last executing test programs: 10.371823258s ago: executing program 0 (id=1282): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x4) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000080)={0x1, 0x0, [{0x4b564d04, 0x0, 0x10000}]}) r3 = openat$kvm(0x0, &(0x7f0000000000), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CAP_SPLIT_IRQCHIP(r4, 0x4068aea3, &(0x7f00000000c0)={0x79, 0x0, 0x1}) ioctl$KVM_SET_GSI_ROUTING(r4, 0x4008ae6a, &(0x7f0000000040)={0x1, 0x0, [{0x4, 0x4, 0x0, 0x0, @sint={0x7, 0xc29a}}]}) r5 = eventfd2(0x8, 0x1) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_IRQFD(r4, 0x4020ae76, &(0x7f0000000140)={r5, 0x4}) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = dup(r7) ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil}) r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r9, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f30fc7b462050000000fc76b04360fc7bc6a2474e1ee0f350f1a1c3a0f01cf66bad104ed66b8c3008ed0b9c40b00000f32eaf9c100001f01", 0x38}], 0x1, 0x11, 0x0, 0x0) syz_kvm_setup_cpu$x86(r7, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x10, 0x0, 0x0) ioctl$KVM_CAP_X86_USER_SPACE_MSR(r8, 0x4068aea3, &(0x7f00000002c0)={0xbc, 0x0, 0x2}) write$cgroup_int(0xffffffffffffffff, &(0x7f0000000040), 0x12) ioctl$KVM_RUN(r9, 0xae80, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff) ioctl$KVM_RUN(r9, 0xae80, 0x0) write$eventfd(r5, &(0x7f0000000080)=0x430f, 0x8) 8.603179347s ago: executing program 0 (id=1290): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x0, 0x0}) r0 = syz_usb_connect$printer(0x2, 0x36, &(0x7f00000001c0)=ANY=[@ANYBLOB="1201000000030020f003176c400000000001090224725100000000090400001207010300090501020000000000090582020002"], 0x0) openat2$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_mount_image$fuse(0x0, 0x0, 0x200810, 0x0, 0x1, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) pipe2$9p(&(0x7f0000000100)={0xffffffffffffffff}, 0x0) syz_mount_image$exfat(&(0x7f0000000400), &(0x7f0000000240)='./file0\x00', 0x2000084c, &(0x7f0000003b40)=ANY=[@ANYRES32=0x0, @ANYRESHEX, @ANYBLOB=',dmask=00000000000000000000152,fmask=00000000000000000000006,gid=', @ANYRES16, @ANYBLOB=',uid=', @ANYBLOB="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", @ANYBLOB="2c646973636172642c00fb278330ab3b4c84d36adf6908d11f57832035e96a1513231140da182ca77aeedc492bbc501d94f854a7e26909bde6bd93861d5f09f398b651e8"], 0x81, 0x14f3, &(0x7f0000001580)="$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") socket$inet6(0xa, 0x2, 0x0) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) write$binfmt_misc(r3, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x8000, &(0x7f00000002c0)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r1}}) 7.316159271s ago: executing program 3 (id=1291): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x6) sched_setaffinity(0x0, 0x0, 0x0) socket$kcm(0x29, 0x2, 0x0) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) read$FUSE(r1, &(0x7f00000024c0)={0x2020}, 0xfffffec1) read$FUSE(r1, &(0x7f0000004500)={0x2020}, 0x2020) ioctl$BLKFRAGET(r1, 0x1265, 0x0) r2 = syz_open_dev$MSR(0x0, 0x0, 0x0) read$msr(r2, 0x0, 0x0) creat(0x0, 0x62b266a4c604c0ba) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x3000490, &(0x7f0000000240)={[{@lazytime}, {@usrjquota}, {@errors_remount}, {@norecovery}, {@auto_da_alloc}, {@mblk_io_submit}, {@nouid32}, {@barrier_val}, {@grpjquota}, {@lazytime}]}, 0x45, 0x7b1, &(0x7f00000004c0)="$eJzs3c9rHNcdAPDvrFY/7VYqFFr3JCi0BuNV5ap2C4Wq9FAKNRjaUw+1xWotHK20RrsylhCJTQjkEkhCbsnF5/y8hFzz45BL8n8EGyeRTRxyCAqzP6SVtCvvOtKuHX8+MNZ7M2/2ve+82TfPmtFuAE+tyfSfTMSJiHg5iRivr08iYrCaykbM1so92NzIp0sSW1v/+Sqplrm/uZGPpn1Sx+qZX0fExy9EnMrsr7e8tr44VywWVur5qcrS1any2vrpK0tzC4WFwvLZ6ZmZM+f+dO7s4cX6zefrx++88s/fvzP73fO/evelT5KYjeP1bc1xHJbJmKwfk8H0EO7yj8OurG/ef7aDQk1nQPYoG0OX0o4ZqPfKiRiPgYP6Z7SXLQMAjspzEbHVzkDbLQDAEy2pXf//1u92AAC90vg9wP3NjXxj6e9vJHrr7t8jYqQWf+P+Zm1Ltn7PbqR6H3TsfrLrzkgSEROHUP9kRLzxwf/fSpc4ovuQAK3cuBkRlyYm94//yb5nFrr1h9arF5ozk3s2Gv+gdz5M5z9/bjX/y2zPf6LF/Ge4xXv3UTz8/Z+5fQjVtJXO//7a9Gzbg6b46yYG6rmfVed8g8nlK8VCOrb9PCJOxuBwmp8+oI6T976/125b8/zv61efeTOtP/25UyJzOzu8e5/5ucrcj4m52d2bEb/Jtoo/Hf+Hq/2ftJn/Xuiwjn/95cXX221L40/jbSz74z9aW7ciftey/5PtMsmBzydOVU+HqcZJ0cJ7szHWrv7J7E7/p0taf+P/Ar2Q9v/YwfFPJM3Pa5Y7funtp8U+uzX+UbtCzed/6/hbn/9DyX+r6aH6uutzlcrKdMRQ8u/968/s7NvIN8qn8Z/8bev3f2P8a3H+/y99/UsdHojsnS/ffvT4j1Ya/3xX/d91IkYeLA60q7+z/p/ZtU8n41+nDXzU4wYAAAAAAAAAAAAAAAAAAAAAAAAA3chExPFIMrntdCaTy9W+w/uXMZYplsqVU5dLq8vzUf2u7IkYzDQ+6nK86fNQp+ufh9/In9mT/2NE/CIiXhsereZz+VJxvt/BAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEDdsTbf/5/6YnhP4YF+tBAAOBIjLuwA8LRJstl+NwEA6LWRrkqPHlk7AIDe6e76DwD8FLj+A8DT5yHX/71/BgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADdunD+fLpsfbu5kU/z89fWVhdL107PF8qLuaXVfC5fWrmaWyiVFoqFXL601PaFbtR+FEulqzOxvHp9qlIoV6bKa+sXl0qry5WLV5bmFgoXC4M9iwwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOldeW1+cKxYLKxJ9SSx+WuuHx6U9Et0l4kat/x6X9hxeIoZ2RonR/gxOAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAE+AHwIAAP//4VQjgA==") creat(&(0x7f0000000000)='./file1\x00', 0x44) io_setup(0x202, 0x0) setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb), 0x0) 7.288383382s ago: executing program 2 (id=1293): r0 = socket(0x10, 0x2, 0x0) sched_setscheduler(0x0, 0x2, 0x0) clock_gettime(0x0, &(0x7f0000000180)={0x0, 0x0}) rt_sigtimedwait(0x0, &(0x7f00000000c0), &(0x7f0000000280)={r1, r2+60000000}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r3 = getpid() sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x8c0) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x35a53000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r6 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r6, 0x4601, &(0x7f0000000240)={0x10, 0x30, 0xf0, 0x0, 0x0, 0x1f, 0x0, 0x0, {}, {0x2e}, {}, {}, 0x0, 0x40, 0x0, 0x7, 0x0, 0x5, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x16, 0x0, 0x0, 0x5}) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0) socket$inet(0xa, 0x801, 0x84) ioctl$TIOCL_PASTESEL(0xffffffffffffffff, 0x541c, 0x0) r7 = socket$key(0xf, 0x3, 0x2) getpeername$unix(r4, &(0x7f00000002c0)=@abs, &(0x7f0000000340)=0x6e) setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0) sendmsg$key(r7, &(0x7f00000001c0)={0x500, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[], 0x50}}, 0x200c405a) syz_emit_vhci(&(0x7f0000000480)=ANY=[@ANYBLOB="043e"], 0xf) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000ac0)={'wpan0\x00'}) write(r0, &(0x7f0000000040)="240000001e005ff6991a2b200e0f7a000a000000000000000000080008000e00000000ff", 0x24) 6.655964688s ago: executing program 1 (id=1297): syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101ac2, 0x33) openat(0xffffffffffffff9c, 0x0, 0x441, 0x20) truncate(&(0x7f0000000900)='./file1\x00', 0x3000000) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0)) pwritev2(r0, &(0x7f0000000cc0)=[{&(0x7f0000000240)=';', 0xffffffbc}], 0x1, 0xfff, 0xc, 0x4) ioctl$EXT4_IOC_MIGRATE(r0, 0x6609) 5.55629643s ago: executing program 1 (id=1298): r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000180), 0x2004890, &(0x7f0000000340)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r0]) 5.417814731s ago: executing program 3 (id=1299): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) setsockopt$sock_int(r0, 0x1, 0x21, &(0x7f0000000040)=0x3, 0x4) sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x20000844}, 0x0) sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000000207010100ba21a0cede5dc5b8"], 0x14}, 0x1, 0x0, 0x0, 0x10000}, 0x4000) close(r0) 5.260466473s ago: executing program 1 (id=1300): socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001140)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000300)={0x1, &(0x7f0000000340)=[{0x6, 0x3, 0x9}]}, 0x10) openat$ttynull(0xffffffffffffff9c, 0x0, 0x82084, 0x0) syz_extract_tcp_res(0x0, 0x6, 0x5) syz_emit_ethernet(0x30f, &(0x7f0000000300)=ANY=[], &(0x7f0000000640)={0x0, 0x2, [0x4a1, 0xc34, 0xf62, 0x4b]}) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) io_uring_register$IORING_REGISTER_PBUF_RING(0xffffffffffffffff, 0x22, &(0x7f0000000380)={&(0x7f0000006000)={[{0x0, 0x0, 0x103}]}, 0x1}, 0x1) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7) r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102) writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0xa, 0x8000000000002}) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0}) r4 = dup3(r3, r2, 0x0) r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x0, 0x0) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r5, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a}) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, 0x0) r6 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000003480)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0) read$FUSE(r6, &(0x7f0000007fc0)={0x2020}, 0x2020) 5.228041464s ago: executing program 3 (id=1301): r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) connect$inet6(0xffffffffffffffff, &(0x7f0000000a40)={0xa, 0x6e24, 0x7fff, @mcast1, 0x9}, 0x1c) syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) 5.115786375s ago: executing program 1 (id=1302): openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x124) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0) r0 = syz_open_dev$usbfs(0x0, 0x76, 0x101b01) ioctl$USBDEVFS_ALLOW_SUSPEND(r0, 0x5522) r1 = gettid() timer_create(0x1, &(0x7f0000000800)={0x0, 0x21, 0x4, @tid=r1}, 0x0) sched_setscheduler(0x0, 0x2, 0x0) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045) r2 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0x970, 0x1f680, 0x0, 0x39d}) syz_io_uring_setup(0x4175, &(0x7f0000000180)={0x0, 0x136f, 0x11000, 0x1, 0x2d0}, &(0x7f0000000140), &(0x7f0000000400), &(0x7f0000000000)) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x3, 0x0, 0x0, 0x0, 0xffffffffffffff6a, 0x0, 0x0, 0xe, '\x00', 0x0, 0xd, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94) io_uring_enter(r2, 0x12a, 0xffffffdc, 0x17, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x1) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) ioctl$XFS_IOC_FSBULKSTAT_SINGLE(0xffffffffffffffff, 0xc0205866, &(0x7f0000000d40)={0x0, 0xfffffffb, 0x0, 0x0}) r3 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, 0x0) ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000100)={0x5, 0xffffffffffffffff, 0x1}) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff1000/0x2000)=nil, &(0x7f0000ff5000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045) r4 = io_uring_setup(0x524, &(0x7f0000000040)={0x0, 0x3cb1, 0x1c080, 0xa, 0x20002f7}) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c) io_uring_enter(r4, 0x2219, 0x7721, 0x16, 0x0, 0x0) 3.955634437s ago: executing program 3 (id=1303): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000240)=@bpf_lsm={0x18, 0x7, &(0x7f0000000180)=@raw=[@func={0x85, 0x0, 0x1, 0x0, 0x4}, @exit, @initr0, @exit, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffc}, @exit], &(0x7f00000000c0)='GPL\x00'}, 0x78) bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0) accept4(0xffffffffffffffff, 0x0, 0x0, 0x800) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) socket$kcm(0x10, 0x2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000040)={0x2, &(0x7f0000000140)=[{0x28, 0x0, 0x4d, 0xffffefff}, {0x6, 0x0, 0xff}]}, 0x10) sendmmsg(r3, &(0x7f0000001c00), 0x400000000000159, 0x40840) 3.882748478s ago: executing program 0 (id=1304): r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000300), r1) ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=0x0) sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000d80)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010426bd7000f8dbdf250200000008000100", @ANYRES32=r3], 0x1c}}, 0x4008054) write$nci(r0, &(0x7f0000000240)=ANY=[@ANYBLOB='p\x00\t'], 0xc) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03", 0x3}], 0x1}, 0x0) write$nci(r0, &(0x7f0000000040)=ANY=[@ANYBLOB='P'], 0x14) write$nci(r0, &(0x7f0000000100)=@NCI_OP_CORE_RESET_NTF={0x0, 0x1, 0x3, 0x0, 0x7, {0x6, 0x7, 0x0, 0xf7, 0x7, 0x9}}, 0xc) close(0x3) 3.7371075s ago: executing program 2 (id=1305): mmap(&(0x7f0000004000/0x4000)=nil, 0x4000, 0x0, 0x2172, 0xffffffffffffffff, 0x0) ioctl$NILFS_IOCTL_SET_SUINFO(0xffffffffffffffff, 0x40186e8d, &(0x7f00000002c0)={&(0x7f00000001c0)=[{0x586, 0x0, 0x0, {0x3, 0x4}}, {0xffffffffffffff97, 0x0, 0x0, {0x2, 0xffff0000, 0x1}}, {0xffffffffeffffff7, 0x2, 0x0, {0xdc6, 0x1}}, {0x5, 0x1, 0x0, {0x0, 0xec, 0x1}}, {0x7, 0x2, 0x0, {0xb, 0x7, 0x2}}, {0x7, 0x0, 0x0, {0x5, 0x74}}], 0x6, 0x20, 0xd, 0x15d2}) connect$inet(0xffffffffffffffff, 0x0, 0x0) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @void}, 0x10) r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0) r1 = eventfd(0xffffffff) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f00000005c0)=r1) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1) bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0000000000000000010001"], 0x50) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="210f0000000001", @ANYRES32, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x20000015}, 0x0) 3.550266572s ago: executing program 2 (id=1306): syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101ac2, 0x33) openat(0xffffffffffffff9c, 0x0, 0x441, 0x20) truncate(&(0x7f0000000900)='./file1\x00', 0x3000000) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0)) pwritev2(r0, &(0x7f0000000cc0)=[{&(0x7f0000000240)=';', 0xffffffbc}], 0x1, 0xfff, 0xc, 0x4) ioctl$EXT4_IOC_MIGRATE(r0, 0x6609) 3.310751754s ago: executing program 2 (id=1307): socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$inet6(0xa, 0x80002, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$inet6(0xa, 0x2, 0x0) openat$tun(0xffffffffffffff9c, 0x0, 0xc1842, 0x0) r4 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000140), 0x20280, 0x0) r5 = dup2(r4, r4) ioctl$SNDCTL_DSP_SPEED(r5, 0xc0045002, &(0x7f00000001c0)=0x2) lsetxattr$system_posix_acl(0x0, 0x0, 0x0, 0x24, 0x3) read$FUSE(r5, &(0x7f00000063c0)={0x2020}, 0x2020) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, 0x0, 0x0) 3.023922888s ago: executing program 1 (id=1308): socket$nl_route(0x10, 0x3, 0x0) r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) socket$igmp6(0xa, 0x3, 0x2) r4 = socket$inet6(0xa, 0x3, 0x8000000003c) connect$inet6(r4, &(0x7f0000000a40)={0xa, 0x6e24, 0x7fff, @mcast1, 0x9}, 0x1c) 2.109295127s ago: executing program 2 (id=1309): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) setsockopt$sock_int(r0, 0x1, 0x21, &(0x7f0000000040)=0x3, 0x4) sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x20000844}, 0x0) sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000000207010100ba21a0cede5dc5b8"], 0x14}, 0x1, 0x0, 0x0, 0x10000}, 0x4000) close(r0) 2.108651397s ago: executing program 3 (id=1310): socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001140)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000300)={0x1, &(0x7f0000000340)=[{0x6, 0x3, 0x9}]}, 0x10) openat$ttynull(0xffffffffffffff9c, 0x0, 0x82084, 0x0) syz_extract_tcp_res(0x0, 0x6, 0x5) syz_emit_ethernet(0x30f, &(0x7f0000000300)=ANY=[], &(0x7f0000000640)={0x0, 0x2, [0x4a1, 0xc34, 0xf62, 0x4b]}) openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0) openat$sequencer2(0xffffffffffffff9c, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) io_uring_register$IORING_REGISTER_PBUF_RING(0xffffffffffffffff, 0x22, &(0x7f0000000380)={&(0x7f0000006000)={[{0x0, 0x0, 0x103}]}, 0x1}, 0x1) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7) r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102) writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0xa, 0x8000000000002}) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0}) r4 = dup3(r3, r2, 0x0) r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x0, 0x0) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r5, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a}) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, 0x0) r6 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000003480)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0) read$FUSE(r6, &(0x7f0000007fc0)={0x2020}, 0x2020) 2.054198758s ago: executing program 0 (id=1311): r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0) ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000080)=0xb0000) r1 = socket$inet_udp(0x2, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$inet_int(r1, 0x0, 0xb, &(0x7f0000000000)=0x1ff, 0x4) write$P9_RVERSION(0xffffffffffffffff, 0x0, 0x13) ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@local}) ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r0, 0x7a5, &(0x7f0000000180)={{@host, 0x5}, 0x1, 0x0, 0x9}) 1.251979076s ago: executing program 1 (id=1312): r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) connect$inet6(0xffffffffffffffff, &(0x7f0000000a40)={0xa, 0x6e24, 0x7fff, @mcast1, 0x9}, 0x1c) syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) 1.055116008s ago: executing program 2 (id=1313): r0 = socket(0x10, 0x2, 0x0) sched_setscheduler(0x0, 0x2, 0x0) clock_gettime(0x0, &(0x7f0000000180)={0x0, 0x0}) rt_sigtimedwait(0x0, &(0x7f00000000c0), &(0x7f0000000280)={r1, r2+60000000}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r3 = getpid() sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x8c0) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x35a53000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r6 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r6, 0x4601, &(0x7f0000000240)={0x10, 0x30, 0xf0, 0x0, 0x0, 0x1f, 0x0, 0x0, {}, {0x2e}, {}, {}, 0x0, 0x40, 0x0, 0x7, 0x0, 0x5, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x16, 0x0, 0x0, 0x5}) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0) socket$inet(0xa, 0x801, 0x84) ioctl$TIOCL_PASTESEL(0xffffffffffffffff, 0x541c, 0x0) r7 = socket$key(0xf, 0x3, 0x2) getpeername$unix(r4, &(0x7f00000002c0)=@abs, &(0x7f0000000340)=0x6e) setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0) sendmsg$key(r7, &(0x7f00000001c0)={0x500, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[], 0x50}}, 0x200c405a) syz_emit_vhci(&(0x7f0000000480)=ANY=[@ANYBLOB="043e"], 0xf) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000ac0)={'wpan0\x00'}) write(r0, &(0x7f0000000040)="240000001e005ff6991a2b200e0f7a000a000000000000000000080008000e00000000ff", 0x24) 265.609687ms ago: executing program 0 (id=1314): mmap(&(0x7f0000004000/0x4000)=nil, 0x4000, 0x0, 0x2172, 0xffffffffffffffff, 0x0) ioctl$NILFS_IOCTL_SET_SUINFO(0xffffffffffffffff, 0x40186e8d, &(0x7f00000002c0)={&(0x7f00000001c0)=[{0x586, 0x0, 0x0, {0x3, 0x4}}, {0xffffffffffffff97, 0x0, 0x0, {0x2, 0xffff0000, 0x1}}, {0xffffffffeffffff7, 0x2, 0x0, {0xdc6, 0x1}}, {0x5, 0x1, 0x0, {0x0, 0xec, 0x1}}, {0x7, 0x2, 0x0, {0xb, 0x7, 0x2}}, {0x7, 0x0, 0x0, {0x5, 0x74}}], 0x6, 0x20, 0xd, 0x15d2}) connect$inet(0xffffffffffffffff, 0x0, 0x0) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @void}, 0x10) r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0) r1 = eventfd(0xffffffff) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f00000005c0)=r1) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1) bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0000000000000000010001"], 0x50) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="210f0000000001", @ANYRES32, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x20000015}, 0x0) 247.923607ms ago: executing program 3 (id=1315): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0xfffffffffffffffe, 0x40000000000180, 0x2, 0x6, 0xf2, 0xd, 0x7fffffffffffe, 0x7, 0x5, 0x7, 0x4, 0x5, 0x8, 0x8], 0x25000, 0x304}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r5 = dup(r4) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil}) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x11, 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x50, 0x0, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) 0s ago: executing program 0 (id=1316): syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101ac2, 0x33) openat(0xffffffffffffff9c, 0x0, 0x441, 0x20) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0)) pwritev2(r0, &(0x7f0000000cc0)=[{&(0x7f0000000240)=';', 0xffffffbc}], 0x1, 0xfff, 0xc, 0x4) ioctl$EXT4_IOC_MIGRATE(r0, 0x6609) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.183' (ED25519) to the list of known hosts. [ 66.902357][ T5756] cgroup: Unknown subsys name 'net' [ 67.031702][ T5756] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 68.401600][ T5756] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 69.779410][ T5774] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 69.782087][ T5775] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 69.787359][ T5774] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 69.797232][ T5775] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 69.807505][ T5774] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 69.814728][ T5775] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 69.815549][ T5774] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 69.829969][ T5774] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 69.830012][ T5775] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 69.838285][ T5774] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 69.845660][ T5775] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 69.851877][ T5774] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 69.867068][ T5775] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 69.868640][ T5774] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 69.874238][ T5775] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 69.889604][ T5775] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 69.889685][ T5781] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 69.904181][ T5775] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 69.904640][ T5781] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 69.921384][ T5781] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 69.929194][ T5781] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 69.945508][ T5776] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 69.965654][ T5781] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 69.973070][ T5773] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 70.380472][ T5771] chnl_net:caif_netlink_parms(): no params data found [ 70.400461][ T5770] chnl_net:caif_netlink_parms(): no params data found [ 70.453375][ T5768] chnl_net:caif_netlink_parms(): no params data found [ 70.487483][ T5769] chnl_net:caif_netlink_parms(): no params data found [ 70.600950][ T5771] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.608759][ T5771] bridge0: port 1(bridge_slave_0) entered disabled state [ 70.616656][ T5771] bridge_slave_0: entered allmulticast mode [ 70.623309][ T5771] bridge_slave_0: entered promiscuous mode [ 70.635232][ T5770] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.642408][ T5770] bridge0: port 1(bridge_slave_0) entered disabled state [ 70.649849][ T5770] bridge_slave_0: entered allmulticast mode [ 70.656475][ T5770] bridge_slave_0: entered promiscuous mode [ 70.672349][ T5771] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.679715][ T5771] bridge0: port 2(bridge_slave_1) entered disabled state [ 70.686924][ T5771] bridge_slave_1: entered allmulticast mode [ 70.693552][ T5771] bridge_slave_1: entered promiscuous mode [ 70.714804][ T5770] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.721955][ T5770] bridge0: port 2(bridge_slave_1) entered disabled state [ 70.729128][ T5770] bridge_slave_1: entered allmulticast mode [ 70.736381][ T5770] bridge_slave_1: entered promiscuous mode [ 70.742960][ T5768] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.750243][ T5768] bridge0: port 1(bridge_slave_0) entered disabled state [ 70.757584][ T5768] bridge_slave_0: entered allmulticast mode [ 70.764173][ T5768] bridge_slave_0: entered promiscuous mode [ 70.772061][ T5768] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.779256][ T5768] bridge0: port 2(bridge_slave_1) entered disabled state [ 70.786451][ T5768] bridge_slave_1: entered allmulticast mode [ 70.793065][ T5768] bridge_slave_1: entered promiscuous mode [ 70.839474][ T5771] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 70.860153][ T5770] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 70.881480][ T5771] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 70.901486][ T5770] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 70.912465][ T5768] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 70.932069][ T5769] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.941784][ T5769] bridge0: port 1(bridge_slave_0) entered disabled state [ 70.949016][ T5769] bridge_slave_0: entered allmulticast mode [ 70.955984][ T5769] bridge_slave_0: entered promiscuous mode [ 70.971581][ T5769] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.978899][ T5769] bridge0: port 2(bridge_slave_1) entered disabled state [ 70.986169][ T5769] bridge_slave_1: entered allmulticast mode [ 70.992757][ T5769] bridge_slave_1: entered promiscuous mode [ 71.001455][ T5768] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 71.023537][ T5771] team0: Port device team_slave_0 added [ 71.041592][ T5770] team0: Port device team_slave_0 added [ 71.065881][ T5769] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 71.085947][ T5769] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 71.096848][ T5771] team0: Port device team_slave_1 added [ 71.104392][ T5770] team0: Port device team_slave_1 added [ 71.155057][ T5770] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 71.162214][ T5770] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.188231][ T5770] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 71.212089][ T5768] team0: Port device team_slave_0 added [ 71.228211][ T5771] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 71.235176][ T5771] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.262029][ T5771] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 71.273625][ T5770] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 71.281208][ T5770] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.307430][ T5770] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 71.327694][ T5769] team0: Port device team_slave_0 added [ 71.334851][ T5768] team0: Port device team_slave_1 added [ 71.343668][ T5771] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 71.350687][ T5771] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.376642][ T5771] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 71.399043][ T5769] team0: Port device team_slave_1 added [ 71.456994][ T5770] hsr_slave_0: entered promiscuous mode [ 71.463284][ T5770] hsr_slave_1: entered promiscuous mode [ 71.482454][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.489154][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.502679][ T5769] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 71.509756][ T5769] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.535868][ T5769] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 71.547485][ T5768] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 71.554433][ T5768] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.580975][ T5768] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 71.593552][ T5768] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 71.600547][ T5768] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.626486][ T5768] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 71.648966][ T5769] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 71.656165][ T5769] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.682379][ T5769] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 71.743854][ T5771] hsr_slave_0: entered promiscuous mode [ 71.750217][ T5771] hsr_slave_1: entered promiscuous mode [ 71.757384][ T5771] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 71.765076][ T5771] Cannot create hsr debugfs directory [ 71.799876][ T5769] hsr_slave_0: entered promiscuous mode [ 71.806266][ T5769] hsr_slave_1: entered promiscuous mode [ 71.812262][ T5769] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 71.819903][ T5769] Cannot create hsr debugfs directory [ 71.893394][ T5768] hsr_slave_0: entered promiscuous mode [ 71.899985][ T5768] hsr_slave_1: entered promiscuous mode [ 71.908205][ T5768] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 71.915889][ T5768] Cannot create hsr debugfs directory [ 71.955723][ T51] Bluetooth: hci2: command tx timeout [ 72.035931][ T51] Bluetooth: hci3: command tx timeout [ 72.035946][ T5773] Bluetooth: hci0: command tx timeout [ 72.036086][ T5773] Bluetooth: hci1: command tx timeout [ 72.226759][ T5770] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 72.239927][ T5770] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 72.253244][ T5770] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 72.263064][ T5770] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 72.314562][ T5771] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 72.324119][ T5771] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 72.351500][ T5771] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 72.363173][ T5771] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 72.438053][ T5769] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 72.459113][ T5769] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 72.471739][ T5769] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 72.481436][ T5769] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 72.573590][ T5768] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 72.585780][ T5768] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 72.604321][ T5768] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 72.615006][ T5768] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 72.632877][ T5770] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.676661][ T5771] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.692773][ T5770] 8021q: adding VLAN 0 to HW filter on device team0 [ 72.721082][ T5771] 8021q: adding VLAN 0 to HW filter on device team0 [ 72.739211][ T1094] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.746488][ T1094] bridge0: port 1(bridge_slave_0) entered forwarding state [ 72.780011][ T1114] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.787133][ T1114] bridge0: port 2(bridge_slave_1) entered forwarding state [ 72.798510][ T1114] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.805621][ T1114] bridge0: port 1(bridge_slave_0) entered forwarding state [ 72.815688][ T1114] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.822795][ T1114] bridge0: port 2(bridge_slave_1) entered forwarding state [ 72.879727][ T5769] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.947704][ T5769] 8021q: adding VLAN 0 to HW filter on device team0 [ 72.979472][ T5771] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 73.011528][ T1150] bridge0: port 1(bridge_slave_0) entered blocking state [ 73.018706][ T1150] bridge0: port 1(bridge_slave_0) entered forwarding state [ 73.033685][ T1150] bridge0: port 2(bridge_slave_1) entered blocking state [ 73.040865][ T1150] bridge0: port 2(bridge_slave_1) entered forwarding state [ 73.121837][ T5768] 8021q: adding VLAN 0 to HW filter on device bond0 [ 73.216155][ T5768] 8021q: adding VLAN 0 to HW filter on device team0 [ 73.257527][ T1082] bridge0: port 1(bridge_slave_0) entered blocking state [ 73.264701][ T1082] bridge0: port 1(bridge_slave_0) entered forwarding state [ 73.310492][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 73.317681][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 73.368955][ T5770] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.386928][ T5771] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.529843][ T5770] veth0_vlan: entered promiscuous mode [ 73.554894][ T5771] veth0_vlan: entered promiscuous mode [ 73.590413][ T5769] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.602543][ T5770] veth1_vlan: entered promiscuous mode [ 73.629467][ T5771] veth1_vlan: entered promiscuous mode [ 73.708648][ T5771] veth0_macvtap: entered promiscuous mode [ 73.741492][ T5770] veth0_macvtap: entered promiscuous mode [ 73.757810][ T5771] veth1_macvtap: entered promiscuous mode [ 73.778517][ T5769] veth0_vlan: entered promiscuous mode [ 73.794167][ T5770] veth1_macvtap: entered promiscuous mode [ 73.812751][ T5769] veth1_vlan: entered promiscuous mode [ 73.833972][ T5771] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 73.851762][ T5768] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.861819][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.877125][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.892993][ T5770] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 73.907560][ T5771] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 73.924952][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 73.935754][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.947239][ T5770] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 73.959135][ T5770] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.968172][ T5770] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.978127][ T5770] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.987067][ T5770] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.009047][ T5771] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.017787][ T5771] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.028204][ T5771] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.037023][ T5773] Bluetooth: hci2: command tx timeout [ 74.043075][ T5771] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.089830][ T5769] veth0_macvtap: entered promiscuous mode [ 74.101156][ T5769] veth1_macvtap: entered promiscuous mode [ 74.116641][ T5781] Bluetooth: hci0: command tx timeout [ 74.117008][ T51] Bluetooth: hci1: command tx timeout [ 74.122206][ T5773] Bluetooth: hci3: command tx timeout [ 74.208054][ T5769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.222330][ T5769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.233343][ T5769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.243996][ T5769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.254859][ T5769] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 74.269844][ T5768] veth0_vlan: entered promiscuous mode [ 74.291710][ T5769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.302722][ T5769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.312669][ T5769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.323434][ T5769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.334743][ T5769] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 74.373600][ T1114] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.375732][ T1082] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.382870][ T5769] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.398312][ T1082] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.404333][ T1114] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.415080][ T5769] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.424270][ T5769] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.433408][ T5769] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.480421][ T1094] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.481263][ T5768] veth1_vlan: entered promiscuous mode [ 74.497359][ T1094] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.542014][ T1082] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.587242][ T1082] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.687222][ T5768] veth0_macvtap: entered promiscuous mode [ 74.733350][ T5768] veth1_macvtap: entered promiscuous mode [ 74.793685][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.811643][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.829504][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.844869][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.867157][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.880854][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.897948][ T5768] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 74.919971][ T1094] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.935330][ T1094] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.978545][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.998974][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 75.010038][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 75.020998][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 75.031194][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 75.042004][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 75.061249][ T5768] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 75.089315][ T5768] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.104703][ T1094] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.114493][ T5768] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.125345][ T1094] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.133882][ T5768] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.143386][ T5768] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.345613][ T5840] netlink: 140 bytes leftover after parsing attributes in process `syz.2.6'. [ 75.444094][ T1082] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.453455][ T1082] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 76.129771][ T5773] Bluetooth: hci2: command tx timeout [ 76.196415][ T51] Bluetooth: hci3: command tx timeout [ 76.201992][ T5781] Bluetooth: hci0: command tx timeout [ 76.204826][ T5773] Bluetooth: hci1: command tx timeout [ 76.262035][ T1150] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 76.291152][ T1150] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 76.533063][ T5859] syz.3.11[5859]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 76.564370][ T5859] loop3: detected capacity change from 0 to 1024 [ 77.700040][ T5870] Zero length message leads to an empty skb [ 78.266635][ T5773] Bluetooth: hci2: command tx timeout [ 78.276954][ T5773] Bluetooth: hci1: command tx timeout [ 78.282389][ T5773] Bluetooth: hci3: command tx timeout [ 78.288079][ T5773] Bluetooth: hci0: command tx timeout [ 78.350569][ T1082] hfsplus: b-tree write err: -5, ino 25 [ 78.408387][ T1082] hfsplus: b-tree write err: -5, ino 4 [ 78.414338][ T1082] hfsplus: b-tree write err: -5, ino 2 [ 78.503588][ T1082] hfsplus: b-tree write err: -5, ino 26 [ 79.361034][ T5868] loop0: detected capacity change from 0 to 32768 [ 79.400046][ T5868] ======================================================= [ 79.400046][ T5868] WARNING: The mand mount option has been deprecated and [ 79.400046][ T5868] and is ignored by this kernel. Remove the mand [ 79.400046][ T5868] option from the mount to silence this warning. [ 79.400046][ T5868] ======================================================= [ 79.434980][ C1] vkms_vblank_simulate: vblank timer overrun [ 79.607489][ T5868] JBD2: Ignoring recovery information on journal [ 79.908555][ T5868] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 80.946511][ T5868] syz.0.12 (5868) used greatest stack depth: 18736 bytes left [ 82.197663][ T5921] wg1 speed is unknown, defaulting to 1000 [ 82.203694][ T5921] wg1 speed is unknown, defaulting to 1000 [ 82.211024][ T5921] wg1 speed is unknown, defaulting to 1000 [ 82.220641][ T5921] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 82.232340][ T5921] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 82.256210][ T5921] wg1 speed is unknown, defaulting to 1000 [ 82.262965][ T5921] wg1 speed is unknown, defaulting to 1000 [ 82.269638][ T5921] wg1 speed is unknown, defaulting to 1000 [ 82.276264][ T5921] wg1 speed is unknown, defaulting to 1000 [ 82.310628][ T5768] ocfs2: Unmounting device (7,0) on (node local) [ 82.356499][ T9] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 82.585401][ T9] usb 4-1: Using ep0 maxpacket: 32 [ 82.640859][ T9] usb 4-1: config index 0 descriptor too short (expected 156, got 27) [ 82.668974][ T9] usb 4-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 82.695503][ T9] usb 4-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 83.395424][ T9] usb 4-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 83.435841][ T9] usb 4-1: config 0 interface 0 has no altsetting 0 [ 83.497031][ T9] usb 4-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 83.542196][ T9] usb 4-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 83.597402][ T9] usb 4-1: Product: syz [ 83.615494][ T9] usb 4-1: Manufacturer: syz [ 83.642651][ T9] usb 4-1: SerialNumber: syz [ 83.691170][ T9] usb 4-1: config 0 descriptor?? [ 83.780445][ T9] ldusb 4-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 84.418557][ T9] ldusb 4-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 84.546315][ T9] usb 4-1: USB disconnect, device number 2 [ 84.634872][ T9] ldusb 4-1:0.0: LD USB Device #0 now disconnected [ 86.179062][ T5958] binder: BINDER_SET_CONTEXT_MGR already set [ 86.185525][ T5958] binder: 5956:5958 ioctl 4018620d 200000000040 returned -16 [ 86.197712][ T5958] binder: 5956:5958 ioctl c0306201 0 returned -14 [ 86.506339][ T5940] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 86.848198][ T23] cfg80211: failed to load regulatory.db [ 86.949663][ T5970] loop3: detected capacity change from 0 to 512 [ 87.170634][ T5970] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 87.395519][ T5970] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 87.498639][ T5970] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 87.560224][ T5978] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 87.596027][ T5970] EXT4-fs (loop3): 1 truncate cleaned up [ 87.602878][ T5970] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 89.277155][ T5769] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 89.769305][ T787] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 90.135194][ T787] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 90.295557][ T787] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 90.395356][ T787] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 90.424802][ T787] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 90.489574][ T5994] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 90.518043][ T787] usb 3-1: Quirk or no altest; falling back to MIDI 1.0 [ 90.578557][ T6011] loop0: detected capacity change from 0 to 64 [ 90.601683][ T6011] hfs: unable to parse mount options [ 91.501956][ T5762] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 91.737477][ T28] usb 3-1: USB disconnect, device number 2 [ 92.502896][ T6049] netlink: 4 bytes leftover after parsing attributes in process `syz.3.70'. [ 92.697882][ T6028] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 93.770490][ T23] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 93.963620][ T6077] netlink: 4 bytes leftover after parsing attributes in process `syz.2.79'. [ 94.015326][ T23] usb 4-1: Using ep0 maxpacket: 32 [ 94.028430][ T23] usb 4-1: config 0 has an invalid interface number: 67 but max is 0 [ 94.037298][ T23] usb 4-1: config 0 has no interface number 0 [ 94.049523][ T23] usb 4-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 94.058656][ T23] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 94.066992][ T23] usb 4-1: Product: syz [ 94.071178][ T23] usb 4-1: Manufacturer: syz [ 94.077509][ T23] usb 4-1: SerialNumber: syz [ 94.085816][ T23] usb 4-1: config 0 descriptor?? [ 94.101484][ T23] smsc95xx v2.0.0 [ 94.514515][ T6089] overlayfs: failed to clone upperpath [ 94.570817][ T6090] overlayfs: missing 'lowerdir' [ 95.425366][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 96.215254][ C0] sched: RT throttling activated [ 96.372296][ T23] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -71 [ 96.413739][ T23] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 96.505535][ T23] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71 [ 96.544570][ T23] smsc95xx: probe of 4-1:0.67 failed with error -71 [ 96.580001][ T23] usb 4-1: USB disconnect, device number 3 [ 96.778929][ T6107] netlink: 4 bytes leftover after parsing attributes in process `syz.0.89'. [ 97.985315][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 98.364914][ T6114] loop2: detected capacity change from 0 to 2048 [ 98.466578][ T5763] udevd[5763]: incorrect nilfs2 checksum on /dev/loop2 [ 98.488758][ T6114] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 98.572133][ T6117] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 99.012646][ T6131] netlink: 4 bytes leftover after parsing attributes in process `syz.2.99'. [ 99.393028][ T6140] loop3: detected capacity change from 0 to 1024 [ 99.405045][ T6140] EXT4-fs: Ignoring removed oldalloc option [ 99.566122][ T6140] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 99.585528][ T6140] ext4 filesystem being mounted at /22/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 100.457018][ T5769] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 100.681414][ T6158] loop0: detected capacity change from 0 to 2048 [ 100.775762][ T6160] netlink: 4 bytes leftover after parsing attributes in process `syz.3.108'. [ 100.779080][ T6158] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 101.027520][ T5768] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 103.224836][ T6191] binder: BINDER_SET_CONTEXT_MGR already set [ 103.230980][ T6191] binder: 6186:6191 ioctl 4018620d 200000000040 returned -16 [ 103.241306][ T6191] binder: 6186:6191 ioctl c0306201 0 returned -14 [ 103.554904][ T6199] netlink: 4 bytes leftover after parsing attributes in process `syz.3.118'. [ 104.735409][ T27] audit: type=1326 audit(1778142523.165:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6210 comm="syz.3.125" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f1474d9cdd9 code=0x0 [ 104.922039][ T6215] binder: 6213:6215 ioctl c0306201 0 returned -14 [ 105.665694][ T0] NOHZ tick-stop error: local softirq work is pending, handler #142!!! [ 106.075331][ T0] NOHZ tick-stop error: local softirq work is pending, handler #142!!! [ 106.786370][ T6225] fuse: Unknown parameter 'group_id00000000000000000000' [ 107.985349][ T5826] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 108.985349][ T5826] usb 3-1: Using ep0 maxpacket: 32 [ 109.147608][ T5826] usb 3-1: config 4 has an invalid interface number: 201 but max is 0 [ 109.180668][ T5826] usb 3-1: config 4 has no interface number 0 [ 109.209557][ T5826] usb 3-1: config 4 interface 201 has no altsetting 0 [ 109.274303][ T5826] usb 3-1: New USB device found, idVendor=47ed, idProduct=31ab, bcdDevice=a6.55 [ 109.322160][ T6258] binder: BINDER_SET_CONTEXT_MGR already set [ 109.328543][ T6258] binder: 6255:6258 ioctl 4018620d 200000000040 returned -16 [ 109.337788][ T6258] binder: 6255:6258 ioctl c0306201 0 returned -14 [ 109.767514][ T5826] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 109.926727][ T5826] usb 3-1: Product: syz [ 110.004582][ T5826] usb 3-1: Manufacturer: syz [ 110.085666][ T5826] usb 3-1: SerialNumber: syz [ 110.110502][ T6261] fuse: Unknown parameter 'group_id00000000000000000000' [ 110.150021][ T5826] usb 3-1: can't set config #4, error -71 [ 110.227265][ T5826] usb 3-1: USB disconnect, device number 3 [ 112.421735][ T6290] fuse: Unknown parameter 'group_id00000000000000000000' [ 112.460154][ T6292] binder: BINDER_SET_CONTEXT_MGR already set [ 112.466346][ T6292] binder: 6286:6292 ioctl 4018620d 200000000040 returned -16 [ 115.266047][ T6322] fuse: Bad value for 'user_id' [ 116.663254][ T6335] raw_sendmsg: syz.1.164 forgot to set AF_INET. Fix it! [ 116.811521][ T6335] ceph: No mds server is up or the cluster is laggy [ 116.839533][ T23] libceph: connect (1)[c::]:6789 error -101 [ 116.846678][ T6338] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 116.895216][ T23] libceph: mon0 (1)[c::]:6789 connect error [ 118.561593][ T6349] loop0: detected capacity change from 0 to 256 [ 118.690186][ T6349] FAT-fs (loop0): Directory bread(block 64) failed [ 118.710354][ T6349] FAT-fs (loop0): Directory bread(block 65) failed [ 118.745453][ T6349] FAT-fs (loop0): Directory bread(block 66) failed [ 118.752014][ T6349] FAT-fs (loop0): Directory bread(block 67) failed [ 118.815481][ T6349] FAT-fs (loop0): Directory bread(block 68) failed [ 118.822377][ T6349] FAT-fs (loop0): Directory bread(block 69) failed [ 118.844477][ T6354] binder: BINDER_SET_CONTEXT_MGR already set [ 118.850626][ T6354] binder: 6350:6354 ioctl 4018620d 200000000040 returned -16 [ 119.608817][ T6349] FAT-fs (loop0): Directory bread(block 70) failed [ 119.671836][ T6349] FAT-fs (loop0): Directory bread(block 71) failed [ 119.739931][ T6349] FAT-fs (loop0): Directory bread(block 72) failed [ 119.785695][ T6349] FAT-fs (loop0): Directory bread(block 73) failed [ 120.276842][ T6360] fuse: Bad value for 'user_id' [ 121.852190][ T23] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 122.129831][ T6383] fuse: Bad value for 'fd' [ 122.161065][ T23] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 122.231531][ T23] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 122.245471][ T23] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 122.255814][ T23] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 122.273048][ T6378] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 122.332043][ T23] usb 1-1: Quirk or no altest; falling back to MIDI 1.0 [ 122.667500][ T8] usb 1-1: USB disconnect, device number 2 [ 125.358800][ T6405] fuse: Bad value for 'fd' [ 125.434765][ T6398] ALSA: mixer_oss: invalid OSS volume 'ðÿøÿÿÿy¤ðÿ' [ 125.441364][ T6398] ALSA: mixer_oss: invalid OSS volume '' [ 125.447060][ T6398] ALSA: mixer_oss: invalid OSS volume 'ù©Î¯Ð~Ð ' [ 125.453641][ T6398] ALSA: mixer_oss: invalid OSS volume 'ƒ7„ï8n"Ì"îGms‰R"–‚âK’S:©õ¦™Y' [ 126.852932][ T6433] fuse: Bad value for 'fd' [ 129.255339][ T8] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 129.492303][ T8] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 129.514134][ T8] usb 4-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 129.535980][ T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 129.569895][ T8] usb 4-1: config 0 descriptor?? [ 129.584392][ T8] pwc: Askey VC010 type 2 USB webcam detected. [ 130.648062][ T8] pwc: recv_control_msg error -32 req 02 val 2b00 [ 130.666905][ T8] pwc: recv_control_msg error -32 req 02 val 2700 [ 130.674949][ T8] pwc: recv_control_msg error -32 req 02 val 2c00 [ 130.683571][ T8] pwc: recv_control_msg error -32 req 04 val 1000 [ 130.706736][ T8] pwc: recv_control_msg error -32 req 04 val 1300 [ 130.721057][ T8] pwc: recv_control_msg error -32 req 04 val 1400 [ 130.727906][ T6466] fuse: Bad value for 'fd' [ 130.736668][ T8] pwc: recv_control_msg error -32 req 02 val 2000 [ 130.765494][ T8] pwc: recv_control_msg error -32 req 02 val 2100 [ 130.772956][ T8] pwc: recv_control_msg error -32 req 04 val 1500 [ 130.987870][ T8] pwc: recv_control_msg error -71 req 02 val 2400 [ 131.001539][ T8] pwc: recv_control_msg error -71 req 02 val 2600 [ 131.015939][ T8] pwc: recv_control_msg error -71 req 02 val 2900 [ 131.033055][ T8] pwc: recv_control_msg error -71 req 02 val 2800 [ 131.043294][ T8] pwc: recv_control_msg error -71 req 04 val 1100 [ 131.055707][ T8] pwc: recv_control_msg error -71 req 04 val 1200 [ 131.077494][ T8] pwc: Registered as video103. [ 131.105763][ T9] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 131.127096][ T8] input: PWC snapshot button as /devices/platform/dummy_hcd.3/usb4/4-1/input/input5 [ 131.212068][ T8] usb 4-1: USB disconnect, device number 4 [ 132.016525][ T9] usb 3-1: Using ep0 maxpacket: 32 [ 132.038742][ T9] usb 3-1: config 0 has an invalid interface number: 67 but max is 0 [ 132.048018][ T9] usb 3-1: config 0 has no interface number 0 [ 132.058522][ T9] usb 3-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 132.070087][ T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 132.082589][ T9] usb 3-1: Product: syz [ 132.087788][ T9] usb 3-1: Manufacturer: syz [ 132.092421][ T9] usb 3-1: SerialNumber: syz [ 132.102017][ T9] usb 3-1: config 0 descriptor?? [ 132.114515][ T5773] Bluetooth: hci2: link tx timeout [ 132.122098][ T5773] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa [ 132.133499][ T5773] Bluetooth: hci2: link tx timeout [ 132.136645][ T9] smsc95xx v2.0.0 [ 132.140113][ T5773] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa [ 132.153587][ T5773] Bluetooth: hci2: link tx timeout [ 132.158994][ T5773] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa [ 132.527241][ T5099] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 132.531096][ T6497] fuse: Bad value for 'fd' [ 132.553595][ T9] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32 [ 132.579983][ T9] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 132.715361][ T5099] usb 1-1: Using ep0 maxpacket: 32 [ 132.724922][ T5099] usb 1-1: config 0 has an invalid interface number: 1 but max is 0 [ 132.738466][ T5099] usb 1-1: config 0 has no interface number 0 [ 132.764361][ T5099] usb 1-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=93.d8 [ 132.783820][ T5099] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 132.810235][ T5099] usb 1-1: Product: syz [ 132.822042][ T5099] usb 1-1: Manufacturer: syz [ 132.836472][ T5099] usb 1-1: SerialNumber: syz [ 132.895754][ T5099] usb 1-1: config 0 descriptor?? [ 132.924211][ T5099] usb 1-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state [ 132.936292][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.482869][ T5099] usb 1-1: selecting invalid altsetting 1 [ 133.488739][ T5099] usb 1-1: dvb_usb_ce6230: usb_set_interface() failed=-22 [ 133.554589][ T5099] usb 1-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 133.590181][ T5099] dvbdev: DVB: registering new adapter (Intel CE9500 reference design) [ 133.635185][ T5099] usb 1-1: media controller created [ 133.708188][ T5099] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 133.796842][ T5099] usb 1-1: dvb_usb_ce6230: usb_control_msg() failed=-71 [ 133.824716][ T5099] zl10353_read_register: readreg error (reg=127, ret==-71) [ 133.839226][ T5099] usb 1-1: dvb_usb_ce6230: usb_set_interface() failed=-71 [ 133.941640][ T5099] usb 1-1: USB disconnect, device number 3 [ 133.957115][ T5773] Bluetooth: hci3: command 0x0406 tx timeout [ 134.007601][ T9] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71 [ 134.204717][ T5781] Bluetooth: hci2: command 0x0406 tx timeout [ 135.319299][ T9] smsc95xx: probe of 3-1:0.67 failed with error -71 [ 135.330062][ T9] usb 3-1: USB disconnect, device number 4 [ 135.594600][ T6526] fuse: Bad value for 'fd' [ 136.728685][ T9] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 136.985648][ T9] usb 4-1: Using ep0 maxpacket: 32 [ 137.066346][ T9] usb 4-1: config 0 has an invalid interface number: 1 but max is 0 [ 137.886477][ T9] usb 4-1: config 0 has no interface number 0 [ 137.903134][ T9] usb 4-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=93.d8 [ 137.912501][ T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 138.058282][ T9] usb 4-1: Product: syz [ 138.086063][ T9] usb 4-1: Manufacturer: syz [ 138.090931][ T9] usb 4-1: SerialNumber: syz [ 138.331940][ T9] usb 4-1: config 0 descriptor?? [ 138.386085][ T9] usb 4-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state [ 138.418172][ T9] usb 4-1: selecting invalid altsetting 1 [ 138.424279][ T9] usb 4-1: dvb_usb_ce6230: usb_set_interface() failed=-22 [ 138.483469][ T9] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 138.501630][ T9] dvbdev: DVB: registering new adapter (Intel CE9500 reference design) [ 138.515480][ T9] usb 4-1: media controller created [ 138.594485][ T9] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 138.684413][ T6553] fuse: Bad value for 'fd' [ 138.699199][ T9] usb 4-1: dvb_usb_ce6230: usb_control_msg() failed=-71 [ 138.713452][ T9] zl10353_read_register: readreg error (reg=127, ret==-71) [ 138.732256][ T9] usb 4-1: dvb_usb_ce6230: usb_set_interface() failed=-71 [ 138.870530][ T9] usb 4-1: USB disconnect, device number 5 [ 141.674046][ T6588] fuse: Bad value for 'fd' [ 144.065731][ T0] NOHZ tick-stop error: local softirq work is pending, handler #142!!! [ 144.740198][ T6619] fuse: Invalid rootmode [ 147.133923][ T6665] fuse: Invalid rootmode [ 148.496927][ T6694] fuse: Invalid rootmode [ 150.235561][ T6713] fuse: Bad value for 'rootmode' [ 150.302225][ T23] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 150.495358][ T23] usb 3-1: Using ep0 maxpacket: 32 [ 150.508985][ T23] usb 3-1: config 0 has an invalid interface number: 67 but max is 0 [ 150.526089][ T23] usb 3-1: config 0 has no interface number 0 [ 150.551161][ T23] usb 3-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 150.564326][ T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 150.580817][ T23] usb 3-1: Product: syz [ 150.588256][ T23] usb 3-1: Manufacturer: syz [ 150.593776][ T23] usb 3-1: SerialNumber: syz [ 150.603598][ T23] usb 3-1: config 0 descriptor?? [ 150.610734][ T23] smsc95xx v2.0.0 [ 151.019717][ T23] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32 [ 151.040544][ T23] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 151.193806][ T6734] fuse: Bad value for 'rootmode' [ 151.860735][ T23] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -32 [ 151.876464][ T23] smsc95xx: probe of 3-1:0.67 failed with error -32 [ 152.084012][ T6754] binder: 6750:6754 ioctl c0306201 0 returned -14 [ 153.015134][ T6760] fuse: Bad value for 'rootmode' [ 153.042202][ T787] usb 3-1: USB disconnect, device number 5 [ 153.578820][ T6785] vivid-000: ================= START STATUS ================= [ 153.601717][ T6785] vivid-000: RDS Tx I/O Mode: Controls [ 153.713611][ T6785] vivid-000: RDS Program ID: 32904 [ 153.719049][ T6785] vivid-000: RDS Program Type: 3 [ 153.724072][ T6785] vivid-000: RDS PS Name: VIVID-TX [ 153.729696][ T6785] vivid-000: RDS Radio Text: This is a VIVID default Radio Text template text, change at will [ 153.740463][ T6785] vivid-000: RDS Stereo: true [ 153.745337][ T6785] vivid-000: RDS Artificial Head: false [ 153.750991][ T6785] vivid-000: RDS Compressed: false [ 153.756278][ T6785] vivid-000: RDS Dynamic PTY: false [ 153.761568][ T6785] vivid-000: RDS Traffic Announcement: false [ 153.767761][ T6785] vivid-000: RDS Traffic Program: true [ 153.796553][ T6785] vivid-000: RDS Music: true [ 153.801398][ T6785] vivid-000: ================== END STATUS ================== [ 154.866065][ T6801] fuse: Unknown parameter 'use00000000000000000000' [ 155.433656][ T6827] fuse: Unknown parameter 'use00000000000000000000' [ 156.970367][ T6860] fuse: Unknown parameter 'use00000000000000000000' [ 159.714790][ T6907] fuse: Unknown parameter 'user_i00000000000000000000' [ 161.242847][ T6932] fuse: Unknown parameter 'user_i00000000000000000000' [ 165.797814][ T6995] loop2: detected capacity change from 0 to 131072 [ 165.948842][ T6995] F2FS-fs (loop2): invalid crc value [ 166.002187][ T6995] F2FS-fs (loop2): Found nat_bits in checkpoint [ 166.153423][ T6995] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4 [ 166.359958][ T7013] netlink: 4 bytes leftover after parsing attributes in process `syz.3.391'. [ 172.990942][ T5826] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 175.891116][ T5826] usb 4-1: device descriptor read/all, error -71 [ 180.605491][ T5099] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 180.787438][ T5099] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 180.804840][ T5099] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 180.814981][ T5099] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 180.841740][ T5099] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 180.862569][ T5099] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 180.882633][ T5099] usb 4-1: config 0 descriptor?? [ 181.328863][ T5099] plantronics 0003:047F:FFFF.0001: unknown main item tag 0xd [ 181.344952][ T5099] plantronics 0003:047F:FFFF.0001: No inputs registered, leaving [ 181.375963][ T5099] plantronics 0003:047F:FFFF.0001: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 182.073293][ T8] usb 4-1: USB disconnect, device number 8 [ 182.344641][ T7217] fido_id[7217]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/4-1/report_descriptor': No such file or directory [ 187.593214][ T7302] binder: BINDER_SET_CONTEXT_MGR already set [ 187.599321][ T7302] binder: 7300:7302 ioctl 4018620d 200000000040 returned -16 [ 191.827819][ T5099] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 192.005390][ T5099] usb 3-1: device descriptor read/64, error -71 [ 192.473311][ T5099] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 192.630966][ T5099] usb 3-1: device descriptor read/64, error -71 [ 192.850840][ T5099] usb usb3-port1: attempt power cycle [ 193.383438][ T5099] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 194.168665][ T5099] usb 3-1: device descriptor read/8, error -71 [ 194.368023][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 196.437426][ T5776] Bluetooth: hci1: command 0x0406 tx timeout [ 196.438467][ T5775] Bluetooth: hci0: command 0x0406 tx timeout [ 196.443477][ T5083] Bluetooth: hci3: command 0x0406 tx timeout [ 197.828297][ T5099] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 198.635413][ T5099] usb 4-1: device descriptor read/64, error -71 [ 199.548623][ T5099] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 199.722657][ T5099] usb 4-1: device descriptor read/64, error -71 [ 200.645902][ T5099] usb usb4-port1: attempt power cycle [ 201.715907][ T7458] netlink: 8 bytes leftover after parsing attributes in process `syz.2.531'. [ 202.996521][ T7479] binder: 7478:7479 ioctl 4018620d 0 returned -22 [ 204.929864][ T0] NOHZ tick-stop error: local softirq work is pending, handler #0a!!! [ 209.915686][ T7512] binder: 7508:7512 ioctl 4018620d 0 returned -22 [ 214.975661][ T7551] binder: 7550:7551 ioctl 4018620d 0 returned -22 [ 216.188189][ T7562] binder: 7561:7562 ioctl c0306201 0 returned -14 [ 216.498279][ T7576] netlink: 4 bytes leftover after parsing attributes in process `syz.1.570'. [ 217.309076][ T7590] binder: BINDER_SET_CONTEXT_MGR already set [ 217.324586][ T7590] binder: 7589:7590 ioctl 4018620d 200000004a80 returned -16 [ 218.305271][ T0] NOHZ tick-stop error: local softirq work is pending, handler #1c0!!! [ 218.595694][ T7607] netlink: 4 bytes leftover after parsing attributes in process `syz.3.581'. [ 219.663623][ T7621] binder: BINDER_SET_CONTEXT_MGR already set [ 219.691145][ T7621] binder: 7620:7621 ioctl 4018620d 200000004a80 returned -16 [ 220.783288][ T7640] netlink: 4 bytes leftover after parsing attributes in process `syz.3.592'. [ 222.861497][ T7659] binder: BINDER_SET_CONTEXT_MGR already set [ 222.867775][ T7659] binder: 7658:7659 ioctl 4018620d 200000004a80 returned -16 [ 223.048100][ T7668] netlink: 4 bytes leftover after parsing attributes in process `syz.2.604'. [ 227.446856][ T7694] netlink: 4 bytes leftover after parsing attributes in process `syz.3.613'. [ 227.600769][ T7697] binder: 7696:7697 ioctl c0306201 0 returned -14 [ 228.688367][ T7709] binder: 7708:7709 ioctl c0306201 0 returned -14 [ 230.489018][ T23] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 230.855483][ T23] usb 3-1: Using ep0 maxpacket: 32 [ 231.239774][ T23] usb 3-1: config 0 has an invalid interface number: 67 but max is 0 [ 231.316736][ T23] usb 3-1: config 0 has no interface number 0 [ 231.447909][ T23] usb 3-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 231.469886][ T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 231.510938][ T23] usb 3-1: Product: syz [ 231.535343][ T23] usb 3-1: Manufacturer: syz [ 231.539994][ T23] usb 3-1: SerialNumber: syz [ 231.570250][ T23] usb 3-1: config 0 descriptor?? [ 231.580864][ T23] smsc95xx v2.0.0 [ 232.961071][ T7728] binder: BINDER_SET_CONTEXT_MGR already set [ 232.967220][ T7728] binder: 7726:7728 ioctl 4018620d 200000000040 returned -16 [ 232.975580][ T7728] binder: 7726:7728 ioctl c0306201 0 returned -14 [ 233.023946][ T23] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -71 [ 233.034238][ T23] smsc95xx: probe of 3-1:0.67 failed with error -71 [ 233.100006][ T23] usb 3-1: USB disconnect, device number 10 [ 234.186355][ T7747] binder: 7746:7747 ioctl c0306201 0 returned -14 [ 234.452394][ T7756] netlink: 4 bytes leftover after parsing attributes in process `syz.1.622'. [ 238.734066][ T7790] netlink: 4 bytes leftover after parsing attributes in process `syz.0.640'. [ 238.953110][ T7796] binder: 7795:7796 ioctl c0306201 0 returned -14 [ 242.011997][ T7819] netlink: 4 bytes leftover after parsing attributes in process `syz.3.651'. [ 242.632527][ T787] libceph: connect (1)[c::]:6789 error -101 [ 242.657680][ T787] libceph: mon0 (1)[c::]:6789 connect error [ 242.682000][ T7832] ceph: No mds server is up or the cluster is laggy [ 242.741907][ T7835] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 242.975125][ T7821] loop2: detected capacity change from 0 to 32768 [ 247.333879][ T7862] netlink: 4 bytes leftover after parsing attributes in process `syz.1.661'. [ 250.415144][ T7895] netlink: 4 bytes leftover after parsing attributes in process `syz.2.674'. [ 251.822926][ T7902] binder: BINDER_SET_CONTEXT_MGR already set [ 251.852440][ T7902] binder: 7897:7902 ioctl 4018620d 200000000040 returned -16 [ 251.890676][ T7902] binder: 7897:7902 ioctl c0306201 0 returned -14 [ 254.853865][ T7926] netlink: 4 bytes leftover after parsing attributes in process `syz.1.684'. [ 256.402784][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.469027][ T787] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 256.665445][ T787] usb 4-1: Using ep0 maxpacket: 32 [ 256.680862][ T787] usb 4-1: config 0 has an invalid interface number: 67 but max is 0 [ 256.691449][ T787] usb 4-1: config 0 has no interface number 0 [ 256.718078][ T787] usb 4-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 256.732419][ T787] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 256.749771][ T787] usb 4-1: Product: syz [ 256.754104][ T787] usb 4-1: Manufacturer: syz [ 256.760326][ T787] usb 4-1: SerialNumber: syz [ 256.779953][ T787] usb 4-1: config 0 descriptor?? [ 256.793856][ T787] smsc95xx v2.0.0 [ 257.202222][ T787] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32 [ 257.233872][ T787] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 257.340079][ T7947] binder: 7945:7947 ioctl c0306201 0 returned -14 [ 257.460078][ T787] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -32 [ 258.125669][ T787] smsc95xx: probe of 4-1:0.67 failed with error -32 [ 258.379138][ T7955] netlink: 4 bytes leftover after parsing attributes in process `syz.1.693'. [ 258.435568][ T5773] Bluetooth: hci2: command 0x0406 tx timeout [ 258.860047][ T5758] usb 4-1: USB disconnect, device number 12 [ 260.811932][ T7980] binder: 7978:7980 ioctl c0306201 0 returned -14 [ 261.619984][ T7982] netlink: 4 bytes leftover after parsing attributes in process `syz.3.702'. [ 261.895615][ T23] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 262.055347][ T5808] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 262.095356][ T23] usb 1-1: Using ep0 maxpacket: 32 [ 262.108269][ T23] usb 1-1: config 0 has an invalid interface number: 67 but max is 0 [ 262.125292][ T23] usb 1-1: config 0 has no interface number 0 [ 262.143875][ T23] usb 1-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 262.163378][ T23] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 262.173489][ T23] usb 1-1: Product: syz [ 262.183603][ T23] usb 1-1: Manufacturer: syz [ 262.193713][ T23] usb 1-1: SerialNumber: syz [ 262.207045][ T23] usb 1-1: config 0 descriptor?? [ 262.224584][ T23] smsc95xx v2.0.0 [ 262.245479][ T5808] usb 4-1: Using ep0 maxpacket: 32 [ 262.263515][ T5808] usb 4-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=93.d8 [ 262.280879][ T5808] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 262.297927][ T5808] usb 4-1: Product: syz [ 262.309171][ T5808] usb 4-1: Manufacturer: syz [ 262.318371][ T5808] usb 4-1: SerialNumber: syz [ 262.334614][ T5808] usb 4-1: config 0 descriptor?? [ 262.604392][ T28] usb 4-1: USB disconnect, device number 13 [ 262.626019][ T23] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32 [ 262.675528][ T23] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 262.891151][ T23] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -32 [ 262.905897][ T23] smsc95xx: probe of 1-1:0.67 failed with error -32 [ 264.874710][ T23] usb 1-1: USB disconnect, device number 4 [ 264.996580][ T8017] netlink: 4 bytes leftover after parsing attributes in process `syz.0.713'. [ 267.160646][ T8031] binder: BINDER_SET_CONTEXT_MGR already set [ 267.166839][ T8031] binder: 8029:8031 ioctl 4018620d 200000000040 returned -16 [ 267.179660][ T8031] binder: 8029:8031 ioctl c0306201 0 returned -14 [ 269.110724][ T8051] netlink: 4 bytes leftover after parsing attributes in process `syz.3.723'. [ 269.575841][ T5808] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 269.763622][ T8063] binder: 8062:8063 ioctl c0306201 0 returned -14 [ 269.771321][ T5808] usb 4-1: Using ep0 maxpacket: 32 [ 269.780556][ T5808] usb 4-1: config 0 has an invalid interface number: 1 but max is 0 [ 269.838895][ T5808] usb 4-1: config 0 has no interface number 0 [ 269.861663][ T5808] usb 4-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=93.d8 [ 270.638155][ T5808] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 270.656881][ T5808] usb 4-1: Product: syz [ 270.665336][ T5808] usb 4-1: Manufacturer: syz [ 270.670087][ T5808] usb 4-1: SerialNumber: syz [ 270.699738][ T5808] usb 4-1: config 0 descriptor?? [ 270.727376][ T5808] usb 4-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state [ 270.785376][ T5808] usb 4-1: selecting invalid altsetting 1 [ 270.791165][ T5808] usb 4-1: dvb_usb_ce6230: usb_set_interface() failed=-22 [ 270.823629][ T5808] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 270.846351][ T5808] dvbdev: DVB: registering new adapter (Intel CE9500 reference design) [ 270.860595][ T5808] usb 4-1: media controller created [ 270.904053][ T5808] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 270.986215][ T5808] usb 4-1: dvb_usb_ce6230: usb_control_msg() failed=-71 [ 270.993248][ T5808] zl10353_read_register: readreg error (reg=127, ret==-71) [ 271.015467][ T5808] usb 4-1: dvb_usb_ce6230: usb_set_interface() failed=-71 [ 271.121924][ T5808] usb 4-1: USB disconnect, device number 14 [ 271.476630][ T8074] netlink: 4 bytes leftover after parsing attributes in process `syz.1.734'. [ 273.562041][ T8099] binder: 8097:8099 ioctl c0306201 0 returned -14 [ 274.183620][ T8104] netlink: 4 bytes leftover after parsing attributes in process `syz.0.743'. [ 276.485755][ T8134] netlink: 4 bytes leftover after parsing attributes in process `syz.2.754'. [ 279.027614][ T8151] binder: 8149:8151 ioctl c0306201 0 returned -14 [ 279.576283][ T8160] netlink: 4 bytes leftover after parsing attributes in process `syz.3.763'. [ 282.170952][ T8187] binder: 8181:8187 ioctl c0306201 0 returned -14 [ 282.450647][ T8191] netlink: 4 bytes leftover after parsing attributes in process `syz.1.775'. [ 283.342911][ T8213] netlink: 4 bytes leftover after parsing attributes in process `syz.2.784'. [ 283.706283][ T8219] binder: 8217:8219 ioctl c0306201 0 returned -14 [ 284.865354][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 290.089497][ T8260] binder: 8259:8260 ioctl c0306201 0 returned -14 [ 290.241826][ T8269] loop0: detected capacity change from 0 to 128 [ 290.658923][ T27] audit: type=1800 audit(1778142709.075:3): pid=8276 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.804" name="file1" dev="loop0" ino=1048614 res=0 errno=0 [ 291.052578][ T8276] syz.0.804: attempt to access beyond end of device [ 291.052578][ T8276] loop0: rw=2049, sector=132, nr_sectors = 24 limit=128 [ 293.627434][ T8296] binder: 8295:8296 ioctl c0306201 0 returned -14 [ 295.614890][ T8329] binder: 8328:8329 ioctl c0306201 0 returned -14 [ 296.956076][ T8347] loop0: detected capacity change from 0 to 32768 [ 296.972724][ T8347] (syz.0.831,8347,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 296.987223][ T8347] (syz.0.831,8347,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 297.027577][ T8347] JBD2: Ignoring recovery information on journal [ 297.184385][ T8347] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 298.750275][ T8365] binder: 8361:8365 ioctl c0306201 0 returned -14 [ 298.952906][ T5768] ocfs2: Unmounting device (7,0) on (node local) [ 298.998346][ T8370] autofs4:pid:8370:autofs_fill_super: called with bogus options [ 300.137943][ T5781] Bluetooth: hci2: unexpected event for opcode 0x1009 [ 302.236135][ T8404] loop2: detected capacity change from 0 to 512 [ 302.450323][ T8404] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 303.666519][ T8416] netlink: 28 bytes leftover after parsing attributes in process `syz.2.852'. [ 304.125598][ T5809] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 304.498601][ T5809] usb 1-1: device descriptor read/64, error -71 [ 304.922902][ T5809] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 305.181584][ T5809] usb 1-1: device descriptor read/64, error -71 [ 305.316346][ T5809] usb usb1-port1: attempt power cycle [ 305.365100][ T8435] netlink: 4 bytes leftover after parsing attributes in process `syz.1.858'. [ 305.745505][ T5809] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 305.817347][ T5809] usb 1-1: device descriptor read/8, error -71 [ 306.085396][ T5809] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 306.129406][ T5809] usb 1-1: device descriptor read/8, error -71 [ 306.344875][ T5809] usb usb1-port1: unable to enumerate USB device [ 307.306822][ T8448] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 309.790345][ T8486] autofs4:pid:8486:autofs_fill_super: called with bogus options [ 310.386694][ T5826] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 310.635377][ T5826] usb 1-1: device descriptor read/64, error -71 [ 310.798198][ T8489] ptrace attach of "ci2-linux-6-6-kasan/syz-executor exec"[8491] was attempted by "ci2-linux-6-6-kasan/syz-executor exec"[8489] [ 311.195333][ T5826] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 311.356472][ T5826] usb 1-1: device descriptor read/64, error -71 [ 311.825470][ T5826] usb usb1-port1: attempt power cycle [ 312.335419][ T5826] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 312.376363][ T5826] usb 1-1: device descriptor read/8, error -71 [ 312.665847][ T5826] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 312.905310][ T5826] usb 1-1: device not accepting address 12, error -71 [ 312.917707][ T5826] usb usb1-port1: unable to enumerate USB device [ 313.380277][ T8522] loop2: detected capacity change from 0 to 32768 [ 314.682190][ T8541] autofs4:pid:8541:autofs_fill_super: called with bogus options [ 315.406684][ T8528] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 316.819490][ T8546] netlink: 104 bytes leftover after parsing attributes in process `syz.3.886'. [ 317.249154][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 318.168355][ T8579] autofs4:pid:8579:autofs_fill_super: called with bogus options [ 318.860010][ T8572] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 323.617024][ T8614] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 328.275539][ T5099] usb 4-1: new high-speed USB device number 15 using dummy_hcd [ 328.455401][ T5099] usb 4-1: device descriptor read/64, error -71 [ 329.439425][ T5099] usb 4-1: new high-speed USB device number 16 using dummy_hcd [ 329.764859][ T5099] usb 4-1: device descriptor read/64, error -71 [ 329.885993][ T5099] usb usb4-port1: attempt power cycle [ 330.345159][ T5099] usb 4-1: new high-speed USB device number 17 using dummy_hcd [ 330.596095][ T5099] usb 4-1: device descriptor read/8, error -71 [ 330.865703][ T5099] usb 4-1: new high-speed USB device number 18 using dummy_hcd [ 330.920625][ T5099] usb 4-1: device descriptor read/8, error -71 [ 331.046658][ T5099] usb usb4-port1: unable to enumerate USB device [ 334.057093][ T5758] usb 4-1: new high-speed USB device number 19 using dummy_hcd [ 334.305993][ T5758] usb 4-1: Using ep0 maxpacket: 32 [ 334.467151][ T5758] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 334.495540][ T5758] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 334.508561][ T5758] usb 4-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 334.545330][ T5758] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 334.562163][ T5758] usb 4-1: Product: syz [ 334.574792][ T5758] usb 4-1: Manufacturer: syz [ 334.589752][ T5758] usb 4-1: SerialNumber: syz [ 334.611042][ T5758] usb 4-1: config 0 descriptor?? [ 335.142985][ T8717] loop0: detected capacity change from 0 to 32768 [ 336.684629][ T5758] usb 4-1: USB disconnect, device number 19 [ 339.005183][ T8750] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 339.505375][ T8] usb 4-1: new high-speed USB device number 20 using dummy_hcd [ 340.515451][ T8] usb 4-1: Using ep0 maxpacket: 32 [ 340.556692][ T8] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 340.643456][ T8] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 340.687405][ T8] usb 4-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 340.735488][ T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 340.765517][ T8] usb 4-1: Product: syz [ 340.769756][ T8] usb 4-1: Manufacturer: syz [ 340.774375][ T8] usb 4-1: SerialNumber: syz [ 341.707293][ T8] usb 4-1: config 0 descriptor?? [ 343.024560][ T8] usb 4-1: USB disconnect, device number 20 [ 346.939743][ T8848] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 347.299313][ T8860] binder: 8858:8860 ioctl c0306201 0 returned -14 [ 350.525687][ T5758] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 350.766213][ T5758] usb 3-1: Using ep0 maxpacket: 32 [ 350.780816][ T5758] usb 3-1: config 0 has an invalid interface number: 67 but max is 0 [ 350.792222][ T5758] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 350.823939][ T5758] usb 3-1: config 0 has no interface number 0 [ 350.949460][ T5758] usb 3-1: config 0 interface 67 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 350.961468][ T5758] usb 3-1: config 0 interface 67 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 350.999156][ T5758] usb 3-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 351.009640][ T5758] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 351.020724][ T5758] usb 3-1: Product: syz [ 351.024923][ T5758] usb 3-1: Manufacturer: syz [ 351.031733][ T5758] usb 3-1: SerialNumber: syz [ 351.042438][ T5758] usb 3-1: config 0 descriptor?? [ 351.061854][ T5758] smsc95xx v2.0.0 [ 351.074378][ T5758] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22 [ 351.116877][ T5758] smsc95xx: probe of 3-1:0.67 failed with error -22 [ 353.106432][ T8918] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 353.112338][ T5826] usb 3-1: USB disconnect, device number 11 [ 353.386280][ T8932] binder: 8928:8932 ioctl c0306201 0 returned -14 [ 356.408103][ T8989] binder: BINDER_SET_CONTEXT_MGR already set [ 356.414203][ T8989] binder: 8987:8989 ioctl 4018620d 200000000040 returned -16 [ 356.423692][ T8989] binder: 8987:8989 ioctl c0306201 0 returned -14 [ 358.677124][ T8996] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 359.427570][ T9018] binder: 9015:9018 ioctl c0306201 0 returned -14 [ 360.832076][ T9034] misc userio: The device must be registered before sending interrupts [ 362.138136][ T9] IPVS: starting estimator thread 0... [ 362.276642][ T9051] IPVS: using max 36 ests per chain, 86400 per kthread [ 364.225339][ T0] NOHZ tick-stop error: local softirq work is pending, handler #1c0!!! [ 367.945381][ T9105] syz.3.1075 uses obsolete (PF_INET,SOCK_PACKET) [ 368.164538][ T9111] loop0: detected capacity change from 0 to 128 [ 369.613056][ T9124] loop2: detected capacity change from 0 to 128 [ 369.681100][ T9124] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 369.720518][ T9124] ext4 filesystem being mounted at /262/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 370.658848][ T5781] Bluetooth: hci2: unexpected event for opcode 0x1009 [ 370.863862][ T5770] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 373.445652][ T5808] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 373.707689][ T5808] usb 1-1: Using ep0 maxpacket: 32 [ 374.433774][ T5808] usb 1-1: config 0 has an invalid interface number: 67 but max is 0 [ 374.445771][ T5808] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 374.515361][ T5808] usb 1-1: config 0 has no interface number 0 [ 374.522574][ T5808] usb 1-1: config 0 interface 67 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 374.555935][ T5808] usb 1-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 374.565006][ T5808] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 374.605478][ T5808] usb 1-1: Product: syz [ 374.609693][ T5808] usb 1-1: Manufacturer: syz [ 374.614297][ T5808] usb 1-1: SerialNumber: syz [ 374.664781][ T5808] usb 1-1: config 0 descriptor?? [ 374.688324][ T5808] smsc95xx v2.0.0 [ 374.691976][ T5808] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22 [ 374.735433][ T5808] smsc95xx: probe of 1-1:0.67 failed with error -22 [ 375.001453][ T5781] Bluetooth: hci0: unexpected event for opcode 0x1009 [ 377.201114][ T28] usb 1-1: USB disconnect, device number 13 [ 378.801595][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 388.489703][ T9285] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 388.575195][ T5781] Bluetooth: hci1: unexpected event for opcode 0x1009 [ 391.422662][ T9330] binder: 9325:9330 ioctl c0306201 0 returned -14 [ 395.920588][ T9366] binder: BINDER_SET_CONTEXT_MGR already set [ 395.926672][ T9366] binder: 9365:9366 ioctl 4018620d 200000000040 returned -16 [ 395.934478][ T9366] binder: 9365:9366 ioctl c0306201 0 returned -14 [ 397.482906][ T5781] Bluetooth: hci3: unexpected event for opcode 0x1009 [ 398.455601][ T28] usb 1-1: new full-speed USB device number 14 using dummy_hcd [ 398.636853][ T28] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 398.731438][ T9404] binder: BINDER_SET_CONTEXT_MGR already set [ 398.738335][ T9404] binder: 9402:9404 ioctl 4018620d 200000000040 returned -16 [ 398.747750][ T9404] binder: 9402:9404 ioctl c0306201 0 returned -14 [ 399.465306][ T28] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 399.486496][ T28] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 399.495841][ T28] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 399.893745][ T28] usb 1-1: usb_control_msg returned -32 [ 399.934874][ T28] usbtmc 1-1:16.0: can't read capabilities [ 401.275904][ T5758] usb 1-1: USB disconnect, device number 14 [ 402.733748][ T9434] process 'syz.2.1178' launched './file0' with NULL argv: empty string added [ 408.641344][ T9485] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1196'. [ 408.669134][ T9477] wg1 speed is unknown, defaulting to 1000 [ 409.481908][ T9488] loop2: detected capacity change from 0 to 40427 [ 409.555116][ T9488] F2FS-fs (loop2): heap/no_heap options were deprecated [ 409.562193][ T9488] F2FS-fs (loop2): build fault injection attr: rate: 19, type: 0x7ffff [ 409.570496][ T9488] F2FS-fs (loop2): build fault injection attr: rate: 0, type: 0x77e8c [ 409.586395][ T9488] F2FS-fs (loop2): invalid crc value [ 409.605927][ T9488] F2FS-fs (loop2): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_ra_meta_pages+0x21d/0x9b0 [ 409.618346][ T9488] F2FS-fs (loop2): Found nat_bits in checkpoint [ 409.638185][ T9488] F2FS-fs (loop2): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_bio+0x134/0x650 [ 409.653211][ C1] F2FS-fs (loop2): inject read IO error in f2fs_read_end_io of blk_update_request+0x597/0xe40 [ 409.685385][ T9488] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 409.694221][ T9488] F2FS-fs (loop2): inject page alloc in f2fs_grab_cache_page of f2fs_grab_meta_page+0x67/0x200 [ 409.767193][ C1] F2FS-fs (loop2): inject write IO error in f2fs_write_end_io of blk_update_request+0x597/0xe40 [ 409.778299][ C1] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 409.786044][ T9488] F2FS-fs (loop2): do_checkpoint failed err:-5, stop checkpoint [ 409.802421][ T9497] binder: BINDER_SET_CONTEXT_MGR already set [ 409.808522][ T9497] binder: 9489:9497 ioctl 4018620d 200000000040 returned -16 [ 409.817574][ T9497] binder: 9489:9497 ioctl c0306201 0 returned -14 [ 410.831297][ T5773] Bluetooth: hci2: command 0x0406 tx timeout [ 412.865326][ T0] NOHZ tick-stop error: local softirq work is pending, handler #142!!! [ 414.005991][ T5773] Bluetooth: hci0: unexpected event for opcode 0x1009 [ 419.383651][ T5773] Bluetooth: hci0: unexpected event for opcode 0x1009 [ 424.400375][ T5781] Bluetooth: hci2: command 0x0406 tx timeout [ 427.365667][ T9598] binder: BINDER_SET_CONTEXT_MGR already set [ 427.371844][ T9598] binder: 9595:9598 ioctl 4018620d 200000000040 returned -16 [ 427.382002][ T9598] binder: 9595:9598 ioctl c0306201 0 returned -14 [ 430.551520][ T5781] Bluetooth: hci0: unexpected event for opcode 0x1009 [ 437.381002][ T5781] Bluetooth: hci0: unexpected event for opcode 0x1009 [ 440.117722][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.415365][ T5758] usb 4-1: new high-speed USB device number 21 using dummy_hcd [ 441.466503][ T5758] usb 4-1: Using ep0 maxpacket: 32 [ 441.500374][ T5758] usb 4-1: config 0 has an invalid interface number: 67 but max is 0 [ 441.520404][ T5758] usb 4-1: config 0 has no interface number 0 [ 441.541311][ T5758] usb 4-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 441.897451][ T5758] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 441.910048][ T5758] usb 4-1: Product: syz [ 441.914317][ T5758] usb 4-1: Manufacturer: syz [ 441.919117][ T5758] usb 4-1: SerialNumber: syz [ 441.942897][ T5758] usb 4-1: config 0 descriptor?? [ 441.978147][ T5758] smsc95xx v2.0.0 [ 443.847086][ T5758] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -71 [ 443.890583][ T5758] smsc95xx: probe of 4-1:0.67 failed with error -71 [ 443.914901][ T5758] usb 4-1: USB disconnect, device number 21 [ 444.118387][ T49] nci: nci_rx_work: unknown MT 0x7 [ 444.831772][ T9730] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 445.812800][ T9744] loop3: detected capacity change from 0 to 131072 [ 445.870433][ T9744] F2FS-fs (loop3): invalid crc value [ 445.883337][ T9744] F2FS-fs (loop3): Found nat_bits in checkpoint [ 445.952733][ T9744] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4 [ 447.985760][ T5781] Bluetooth: hci2: unexpected event for opcode 0x1009 [ 448.115865][ T9761] binder: BINDER_SET_CONTEXT_MGR already set [ 448.129004][ T9761] binder: 9755:9761 ioctl 4018620d 200000000040 returned -16 [ 448.139058][ T9761] binder: 9755:9761 ioctl c0306201 0 returned -14 [ 448.585422][ T8] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 448.785324][ T8] usb 3-1: Using ep0 maxpacket: 32 [ 448.810012][ T8] usb 3-1: config 0 has an invalid interface number: 67 but max is 0 [ 448.825358][ T8] usb 3-1: config 0 has no interface number 0 [ 448.842489][ T8] usb 3-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 448.857638][ T8] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 448.895287][ T8] usb 3-1: Product: syz [ 448.910583][ T8] usb 3-1: Manufacturer: syz [ 448.915215][ T8] usb 3-1: SerialNumber: syz [ 448.941444][ T8] usb 3-1: config 0 descriptor?? [ 448.953178][ T8] smsc95xx v2.0.0 [ 449.490104][ T8] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32 [ 449.702827][ T8] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 449.907172][ T8] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -32 [ 449.956821][ T8] smsc95xx: probe of 3-1:0.67 failed with error -32 [ 450.009427][ T5781] Bluetooth: hci1: unexpected event for opcode 0x1009 [ 450.272464][ T9788] 9pnet_fd: Insufficient options for proto=fd [ 451.634779][ T5808] usb 3-1: USB disconnect, device number 12 [ 451.882982][ T5781] Bluetooth: hci1: unexpected event for opcode 0x1009 [ 451.935483][ T23] usb 1-1: new full-speed USB device number 15 using dummy_hcd [ 452.143989][ T23] usb 1-1: config index 0 descriptor too short (expected 29220, got 36) [ 452.159759][ T23] usb 1-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 452.182720][ T23] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 452.212755][ T23] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 452.236672][ T23] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 512, setting to 64 [ 452.268434][ T23] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 452.297404][ T23] usb 1-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 452.309968][ T23] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 452.326076][ T23] usb 1-1: config 0 descriptor?? [ 452.334091][ T9796] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 452.562897][ T23] usblp 1-1:0.0: usblp0: USB Bidirectional printer dev 15 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 452.753275][ T9814] loop3: detected capacity change from 0 to 2048 [ 452.760575][ T9814] EXT4-fs: Ignoring removed mblk_io_submit option [ 452.794171][ C1] usblp0: nonzero read bulk status received: -71 [ 452.855742][ T9796] loop0: detected capacity change from 0 to 256 [ 452.909179][ T9814] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 452.945654][ T9814] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.1291: bg 0: block 234: padding at end of block bitmap is not set [ 452.985576][ T9814] EXT4-fs (loop3): Remounting filesystem read-only [ 452.992877][ T9814] EXT4-fs warning (device loop3): ext4_xattr_inode_lookup_create:1607: inode #18: comm syz.3.1291: cleanup dec ref error -28 [ 453.031515][ T9796] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x204dac4c, utbl_chksum : 0xe619d30d) [ 453.217942][ T23] kernel write not supported for file /usb/lp0 (pid: 23 comm: kworker/1:0) [ 453.277539][ T23] usb 1-1: USB disconnect, device number 15 [ 453.377448][ T23] usblp0: removed [ 453.522115][ T5769] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 453.626409][ T9819] 9pnet_fd: Insufficient options for proto=fd [ 455.324211][ T12] nci: nci_rsp_packet: unknown rsp opcode 0x3f [ 455.441405][ T9841] loop2: detected capacity change from 0 to 128 [ 455.467308][ T9841] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 455.495984][ T9841] ext4 filesystem being mounted at /311/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 455.626462][ T5770] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 456.772693][ T9831] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 457.864683][ T9857] binder: 9853:9857 ioctl c0306201 0 returned -14 [ 457.955517][ T9862] Failed to get privilege flags for destination (handle=0x2:0x5) [ 458.989061][ T9872] loop0: detected capacity change from 0 to 128 [ 459.098258][ T9872] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 459.125969][ T9872] ext4 filesystem being mounted at /298/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 459.191282][ T9872] BUG: unable to handle page fault for address: ffffffffffffffec [ 459.199058][ T9872] #PF: supervisor read access in kernel mode [ 459.205072][ T9872] #PF: error_code(0x0000) - not-present page [ 459.211085][ T9872] PGD cf35067 P4D cf35067 PUD cf37067 PMD 0 [ 459.217122][ T9872] Oops: 0000 [#1] PREEMPT SMP KASAN [ 459.222348][ T9872] CPU: 0 PID: 9872 Comm: syz.0.1316 Not tainted syzkaller #0 [ 459.229735][ T9872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 459.239809][ T9872] RIP: 0010:ext4_free_ext_path+0x45/0x110 [ 459.245559][ T9872] Code: 85 db 0f 84 b0 00 00 00 49 bf 00 00 00 00 00 fc ff df 48 8d 7b 08 48 89 f8 48 c1 e8 03 42 0f b6 04 38 84 c0 0f 85 a9 00 00 00 <0f> b7 43 08 c1 e0 04 48 8d 04 40 48 89 44 24 08 48 8d 43 28 48 89 [ 459.265282][ T9872] RSP: 0018:ffffc900194676f8 EFLAGS: 00010246 [ 459.271540][ T9872] RAX: 0000000000000000 RBX: ffffffffffffffe4 RCX: 0000000000080000 [ 459.279528][ T9872] RDX: ffffc9000c239000 RSI: 000000000000371d RDI: ffffffffffffffec [ 459.287512][ T9872] RBP: ffffc90019467810 R08: ffff8880595e821f R09: 1ffff1100b2bd043 [ 459.295515][ T9872] R10: dffffc0000000000 R11: ffffed100b2bd044 R12: ffff8880595e82b0 [ 459.295535][ T9872] R13: ffffffffffffffe4 R14: dffffc0000000000 R15: dffffc0000000000 [ 459.295549][ T9872] FS: 00007f50514df6c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 459.295567][ T9872] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 459.295579][ T9872] CR2: ffffffffffffffec CR3: 000000002c816000 CR4: 00000000003526f0 [ 459.295596][ T9872] Call Trace: [ 459.295615][ T9872] [ 459.295626][ T9872] finish_range+0x234/0x340 [ 459.295656][ T9872] ? update_tind_extent_range+0x3f0/0x3f0 [ 459.295691][ T9872] ext4_ext_migrate+0xa3f/0x1080 [ 459.295718][ T9872] ? mb_regenerate_buddy+0x510/0x510 [ 459.295741][ T9872] ? down_read_killable+0x340/0x340 [ 459.295760][ T9872] ? sb_start_write+0x110/0x1c0 [ 459.295786][ T9872] ? mnt_want_write_file+0x16a/0x200 [ 459.295811][ T9872] ext4_ioctl+0x1ee3/0x3b80 [ 459.295830][ T9872] ? ext4_fileattr_set+0x16d0/0x16d0 [ 459.295849][ T9872] ? mark_lock+0x94/0x320 [ 459.295871][ T9872] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 459.295893][ T9872] ? do_vfs_ioctl+0x1573/0x1cc0 [ 459.295913][ T9872] ? __ia32_compat_sys_ioctl+0x8a0/0x8a0 [ 459.295936][ T9872] ? tomoyo_path_number_perm+0x217/0x620 [ 459.295963][ T9872] ? __lock_acquire+0x7d40/0x7d40 [ 459.295982][ T9872] ? slab_free_freelist_hook+0x130/0x1a0 [ 459.296000][ T9872] ? tomoyo_path_number_perm+0x500/0x620 [ 459.296026][ T9872] ? __kmem_cache_free+0xba/0x1e0 [ 459.296050][ T9872] ? tomoyo_path_number_perm+0x5b4/0x620 [ 459.296076][ T9872] ? tomoyo_path_number_perm+0x217/0x620 [ 459.296100][ T9872] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 459.296140][ T9872] ? __fget_files+0x28/0x4b0 [ 459.296161][ T9872] ? __fget_files+0x28/0x4b0 [ 459.296187][ T9872] ? bpf_lsm_file_ioctl+0x9/0x10 [ 459.296204][ T9872] ? security_file_ioctl+0x80/0xa0 [ 459.296228][ T9872] ? ext4_fileattr_set+0x16d0/0x16d0 [ 459.296243][ T9872] __se_sys_ioctl+0xfd/0x170 [ 459.296263][ T9872] do_syscall_64+0x55/0xa0 [ 459.296277][ T9872] ? clear_bhb_loop+0x40/0x90 [ 459.296297][ T9872] ? clear_bhb_loop+0x40/0x90 [ 459.296318][ T9872] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 459.296338][ T9872] RIP: 0033:0x7f505059cdd9 [ 459.296361][ T9872] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 459.296375][ T9872] RSP: 002b:00007f50514df028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 459.296394][ T9872] RAX: ffffffffffffffda RBX: 00007f5050815fa0 RCX: 00007f505059cdd9 [ 459.296406][ T9872] RDX: 0000000000000000 RSI: 0000000000006609 RDI: 0000000000000004 [ 459.296417][ T9872] RBP: 00007f5050632d69 R08: 0000000000000000 R09: 0000000000000000 [ 459.296427][ T9872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 459.296438][ T9872] R13: 00007f5050816038 R14: 00007f5050815fa0 R15: 00007fff1bb8c088 [ 459.296456][ T9872] [ 459.296462][ T9872] Modules linked in: [ 459.296483][ T9872] CR2: ffffffffffffffec [ 459.296503][ T9872] ---[ end trace 0000000000000000 ]--- [ 459.296510][ T9872] RIP: 0010:ext4_free_ext_path+0x45/0x110 [ 459.296536][ T9872] Code: 85 db 0f 84 b0 00 00 00 49 bf 00 00 00 00 00 fc ff df 48 8d 7b 08 48 89 f8 48 c1 e8 03 42 0f b6 04 38 84 c0 0f 85 a9 00 00 00 <0f> b7 43 08 c1 e0 04 48 8d 04 40 48 89 44 24 08 48 8d 43 28 48 89 [ 459.296549][ T9872] RSP: 0018:ffffc900194676f8 EFLAGS: 00010246 [ 459.296564][ T9872] RAX: 0000000000000000 RBX: ffffffffffffffe4 RCX: 0000000000080000 [ 459.296575][ T9872] RDX: ffffc9000c239000 RSI: 000000000000371d RDI: ffffffffffffffec [ 459.296587][ T9872] RBP: ffffc90019467810 R08: ffff8880595e821f R09: 1ffff1100b2bd043 [ 459.296599][ T9872] R10: dffffc0000000000 R11: ffffed100b2bd044 R12: ffff8880595e82b0 [ 459.296611][ T9872] R13: ffffffffffffffe4 R14: dffffc0000000000 R15: dffffc0000000000 [ 459.296625][ T9872] FS: 00007f50514df6c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 459.296639][ T9872] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 459.296650][ T9872] CR2: ffffffffffffffec CR3: 000000002c816000 CR4: 00000000003526f0 [ 459.296673][ T9872] Kernel panic - not syncing: Fatal exception [ 459.296820][ T9872] Kernel Offset: disabled