last executing test programs: 42.022530247s ago: executing program 3: syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x1000840, &(0x7f0000000380)={[{@shortname_lower}, {@iocharset={'iocharset', 0x3d, 'maccyrillic'}}, {@rodir}, {@utf8}, {@fat=@usefree}, {@iocharset={'iocharset', 0x3d, 'cp1251'}}, {@uni_xlateno}, {@fat=@debug}, {@shortname_win95}, {@rodir}, {@fat=@uid}, {@utf8no}, {@shortname_win95}]}, 0x3, 0x350, &(0x7f0000000c00)="$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") mknodat(0xffffffffffffff9c, &(0x7f0000000140)='./file4\x00', 0x0, 0x0) 42.021791078s ago: executing program 1: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0) write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f0000000000)={0x15, 0x110, 0xfa08, {0xffffffffffffffff, 0x0, 0x1c, 0x10, 0x0, @ib={0x1b, 0x0, 0x0, {"8cb40f5059af380d236e9926613e2ecc"}}, @in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, 0x118) 42.020471365s ago: executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="600000000206010200000000000000000000000014000780050014000700000008001240000500000900020073797a3200000000050001000700000011000300686173683a6e65742c6e6574000000000500050002000000050004"], 0x60}}, 0x0) sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB="28000000030601010000000000000000000000000900020073797a32000000000500010007"], 0x28}}, 0x0) 42.020271097s ago: executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(r0, 0x10e, 0xc, &(0x7f0000000040)=0x7f, 0x4) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_getaddrlabel={0x38, 0x1a, 0x1, 0x0, 0x0, {0x2, 0x0, 0x20}, [@IFAL_ADDRESS={0x14, 0x1, @mcast1}, @IFAL_LABEL={0x8}]}, 0x38}}, 0x0) 42.020053071s ago: executing program 1: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70) bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r0, r1, 0x2, 0x2}, 0x10) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r2, r3, 0x2, 0x2}, 0x10) socketpair(0xa, 0x1, 0x0, &(0x7f0000002d00)) 42.017679354s ago: executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a50000000060a0b0400080000000000000200000024000480200081800700010063740000140002800800014000000000080002400000001c0900010073797a30000000000900020073797a32"], 0x78}}, 0x0) 42.009512272s ago: executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)=@newlink={0x34, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_VFINFO_LIST={0x14, 0x16, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@IFLA_VF_LINK_STATE={0xc}]}]}]}, 0x34}}, 0x0) 42.005535795s ago: executing program 3: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB], &(0x7f00000000c0)='GPL\x00'}, 0x90) ioctl$VIDIOC_S_HW_FREQ_SEEK(0xffffffffffffffff, 0x40305652, 0x0) r0 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(0xffffffffffffffff, 0x84, 0x7d, 0x0, 0x0) syz_genetlink_get_family_id$smc(0x0, 0xffffffffffffffff) syz_emit_ethernet(0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x101c08a, &(0x7f0000000100)={[{@shortname_mixed}, {@iocharset={'iocharset', 0x3d, 'iso8859-15'}}, {@uni_xlateno}, {@uni_xlate}, {@uni_xlateno}, {@utf8no}, {@utf8no}, {@shortname_mixed}, {@utf8}, {@fat=@check_strict}, {@shortname_mixed}, {@utf8no}, {@fat=@discard}, {@fat=@codepage={'codepage', 0x3d, '864'}}, {@fat=@umask={'umask', 0x3d, 0x7}}, {@iocharset={'iocharset', 0x3d, 'iso8859-2'}}, {@fat=@dmask={'dmask', 0x3d, 0x8000}}]}, 0x6, 0x2cb, &(0x7f0000000ec0)="$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") r2 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) getdents(0xffffffffffffffff, 0x0, 0x0) getdents(r2, &(0x7f0000001fc0)=""/184, 0xb8) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f0000000140)={0x0, 0xb, "4185d77d44595060d5ee64"}, &(0x7f0000000180)=0x13) setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(0xffffffffffffffff, 0x84, 0x23, &(0x7f0000000200)={r3, 0x3f}, 0x8) getdents(0xffffffffffffffff, &(0x7f0000000680)=""/247, 0xf7) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}) syz_emit_vhci(&(0x7f0000005cc0)=@HCI_EVENT_PKT={0x4, @hci_ev_link_key_notify={{0x18, 0x17}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, "fb3b5b05bbe59a58f71ce2300d7af754", 0x6}}}, 0x1a) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) 41.682025042s ago: executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) ftruncate(0xffffffffffffffff, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0) syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0xa, [@struct={0x8, 0x1, 0x0, 0xf, 0x0, 0xffffffff, [{0x7}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e]}}, 0x0, 0x3a, 0x0, 0x6}, 0x20) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, 0x0, 0x0) r1 = openat$binder_debug(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0) r2 = epoll_create1(0x0) epoll_wait(r2, &(0x7f0000000080)=[{}], 0x1, 0x100) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder1\x00', 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f00000000c0)={0x10000001}) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448f0, 0x0) read(r1, &(0x7f0000000580)=""/119, 0x77) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_NEW_INTERFACE(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x44, r6, 0x415, 0x0, 0x0, {{}, {@void, @val={0x8, 0x3, r7}, @val={0xc}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'nicvf0\x00'}, @NL80211_ATTR_IFTYPE={0x8}]}, 0x44}}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) 41.155076545s ago: executing program 3: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x8002, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000180)={'\x00', 0x846512678b3a18b2}) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) ioctl$SIOCSIFHWADDR(r0, 0x8924, &(0x7f0000001900)={'veth1_vlan\x00', @local}) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz1\x00', 0x200002, 0x0) r3 = openat$cgroup_freezer_state(r1, &(0x7f0000000140), 0x2, 0x0) write$cgroup_freezer_state(r3, &(0x7f0000000040)='FROZEN\x00', 0x7) read(r3, &(0x7f00000000c0)=""/29, 0x1d) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x4, 0x1, 0x301}, 0x14}}, 0x0) recvmmsg(r4, &(0x7f0000000c80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) ioctl$BTRFS_IOC_BALANCE_CTL(0xffffffffffffffff, 0x40049421, 0x2) r5 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TCSETSF2(r5, 0x4b4c, &(0x7f00000000c0)={0xc7b, 0x0, 0x0, 0x0, 0x0, "99ea94b5360f4a5ece030668900f9e0d81d19c"}) r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000580)=ANY=[@ANYRESOCT, @ANYRESDEC=r1, @ANYBLOB="eecaa77c375902e05babc063c7a750c596c5c46860af6c1c573251082004151b3d20e00a60ae8e6c7a8cf511c792fe6435cd5c0479ccf9fd24d5d4dc7399ad917c0d14dddd083650949cbb1737356975d4c042e8450d771a0e56ad66fcd5a2c12c0e8fcca8bef392bc187b4fb1fc130d1da56142bf2c4e72de89d3f945ac16b63021bc23d1e692c4226fb4195dc572e1b8b0d016eb0835a0639509f0630030c252bc13035cdd56baba29e8f7317ab2d624ceec761aff4270a4114046b21a39c24b0a58439aaa10fb2ec70605dbef65e1922b7d992aef26104ef1a9509ef0939f73cae7e8ef00", @ANYRES8=r0, @ANYRES32=r2], 0x0, 0x26, 0x0, 0x1, 0x198}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f0000001340)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x1f6, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, 0x0, r6, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000200), 0x1}, 0x6d) r7 = openat$cgroup_procs(r1, &(0x7f00000001c0)='tasks\x00', 0x2, 0x0) write$cgroup_pid(r7, &(0x7f0000000240), 0x12) socket(0x1c, 0x800, 0x40000009) r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000006ac0)='cpuacct.stat\x00', 0x275a, 0x0) write$binfmt_script(r8, &(0x7f0000000180), 0xb) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r8, 0x0) write$cgroup_freezer_state(r3, &(0x7f0000000280)='FROZEN\x00', 0x7) 33.68268758s ago: executing program 4: r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) r1 = eventfd(0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000013c0)=""/89, &(0x7f0000000480)=""/74}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000003880)) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1) syz_usb_connect(0x0, 0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="1201000014da2108ab12a390eb1e000000010902240001b30000040904410017ff5d810009050f1f01040000000905830300b3"], 0x0) syz_usb_connect(0x0, 0x24, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x9e, 0x17, 0x36, 0x0, 0x17ef, 0x721e, 0xde06, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6}}]}}]}}, 0x0) 31.484971207s ago: executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)=@newlink={0x34, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_VFINFO_LIST={0x14, 0x16, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@IFLA_VF_LINK_STATE={0xc}]}]}]}, 0x34}}, 0x0) 31.27742019s ago: executing program 0: r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$RFKILL_IOCTL_NOINPUT(r0, 0x5201) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$RFKILL_IOCTL_NOINPUT(r1, 0x5201) 31.15243215s ago: executing program 0: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct={0x0, 0x0, 0x0, 0x10, 0x1}]}}, 0x0, 0x26}, 0x20) 31.048559695s ago: executing program 0: openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, 0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1810714, &(0x7f00000000c0)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x200000}}, {@user_xattr}, {@grpjquota_path}, {@sysvgroups}, {@prjquota}, {@usrjquota}, {@usrjquota}, {@min_batch_time={'min_batch_time', 0x3d, 0x409e}}, {@nodiscard}]}, 0xff, 0x468, &(0x7f0000000780)="$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") openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000200)={0x71e5b314}) socket$unix(0x1, 0x0, 0x0) bind$unix(0xffffffffffffffff, 0x0, 0x0) bind$unix(0xffffffffffffffff, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r0}, 0x10) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@bloom_filter={0x1e, 0x0, 0x7fff8, 0x8, 0x0, 0x1}, 0x48) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(&(0x7f0000000340)='./file0/../file0\x00', &(0x7f0000000300)='./file0/file0\x00', 0x0, 0x89101a, 0x0) mount$bpf(0x0, &(0x7f0000000000)='./file0/file0\x00', 0x0, 0x20000, 0x0) mount$bind(&(0x7f0000000080)='./file0/file0\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x2187817, 0x0) socket(0x840000000002, 0x3, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000000280)={r1, 0x0, &(0x7f0000000200)=""/76}, 0x20) 30.853211596s ago: executing program 2: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)) bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0x5, 0x5, 0x2, 0x4}, 0x48) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0xc, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000000000008500000029000000850000000800000095"], &(0x7f0000000200)='GPL\x00', 0x3, 0x1000, &(0x7f0000000240)=""/4096}, 0x90) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_serviced_recursive\x00', 0x26e1, 0x2c00) openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x0, 0x0, 0x8, 0x8}, 0x48) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000001280)={0xffffffffffffffff, 0xffffffffffffffff}) close(r1) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000000)={r3}, 0x8) ioctl$SIOCSIFHWADDR(r2, 0x89f0, &(0x7f0000000900)={'bridge0\x00', @random='\x00\x00\x00 \x00'}) 30.751948533s ago: executing program 4: bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000240), 0x10000, 0x0) mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f000000b500), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000040)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_TID_CONFIG(r1, &(0x7f000000d040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)={0x3c, r2, 0x8de13c6b70ae92c3, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x20, 0x11d, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xd9}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}]}]}]}, 0x3c}}, 0x0) r5 = openat$cgroup_subtree(r0, &(0x7f00000001c0), 0x2, 0x0) write$cgroup_subtree(r5, &(0x7f0000000100)={[{0x2d, 'pids'}]}, 0x6) 30.492486893s ago: executing program 2: unshare(0x60600) r0 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0xb, &(0x7f0000001800), 0x1c) 30.460059478s ago: executing program 4: r0 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0) ioctl$VIDIOC_SUBSCRIBE_EVENT(r0, 0x4020565a, &(0x7f0000000080)={0x2}) 30.441728054s ago: executing program 0: r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000080)={0x19, 0x0, 0x0}) r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) capset(&(0x7f00000005c0)={0x19980330}, &(0x7f0000000480)) ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000200)={0x15, 0x0, 0x0}) setrlimit(0x8, &(0x7f0000000080)) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0) ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f00000000c0)={0x28, 0x7, r3, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000}) ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f00000001c0)={0x48, 0x5, r1, 0x0, 0xffffffffffffffff, 0x1}) ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r2, 0x3ba0, &(0x7f0000000100)={0x48, 0x7, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1de6bc}) 30.335080426s ago: executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x200000000000011, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x74, r2}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_MAX_AGE={0x8}]}}}]}, 0x3c}}, 0x0) 30.311692435s ago: executing program 2: r0 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x100b002, 0x1000}, 0x20) 30.199011898s ago: executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=@ipv6_newaddr={0x11, 0x14, 0x121, 0x0, 0x0, {0x23}}, 0x18}}, 0x0) 30.059802808s ago: executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001c40)=@newtaction={0xf0, 0x30, 0x1, 0x0, 0x0, {}, [{0xdc, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c}]]}, {0x4}, {0xc}, {0xc}}}, @m_police={0x6c, 0x2, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x1}}]]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xf0}}, 0x0) 30.028066345s ago: executing program 0: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct={0x0, 0x0, 0x0, 0x10, 0x1}]}}, 0x0, 0x26}, 0x20) 30.02330093s ago: executing program 2: bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000240), 0x10000, 0x0) mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f000000b500), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000040)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_TID_CONFIG(r1, &(0x7f000000d040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)={0x3c, r2, 0x8de13c6b70ae92c3, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x20, 0x11d, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xd9}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}]}]}]}, 0x3c}}, 0x0) r5 = openat$cgroup_subtree(r0, &(0x7f00000001c0), 0x2, 0x0) write$cgroup_subtree(r5, &(0x7f0000000100)={[{0x2d, 'pids'}]}, 0x6) 29.826043061s ago: executing program 0: bpf$MAP_CREATE(0x0, &(0x7f0000000000), 0x48) r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000001c0)={0x1, &(0x7f00000000c0)=[{0x16}]}) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) ioctl$BTRFS_IOC_SCRUB_CANCEL(r0, 0xc0182101, 0x20000000) 11.081035976s ago: executing program 3: recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000100)) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x1, 0x803, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000002a00)={&(0x7f0000000440)=@newlink={0x74, 0x10, 0x421, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x44, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x34, 0x2, 0x0, 0x1, [@IFLA_VLAN_EGRESS_QOS={0x28, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x1}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x51}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x1}}]}, @IFLA_VLAN_ID={0x6}]}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8}]}, 0x74}, 0x1, 0x0, 0x0, 0x48140}, 0x0) 33.794855ms ago: executing program 4: r0 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0) r1 = syz_open_dev$dri(&(0x7f00000008c0), 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000140)={0x3ff, 0xa, 0xb5, 0x0, 0x0}) ioctl$DRM_IOCTL_MODE_DESTROY_DUMB(r1, 0xc00464b4, &(0x7f0000000180)={r2}) 0s ago: executing program 2: r0 = syz_open_dev$video4linux(&(0x7f0000000400), 0x800000000401, 0x0) ioctl$VIDIOC_G_EXT_CTRLS(r0, 0xc040564a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}) kernel console output (not intermixed with test programs): op3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 399.411863][ T9226] EXT4-fs (loop4): 1 truncate cleaned up [ 399.465612][ T9226] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 399.500041][ T9245] loop1: detected capacity change from 0 to 256 [ 399.537271][ T9247] netlink: 199836 bytes leftover after parsing attributes in process `syz-executor.3'. [ 399.562171][ T9245] MINIX-fs: mounting file system with errors, running fsck is recommended [ 399.592257][ T8212] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 399.653028][ T9245] MINIX-fs warning: remounting fs with errors, running fsck is recommended [ 399.669968][ T9245] MINIX-fs warning: remounting unchecked fs, running fsck is recommended [ 399.681803][ T9249] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.0'. [ 400.019710][ T9256] sctp: [Deprecated]: syz-executor.1 (pid 9256) Use of int in max_burst socket option deprecated. [ 400.019710][ T9256] Use struct sctp_assoc_value instead [ 400.815588][ T8300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 400.869944][ T9260] loop0: detected capacity change from 0 to 1024 [ 400.992948][ T9260] hfsplus: extend alloc file! (8192,65536,366) [ 401.095939][ T9267] loop2: detected capacity change from 0 to 1024 [ 401.125292][ T9267] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 401.281407][ T9267] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:482: comm syz-executor.2: Invalid block bitmap block 0 in block_group 0 [ 401.352795][ T9267] Quota error (device loop2): write_blk: dquota write failed [ 401.360913][ T9267] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 401.442080][ T9267] EXT4-fs error (device loop2): ext4_acquire_dquot:6858: comm syz-executor.2: Failed to acquire dquot type 0 [ 401.497185][ T9267] EXT4-fs error (device loop2): ext4_free_blocks:6589: comm syz-executor.2: Freeing blocks not in datazone - block = 0, count = 4096 [ 401.541535][ T9267] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz-executor.2: Invalid inode bitmap blk 0 in block_group 0 [ 401.568345][ T949] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-8 [ 401.591030][ T949] EXT4-fs error (device loop2): ext4_release_dquot:6881: comm kworker/u8:6: Failed to release dquot type 0 [ 401.610935][ T9267] EXT4-fs error (device loop2) in ext4_free_inode:362: Corrupt filesystem [ 401.636347][ T9267] EXT4-fs (loop2): 1 orphan inode deleted [ 401.658410][ T9267] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 401.712943][ T9289] netlink: 199836 bytes leftover after parsing attributes in process `syz-executor.4'. [ 401.747713][ T9290] loop0: detected capacity change from 0 to 256 [ 401.783434][ T9290] MINIX-fs: mounting file system with errors, running fsck is recommended [ 401.844190][ T9290] MINIX-fs warning: remounting fs with errors, running fsck is recommended [ 401.860289][ T9295] netlink: 'syz-executor.1': attribute type 4 has an invalid length. [ 401.864189][ T9290] MINIX-fs warning: remounting unchecked fs, running fsck is recommended [ 401.937074][ T8212] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 401.959737][ T35] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-8 [ 401.987294][ T35] EXT4-fs error (device loop2): ext4_release_dquot:6881: comm kworker/u8:2: Failed to release dquot type 0 [ 402.021288][ T9286] loop3: detected capacity change from 0 to 512 [ 402.058962][ T9286] EXT4-fs error (device loop3): mb_free_blocks:1945: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt. [ 402.155932][ T9286] EXT4-fs (loop3): 1 truncate cleaned up [ 402.179194][ T9286] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 402.377742][ T9308] sctp: [Deprecated]: syz-executor.2 (pid 9308) Use of int in max_burst socket option deprecated. [ 402.377742][ T9308] Use struct sctp_assoc_value instead [ 403.208602][ T9296] loop4: detected capacity change from 0 to 512 [ 403.349986][ T9296] EXT4-fs error (device loop4): mb_free_blocks:1945: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt. [ 403.369111][ T8917] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 403.413538][ T9296] EXT4-fs (loop4): 1 truncate cleaned up [ 403.420266][ T9296] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 403.818363][ T8300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 404.125284][ T9349] openvswitch: netlink: Missing key (keys=20040, expected=200000) [ 404.262671][ T9343] loop3: detected capacity change from 0 to 1024 [ 404.292310][ T9343] hfsplus: extend alloc file! (8192,65536,366) [ 404.515409][ T9346] loop1: detected capacity change from 0 to 512 [ 404.593270][ T9346] EXT4-fs error (device loop1): mb_free_blocks:1945: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt. [ 404.630257][ T9342] loop0: detected capacity change from 0 to 512 [ 404.645242][ T9346] EXT4-fs (loop1): 1 truncate cleaned up [ 404.680850][ T9342] EXT4-fs error (device loop0): mb_free_blocks:1945: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt. [ 404.702011][ T9346] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 404.734186][ T9342] EXT4-fs (loop0): 1 truncate cleaned up [ 404.766271][ T9342] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 405.041721][ T8874] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 405.099252][ T8829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 405.126668][ T29] audit: type=1400 audit(1717198335.650:1269): avc: denied { getopt } for pid=9384 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 405.269529][ T9375] loop3: detected capacity change from 0 to 512 [ 405.302797][ T9392] openvswitch: netlink: Missing key (keys=20040, expected=200000) [ 405.315684][ T9375] EXT4-fs error (device loop3): mb_free_blocks:1945: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt. [ 405.350604][ T9375] EXT4-fs (loop3): 1 truncate cleaned up [ 405.443362][ T9395] loop2: detected capacity change from 0 to 4096 [ 405.509688][ T9395] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 405.534224][ T9375] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 405.649764][ T9395] ntfs3: loop2: failed to convert "c46c" to cp936 [ 406.053396][ T5211] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 406.623879][ T9405] netlink: 199836 bytes leftover after parsing attributes in process `syz-executor.4'. [ 406.668983][ T8917] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 406.728597][ T9407] loop2: detected capacity change from 0 to 2048 [ 406.736410][ T5211] usb 2-1: New USB device found, idVendor=05ac, idProduct=0290, bcdDevice=dc.1b [ 406.755054][ T5211] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 406.759654][ T9407] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 406.787740][ T5211] usb 2-1: config 0 descriptor?? [ 406.808996][ T29] audit: type=1800 audit(1717198337.330:1270): pid=9407 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=1367 res=0 errno=0 [ 406.831418][ C1] vkms_vblank_simulate: vblank timer overrun [ 406.857707][ T5211] input: bcm5974 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input16 [ 407.079764][ T2937] usb 2-1: USB disconnect, device number 5 [ 407.248860][ T9425] loop0: detected capacity change from 0 to 1024 [ 407.294298][ T9425] hfsplus: extend alloc file! (8192,65536,366) [ 407.321286][ T9413] loop3: detected capacity change from 0 to 512 [ 407.323972][ T9411] loop4: detected capacity change from 0 to 512 [ 407.360814][ T9413] EXT4-fs error (device loop3): mb_free_blocks:1945: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt. [ 407.366583][ T9430] loop2: detected capacity change from 0 to 4096 [ 407.382847][ T9413] EXT4-fs (loop3): 1 truncate cleaned up [ 407.391445][ T9413] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 407.401207][ T9411] EXT4-fs error (device loop4): mb_free_blocks:1945: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt. [ 407.448441][ T9430] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 407.448515][ T9411] EXT4-fs (loop4): 1 truncate cleaned up [ 407.488583][ T9411] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 407.545898][ T9430] ntfs3: loop2: failed to convert "c46c" to cp936 [ 407.774748][ T29] audit: type=1326 audit(1717198338.290:1271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9439 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f007cee9 code=0x7ffc0000 [ 407.852339][ T29] audit: type=1326 audit(1717198338.300:1272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9439 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f007cee9 code=0x7ffc0000 [ 407.908350][ T29] audit: type=1326 audit(1717198338.330:1273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9439 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=301 compat=0 ip=0x7f31f007cee9 code=0x7ffc0000 [ 407.947245][ T29] audit: type=1326 audit(1717198338.330:1274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9439 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f007cee9 code=0x7ffc0000 [ 407.971460][ T29] audit: type=1326 audit(1717198338.330:1275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9439 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f007cee9 code=0x7ffc0000 [ 407.991278][ T8300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 408.002002][ T29] audit: type=1400 audit(1717198338.340:1276): avc: denied { execute } for pid=9441 comm="syz-executor.2" path=2F6D656D66643AF365099F9138C07901631F6E7578202864656C6574656429 dev="tmpfs" ino=1226 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 408.161562][ T8917] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 408.288524][ T9450] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 408.316980][ T9450] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.1'. [ 408.386476][ T9453] loop3: detected capacity change from 0 to 64 [ 408.759587][ T9463] loop4: detected capacity change from 0 to 1024 [ 408.845344][ T9463] hfsplus: extend alloc file! (8192,65536,366) [ 408.883987][ T35] kworker/u8:2: attempt to access beyond end of device [ 408.883987][ T35] loop3: rw=1, sector=107, nr_sectors = 1 limit=64 [ 408.902192][ T29] audit: type=1326 audit(1717198339.420:1277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9469 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a60c7cee9 code=0x7ffc0000 [ 408.952114][ T29] audit: type=1326 audit(1717198339.420:1278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9469 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a60c7cee9 code=0x7ffc0000 [ 410.216751][ T9485] loop0: detected capacity change from 0 to 64 [ 410.360105][ T9483] loop1: detected capacity change from 0 to 1024 [ 410.391421][ T9483] hfsplus: extend alloc file! (8192,65536,366) [ 410.410043][ T29] kauditd_printk_skb: 3 callbacks suppressed [ 410.410063][ T29] audit: type=1400 audit(1717198340.930:1282): avc: denied { create } for pid=9489 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 410.480529][ T29] audit: type=1400 audit(1717198340.990:1283): avc: denied { setopt } for pid=9489 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 410.492478][ T9490] xt_hashlimit: invalid rate [ 410.605786][ T9494] xt_hashlimit: invalid rate [ 410.626796][ T9490] loop4: detected capacity change from 0 to 64 [ 410.641573][ T9494] loop2: detected capacity change from 0 to 64 [ 410.775683][ T9490] xt_CT: You must specify a L4 protocol and not use inversions on it [ 410.776804][ T9494] xt_CT: You must specify a L4 protocol and not use inversions on it [ 410.848582][ T9502] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. [ 411.010291][ T9504] loop1: detected capacity change from 0 to 2048 [ 411.101078][ T9506] loop0: detected capacity change from 0 to 256 [ 411.119281][ T9506] FAT-fs (loop0): Unrecognized mount option "utf8=1" or missing value [ 411.268698][ T9504] loop1: p2 < > [ 411.274131][ T9506] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'. [ 412.186190][ T9522] loop3: detected capacity change from 0 to 64 [ 412.675372][ T9534] xt_hashlimit: invalid rate [ 412.705093][ T9534] loop1: detected capacity change from 0 to 64 [ 412.729172][ T9541] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. [ 412.833769][ T9534] xt_CT: You must specify a L4 protocol and not use inversions on it [ 413.022180][ T5163] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 413.451480][ T5163] usb 3-1: New USB device found, idVendor=05ac, idProduct=0290, bcdDevice=dc.1b [ 413.466986][ T5163] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 413.494625][ T5163] usb 3-1: config 0 descriptor?? [ 414.293430][ T5163] input: bcm5974 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input17 [ 414.310067][ T5163] usb 3-1: USB disconnect, device number 5 [ 414.639102][ T9576] netlink: 64 bytes leftover after parsing attributes in process `syz-executor.0'. [ 414.757553][ T9580] xt_hashlimit: invalid rate [ 414.774475][ T9580] loop0: detected capacity change from 0 to 64 [ 414.802329][ T9563] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 414.817977][ T9580] xt_CT: You must specify a L4 protocol and not use inversions on it [ 414.852786][ T9569] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 414.867342][ T9563] kvm: pic: non byte read [ 414.895285][ T9563] kvm: pic: level sensitive irq not supported [ 414.898163][ T9563] kvm: pic: non byte read [ 414.934706][ T9563] kvm: pic: level sensitive irq not supported [ 414.935726][ T9563] kvm: pic: non byte read [ 414.940225][ T9569] kvm: pic: non byte read [ 414.957583][ T9563] kvm: pic: level sensitive irq not supported [ 414.957721][ T9563] kvm: pic: non byte read [ 414.961866][ T9569] kvm: pic: level sensitive irq not supported [ 414.988777][ T9569] kvm: pic: non byte read [ 415.032541][ T9569] kvm: pic: level sensitive irq not supported [ 415.032666][ T9569] kvm: pic: non byte read [ 415.061175][ T9585] loop2: detected capacity change from 0 to 8 [ 415.072513][ T9569] kvm: pic: level sensitive irq not supported [ 415.072606][ T9569] kvm: pic: non byte read [ 415.630084][ T9596] loop0: detected capacity change from 0 to 8192 [ 415.694766][ T9596] loop0: p1 p2[DM] p4 [ 415.701044][ T9596] loop0: p1 size 196608 extends beyond EOD, truncated [ 415.731456][ T9596] loop0: p2 start 4292936063 is beyond EOD, truncated [ 415.752167][ T5163] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 415.755765][ T9596] loop0: p4 size 50331648 extends beyond EOD, truncated [ 415.952092][ T5163] usb 4-1: Using ep0 maxpacket: 8 [ 415.984602][ T5163] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 416.024789][ T5163] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 416.058678][ T5163] usb 4-1: New USB device found, idVendor=17ef, idProduct=6047, bcdDevice= 0.00 [ 416.098098][ T5163] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 416.127727][ T5163] usb 4-1: config 0 descriptor?? [ 416.413347][ T9613] loop0: detected capacity change from 0 to 8 [ 416.472469][ T5164] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 416.606931][ T5163] lenovo 0003:17EF:6047.0006: hidraw0: USB HID v0.00 Device [HID 17ef:6047] on usb-dummy_hcd.3-1/input0 [ 416.695148][ T5164] usb 2-1: New USB device found, idVendor=05ac, idProduct=0290, bcdDevice=dc.1b [ 416.713926][ T5164] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 416.714093][ T9623] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'. [ 416.743818][ T5164] usb 2-1: config 0 descriptor?? [ 416.765384][ T5164] input: bcm5974 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input18 [ 416.777902][ T9625] loop4: detected capacity change from 0 to 512 [ 416.848412][ T5164] usb 4-1: USB disconnect, device number 10 [ 417.046141][ T9625] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 417.078604][ T5163] usb 2-1: USB disconnect, device number 6 [ 417.082458][ T9625] ext4 filesystem being mounted at /root/syzkaller-testdir1475229576/syzkaller.noTvtZ/137/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 418.060787][ T9635] netlink: 'syz-executor.2': attribute type 27 has an invalid length. [ 418.127007][ T8300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 418.258828][ T9639] netlink: 188 bytes leftover after parsing attributes in process `syz-executor.0'. [ 418.358425][ T9639] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 418.402068][ T29] audit: type=1400 audit(1717198348.920:1284): avc: denied { map } for pid=9640 comm="syz-executor.4" path="/dev/net/tun" dev="devtmpfs" ino=693 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tun_tap_device_t tclass=chr_file permissive=1 [ 418.443662][ T9639] loop0: detected capacity change from 0 to 1024 [ 418.483700][ T9639] EXT4-fs (loop0): Can't support bigalloc feature without extents feature [ 418.483700][ T9639] [ 418.521840][ T9639] EXT4-fs (loop0): couldn't mount as ext3 due to feature incompatibilities [ 418.538146][ T9643] loop3: detected capacity change from 0 to 512 [ 418.582655][ T9645] openvswitch: netlink: Missing key (keys=100000040, expected=2000) [ 418.607389][ T9643] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 418.640645][ T9643] ext4 filesystem being mounted at /root/syzkaller-testdir479411084/syzkaller.GSczJT/25/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 418.733256][ T9635] bridge0: port 2(bridge_slave_1) entered disabled state [ 418.744518][ T9635] bridge0: port 1(bridge_slave_0) entered disabled state [ 418.771561][ T9655] loop1: detected capacity change from 0 to 8 [ 418.792716][ T29] audit: type=1400 audit(1717198349.320:1285): avc: denied { search } for pid=9638 comm="syz-executor.0" name="/" dev="configfs" ino=61 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 418.863040][ T29] audit: type=1400 audit(1717198349.370:1286): avc: denied { write } for pid=9638 comm="syz-executor.0" name="/" dev="configfs" ino=61 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 418.937189][ T9643] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 418.942289][ T29] audit: type=1400 audit(1717198349.390:1287): avc: denied { add_name } for pid=9638 comm="syz-executor.0" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 419.000697][ T29] audit: type=1400 audit(1717198349.390:1288): avc: denied { create } for pid=9638 comm="syz-executor.0" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:configfs_t tclass=file permissive=1 [ 419.483300][ T9635] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 419.546326][ T9635] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 419.562181][ T9670] loop1: detected capacity change from 0 to 512 [ 419.640092][ T9670] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 419.714690][ T9670] ext4 filesystem being mounted at /root/syzkaller-testdir1445677531/syzkaller.5rbYUs/48/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 419.813170][ T8917] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 419.913174][ T8829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 420.164394][ T29] audit: type=1400 audit(1717198350.680:1289): avc: denied { ioctl } for pid=9681 comm="syz-executor.1" path="socket:[39786]" dev="sockfs" ino=39786 ioctlcmd=0x7437 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 420.247935][ T9635] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 420.268720][ T9635] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 420.302129][ T9635] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 420.322045][ T9635] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 420.359105][ T9687] openvswitch: netlink: Missing key (keys=100000040, expected=2000) [ 420.530004][ T9692] loop3: detected capacity change from 0 to 8 [ 420.981809][ T9705] loop0: detected capacity change from 0 to 512 [ 421.039588][ T9707] loop4: detected capacity change from 0 to 512 [ 421.041576][ T9705] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 421.119748][ T9707] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 421.132506][ T9705] ext4 filesystem being mounted at /root/syzkaller-testdir866419288/syzkaller.IKTkqZ/52/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 421.147599][ T9707] ext4 filesystem being mounted at /root/syzkaller-testdir1475229576/syzkaller.noTvtZ/140/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 421.237183][ T9720] Invalid/unusable pipe [ 421.246966][ T9723] SET target dimension over the limit! [ 421.314505][ T9705] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 421.332057][ T29] audit: type=1400 audit(1717198351.840:1290): avc: denied { module_request } for pid=9725 comm="syz-executor.1" kmod="net-pf-16-proto-16-family-" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 421.378059][ T8300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 421.691604][ T9741] netlink: 'syz-executor.3': attribute type 27 has an invalid length. [ 421.783087][ T9742] loop1: detected capacity change from 0 to 512 [ 422.144623][ T8874] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 422.332696][ T9741] bridge0: port 2(bridge_slave_1) entered disabled state [ 422.340964][ T9741] bridge0: port 1(bridge_slave_0) entered disabled state [ 422.509143][ T9755] loop1: detected capacity change from 0 to 1024 [ 422.538511][ T9755] EXT4-fs: Ignoring removed orlov option [ 422.560339][ T9755] EXT4-fs (loop1): Test dummy encryption mode enabled [ 422.599055][ T9755] EXT4-fs (loop1): stripe (7) is not aligned with cluster size (16), stripe is disabled [ 422.707331][ T9755] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 422.985125][ T8829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 423.261051][ T9762] Invalid/unusable pipe [ 423.405645][ T9741] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 423.504611][ T9741] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 423.506020][ T9770] loop4: detected capacity change from 0 to 8 [ 423.533059][ T29] audit: type=1400 audit(1717198354.060:1291): avc: denied { mounton } for pid=9763 comm="syz-executor.4" path="/root/syzkaller-testdir1475229576/syzkaller.noTvtZ/143/file1/file0/bus" dev="autofs" ino=40356 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=dir permissive=1 [ 423.819707][ T9777] loop2: detected capacity change from 0 to 512 [ 424.042788][ T9741] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 424.051746][ T9741] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 424.092292][ T9741] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 424.116682][ T9741] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 424.776444][ T949] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 424.792243][ T29] audit: type=1400 audit(1717198355.310:1292): avc: denied { accept } for pid=9792 comm="syz-executor.0" lport=47183 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 424.887561][ T29] audit: type=1400 audit(1717198355.320:1293): avc: denied { write } for pid=9792 comm="syz-executor.0" path="socket:[41016]" dev="sockfs" ino=41016 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1 [ 424.913633][ T9796] loop3: detected capacity change from 0 to 8 [ 424.984958][ T29] audit: type=1400 audit(1717198355.320:1294): avc: denied { setopt } for pid=9792 comm="syz-executor.0" lport=47183 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1 [ 425.157746][ T9802] loop0: detected capacity change from 0 to 128 [ 425.178827][ T949] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 425.259187][ T9802] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 425.296940][ T9802] ext4 filesystem being mounted at /root/syzkaller-testdir866419288/syzkaller.IKTkqZ/60/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 425.476067][ T949] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 425.633774][ T8874] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 425.806850][ T949] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 426.156443][ T5117] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 426.177245][ T5117] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 426.188635][ T5117] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 426.219325][ T5117] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 426.239144][ T5117] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 426.248635][ T5117] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 426.249718][ T949] bridge_slave_1: left allmulticast mode [ 426.348131][ T949] bridge_slave_1: left promiscuous mode [ 426.354236][ T949] bridge0: port 2(bridge_slave_1) entered disabled state [ 426.378629][ T949] bridge_slave_0: left allmulticast mode [ 426.424686][ T949] bridge_slave_0: left promiscuous mode [ 426.430573][ T949] bridge0: port 1(bridge_slave_0) entered disabled state [ 426.846839][ T5117] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 426.863861][ T5117] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 426.875792][ T5117] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 426.893497][ T5117] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 426.901596][ T5117] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 426.909509][ T5117] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 427.996015][ T9841] loop1: detected capacity change from 0 to 128 [ 428.061161][ T9841] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 428.083000][ T9841] ext4 filesystem being mounted at /root/syzkaller-testdir1445677531/syzkaller.5rbYUs/65/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 428.261271][ T8829] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 428.372442][ T5117] Bluetooth: hci0: command tx timeout [ 428.696817][ T949] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 428.718836][ T949] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 428.736982][ T949] bond0 (unregistering): Released all slaves [ 428.770418][ T9834] netlink: 'syz-executor.0': attribute type 27 has an invalid length. [ 428.932172][ T5117] Bluetooth: hci3: command tx timeout [ 429.119800][ T9834] bridge0: port 2(bridge_slave_1) entered disabled state [ 429.127921][ T9834] bridge0: port 1(bridge_slave_0) entered disabled state [ 429.544933][ T9834] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 429.608955][ T9834] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 429.900760][ T9834] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 429.922121][ T9834] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 429.941941][ T9834] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 429.962006][ T9834] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 430.261189][ T9868] loop1: detected capacity change from 0 to 16 [ 430.289328][ T9868] erofs: (device loop1): mounted with root inode @ nid 36. [ 430.454511][ T5117] Bluetooth: hci0: command tx timeout [ 430.521523][ T9874] loop2: detected capacity change from 0 to 128 [ 430.605904][ T9874] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 430.672772][ T949] hsr_slave_0: left promiscuous mode [ 430.682186][ T9874] ext4 filesystem being mounted at /root/syzkaller-testdir1196094827/syzkaller.D18NTo/144/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 430.755423][ T949] hsr_slave_1: left promiscuous mode [ 430.762406][ T949] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 430.770769][ T949] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 430.797476][ T949] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 430.832562][ T949] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 430.909485][ T9872] syz-executor.1: attempt to access beyond end of device [ 430.909485][ T9872] loop1: rw=0, sector=1049256, nr_sectors = 8 limit=16 [ 430.920345][ T949] veth1_macvtap: left promiscuous mode [ 430.966581][ T949] veth0_macvtap: left promiscuous mode [ 430.982740][ T949] veth1_vlan: left promiscuous mode [ 430.989417][ T9883] trusted_key: syz-executor.0 sent an empty control message without MSG_MORE. [ 430.992208][ T949] veth0_vlan: left promiscuous mode [ 431.012549][ T5117] Bluetooth: hci3: command tx timeout [ 431.033977][ T9875] syz-executor.1: attempt to access beyond end of device [ 431.033977][ T9875] loop1: rw=0, sector=1049256, nr_sectors = 8 limit=16 [ 431.042128][ T8212] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 431.539305][ T9896] loop1: detected capacity change from 0 to 256 [ 431.594670][ T29] audit: type=1400 audit(1717198362.120:1295): avc: denied { read } for pid=9885 comm="syz-executor.0" name="usbmon0" dev="devtmpfs" ino=706 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 431.620568][ T29] audit: type=1400 audit(1717198362.120:1296): avc: denied { open } for pid=9885 comm="syz-executor.0" path="/dev/usbmon0" dev="devtmpfs" ino=706 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 431.700490][ T29] audit: type=1400 audit(1717198362.220:1297): avc: denied { map } for pid=9885 comm="syz-executor.0" path="/dev/usbmon0" dev="devtmpfs" ino=706 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 432.427861][ T949] team0 (unregistering): Port device team_slave_1 removed [ 432.532918][ T5117] Bluetooth: hci0: command tx timeout [ 432.549821][ T949] team0 (unregistering): Port device team_slave_0 removed [ 433.094909][ T5117] Bluetooth: hci3: command tx timeout [ 433.378884][ T9895] netlink: 'syz-executor.2': attribute type 27 has an invalid length. [ 433.477109][ T9915] loop0: detected capacity change from 0 to 128 [ 433.542091][ T9915] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 433.571447][ T9915] ext4 filesystem being mounted at /root/syzkaller-testdir866419288/syzkaller.IKTkqZ/71/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 433.763636][ T9928] loop1: detected capacity change from 0 to 16 [ 433.818165][ T9928] erofs: (device loop1): mounted with root inode @ nid 36. [ 434.006353][ T8874] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 434.047771][ T9932] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9932 comm=syz-executor.2 [ 434.140542][ T9932] loop2: detected capacity change from 0 to 1024 [ 434.159294][ T9932] EXT4-fs: Ignoring removed orlov option [ 434.187432][ T9932] EXT4-fs (loop2): Test dummy encryption mode enabled [ 434.207741][ T9932] EXT4-fs (loop2): stripe (7) is not aligned with cluster size (16), stripe is disabled [ 434.454011][ T9932] EXT4-fs warning (device loop2): ext4_enable_quotas:7074: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 434.474688][ T9932] EXT4-fs (loop2): mount failed [ 434.619929][ T5117] Bluetooth: hci0: command tx timeout [ 434.638093][ T9835] chnl_net:caif_netlink_parms(): no params data found [ 434.908139][ T9939] loop2: detected capacity change from 0 to 256 [ 434.984870][ T9816] chnl_net:caif_netlink_parms(): no params data found [ 435.172145][ T5117] Bluetooth: hci3: command tx timeout [ 435.222641][ T9934] syz-executor.1: attempt to access beyond end of device [ 435.222641][ T9934] loop1: rw=0, sector=1049256, nr_sectors = 8 limit=16 [ 435.353886][ T9935] syz-executor.1: attempt to access beyond end of device [ 435.353886][ T9935] loop1: rw=0, sector=1049256, nr_sectors = 8 limit=16 [ 435.496034][ T9835] bridge0: port 1(bridge_slave_0) entered blocking state [ 435.504327][ T9955] loop2: detected capacity change from 0 to 128 [ 435.532348][ T9835] bridge0: port 1(bridge_slave_0) entered disabled state [ 435.547733][ T9835] bridge_slave_0: entered allmulticast mode [ 435.562860][ T9835] bridge_slave_0: entered promiscuous mode [ 435.578492][ T9955] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 435.613774][ T9955] ext4 filesystem being mounted at /root/syzkaller-testdir1196094827/syzkaller.D18NTo/151/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 435.632114][ T9953] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.0'. [ 435.641459][ T9953] netlink: 'syz-executor.0': attribute type 7 has an invalid length. [ 435.672117][ T9955] EXT4-fs error (device loop2): ext4_validate_block_bitmap:423: comm syz-executor.2: bg 0: bad block bitmap checksum [ 435.692079][ T9953] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 435.701553][ T9953] bond0: option lacp_active: mode dependency failed, not supported in mode balance-rr(0) [ 435.719906][ T9835] bridge0: port 2(bridge_slave_1) entered blocking state [ 435.753835][ T8212] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 435.754220][ T9835] bridge0: port 2(bridge_slave_1) entered disabled state [ 435.801194][ T9835] bridge_slave_1: entered allmulticast mode [ 435.814749][ T9835] bridge_slave_1: entered promiscuous mode [ 435.897796][ T9816] bridge0: port 1(bridge_slave_0) entered blocking state [ 435.911722][ T9963] loop0: detected capacity change from 0 to 16 [ 435.918938][ T9816] bridge0: port 1(bridge_slave_0) entered disabled state [ 435.934513][ T9816] bridge_slave_0: entered allmulticast mode [ 435.953155][ T9816] bridge_slave_0: entered promiscuous mode [ 435.967941][ T9963] erofs: (device loop0): mounted with root inode @ nid 36. [ 435.987937][ T9816] bridge0: port 2(bridge_slave_1) entered blocking state [ 436.005609][ T9816] bridge0: port 2(bridge_slave_1) entered disabled state [ 436.019694][ T9816] bridge_slave_1: entered allmulticast mode [ 436.036510][ T9816] bridge_slave_1: entered promiscuous mode [ 436.086826][ T9959] netlink: 'syz-executor.1': attribute type 27 has an invalid length. [ 436.424014][ T9959] bridge0: port 2(bridge_slave_1) entered disabled state [ 436.432138][ T9959] bridge0: port 1(bridge_slave_0) entered disabled state [ 436.510651][ T9970] syz-executor.0: attempt to access beyond end of device [ 436.510651][ T9970] loop0: rw=0, sector=1049256, nr_sectors = 8 limit=16 [ 436.645023][ T9971] syz-executor.0: attempt to access beyond end of device [ 436.645023][ T9971] loop0: rw=0, sector=1049256, nr_sectors = 8 limit=16 [ 437.019165][ T9959] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 437.077479][ T9959] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 437.713983][ T9959] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 437.752234][ T9959] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 437.784494][ T9959] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 437.829932][ T9959] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 438.055882][ T9981] loop2: detected capacity change from 0 to 16 [ 438.080134][ T9981] erofs: (device loop2): mounted with root inode @ nid 36. [ 438.453432][ T9835] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 438.502539][ T9816] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 438.554852][ T9835] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 438.630320][ T9983] syz-executor.2: attempt to access beyond end of device [ 438.630320][ T9983] loop2: rw=0, sector=1049256, nr_sectors = 8 limit=16 [ 438.705797][ T9816] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 439.023425][ T9835] team0: Port device team_slave_0 added [ 439.054898][ T9983] syz-executor.2: attempt to access beyond end of device [ 439.054898][ T9983] loop2: rw=0, sector=1049256, nr_sectors = 8 limit=16 [ 439.144446][ T9992] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9992 comm=syz-executor.0 [ 439.244207][ T9992] loop0: detected capacity change from 0 to 1024 [ 439.262021][ T9992] EXT4-fs: Ignoring removed orlov option [ 439.282256][ T9992] EXT4-fs (loop0): Test dummy encryption mode enabled [ 439.443164][ T9992] EXT4-fs (loop0): stripe (7) is not aligned with cluster size (16), stripe is disabled [ 439.578122][ T9992] EXT4-fs warning (device loop0): ext4_enable_quotas:7074: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 439.595359][ T9992] EXT4-fs (loop0): mount failed [ 439.754981][ T9835] team0: Port device team_slave_1 added [ 439.841821][ T9816] team0: Port device team_slave_0 added [ 439.992635][ T9998] loop1: detected capacity change from 0 to 16 [ 440.030929][ T9998] erofs: (device loop1): mounted with root inode @ nid 36. [ 440.088738][ T9816] team0: Port device team_slave_1 added [ 440.160963][T10002] loop2: detected capacity change from 0 to 1024 [ 440.187809][ T9835] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 440.212050][ T9835] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 440.259993][ T9835] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 440.272199][T10002] hfsplus: unable to load nls mapping "iso88#æ-13" [ 440.279153][T10002] hfsplus: unable to parse mount options [ 440.289899][ T9835] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 440.301703][ T9835] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 440.344650][T10007] loop0: detected capacity change from 0 to 128 [ 440.352301][ T9835] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 440.387641][T10007] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 440.401313][T10007] ext4 filesystem being mounted at /root/syzkaller-testdir866419288/syzkaller.IKTkqZ/81/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 440.468199][ T9816] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 440.510193][ T9816] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 440.562301][T10007] EXT4-fs error (device loop0): ext4_validate_block_bitmap:423: comm syz-executor.0: bg 0: bad block bitmap checksum [ 440.598393][ T9816] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 440.601853][T10003] syz-executor.1: attempt to access beyond end of device [ 440.601853][T10003] loop1: rw=0, sector=1049256, nr_sectors = 8 limit=16 [ 440.663719][ T8874] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 440.717881][ T1247] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.724492][ T1247] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.729699][ T9816] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 440.760347][ T9816] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 440.796999][ T9816] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 440.813461][T10003] syz-executor.1: attempt to access beyond end of device [ 440.813461][T10003] loop1: rw=0, sector=1049256, nr_sectors = 8 limit=16 [ 440.938331][ T9835] hsr_slave_0: entered promiscuous mode [ 440.962611][ T9835] hsr_slave_1: entered promiscuous mode [ 440.970541][ T9835] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 440.979392][ T9835] Cannot create hsr debugfs directory [ 441.076790][T10019] loop2: detected capacity change from 0 to 16 [ 441.091274][T10019] erofs: (device loop2): mounted with root inode @ nid 36. [ 441.261603][ T9816] hsr_slave_0: entered promiscuous mode [ 441.271106][ T9816] hsr_slave_1: entered promiscuous mode [ 441.305480][ T9816] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 441.314542][ T9816] Cannot create hsr debugfs directory [ 441.434902][ T949] bridge_slave_1: left allmulticast mode [ 441.440597][ T949] bridge_slave_1: left promiscuous mode [ 441.462574][ T949] bridge0: port 2(bridge_slave_1) entered disabled state [ 441.476595][ T949] bridge_slave_0: left allmulticast mode [ 441.485738][ T949] bridge_slave_0: left promiscuous mode [ 441.498198][ T949] bridge0: port 1(bridge_slave_0) entered disabled state [ 441.619529][T10024] loop1: detected capacity change from 0 to 1024 [ 441.643479][T10020] syz-executor.2: attempt to access beyond end of device [ 441.643479][T10020] loop2: rw=0, sector=1049256, nr_sectors = 8 limit=16 [ 441.660203][T10024] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors [ 441.683922][T10024] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (25054!=20869) [ 441.707334][T10024] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 441.752140][T10024] EXT4-fs (loop1): filesystem has both journal inode and journal device! [ 441.922189][T10031] loop1: detected capacity change from 0 to 128 [ 441.946079][T10031] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1) [ 442.021306][T10020] syz-executor.2: attempt to access beyond end of device [ 442.021306][T10020] loop2: rw=0, sector=1049256, nr_sectors = 8 limit=16 [ 442.545735][T10035] loop2: detected capacity change from 0 to 1024 [ 442.698637][ T949] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 442.741334][ T949] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 442.781225][ T949] bond0 (unregistering): Released all slaves [ 442.800491][T10035] hfsplus: unable to load nls mapping "iso88#æ-13" [ 442.807545][T10035] hfsplus: unable to parse mount options [ 442.868219][T10041] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 442.901517][T10041] netlink: 'syz-executor.1': attribute type 13 has an invalid length. [ 442.989875][T10043] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10043 comm=syz-executor.0 [ 443.086295][T10043] loop0: detected capacity change from 0 to 1024 [ 443.101838][T10043] EXT4-fs: Ignoring removed orlov option [ 443.143056][T10043] EXT4-fs (loop0): Test dummy encryption mode enabled [ 443.151506][T10043] EXT4-fs (loop0): stripe (7) is not aligned with cluster size (16), stripe is disabled [ 443.329909][T10043] EXT4-fs warning (device loop0): ext4_enable_quotas:7074: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 443.346988][T10043] EXT4-fs (loop0): mount failed [ 443.577060][T10041] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 443.587061][T10041] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 443.596423][T10041] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 443.605306][T10041] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 443.634271][T10041] vxlan0: entered promiscuous mode [ 443.947726][T10049] syz-executor.1[10049] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 443.947944][T10049] syz-executor.1[10049] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 444.094138][ T29] audit: type=1400 audit(1717198374.620:1298): avc: denied { read } for pid=10047 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 444.095684][T10049] hub 6-0:1.0: USB hub found [ 444.162412][T10049] hub 6-0:1.0: 1 port detected [ 444.258396][T10055] loop0: detected capacity change from 0 to 512 [ 444.265249][ T949] hsr_slave_0: left promiscuous mode [ 444.269182][T10055] EXT4-fs (loop0): external journal device major/minor numbers have changed [ 444.301341][ T949] hsr_slave_1: left promiscuous mode [ 444.307968][ T949] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 444.333659][ T949] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 444.362759][T10055] block device autoloading is deprecated and will be removed. [ 444.386361][T10055] syz-executor.0: attempt to access beyond end of device [ 444.386361][T10055] loop75: rw=0, sector=2, nr_sectors = 2 limit=0 [ 444.423118][T10055] EXT4-fs (loop0): couldn't read superblock of external journal [ 444.651451][T10050] loop2: detected capacity change from 0 to 32768 [ 444.661037][T10050] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz-executor.2 (10050) [ 444.687418][T10050] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 444.701346][T10050] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 444.710186][T10050] BTRFS info (device loop2): using free-space-tree [ 444.998407][ T8212] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 445.997980][ T949] team0 (unregistering): Port device team_slave_1 removed [ 446.614320][ T949] team0 (unregistering): Port device team_slave_0 removed [ 446.925519][T10094] loop2: detected capacity change from 0 to 1024 [ 446.943777][T10094] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors [ 446.956084][T10094] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (25054!=20869) [ 446.966447][T10094] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 446.992324][T10094] EXT4-fs (loop2): filesystem has both journal inode and journal device! [ 447.230018][T10098] loop2: detected capacity change from 0 to 128 [ 447.253210][T10098] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1) [ 448.289514][T10053] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 448.398334][T10103] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 448.409580][T10103] netlink: 'syz-executor.2': attribute type 13 has an invalid length. [ 448.457797][T10103] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 448.466592][T10103] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 448.475604][T10103] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 448.484481][T10103] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 448.494237][T10103] vxlan0: entered promiscuous mode [ 449.583058][ T9765] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 449.797734][ T9765] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 449.818699][ T9765] usb 3-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18 [ 449.848168][ T9765] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 449.866941][ T9765] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 449.881629][ T9765] usb 3-1: SerialNumber: syz [ 449.886133][ T9835] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 449.929127][ T9835] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 449.967081][T10117] loop1: detected capacity change from 0 to 32768 [ 449.976315][ T9835] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 450.003358][ T9835] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 450.010902][T10117] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (10117) [ 450.072215][T10117] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 450.119104][T10117] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 450.133193][T10117] BTRFS info (device loop1): using free-space-tree [ 450.281227][ T9816] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 450.353140][ T9816] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 450.378262][ T9816] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 450.409422][ T9816] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 450.417001][ T8829] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 450.481367][ T9765] usb 3-1: USB disconnect, device number 6 [ 450.601251][ T9835] 8021q: adding VLAN 0 to HW filter on device bond0 [ 450.816552][ T9835] 8021q: adding VLAN 0 to HW filter on device team0 [ 450.909396][ T5164] bridge0: port 1(bridge_slave_0) entered blocking state [ 450.916656][ T5164] bridge0: port 1(bridge_slave_0) entered forwarding state [ 451.017482][ T29] audit: type=1400 audit(1717198381.540:1299): avc: denied { getopt } for pid=10142 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 451.078652][ T9765] bridge0: port 2(bridge_slave_1) entered blocking state [ 451.085926][ T9765] bridge0: port 2(bridge_slave_1) entered forwarding state [ 451.239902][ T9816] 8021q: adding VLAN 0 to HW filter on device bond0 [ 451.331087][ T29] audit: type=1400 audit(1717198381.850:1300): avc: denied { map } for pid=10144 comm="syz-executor.1" path="/dev/binderfs/binder0" dev="binder" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 [ 451.391097][ T9816] 8021q: adding VLAN 0 to HW filter on device team0 [ 451.470329][ T29] audit: type=1400 audit(1717198381.930:1301): avc: denied { call } for pid=10144 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1 [ 451.505979][ T5164] bridge0: port 1(bridge_slave_0) entered blocking state [ 451.513162][ T5164] bridge0: port 1(bridge_slave_0) entered forwarding state [ 451.608701][ T29] audit: type=1400 audit(1717198381.930:1302): avc: denied { transfer } for pid=10144 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1 [ 451.639906][ T5164] bridge0: port 2(bridge_slave_1) entered blocking state [ 451.647468][ T5164] bridge0: port 2(bridge_slave_1) entered forwarding state [ 451.666840][T10155] loop1: detected capacity change from 0 to 256 [ 451.792322][T10155] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 452.076545][ T9835] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 452.377395][ T9835] veth0_vlan: entered promiscuous mode [ 452.419446][ T9835] veth1_vlan: entered promiscuous mode [ 452.594291][ T9835] veth0_macvtap: entered promiscuous mode [ 452.639209][ T9835] veth1_macvtap: entered promiscuous mode [ 452.721749][ T9835] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 452.754029][ T9816] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 452.785846][ T9835] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 452.856541][ T9835] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 452.886420][ T9835] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 452.921968][ T9835] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 452.930823][ T9835] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 453.340627][ T949] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 453.364682][ T949] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 453.749335][T10179] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10179 comm=syz-executor.0 [ 453.839641][T10179] loop0: detected capacity change from 0 to 1024 [ 453.858642][T10179] EXT4-fs: Ignoring removed orlov option [ 453.877508][T10179] EXT4-fs (loop0): Test dummy encryption mode enabled [ 453.885794][T10179] EXT4-fs (loop0): stripe (7) is not aligned with cluster size (16), stripe is disabled [ 453.976757][ T2800] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 454.099372][T10179] EXT4-fs warning (device loop0): ext4_enable_quotas:7074: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 454.116605][T10179] EXT4-fs (loop0): mount failed [ 454.361278][ T2800] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 454.699586][ T9816] veth0_vlan: entered promiscuous mode [ 454.747433][ T9816] veth1_vlan: entered promiscuous mode [ 454.924085][T10187] loop3: detected capacity change from 0 to 2048 [ 454.958783][T10187] UDF-fs: error (device loop3): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 454.974437][ T9816] veth0_macvtap: entered promiscuous mode [ 454.987782][T10187] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 455.017038][T10187] UDF-fs: Scanning with blocksize 512 failed [ 455.038638][ T9816] veth1_macvtap: entered promiscuous mode [ 455.107433][T10187] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 455.127821][ T9816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 455.149185][ T9816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 455.193649][ T9816] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 455.246532][ T9816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 455.272659][ T9816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 455.289979][ T9816] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 455.316015][ T9816] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 455.329865][ T9816] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 455.362987][ T9816] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 455.371748][ T9816] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 455.414494][T10194] loop2: detected capacity change from 0 to 4096 [ 455.482740][T10194] NILFS (loop2): invalid segment: Checksum error in segment payload [ 455.532047][T10194] NILFS (loop2): trying rollback from an earlier position [ 455.610097][T10194] NILFS (loop2): recovery complete [ 455.656567][ T9652] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 455.674328][ T9652] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 455.754622][T10197] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 455.820349][ T2821] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 455.850866][ T2821] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 456.199874][T10191] loop1: detected capacity change from 0 to 32768 [ 456.245633][T10191] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (10191) [ 456.335174][T10191] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 456.362051][T10191] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 456.383909][T10191] BTRFS info (device loop1): using free-space-tree [ 456.581195][T10237] loop4: detected capacity change from 0 to 2048 [ 456.605045][ T8829] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 456.620294][T10237] UDF-fs: error (device loop4): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 456.644437][T10237] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found [ 456.673993][T10237] UDF-fs: Scanning with blocksize 512 failed [ 456.714424][T10237] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 457.154111][T10250] loop3: detected capacity change from 0 to 64 [ 457.198035][T10250] hfs: type requires a 4 character value [ 457.213257][T10250] hfs: unable to parse mount options [ 457.325218][T10255] loop4: detected capacity change from 0 to 1024 [ 457.344689][T10255] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 457.357795][T10254] loop0: detected capacity change from 0 to 256 [ 457.380019][T10254] exfat: Unknown parameter '' [ 457.405020][T10255] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 457.532231][ T29] audit: type=1804 audit(1717198388.060:1303): pid=10255 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir2667218370/syzkaller.Qu6Sqq/5/file0/bus" dev="loop4" ino=18 res=1 errno=0 [ 457.609675][T10254] loop0: detected capacity change from 0 to 2048 [ 457.828624][T10268] loop3: detected capacity change from 0 to 2048 [ 457.899209][T10268] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 457.916322][T10271] loop1: detected capacity change from 0 to 2048 [ 457.941505][T10268] ext4 filesystem being mounted at /root/syzkaller-testdir3724752241/syzkaller.fqXOHV/7/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 457.981414][T10275] loop2: detected capacity change from 0 to 2048 [ 458.011122][T10271] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 458.024081][T10271] ext4 filesystem being mounted at /root/syzkaller-testdir1445677531/syzkaller.5rbYUs/95/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 458.059386][T10275] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 458.133726][ T29] audit: type=1400 audit(1717198388.650:1304): avc: denied { ioctl } for pid=10269 comm="syz-executor.1" path="/root/syzkaller-testdir1445677531/syzkaller.5rbYUs/95/file0/file0/file0" dev="loop1" ino=13 ioctlcmd=0x6612 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 458.182834][T10275] ext4 filesystem being mounted at /root/syzkaller-testdir1196094827/syzkaller.D18NTo/178/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 458.247068][ T8829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 458.339148][ T9816] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 458.339768][ T9835] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 458.508023][ T8212] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 459.014455][T10304] binder: 10303:10304 ioctl c0306201 20000380 returned -14 [ 459.054149][T10312] loop2: detected capacity change from 0 to 64 [ 459.098297][T10312] hfs: type requires a 4 character value [ 459.116157][T10312] hfs: unable to parse mount options [ 459.143960][T10311] loop1: detected capacity change from 0 to 2048 [ 459.193709][T10311] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 459.252841][T10311] ext4 filesystem being mounted at /root/syzkaller-testdir1445677531/syzkaller.5rbYUs/98/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 459.464641][T10320] netlink: 'syz-executor.2': attribute type 2 has an invalid length. [ 459.495630][T10318] loop0: detected capacity change from 0 to 2048 [ 459.614335][ T8829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 459.619623][T10318] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 459.643632][T10318] ext4 filesystem being mounted at /root/syzkaller-testdir866419288/syzkaller.IKTkqZ/105/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 459.926042][ T8874] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 459.966695][T10334] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 460.165430][T10334] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 460.342951][T10346] loop1: detected capacity change from 0 to 64 [ 460.380986][T10346] hfs: type requires a 4 character value [ 460.397997][T10346] hfs: unable to parse mount options [ 461.077308][T10364] loop2: detected capacity change from 0 to 1024 [ 461.152536][T10364] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 461.154952][T10360] loop1: detected capacity change from 0 to 4096 [ 461.263840][T10364] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 461.274249][T10364] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 461.306915][T10364] journal_load_superblock: Cannot read journal superblock [ 461.309861][T10360] ntfs3: loop1: Failed to load $Extend (-22). [ 461.320885][T10360] ntfs3: loop1: Failed to initialize $Extend. [ 461.342053][T10364] EXT4-fs (loop2): Could not load journal inode [ 461.463735][T10372] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 461.513222][T10372] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 461.881452][T10386] loop4: detected capacity change from 0 to 512 [ 461.888824][T10392] loop2: detected capacity change from 0 to 512 [ 461.955391][T10386] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 461.988157][T10392] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found [ 461.999927][T10386] UDF-fs: Scanning with blocksize 512 failed [ 462.008808][T10392] UDF-fs: Scanning with blocksize 512 failed [ 462.016017][T10397] loop0: detected capacity change from 0 to 256 [ 462.027674][T10392] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found [ 462.043238][T10386] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 462.056262][T10392] UDF-fs: Scanning with blocksize 1024 failed [ 462.072607][T10392] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found [ 462.080169][T10386] UDF-fs: Scanning with blocksize 1024 failed [ 462.087616][T10392] UDF-fs: Scanning with blocksize 2048 failed [ 462.097294][T10386] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 462.109963][T10386] UDF-fs: Scanning with blocksize 2048 failed [ 462.122600][T10392] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 462.137110][T10386] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 462.166894][T10392] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 462.212751][T10386] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 462.259520][ T25] libceph: connect (1)[c::]:6789 error -101 [ 462.268507][ T25] libceph: mon0 (1)[c::]:6789 connect error [ 462.308835][T10396] ceph: No mds server is up or the cluster is laggy [ 462.338928][ T29] audit: type=1400 audit(1717198392.860:1305): avc: denied { mounton } for pid=10381 comm="syz-executor.4" path="/root/syzkaller-testdir2667218370/syzkaller.Qu6Sqq/14/file0/file0" dev="loop4" ino=33 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=dir permissive=1 [ 462.513030][T10396] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 462.728716][T10407] loop3: detected capacity change from 0 to 4096 [ 462.865997][T10407] ntfs3: loop3: Failed to load $Extend (-22). [ 462.898671][T10407] ntfs3: loop3: Failed to initialize $Extend. [ 463.036657][T10423] loop0: detected capacity change from 0 to 512 [ 463.052416][T10423] EXT4-fs: Ignoring removed mblk_io_submit option [ 463.061578][T10426] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.1'. [ 463.073154][T10423] EXT4-fs (loop0): Test dummy encryption mode enabled [ 463.094777][T10423] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a064e01c, mo2=0102] [ 463.112218][T10423] System zones: 1-12 [ 463.128541][T10423] EXT4-fs error (device loop0): ext4_orphan_get:1394: inode #15: comm syz-executor.0: casefold flag without casefold feature [ 463.162366][T10423] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz-executor.0: couldn't read orphan inode 15 (err -117) [ 463.182780][ T29] audit: type=1400 audit(1717198393.710:1306): avc: denied { create } for pid=10427 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 463.222328][T10423] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 463.373784][T10423] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 463.468171][T10442] loop3: detected capacity change from 0 to 65 [ 463.494002][T10442] BFS-fs: bfs_fill_super(): Superblock is corrupted on loop3 [ 464.036421][T10460] loop0: detected capacity change from 0 to 4096 [ 464.148868][T10471] loop3: detected capacity change from 0 to 512 [ 464.283548][ T29] audit: type=1400 audit(1717198394.800:1307): avc: denied { rmdir } for pid=10459 comm="syz-executor.0" name="bus" dev="loop0" ino=33 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 464.336520][T10471] EXT4-fs: Ignoring removed mblk_io_submit option [ 464.406313][T10471] EXT4-fs (loop3): Test dummy encryption mode enabled [ 464.478607][T10471] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a064e01c, mo2=0102] [ 464.612299][T10471] System zones: 1-12 [ 464.717070][T10471] EXT4-fs error (device loop3): ext4_orphan_get:1394: inode #15: comm syz-executor.3: casefold flag without casefold feature [ 464.754937][T10471] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 464.788964][T10471] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 464.861310][ T29] audit: type=1400 audit(1717198395.380:1308): avc: denied { audit_read } for pid=10487 comm="syz-executor.0" capability=37 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 464.875271][T10489] loop0: detected capacity change from 0 to 512 [ 464.926633][T10489] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 464.970472][T10471] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 465.168473][T10489] EXT4-fs (loop0): 1 truncate cleaned up [ 465.198038][T10489] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 465.400327][ T8874] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 465.851685][ T29] audit: type=1400 audit(1717198396.370:1309): avc: denied { accept } for pid=10506 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 466.069354][ T29] audit: type=1800 audit(1717198396.590:1310): pid=10516 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.1" name=".log" dev="sda1" ino=1960 res=0 errno=0 [ 466.226530][ T29] audit: type=1400 audit(1717198396.750:1311): avc: denied { map } for pid=10519 comm="syz-executor.3" path="socket:[45394]" dev="sockfs" ino=45394 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1 [ 466.339143][T10522] loop1: detected capacity change from 0 to 512 [ 466.360244][T10522] EXT4-fs: Ignoring removed mblk_io_submit option [ 466.381062][T10522] EXT4-fs (loop1): Test dummy encryption mode enabled [ 466.416463][T10522] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a064e01c, mo2=0102] [ 466.417243][T10496] loop4: detected capacity change from 0 to 32768 [ 466.435246][T10522] System zones: 1-12 [ 466.440097][T10496] BTRFS: device fsid d552757d-9c39-40e3-95f0-16d819589928 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (10496) [ 466.455182][T10522] EXT4-fs error (device loop1): ext4_orphan_get:1394: inode #15: comm syz-executor.1: casefold flag without casefold feature [ 466.483424][T10496] BTRFS info (device loop4): first mount of filesystem d552757d-9c39-40e3-95f0-16d819589928 [ 466.495311][T10522] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz-executor.1: couldn't read orphan inode 15 (err -117) [ 466.513872][T10496] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 466.524708][T10522] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 466.549546][T10496] BTRFS info (device loop4): using free-space-tree [ 466.605749][T10529] loop2: detected capacity change from 0 to 1024 [ 466.618492][T10529] EXT4-fs: Ignoring removed orlov option [ 466.627990][T10529] EXT4-fs (loop2): Test dummy encryption mode enabled [ 466.649460][T10529] EXT4-fs (loop2): stripe (7) is not aligned with cluster size (16), stripe is disabled [ 466.704217][T10529] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 466.753437][T10522] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 466.875575][ T9816] BTRFS info (device loop4): last unmount of filesystem d552757d-9c39-40e3-95f0-16d819589928 [ 467.064572][T10529] fscrypt: AES-256-XTS using implementation "xts-aes-aesni-avx" [ 467.154917][ T29] audit: type=1326 audit(1717198397.670:1312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10554 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f007cee9 code=0x7ffc0000 [ 467.262090][ T29] audit: type=1326 audit(1717198397.670:1313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10554 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f007cee9 code=0x7ffc0000 [ 467.333215][ T29] audit: type=1326 audit(1717198397.680:1314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10554 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=79 compat=0 ip=0x7f31f007cee9 code=0x7ffc0000 [ 467.357361][ C0] vkms_vblank_simulate: vblank timer overrun [ 467.402812][T10518] loop0: detected capacity change from 0 to 32768 [ 467.419693][T10518] btrfs: Deprecated parameter 'usebackuproot' [ 467.432076][ T29] audit: type=1326 audit(1717198397.680:1315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10554 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f007cee9 code=0x7ffc0000 [ 467.445938][T10518] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 467.456895][ C0] vkms_vblank_simulate: vblank timer overrun [ 467.524105][ T8212] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 467.536839][T10518] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (10518) [ 467.619153][T10518] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 467.670223][T10518] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm [ 467.769474][T10566] loop1: detected capacity change from 0 to 512 [ 467.786380][T10566] UDF-fs: warning (device loop1): udf_load_vrs: No VRS found [ 467.798378][T10566] UDF-fs: Scanning with blocksize 512 failed [ 467.808108][T10566] UDF-fs: warning (device loop1): udf_load_vrs: No VRS found [ 467.819569][T10566] UDF-fs: Scanning with blocksize 1024 failed [ 467.843947][T10566] UDF-fs: warning (device loop1): udf_load_vrs: No VRS found [ 467.851711][T10566] UDF-fs: Scanning with blocksize 2048 failed [ 467.868557][T10566] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 467.868619][T10518] BTRFS info (device loop0): rebuilding free space tree [ 467.896350][T10566] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 468.119746][T10518] BTRFS info (device loop0): disabling free space tree [ 468.158139][T10518] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 468.203674][T10518] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 468.429631][ T8874] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 469.130480][T10565] loop2: detected capacity change from 0 to 32768 [ 469.160536][T10565] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz-executor.2 (10565) [ 469.221787][T10565] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 469.246631][T10565] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 469.256592][T10565] BTRFS info (device loop2): using free-space-tree [ 469.339214][T10608] loop0: detected capacity change from 0 to 2048 [ 469.374279][T10593] loop4: detected capacity change from 0 to 32768 [ 469.380845][T10608] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 469.384179][T10593] BTRFS: device fsid d552757d-9c39-40e3-95f0-16d819589928 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (10593) [ 469.405887][T10608] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 469.423223][T10608] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 469.433496][T10593] BTRFS info (device loop4): first mount of filesystem d552757d-9c39-40e3-95f0-16d819589928 [ 469.457405][T10593] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 469.473520][T10593] BTRFS info (device loop4): using free-space-tree [ 469.670471][ T8212] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 469.997484][ T9816] BTRFS info (device loop4): last unmount of filesystem d552757d-9c39-40e3-95f0-16d819589928 [ 470.445974][T10647] loop0: detected capacity change from 0 to 2048 [ 470.579813][T10647] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 470.631003][T10647] ext4 filesystem being mounted at /root/syzkaller-testdir866419288/syzkaller.IKTkqZ/125/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 470.721837][ T29] kauditd_printk_skb: 3 callbacks suppressed [ 470.766646][ T29] audit: type=1400 audit(1717198401.240:1319): avc: denied { nlmsg_read } for pid=10654 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1 [ 470.878435][ T29] audit: type=1400 audit(1717198401.330:1320): avc: denied { accept } for pid=10654 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 470.957501][ T29] audit: type=1400 audit(1717198401.350:1321): avc: denied { bind } for pid=10654 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 471.005097][ T8874] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 471.048215][ T29] audit: type=1400 audit(1717198401.500:1322): avc: denied { read } for pid=10659 comm="syz-executor.4" name="nullb0" dev="devtmpfs" ino=681 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 471.078012][ T29] audit: type=1400 audit(1717198401.500:1323): avc: denied { open } for pid=10659 comm="syz-executor.4" path="/dev/nullb0" dev="devtmpfs" ino=681 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 471.103295][ T29] audit: type=1400 audit(1717198401.530:1324): avc: denied { ioctl } for pid=10659 comm="syz-executor.4" path="/dev/vhost-net" dev="devtmpfs" ino=1084 ioctlcmd=0xaf01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 471.129151][ C0] vkms_vblank_simulate: vblank timer overrun [ 471.689730][ T29] audit: type=1400 audit(1717198402.210:1325): avc: denied { bind } for pid=10677 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 471.809985][T10651] loop3: detected capacity change from 0 to 32768 [ 471.830243][T10651] btrfs: Deprecated parameter 'usebackuproot' [ 471.840430][T10651] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 471.858917][T10651] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (10651) [ 471.886262][T10651] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 471.901435][T10651] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 472.002427][T10683] loop4: detected capacity change from 0 to 1024 [ 472.102472][T10651] BTRFS info (device loop3): rebuilding free space tree [ 472.219479][T10651] BTRFS info (device loop3): disabling free space tree [ 472.257966][T10651] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 472.296699][T10651] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 472.325607][T10700] loop2: detected capacity change from 0 to 2048 [ 472.380869][T10701] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 472.513019][ T29] audit: type=1400 audit(1717198403.030:1326): avc: denied { link } for pid=10686 comm="syz-executor.2" name="file0" dev="loop2" ino=6 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 472.611638][ T9835] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 473.156886][T10701] NILFS (loop2): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 473.177613][T10701] NILFS error (device loop2): nilfs_bmap_propagate: broken bmap (inode number=4) [ 473.220686][T10701] Remounting filesystem read-only [ 473.354691][ T2800] NILFS (loop2): discard dirty page: offset=0, ino=2 [ 473.361570][ T2800] NILFS (loop2): discard dirty block: blocknr=18, size=1024 [ 473.372408][ T2800] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 473.391070][ T2800] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 473.417622][ T2800] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 473.455936][ T2800] NILFS (loop2): discard dirty page: offset=0, ino=5 [ 473.484366][ T2800] NILFS (loop2): discard dirty block: blocknr=41, size=1024 [ 473.509164][ T2800] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 473.554780][ T2800] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 473.602631][ T2800] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 473.653640][ T8212] NILFS (loop2): disposed unprocessed dirty file(s) when stopping log writer [ 473.713932][ T29] audit: type=1326 audit(1717198404.240:1327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10718 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb28207cee9 code=0x0 [ 473.752885][ T8212] NILFS (loop2): discard dirty page: offset=0, ino=6 [ 473.777066][ T8212] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 473.802174][ T8212] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 473.843096][ T8212] NILFS (loop2): discard dirty block: blocknr=37, size=1024 [ 473.853616][ T29] audit: type=1400 audit(1717198404.370:1328): avc: denied { name_connect } for pid=10718 comm="syz-executor.3" dest=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=sctp_socket permissive=1 [ 473.860532][ T8212] NILFS (loop2): discard dirty block: blocknr=38, size=1024 [ 473.933278][ T8212] NILFS (loop2): discard dirty page: offset=0, ino=4 [ 473.954511][ T8212] NILFS (loop2): discard dirty block: blocknr=40, size=1024 [ 473.963639][T10726] loop0: detected capacity change from 0 to 1024 [ 473.970117][ T8212] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 473.992243][ T8212] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 474.004558][ T8212] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 474.014455][ T8212] NILFS (loop2): discard dirty page: offset=0, ino=3 [ 474.024637][ T8212] NILFS (loop2): discard dirty block: blocknr=42, size=1024 [ 474.033830][ T8212] NILFS (loop2): discard dirty block: blocknr=43, size=1024 [ 474.041303][ T8212] NILFS (loop2): discard dirty block: blocknr=44, size=1024 [ 474.048956][ T8212] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 474.391035][T10738] loop2: detected capacity change from 0 to 2048 [ 474.444542][T10738] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 474.471473][T10738] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 474.490490][T10738] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a002e01c, mo2=0002] [ 474.499212][T10738] System zones: 0-19 [ 474.523978][T10738] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 474.716083][T10746] loop1: detected capacity change from 0 to 2048 [ 474.775134][T10746] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 474.786748][ T8212] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 474.827586][T10746] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 474.876535][T10746] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a002e01c, mo2=0002] [ 474.892519][T10746] System zones: 0-19 [ 474.986323][T10746] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 475.330761][ T8829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 475.478955][T10756] loop2: detected capacity change from 0 to 1024 [ 475.537404][T10756] hfsplus: unable to parse mount options [ 475.842469][T10757] loop3: detected capacity change from 0 to 1024 [ 475.904598][T10757] hfsplus: unable to parse mount options [ 475.946040][T10743] loop0: detected capacity change from 0 to 32768 [ 475.989550][T10743] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (10743) [ 476.069157][T10743] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 476.080597][T10743] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 476.105784][T10743] BTRFS info (device loop0): using free-space-tree [ 476.881110][T10794] loop2: detected capacity change from 0 to 1024 [ 476.915898][T10794] hfsplus: failed to load root directory [ 476.951326][ T8874] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 477.446186][T10805] loop2: detected capacity change from 0 to 1764 [ 478.003155][T10828] loop4: detected capacity change from 0 to 1024 [ 478.023862][T10828] hfsplus: failed to load root directory [ 478.032425][ T29] audit: type=1326 audit(1717198408.560:1329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10825 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f31f007cee9 code=0x0 [ 478.102254][T10831] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'. [ 478.157201][T10831] xfrm2: entered promiscuous mode [ 478.177545][T10831] xfrm2: entered allmulticast mode [ 479.315469][T10857] loop1: detected capacity change from 0 to 64 [ 479.530769][ T29] audit: type=1400 audit(1717198410.050:1330): avc: denied { read } for pid=10860 comm="syz-executor.4" name="autofs" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 479.552101][T10861] autofs4:pid:10861:validate_dev_ioctl: path string terminator missing for cmd(0xc018937a) [ 479.597316][ T29] audit: type=1400 audit(1717198410.060:1331): avc: denied { open } for pid=10860 comm="syz-executor.4" path="/dev/autofs" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 479.631939][ T29] audit: type=1400 audit(1717198410.070:1332): avc: denied { ioctl } for pid=10860 comm="syz-executor.4" path="/dev/autofs" dev="devtmpfs" ino=98 ioctlcmd=0x937a scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 480.137362][T10866] loop4: detected capacity change from 0 to 256 [ 480.195080][T10866] exfat: Deprecated parameter 'namecase' [ 480.221085][T10866] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011e5d, chksum : 0x63a11b78, utbl_chksum : 0xe619d30d) [ 480.898181][T10890] autofs4:pid:10890:validate_dev_ioctl: path string terminator missing for cmd(0xc018937a) [ 481.366789][T10901] loop4: detected capacity change from 0 to 4096 [ 481.387111][T10901] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512). [ 481.449877][T10901] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 481.831961][ T29] audit: type=1400 audit(1717198412.350:1333): avc: denied { listen } for pid=10914 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 481.913205][ T29] audit: type=1400 audit(1717198412.380:1334): avc: denied { accept } for pid=10914 comm="iou-wrk-10915" lport=47665 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 482.031646][T10923] loop1: detected capacity change from 0 to 65 [ 482.040372][ T29] audit: type=1326 audit(1717198412.560:1335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10920 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb28207cee9 code=0x0 [ 482.083465][T10923] BFS-fs: bfs_fill_super(): Superblock is corrupted on loop1 [ 482.539389][T10936] loop4: detected capacity change from 0 to 1024 [ 482.579727][T10936] hfsplus: failed to load root directory [ 482.623203][T10935] loop1: detected capacity change from 0 to 1764 [ 483.279023][T10949] loop3: detected capacity change from 0 to 4096 [ 483.292231][T10949] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 483.353011][T10949] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 484.029296][T10963] loop3: detected capacity change from 0 to 256 [ 484.087315][T10963] exfat: Deprecated parameter 'namecase' [ 484.146847][T10963] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011e5d, chksum : 0x63a11b78, utbl_chksum : 0xe619d30d) [ 484.178688][ T29] audit: type=1326 audit(1717198414.700:1336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10973 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7a60c7cee9 code=0x0 [ 484.760562][T10989] loop3: detected capacity change from 0 to 4096 [ 484.770869][T10989] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 484.845037][T10989] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 485.081523][T10991] loop2: detected capacity change from 0 to 2048 [ 485.150189][T10998] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 485.216898][T11002] loop3: detected capacity change from 0 to 256 [ 485.361101][T11002] FAT-fs (loop3): Directory bread(block 64) failed [ 485.379973][T11002] FAT-fs (loop3): Directory bread(block 65) failed [ 485.398640][T11002] FAT-fs (loop3): Directory bread(block 66) failed [ 485.421632][T11002] FAT-fs (loop3): Directory bread(block 67) failed [ 485.433311][T11006] netlink: 'syz-executor.1': attribute type 1 has an invalid length. [ 485.444077][T11002] FAT-fs (loop3): Directory bread(block 68) failed [ 485.460540][T11002] FAT-fs (loop3): Directory bread(block 69) failed [ 485.477823][T11002] FAT-fs (loop3): Directory bread(block 70) failed [ 485.495919][T11002] FAT-fs (loop3): Directory bread(block 71) failed [ 485.514388][T11002] FAT-fs (loop3): Directory bread(block 72) failed [ 485.526694][T11002] FAT-fs (loop3): Directory bread(block 73) failed [ 485.639665][T10998] NILFS (loop2): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 485.668926][T10998] NILFS error (device loop2): nilfs_bmap_propagate: broken bmap (inode number=4) [ 485.695738][T10998] Remounting filesystem read-only [ 485.707037][ T2800] NILFS (loop2): discard dirty page: offset=0, ino=2 [ 485.719637][ T2800] NILFS (loop2): discard dirty block: blocknr=18, size=1024 [ 485.733718][ T2800] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 485.743941][ T2800] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 485.759809][ T2800] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 485.771245][ T2800] NILFS (loop2): discard dirty page: offset=0, ino=5 [ 485.784796][ T2800] NILFS (loop2): discard dirty block: blocknr=41, size=1024 [ 485.795774][ T2800] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 485.811666][ T2800] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 485.844056][ T2800] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 485.881132][ T2800] NILFS (loop2): discard dirty page: offset=0, ino=3 [ 485.905457][ T2800] NILFS (loop2): discard dirty block: blocknr=42, size=1024 [ 485.920333][ T2800] NILFS (loop2): discard dirty block: blocknr=43, size=1024 [ 485.928136][ T2800] NILFS (loop2): discard dirty block: blocknr=44, size=1024 [ 485.976384][ T2800] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 485.986613][ T2800] NILFS (loop2): discard dirty page: offset=0, ino=4 [ 485.995191][ T2800] NILFS (loop2): discard dirty block: blocknr=40, size=1024 [ 486.013866][ T2800] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 486.023778][ T2800] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 486.032836][ T2800] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 486.045095][ T8212] NILFS (loop2): disposed unprocessed dirty file(s) when stopping log writer [ 486.063981][ T8212] NILFS (loop2): discard dirty page: offset=0, ino=6 [ 486.070808][ T8212] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 486.086172][ T8212] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 486.121970][ T8212] NILFS (loop2): discard dirty block: blocknr=37, size=1024 [ 486.129336][ T8212] NILFS (loop2): discard dirty block: blocknr=38, size=1024 [ 486.139197][ T2800] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 486.152006][ T9765] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 486.275230][ T2800] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 486.296570][ T29] audit: type=1400 audit(1717198416.820:1337): avc: denied { write } for pid=11014 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1 [ 486.358592][T11015] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.2'. [ 486.375647][ T9765] usb 5-1: Using ep0 maxpacket: 16 [ 486.386324][ T2800] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 486.405854][ T9765] usb 5-1: config index 0 descriptor too short (expected 16456, got 72) [ 486.414487][ T9765] usb 5-1: config 0 has an invalid interface number: 125 but max is 1 [ 486.425206][ T9765] usb 5-1: config 0 has an invalid interface number: 125 but max is 1 [ 486.433570][ T9765] usb 5-1: config 0 has an invalid interface number: 125 but max is 1 [ 486.444914][ T9765] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 486.474669][ T9765] usb 5-1: config 0 has no interface number 0 [ 486.480978][ T9765] usb 5-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64 [ 486.492461][ T9765] usb 5-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0 [ 486.494824][ T2800] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 486.502388][ T9765] usb 5-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0 [ 486.502446][ T9765] usb 5-1: config 0 interface 125 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 486.502489][ T9765] usb 5-1: config 0 interface 125 has no altsetting 0 [ 486.502518][ T9765] usb 5-1: config 0 interface 125 has no altsetting 2 [ 486.505828][ T9765] usb 5-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27 [ 486.561490][ T9765] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 486.569588][ T9765] usb 5-1: Product: syz [ 486.574451][ T9765] usb 5-1: Manufacturer: syz [ 486.579081][ T9765] usb 5-1: SerialNumber: syz [ 486.587611][ T9765] usb 5-1: config 0 descriptor?? [ 486.597141][ T9765] usb 5-1: selecting invalid altsetting 2 [ 486.681076][ T2800] bridge_slave_1: left allmulticast mode [ 486.686944][ T2800] bridge_slave_1: left promiscuous mode [ 486.693160][ T2800] bridge0: port 2(bridge_slave_1) entered disabled state [ 486.703044][ T2800] bridge_slave_0: left allmulticast mode [ 486.708873][ T2800] bridge_slave_0: left promiscuous mode [ 486.714824][ T2800] bridge0: port 1(bridge_slave_0) entered disabled state [ 487.304842][ T2800] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 487.315977][ T2800] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 487.327543][ T2800] bond0 (unregistering): Released all slaves [ 487.647966][ T2800] hsr_slave_0: left promiscuous mode [ 487.655397][ T2800] hsr_slave_1: left promiscuous mode [ 487.674192][ T9650] usb 5-1: USB disconnect, device number 4 [ 487.680228][ T2800] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 487.688699][ T2800] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 488.389776][ T2800] team0 (unregistering): Port device team_slave_1 removed [ 488.461289][ T2800] team0 (unregistering): Port device team_slave_0 removed [ 493.717227][T11024] loop3: detected capacity change from 0 to 256 [ 493.972194][ T5117] Bluetooth: hci2: command 0x0406 tx timeout [ 494.200414][ T5117] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 494.226115][ T5117] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 494.238134][ T5117] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 494.250082][ T5117] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 494.259638][ T5117] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 494.272282][ T5117] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 494.321340][T11041] loop0: detected capacity change from 0 to 2048 [ 494.500248][T11046] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 494.622419][T11044] loop4: detected capacity change from 0 to 256 [ 494.649921][T11044] exfat: Deprecated parameter 'namecase' [ 494.700240][T11044] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011e5d, chksum : 0x63a11b78, utbl_chksum : 0xe619d30d) [ 494.742331][T11046] NILFS (loop0): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 494.756156][T11046] NILFS error (device loop0): nilfs_bmap_propagate: broken bmap (inode number=4) [ 494.785322][T11046] Remounting filesystem read-only [ 494.790513][ T11] NILFS (loop0): discard dirty page: offset=0, ino=2 [ 494.805227][ T11] NILFS (loop0): discard dirty block: blocknr=18, size=1024 [ 494.820937][T11039] chnl_net:caif_netlink_parms(): no params data found [ 494.829124][ T11] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 494.852119][ T11] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 494.861207][ T11] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 494.901966][ T11] NILFS (loop0): discard dirty page: offset=0, ino=5 [ 494.908704][ T11] NILFS (loop0): discard dirty block: blocknr=41, size=1024 [ 494.938270][ T11] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 494.955717][ T11] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 494.965709][ T11] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 494.978516][ T8874] NILFS (loop0): disposed unprocessed dirty file(s) when stopping log writer [ 494.997003][ T8874] NILFS (loop0): discard dirty page: offset=0, ino=6 [ 495.028056][ T8874] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 495.079531][ T8874] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 495.094768][T11039] bridge0: port 1(bridge_slave_0) entered blocking state [ 495.108652][T11039] bridge0: port 1(bridge_slave_0) entered disabled state [ 495.113024][ T8874] NILFS (loop0): discard dirty block: blocknr=37, size=1024 [ 495.123622][T11039] bridge_slave_0: entered allmulticast mode [ 495.131796][T11039] bridge_slave_0: entered promiscuous mode [ 495.136268][ T8874] NILFS (loop0): discard dirty block: blocknr=38, size=1024 [ 495.170344][ T8874] NILFS (loop0): discard dirty page: offset=0, ino=4 [ 495.171955][T11039] bridge0: port 2(bridge_slave_1) entered blocking state [ 495.178668][ T8874] NILFS (loop0): discard dirty block: blocknr=40, size=1024 [ 495.192816][ T8874] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 495.196777][T11039] bridge0: port 2(bridge_slave_1) entered disabled state [ 495.204381][ T8874] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 495.222754][ T8874] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 495.232815][ T8874] NILFS (loop0): discard dirty page: offset=0, ino=3 [ 495.233571][T11039] bridge_slave_1: entered allmulticast mode [ 495.239775][ T8874] NILFS (loop0): discard dirty block: blocknr=42, size=1024 [ 495.262527][ T8874] NILFS (loop0): discard dirty block: blocknr=43, size=1024 [ 495.263432][T11032] loop2: detected capacity change from 0 to 32768 [ 495.280732][ T8874] NILFS (loop0): discard dirty block: blocknr=44, size=1024 [ 495.288678][T11039] bridge_slave_1: entered promiscuous mode [ 495.288908][ T8874] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 495.390718][T11039] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 495.429256][T11039] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 495.505742][T11058] macvlan0: entered promiscuous mode [ 495.511178][T11058] macvlan0: entered allmulticast mode [ 495.546694][T11062] macvlan0: entered promiscuous mode [ 495.556781][T11062] macvlan0: entered allmulticast mode [ 495.626337][T11061] veth1_vlan: entered allmulticast mode [ 495.636071][T11061] macvlan0: left promiscuous mode [ 495.641612][T11061] macvlan0: left allmulticast mode [ 495.647055][T11061] veth1_vlan: left allmulticast mode [ 495.662929][T11062] veth1_vlan: entered allmulticast mode [ 495.668956][T11062] macvlan0: left promiscuous mode [ 495.682307][T11062] macvlan0: left allmulticast mode [ 495.688614][T11062] veth1_vlan: left allmulticast mode [ 495.774076][T11039] team0: Port device team_slave_0 added [ 495.806649][T11039] team0: Port device team_slave_1 added [ 495.902226][T11039] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 495.909210][T11039] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 495.943276][T11039] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 495.962488][T11039] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 495.969561][T11039] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 495.996934][T11039] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 496.200369][T11039] hsr_slave_0: entered promiscuous mode [ 496.221711][T11039] hsr_slave_1: entered promiscuous mode [ 496.373726][ T5110] Bluetooth: hci4: command tx timeout [ 496.590042][T11067] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.2'. [ 497.041110][T11089] macvlan0: entered promiscuous mode [ 497.075953][T11089] macvlan0: entered allmulticast mode [ 497.115415][T11090] veth1_vlan: entered allmulticast mode [ 497.129328][T11090] macvlan0: left promiscuous mode [ 497.140637][T11090] macvlan0: left allmulticast mode [ 497.153816][T11090] veth1_vlan: left allmulticast mode [ 497.401564][T11092] loop2: detected capacity change from 0 to 4096 [ 497.404940][T11039] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 497.441814][T11092] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512). [ 497.465237][T11039] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 497.497000][T11039] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 497.533909][T11039] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 497.561822][T11092] ntfs3: loop2: Failed to initialize $Extend/$ObjId. [ 497.863579][T11039] 8021q: adding VLAN 0 to HW filter on device bond0 [ 497.937287][T11039] 8021q: adding VLAN 0 to HW filter on device team0 [ 497.959224][ T5167] bridge0: port 1(bridge_slave_0) entered blocking state [ 497.966481][ T5167] bridge0: port 1(bridge_slave_0) entered forwarding state [ 498.003023][ T9652] bridge0: port 2(bridge_slave_1) entered blocking state [ 498.010236][ T9652] bridge0: port 2(bridge_slave_1) entered forwarding state [ 498.452486][ T5117] Bluetooth: hci4: command tx timeout [ 498.512997][ T25] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 498.580756][T11122] xt_NFQUEUE: number of queues (17952) out of range (got 83484) [ 498.661237][T11039] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 498.712678][ T25] usb 3-1: Using ep0 maxpacket: 8 [ 498.749910][ T25] usb 3-1: config 179 has an invalid interface number: 65 but max is 0 [ 498.776444][ T25] usb 3-1: config 179 has no interface number 0 [ 498.792843][T11125] loop4: detected capacity change from 0 to 4096 [ 498.799839][ T25] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 498.816786][ T25] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 498.828399][T11125] ntfs3: loop4: Different NTFS sector size (2048) and media sector size (512). [ 498.840791][ T25] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 498.858163][ T25] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 498.882809][ T25] usb 3-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 498.886536][T11039] veth0_vlan: entered promiscuous mode [ 498.921412][T11125] ntfs3: loop4: Failed to initialize $Extend/$ObjId. [ 498.937932][ T25] usb 3-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 498.968773][ T25] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 498.978884][T11039] veth1_vlan: entered promiscuous mode [ 498.990191][T11108] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 499.011451][T11127] loop0: detected capacity change from 0 to 4096 [ 499.047416][T11127] ntfs3: loop0: Different NTFS sector size (2048) and media sector size (512). [ 499.130111][T11127] ntfs3: loop0: Failed to initialize $Extend/$ObjId. [ 499.158937][T11039] veth0_macvtap: entered promiscuous mode [ 499.226069][T11039] veth1_macvtap: entered promiscuous mode [ 499.316967][T11039] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 499.332026][T11039] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 499.362897][T11039] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 499.381350][T11039] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 499.407995][T11108] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 499.409738][T11039] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 499.428007][T11108] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 499.501025][T11039] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 499.522941][T11039] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 499.542251][T11039] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 499.563943][T11039] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 499.586020][T11039] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 499.658494][T11039] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 499.699371][T11039] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 499.731773][T11039] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 499.758342][T11039] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 499.798440][ T9652] usb 3-1: USB disconnect, device number 7 [ 499.798440][ C1] xpad 3-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 499.844681][T11132] macvlan0: entered promiscuous mode [ 499.850315][T11132] macvlan0: entered allmulticast mode [ 499.876871][T11134] veth1_vlan: entered allmulticast mode [ 499.891537][T11134] macvlan0: left promiscuous mode [ 499.900700][T11134] macvlan0: left allmulticast mode [ 499.906285][T11134] veth1_vlan: left allmulticast mode [ 499.974467][ T5117] Bluetooth: hci3: command 0x0406 tx timeout [ 500.153478][ T9652] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 500.202170][ T9652] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 500.261071][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 500.284847][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 500.622356][ T29] audit: type=1400 audit(1717198431.130:1338): avc: denied { getopt } for pid=11148 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 500.834885][T11153] loop2: detected capacity change from 0 to 4096 [ 500.844597][T11153] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512). [ 500.920009][ T29] audit: type=1400 audit(1717198431.440:1339): avc: denied { write } for pid=11161 comm="syz-executor.0" name="mice" dev="devtmpfs" ino=832 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1 [ 501.120304][T11153] ntfs3: loop2: Failed to initialize $Extend/$ObjId. [ 501.243632][ T9688] kernel write not supported for file /input/mice (pid: 9688 comm: kworker/1:15) [ 501.960884][ T29] audit: type=1400 audit(1717198432.480:1340): avc: denied { getopt } for pid=11169 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 502.139528][ T1247] ieee802154 phy0 wpan0: encryption failed: -22 [ 502.146431][ T1247] ieee802154 phy1 wpan1: encryption failed: -22 [ 502.360774][ T29] audit: type=1400 audit(1717198432.880:1341): avc: denied { ioctl } for pid=11176 comm="syz-executor.0" path="/dev/usbmon0" dev="devtmpfs" ino=706 ioctlcmd=0x9207 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 502.398642][ T25] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 502.632414][ T25] usb 5-1: Using ep0 maxpacket: 8 [ 502.645398][ T25] usb 5-1: config 179 has an invalid interface number: 65 but max is 0 [ 502.662165][ T25] usb 5-1: config 179 has no interface number 0 [ 502.674905][ T25] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 502.698960][ T25] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 502.711912][T11186] loop2: detected capacity change from 0 to 2048 [ 502.721282][ T25] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 502.733262][ T25] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 502.749501][T11186] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 502.764178][ T25] usb 5-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 502.800901][ T25] usb 5-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 502.816917][ T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 503.101770][T11172] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 503.253682][T11192] serio: Serial port ptm0 [ 503.961915][T11172] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 503.970810][T11172] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 504.105229][T11194] loop2: detected capacity change from 0 to 4096 [ 504.111529][ T5162] usb 5-1: USB disconnect, device number 5 [ 504.111722][ C1] xpad 5-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 504.125897][ C1] xpad 5-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 504.142776][T11196] capability: warning: `syz-executor.0' uses 32-bit capabilities (legacy support in use) [ 504.190460][T11194] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512). [ 504.325312][T11194] ntfs3: loop2: Failed to initialize $Extend/$ObjId. [ 504.356417][ T2800] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 504.648753][T11207] tun0: tun_chr_ioctl cmd 1074025675 [ 504.653996][T11206] loop0: detected capacity change from 0 to 512 [ 504.658004][T11207] tun0: persist enabled [ 504.668163][T11207] tun0: tun_chr_ioctl cmd 1074025675 [ 504.678901][T11207] tun0: persist enabled [ 504.697640][T11206] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2234: inode #12: comm syz-executor.0: corrupted in-inode xattr: invalid ea_ino [ 504.715086][T11206] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz-executor.0: couldn't read orphan inode 12 (err -117) [ 504.731090][T11206] EXT4-fs (loop0): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 504.834185][ T29] audit: type=1400 audit(1717198435.360:1342): avc: denied { mounton } for pid=11204 comm="syz-executor.0" path="/root/syzkaller-testdir866419288/syzkaller.IKTkqZ/165/file0/file0" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 504.980900][ T2800] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 505.243906][ T5117] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 505.273732][ T5117] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 505.277537][ T2800] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 505.302414][ T5117] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 505.337357][ T5117] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 505.348490][ T5117] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 505.378905][ T5117] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 505.453671][ T2800] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 505.488793][ T8874] EXT4-fs (loop0): unmounting filesystem 00000005-0000-0000-0000-000000000000. [ 506.204647][ T5110] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 506.219434][ T5110] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 506.230976][ T5110] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 506.242983][ T5110] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 506.259290][ T5110] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 506.270567][ T5110] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 507.412056][ T5110] Bluetooth: hci4: command tx timeout [ 508.372050][ T5110] Bluetooth: hci2: command tx timeout [ 509.492168][ T5110] Bluetooth: hci4: command tx timeout [ 510.453154][ T5117] Bluetooth: hci2: command tx timeout [ 511.581944][ T5110] Bluetooth: hci4: command tx timeout [ 512.532046][ T5110] Bluetooth: hci2: command tx timeout [ 513.657157][ T5117] Bluetooth: hci4: command tx timeout [ 514.612041][ T5110] Bluetooth: hci2: command tx timeout [ 524.864574][ T5117] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 524.882520][ T5117] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 524.892083][ T5117] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 524.902271][ T5117] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 524.910184][ T5117] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 524.919148][ T5117] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 527.012108][ T5110] Bluetooth: hci5: command tx timeout [ 529.102066][ T5110] Bluetooth: hci5: command tx timeout [ 531.171977][ T5110] Bluetooth: hci5: command tx timeout [ 533.252160][ T5110] Bluetooth: hci5: command tx timeout [ 536.065101][ T5117] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 536.080520][ T5117] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 536.092267][ T5117] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 536.100763][ T5117] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 536.114017][ T5117] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 536.126666][ T5117] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 536.189123][ T5117] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 536.207566][ T5117] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 536.219854][ T5117] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 536.237718][ T5117] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 536.247491][ T5117] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 536.260194][ T5117] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 538.212433][ T5117] Bluetooth: hci6: command tx timeout [ 538.302331][ T5117] Bluetooth: hci7: command tx timeout [ 540.301972][ T5117] Bluetooth: hci6: command tx timeout [ 540.371983][ T5117] Bluetooth: hci7: command tx timeout [ 542.381920][ T5117] Bluetooth: hci6: command tx timeout [ 542.452121][ T5117] Bluetooth: hci7: command tx timeout [ 544.462470][ T5117] Bluetooth: hci6: command tx timeout [ 544.532308][ T5117] Bluetooth: hci7: command tx timeout [ 550.303472][ T5110] Bluetooth: hci0: command 0x0406 tx timeout [ 563.586997][ T1247] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.593869][ T1247] ieee802154 phy1 wpan1: encryption failed: -22 [ 569.982116][ T5110] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 569.997278][ T5110] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 570.007702][ T5110] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 570.016579][ T5110] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 570.029346][ T5110] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3 [ 570.037167][ T5110] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2 [ 571.228068][ T5117] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1 [ 571.240658][ T5117] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9 [ 571.253232][ T5117] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9 [ 571.265064][T11256] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4 [ 571.276341][T11256] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3 [ 571.284069][T11256] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2 [ 572.138123][T11256] Bluetooth: hci8: command tx timeout [ 573.332461][T11256] Bluetooth: hci9: command tx timeout [ 574.211977][T11256] Bluetooth: hci8: command tx timeout [ 575.412011][T11256] Bluetooth: hci9: command tx timeout [ 576.292063][T11256] Bluetooth: hci8: command tx timeout [ 577.492007][T11256] Bluetooth: hci9: command tx timeout [ 578.372174][T11256] Bluetooth: hci8: command tx timeout [ 579.571951][T11256] Bluetooth: hci9: command tx timeout [ 590.070674][ T5110] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1 [ 590.089404][ T5110] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9 [ 590.101322][ T5110] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9 [ 590.110382][ T5110] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4 [ 590.120009][ T5110] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3 [ 590.130615][ T5110] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2 [ 592.218796][T11256] Bluetooth: hci10: command tx timeout [ 594.295091][T11256] Bluetooth: hci10: command tx timeout [ 596.372164][T11256] Bluetooth: hci10: command tx timeout [ 598.454339][T11256] Bluetooth: hci10: command tx timeout [ 601.228724][ T5110] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1 [ 601.250204][ T5110] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9 [ 601.271990][ T5110] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9 [ 601.285896][ T5110] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4 [ 601.294261][ T5110] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3 [ 601.303868][ T5110] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2 [ 601.370635][T11256] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1 [ 601.385339][T11256] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9 [ 601.400891][T11256] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9 [ 601.412082][T11256] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4 [ 601.425873][T11256] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3 [ 601.433792][T11256] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2 [ 603.413695][ T5110] Bluetooth: hci11: command tx timeout [ 603.492036][ T5110] Bluetooth: hci12: command tx timeout [ 605.491960][ T5110] Bluetooth: hci11: command tx timeout [ 605.572325][ T5110] Bluetooth: hci12: command tx timeout [ 607.572009][ T5110] Bluetooth: hci11: command tx timeout [ 607.651946][ T5110] Bluetooth: hci12: command tx timeout [ 609.663204][ T5110] Bluetooth: hci11: command tx timeout [ 609.732002][ T5110] Bluetooth: hci12: command tx timeout [ 625.018556][ T1247] ieee802154 phy0 wpan0: encryption failed: -22 [ 625.030100][ T1247] ieee802154 phy1 wpan1: encryption failed: -22 [ 632.211933][ T5117] Bluetooth: hci2: command 0x0406 tx timeout [ 632.218224][T11269] Bluetooth: hci4: command 0x0406 tx timeout [ 635.059445][ T5110] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1 [ 635.074378][ T5110] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9 [ 635.090807][ T5110] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9 [ 635.108539][ T5110] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4 [ 635.119086][ T5110] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3 [ 635.126955][ T5110] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2 [ 636.280034][ T5124] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1 [ 636.295926][ T5124] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9 [ 636.308081][ T5124] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9 [ 636.316796][ T5124] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4 [ 636.325148][ T5124] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3 [ 636.334772][ T5124] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2 [ 637.172063][ T5110] Bluetooth: hci13: command tx timeout [ 638.372086][ T5110] Bluetooth: hci14: command tx timeout [ 639.255039][ T5110] Bluetooth: hci13: command tx timeout [ 640.452226][ T5110] Bluetooth: hci14: command tx timeout [ 641.332279][ T5110] Bluetooth: hci13: command tx timeout [ 642.532128][ T5110] Bluetooth: hci14: command tx timeout [ 643.412038][ T5110] Bluetooth: hci13: command tx timeout [ 644.611965][ T5110] Bluetooth: hci14: command tx timeout [ 647.579888][ T5110] Bluetooth: hci5: command 0x0406 tx timeout [ 655.193278][ T5110] Bluetooth: hci15: unexpected cc 0x0c03 length: 249 > 1 [ 655.209500][ T5110] Bluetooth: hci15: unexpected cc 0x1003 length: 249 > 9 [ 655.220788][ T5110] Bluetooth: hci15: unexpected cc 0x1001 length: 249 > 9 [ 655.230732][ T5110] Bluetooth: hci15: unexpected cc 0x0c23 length: 249 > 4 [ 655.241683][ T5110] Bluetooth: hci15: unexpected cc 0x0c25 length: 249 > 3 [ 655.249358][ T5110] Bluetooth: hci15: unexpected cc 0x0c38 length: 249 > 2 [ 657.331992][ T5124] Bluetooth: hci15: command tx timeout [ 659.421890][ T5124] Bluetooth: hci15: command tx timeout [ 661.501935][ T5117] Bluetooth: hci15: command tx timeout [ 662.940611][T11269] Bluetooth: hci7: command 0x0406 tx timeout [ 662.947020][ T5117] Bluetooth: hci6: command 0x0406 tx timeout [ 663.571938][ T5124] Bluetooth: hci15: command tx timeout [ 666.200371][ T5110] Bluetooth: hci16: unexpected cc 0x0c03 length: 249 > 1 [ 666.221928][ T5110] Bluetooth: hci16: unexpected cc 0x1003 length: 249 > 9 [ 666.242244][ T5110] Bluetooth: hci16: unexpected cc 0x1001 length: 249 > 9 [ 666.253619][ T5110] Bluetooth: hci16: unexpected cc 0x0c23 length: 249 > 4 [ 666.263443][ T5110] Bluetooth: hci16: unexpected cc 0x0c25 length: 249 > 3 [ 666.271060][ T5110] Bluetooth: hci16: unexpected cc 0x0c38 length: 249 > 2 [ 666.356980][ T5124] Bluetooth: hci17: unexpected cc 0x0c03 length: 249 > 1 [ 666.373338][ T5124] Bluetooth: hci17: unexpected cc 0x1003 length: 249 > 9 [ 666.390086][ T5124] Bluetooth: hci17: unexpected cc 0x1001 length: 249 > 9 [ 666.402683][ T5124] Bluetooth: hci17: unexpected cc 0x0c23 length: 249 > 4 [ 666.410878][ T5124] Bluetooth: hci17: unexpected cc 0x0c25 length: 249 > 3 [ 666.422434][ T5124] Bluetooth: hci17: unexpected cc 0x0c38 length: 249 > 2 [ 668.372191][ T5124] Bluetooth: hci16: command tx timeout [ 668.452167][ T5124] Bluetooth: hci17: command tx timeout [ 669.172391][ T30] INFO: task kworker/u8:7:2800 blocked for more than 143 seconds. [ 669.180266][ T30] Not tainted 6.10.0-rc1-syzkaller-00104-gd8ec19857b09 #0 [ 669.196692][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 669.210005][ T30] task:kworker/u8:7 state:D stack:23056 pid:2800 tgid:2800 ppid:2 flags:0x00004000 2024/05/31 23:36:39 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF [ 669.225251][ T30] Workqueue: netns cleanup_net [ 669.230303][ T30] Call Trace: [ 669.271830][ T30] [ 669.274816][ T30] __schedule+0xf15/0x5d00 [ 669.279268][ T30] ? __pfx___lock_acquire+0x10/0x10 [ 669.311806][ T30] ? __pfx___lock_acquire+0x10/0x10 [ 669.317088][ T30] ? __pfx___schedule+0x10/0x10 [ 669.333789][ T30] ? schedule+0x298/0x350 [ 669.338199][ T30] ? __pfx_lock_release+0x10/0x10 [ 669.351838][ T30] ? __mutex_lock+0x5b3/0x9c0 [ 669.371889][ T30] ? __mutex_trylock_common+0x78/0x250 [ 669.377418][ T30] schedule+0xe7/0x350 [ 669.381521][ T30] schedule_preempt_disabled+0x13/0x30 [ 669.401922][ T30] __mutex_lock+0x5b8/0x9c0 [ 669.406499][ T30] ? fib_seq_sum+0x30/0x2f0 [ 669.411043][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 669.432196][ T30] ? __pfx_lock_release+0x10/0x10 [ 669.437387][ T30] ? fib_seq_sum+0x30/0x2f0 [ 669.451821][ T30] fib_seq_sum+0x30/0x2f0 [ 669.456224][ T30] register_fib_notifier+0x1ee/0x470 [ 669.469681][ T30] ? __pfx_nsim_fib_dump_inconsistent+0x10/0x10 [ 669.476126][ T30] nsim_fib_create+0x937/0xc90 [ 669.481011][ T30] ? __pfx_nsim_fib_create+0x10/0x10 [ 669.491798][ T30] ? queue_delayed_work_on+0xa2/0x150 [ 669.497215][ T30] ? nsim_dev_traps_init+0x23d/0x5d0 [ 669.510201][ T30] nsim_dev_reload_up+0x3f6/0x860 [ 669.515324][ T30] ? __pfx_nsim_dev_reload_up+0x10/0x10 [ 669.520899][ T30] ? devlink_params_driverinit_load_new+0x243/0x2d0 [ 669.527822][ T30] ? devlink_notify+0x125/0x220 [ 669.538617][ T30] devlink_reload+0x31a/0x7c0 [ 669.543449][ T30] ? __pfx_devlink_reload+0x10/0x10 [ 669.548691][ T30] devlink_pernet_pre_exit+0x1a1/0x2b0 [ 669.557506][ T30] ? __pfx_devlink_pernet_pre_exit+0x10/0x10 [ 669.572534][ T30] ? up_write+0x1b2/0x520 [ 669.576928][ T30] ? kobject_put+0xbe/0x5b0 [ 669.581464][ T30] ? __pfx_devlink_pernet_pre_exit+0x10/0x10 [ 669.591788][ T30] cleanup_net+0x488/0xbf0 [ 669.596252][ T30] ? __pfx_cleanup_net+0x10/0x10 [ 669.601220][ T30] process_one_work+0x9fb/0x1b60 [ 669.611668][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 669.616821][ T30] ? __pfx_process_one_work+0x10/0x10 [ 669.628237][ T30] ? assign_work+0x1a0/0x250 [ 669.632933][ T30] worker_thread+0x6c8/0xf70 [ 669.637549][ T30] ? __pfx_worker_thread+0x10/0x10 [ 669.657628][ T30] kthread+0x2c1/0x3a0 [ 669.666211][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 669.671477][ T30] ? __pfx_kthread+0x10/0x10 [ 669.697653][ T30] ret_from_fork+0x45/0x80 [ 669.718353][ T30] ? __pfx_kthread+0x10/0x10 [ 669.723222][ T30] ret_from_fork_asm+0x1a/0x30 [ 669.728043][ T30] [ 669.748770][ T30] INFO: task kworker/0:3:5162 blocked for more than 143 seconds. [ 669.761953][ T30] Not tainted 6.10.0-rc1-syzkaller-00104-gd8ec19857b09 #0 [ 669.770683][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 669.801901][ T30] task:kworker/0:3 state:D stack:25504 pid:5162 tgid:5162 ppid:2 flags:0x00004000 [