last executing test programs: 49.271707682s ago: executing program 1: r0 = syz_open_dev$video(&(0x7f0000001d00), 0x8, 0x0) ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000002100)={0x2, @pix_mp}) 48.276944542s ago: executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) sendfile(r1, r0, 0x0, 0x2) 43.920973446s ago: executing program 1: msgget$private(0x0, 0x0) msgrcv(0x0, 0x0, 0x0, 0xd2223022aa9291a6, 0x0) 42.626404346s ago: executing program 1: socket$nl_route(0x10, 0x3, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x58, 0x2, 0x6, 0x801, 0xe4340000, 0x0, {}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8}]}]}, 0x58}}, 0x0) r1 = socket$kcm(0x2, 0x0, 0x106) r2 = syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000b40)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x0, 0x0, 0xffffffffffff8001, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}, {[], {}, {{0x9, 0x5, 0x3, 0x2, 0x200}}}}}]}}]}}, 0x0) syz_usb_ep_write(r2, 0x82, 0x0, 0x0) setsockopt$sock_attach_bpf(r1, 0x1, 0x7, &(0x7f0000000340), 0x4) ioctl$int_in(r1, 0x5452, &(0x7f0000000040)=0x8) sendmsg(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="1c000000030601020000000000000000000000000500010007"], 0x1c}}, 0x0) 39.898016698s ago: executing program 1: sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x0) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup, 0xffffffffffffffff, 0x2, 0x0, 0x0, @link_id}, 0x20) socketpair(0xa, 0x1, 0x0, &(0x7f0000002d00)) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_tables_matches\x00') r2 = open(&(0x7f0000002000)='./bus\x00', 0x14b142, 0x0) sendfile(r2, r1, 0x0, 0xf6c1) 15.07742671s ago: executing program 3: ioctl$EVIOCSKEYCODE(0xffffffffffffffff, 0x40084504, 0x0) syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000003740)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}}}]}}]}}, 0x0) 14.292767154s ago: executing program 0: r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f00000000c0)) openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$sock_inet_SIOCDARP(0xffffffffffffffff, 0x5451, 0x0) futex(&(0x7f0000000700)=0x2, 0x0, 0x2, &(0x7f0000000740)={0x0, 0x3938700}, 0x0, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{}, {0x0, 0x3938700}}, 0x0) rt_sigreturn() mlockall(0x1) mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil) r1 = open(&(0x7f0000000000)='./file1\x00', 0xc08c3, 0x0) fsetxattr$trusted_overlay_upper(r1, 0x0, 0x0, 0x0, 0x0) 12.535825446s ago: executing program 3: r0 = creat(&(0x7f0000000340)='./file0\x00', 0x0) syz_open_dev$video(&(0x7f0000000400), 0x0, 0x0) syz_io_uring_setup(0x27ee, &(0x7f0000000340), 0x0, 0x0) syz_io_uring_setup(0x5e2, &(0x7f0000000280), 0x0, 0x0) close(r0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r1) r2 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r2, 0x0) r3 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10) r4 = accept(r1, 0x0, 0x0) sendmsg$TEAM_CMD_OPTIONS_SET(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[], 0xfffffdef}}, 0x0) mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYBLOB='8']) 10.637227226s ago: executing program 3: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = getpid() r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000500)='tlb_flush\x00', r1}, 0x10) process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) ioctl$TIOCGSOFTCAR(0xffffffffffffffff, 0x4b66, 0x0) r2 = socket$alg(0x26, 0x5, 0x0) syz_open_dev$sndpcmp(&(0x7f0000000100), 0x0, 0x0) bind$alg(r2, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'digest_null-generic\x00'}, 0x58) r3 = socket$l2tp(0x2, 0x2, 0x73) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000680), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f00000006c0)={'batadv0\x00', 0x0}) sendmsg$BATADV_CMD_SET_MESH(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000440)={0x24, r5, 0x1, 0x0, 0x0, {}, [@BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r6}]}, 0x24}}, 0x0) r7 = socket$packet(0x11, 0x2, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r7, 0x8933, &(0x7f0000000000)={'batadv0\x00', 0x0}) r9 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r8}}, 0x24}}, 0x0) r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0x1}, 0x48) r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000400000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) io_setup(0x3ff, &(0x7f0000000500)=0x0) io_submit(r12, 0x1, &(0x7f0000001700)=[&(0x7f0000001580)={0x0, 0x0, 0x0, 0x0, 0x7fff, r11, 0x0, 0x0, 0x0, 0x0, 0x2}]) syz_open_dev$tty1(0xc, 0x4, 0x1) write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001980)={0x9, {"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", 0x1000}}, 0x1006) 9.768344727s ago: executing program 1: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x0, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)) openat$hwrng(0xffffffffffffff9c, 0x0, 0x400, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x14) 9.305546286s ago: executing program 4: socket$netlink(0x10, 0x3, 0x0) syz_emit_ethernet(0xfc0, &(0x7f0000000000)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaa0086dd609888bb0f8a2b"], 0x0) 8.169167624s ago: executing program 4: preadv(0xffffffffffffffff, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0x19000}], 0x1, 0x40000, 0x40000004) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x1) r1 = socket$rxrpc(0x21, 0x2, 0xa) setsockopt$RXRPC_MIN_SECURITY_LEVEL(r1, 0x110, 0x2, 0x0, 0x0) ioctl$SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0) r2 = syz_open_dev$sndctrl(&(0x7f00000000c0), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r2, 0xc0045540, &(0x7f0000000140)=0x80002) r3 = socket$l2tp(0x2, 0x2, 0x73) openat$cgroup_root(0xffffff9c, 0x0, 0x200002, 0x0) r4 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r4, 0x89f2, &(0x7f0000000180)={'ip_vti0\x00', &(0x7f00000002c0)={'tunl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x1, 0x14}}}}) bind$inet(r3, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000200)={0x2, 0x0, @local}, 0x10) sendmmsg$inet(r3, &(0x7f0000000900)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r5 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_rx_ring(r5, 0x107, 0x5, &(0x7f00000000c0)=@req={0x8000, 0xb4f, 0x300, 0x1daf6}, 0x10) setsockopt$packet_rx_ring(r5, 0x107, 0x18, &(0x7f0000000040)=@req3={0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0xfffffffd}, 0x1c) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x814) socket(0x0, 0x0, 0x0) r6 = socket$packet(0x11, 0x0, 0x300) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000)={0x0, 0x1}, 0x10}, 0x90) setsockopt$packet_fanout(r6, 0x107, 0x12, 0x0, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(0xffffffffffffffff, 0x8983, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) 7.538824755s ago: executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x20, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {}, [@NHA_OIF={0x8, 0x5, r2}]}, 0x20}}, 0x0) 7.364617538s ago: executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x3, 0x0) socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000680)=@newtfilter={0x4c, 0x2c, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {}, {0xd}}, [@filter_kind_options=@f_u32={{0x8}, {0x20, 0x2, [@TCA_U32_LINK={0x8}, @TCA_U32_SEL={0x14}]}}]}, 0x4c}}, 0x0) 6.646256788s ago: executing program 2: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)) prlimit64(0x0, 0x7, &(0x7f0000000080), 0x0) socketpair(0x1, 0x5, 0x0, 0x0) 6.42023615s ago: executing program 0: setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x14, 0x0, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="020a040007000000b6f1ffff0000854105001a000000000000d74619edc700000000000000004cbd302b0000000000fa0000000000", @ANYBLOB="4e7223726cb26096719608c96527b6901237082850074664e1fb1bb2b1140eeb8aec3f013b108ad18dc78a2fb06e60b080c416c2da89a00f68aa4230f3bda1f07f555a7da08ae4a6723c0ddcd239d95c681fe07b2b574ab78811b49fc7aee8b146cdbc2f0bac04de"], 0x38}}, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="020100090e"], 0x70}}, 0x0) sendmmsg(r0, &(0x7f0000000180), 0x3ef, 0x0) 6.226566163s ago: executing program 4: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x0, 0x8, 0x8}, 0x48) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000007c0)={{r0}, &(0x7f0000000740), &(0x7f0000000780)='%pi6 \x00'}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) mkdirat(0xffffffffffffff9c, 0x0, 0x2) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058000000"], 0x0}, 0x90) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@bloom_filter={0x1e, 0x7, 0x101}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r3 = getpid() sched_setscheduler(r3, 0x1, &(0x7f0000000100)=0x5) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mkdir(&(0x7f0000000780)='./bus\x00', 0x0) mount$overlay(0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1) mount(&(0x7f00000001c0)=@filename='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000001200)='vfat\x00', 0x0, 0x0) 6.195399596s ago: executing program 3: r0 = creat(&(0x7f0000000340)='./file0\x00', 0x0) syz_open_dev$video(&(0x7f0000000400), 0x0, 0x0) syz_io_uring_setup(0x27ee, &(0x7f0000000340), 0x0, 0x0) syz_io_uring_setup(0x5e2, &(0x7f0000000280), 0x0, 0x0) close(r0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r1) r2 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r2, 0x0) r3 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10) r4 = accept(r1, 0x0, 0x0) sendmsg$TEAM_CMD_OPTIONS_SET(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[], 0xfffffdef}}, 0x0) mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYBLOB='8']) 5.939921531s ago: executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000200)=@ccm_128={{0x304}, "76131e58a256d4af", "4448076cc60af592e807e038c4797041", "8076e30e", "f79d7fbbf3985dbb"}, 0x28) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x4, &(0x7f0000000100)=@gcm_256={{}, '\x00', "d830005894bf527ae179a7173985202bbfb61b36f3678de8ea2d0d6616076243", "5615d9f5", "7c5cb121291a43fe"}, 0x38) 5.743827113s ago: executing program 0: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x3, 0x5, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000008500000044000000850000009e00000095"], &(0x7f0000000200)='GPL\x00', 0x5, 0x100b, &(0x7f0000001680)=""/4107}, 0x90) 5.03415816s ago: executing program 0: io_setup(0x401, &(0x7f00000004c0)=0x0) r1 = timerfd_create(0x0, 0x0) io_submit(r0, 0x4, &(0x7f0000000240)=[&(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x58}, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000840)="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", 0x1000, 0x5, 0x0, 0x2}, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="e982ab1a", 0x4, 0x3f, 0x0, 0x2}, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000100)="8d5deea6fee55c0e6cadc87aee0e7011ca6e4cf4c17c01c7a8c4508a7330886f33a7e25d082ead6f7ac99aa662b61987570a1171057bcb2888d411fd2a7c869847f830bc98437fffc84873e7d0e65c0cf7014748eb920ba5d50be661aa42b1f3b0229def38997ba0d41d835e54c48d409f68f35737d979ed8dbba9c1adf39482c65c71a761820277d3353104e000557663842307b0fad32da6daac31aec673e0c2524d537efac90fae0e1302765b0e39e908ec667e57bb05fe336e063a9270cc9465e4064dc3857cda0fa1941d39f57054c2", 0xd2, 0xffffffff, 0x0, 0x2}]) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_settime(0x0, 0x0, &(0x7f0000000100)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0) timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000200)=0x0) timer_settime(r2, 0x0, &(0x7f0000000940)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) 4.377485389s ago: executing program 2: syz_emit_ethernet(0xfc0, &(0x7f0000000000)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaa0086dd609888bb0f8a2b"], 0x0) 4.275910237s ago: executing program 3: r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)={0x1b, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x5, 0x2}, 0x48) r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000480)={&(0x7f0000000580)=ANY=[@ANYBLOB="9feb01001800000000000000d4000000d4000000070000000d0000000000000a04000000000000000400000d000000000c00000005000000000000000300000041000000000000000300000005000000010000000000000e0300000000000000100000000000000700900000000000000400000d400000000f000000030000000c0000000400000009000000020000000600000004000000010000000000000000000000030000000000000100000000620035060d000000000000010000000039007e07050000000000000e0300000001000000000000000000000300000000030000000500000008000000000030302e5f00"], &(0x7f0000000680)=""/208, 0xf3, 0xd0, 0x0, 0x3}, 0x20) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@bloom_filter={0x1e, 0xac6, 0x6, 0xffff0000, 0x410, r0, 0x1, '\x00', 0x0, r1, 0x0, 0x0, 0x1, 0x1}, 0x48) syz_emit_ethernet(0x2e, &(0x7f0000000a40)={@local, @dev, @void, {@ipv4={0x800, @udp={{0x6, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x11, 0x0, @rand_addr=0x64010102, @local, {[@ra={0x94, 0x4}]}}, {0x0, 0x4e23, 0x8}}}}}, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) syz_emit_ethernet(0x46, &(0x7f0000000280)=ANY=[@ANYBLOB="aaaaaaaaaaaabbbbbbbbbbbb86dd6000ed0000103afffec000000000000000000000000000bbff020000000000000000000000000001860090780000000000000000000000003e8ee9581b708c08fcc0ca6cf484fab5f03bd8f11ecd2b019f0f23bcfea18462b25f8cd4d4be9c24121aa67f0d35050d50ee36879d7036cd3cb8583f3e14e39e2484c9b8265036b7c33446f35c98"], 0x0) openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff0000000002000000090001007379"], 0x7c}}, 0x0) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000340)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[@ANYBLOB="98030000", @ANYRES16=r5, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r7, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c0900005603330080b0c000ffffffffffff080211000001"], 0x398}}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) syz_emit_ethernet(0x76, &(0x7f0000000140)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaabb86dd602e5cea00403c0020010000000000000000000000000000ff0200000000000000000000000000010004000000000000c9"], 0x0) r8 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x1004, 0x1}, 0x48) r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffc3b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000180)='sys_enter\x00', r9}, 0x10) mlockall(0x5) socket$netlink(0x10, 0x3, 0x0) r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000140)='mm_page_alloc\x00', r10}, 0x10) syz_usb_connect(0x0, 0x10b, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000b24b4a10e60407007501000005010902240001010000000904000002ccb8280009050b02000000000009058a02"], 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x48) r12 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="d7da000000000000000000000000080018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r12}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r11}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={0xffffffffffffffff, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000040)="76389e147583ddd0569ba56a5cfd55", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000240)={0x80}, 0x8) 3.501674167s ago: executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6) sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413e850000000f00000095"], &(0x7f0000000440)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="2b63e16300000018000100b1f8611f0b0000000000000000af9e000d000000000500", @ANYRES32=0x0, @ANYBLOB="08001e0000a38000"], 0x30}}, 0x0) r6 = getpid() sendmmsg$unix(r2, &(0x7f0000004580)=[{{0x0, 0x0, &(0x7f0000002b80)=[{0x0}], 0x1, &(0x7f0000000c40)=ANY=[@ANYRESDEC, @ANYRES32=0x0, @ANYRES32, @ANYRES32=0x0, @ANYBLOB="000000001c00000000000000010000", @ANYRES32, @ANYBLOB="c702ba19a2fe26d597579b57149caee6746000cd13d85358811532f1e24c3b43e3f622de3a668c2a52dc7fbda8c3ae6b33531c51f95186469d6c93d19fa56171fc640a5489faa02cb9957b0d168d14ae7d46f0b1f217d738d68df478b128a6e09c022cb4224d2d7aa5e0f53c475cc8181293f914aa910f44c6af99691afead8c3a340e35f74e5b99ce38ebab1cb78267df028cbdeaf0c5300b53d869f931c636268136d0cba0e8de8668ab12bc5c89331e509d648dd01915cc029c9e2f5293347a25d8682b96782995fb673e304af423e28b4fe88dd31be9a4", @ANYRES32=0xee01, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYBLOB="ea9346", @ANYBLOB, @ANYRES32, @ANYRES64, @ANYRES32, @ANYRES32=r4, @ANYRES32, @ANYRES32, @ANYRES16=r3, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000400001000000020007000000000000", @ANYRESDEC=r2, @ANYBLOB="000000001000000000000000010000000100"], 0xd8}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000740)=ANY=[@ANYRES32, @ANYBLOB="000000001e00000000000000010000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000006bf68e31ab373e", @ANYRES32=r0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=r6, @ANYRES64=r1, @ANYRES32=0x0, @ANYBLOB="000000002c00000000000000010000000100", @ANYRES32=r5, @ANYRES32, @ANYRESHEX=r1, @ANYRES32=r4, @ANYRES32, @ANYRES32, @ANYRES32=r0, @ANYRES32=0x0, @ANYRES32, @ANYRES32, @ANYRESDEC=r2, @ANYRES32, @ANYRES32], 0x100, 0x24000081}}], 0x2, 0x90) getpid() bind$inet6(r5, 0x0, 0x0) sendto$inet6(r5, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c) symlinkat(&(0x7f0000000340)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000400)='./file0\x00') accept(r1, &(0x7f0000000500)=@ethernet={0x0, @local}, &(0x7f0000000700)=0x80) r7 = getpid() sched_setaffinity(r7, 0x0, 0x0) process_vm_readv(0x0, &(0x7f0000000480)=[{&(0x7f0000002bc0)=""/67, 0x36}, {&(0x7f0000002c40)=""/152, 0xc4}], 0x2, &(0x7f0000008640), 0x1, 0x0) getpriority(0x2, r7) shutdown(r5, 0x1) splice(r5, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2040a, 0x0, 0x0, 0x0, &(0x7f0000000000)) sync() 2.216195406s ago: executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x3, 0x0) socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000680)=@newtfilter={0x4c, 0x2c, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {}, {0xd}}, [@filter_kind_options=@f_u32={{0x8}, {0x20, 0x2, [@TCA_U32_LINK={0x8}, @TCA_U32_SEL={0x14}]}}]}, 0x4c}}, 0x0) 1.294111516s ago: executing program 4: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x3, &(0x7f0000000000)=[{0x35}, {0x1c}, {0x6, 0x0, 0x0, 0x7ffffeb9}]}) socket$nl_netfilter(0x10, 0x3, 0xc) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r0}, 0x10) r1 = socket(0x23, 0x2, 0x0) r2 = open(&(0x7f0000000000)='./bus\x00', 0x1c5c7e, 0x0) r3 = creat(&(0x7f00000001c0)='./file0\x00', 0x0) mount$9p_fd(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000100), 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) sendmsg$L2TP_CMD_SESSION_CREATE(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) sendmsg$L2TP_CMD_TUNNEL_CREATE(r1, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={0x0}}, 0x0) 1.174780101s ago: executing program 0: preadv(0xffffffffffffffff, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0x19000}], 0x1, 0x40000, 0x40000004) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x1) r1 = socket$rxrpc(0x21, 0x2, 0xa) setsockopt$RXRPC_MIN_SECURITY_LEVEL(r1, 0x110, 0x2, 0x0, 0x0) ioctl$SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0) r2 = syz_open_dev$sndctrl(&(0x7f00000000c0), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r2, 0xc0045540, &(0x7f0000000140)=0x80002) r3 = socket$l2tp(0x2, 0x2, 0x73) openat$cgroup_root(0xffffff9c, 0x0, 0x200002, 0x0) r4 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r4, 0x89f2, &(0x7f0000000180)={'ip_vti0\x00', &(0x7f00000002c0)={'tunl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x1, 0x14}}}}) bind$inet(r3, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000200)={0x2, 0x0, @local}, 0x10) sendmmsg$inet(r3, &(0x7f0000000900)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r5 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_rx_ring(r5, 0x107, 0x5, &(0x7f00000000c0)=@req={0x8000, 0xb4f, 0x300, 0x1daf6}, 0x10) setsockopt$packet_rx_ring(r5, 0x107, 0x18, &(0x7f0000000040)=@req3={0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0xfffffffd}, 0x1c) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x814) socket(0x0, 0x0, 0x0) r6 = socket$packet(0x11, 0x0, 0x300) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000)={0x0, 0x1}, 0x10}, 0x90) setsockopt$packet_fanout(r6, 0x107, 0x12, 0x0, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(0xffffffffffffffff, 0x8983, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) 188.280575ms ago: executing program 2: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = getpid() r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000500)='tlb_flush\x00', r1}, 0x10) process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) ioctl$TIOCGSOFTCAR(0xffffffffffffffff, 0x4b66, 0x0) r2 = socket$alg(0x26, 0x5, 0x0) syz_open_dev$sndpcmp(&(0x7f0000000100), 0x0, 0x0) bind$alg(r2, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'digest_null-generic\x00'}, 0x58) r3 = socket$l2tp(0x2, 0x2, 0x73) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000680), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f00000006c0)={'batadv0\x00', 0x0}) sendmsg$BATADV_CMD_SET_MESH(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000440)={0x24, r5, 0x1, 0x0, 0x0, {}, [@BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r6}]}, 0x24}}, 0x0) r7 = socket$packet(0x11, 0x2, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r7, 0x8933, &(0x7f0000000000)={'batadv0\x00', 0x0}) r9 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r8}}, 0x24}}, 0x0) r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0x1}, 0x48) r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000400000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) io_setup(0x3ff, &(0x7f0000000500)=0x0) io_submit(r12, 0x1, &(0x7f0000001700)=[&(0x7f0000001580)={0x0, 0x0, 0x0, 0x0, 0x7fff, r11, 0x0, 0x0, 0x0, 0x0, 0x2}]) r13 = dup(0xffffffffffffffff) write$UHID_INPUT(r13, &(0x7f0000001980)={0x9, {"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", 0x1000}}, 0x1006) 17.069658ms ago: executing program 3: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000bc0)={0x11, 0xc, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000000002000000000000000001801000020786c250000000000202020731af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000550000000000000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000440)='tlb_flush\x00', r0}, 0x10) socket$key(0xf, 0x3, 0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) mlock(&(0x7f0000a14000/0x3000)=nil, 0x3000) 0s ago: executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) sendmsg$NFT_MSG_GETCHAIN(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, 0x4, 0xa, 0x201}, 0x14}}, 0x0) kernel console output (not intermixed with test programs): =16 res=0 errno=0 [ 818.807846][ T9120] loop0: detected capacity change from 0 to 16 [ 818.945940][ T29] audit: type=1804 audit(1717820677.686:105): pid=9121 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir389336011/syzkaller.NJms9w/87/file2/file1" dev="loop2" ino=15 res=1 errno=0 [ 819.753741][ T9129] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 821.155429][ T9136] loop2: detected capacity change from 0 to 32768 [ 821.242525][ T9136] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz-executor.2 (9136) [ 821.515646][ T9138] loop3: detected capacity change from 0 to 40427 [ 821.534322][ T9138] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 821.542363][ T9138] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 821.598659][ T9136] BTRFS info (device loop2): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 821.609983][ T9136] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm [ 821.628315][ T9136] BTRFS info (device loop2): using free-space-tree [ 821.656505][ T9138] F2FS-fs (loop3): Found nat_bits in checkpoint [ 821.998367][ T9138] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 822.005893][ T9138] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 822.567493][ T29] audit: type=1804 audit(1717820681.166:106): pid=9136 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir389336011/syzkaller.NJms9w/89/bus/bus" dev="loop2" ino=263 res=1 errno=0 [ 823.021613][ T7516] BTRFS info (device loop2): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 824.068942][ T9172] loop0: detected capacity change from 0 to 16 [ 825.037600][ T9180] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 825.064413][ T9176] loop1: detected capacity change from 0 to 2048 [ 825.289858][ T9181] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 825.463622][ T29] audit: type=1800 audit(1717820684.136:107): pid=9176 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file2" dev="loop1" ino=16 res=0 errno=0 [ 825.563060][ T29] audit: type=1804 audit(1717820684.266:108): pid=9182 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir3879176928/syzkaller.6gTG3p/74/file2/file1" dev="loop1" ino=15 res=1 errno=0 [ 827.294809][ T9190] loop0: detected capacity change from 0 to 32768 [ 827.369504][ T9190] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (9190) [ 827.979533][ T9196] loop4: detected capacity change from 0 to 40427 [ 827.998422][ T9196] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 828.006483][ T9196] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 828.121909][ T9196] F2FS-fs (loop4): Found nat_bits in checkpoint [ 828.163464][ T9190] BTRFS info (device loop0): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 828.176565][ T9190] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm [ 828.186808][ T9190] BTRFS info (device loop0): using free-space-tree [ 828.495732][ T9196] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 828.503492][ T9196] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 828.794188][ T29] audit: type=1804 audit(1717820687.386:109): pid=9190 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir1511663738/syzkaller.qEV0vq/206/bus/bus" dev="loop0" ino=263 res=1 errno=0 [ 829.613105][ T5496] BTRFS info (device loop0): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 830.882790][ T9237] loop0: detected capacity change from 0 to 16 [ 831.120706][ T9236] loop2: detected capacity change from 0 to 2048 [ 831.367159][ T9239] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 831.541121][ T29] audit: type=1800 audit(1717820690.236:110): pid=9236 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="file2" dev="loop2" ino=16 res=0 errno=0 [ 831.568965][ T29] audit: type=1804 audit(1717820690.306:111): pid=9236 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir389336011/syzkaller.NJms9w/95/file2/file1" dev="loop2" ino=15 res=1 errno=0 [ 833.368549][ T9253] loop3: detected capacity change from 0 to 32768 [ 833.387218][ T9253] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (9253) [ 833.445479][ T9253] BTRFS info (device loop3): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 833.456166][ T9253] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm [ 833.466711][ T9253] BTRFS info (device loop3): using free-space-tree [ 833.773680][ T29] audit: type=1804 audit(1717820692.526:112): pid=9253 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2385369835/syzkaller.Z9uumf/88/bus/bus" dev="loop3" ino=263 res=1 errno=0 [ 834.342104][ T7347] BTRFS info (device loop3): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 834.906174][ T9279] loop0: detected capacity change from 0 to 40427 [ 834.936536][ T9279] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 834.944560][ T9279] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 835.120172][ T9279] F2FS-fs (loop0): Found nat_bits in checkpoint [ 835.360345][ T9279] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 835.367814][ T9279] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 837.015173][ T9299] loop2: detected capacity change from 0 to 16 [ 838.236465][ T9303] loop2: detected capacity change from 0 to 2048 [ 838.337781][ T9307] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 838.654771][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 838.662185][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 838.707397][ T29] audit: type=1804 audit(1717820697.366:113): pid=9308 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir389336011/syzkaller.NJms9w/99/file2/file1" dev="loop2" ino=15 res=1 errno=0 [ 841.043722][ T9322] loop3: detected capacity change from 0 to 32768 [ 841.059193][ T9322] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (9322) [ 841.127228][ T9322] BTRFS info (device loop3): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 841.138074][ T9322] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm [ 841.148432][ T9322] BTRFS info (device loop3): using free-space-tree [ 842.070591][ T7347] BTRFS info (device loop3): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 842.280997][ T9335] loop2: detected capacity change from 0 to 40427 [ 842.323936][ T9335] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 842.332129][ T9335] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 842.509651][ T9335] F2FS-fs (loop2): Found nat_bits in checkpoint [ 842.880273][ T9335] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 842.888305][ T9335] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 843.299182][ T9355] loop0: detected capacity change from 0 to 16 [ 845.135249][ T9365] loop4: detected capacity change from 0 to 2048 [ 845.283501][ T9369] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 845.705385][ T29] audit: type=1804 audit(1717820704.406:114): pid=9371 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir3837781235/syzkaller.9yecKE/157/file2/file1" dev="loop4" ino=15 res=1 errno=0 [ 848.267608][ T9387] loop1: detected capacity change from 0 to 32768 [ 848.285587][ T9387] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (9387) [ 848.319791][ T9387] BTRFS info (device loop1): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 848.330807][ T9387] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm [ 848.348673][ T9387] BTRFS info (device loop1): using free-space-tree [ 848.492264][ T29] audit: type=1326 audit(1717820707.266:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9391 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa34747cf69 code=0x0 [ 848.668458][ T9408] loop4: detected capacity change from 0 to 16 [ 849.544417][ T7387] BTRFS info (device loop1): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 850.904694][ T9428] loop0: detected capacity change from 0 to 2048 [ 851.192631][ T9435] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 851.479132][ T29] audit: type=1804 audit(1717820710.206:116): pid=9439 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir1511663738/syzkaller.qEV0vq/219/file2/file1" dev="loop0" ino=15 res=1 errno=0 [ 852.220289][ T9441] 9pnet_fd: Insufficient options for proto=fd [ 853.678407][ T9452] loop4: detected capacity change from 0 to 32768 [ 853.692391][ T9452] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (9452) [ 853.714645][ T9455] loop2: detected capacity change from 0 to 16 [ 853.835339][ T9452] BTRFS info (device loop4): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 853.846378][ T9452] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm [ 853.856745][ T9452] BTRFS info (device loop4): using free-space-tree [ 854.885187][ T6546] BTRFS info (device loop4): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 855.830705][ T9483] loop1: detected capacity change from 0 to 2048 [ 856.016748][ T9487] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 856.370921][ T29] audit: type=1804 audit(1717820715.096:117): pid=9490 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir3879176928/syzkaller.6gTG3p/84/file2/file1" dev="loop1" ino=15 res=1 errno=0 [ 857.370020][ T29] audit: type=1326 audit(1717820716.036:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9497 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1014a7cf69 code=0x0 [ 857.559096][ T9502] 9pnet_fd: Insufficient options for proto=fd [ 857.939228][ T9504] loop0: detected capacity change from 0 to 8 [ 858.107204][ T9504] squashfs image failed sanity check [ 859.999606][ T9515] loop4: detected capacity change from 0 to 16 [ 861.805850][ T9526] loop1: detected capacity change from 0 to 40427 [ 861.888500][ T9526] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 861.896677][ T9526] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 862.008266][ T9525] loop4: detected capacity change from 0 to 2048 [ 862.033277][ T9526] F2FS-fs (loop1): Found nat_bits in checkpoint [ 862.330472][ T9526] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 862.339898][ T9526] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 862.927653][ T9539] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 863.365891][ T29] audit: type=1804 audit(1717820722.086:119): pid=9542 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir3837781235/syzkaller.9yecKE/168/file2/file1" dev="loop4" ino=15 res=1 errno=0 [ 864.458135][ T9551] 9pnet_fd: Insufficient options for proto=fd [ 864.569475][ T9554] loop2: detected capacity change from 0 to 8 [ 864.648240][ T9554] squashfs image failed sanity check [ 866.211082][ T9568] loop2: detected capacity change from 0 to 16 [ 868.073591][ T6075] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 868.340332][ T9577] loop0: detected capacity change from 0 to 2048 [ 868.630162][ T9584] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 869.591762][ T9598] 9pnet_fd: Insufficient options for proto=fd [ 870.597178][ T9603] loop2: detected capacity change from 0 to 32768 [ 870.630261][ T9603] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz-executor.2 (9603) [ 870.762858][ T9603] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 870.781596][ T9603] BTRFS info (device loop2): using sha256 (sha256-generic) checksum algorithm [ 870.795514][ T9603] BTRFS info (device loop2): using free-space-tree [ 872.579238][ T7516] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 872.628024][ T9632] loop0: detected capacity change from 0 to 16 [ 875.917152][ T9638] loop1: detected capacity change from 0 to 2048 [ 876.167879][ T9645] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 877.587388][ T9659] 9pnet_fd: Insufficient options for proto=fd [ 878.949596][ T9664] loop0: detected capacity change from 0 to 32768 [ 879.000739][ T9664] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (9664) [ 879.052007][ T9664] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 879.070380][ T9664] BTRFS info (device loop0): using sha256 (sha256-generic) checksum algorithm [ 879.086590][ T9664] BTRFS info (device loop0): using free-space-tree [ 881.545147][ T9689] loop1: detected capacity change from 0 to 16 [ 885.793569][ T5496] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 886.069201][ T9699] loop2: detected capacity change from 0 to 2048 [ 886.269410][ T9702] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 886.364491][ T9701] 9pnet_fd: Insufficient options for proto=fd [ 888.232944][ T9721] loop1: detected capacity change from 0 to 16 [ 889.729130][ T9730] loop1: detected capacity change from 0 to 4096 [ 889.758162][ T9730] ======================================================= [ 889.758162][ T9730] WARNING: The mand mount option has been deprecated and [ 889.758162][ T9730] and is ignored by this kernel. Remove the mand [ 889.758162][ T9730] option from the mount to silence this warning. [ 889.758162][ T9730] ======================================================= [ 891.133622][ T9738] loop4: detected capacity change from 0 to 2048 [ 891.331445][ T9739] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 893.183857][ T9757] loop3: detected capacity change from 0 to 16 [ 895.048520][ T9775] loop3: detected capacity change from 0 to 2048 [ 895.101856][ T9772] loop4: detected capacity change from 0 to 4096 [ 895.204549][ T9776] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 896.921679][ T9794] loop3: detected capacity change from 0 to 16 [ 900.111110][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 900.117937][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 901.186594][ T9810] loop1: detected capacity change from 0 to 2048 [ 901.411476][ T9811] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 902.010309][ T9815] loop0: detected capacity change from 0 to 256 [ 902.062587][ T9815] exfat: Unknown parameter 'er\ors' [ 902.140251][ T9819] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 902.538294][ T9823] loop1: detected capacity change from 0 to 16 [ 902.596836][ T780] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 902.932877][ T780] usb 1-1: Using ep0 maxpacket: 8 [ 903.076921][ T780] usb 1-1: config 135 has an invalid interface number: 230 but max is 0 [ 903.085666][ T780] usb 1-1: config 135 has an invalid interface descriptor of length 4, skipping [ 903.096106][ T780] usb 1-1: config 135 has an invalid descriptor of length 0, skipping remainder of the config [ 903.107911][ T780] usb 1-1: config 135 has no interface number 0 [ 903.114491][ T780] usb 1-1: config 135 interface 230 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3 [ 903.347310][ T780] usb 1-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=3f.3a [ 903.356982][ T780] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 903.365243][ T780] usb 1-1: Product: syz [ 903.369918][ T780] usb 1-1: Manufacturer: syz [ 903.374793][ T780] usb 1-1: SerialNumber: syz [ 903.776828][ T5111] usb 1-1: USB disconnect, device number 6 [ 906.123174][ T9850] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 906.189643][ T9848] loop2: detected capacity change from 0 to 2048 [ 906.345031][ T9851] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 906.629666][ T29] audit: type=1804 audit(1717820765.356:120): pid=9848 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir389336011/syzkaller.NJms9w/125/file2/file1" dev="loop2" ino=15 res=1 errno=0 [ 906.741034][ T9854] loop0: detected capacity change from 0 to 16 [ 908.839268][ T9874] loop0: detected capacity change from 0 to 1024 [ 908.910375][ T9874] EXT4-fs: Ignoring removed orlov option [ 908.916653][ T9874] EXT4-fs: Ignoring removed nomblk_io_submit option [ 909.020659][ T9874] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 910.715719][ T5496] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 911.270269][ T9890] loop1: detected capacity change from 0 to 16 [ 911.291476][ T9886] loop3: detected capacity change from 0 to 2048 [ 911.357947][ T9891] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 911.527234][ T9892] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 911.793005][ T29] audit: type=1804 audit(1717820770.526:121): pid=9886 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2385369835/syzkaller.Z9uumf/119/file2/file1" dev="loop3" ino=15 res=1 errno=0 [ 914.887970][ T9915] loop3: detected capacity change from 0 to 1024 [ 914.952133][ T9915] EXT4-fs: Ignoring removed orlov option [ 914.958412][ T9915] EXT4-fs: Ignoring removed nomblk_io_submit option [ 915.030905][ T9915] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 916.943383][ T7347] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 917.239345][ T9925] loop1: detected capacity change from 0 to 16 [ 917.727189][ T9928] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 918.475489][ T9933] loop1: detected capacity change from 0 to 2048 [ 918.614241][ T9937] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 918.733724][ T29] audit: type=1804 audit(1717820777.506:122): pid=9933 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir3879176928/syzkaller.6gTG3p/114/file2/file1" dev="loop1" ino=15 res=1 errno=0 [ 918.885280][ T9940] io-wq is not configured for unbound workers [ 919.275020][ T9943] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 919.872387][ T9955] loop4: detected capacity change from 0 to 16 [ 920.858657][ T9959] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 922.906895][ T4676] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 923.412439][ T4676] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 64, changing to 10 [ 923.424077][ T4676] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 923.434439][ T4676] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 923.443835][ T4676] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 923.538771][ T9970] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 923.868871][ T9972] loop2: detected capacity change from 0 to 2048 [ 924.194746][ T5111] usb 5-1: USB disconnect, device number 4 [ 924.348020][ T9978] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 924.357655][ T5600] udevd[5600]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 924.538998][ T9980] loop3: detected capacity change from 0 to 512 [ 924.602579][ T29] audit: type=1804 audit(1717820783.346:123): pid=9972 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir389336011/syzkaller.NJms9w/129/file2/file1" dev="loop2" ino=15 res=1 errno=0 [ 924.677238][ T9983] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 924.754706][ T9980] EXT4-fs error (device loop3): ext4_orphan_get:1394: inode #15: comm syz-executor.3: casefold flag without casefold feature [ 924.898549][ T9980] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 924.960149][ T9980] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 925.298692][ T9990] netlink: 'syz-executor.3': attribute type 30 has an invalid length. [ 925.616522][ T9998] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 925.770174][T10000] loop2: detected capacity change from 0 to 16 [ 927.788317][ T7347] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 928.559929][T10013] loop4: detected capacity change from 0 to 32768 [ 928.580508][T10013] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (10013) [ 928.657064][T10013] BTRFS info (device loop4): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 928.667918][T10013] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm [ 928.679004][T10013] BTRFS info (device loop4): using free-space-tree [ 929.026508][T10013] loop4: detected capacity change from 32768 to 11 [ 929.059231][T10013] syz-executor.4: attempt to access beyond end of device [ 929.059231][T10013] loop4: rw=6145, sector=10464, nr_sectors = 8 limit=11 [ 929.073620][T10013] BTRFS error (device loop4): bdev /dev/loop4 errs: wr 1, rd 0, flush 0, corrupt 0, gen 0 [ 929.085012][T10013] syz-executor.4: attempt to access beyond end of device [ 929.085012][T10013] loop4: rw=6145, sector=10456, nr_sectors = 8 limit=11 [ 929.099412][T10013] BTRFS error (device loop4): bdev /dev/loop4 errs: wr 2, rd 0, flush 0, corrupt 0, gen 0 [ 929.120147][T10013] BTRFS error (device loop4 state AL): Transaction aborted (error -5) [ 929.128707][T10013] BTRFS: error (device loop4 state AL) in free_log_tree:3245: errno=-5 IO failure [ 929.146634][T10013] BTRFS info (device loop4 state EAL): forced readonly [ 929.157709][T10013] BTRFS: error (device loop4 state EAL) in free_log_tree:3245: errno=-5 IO failure [ 929.169189][T10013] BTRFS warning (device loop4 state EAL): Skipping commit of aborted transaction. [ 929.179341][T10013] BTRFS: error (device loop4 state EAL) in cleanup_transaction:2005: errno=-5 IO failure [ 929.537748][ T6546] BTRFS info (device loop4 state EAL): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 930.078458][T10033] loop3: detected capacity change from 0 to 2048 [ 930.314795][T10034] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 930.516366][ T29] audit: type=1804 audit(1717820789.266:124): pid=10033 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2385369835/syzkaller.Z9uumf/129/file2/file1" dev="loop3" ino=15 res=1 errno=0 [ 931.326891][T10038] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 931.495498][T10040] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 931.498855][ T780] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 931.863711][T10043] loop0: detected capacity change from 0 to 16 [ 931.877050][ T780] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 64, changing to 10 [ 931.889069][ T780] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 931.908215][ T780] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 931.917684][ T780] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 931.947238][ T29] audit: type=1326 audit(1717820790.646:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10042 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa5f07cf69 code=0x7ffc0000 [ 931.970673][ T29] audit: type=1326 audit(1717820790.646:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10042 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa5f07cf69 code=0x7ffc0000 [ 931.994314][ T29] audit: type=1326 audit(1717820790.646:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10042 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faa5f07cf69 code=0x7ffc0000 [ 932.099560][ T29] audit: type=1326 audit(1717820790.826:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10042 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa5f07cf69 code=0x7ffc0000 [ 932.125604][T10036] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 932.139699][ T29] audit: type=1326 audit(1717820790.826:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10042 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa5f07cf69 code=0x7ffc0000 [ 932.163181][ T29] audit: type=1326 audit(1717820790.836:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10042 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faa5f07cf69 code=0x7ffc0000 [ 932.186539][ T29] audit: type=1326 audit(1717820790.866:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10042 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa5f07cf69 code=0x7ffc0000 [ 932.217439][ T29] audit: type=1326 audit(1717820790.866:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10042 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa5f07cf69 code=0x7ffc0000 [ 932.243122][ T29] audit: type=1326 audit(1717820790.876:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10042 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faa5f07cf69 code=0x7ffc0000 [ 932.984898][ T4676] usb 2-1: USB disconnect, device number 6 [ 934.289278][T10064] loop1: detected capacity change from 0 to 2048 [ 934.437068][T10070] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 934.985641][T10066] loop3: detected capacity change from 0 to 40427 [ 935.004163][T10066] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 935.012482][T10066] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 935.091436][T10066] F2FS-fs (loop3): Found nat_bits in checkpoint [ 935.401831][T10066] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 935.409294][T10066] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 935.808871][T10080] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 937.452702][T10084] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 937.788249][T10087] loop4: detected capacity change from 0 to 16 [ 938.020939][ T29] kauditd_printk_skb: 8 callbacks suppressed [ 938.021150][ T29] audit: type=1326 audit(1717820796.796:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10088 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1014a7cf69 code=0x7ffc0000 [ 938.133637][ T29] audit: type=1326 audit(1717820796.856:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10088 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1014a7cf69 code=0x7ffc0000 [ 938.159035][ T29] audit: type=1326 audit(1717820796.866:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10088 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1014a7cf69 code=0x7ffc0000 [ 938.182871][ T29] audit: type=1326 audit(1717820796.876:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10088 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1014a7cf69 code=0x7ffc0000 [ 938.206308][ T29] audit: type=1326 audit(1717820796.876:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10088 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1014a7cf69 code=0x7ffc0000 [ 938.229667][ T29] audit: type=1326 audit(1717820796.896:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10088 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1014a7cf69 code=0x7ffc0000 [ 938.254734][ T29] audit: type=1326 audit(1717820796.906:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10088 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1014a7cf69 code=0x7ffc0000 [ 938.278559][ T29] audit: type=1326 audit(1717820796.986:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10088 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1014a7cf69 code=0x7ffc0000 [ 938.336031][ T29] audit: type=1326 audit(1717820797.076:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10088 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1014a7cf69 code=0x7ffc0000 [ 938.361544][ T29] audit: type=1326 audit(1717820797.076:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10088 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1014a7cf69 code=0x7ffc0000 [ 938.776581][ T5111] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 939.216912][ T5111] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 64, changing to 10 [ 939.228639][ T5111] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 939.238917][ T5111] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 939.248338][ T5111] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 939.378776][T10091] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 940.111508][ T4676] usb 1-1: USB disconnect, device number 7 [ 940.728558][T10107] loop3: detected capacity change from 0 to 2048 [ 940.889213][T10110] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 941.084120][T10113] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 941.485486][T10117] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'. [ 941.744924][T10122] loop1: detected capacity change from 0 to 16 [ 941.809645][T10123] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 944.646983][ T4676] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 945.118653][ T4676] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 64, changing to 10 [ 945.130210][ T4676] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 945.140398][ T4676] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 945.149829][ T4676] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 945.248278][T10142] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 945.710648][T10146] loop1: detected capacity change from 0 to 2048 [ 945.758677][T10148] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 945.807021][T10152] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 946.008974][ T5111] usb 4-1: USB disconnect, device number 4 [ 946.191379][T10154] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'. [ 946.277806][T10157] loop2: detected capacity change from 0 to 16 [ 946.320649][T10159] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 948.345558][T10185] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 948.965502][T10192] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'. [ 949.106892][T10193] loop4: detected capacity change from 0 to 2048 [ 949.259658][T10194] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 949.526867][T10197] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 950.230348][ T5111] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 950.305480][T10202] loop4: detected capacity change from 0 to 16 [ 950.637954][ T5111] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 64, changing to 10 [ 950.650267][ T5111] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 950.660513][ T5111] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 950.670093][ T5111] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 950.752037][T10200] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 951.467703][ T7600] usb 2-1: USB disconnect, device number 7 [ 952.986595][ T5111] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 953.155432][T10221] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 953.437512][ T5111] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 953.448577][ T5111] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 253 [ 953.579333][ T5111] usb 2-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 953.588924][ T5111] usb 2-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 953.597435][ T5111] usb 2-1: Manufacturer: syz [ 953.661610][ T5111] usb 2-1: config 0 descriptor?? [ 953.738707][ T5111] usbhid 2-1:0.0: couldn't find an input interrupt endpoint [ 954.107450][T10226] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 954.260198][T10228] loop2: detected capacity change from 0 to 2048 [ 954.409481][T10232] loop0: detected capacity change from 0 to 16 [ 954.441215][T10233] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 954.707653][ T29] kauditd_printk_skb: 44 callbacks suppressed [ 954.707732][ T29] audit: type=1804 audit(1717820813.466:196): pid=10228 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir389336011/syzkaller.NJms9w/143/file2/file1" dev="loop2" ino=15 res=1 errno=0 [ 954.808479][T10236] tap0: tun_chr_ioctl cmd 1074025672 [ 954.814127][T10236] tap0: ignored: set checksum disabled [ 954.864190][T10236] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 954.873411][T10236] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 954.933957][T10236] overlayfs: failed to resolve './file0': -2 [ 954.995567][T10239] loop4: detected capacity change from 0 to 256 [ 955.307026][ T5111] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 955.739336][ T5111] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 64, changing to 10 [ 955.751152][ T5111] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 955.763439][ T5111] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 955.773544][ T5111] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 955.808713][T10241] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22 [ 956.172040][ T5111] usb 2-1: USB disconnect, device number 8 [ 956.453171][T10251] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 956.484547][ T5111] usb 1-1: USB disconnect, device number 8 [ 958.177994][T10267] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 958.912714][T10272] loop0: detected capacity change from 0 to 16 [ 959.466633][T10282] loop3: detected capacity change from 0 to 256 [ 959.512476][T10275] loop1: detected capacity change from 0 to 2048 [ 959.568799][T10283] loop2: detected capacity change from 0 to 512 [ 959.601766][T10283] EXT4-fs warning (device loop2): read_mmp_block:115: Error -117 while reading MMP block 0 [ 959.643236][T10285] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 959.705236][T10286] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 959.838717][T10283] ip6erspan0: entered promiscuous mode [ 959.997836][ T29] audit: type=1804 audit(1717820818.696:197): pid=10289 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir3879176928/syzkaller.6gTG3p/141/file2/file1" dev="loop1" ino=15 res=1 errno=0 [ 960.598778][ T7600] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 961.026973][ T7600] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 64, changing to 10 [ 961.038551][ T7600] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 961.049025][ T7600] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 961.058352][ T7600] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 961.159668][T10291] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 961.182196][T10303] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 961.564450][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 961.571331][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 961.990101][ T5111] usb 1-1: USB disconnect, device number 9 [ 962.165112][T10310] random: crng reseeded on system resumption [ 963.125339][T10316] loop0: detected capacity change from 0 to 16 [ 963.655830][T10318] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 964.363381][T10320] loop0: detected capacity change from 0 to 512 [ 964.458970][T10320] EXT4-fs warning (device loop0): read_mmp_block:115: Error -117 while reading MMP block 0 [ 964.470855][T10322] loop2: detected capacity change from 0 to 2048 [ 964.528289][T10323] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 964.698241][T10320] ip6erspan0: entered promiscuous mode [ 964.707907][ T29] audit: type=1804 audit(1717820823.416:198): pid=10322 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir389336011/syzkaller.NJms9w/148/file2/file1" dev="loop2" ino=15 res=1 errno=0 [ 965.404034][T10325] loop2: detected capacity change from 0 to 256 [ 965.851130][T10331] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 967.463714][T10344] loop2: detected capacity change from 0 to 16 [ 967.652965][T10346] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 967.666851][ T7600] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 968.059264][ T7600] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 64, changing to 10 [ 968.070881][ T7600] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 968.081226][ T7600] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 968.090619][ T7600] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 968.150011][T10342] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 968.382317][T10357] random: crng reseeded on system resumption [ 968.617866][T10352] loop4: detected capacity change from 0 to 2048 [ 968.701129][T10355] loop2: detected capacity change from 0 to 2048 [ 968.728112][T10360] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 968.843076][T10355] loop2: p3 < > p4 < > [ 968.847904][T10355] loop2: partition table partially beyond EOD, truncated [ 968.855477][T10355] loop2: p3 start 4284289 is beyond EOD, truncated [ 968.994279][T10363] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 969.042304][ T29] audit: type=1804 audit(1717820827.766:199): pid=10364 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir3837781235/syzkaller.9yecKE/221/file2/file1" dev="loop4" ino=15 res=1 errno=0 [ 969.242886][ T780] usb 2-1: USB disconnect, device number 9 [ 969.705917][T10366] loop0: detected capacity change from 0 to 256 [ 973.487263][T10392] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 973.857424][T10398] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 974.336890][ T7600] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 974.405468][T10402] loop2: detected capacity change from 0 to 2048 [ 974.414981][ T29] audit: type=1804 audit(1717820833.126:200): pid=10408 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir3837781235/syzkaller.9yecKE/224/bus" dev="sda1" ino=1938 res=1 errno=0 [ 974.440820][ T29] audit: type=1800 audit(1717820833.126:201): pid=10408 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1938 res=0 errno=0 [ 974.523051][T10402] loop2: p3 < > p4 < > [ 974.527950][T10402] loop2: partition table partially beyond EOD, truncated [ 974.535350][T10402] loop2: p3 start 4284289 is beyond EOD, truncated [ 974.734304][T10412] random: crng reseeded on system resumption [ 974.860648][ T7600] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 64, changing to 10 [ 974.872284][ T7600] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 974.882590][ T7600] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 974.891996][ T7600] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 974.978895][T10401] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 975.716623][ T5111] usb 1-1: USB disconnect, device number 10 [ 978.149718][T10432] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 978.767866][T10437] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 979.296487][ T29] audit: type=1804 audit(1717820838.006:202): pid=10443 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir3879176928/syzkaller.6gTG3p/155/bus" dev="sda1" ino=1949 res=1 errno=0 [ 979.323949][ T29] audit: type=1800 audit(1717820838.006:203): pid=10443 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1949 res=0 errno=0 [ 979.998574][ T780] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 980.418385][ T780] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 64, changing to 10 [ 980.430079][ T780] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 980.447085][ T780] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 980.458706][ T780] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 980.508646][T10448] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 981.303563][ T5139] usb 2-1: USB disconnect, device number 10 [ 981.876559][ T5111] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 982.146745][ T5111] usb 5-1: Using ep0 maxpacket: 8 [ 982.307033][ T5111] usb 5-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=c1.9b [ 982.316646][ T5111] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 982.370386][ T5111] usb 5-1: config 0 descriptor?? [ 982.630050][ T5111] viperboard 5-1:0.0: version 0.00 found at bus 005 address 005 [ 982.658824][T10464] loop2: detected capacity change from 0 to 4096 [ 982.714998][ T5111] viperboard-i2c viperboard-i2c.2.auto: failure setting i2c_bus_freq to 100 [ 982.724178][ T5111] viperboard-i2c viperboard-i2c.2.auto: probe with driver viperboard-i2c failed with error -5 [ 982.809891][ T5111] usb 5-1: USB disconnect, device number 5 [ 983.085746][T10472] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 983.605038][ T29] audit: type=1804 audit(1717820842.326:204): pid=10479 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2385369835/syzkaller.Z9uumf/148/bus" dev="sda1" ino=1957 res=1 errno=0 [ 983.637266][ T29] audit: type=1800 audit(1717820842.326:205): pid=10479 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1957 res=0 errno=0 [ 984.935154][T10493] loop0: detected capacity change from 0 to 4096 [ 984.980291][T10493] ntfs3: loop0: Different NTFS sector size (2048) and media sector size (512). [ 985.190841][T10493] ntfs3: loop0: Failed to initialize $Extend/$ObjId. [ 985.206537][ T5111] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 985.305842][ T29] audit: type=1326 audit(1717820844.046:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10492 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa7b07cf69 code=0x7ffc0000 [ 985.329459][ T29] audit: type=1326 audit(1717820844.056:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10492 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7faa7b07bb60 code=0x7ffc0000 [ 985.359453][ T29] audit: type=1326 audit(1717820844.056:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10492 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7faa7b07e6f7 code=0x7ffc0000 [ 985.384814][ T29] audit: type=1326 audit(1717820844.056:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10492 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7faa7b07cf69 code=0x7ffc0000 [ 985.408320][ T29] audit: type=1326 audit(1717820844.056:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10492 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7faa7b07e6f7 code=0x7ffc0000 [ 985.431734][ T29] audit: type=1326 audit(1717820844.066:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10492 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7faa7b07be5a code=0x7ffc0000 [ 985.461217][ T29] audit: type=1326 audit(1717820844.076:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10492 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa7b07cf69 code=0x7ffc0000 [ 985.486964][ T29] audit: type=1326 audit(1717820844.076:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10492 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faa7b07cf69 code=0x7ffc0000 [ 985.666799][ T5111] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 64, changing to 10 [ 985.678513][ T5111] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 985.688773][ T5111] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 985.698277][ T5111] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 985.751096][T10495] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 986.373007][ T7600] usb 3-1: USB disconnect, device number 4 [ 987.428492][T10512] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 987.988765][ T5111] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 988.288206][ T5111] usb 5-1: Using ep0 maxpacket: 8 [ 988.437144][ T5111] usb 5-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=c1.9b [ 988.446451][ T5111] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 988.502224][ T5111] usb 5-1: config 0 descriptor?? [ 988.742314][T10524] loop3: detected capacity change from 0 to 8 [ 988.785490][ T5111] viperboard 5-1:0.0: version 0.00 found at bus 005 address 006 [ 988.837665][ T5111] viperboard-i2c viperboard-i2c.2.auto: failure setting i2c_bus_freq to 100 [ 988.846956][ T5111] viperboard-i2c viperboard-i2c.2.auto: probe with driver viperboard-i2c failed with error -5 [ 988.992358][ T5111] usb 5-1: USB disconnect, device number 6 [ 990.350561][T10539] loop4: detected capacity change from 0 to 512 [ 990.452948][T10539] EXT4-fs error (device loop4): ext4_orphan_get:1394: inode #15: comm syz-executor.4: casefold flag without casefold feature [ 990.481396][T10539] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 990.514215][T10539] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 990.626386][ T5111] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 990.883228][T10548] netlink: 'syz-executor.4': attribute type 30 has an invalid length. [ 991.037108][ T5111] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 64, changing to 10 [ 991.048616][ T5111] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 991.058710][ T5111] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 991.067956][ T5111] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 991.168184][T10541] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 991.298703][T10550] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 991.365455][ T6546] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 991.862576][ T5111] usb 3-1: USB disconnect, device number 5 [ 993.129805][T10566] loop4: detected capacity change from 0 to 8 [ 993.245180][T10565] loop2: detected capacity change from 0 to 8 [ 994.626478][ T5111] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 994.908611][ T5111] usb 5-1: Using ep0 maxpacket: 8 [ 995.054121][ T5111] usb 5-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=c1.9b [ 995.063721][ T5111] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 995.151500][ T5111] usb 5-1: config 0 descriptor?? [ 995.381882][ T5111] viperboard 5-1:0.0: version 0.00 found at bus 005 address 007 [ 995.482737][ T5111] viperboard-i2c viperboard-i2c.2.auto: failure setting i2c_bus_freq to 100 [ 995.494540][ T5111] viperboard-i2c viperboard-i2c.2.auto: probe with driver viperboard-i2c failed with error -5 [ 995.549230][T10577] can0: slcan on ptm0. [ 995.648154][ T5111] usb 5-1: USB disconnect, device number 7 [ 995.810465][T10579] loop0: detected capacity change from 0 to 512 [ 995.935629][T10579] EXT4-fs error (device loop0): ext4_orphan_get:1394: inode #15: comm syz-executor.0: casefold flag without casefold feature [ 996.007750][T10574] can0 (unregistered): slcan off ptm0. [ 996.029903][T10579] EXT4-fs error (device loop0): ext4_orphan_get:1399: comm syz-executor.0: couldn't read orphan inode 15 (err -117) [ 996.045937][T10579] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 996.310346][T10585] netlink: 'syz-executor.0': attribute type 30 has an invalid length. [ 996.454509][T10587] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 996.743569][ T5496] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 996.861023][T10583] loop3: detected capacity change from 0 to 4096 [ 996.887890][ T5111] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 997.284799][ T2983] bond0: (slave bond_slave_0): interface is now down [ 997.292354][ T2983] bond0: (slave bond_slave_1): interface is now down [ 997.300783][ T2983] bond0: now running without any active interface! [ 997.309878][ T5111] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 64, changing to 10 [ 997.321486][ T5111] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 997.333588][ T5111] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 997.345185][ T5111] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 997.418492][T10590] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 997.663654][T10599] loop1: detected capacity change from 0 to 8 [ 998.297026][ T7600] usb 5-1: USB disconnect, device number 8 [ 1001.451955][T10629] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1001.519608][ T29] kauditd_printk_skb: 19 callbacks suppressed [ 1001.519678][ T29] audit: type=1800 audit(1717820860.296:233): pid=10622 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="file2" dev="sda1" ino=1964 res=0 errno=0 [ 1003.111435][ T2970] bond0: (slave bond_slave_0): interface is now down [ 1003.118578][ T2970] bond0: (slave bond_slave_1): interface is now down [ 1003.127198][ T2970] bond0: now running without any active interface! [ 1003.465365][T10645] loop1: detected capacity change from 0 to 8 [ 1003.807566][ T5111] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 1004.013996][T10646] loop3: detected capacity change from 0 to 4096 [ 1004.207300][ T5111] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 64, changing to 10 [ 1004.219162][ T5111] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 1004.229537][ T5111] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 1004.243404][ T5111] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1004.338216][T10649] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1004.527524][T10653] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1005.079648][T10655] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1005.292072][ T7600] usb 1-1: USB disconnect, device number 11 [ 1007.111614][T10666] loop2: detected capacity change from 0 to 32768 [ 1007.150690][T10666] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz-executor.2 (10666) [ 1007.181805][T10666] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1007.192444][T10666] BTRFS info (device loop2): using sha256 (sha256-generic) checksum algorithm [ 1007.203974][T10666] BTRFS info (device loop2): using free-space-tree [ 1012.314329][ T7516] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1012.353245][T10706] random: crng reseeded on system resumption [ 1012.642662][ T29] audit: type=1800 audit(1717820871.416:234): pid=10705 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="file2" dev="sda1" ino=1941 res=0 errno=0 [ 1013.593072][T10713] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1013.942991][T10710] loop3: detected capacity change from 0 to 4096 [ 1014.599601][ T4676] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 1016.257199][ T4676] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 64, changing to 10 [ 1016.269138][ T4676] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 1016.286052][ T4676] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 1016.297597][ T4676] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1016.408835][T10715] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1016.608520][T10722] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1017.075437][ T5111] usb 1-1: USB disconnect, device number 12 [ 1018.020864][T10737] loop1: detected capacity change from 0 to 32768 [ 1018.038916][T10737] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (10737) [ 1018.064749][T10737] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1018.075667][T10737] BTRFS info (device loop1): using sha256 (sha256-generic) checksum algorithm [ 1018.087266][T10737] BTRFS info (device loop1): using free-space-tree [ 1020.867345][T10763] random: crng reseeded on system resumption [ 1021.706667][ T7387] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1021.867606][T10770] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1023.229503][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 1023.236270][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 1024.293103][ T7600] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 1024.666881][ T7600] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 64, changing to 10 [ 1024.688340][ T7600] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 1024.698724][ T7600] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 1024.708347][ T7600] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1024.782674][T10784] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 1027.116884][ T29] audit: type=1800 audit(1717820885.866:235): pid=10796 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file2" dev="sda1" ino=1941 res=0 errno=0 [ 1027.198865][ T5111] usb 4-1: USB disconnect, device number 5 [ 1028.294634][T10799] loop0: detected capacity change from 0 to 32768 [ 1028.353967][T10799] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (10799) [ 1028.405162][T10799] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1028.415797][T10799] BTRFS info (device loop0): using sha256 (sha256-generic) checksum algorithm [ 1028.427150][T10799] BTRFS info (device loop0): using free-space-tree [ 1029.085500][T10820] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1031.141151][T10826] loop3: detected capacity change from 0 to 4096 [ 1031.275487][T10827] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1031.313750][ T5496] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1031.337016][T10825] random: crng reseeded on system resumption [ 1034.395607][T10836] loop3: detected capacity change from 0 to 32768 [ 1034.492418][T10836] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (10836) [ 1034.551994][T10836] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1034.565032][T10836] BTRFS info (device loop3): using sha256 (sha256-generic) checksum algorithm [ 1034.576739][T10836] BTRFS info (device loop3): using free-space-tree [ 1035.197954][ T29] audit: type=1326 audit(1717820893.956:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10860 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa34747cf69 code=0x7ffc0000 [ 1035.223752][ T29] audit: type=1326 audit(1717820893.976:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10860 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa34747cf69 code=0x7ffc0000 [ 1035.300886][ T29] audit: type=1326 audit(1717820894.026:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10860 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa34747cf69 code=0x7ffc0000 [ 1035.326838][ T29] audit: type=1326 audit(1717820894.026:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10860 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa34747cf69 code=0x7ffc0000 [ 1035.350229][ T29] audit: type=1326 audit(1717820894.026:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10860 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa34747cf69 code=0x7ffc0000 [ 1035.373438][ T29] audit: type=1326 audit(1717820894.026:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10860 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa34747cf69 code=0x7ffc0000 [ 1035.396589][ T29] audit: type=1326 audit(1717820894.046:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10860 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa34747cf69 code=0x7ffc0000 [ 1035.419813][ T29] audit: type=1326 audit(1717820894.046:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10860 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa34747cf69 code=0x7ffc0000 [ 1035.443957][ T29] audit: type=1326 audit(1717820894.056:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10860 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa34747cf69 code=0x7ffc0000 [ 1035.467453][ T29] audit: type=1326 audit(1717820894.056:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10860 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa34747cf69 code=0x7ffc0000 [ 1035.571657][ T7600] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 1036.004629][T10870] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1036.028327][ T7600] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 64, changing to 10 [ 1036.047332][ T7600] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 1036.060148][ T7600] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 1036.069758][ T7600] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1036.188406][T10863] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1036.213896][ T7347] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1036.529254][T10868] loop2: detected capacity change from 0 to 4096 [ 1036.592926][T10868] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512). [ 1036.810454][ T5111] usb 1-1: USB disconnect, device number 13 [ 1037.483921][T10872] loop4: detected capacity change from 0 to 32768 [ 1037.572065][T10872] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (10872) [ 1037.910052][T10868] ntfs3: loop2: Failed to initialize $Extend/$ObjId. [ 1039.469148][T10872] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1039.479852][T10872] BTRFS info (device loop4): using sha256 (sha256-generic) checksum algorithm [ 1039.490498][T10872] BTRFS info (device loop4): using free-space-tree [ 1039.498538][T10872] workqueue: Failed to create a rescuer kthread for wq "btrfs-worker": -EINTR [ 1039.499254][T10872] workqueue: Failed to create a rescuer kthread for wq "btrfs-delalloc": -EINTR [ 1039.508914][T10872] workqueue: Failed to create a rescuer kthread for wq "btrfs-flush_delalloc": -EINTR [ 1039.518703][T10872] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR [ 1039.535833][T10872] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR [ 1039.545475][T10872] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR [ 1039.554966][T10872] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR [ 1039.564489][T10872] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR [ 1039.574414][T10872] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR [ 1039.583728][T10872] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR [ 1039.593789][T10872] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR [ 1039.604361][T10872] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR [ 1039.615672][T10872] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR [ 1039.673602][T10872] BTRFS error (device loop4): open_ctree failed [ 1041.894404][ T29] kauditd_printk_skb: 3 callbacks suppressed [ 1041.894481][ T29] audit: type=1800 audit(1717820900.436:249): pid=10888 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file2" dev="sda1" ino=1940 res=0 errno=0 [ 1042.026035][T10906] loop1: detected capacity change from 0 to 8 [ 1042.260752][ T29] audit: type=1326 audit(1717820900.966:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10908 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa34747cf69 code=0x7ffc0000 [ 1043.432112][T10921] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1043.563246][T10914] loop2: detected capacity change from 0 to 32768 [ 1043.582286][T10914] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz-executor.2 (10914) [ 1043.602534][T10914] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1043.613283][T10914] BTRFS info (device loop2): using sha256 (sha256-generic) checksum algorithm [ 1043.626917][T10914] BTRFS info (device loop2): using free-space-tree [ 1047.268669][T10948] loop3: detected capacity change from 0 to 40427 [ 1047.326077][T10948] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 1047.334358][T10948] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 1047.491066][T10948] F2FS-fs (loop3): Found nat_bits in checkpoint [ 1047.767060][T10948] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 1047.774509][T10948] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 1048.607558][ T7516] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1048.818427][T10956] loop0: detected capacity change from 0 to 2048 [ 1049.190203][T10956] loop0: p3 < > p4 < > [ 1049.194809][T10956] loop0: partition table partially beyond EOD, truncated [ 1049.202988][T10956] loop0: p3 start 4284289 is beyond EOD, truncated [ 1050.926662][T10969] loop4: detected capacity change from 0 to 32768 [ 1051.352767][T10971] loop0: detected capacity change from 0 to 32768 [ 1051.404723][T10969] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (10969) [ 1051.431158][T10971] BTRFS: device /dev/loop0 (7:0) using temp-fsid efb2c654-587c-492f-b38d-c26fbb022e98 [ 1051.441152][T10971] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (10971) [ 1051.461420][T10969] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1051.466649][T10971] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1051.472012][T10969] BTRFS info (device loop4): using sha256 (sha256-generic) checksum algorithm [ 1051.482199][T10971] BTRFS info (device loop0): using sha256 (sha256-generic) checksum algorithm [ 1051.492917][T10969] BTRFS info (device loop4): using free-space-tree [ 1051.509913][T10971] BTRFS info (device loop0): using free-space-tree [ 1052.313486][T10977] loop2: detected capacity change from 0 to 8 [ 1053.148108][ T5496] BTRFS info (device loop0): last unmount of filesystem efb2c654-587c-492f-b38d-c26fbb022e98 [ 1053.252428][T11010] loop3: detected capacity change from 0 to 8 [ 1053.373397][ T6546] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1054.291827][T11016] loop1: detected capacity change from 0 to 8 [ 1054.887155][T11018] loop3: detected capacity change from 0 to 32768 [ 1054.951352][T11018] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (11018) [ 1055.687812][T11020] loop2: detected capacity change from 0 to 40427 [ 1055.735843][T11020] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 1055.743928][T11020] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 1055.789633][T11018] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1055.800193][T11018] BTRFS info (device loop3): using sha256 (sha256-generic) checksum algorithm [ 1055.812625][T11018] BTRFS info (device loop3): using free-space-tree [ 1055.900959][T11020] F2FS-fs (loop2): Found nat_bits in checkpoint [ 1056.183054][T11020] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 1056.190371][T11020] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 1059.811828][ T7347] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1060.597325][T11055] loop0: detected capacity change from 0 to 32768 [ 1060.643457][T11055] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (11055) [ 1060.675666][T11055] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1060.686315][T11055] BTRFS info (device loop0): using sha256 (sha256-generic) checksum algorithm [ 1060.697479][T11055] BTRFS info (device loop0): using free-space-tree [ 1061.369281][T11064] loop4: detected capacity change from 0 to 32768 [ 1061.434657][T11064] BTRFS: device /dev/loop4 (7:4) using temp-fsid fa8b4c97-8e10-47d6-ad4e-a6bbca4a7627 [ 1061.445247][T11064] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (11064) [ 1061.606407][T11064] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1061.617381][T11064] BTRFS info (device loop4): using sha256 (sha256-generic) checksum algorithm [ 1061.628800][T11064] BTRFS info (device loop4): using free-space-tree [ 1061.655831][T11059] loop1: detected capacity change from 0 to 8 [ 1062.739708][ T5496] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1063.289446][T11101] loop1: detected capacity change from 0 to 8 [ 1063.774538][T11106] loop3: detected capacity change from 0 to 8 [ 1064.101805][ T6546] BTRFS info (device loop4): last unmount of filesystem fa8b4c97-8e10-47d6-ad4e-a6bbca4a7627 [ 1066.446865][T11123] loop1: detected capacity change from 0 to 32768 [ 1066.475900][T11123] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (11123) [ 1067.160695][T11128] loop4: detected capacity change from 0 to 40427 [ 1067.193223][T11128] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 1067.201468][T11128] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 1067.227333][T11123] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1067.238195][T11123] BTRFS info (device loop1): using sha256 (sha256-generic) checksum algorithm [ 1067.249448][T11123] BTRFS info (device loop1): using free-space-tree [ 1067.339172][T11128] F2FS-fs (loop4): Found nat_bits in checkpoint [ 1067.555450][T11126] loop2: detected capacity change from 0 to 8 [ 1067.659774][T11128] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 1067.667237][T11128] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 1069.698798][ T7387] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1070.628128][T11159] loop3: detected capacity change from 0 to 32768 [ 1070.689164][T11159] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (11159) [ 1070.728666][T11159] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1070.739339][T11159] BTRFS info (device loop3): using sha256 (sha256-generic) checksum algorithm [ 1070.750832][T11159] BTRFS info (device loop3): using free-space-tree [ 1071.034087][T11163] loop2: detected capacity change from 0 to 8 [ 1073.731834][ T29] audit: type=1800 audit(1717820932.266:251): pid=11182 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file2" dev="sda1" ino=1959 res=0 errno=0 [ 1074.021012][ T7347] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1074.906458][T11192] loop1: detected capacity change from 0 to 32768 [ 1074.974924][T11192] BTRFS: device /dev/loop1 (7:1) using temp-fsid 32eb789b-5da9-4b84-89c6-282db61856dd [ 1074.986601][T11192] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (11192) [ 1075.015277][T11192] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1075.026561][T11192] BTRFS info (device loop1): using sha256 (sha256-generic) checksum algorithm [ 1075.037708][T11192] BTRFS info (device loop1): using free-space-tree [ 1075.279606][T11190] loop4: detected capacity change from 0 to 8 [ 1076.602185][ T7387] BTRFS info (device loop1): last unmount of filesystem 32eb789b-5da9-4b84-89c6-282db61856dd [ 1077.248978][T11213] loop2: detected capacity change from 0 to 40427 [ 1077.415779][T11215] loop4: detected capacity change from 0 to 32768 [ 1077.470294][T11213] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 1077.473531][T11215] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (11215) [ 1077.478414][T11213] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 1077.523515][T11215] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1077.534128][T11215] BTRFS info (device loop4): using sha256 (sha256-generic) checksum algorithm [ 1077.544780][T11215] BTRFS info (device loop4): using free-space-tree [ 1077.696582][T11213] F2FS-fs (loop2): Found nat_bits in checkpoint [ 1078.008015][T11213] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 1078.015437][T11213] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 1079.240674][T11240] loop0: detected capacity change from 0 to 512 [ 1079.384020][ T6546] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1079.421957][T11240] EXT4-fs error (device loop0): ext4_orphan_get:1394: inode #15: comm syz-executor.0: casefold flag without casefold feature [ 1079.436008][T11240] EXT4-fs error (device loop0): ext4_orphan_get:1399: comm syz-executor.0: couldn't read orphan inode 15 (err -117) [ 1079.452137][T11240] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1080.911309][ T5496] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1081.403774][T11252] loop3: detected capacity change from 0 to 32768 [ 1081.452553][T11252] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (11252) [ 1081.559006][T11252] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1081.569731][T11252] BTRFS info (device loop3): using sha256 (sha256-generic) checksum algorithm [ 1081.581101][T11252] BTRFS info (device loop3): using free-space-tree [ 1081.707012][T11254] loop1: detected capacity change from 0 to 8 [ 1081.886260][ T29] audit: type=1326 audit(1717820940.636:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11261 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa7b07cf69 code=0x7ffc0000 [ 1081.909702][ T29] audit: type=1326 audit(1717820940.656:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11261 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa7b07cf69 code=0x7ffc0000 [ 1081.934598][ T29] audit: type=1326 audit(1717820940.686:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11261 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7faa7b07cf69 code=0x7ffc0000 [ 1081.958448][ T29] audit: type=1326 audit(1717820940.696:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11261 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa7b07cf69 code=0x7ffc0000 [ 1083.789260][T11283] loop1: detected capacity change from 0 to 32768 [ 1083.836636][T11283] BTRFS: device /dev/loop1 (7:1) using temp-fsid 4516d274-e81c-401e-95d8-a93b25ce291e [ 1083.846901][T11283] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (11283) [ 1083.884058][T11283] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1083.895075][T11283] BTRFS info (device loop1): using sha256 (sha256-generic) checksum algorithm [ 1083.905670][T11283] BTRFS info (device loop1): using free-space-tree [ 1084.102603][ T7347] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1084.235256][T11284] loop2: detected capacity change from 0 to 8 [ 1084.279553][T11300] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1084.353199][T11300] bond1: entered promiscuous mode [ 1084.441725][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 1084.448876][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 1085.267880][T11306] loop0: detected capacity change from 0 to 40427 [ 1085.304461][T11300] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1085.328072][T11306] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 1085.336301][T11306] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 1085.387182][T11300] bond1 (unregistering): Released all slaves [ 1085.443391][T11306] F2FS-fs (loop0): Found nat_bits in checkpoint [ 1085.871252][T11306] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 1085.878796][T11306] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 1086.346864][ T7387] BTRFS info (device loop1): last unmount of filesystem 4516d274-e81c-401e-95d8-a93b25ce291e [ 1088.121041][ T29] audit: type=1326 audit(1717820946.826:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11323 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa34747cf69 code=0x7ffc0000 [ 1088.145238][ T29] audit: type=1326 audit(1717820946.826:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11323 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa34747cf69 code=0x7ffc0000 [ 1088.174451][ T29] audit: type=1326 audit(1717820946.876:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11323 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7fa34747cf69 code=0x7ffc0000 [ 1088.199662][ T29] audit: type=1326 audit(1717820946.876:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11323 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa34747cf69 code=0x7ffc0000 [ 1089.530674][T11337] loop1: detected capacity change from 0 to 32768 [ 1089.553189][T11333] loop2: detected capacity change from 0 to 32768 [ 1089.582524][T11337] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (11337) [ 1089.613347][T11333] BTRFS: device /dev/loop2 (7:2) using temp-fsid f0ec7475-3f39-4f45-88e2-8f5db44366ad [ 1089.623414][T11333] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz-executor.2 (11333) [ 1089.666649][T11337] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1089.677284][T11337] BTRFS info (device loop1): using sha256 (sha256-generic) checksum algorithm [ 1089.688648][T11337] BTRFS info (device loop1): using free-space-tree [ 1089.722529][T11333] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1089.733363][T11333] BTRFS info (device loop2): using sha256 (sha256-generic) checksum algorithm [ 1089.746967][T11333] BTRFS info (device loop2): using free-space-tree [ 1091.095431][T11372] loop4: detected capacity change from 0 to 32768 [ 1091.210515][T11372] BTRFS: device /dev/loop4 (7:4) using temp-fsid 96626b8e-e4f7-4e8c-a4fc-04592158115d [ 1091.220691][T11372] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (11372) [ 1091.317710][T11372] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1091.328582][T11372] BTRFS info (device loop4): using sha256 (sha256-generic) checksum algorithm [ 1091.355099][T11372] BTRFS info (device loop4): using free-space-tree [ 1092.222157][T11394] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1092.293153][ T7387] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1092.338378][T11394] bond1: entered promiscuous mode [ 1092.407519][ T7516] BTRFS info (device loop2): last unmount of filesystem f0ec7475-3f39-4f45-88e2-8f5db44366ad [ 1092.534675][T11394] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1092.583566][T11394] bond1 (unregistering): Released all slaves [ 1092.763829][ T6546] BTRFS info (device loop4): last unmount of filesystem 96626b8e-e4f7-4e8c-a4fc-04592158115d [ 1095.060288][T11404] loop1: detected capacity change from 0 to 40427 [ 1095.102929][T11404] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 1095.111026][T11404] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 1095.213682][T11404] F2FS-fs (loop1): Found nat_bits in checkpoint [ 1095.478530][T11404] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 1095.485912][T11404] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 1096.790585][ T4676] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 1097.516901][ T4676] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 1097.528497][ T4676] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 1097.538754][ T4676] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 1097.548391][ T4676] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1097.601816][T11427] loop0: detected capacity change from 0 to 32768 [ 1097.618322][T11427] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (11427) [ 1097.638604][T11427] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1097.649265][T11427] BTRFS info (device loop0): using sha256 (sha256-generic) checksum algorithm [ 1097.660655][T11427] BTRFS info (device loop0): using free-space-tree [ 1097.751738][T11419] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 1098.444217][T11435] loop3: detected capacity change from 0 to 32768 [ 1098.549068][ T4676] usb 5-1: USB disconnect, device number 9 [ 1098.571976][T11435] BTRFS: device /dev/loop3 (7:3) using temp-fsid f85217b9-581a-410c-8db4-aff0c8a371eb [ 1098.584243][T11435] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (11435) [ 1098.858049][T11435] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1098.868551][T11435] BTRFS info (device loop3): using sha256 (sha256-generic) checksum algorithm [ 1098.879380][T11435] BTRFS info (device loop3): using free-space-tree [ 1099.820450][ T5496] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1100.133332][ T7347] BTRFS info (device loop3): last unmount of filesystem f85217b9-581a-410c-8db4-aff0c8a371eb [ 1100.662401][T11476] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1100.730685][T11476] bond1: entered promiscuous mode [ 1100.871493][T11479] bond0: (slave bond_slave_0): Releasing backup interface [ 1101.060512][T11479] bond_slave_0: entered promiscuous mode [ 1101.080517][T11479] bond1: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1101.156746][T11482] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1101.301364][T11482] bond1 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1101.434081][T11482] bond_slave_0: left promiscuous mode [ 1101.507996][T11482] bond1 (unregistering): Released all slaves [ 1103.057333][T11485] loop4: detected capacity change from 0 to 40427 [ 1103.169224][T11485] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 1103.177524][T11485] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 1103.255864][T11485] F2FS-fs (loop4): Found nat_bits in checkpoint [ 1103.560380][T11485] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 1103.567786][T11485] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 1104.996351][ T5111] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 1105.635441][T11507] loop3: detected capacity change from 0 to 32768 [ 1105.638393][ T5111] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 1105.653432][ T5111] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 1105.663774][ T5111] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 1105.675055][ T5111] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1105.683461][T11507] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (11507) [ 1105.705713][T11507] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1105.716350][T11507] BTRFS info (device loop3): using sha256 (sha256-generic) checksum algorithm [ 1105.727750][T11507] BTRFS info (device loop3): using free-space-tree [ 1105.803053][T11505] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1106.735654][ T5111] usb 1-1: USB disconnect, device number 14 [ 1107.101563][ T7347] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1108.023623][T11539] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1108.170636][T11539] bond1: entered promiscuous mode [ 1108.271588][T11543] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1108.344730][T11543] bond1 (unregistering): Released all slaves [ 1108.548577][T11542] bond0: (slave bond_slave_0): Releasing backup interface [ 1109.278876][T11545] loop4: detected capacity change from 0 to 32768 [ 1109.329823][T11545] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (11545) [ 1109.352889][T11545] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1109.369138][T11545] BTRFS info (device loop4): using sha256 (sha256-generic) checksum algorithm [ 1109.381099][T11545] BTRFS info (device loop4): using free-space-tree [ 1109.784374][T11551] loop0: detected capacity change from 0 to 8 [ 1110.675417][T11571] loop1: detected capacity change from 0 to 40427 [ 1110.796426][T11571] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 1110.804464][T11571] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 1110.904695][T11571] F2FS-fs (loop1): Found nat_bits in checkpoint [ 1111.203380][T11571] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 1111.210924][T11571] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 1111.313205][ T6546] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1114.133646][T11596] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1114.497071][T11596] netlink: 37 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1114.508132][T11596] unsupported nlmsg_type 40 [ 1114.616834][ T29] audit: type=1800 audit(1717820973.206:260): pid=11597 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1944 res=0 errno=0 [ 1115.179920][T11601] loop2: detected capacity change from 0 to 2048 [ 1115.298079][ T29] audit: type=1326 audit(1717820973.996:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11602 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7faa7b07cf69 code=0x0 [ 1116.028798][T11606] loop4: detected capacity change from 0 to 32768 [ 1116.170825][T11607] loop3: detected capacity change from 0 to 32768 [ 1116.196854][T11606] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (11606) [ 1116.550258][T11607] BTRFS: device /dev/loop3 (7:3) using temp-fsid e71e39f4-82cc-4fd9-bcfc-6cf33a806ea8 [ 1116.560689][T11607] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (11607) [ 1116.574520][T11601] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1116.639401][T11606] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1116.650510][T11606] BTRFS info (device loop4): using sha256 (sha256-generic) checksum algorithm [ 1116.661955][T11606] BTRFS info (device loop4): using free-space-tree [ 1116.677000][T11607] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1116.687659][T11607] BTRFS info (device loop3): using sha256 (sha256-generic) checksum algorithm [ 1116.699140][T11607] BTRFS info (device loop3): using free-space-tree [ 1117.660516][ T7516] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1118.044540][ T7347] BTRFS info (device loop3): last unmount of filesystem e71e39f4-82cc-4fd9-bcfc-6cf33a806ea8 [ 1118.295328][ T6546] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1119.109935][T11651] loop1: detected capacity change from 0 to 128 [ 1119.179670][T11651] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (39871!=39978) [ 1119.260931][T11651] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none. [ 1119.479532][T11651] EXT4-fs warning (device loop1): ext4_dirblock_csum_verify:405: inode #2: comm syz-executor.1: No space for directory leaf checksum. Please run e2fsck -D. [ 1119.503350][T11651] EXT4-fs error (device loop1): __ext4_find_entry:1695: inode #2: comm syz-executor.1: checksumming directory block 0 [ 1119.665460][T11651] EXT4-fs warning (device loop1): ext4_dirblock_csum_verify:405: inode #2: comm syz-executor.1: No space for directory leaf checksum. Please run e2fsck -D. [ 1119.681932][T11651] EXT4-fs error (device loop1): __ext4_find_entry:1695: inode #2: comm syz-executor.1: checksumming directory block 0 [ 1119.797945][T11651] EXT4-fs warning (device loop1): ext4_dirblock_csum_verify:405: inode #2: comm syz-executor.1: No space for directory leaf checksum. Please run e2fsck -D. [ 1119.816437][T11651] EXT4-fs error (device loop1): __ext4_find_entry:1695: inode #2: comm syz-executor.1: checksumming directory block 0 [ 1120.458335][ T7387] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1121.829689][T11664] loop4: detected capacity change from 0 to 40427 [ 1121.880153][T11664] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 1121.888582][T11664] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 1121.947440][T11668] loop3: detected capacity change from 0 to 32768 [ 1121.956666][T11664] F2FS-fs (loop4): Found nat_bits in checkpoint [ 1122.008841][T11668] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (11668) [ 1122.194154][T11668] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1122.205211][T11668] BTRFS info (device loop3): using sha256 (sha256-generic) checksum algorithm [ 1122.217016][T11668] BTRFS info (device loop3): using free-space-tree [ 1122.280712][T11664] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 1122.288240][T11664] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 1123.221547][T11692] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1123.304170][T11692] netlink: 37 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1123.778405][ T29] audit: type=1800 audit(1717820982.176:262): pid=11692 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1938 res=0 errno=0 [ 1125.948920][ T7347] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1128.058136][T11711] loop1: detected capacity change from 0 to 8192 [ 1129.917737][T11744] loop4: detected capacity change from 0 to 256 [ 1130.464812][T11748] loop1: detected capacity change from 0 to 1024 [ 1130.500176][T11748] hfsplus: failed to load root directory [ 1142.864778][T11778] loop3: detected capacity change from 0 to 512 [ 1142.975684][T11778] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #15: comm syz-executor.3: pblk 0 bad header/extent: invalid magic - magic 7973, entries 27514, max 27745(0), depth 25964(25964) [ 1143.117530][T11778] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 1143.130711][T11774] loop2: detected capacity change from 0 to 4096 [ 1143.133151][T11778] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1143.303414][T11785] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1143.346574][T11778] loop3: detected capacity change from 512 to 11 [ 1143.370718][T11786] syz-executor.3: attempt to access beyond end of device [ 1143.370718][T11786] loop3: rw=524288, sector=14, nr_sectors = 2 limit=11 [ 1143.385394][T11786] syz-executor.3: attempt to access beyond end of device [ 1143.385394][T11786] loop3: rw=12288, sector=12, nr_sectors = 2 limit=11 [ 1143.400107][T11786] EXT4-fs error (device loop3): __ext4_get_inode_loc_noinmem:4487: inode #5: block 6: comm syz-executor.3: unable to read itable block [ 1143.523544][ T29] audit: type=1800 audit(1717821002.246:263): pid=11774 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=18 res=0 errno=0 [ 1143.737860][ T7347] EXT4-fs warning (device loop3): htree_dirblock_to_tree:1082: inode #2: lblock 0: comm syz-executor.3: error -12 reading directory block [ 1143.934368][ T7347] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1144.495293][ T2970] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1144.674980][ T2970] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1144.864059][ T2970] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1145.015588][ T2970] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1145.396933][ T2970] bridge_slave_1: left allmulticast mode [ 1145.405521][ T2970] bridge_slave_1: left promiscuous mode [ 1145.412254][ T2970] bridge0: port 2(bridge_slave_1) entered disabled state [ 1145.477205][ T2970] bridge_slave_0: left allmulticast mode [ 1145.483069][ T2970] bridge_slave_0: left promiscuous mode [ 1145.489843][ T2970] bridge0: port 1(bridge_slave_0) entered disabled state [ 1145.869600][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 1145.876595][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 1146.293563][ T2970] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1146.394455][ T2970] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1146.458591][ T2970] bond0 (unregistering): Released all slaves [ 1147.638288][ T2970] hsr_slave_0: left promiscuous mode [ 1147.691309][ T2970] hsr_slave_1: left promiscuous mode [ 1147.717004][ T2970] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1147.724721][ T2970] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1147.835579][ T2970] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1147.843554][ T2970] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1147.913774][ T2970] veth1_macvtap: left promiscuous mode [ 1147.920102][ T2970] veth0_macvtap: left promiscuous mode [ 1147.926006][ T2970] veth1_vlan: left promiscuous mode [ 1147.931724][ T2970] veth0_vlan: left promiscuous mode [ 1148.837137][T11821] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 1148.847303][T11821] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 1148.867921][T11821] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 1148.993997][T11821] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 1149.105786][T11821] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 1149.116026][T11821] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 1149.142560][ T2970] team0 (unregistering): Port device team_slave_1 removed [ 1149.181958][ T2970] team0 (unregistering): Port device team_slave_0 removed [ 1149.314040][T11826] syz-executor.1[11826] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1149.314556][T11826] syz-executor.1[11826] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1149.331161][T11826] syz-executor.1[11826] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1149.343605][T11826] syz-executor.1[11826] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1150.702696][T11820] chnl_net:caif_netlink_parms(): no params data found [ 1151.507019][ T5071] Bluetooth: hci3: command tx timeout [ 1152.014151][T11820] bridge0: port 1(bridge_slave_0) entered blocking state [ 1152.022003][T11820] bridge0: port 1(bridge_slave_0) entered disabled state [ 1152.029928][T11820] bridge_slave_0: entered allmulticast mode [ 1152.039359][T11820] bridge_slave_0: entered promiscuous mode [ 1152.182377][T11820] bridge0: port 2(bridge_slave_1) entered blocking state [ 1152.190233][T11820] bridge0: port 2(bridge_slave_1) entered disabled state [ 1152.198198][T11820] bridge_slave_1: entered allmulticast mode [ 1152.207622][T11820] bridge_slave_1: entered promiscuous mode [ 1152.555000][T11820] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1152.725117][T11820] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1153.239226][T11820] team0: Port device team_slave_0 added [ 1153.629546][ T5071] Bluetooth: hci3: command tx timeout [ 1153.682440][T11820] team0: Port device team_slave_1 added [ 1154.098942][T11955] netlink: 'syz-executor.4': attribute type 10 has an invalid length. [ 1155.433551][T11820] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1155.443152][T11820] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1155.470031][T11820] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1155.757247][ T5071] Bluetooth: hci3: command tx timeout [ 1155.924508][T11820] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1155.932325][T11820] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1155.964607][T11820] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1156.571220][T11820] hsr_slave_0: entered promiscuous mode [ 1156.625713][T11820] hsr_slave_1: entered promiscuous mode [ 1156.780309][T11820] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1156.788798][T11820] Cannot create hsr debugfs directory [ 1157.816754][ T5071] Bluetooth: hci3: command tx timeout [ 1159.196754][T11997] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1160.599796][T11820] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 1160.708190][T11820] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 1160.824601][T11820] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 1160.898608][T11820] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 1161.372636][T12008] loop4: detected capacity change from 0 to 256 [ 1161.641922][T12008] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011eee, chksum : 0xc8706b8e, utbl_chksum : 0xe619d30d) [ 1162.142723][T12011] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1162.152567][T12011] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1162.160443][T12011] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1162.221588][T12011] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1162.229966][T12011] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1162.693938][T11820] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1162.949500][T11820] 8021q: adding VLAN 0 to HW filter on device team0 [ 1163.057166][ T7343] bridge0: port 1(bridge_slave_0) entered blocking state [ 1163.064942][ T7343] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1163.148907][ T7343] bridge0: port 2(bridge_slave_1) entered blocking state [ 1163.156716][ T7343] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1163.188254][ T5139] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 1163.477263][ T5139] usb 5-1: Using ep0 maxpacket: 16 [ 1163.616959][ T5139] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1163.628189][ T5139] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 1163.997906][ T5139] usb 5-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=b4.5b [ 1164.007419][ T5139] usb 5-1: New USB device strings: Mfr=1, Product=130, SerialNumber=3 [ 1164.015879][ T5139] usb 5-1: Product: syz [ 1164.022193][ T5139] usb 5-1: Manufacturer: syz [ 1164.027008][ T5139] usb 5-1: SerialNumber: syz [ 1164.102984][ T5139] usb 5-1: config 0 descriptor?? [ 1164.188362][ T5139] usb 5-1: NFC: intf ffff888119dc7400 id ffffffff915008f0 [ 1164.422062][ T4676] usb 5-1: USB disconnect, device number 10 [ 1165.863660][T11820] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1166.522523][T11820] veth0_vlan: entered promiscuous mode [ 1166.646962][T11820] veth1_vlan: entered promiscuous mode [ 1167.028329][T11820] veth0_macvtap: entered promiscuous mode [ 1167.157099][T11820] veth1_macvtap: entered promiscuous mode [ 1167.295144][T11820] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1167.307005][T11820] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1167.319354][T11820] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1167.330725][T11820] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1167.341049][T11820] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1167.351822][T11820] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1167.366685][T11820] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1167.484637][T11820] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1167.495685][T11820] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1167.507068][T11820] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1167.517873][T11820] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1167.534484][T11820] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1167.547202][T11820] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1167.562574][T11820] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1167.819172][T11820] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1167.835797][T11820] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1167.847573][T11820] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1167.856805][T11820] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1168.552267][ C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 1168.752004][T12060] 9pnet_fd: Insufficient options for proto=fd [ 1169.732233][T12070] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1169.742629][T12070] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1169.750618][T12070] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1169.787205][T12070] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1169.794902][T12070] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1170.703146][T12091] loop1: detected capacity change from 0 to 128 [ 1170.844666][ T29] audit: type=1800 audit(1717821029.556:264): pid=12091 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=1048652 res=0 errno=0 [ 1170.866532][ T29] audit: type=1804 audit(1717821029.566:265): pid=12091 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir3879176928/syzkaller.6gTG3p/225/file0/bus" dev="loop1" ino=1048652 res=1 errno=0 [ 1173.660345][ C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 1173.938501][T12119] 9pnet_fd: Insufficient options for proto=fd [ 1174.400111][ T2970] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1174.409580][ T2970] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1174.608088][ T2970] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1174.616244][ T2970] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1174.911857][T12135] loop1: detected capacity change from 0 to 128 [ 1175.149376][ T29] audit: type=1800 audit(1717821033.866:266): pid=12135 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=1048656 res=0 errno=0 [ 1175.171333][ T29] audit: type=1804 audit(1717821033.896:267): pid=12135 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir3879176928/syzkaller.6gTG3p/229/file0/bus" dev="loop1" ino=1048656 res=1 errno=0 [ 1176.331117][T12161] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1176.340819][T12161] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1176.348644][T12161] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1176.404994][T12161] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1176.412894][T12161] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1176.815565][ C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 1176.892136][T12170] 9pnet_fd: Insufficient options for proto=fd [ 1178.793087][T12184] loop0: detected capacity change from 0 to 128 [ 1179.187967][ T29] audit: type=1800 audit(1717821037.876:268): pid=12184 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=1048657 res=0 errno=0 [ 1179.216021][ T29] audit: type=1804 audit(1717821037.916:269): pid=12184 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir1511663738/syzkaller.qEV0vq/366/file0/bus" dev="loop0" ino=1048657 res=1 errno=0 [ 1179.973698][T12202] loop1: detected capacity change from 0 to 256 [ 1180.233824][ C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 1180.344194][T12211] 9pnet_fd: Insufficient options for proto=fd [ 1180.615226][T12214] loop2: detected capacity change from 0 to 1024 [ 1180.820886][T12214] hfsplus: bad catalog entry used to create inode [ 1180.828615][T12214] hfsplus: failed to load root directory [ 1180.880329][T12216] loop0: detected capacity change from 0 to 2048 [ 1181.032890][T12216] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1182.177967][T12232] loop4: detected capacity change from 0 to 40427 [ 1182.253961][T12232] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 1182.263568][T12232] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 1182.340238][T12232] F2FS-fs (loop4): Found nat_bits in checkpoint [ 1182.616270][T12237] loop1: detected capacity change from 0 to 128 [ 1182.635339][T12232] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 1182.643108][T12232] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 1183.357192][ T29] audit: type=1800 audit(1717821042.116:270): pid=12237 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=1048658 res=0 errno=0 [ 1183.379651][ T29] audit: type=1804 audit(1717821042.126:271): pid=12237 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir3879176928/syzkaller.6gTG3p/237/file0/bus" dev="loop1" ino=1048658 res=1 errno=0 [ 1183.792469][T12228] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1183.804312][T12228] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1183.812689][T12228] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1183.828887][T12228] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1183.837846][T12228] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1185.194600][ T29] audit: type=1804 audit(1717821043.916:272): pid=12256 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir389336011/syzkaller.NJms9w/254/file0" dev="sda1" ino=1959 res=1 errno=0 [ 1186.639772][T12262] loop3: detected capacity change from 0 to 4096 [ 1186.692567][T12262] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 1186.916981][T12262] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 1186.951608][T12262] ntfs3: loop3: Failed to initialize $Extend/$Reparse. [ 1187.381639][ C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 1187.486664][T12268] 9pnet_fd: Insufficient options for proto=fd [ 1188.558284][T12274] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1188.753744][T12277] loop4: detected capacity change from 0 to 1024 [ 1188.821711][T12277] hfsplus: bad catalog entry used to create inode [ 1188.828735][T12277] hfsplus: failed to load root directory [ 1189.094722][T12280] loop3: detected capacity change from 0 to 128 [ 1189.271909][ T29] audit: type=1800 audit(1717821047.996:273): pid=12280 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="loop3" ino=1048659 res=0 errno=0 [ 1189.293576][ T29] audit: type=1804 audit(1717821048.016:274): pid=12280 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir856591765/syzkaller.ufVC4z/13/file0/bus" dev="loop3" ino=1048659 res=1 errno=0 [ 1191.437586][ T7600] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 1191.745724][T12307] bridge0: port 3(syz_tun) entered blocking state [ 1191.753453][T12307] bridge0: port 3(syz_tun) entered disabled state [ 1191.761126][T12307] syz_tun: entered allmulticast mode [ 1191.769880][T12307] syz_tun: entered promiscuous mode [ 1191.778002][T12307] bridge0: port 3(syz_tun) entered blocking state [ 1191.785080][T12307] bridge0: port 3(syz_tun) entered forwarding state [ 1191.906913][ T7600] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0 [ 1192.007908][ T7600] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1192.017376][ T7600] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 1192.025510][ T7600] usb 2-1: SerialNumber: syz [ 1192.064869][ C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 1192.288578][ T7600] cdc_ether 2-1:1.0: probe with driver cdc_ether failed with error -22 [ 1192.345785][T12312] 9pnet_fd: Insufficient options for proto=fd [ 1192.408674][T12311] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1192.589532][ T7600] usb 2-1: USB disconnect, device number 11 [ 1192.635879][T12304] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1193.061063][T12321] loop2: detected capacity change from 0 to 128 [ 1193.282408][ T29] audit: type=1800 audit(1717821052.006:275): pid=12321 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=1048660 res=0 errno=0 [ 1193.311431][ T29] audit: type=1804 audit(1717821052.086:276): pid=12321 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir389336011/syzkaller.NJms9w/259/file0/bus" dev="loop2" ino=1048660 res=1 errno=0 [ 1193.596689][T12325] syzkaller0: entered promiscuous mode [ 1193.596787][T12325] syzkaller0: entered allmulticast mode [ 1195.492536][T12341] loop0: detected capacity change from 0 to 1764 [ 1195.684222][T12348] bridge0: port 3(syz_tun) entered blocking state [ 1195.691706][T12348] bridge0: port 3(syz_tun) entered disabled state [ 1195.699053][T12348] syz_tun: entered allmulticast mode [ 1195.708130][T12348] syz_tun: entered promiscuous mode [ 1195.717251][T12348] bridge0: port 3(syz_tun) entered blocking state [ 1195.724727][T12348] bridge0: port 3(syz_tun) entered forwarding state [ 1196.034662][T12350] loop3: detected capacity change from 0 to 2048 [ 1196.115917][T12350] loop3: p1 < > p4 [ 1196.144812][T12344] loop2: detected capacity change from 0 to 2048 [ 1196.158043][T12350] loop3: p4 size 8388608 extends beyond EOD, truncated [ 1196.214259][T12344] loop2: p1 < > p4 [ 1196.252935][T12344] loop2: p4 size 8388608 extends beyond EOD, truncated [ 1196.286845][T12355] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1196.801651][ C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 1197.162728][T12362] loop4: detected capacity change from 0 to 128 [ 1197.253711][T12364] Bluetooth: MGMT ver 1.22 [ 1197.335797][T12364] loop3: detected capacity change from 0 to 512 [ 1197.342563][ T29] audit: type=1800 audit(1717821056.106:277): pid=12362 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1048661 res=0 errno=0 [ 1197.383562][T12364] EXT4-fs: Ignoring removed i_version option [ 1197.444666][ T29] audit: type=1804 audit(1717821056.176:278): pid=12362 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir3837781235/syzkaller.9yecKE/332/file0/bus" dev="loop4" ino=1048661 res=1 errno=0 [ 1197.496634][T12364] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842e02c, mo2=0002] [ 1197.529512][T12364] EXT4-fs error (device loop3): __ext4_iget:4913: inode #11: block 393240: comm syz-executor.3: invalid block [ 1197.550173][T12364] EXT4-fs (loop3): Remounting filesystem read-only [ 1197.557207][T12364] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1197.838529][T12374] EXT4-fs warning (device loop3): dx_probe:892: inode #2: comm syz-executor.3: dx entry: limit 0 != root limit 125 [ 1197.851929][T12374] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 1198.263206][T12373] loop0: detected capacity change from 0 to 2048 [ 1198.475993][T12373] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1198.672261][T12373] UDF-fs: error (device loop0): udf_read_inode: (ino 1317) failed !bh [ 1199.118460][T11820] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1199.565056][T12387] bridge0: port 3(syz_tun) entered blocking state [ 1199.575677][T12387] bridge0: port 3(syz_tun) entered disabled state [ 1199.583232][T12387] syz_tun: entered allmulticast mode [ 1199.593483][T12387] syz_tun: entered promiscuous mode [ 1199.602839][T12387] bridge0: port 3(syz_tun) entered blocking state [ 1199.611175][T12387] bridge0: port 3(syz_tun) entered forwarding state [ 1202.432282][T12397] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1203.168738][ C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 1203.491239][T12406] loop0: detected capacity change from 0 to 2048 [ 1203.678282][T12406] loop0: p1 < > p4 [ 1203.777652][T12406] loop0: p4 size 8388608 extends beyond EOD, truncated [ 1205.330037][ T3427] Bluetooth: hci5: Frame reassembly failed (-84) [ 1205.466584][ T7343] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 1205.726582][ T7343] usb 3-1: Using ep0 maxpacket: 32 [ 1205.848530][ T7343] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1205.860588][ T7343] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1205.871151][ T7343] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 1205.880877][ T7343] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1206.071049][ T7343] hub 3-1:4.0: USB hub found [ 1206.259904][ T7343] hub 3-1:4.0: 2 ports detected [ 1209.167502][T11821] Bluetooth: hci5: command 0x1003 tx timeout [ 1210.169310][ T1220] ieee802154 phy0 wpan0: encryption failed: -22 [ 1210.175905][ T1220] ieee802154 phy1 wpan1: encryption failed: -22 [ 1211.467778][ T7343] hub 3-1:4.0: hub_hub_status failed (err = -71) [ 1211.474324][ T7343] hub 3-1:4.0: config failed, can't get hub status (err -71) [ 1211.747614][ T5071] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 1211.799955][ T7343] usb 3-1: USB disconnect, device number 6 [ 1212.280581][T12438] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1212.772684][T12441] loop3: detected capacity change from 0 to 2048 [ 1212.807260][T12441] ext4: Unknown parameter 'euid' [ 1212.967132][ C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 1218.899822][T12458] loop4: detected capacity change from 0 to 2048 [ 1218.991419][ T7343] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 1219.057141][T12458] loop4: p1 < > p4 [ 1219.127634][T12458] loop4: p4 size 8388608 extends beyond EOD, truncated [ 1219.256535][ T7343] usb 4-1: Using ep0 maxpacket: 8 [ 1219.457785][ T7343] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0 [ 1219.637041][ T7343] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1219.648467][ T7343] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1219.657317][ T7343] usb 4-1: Product: syz [ 1219.661712][ T7343] usb 4-1: Manufacturer: syz [ 1219.666582][ T7343] usb 4-1: SerialNumber: syz [ 1219.769207][ T7343] cdc_ether 4-1:1.0: probe with driver cdc_ether failed with error -22 [ 1220.012650][ T4676] usb 4-1: USB disconnect, device number 6 [ 1220.285345][T12480] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1220.715075][T12483] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1221.029226][ C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 1226.453351][T12510] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1226.687479][T11821] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 1226.696926][T11821] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 1226.717012][T11821] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 1226.731226][T11821] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 1226.754839][T11821] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 1226.764228][T11821] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 1227.783208][ C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 1228.318944][T12511] chnl_net:caif_netlink_parms(): no params data found [ 1228.462370][T12536] syz-executor.4: attempt to access beyond end of device [ 1228.462370][T12536] loop9: rw=0, sector=0, nr_sectors = 1 limit=0 [ 1228.476498][T12536] FAT-fs (loop9): unable to read boot sector [ 1228.860443][T11821] Bluetooth: hci5: command tx timeout [ 1229.713202][T12544] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1231.018601][T11821] Bluetooth: hci5: command tx timeout [ 1231.118468][ T7343] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 1231.426931][ T7343] usb 4-1: Using ep0 maxpacket: 16 [ 1231.510000][T12553] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1231.578525][ T7343] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0 [ 1231.588818][ T7343] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0 [ 1231.598860][ T7343] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0 [ 1231.608966][ T7343] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 0 [ 1231.788902][ T7343] usb 4-1: New USB device found, idVendor=04e6, idProduct=0007, bcdDevice= 1.75 [ 1231.798523][ T7343] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=5 [ 1231.806930][ T7343] usb 4-1: SerialNumber: syz [ 1231.850340][T12511] bridge0: port 1(bridge_slave_0) entered blocking state [ 1231.858238][T12511] bridge0: port 1(bridge_slave_0) entered disabled state [ 1231.866220][T12511] bridge_slave_0: entered allmulticast mode [ 1231.875631][T12511] bridge_slave_0: entered promiscuous mode [ 1232.008298][ T7343] usb-storage 4-1:1.0: USB Mass Storage device detected [ 1232.128194][T12511] bridge0: port 2(bridge_slave_1) entered blocking state [ 1232.138825][T12511] bridge0: port 2(bridge_slave_1) entered disabled state [ 1232.146752][T12511] bridge_slave_1: entered allmulticast mode [ 1232.156186][T12511] bridge_slave_1: entered promiscuous mode [ 1232.198484][ T7343] usb-storage 4-1:1.0: Quirks match for vid 04e6 pid 0007: 1 [ 1232.294259][ T7343] scsi host1: usb-storage 4-1:1.0 [ 1232.444578][ T7343] usb 4-1: USB disconnect, device number 7 [ 1232.648687][T12511] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1232.823300][ T29] audit: type=1800 audit(1717821091.356:279): pid=12559 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1963 res=0 errno=0 [ 1233.093520][T12511] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1233.101505][T11821] Bluetooth: hci5: command tx timeout [ 1233.373135][T12511] team0: Port device team_slave_0 added [ 1233.638034][T12511] team0: Port device team_slave_1 added [ 1233.974485][T12511] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1233.984026][T12511] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1234.010875][T12511] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1234.068643][T12568] ===================================================== [ 1234.075995][T12568] BUG: KMSAN: uninit-value in strnchr+0x90/0xd0 [ 1234.082459][T12568] strnchr+0x90/0xd0 [ 1234.086546][T12568] bpf_bprintf_prepare+0x1c2/0x23c0 [ 1234.091990][T12568] bpf_trace_printk+0xec/0x3e0 [ 1234.096957][T12568] ___bpf_prog_run+0x13fe/0xe0f0 [ 1234.102076][T12568] __bpf_prog_run32+0xb2/0xe0 [ 1234.106929][T12568] bpf_trace_run2+0x116/0x300 [ 1234.111780][T12568] __bpf_trace_tlb_flush+0x2c/0x40 [ 1234.117079][T12568] __traceiter_tlb_flush+0x9f/0x160 [ 1234.122459][T12568] switch_mm_irqs_off+0x9d2/0x1010 [ 1234.127748][T12568] __schedule+0x19a9/0x6bc0 [ 1234.132442][T12568] schedule+0x13d/0x380 [ 1234.136757][T12568] __futex_wait+0x251/0x540 [ 1234.141473][T12568] futex_wait+0xe1/0x360 [ 1234.145914][T12568] do_futex+0x341/0x4a0 [ 1234.150234][T12568] __se_sys_futex+0x22c/0x6f0 [ 1234.155096][T12568] __x64_sys_futex+0x11f/0x1a0 [ 1234.160041][T12568] x64_sys_call+0x3206/0x3b50 [ 1234.164915][T12568] do_syscall_64+0xcf/0x1e0 [ 1234.169638][T12568] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1234.175774][T12568] [ 1234.178186][T12568] Local variable stack created at: [ 1234.183401][T12568] __bpf_prog_run32+0x43/0xe0 [ 1234.188253][T12568] bpf_trace_run2+0x116/0x300 [ 1234.193097][T12568] [ 1234.195515][T12568] CPU: 1 PID: 12568 Comm: syz-executor.3 Not tainted 6.9.0-syzkaller-02707-g614da38e2f7a #0 [ 1234.205778][T12568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 1234.215980][T12568] ===================================================== [ 1234.223011][T12568] Disabling lock debugging due to kernel taint [ 1234.229260][T12568] Kernel panic - not syncing: kmsan.panic set ... [ 1234.235790][T12568] CPU: 1 PID: 12568 Comm: syz-executor.3 Tainted: G B 6.9.0-syzkaller-02707-g614da38e2f7a #0 [ 1234.247514][T12568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 1234.257715][T12568] Call Trace: [ 1234.261104][T12568] [ 1234.264131][T12568] dump_stack_lvl+0x216/0x2d0 [ 1234.269006][T12568] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1234.275082][T12568] dump_stack+0x1e/0x30 [ 1234.279438][T12568] panic+0x4e2/0xcd0 [ 1234.283556][T12568] ? kmsan_get_metadata+0xf1/0x1d0 [ 1234.288856][T12568] kmsan_report+0x2d5/0x2e0 [ 1234.293565][T12568] ? do_syscall_64+0xcf/0x1e0 [ 1234.298451][T12568] ? kmsan_get_metadata+0x146/0x1d0 [ 1234.303825][T12568] ? __msan_warning+0x95/0x120 [ 1234.308723][T12568] ? strnchr+0x90/0xd0 [ 1234.312963][T12568] ? bpf_bprintf_prepare+0x1c2/0x23c0 [ 1234.318550][T12568] ? bpf_trace_printk+0xec/0x3e0 [ 1234.323683][T12568] ? ___bpf_prog_run+0x13fe/0xe0f0 [ 1234.328967][T12568] ? __bpf_prog_run32+0xb2/0xe0 [ 1234.333985][T12568] ? bpf_trace_run2+0x116/0x300 [ 1234.338990][T12568] ? __bpf_trace_tlb_flush+0x2c/0x40 [ 1234.344511][T12568] ? __traceiter_tlb_flush+0x9f/0x160 [ 1234.350098][T12568] ? switch_mm_irqs_off+0x9d2/0x1010 [ 1234.355541][T12568] ? __schedule+0x19a9/0x6bc0 [ 1234.360386][T12568] ? schedule+0x13d/0x380 [ 1234.364873][T12568] ? __futex_wait+0x251/0x540 [ 1234.369770][T12568] ? futex_wait+0xe1/0x360 [ 1234.374374][T12568] ? do_futex+0x341/0x4a0 [ 1234.378875][T12568] ? __se_sys_futex+0x22c/0x6f0 [ 1234.383940][T12568] ? __x64_sys_futex+0x11f/0x1a0 [ 1234.389074][T12568] ? x64_sys_call+0x3206/0x3b50 [ 1234.394129][T12568] ? do_syscall_64+0xcf/0x1e0 [ 1234.399009][T12568] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1234.405301][T12568] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 1234.411598][T12568] ? __msan_memset+0xf5/0x1b0 [ 1234.416441][T12568] ? kmsan_get_metadata+0x146/0x1d0 [ 1234.421819][T12568] ? kmsan_get_metadata+0x146/0x1d0 [ 1234.427201][T12568] ? kmsan_internal_set_shadow_origin+0x66/0xe0 [ 1234.433692][T12568] ? kmsan_get_metadata+0x146/0x1d0 [ 1234.439074][T12568] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1234.445082][T12568] ? _raw_spin_unlock_irqrestore+0x3f/0x60 [ 1234.451117][T12568] ? kmsan_get_metadata+0x146/0x1d0 [ 1234.456489][T12568] ? kmsan_get_metadata+0x146/0x1d0 [ 1234.461887][T12568] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1234.467887][T12568] __msan_warning+0x95/0x120 [ 1234.472656][T12568] strnchr+0x90/0xd0 [ 1234.476790][T12568] bpf_bprintf_prepare+0x1c2/0x23c0 [ 1234.482218][T12568] ? kmsan_get_metadata+0x146/0x1d0 [ 1234.487595][T12568] ? kmsan_internal_memmove_metadata+0x91/0x230 [ 1234.494205][T12568] ? __msan_memcpy+0x108/0x1c0 [ 1234.499205][T12568] bpf_trace_printk+0xec/0x3e0 [ 1234.504192][T12568] ? __bpf_prog_run32+0x5c/0xe0 [ 1234.509230][T12568] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1234.515244][T12568] ___bpf_prog_run+0x13fe/0xe0f0 [ 1234.520389][T12568] ? kmsan_get_metadata+0x146/0x1d0 [ 1234.525824][T12568] __bpf_prog_run32+0xb2/0xe0 [ 1234.530731][T12568] ? kmsan_get_metadata+0x110/0x1d0 [ 1234.536129][T12568] ? __pfx___bpf_prog_run32+0x10/0x10 [ 1234.541686][T12568] bpf_trace_run2+0x116/0x300 [ 1234.546547][T12568] ? kmsan_get_metadata+0x146/0x1d0 [ 1234.551911][T12568] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 1234.557918][T12568] __bpf_trace_tlb_flush+0x2c/0x40 [ 1234.563221][T12568] __traceiter_tlb_flush+0x9f/0x160 [ 1234.568644][T12568] switch_mm_irqs_off+0x9d2/0x1010 [ 1234.573941][T12568] __schedule+0x19a9/0x6bc0 [ 1234.578592][T12568] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1234.584627][T12568] schedule+0x13d/0x380 [ 1234.588961][T12568] __futex_wait+0x251/0x540 [ 1234.593659][T12568] ? __pfx_futex_wake_mark+0x10/0x10 [ 1234.599168][T12568] futex_wait+0xe1/0x360 [ 1234.603598][T12568] ? kmsan_internal_set_shadow_origin+0x66/0xe0 [ 1234.610044][T12568] ? kmsan_get_metadata+0x146/0x1d0 [ 1234.615416][T12568] do_futex+0x341/0x4a0 [ 1234.619745][T12568] __se_sys_futex+0x22c/0x6f0 [ 1234.624593][T12568] ? kmsan_get_metadata+0x146/0x1d0 [ 1234.629966][T12568] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1234.635954][T12568] __x64_sys_futex+0x11f/0x1a0 [ 1234.640957][T12568] x64_sys_call+0x3206/0x3b50 [ 1234.645820][T12568] do_syscall_64+0xcf/0x1e0 [ 1234.650534][T12568] ? clear_bhb_loop+0x25/0x80 [ 1234.655407][T12568] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1234.661501][T12568] RIP: 0033:0x7fe97127cf69 [ 1234.666039][T12568] Code: Unable to access opcode bytes at 0x7fe97127cf3f. [ 1234.673160][T12568] RSP: 002b:00007fe972006178 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1234.681771][T12568] RAX: ffffffffffffffda RBX: 00007fe9713b3f88 RCX: 00007fe97127cf69 [ 1234.689904][T12568] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fe9713b3f88 [ 1234.698021][T12568] RBP: 00007fe9713b3f80 R08: 00007fe9720066c0 R09: 00007fe9720066c0 [ 1234.706161][T12568] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe9713b3f8c [ 1234.714312][T12568] R13: 000000000000000b R14: 00007ffe3871e800 R15: 00007ffe3871e8e8 [ 1234.722457][T12568] [ 1236.220607][T12568] Shutting down cpus with NMI [ 1236.225741][T12568] Kernel Offset: disabled [ 1236.230139][T12568] Rebooting in 86400 seconds..