered promiscuous mode [ 91.389710][ T5872] syz.2.5[5872]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 91.418711][ T5872] loop2: detected capacity change from 0 to 1024 [ 91.469504][ T5774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.492898][ T5774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.504541][ T5774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.515763][ T5774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.534176][ T5774] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 91.546523][ T5774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.571297][ T5774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.592582][ T5774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.604375][ T5774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.618336][ T5774] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 91.626654][ T5775] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.638821][ T5775] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.653337][ T5775] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.680898][ T5775] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.692508][ T5775] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.703833][ T5775] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.719108][ T5775] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 91.743224][ T5774] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.756360][ T5774] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.765409][ T5774] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.774256][ T5774] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.787061][ T5775] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.810471][ T5775] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.839443][ T5775] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.869328][ T5775] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.881611][ T5775] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.892623][ T5775] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.904494][ T5775] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 91.912413][ T5874] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 91.992111][ T2941] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.010163][ T2941] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.025676][ T5775] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.036442][ T51] Bluetooth: hci3: command tx timeout [ 92.041998][ T5088] Bluetooth: hci2: command tx timeout [ 92.051653][ T5775] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.066438][ T5775] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.082643][ T5775] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.112870][ T51] Bluetooth: hci0: command tx timeout [ 92.118383][ T5088] Bluetooth: hci1: command tx timeout [ 92.137301][ T2903] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.160664][ T2903] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.202314][ T23] cfg80211: failed to load regulatory.db [ 92.370231][ T1036] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.405868][ T1036] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.482767][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.520853][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.602931][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.635470][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.656135][ T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.681696][ T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.002746][ T5883] netlink: 452 bytes leftover after parsing attributes in process `syz.3.4'. [ 93.322747][ T5877] loop2: detected capacity change from 0 to 40427 [ 93.338492][ T5893] loop3: detected capacity change from 0 to 4096 [ 93.350472][ T5877] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504) [ 93.375367][ T5877] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 93.394149][ T5893] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512). [ 93.413016][ T5877] F2FS-fs (loop2): heap/no_heap options were deprecated [ 93.431362][ T5836] usb 1-1: new full-speed USB device number 2 using dummy_hcd [ 93.442971][ T5877] F2FS-fs (loop2): invalid crc value [ 93.470278][ T5877] F2FS-fs (loop2): Found nat_bits in checkpoint [ 93.613745][ T5877] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 93.636153][ T5877] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 93.666895][ T5836] usb 1-1: config 7 has an invalid interface number: 101 but max is 0 [ 93.682154][ T5836] usb 1-1: config 7 has no interface number 0 [ 93.733141][ T5836] usb 1-1: New USB device found, idVendor=0fd9, idProduct=002c, bcdDevice= 6.6b [ 93.759992][ T5836] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 93.779965][ T5836] usb 1-1: Product: syz [ 93.804233][ T5836] usb 1-1: Manufacturer: syz [ 93.821511][ T5836] usb 1-1: SerialNumber: syz [ 93.942835][ T5773] syz-executor: attempt to access beyond end of device [ 93.942835][ T5773] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 94.001521][ T5773] F2FS-fs (loop2): Remounting filesystem read-only [ 94.110996][ T51] Bluetooth: hci3: command tx timeout [ 94.117562][ T5088] Bluetooth: hci2: command tx timeout [ 94.191295][ T5088] Bluetooth: hci1: command tx timeout [ 94.196801][ T51] Bluetooth: hci0: command tx timeout [ 94.364540][ T5892] loop1: detected capacity change from 0 to 32768 [ 94.454794][ T5892] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 94.614042][ T5892] XFS (loop1): Ending clean mount [ 94.688027][ T5892] XFS (loop1): Quotacheck needed: Please wait. [ 94.711726][ T5836] as10x_usb: device has been detected [ 94.728420][ T5836] dvbdev: DVB: registering new adapter (Elgato EyeTV DTT Deluxe) [ 94.823231][ T5836] usb 1-1: DVB: registering adapter 1 frontend 0 (Elgato EyeTV DTT Deluxe)... [ 94.849558][ T5892] XFS (loop1): Quotacheck: Done. [ 94.902958][ T5917] loop2: detected capacity change from 0 to 4096 [ 94.974766][ T27] audit: type=1800 audit(2000000003.720:2): pid=5892 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.12" name="file1" dev="loop1" ino=6150 res=0 errno=0 [ 95.008844][ T5918] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 95.089478][ T27] audit: type=1800 audit(2000000003.830:3): pid=5917 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.17" name="file2" dev="loop2" ino=16 res=0 errno=0 [ 95.132227][ T5836] as10x_usb: error during firmware upload part1 [ 95.145624][ T5836] Registered device Elgato EyeTV DTT Deluxe [ 95.147484][ T5775] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 95.176572][ T5836] usb 1-1: USB disconnect, device number 2 [ 95.343955][ T5836] Unregistered device Elgato EyeTV DTT Deluxe [ 95.360577][ T5836] as10x_usb: device has been disconnected [ 95.641381][ T5926] loop1: detected capacity change from 0 to 512 [ 95.649589][ T5926] EXT4-fs: Ignoring removed nomblk_io_submit option [ 95.707759][ T5926] EXT4-fs error (device loop1): ext4_iget_extra_inode:4732: inode #15: comm syz.1.18: corrupted in-inode xattr: e_value size too large [ 95.722811][ T5926] EXT4-fs error (device loop1): ext4_orphan_get:1403: comm syz.1.18: couldn't read orphan inode 15 (err -117) [ 95.736952][ T5926] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 95.818008][ T5775] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 95.828581][ T968] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 96.034805][ T968] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 96.059686][ T968] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 96.091389][ T968] usb 3-1: config 0 descriptor?? [ 96.102756][ T968] cp210x 3-1:0.0: cp210x converter detected [ 96.143478][ T5934] loop1: detected capacity change from 0 to 4096 [ 96.206900][ T5934] ntfs: (device loop1): ntfs_read_locked_inode(): $DATA attribute is missing. [ 96.253290][ T5934] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -2. Marking corrupt inode 0xa as bad. Run chkdsk. [ 96.276265][ T5941] loop0: detected capacity change from 0 to 512 [ 96.308385][ T5934] ntfs: (device loop1): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 96.348402][ T5941] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 96.391337][ T5941] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 96.416272][ T5934] ntfs: volume version 3.1. [ 96.445550][ T5941] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2852: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 96.529530][ T968] cp210x 3-1:0.0: failed to get vendor val 0x000e size 3: -32 [ 96.580955][ T5941] EXT4-fs (loop0): 1 truncate cleaned up [ 96.602437][ T5941] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 96.645497][ T968] usb 3-1: cp210x converter now attached to ttyUSB0 [ 96.691048][ T5941] EXT4-fs warning (device loop0): verify_group_input:151: Cannot add at group 7 (only 1 groups) [ 96.745201][ T2941] ntfs: (device loop1): ntfs_write_block(): Writing beyond initialized size is not supported yet. Sorry. [ 96.768976][ T5776] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 96.786045][ T5836] usb 3-1: USB disconnect, device number 2 [ 96.799101][ T5775] ntfs: (device loop1): ntfs_put_super(): Volume has errors. Leaving volume marked dirty. Run chkdsk. [ 96.838334][ T5836] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 96.881717][ T5836] cp210x 3-1:0.0: device disconnected [ 97.043639][ T5948] loop0: detected capacity change from 0 to 512 [ 97.062593][ T5948] ======================================================= [ 97.062593][ T5948] WARNING: The mand mount option has been deprecated and [ 97.062593][ T5948] and is ignored by this kernel. Remove the mand [ 97.062593][ T5948] option from the mount to silence this warning. [ 97.062593][ T5948] ======================================================= [ 97.130108][ T5943] loop3: detected capacity change from 0 to 32768 [ 97.186350][ T5948] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 97.232521][ T27] audit: type=1326 audit(2000000005.980:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5952 comm="syz.1.30" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8278b9acb9 code=0x7ffc0000 [ 97.292061][ T5948] ext4 filesystem being mounted at /6/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 97.319539][ T27] audit: type=1326 audit(2000000006.000:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5952 comm="syz.1.30" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8278b9acb9 code=0x7ffc0000 [ 97.408938][ T5943] JBD2: Ignoring recovery information on journal [ 97.416637][ T27] audit: type=1326 audit(2000000006.000:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5952 comm="syz.1.30" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f8278b9acb9 code=0x7ffc0000 [ 97.545218][ T5943] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 97.590329][ T5776] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 97.656857][ T5957] loop2: detected capacity change from 0 to 8192 [ 97.687288][ T5960] loop1: detected capacity change from 0 to 4096 [ 97.722741][ T5957] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 97.814625][ T5957] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal [ 97.841424][ T5968] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 97.861912][ T5957] REISERFS (device loop2): using ordered data mode [ 97.876971][ T5957] reiserfs: using flush barriers [ 97.904913][ T5957] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 97.954621][ T5957] REISERFS (device loop2): checking transaction log (loop2) [ 97.991089][ T5957] REISERFS (device loop2): Using r5 hash to sort names [ 98.000845][ T5957] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage. [ 98.117764][ T5774] ocfs2: Unmounting device (7,3) on (node local) [ 98.356322][ T51] Bluetooth: unknown link type 128 [ 98.540380][ T5976] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 98.588808][ T5976] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 98.687545][ T5976] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 98.716038][ T5976] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 98.741178][ T5976] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 98.759928][ T5985] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 98.790426][ T5985] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 98.815110][ T5985] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 98.842170][ T5985] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 98.866215][ T5985] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 98.894501][ T5985] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 98.924977][ T5985] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 98.957481][ T5985] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 98.984670][ T5976] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 98.994294][ T5985] batadv_slave_0: entered promiscuous mode [ 99.017434][ T5985] batman_adv: batadv0: Adding interface: macsec1 [ 99.032936][ T5985] batman_adv: batadv0: The MTU of interface macsec1 is too small (1468) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 99.060479][ T5985] batman_adv: batadv0: Interface activated: macsec1 [ 99.068233][ T5976] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 99.085971][ T5976] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 99.103268][ T5976] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 99.160464][ T5976] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 99.172900][ T5976] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 99.194516][ T5976] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 99.326768][ T5990] loop2: detected capacity change from 0 to 16 [ 99.388795][ T5990] erofs: (device loop2): mounted with root inode @ nid 36. [ 99.612445][ T5998] loop2: detected capacity change from 0 to 128 [ 99.650468][ T968] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 99.839189][ T5998] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 99.852609][ T968] usb 2-1: Using ep0 maxpacket: 8 [ 99.874673][ T968] usb 2-1: config index 0 descriptor too short (expected 301, got 45) [ 99.895732][ T968] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 99.918879][ T5998] ext4 filesystem being mounted at /10/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 99.985885][ T968] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 100.047207][ T968] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 100.100526][ T968] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 100.151402][ T968] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 100.168159][ T968] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 100.227655][ T5773] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 100.448703][ T968] usb 2-1: GET_CAPABILITIES returned 0 [ 100.454604][ T968] usbtmc 2-1:16.0: can't read capabilities [ 100.591011][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 100.673176][ T968] usb 2-1: USB disconnect, device number 2 [ 100.735336][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.747805][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.755719][ T51] Bluetooth: hci0: command 0x0c1a tx timeout [ 100.762970][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.771401][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.780009][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.788068][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.795889][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.803693][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.811669][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.819186][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.827496][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.835389][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.843084][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.850861][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.859781][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.880371][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.887968][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.898104][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.909036][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.921186][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.928621][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.937359][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.945087][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.952840][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.960260][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.968231][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.976142][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.985241][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 100.994949][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.002917][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.010642][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.018237][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.026010][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.033830][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.041531][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.049118][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.057106][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.064945][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.074778][ T51] Bluetooth: hci3: command 0x0c1a tx timeout [ 101.081936][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.089376][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.097015][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.104569][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.112104][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.119515][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.127099][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.134610][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.142164][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.149584][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.168230][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.175751][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.184589][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.192073][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.210375][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.217823][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.230434][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 101.236660][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.244147][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.251675][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.259104][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.266678][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.274243][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.281782][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.290403][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.297896][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.305379][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.337766][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.361220][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.368987][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.403217][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.429361][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.445024][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.470580][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.478028][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.490016][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.498786][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.507245][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.540625][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.548090][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.559582][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.571645][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.584693][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.603557][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.617939][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.650883][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.658336][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.680373][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.694028][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.710495][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.728165][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.750436][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.768059][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.783636][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.817722][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.831034][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.838491][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.872666][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.880129][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.910447][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.917927][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.950618][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.958081][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 101.990449][ T5868] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 102.042862][ T5868] hid-generic 0000:0000:0004.0001: hidraw0: HID v0.03 Device [syz1] on syz0 [ 102.249735][ T6039] loop3: detected capacity change from 0 to 4096 [ 102.314520][ T6041] loop0: detected capacity change from 0 to 2048 [ 102.347370][ T6042] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 102.360732][ T6038] fido_id[6038]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 102.362044][ T6039] NILFS error (device loop3): nilfs_bmap_lookup_at_level: broken bmap (inode number=6) [ 102.400003][ T6039] NILFS (loop3): mounting fs with errors [ 102.421753][ T6043] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 102.470935][ T27] kauditd_printk_skb: 8 callbacks suppressed [ 102.470949][ T27] audit: type=1800 audit(2000000011.220:15): pid=6041 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.62" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 102.513552][ T6031] loop2: detected capacity change from 0 to 32768 [ 102.579469][ T6031] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 102.645113][ T6043] NILFS (loop0): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 102.661031][ T6043] NILFS error (device loop0): nilfs_bmap_propagate: broken bmap (inode number=4) [ 102.670573][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 102.684905][ T6043] Remounting filesystem read-only [ 102.691100][ T5776] NILFS (loop0): disposed unprocessed dirty file(s) when stopping log writer [ 102.745235][ T5776] NILFS (loop0): discard dirty page: offset=0, ino=6 [ 102.758547][ T5776] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 102.769924][ T5776] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 102.804318][ T5776] NILFS (loop0): discard dirty block: blocknr=37, size=1024 [ 102.816106][ T5791] I/O error, dev loop3, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 102.830632][ T51] Bluetooth: hci0: command 0x0c1a tx timeout [ 102.844351][ T5776] NILFS (loop0): discard dirty block: blocknr=38, size=1024 [ 102.883060][ T5776] NILFS (loop0): discard dirty page: offset=0, ino=5 [ 102.889827][ T5776] NILFS (loop0): discard dirty block: blocknr=41, size=1024 [ 102.959397][ T6031] XFS (loop2): Ending clean mount [ 102.961579][ T5776] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 103.001001][ T5776] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 103.025103][ T5776] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 103.040581][ T5776] NILFS (loop0): discard dirty page: offset=0, ino=4 [ 103.058368][ T5776] NILFS (loop0): discard dirty block: blocknr=40, size=1024 [ 103.071917][ T5776] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 103.092541][ T5776] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 103.102315][ T5776] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 103.111910][ T5776] NILFS (loop0): discard dirty page: offset=0, ino=3 [ 103.118650][ T5776] NILFS (loop0): discard dirty block: blocknr=42, size=1024 [ 103.126505][ T5776] NILFS (loop0): discard dirty block: blocknr=43, size=1024 [ 103.153196][ T5776] NILFS (loop0): discard dirty block: blocknr=44, size=1024 [ 103.160618][ T51] Bluetooth: hci3: command 0x0c1a tx timeout [ 103.176514][ T5776] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 103.200173][ T5773] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 103.310779][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 103.569341][ T6066] loop1: detected capacity change from 0 to 64 [ 104.208946][ T6069] loop3: detected capacity change from 0 to 32768 [ 104.348593][ T6069] UFO tlock:0xffffc9000287a090 [ 104.425406][ T6082] syz.2.75 (6082) used greatest stack depth: 20808 bytes left [ 104.433530][ T6069] MetaData crosses page boundary!! [ 104.452629][ T6086] loop0: detected capacity change from 0 to 2048 [ 104.458762][ T6069] lblock = 6300000010, size = -820051968 [ 104.475248][ T6069] CPU: 0 PID: 6069 Comm: syz.3.71 Not tainted syzkaller #0 [ 104.482588][ T6069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 104.492696][ T6069] Call Trace: [ 104.496016][ T6069] [ 104.498977][ T6069] dump_stack_lvl+0x18c/0x250 [ 104.503722][ T6069] ? __wake_up_bit+0x210/0x210 [ 104.508536][ T6069] ? show_regs_print_info+0x20/0x20 [ 104.513796][ T6069] ? load_image+0x400/0x400 [ 104.518366][ T6069] ? folio_unlock+0x118/0x2e0 [ 104.523101][ T6069] __get_metapage+0xaac/0xfa0 [ 104.527825][ T6069] dtReadFirst+0xd5/0x920 [ 104.532209][ T6069] jfs_readdir+0x919/0x3bb0 [ 104.536794][ T6069] ? dtInitRoot+0x670/0x670 [ 104.541366][ T6069] ? __up_read+0x2b6/0x6b0 [ 104.545827][ T6069] ? down_write+0x16e/0x200 [ 104.550378][ T6069] ? down_read_killable+0x340/0x340 [ 104.555627][ T6069] ? end_current_label_crit_section+0x149/0x170 [ 104.561928][ T6069] ? dtInitRoot+0x670/0x670 [ 104.566476][ T6069] wrap_directory_iterator+0x92/0xd0 [ 104.571833][ T6069] iterate_dir+0x1c2/0x580 [ 104.576305][ T6069] __se_sys_getdents+0xf6/0x260 [ 104.581205][ T6069] ? __x64_sys_getdents+0x80/0x80 [ 104.586273][ T6069] ? fillonedir+0x430/0x430 [ 104.590822][ T6069] ? lockdep_hardirqs_on+0x98/0x150 [ 104.596060][ T6069] do_syscall_64+0x55/0xa0 [ 104.600519][ T6069] ? clear_bhb_loop+0x40/0x90 [ 104.605232][ T6069] ? clear_bhb_loop+0x40/0x90 [ 104.609955][ T6069] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 104.615887][ T6069] RIP: 0033:0x7fec5eb9acb9 [ 104.620350][ T6069] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 104.639988][ T6069] RSP: 002b:00007fec5fa29028 EFLAGS: 00000246 ORIG_RAX: 000000000000004e [ 104.648441][ T6069] RAX: ffffffffffffffda RBX: 00007fec5ee15fa0 RCX: 00007fec5eb9acb9 [ 104.656458][ T6069] RDX: 0000000000000030 RSI: 0000200000000000 RDI: 0000000000000004 [ 104.664467][ T6069] RBP: 00007fec5ec08bf7 R08: 0000000000000000 R09: 0000000000000000 [ 104.672477][ T6069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 104.680490][ T6069] R13: 00007fec5ee16038 R14: 00007fec5ee15fa0 R15: 00007ffda5acac68 [ 104.688508][ T6069] [ 104.750717][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 104.816487][ T6069] bread failed! [ 104.820623][ T6069] jfs_readdir: unexpected rc = -5 from dtReadNext [ 104.850096][ T6086] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 104.882873][ T6086] ext4 filesystem being mounted at /20/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 104.913880][ T51] Bluetooth: hci0: command 0x0c1a tx timeout [ 104.962470][ T6086] fs-verity: sha512 using implementation "sha512-avx2" [ 104.998230][ T6086] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 5 vs 4156096517 free clusters [ 105.028808][ T6086] fs-verity (loop0, inode 13): ext4_end_enable_verity() failed with err -28 [ 105.046253][ T6097] loop1: detected capacity change from 0 to 4096 [ 105.070579][ T5868] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 105.127779][ T5776] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.138663][ T6097] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 105.179033][ T6097] ntfs3: loop1: Failed to initialize $Extend/$Reparse. [ 105.231179][ T51] Bluetooth: hci3: command 0x0c1a tx timeout [ 105.248151][ T27] audit: type=1800 audit(2000000013.990:16): pid=6097 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.82" name="file2" dev="loop1" ino=31 res=0 errno=0 [ 105.271665][ T5868] usb 3-1: Using ep0 maxpacket: 16 [ 105.289048][ T5868] usb 3-1: config 1 interface 0 altsetting 255 endpoint 0x1 has invalid wMaxPacketSize 0 [ 105.296463][ T27] audit: type=1800 audit(2000000014.020:17): pid=6097 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.82" name="file2" dev="loop1" ino=31 res=0 errno=0 [ 105.308254][ T5868] usb 3-1: config 1 interface 0 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 0 [ 105.329569][ T5868] usb 3-1: config 1 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 105.344826][ T5868] usb 3-1: config 1 interface 0 has no altsetting 0 [ 105.356941][ T5868] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 105.371838][ T5868] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 105.386597][ T5868] usb 3-1: Product: syz [ 105.391781][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 105.398723][ T5868] usb 3-1: Manufacturer: syz [ 105.405039][ T5868] usb 3-1: SerialNumber: syz [ 105.705195][ T5868] usblp 3-1:1.0: usblp0: USB Unidirectional printer dev 3 if 0 alt 255 proto 1 vid 0x0525 pid 0xA4A8 [ 105.794185][ T6103] loop3: detected capacity change from 0 to 256 [ 105.902022][ T5836] usb 3-1: USB disconnect, device number 3 [ 105.919040][ T5836] usblp0: removed [ 106.094282][ T6107] warning: `syz.1.87' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 106.216437][ T6099] loop0: detected capacity change from 0 to 32768 [ 106.249494][ T6111] netlink: 'syz.1.88': attribute type 11 has an invalid length. [ 106.265379][ T6099] ocfs2: Slot 0 on device (7,0) was already allocated to this node! [ 106.317156][ T6099] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 106.630473][ T5828] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 106.695907][ T5776] ocfs2: Unmounting device (7,0) on (node local) [ 106.727196][ T6127] loop2: detected capacity change from 0 to 128 [ 106.750881][ T6127] FAT-fs (loop2): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1) [ 106.846236][ T5828] usb 4-1: config 220 has an invalid interface number: 76 but max is 2 [ 106.874986][ T5828] usb 4-1: config 220 contains an unexpected descriptor of type 0x2, skipping [ 106.896725][ T5828] usb 4-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 106.935740][ T5828] usb 4-1: config 220 has no interface number 2 [ 106.948409][ T5828] usb 4-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 106.965842][ T5828] usb 4-1: config 220 interface 0 has no altsetting 0 [ 106.984867][ T5828] usb 4-1: config 220 interface 76 has no altsetting 0 [ 107.008230][ T5828] usb 4-1: config 220 interface 1 has no altsetting 0 [ 107.020954][ T5828] usb 4-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 107.047212][ T5828] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 107.060840][ T5828] usb 4-1: Product: syz [ 107.065041][ T5828] usb 4-1: Manufacturer: syz [ 107.092799][ T5828] usb 4-1: SerialNumber: syz [ 107.113314][ T6131] Zero length message leads to an empty skb [ 107.339856][ T5828] usb 4-1: Found UVC 7.01 device syz (8086:0b07) [ 107.380672][ T5828] usb 4-1: No valid video chain found. [ 107.386349][ T5828] usb 4-1: selecting invalid altsetting 0 [ 107.434247][ T5828] usb 4-1: selecting invalid altsetting 0 [ 107.440042][ T5828] usbtest: probe of 4-1:220.1 failed with error -22 [ 107.473150][ T5828] usb 4-1: USB disconnect, device number 2 [ 107.505362][ T6143] mmap: syz.2.101 (6143) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 107.745870][ T6135] loop1: detected capacity change from 0 to 32768 [ 107.774492][ T6135] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop1 scanned by syz.1.98 (6135) [ 107.808612][ T6135] BTRFS info (device loop1): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 107.830542][ T6135] BTRFS info (device loop1): using xxhash64 (xxhash64-generic) checksum algorithm [ 107.850663][ T6135] BTRFS info (device loop1): force zlib compression, level 3 [ 107.858530][ T6135] BTRFS info (device loop1): force clearing of disk cache [ 107.898716][ T6135] BTRFS info (device loop1): disabling tree log [ 107.919021][ T6135] BTRFS info (device loop1): enabling disk space caching [ 107.934130][ T6135] BTRFS info (device loop1): disk space caching is enabled [ 108.016157][ T6157] netlink: 8 bytes leftover after parsing attributes in process `syz.3.104'. [ 108.074638][ T6135] BTRFS info (device loop1): enabling ssd optimizations [ 108.097521][ T6135] BTRFS info (device loop1): auto enabling async discard [ 108.218535][ T6135] BTRFS info (device loop1: state M): force clearing of disk cache [ 108.244319][ T6135] BTRFS info (device loop1: state M): rebuilding free space tree [ 108.328924][ T6135] BTRFS info (device loop1: state M): disabling free space tree [ 108.360508][ T6135] BTRFS info (device loop1: state M): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 108.378431][ T6135] BTRFS info (device loop1: state M): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 108.455511][ T6146] loop2: detected capacity change from 0 to 32768 [ 108.538317][ T5775] BTRFS info (device loop1): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 108.593765][ T6166] loop3: detected capacity change from 0 to 8192 [ 108.621774][ T6166] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 108.640375][ T6166] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal [ 108.649628][ T6166] REISERFS (device loop3): using ordered data mode [ 108.705311][ T6166] reiserfs: using flush barriers [ 108.742645][ T6166] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 108.809409][ T6166] REISERFS (device loop3): checking transaction log (loop3) [ 108.931479][ T6166] REISERFS (device loop3): Using r5 hash to sort names [ 108.950877][ T6166] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage. [ 109.374436][ T6180] Attempt to restore checkpoint with obsolete wellknown handles [ 109.520122][ T27] audit: type=1326 audit(2000000019.257:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6183 comm="syz.3.113" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fec5eb9acb9 code=0x0 [ 109.555903][ T6186] capability: warning: `syz.1.114' uses deprecated v2 capabilities in a way that may be insecure [ 109.587077][ T6190] loop2: detected capacity change from 0 to 256 [ 109.714694][ T6194] netlink: 'syz.0.115': attribute type 8 has an invalid length. [ 110.101437][ T6210] loop1: detected capacity change from 0 to 1024 [ 110.125047][ T6210] EXT4-fs: Ignoring removed nobh option [ 110.157673][ T6210] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 110.203838][ T6210] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 110.287354][ T6210] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4047: comm syz.1.122: Allocating blocks 497-513 which overlap fs metadata [ 110.308242][ T6208] EXT4-fs (loop1): pa ffff88807855c3a0: logic 32768, phys. 145, len 23 [ 110.316928][ T6208] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5388: group 0, free 0, pa_free 1 [ 110.426203][ T6219] loop3: detected capacity change from 0 to 22 [ 110.461234][ T5775] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 110.463817][ T6219] MTD: Attempt to mount non-MTD device "/dev/loop3" [ 110.503703][ T6219] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 110.633258][ T6223] netlink: 'syz.1.127': attribute type 32 has an invalid length. [ 110.651507][ T6223] netlink: 8 bytes leftover after parsing attributes in process `syz.1.127'. [ 110.671195][ T6223] (unnamed net_device) (uninitialized): option coupled_control: invalid value (17) [ 110.691819][ T27] audit: type=1326 audit(2000000020.437:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6224 comm="syz.3.129" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fec5eb9acb9 code=0x0 [ 110.822209][ T6228] netlink: 16 bytes leftover after parsing attributes in process `syz.2.131'. [ 110.956123][ T6234] loop2: detected capacity change from 0 to 256 [ 110.987596][ T6232] loop0: detected capacity change from 0 to 4096 [ 111.037657][ T6238] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 111.059752][ T6234] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x8d1bf2bd, utbl_chksum : 0xe619d30d) [ 112.082642][ T6261] loop0: detected capacity change from 0 to 65 [ 112.108278][ T6244] loop2: detected capacity change from 0 to 32768 [ 112.119277][ T6261] BFS-fs: bfs_fill_super(): NOTE: filesystem loop0 was created with 512 inodes, the real maximum is 511, mounting anyway [ 112.231944][ T6262] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 112.859330][ T6281] capability: warning: `syz.1.153' uses 32-bit capabilities (legacy support in use) [ 112.935438][ T6282] Bluetooth: received HCILL_WAKE_UP_IND in state 2 [ 112.955310][ T6281] program syz.1.153 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 113.163871][ T6293] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 113.487338][ T6304] set_capacity_and_notify: 1 callbacks suppressed [ 113.487355][ T6304] loop1: detected capacity change from 0 to 256 [ 113.553245][ T6304] FAT-fs (loop1): Directory bread(block 64) failed [ 113.559831][ T6304] FAT-fs (loop1): Directory bread(block 65) failed [ 113.590720][ T6304] FAT-fs (loop1): Directory bread(block 66) failed [ 113.597329][ T6304] FAT-fs (loop1): Directory bread(block 67) failed [ 113.619018][ T6304] FAT-fs (loop1): Directory bread(block 68) failed [ 113.626509][ T6304] FAT-fs (loop1): Directory bread(block 69) failed [ 113.634381][ T6304] FAT-fs (loop1): Directory bread(block 70) failed [ 113.641036][ T6304] FAT-fs (loop1): Directory bread(block 71) failed [ 113.647677][ T6304] FAT-fs (loop1): Directory bread(block 72) failed [ 113.654306][ T6304] FAT-fs (loop1): Directory bread(block 73) failed [ 114.057461][ T6306] loop2: detected capacity change from 0 to 40427 [ 114.082769][ T6306] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 114.104906][ T6310] program syz.0.167 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 114.106285][ T6306] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 114.166464][ T6306] F2FS-fs (loop2): Found nat_bits in checkpoint [ 114.319144][ T6306] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 114.330393][ T6306] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 114.693718][ T6308] loop1: detected capacity change from 0 to 40427 [ 114.755173][ T6308] F2FS-fs (loop1): build fault injection attr: rate: 25, type: 0x7ffff [ 114.765352][ T6320] syz.2.165 (6320): drop_caches: 2 [ 114.771065][ T6308] F2FS-fs (loop1): build fault injection attr: rate: 0, type: 0x7698c [ 114.797570][ T6308] F2FS-fs (loop1): invalid crc value [ 114.815425][ T6308] F2FS-fs (loop1): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_ra_meta_pages+0x21d/0x9b0 [ 114.849600][ T6308] F2FS-fs (loop1): Found nat_bits in checkpoint [ 114.933751][ T6308] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x68b/0x9b0 [ 114.990939][ T5088] Bluetooth: hci4: command 0x1003 tx timeout [ 114.991672][ T6308] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 115.002576][ T5868] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 115.007622][ T51] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 115.068004][ T6308] F2FS-fs (loop1): inject dquot initialize in f2fs_dquot_initialize of f2fs_create+0x14d/0x550 [ 115.210824][ T5868] usb 1-1: Using ep0 maxpacket: 8 [ 115.219224][ T5868] usb 1-1: config index 0 descriptor too short (expected 30, got 18) [ 115.249425][ T5868] usb 1-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea [ 115.265745][ T5775] F2FS-fs (loop1): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_write+0x5b4/0x19c0 [ 115.283287][ T5868] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 115.294024][ T5868] usb 1-1: Product: syz [ 115.298231][ T5868] usb 1-1: Manufacturer: syz [ 115.307549][ T5775] F2FS-fs (loop1): invalid blkaddr: 512, type: 10, run fsck to fix. [ 115.318951][ T5868] usb 1-1: SerialNumber: syz [ 115.324357][ T5775] F2FS-fs (loop1): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_write+0x5b4/0x19c0 [ 115.338757][ T5868] usb 1-1: config 0 descriptor?? [ 115.355317][ T5775] F2FS-fs (loop1): invalid blkaddr: 1028, type: 10, run fsck to fix. [ 115.364214][ T5868] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state. [ 115.372521][ T5868] usb 1-1: setting power ON [ 115.377660][ T5868] dvb-usb: bulk message failed: -22 (2/0) [ 115.397627][ T5868] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 115.417140][ T5868] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID)) [ 115.426414][ T5868] usb 1-1: media controller created [ 115.490024][ T5868] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 115.553668][ T5868] usb 1-1: selecting invalid altsetting 6 [ 115.577596][ T6331] 9pnet: p9_errstr2errno: server reported unknown error ÿÿÿÿ [ 115.587816][ T5868] usb 1-1: digital interface selection failed (-22) [ 115.599567][ T6322] dvb-usb: bulk message failed: -22 (3/0) [ 115.607706][ T5868] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)' [ 115.619543][ T6322] cxusb: i2c rd: len=4096 is too big! [ 115.619543][ T6322] [ 115.636943][ T5868] usb 1-1: setting power OFF [ 115.644442][ T6332] dvb-usb: bulk message failed: -22 (3/0) [ 115.654220][ T6332] dvb-usb: bulk message failed: -22 (3/0) [ 115.660099][ T5868] dvb-usb: bulk message failed: -22 (2/0) [ 115.669419][ T5868] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected. [ 115.699479][ T5868] (NULL device *): no alternate interface [ 115.817162][ T5868] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected. [ 115.891197][ T5868] usb 1-1: USB disconnect, device number 3 [ 116.401884][ T6353] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 116.840442][ T27] audit: type=1326 audit(2000000026.567:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6362 comm="syz.0.187" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2b1779acb9 code=0x0 [ 116.908625][ T6348] loop2: detected capacity change from 0 to 32768 [ 116.931913][ T6349] loop1: detected capacity change from 0 to 32768 [ 117.082647][ T6349] ERROR: (device loop1): dbFindCtl: Corrupt dmapctl page [ 117.082647][ T6349] [ 117.087525][ T27] audit: type=1800 audit(2000000026.827:21): pid=6348 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.180" name="file1" dev="loop2" ino=4 res=0 errno=0 [ 117.118140][ T6349] ERROR: (device loop1): remounting filesystem as read-only [ 117.171293][ T6349] jfs_mkdir: dtInsert returned -EIO [ 117.176583][ T6349] ERROR: (device loop1): jfs_mkdir: [ 117.176583][ T6349] [ 117.208428][ T6367] Bluetooth: MGMT ver 1.22 [ 117.246913][ T6349] ERROR: (device loop1): dbFindCtl: Corrupt dmapctl page [ 117.246913][ T6349] [ 118.258268][ T6369] loop2: detected capacity change from 0 to 40427 [ 118.304135][ T6369] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 118.334658][ T6369] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 118.366475][ T6369] F2FS-fs (loop2): invalid crc value [ 118.395933][ T6369] F2FS-fs (loop2): Found nat_bits in checkpoint [ 118.515656][ T6369] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 118.535686][ T6369] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 118.613683][ T6369] syz.2.189: attempt to access beyond end of device [ 118.613683][ T6369] loop2: rw=2049, sector=77824, nr_sectors = 136 limit=40427 [ 118.993862][ T59] kworker/u4:4: attempt to access beyond end of device [ 118.993862][ T59] loop2: rw=1, sector=77856, nr_sectors = 8 limit=40427 [ 119.040858][ T59] kworker/u4:4: attempt to access beyond end of device [ 119.040858][ T59] loop2: rw=1, sector=77920, nr_sectors = 8 limit=40427 [ 119.106544][ T5773] syz-executor: attempt to access beyond end of device [ 119.106544][ T5773] loop2: rw=2051, sector=77864, nr_sectors = 56 limit=40427 [ 119.148528][ T5773] F2FS-fs (loop2): Issue discard(9733, 9733, 7) failed, ret: -5 [ 119.372475][ T6420] loop3: detected capacity change from 0 to 512 [ 119.841841][ T6430] loop3: detected capacity change from 0 to 8192 [ 119.851848][ T6430] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 119.865641][ T6430] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal [ 119.875530][ T6430] REISERFS (device loop3): using ordered data mode [ 119.882643][ T6430] reiserfs: using flush barriers [ 119.891147][ T6430] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 119.908089][ T6430] REISERFS (device loop3): checking transaction log (loop3) [ 119.917909][ T6433] loop2: detected capacity change from 0 to 1024 [ 119.928447][ T6430] REISERFS (device loop3): Using rupasov hash to sort names [ 119.948674][ T6430] REISERFS (device loop3): using 3.5.x disk format [ 119.955602][ T6433] EXT4-fs: Ignoring removed mblk_io_submit option [ 119.981002][ T6430] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 119.996701][ T9] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 120.020030][ T6430] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 120.032081][ T6430] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 120.047189][ T6430] REISERFS warning (device loop3): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 UNKNOWN] (nlink == 1) not found (pos 2) [ 120.061499][ T6430] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage. [ 120.068041][ T6433] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 120.105248][ T6430] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 120.145653][ T6430] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 120.204434][ T9] usb 1-1: config 0 has an invalid interface number: 1 but max is 0 [ 120.214246][ T9] usb 1-1: config 0 has no interface number 0 [ 120.233591][ T9] usb 1-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b [ 120.248180][ T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 120.264629][ T1036] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 120.282691][ T9] usb 1-1: Product: syz [ 120.290362][ T9] usb 1-1: Manufacturer: syz [ 120.297833][ T9] usb 1-1: SerialNumber: syz [ 120.321569][ T9] usb 1-1: config 0 descriptor?? [ 120.335998][ T1036] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 120.437419][ T1036] EXT4-fs (loop2): This should not happen!! Data will be lost [ 120.437419][ T1036] [ 120.460431][ T1036] EXT4-fs (loop2): Total free blocks count 0 [ 120.486039][ T1036] EXT4-fs (loop2): Free/Dirty block details [ 120.492551][ T1036] EXT4-fs (loop2): free_blocks=68451041280 [ 120.498477][ T1036] EXT4-fs (loop2): dirty_blocks=0 [ 120.510363][ T1036] EXT4-fs (loop2): Block reservation details [ 120.530347][ T1036] EXT4-fs (loop2): i_reserved_data_blocks=0 [ 120.546829][ T9] usb 1-1: dvb_usb_v2: found a 'E3C EC168 reference design' in warm state [ 120.561757][ T5773] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 120.577910][ T9] usb 1-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 120.591191][ T9] dvbdev: DVB: registering new adapter (E3C EC168 reference design) [ 120.599574][ T9] usb 1-1: media controller created [ 120.681384][ T9] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 120.924400][ T6455] loop3: detected capacity change from 0 to 512 [ 120.950488][ T6455] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 120.975358][ T6455] EXT4-fs (loop3): 1 truncate cleaned up [ 120.995996][ T6455] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 121.124966][ T5774] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 121.234892][ T2903] wlan1: Trigger new scan to find an IBSS to join [ 121.302061][ T49] ------------[ cut here ]------------ [ 121.307934][ T49] no supported rates for sta (null) (0xffffffff, band 0) in rate_mask 0xffffffff with flags 0x40 [ 121.319340][ T49] WARNING: CPU: 0 PID: 49 at net/mac80211/rate.c:385 __rate_control_send_low+0x635/0x880 [ 121.329260][ T49] Modules linked in: [ 121.333231][ T49] CPU: 0 PID: 49 Comm: kworker/u4:3 Not tainted syzkaller #0 [ 121.340690][ T49] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 121.350814][ T49] Workqueue: events_unbound cfg80211_wiphy_work [ 121.357154][ T49] RIP: 0010:__rate_control_send_low+0x635/0x880 [ 121.363478][ T49] Code: 30 42 0f b6 04 28 84 c0 0f 85 e6 01 00 00 41 8b 0e 48 c7 c7 60 c5 de 8b 48 8b 74 24 10 44 8b 44 24 1c 45 89 e1 e8 bb db 56 f7 <0f> 0b e9 78 fe ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 03 fa ff [ 121.383185][ T49] RSP: 0018:ffffc90000ba7380 EFLAGS: 00010246 [ 121.389295][ T49] RAX: 3b70495a41486700 RBX: 000000000000000c RCX: ffff88801c6c8000 [ 121.397357][ T49] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002 [ 121.405410][ T49] RBP: 0000000000000084 R08: ffffc90000ba6f87 R09: 1ffff92000174df0 [ 121.413490][ T49] R10: dffffc0000000000 R11: fffff52000174df1 R12: 0000000000000040 [ 121.421549][ T49] R13: dffffc0000000000 R14: ffff88807cf1b358 R15: ffff888022b81de8 [ 121.429611][ T49] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 121.438602][ T49] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 121.445287][ T49] CR2: 00007f28c0404e40 CR3: 000000002f49f000 CR4: 00000000003506f0 [ 121.453435][ T49] Call Trace: [ 121.456776][ T49] [ 121.459762][ T49] rate_control_send_low+0x194/0x790 [ 121.465122][ T49] rate_control_get_rate+0x20b/0x5d0 [ 121.470522][ T49] ieee80211_tx_h_rate_ctrl+0xb63/0x1790 [ 121.476234][ T49] ? ieee80211_tx_h_select_key+0x19e0/0x19e0 [ 121.482290][ T49] ? __lock_acquire+0x1273/0x7d40 [ 121.487376][ T49] ? ieee80211_is_bufferable_mmpdu+0xfb/0x1f0 [ 121.493565][ T49] invoke_tx_handlers_late+0xb6/0x1810 [ 121.499090][ T49] ? invoke_tx_handlers_early+0xa11/0x1cf0 [ 121.504979][ T49] ieee80211_tx+0x2d8/0x460 [ 121.509547][ T49] ? ieee80211_skb_resize+0x630/0x630 [ 121.515010][ T49] ? ieee80211_set_qos_hdr+0x1ca/0x510 [ 121.520548][ T49] ? __bpf_trace_tasklet+0x160/0x160 [ 121.525882][ T49] ? ieee80211_xmit+0x310/0x3f0 [ 121.530791][ T49] ? __ieee80211_tx_skb_tid_band+0x490/0x610 [ 121.536834][ T49] __ieee80211_tx_skb_tid_band+0x4d5/0x610 [ 121.542742][ T49] ? ieee80211_scan_state_send_probe+0x4b4/0x930 [ 121.549115][ T49] ieee80211_scan_state_send_probe+0x560/0x930 [ 121.555369][ T49] ieee80211_scan_work+0x4e9/0x1c40 [ 121.560741][ T49] cfg80211_wiphy_work+0x225/0x260 [ 121.565943][ T49] ? process_scheduled_works+0x96f/0x15d0 [ 121.571787][ T49] process_scheduled_works+0xa5d/0x15d0 [ 121.577450][ T49] ? assign_work+0x430/0x430 [ 121.582176][ T49] ? assign_work+0x3d0/0x430 [ 121.586847][ T49] worker_thread+0xa55/0xfc0 [ 121.591518][ T49] ? _raw_spin_unlock_irqrestore+0xc5/0x120 [ 121.597487][ T49] kthread+0x2fa/0x390 [ 121.601621][ T49] ? pr_cont_work+0x560/0x560 [ 121.606342][ T49] ? kthread_blkcg+0xd0/0xd0 [ 121.611050][ T49] ret_from_fork+0x48/0x80 [ 121.615511][ T49] ? kthread_blkcg+0xd0/0xd0 [ 121.620122][ T49] ret_from_fork_asm+0x11/0x20 [ 121.624998][ T49] [ 121.628070][ T49] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 121.635395][ T49] CPU: 0 PID: 49 Comm: kworker/u4:3 Not tainted syzkaller #0 [ 121.642801][ T49] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 121.652895][ T49] Workqueue: events_unbound cfg80211_wiphy_work [ 121.659290][ T49] Call Trace: [ 121.662608][ T49] [ 121.665589][ T49] dump_stack_lvl+0x18c/0x250 [ 121.670286][ T49] ? show_regs_print_info+0x20/0x20 [ 121.675545][ T49] ? load_image+0x400/0x400 [ 121.680067][ T49] panic+0x2dc/0x730 [ 121.683979][ T49] ? bpf_jit_dump+0xd0/0xd0 [ 121.688517][ T49] ? ret_from_fork_asm+0x11/0x20 [ 121.693511][ T49] __warn+0x2e0/0x470 [ 121.697523][ T49] ? __rate_control_send_low+0x635/0x880 [ 121.703178][ T49] ? __rate_control_send_low+0x635/0x880 [ 121.708834][ T49] report_bug+0x2be/0x4f0 [ 121.713219][ T49] ? __rate_control_send_low+0x635/0x880 [ 121.718906][ T49] ? __rate_control_send_low+0x635/0x880 [ 121.724635][ T49] ? __rate_control_send_low+0x637/0x880 [ 121.730313][ T49] handle_bug+0xcf/0x120 [ 121.734605][ T49] exc_invalid_op+0x1a/0x50 [ 121.739127][ T49] asm_exc_invalid_op+0x1a/0x20 [ 121.744006][ T49] RIP: 0010:__rate_control_send_low+0x635/0x880 [ 121.750263][ T49] Code: 30 42 0f b6 04 28 84 c0 0f 85 e6 01 00 00 41 8b 0e 48 c7 c7 60 c5 de 8b 48 8b 74 24 10 44 8b 44 24 1c 45 89 e1 e8 bb db 56 f7 <0f> 0b e9 78 fe ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 03 fa ff [ 121.769914][ T49] RSP: 0018:ffffc90000ba7380 EFLAGS: 00010246 [ 121.776026][ T49] RAX: 3b70495a41486700 RBX: 000000000000000c RCX: ffff88801c6c8000 [ 121.784025][ T49] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002 [ 121.792015][ T49] RBP: 0000000000000084 R08: ffffc90000ba6f87 R09: 1ffff92000174df0 [ 121.800007][ T49] R10: dffffc0000000000 R11: fffff52000174df1 R12: 0000000000000040 [ 121.808012][ T49] R13: dffffc0000000000 R14: ffff88807cf1b358 R15: ffff888022b81de8 [ 121.816022][ T49] rate_control_send_low+0x194/0x790 [ 121.821371][ T49] rate_control_get_rate+0x20b/0x5d0 [ 121.826714][ T49] ieee80211_tx_h_rate_ctrl+0xb63/0x1790 [ 121.832390][ T49] ? ieee80211_tx_h_select_key+0x19e0/0x19e0 [ 121.838410][ T49] ? __lock_acquire+0x1273/0x7d40 [ 121.843466][ T49] ? ieee80211_is_bufferable_mmpdu+0xfb/0x1f0 [ 121.849558][ T49] invoke_tx_handlers_late+0xb6/0x1810 [ 121.855053][ T49] ? invoke_tx_handlers_early+0xa11/0x1cf0 [ 121.860922][ T49] ieee80211_tx+0x2d8/0x460 [ 121.865469][ T49] ? ieee80211_skb_resize+0x630/0x630 [ 121.870898][ T49] ? ieee80211_set_qos_hdr+0x1ca/0x510 [ 121.876419][ T49] ? __bpf_trace_tasklet+0x160/0x160 [ 121.881754][ T49] ? ieee80211_xmit+0x310/0x3f0 [ 121.886651][ T49] ? __ieee80211_tx_skb_tid_band+0x490/0x610 [ 121.892667][ T49] __ieee80211_tx_skb_tid_band+0x4d5/0x610 [ 121.898516][ T49] ? ieee80211_scan_state_send_probe+0x4b4/0x930 [ 121.904877][ T49] ieee80211_scan_state_send_probe+0x560/0x930 [ 121.911081][ T49] ieee80211_scan_work+0x4e9/0x1c40 [ 121.916355][ T49] cfg80211_wiphy_work+0x225/0x260 [ 121.921629][ T49] ? process_scheduled_works+0x96f/0x15d0 [ 121.927402][ T49] process_scheduled_works+0xa5d/0x15d0 [ 121.933021][ T49] ? assign_work+0x430/0x430 [ 121.937660][ T49] ? assign_work+0x3d0/0x430 [ 121.942304][ T49] worker_thread+0xa55/0xfc0 [ 121.946943][ T49] ? _raw_spin_unlock_irqrestore+0xc5/0x120 [ 121.952911][ T49] kthread+0x2fa/0x390 [ 121.957011][ T49] ? pr_cont_work+0x560/0x560 [ 121.961722][ T49] ? kthread_blkcg+0xd0/0xd0 [ 121.966337][ T49] ret_from_fork+0x48/0x80 [ 121.970794][ T49] ? kthread_blkcg+0xd0/0xd0 [ 121.975423][ T49] ret_from_fork_asm+0x11/0x20 [ 121.980249][ T49] [ 121.983864][ T49] Kernel Offset: disabled [ 121.988265][ T49] Rebooting in 86400 seconds..