last executing test programs: 33.211263367s ago: executing program 1: socket$nl_route(0x10, 0x3, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) socket$nl_netfilter(0x10, 0x3, 0xc) r0 = syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0) mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) r1 = socket$vsock_stream(0x28, 0x1, 0x0) setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(0xffffffffffffffff, 0x28, 0x1, &(0x7f0000000380), 0x8) bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000440), 0x10) listen(r1, 0x0) writev(0xffffffffffffffff, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x20000081}], 0x1) bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000280), 0x10) r2 = socket$packet(0x11, 0x3, 0x300) r3 = socket$packet(0x11, 0x3, 0x300) setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000280)={0x2, &(0x7f0000000240)=[{0x48}, {0x6}]}, 0x10) r4 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="d8", 0x1}], 0x1}, 0x0) r5 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'hsr0\x00', 0x0}) sendto$packet(r2, &(0x7f0000000000)="003400000081003400000081f360705eb6710f1d4d38a830440488fb", 0x1c, 0x0, &(0x7f0000000080)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r10, 0x0, 0xffffffffffffffff, 0x0, 0xf3a, 0x0) write(r8, &(0x7f0000001100)="94", 0x1) tee(r7, 0xffffffffffffffff, 0x81, 0x0) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000580)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78) write$binfmt_misc(r9, 0x0, 0x0) 32.557860033s ago: executing program 1: fsopen(0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r2, &(0x7f0000001640)=[{{0x0, 0x0, &(0x7f0000000040)}}], 0x4a, 0x10000, 0x0) sendmsg$ETHTOOL_MSG_TSINFO_GET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000280)={0x14, r1, 0xfaac4106a1b87a7, 0x0, 0x0, {0xb}}, 0x14}}, 0x0) 31.151310373s ago: executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x4c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x1c}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x28}]}, @NFT_MSG_NEWSETELEM={0x40, 0xc, 0xa, 0x101, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_DATA={0x4}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xd4}}, 0x0) 30.720264998s ago: executing program 1: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r0, r1, 0x2}, 0x10) bpf$PROG_LOAD(0x5, 0x0, 0x0) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={@cgroup=r2, 0x2, 0x1, 0x0, &(0x7f0000000140)=[0x0], 0x1, 0x0, 0x0, 0x0, 0x0}, 0x40) 30.285114477s ago: executing program 1: r0 = socket$pppoe(0x18, 0x1, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) r2 = openat$adsp1(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$SNDCTL_DSP_CHANNELS(r2, 0xc0045006, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) socketpair$unix(0x1, 0x3, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) connect$pppoe(r0, &(0x7f0000000000)={0x18, 0x0, {0x7, @dev, 'macvlan1\x00'}}, 0x1e) sendmmsg(r0, &(0x7f000000d180), 0x4000000000000eb, 0x0) 23.605231827s ago: executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0) bpf$ENABLE_STATS(0x20, 0x0, 0x0) r1 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000000)={{r1, 0xffffffffffffffff}, &(0x7f0000000100), 0x0}, 0x20) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000000c0)={r2}, 0x4) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000005000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000d000000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0) write$binfmt_script(r4, &(0x7f0000020240), 0x10010) r5 = socket(0xa, 0x1, 0x0) close(r5) r6 = socket$kcm(0x29, 0x2, 0x0) sendmsg$kcm(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000080)='r', 0x200420}], 0x1}, 0x48000) sendmsg$kcm(r6, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000440)='b', 0x1}], 0x1}, 0x0) 22.981365414s ago: executing program 3: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000280)={'veth1\x00'}) 22.093938006s ago: executing program 3: ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x2f, 0x4, 0x0, 0x0, 0xbc, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp_prespec={0x44, 0x44, 0x0, 0x3, 0x0, [{@private=0xa010100}, {@multicast1}, {@remote}, {@dev={0xac, 0x14, 0x14, 0x32}, 0x659}, {@broadcast}, {@empty}, {@multicast1}, {@private=0xa010100}]}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x8, [{@dev}, {@remote}, {@multicast2}, {@private=0xa010101}, {@rand_addr=0x64010101}, {@broadcast, 0x52ae}, {@multicast2}]}, @noop, @noop, @noop, @lsrr={0x83, 0xf, 0xdc, [@private=0xa010102, @rand_addr=0x64010102, @multicast1]}, @rr={0x7, 0x13, 0x0, [@dev, @remote, @private, @remote]}]}}}}}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000c50018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70200000a000000b703000000000000850000002a000000bf090000000000004d090100000000009500000000000000bf91000000000000b7020000000000008500000000000000b70000000000080095"], &(0x7f0000000200)='syzkaller\x00', 0x9, 0x100b, &(0x7f0000001e40)=""/4107}, 0x90) 20.484187986s ago: executing program 3: syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='debugfs\x00', 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x0) getdents(r0, 0x0, 0x0) lseek(r0, 0x38, 0x0) 19.709318277s ago: executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000080)=0x3d90, 0x4) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10) sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000040), 0x291962b, 0x45833af92e4b39ff, 0x0) 15.450918266s ago: executing program 3: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000004c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="9f"], 0x0, 0x1a}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x0, 0x19, &(0x7f0000000540)=@raw=[@tail_call, @exit, @jmp, @map_val={0x18, 0x0, 0x2, 0x0, 0x1}, @map_fd={0x18, 0x0, 0x1, 0x0, 0x1}, @tail_call={{0x18, 0x2, 0x1, 0x0, 0x1}}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, 0x1}}, @tail_call={{0x18, 0x2, 0x1, 0x0, 0x1}}], 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x100, 0x100, 0x9, 0x1, 0x1}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000000000), 0xcff5, r0}, 0x38) 5.488042188s ago: executing program 4: bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0) r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030030000b07d25a806c8c6f94f90324fc60100305000a030200053582c137153e37000c0980fc0b10000300", 0x33fe0}], 0x1}, 0x0) 5.010669999s ago: executing program 1: r0 = socket$pppoe(0x18, 0x1, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) r2 = openat$adsp1(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$SNDCTL_DSP_CHANNELS(r2, 0xc0045006, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) socketpair$unix(0x1, 0x3, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) connect$pppoe(r0, &(0x7f0000000000)={0x18, 0x0, {0x7, @dev, 'macvlan1\x00'}}, 0x1e) sendmmsg(r0, &(0x7f000000d180), 0x4000000000000eb, 0x0) 4.922595748s ago: executing program 4: r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) ioctl$VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000040)) 4.423857928s ago: executing program 0: syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x80000c, &(0x7f0000000fc0)=ANY=[@ANYBLOB="706172743d3078303030303030303030303030303030342c6e6c733d61736369692c73657373696f6e3d3078666666666666666666666666666637662c747970653d883b7f382c63726561746f723dd4a620e92c6e6f6465636f6d706f73652c747970653d5dbcce902c756d61736b3d30303030303030303030303030303030303030303030312c63726561746f723d40f194712c626172726965722c63726561746f723d65fe04c22c6e6f6465636f6d706f73652c6465636f6d706f73652c63726561746f723d8a7222832c7569643d", @ANYRESDEC=0x0, @ANYBLOB="2c756d61736b3d30303030303030303030303030303030303030303030362c626172726965722c6e6f626172726965722c736d61636b66737472616e736d7574653d55dac73dddd1aa0ff491f57216572f1e671a989f42c64dc0b65d67d4250567573bb5e8d8c2d916d55de0fad0693e50202f126e0e71e930d123c47bc4a1d2ab46e52a07fd8ca501f330abb8b07d3a5364154ec1faf99b6a9779abe230ce8f5a290ef9442c7569643c", @ANYRES32, @ANYBLOB="101500000000", @ANYRES32, @ANYRESDEC, @ANYRES64], 0x1, 0x6f8, &(0x7f0000000300)="$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") r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) getdents(r0, &(0x7f0000000040)=""/104, 0x68) 4.392786939s ago: executing program 4: ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f00000000c0)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0xe, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x0, 0x0, @rand_addr=0x64010102, @remote, {[@timestamp_prespec={0x44, 0x24, 0x2c, 0x3, 0x0, [{@dev}, {@multicast1, 0x154}, {@multicast2}, {@broadcast, 0x52b4}]}]}}}}}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x0, 0x0, 0x0, 0x7ffc0001}]}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x0, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) 4.388888513s ago: executing program 2: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) r0 = syz_io_uring_setup(0x16d2, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000040)=0x0, &(0x7f0000000140)=0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x1, 0x8, 0x8}, 0x48) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000300)) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)) socket$inet6(0xa, 0x2, 0x0) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000440), 0x48) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x0, 0x4, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) syz_io_uring_setup(0x24fd, &(0x7f0000000180), 0x0, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000001c0)) write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}) io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0) 3.603055785s ago: executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x3, 0x0) socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000680)=@newtfilter={0x38, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {}, {0xd}}, [@filter_kind_options=@f_u32={{0x8}, {0xc, 0x2, [@TCA_U32_HASH={0x8}]}}]}, 0x38}}, 0x0) 3.434612014s ago: executing program 0: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000300)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='batadv_slave_1\x00', 0x10) sendmmsg$inet(r0, &(0x7f0000003b00)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000180)=';', 0x1}], 0x1}}], 0x1, 0x16da) 2.995736221s ago: executing program 2: r0 = socket$inet_mptcp(0x2, 0x1, 0x106) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10) writev(r0, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1) recvmmsg(r0, &(0x7f0000003e40)=[{{0x0, 0x3, 0x0, 0x0, &(0x7f00000035c0)=""/241, 0xf1}}, {{&(0x7f0000000540)=@un=@abs, 0x80, &(0x7f0000003780)=[{&(0x7f0000003740)=""/4, 0x7ffff}], 0x0, &(0x7f00000037c0)=""/236, 0xec}}, {{0x0, 0x0, &(0x7f0000003bc0)=[{0x0, 0xe00000000000000}, {&(0x7f0000003a00)=""/190, 0xbe}, {&(0x7f0000003ac0)=""/131, 0x83}, {0x0}], 0x4, &(0x7f0000003c00)=""/65, 0x49}}, {{&(0x7f0000003c80)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}}}, 0x80, 0x0, 0x0, &(0x7f0000003e00)=""/48, 0x30}}], 0x4, 0x40000121, 0x0) 2.572577411s ago: executing program 0: r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f00000000c0)) mmap$dsp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xd, 0x12, r0, 0x0) 2.537485124s ago: executing program 4: socket$nl_route(0x10, 0x3, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) socket$nl_netfilter(0x10, 0x3, 0xc) r0 = syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0) mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) r1 = socket$vsock_stream(0x28, 0x1, 0x0) setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(0xffffffffffffffff, 0x28, 0x1, &(0x7f0000000380), 0x8) bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000440), 0x10) listen(r1, 0x0) writev(0xffffffffffffffff, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x20000081}], 0x1) bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000280), 0x10) socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000280)={0x2, &(0x7f0000000240)=[{0x48}, {0x6}]}, 0x10) r3 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="d8", 0x1}], 0x1}, 0x0) socket$packet(0x11, 0x3, 0x300) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r7, 0x0, r8, 0x0, 0xf3a, 0x0) write(r5, &(0x7f0000001100)="94", 0x1) tee(r4, r8, 0x81, 0x0) write$binfmt_elf64(r8, &(0x7f0000000580)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78) write$binfmt_misc(r6, 0x0, 0x0) 1.253128345s ago: executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001a000100000000000000080002000000000000000000000008000100e0"], 0x2c}}, 0x0) 1.072286475s ago: executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0) bpf$ENABLE_STATS(0x20, 0x0, 0x0) r1 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000000)={{r1, 0xffffffffffffffff}, &(0x7f0000000100), 0x0}, 0x20) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000000c0)={r2}, 0x4) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000005000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000d000000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) r4 = socket$kcm(0x29, 0x2, 0x0) sendmsg$kcm(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000080)='r', 0x200420}], 0x1}, 0x48000) sendmsg$kcm(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000440)='b', 0x1}], 0x1}, 0x0) 867.113537ms ago: executing program 2: unshare(0x20000400) r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) bind$802154_raw(r0, &(0x7f0000000080)={0x24, @short}, 0x8) 644.592693ms ago: executing program 0: r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) ioctl$VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000040)) 497.345663ms ago: executing program 2: socket$inet6_mptcp(0xa, 0x1, 0x106) socket$packet(0x11, 0x3, 0x300) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x8918, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000800)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x401}, 0x1c) syz_emit_ethernet(0x14, &(0x7f0000000740)={@dev, @link_local, @val={@void}, {@generic={0x88a8, "3110"}}}, 0x0) syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00'}) sendmsg$NL80211_CMD_FRAME_WAIT_CANCEL(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYRES32=0x0], 0xb8}}, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) socket$nl_route(0x10, 0x3, 0x0) socket$nl_route(0x10, 0x3, 0x0) connect$netlink(r1, &(0x7f00000002c0)=@unspec, 0xc) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0) socket$pppoe(0x18, 0x1, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)={0x58, 0x2, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0xa000000}]}, @IPSET_ATTR_TYPENAME={0x14, 0x3, 'hash:ip,port,ip\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}]}, 0x58}}, 0x0) 472.363984ms ago: executing program 4: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) r0 = syz_io_uring_setup(0x16d2, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000040)=0x0, &(0x7f0000000140)=0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x1, 0x8, 0x8}, 0x48) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000300)) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)) socket$inet6(0xa, 0x2, 0x0) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000440), 0x48) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x0, 0x4, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) syz_io_uring_setup(0x24fd, &(0x7f0000000180), 0x0, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000001c0)) write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}) io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0) 283.005056ms ago: executing program 0: syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x4080, &(0x7f0000007dc0)=ANY=[@ANYBLOB='lastblock=00000000000000000000,umask=00000000000000000000002,dmode=00000000000000000077777,novrs,shortad,shortad,undelete,iocharset=cp437,shortad,umask=00000000000000000000006,dmode=00000000000000000000002,nostrict,uid=', @ANYRESOCT=0x0, @ANYRESDEC], 0x2, 0xc36, &(0x7f0000002540)="$eJzs3U9sHNd9B/DfGy3FldxWTOwoThoXm7ZIZcVy9S+mYhXuqqbZBpBlIRRzC8AVSakLUyRBUo1spAXTSw89BCiKHnIi0BoFUjQwmiLokWldILn4UOTUE9HCRlD0wBYBcgoYzOxbcUmRNi2SEmV9Pjb13Z19b/a9eeMZWdCbFwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAxB+8cun0mfSwWwEAPEhXRr56+qz7PwA8Vq75/38AAAAAAAAAAAAAADjoUhTxZKSYvbKaxqr3HfXL7b7bd0aHhreudiRVNQ9V5cuf+pmz585/6YXBC9283J7+gPp77bPx2si1S42XZ27Nzk3Oz09ONEan2+MzE5M73sNu6292sjoAjVuv3564cWO+cfb5cxs+vjPwfv8TxwcuDj576plu2dGh4eGR9SL13vK1+25Ix3YzPA5HEacixXPf+2lqRUQRuz8W9Qc79psdqTpxsurE6NBw1ZGpdmt6ofzwavdAFBGNnkrN7jHaeiyi1vdA+7C9ZsRi2fyywSfL7o3MtuZa16cmG1dbcwvthfbM9NXUaW3Zn0YUcSFFLEXESv+9u+uLImqR4jvHVtP1iDjUPQ5frCYGb9+OYh/7uANlOxt9EUvFIzBmB1h/FPFqpPjZOydiPF9nqmvNFyJeLfMHEW+V+VJEKk+M8xHvbXEe8WiqRRF/WY7/xdU0UV0PuteVy19rfGX6xkxP2e515SPeH+65Ujyk+8ORTflgHPBrUz2KaFVX/NV0/7/ZAQAAAAAAAAAAAAAAAGCvHYkiPhMpXvmPP6nmFUc1L/3YxcE/HPjV3jnjT3/Ifsqyz0fEYrGzObmH88TAq+lqSg95LvHjrB5F/Gme//eth90YAAAAAAAAAAAAAAAAAACAx1oRP4kUL757Ii1F75ri7embjWut61OdVWG7a/9210xfW1tba6RONnOO5VzMuZRzOedKzihy/ZzNnGM5F3Mu5VzOuZIzDuX6OZs5x3Iu5lzKuZxzJWfUcv2czZxjORfLrK93dDlvX8kZB2TtXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAj5MiivhFpPj2N1ZTpIhoRoxFJ5f7H3brAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBSfyri+5Gi8UfNu9tqEZGqfztOlL+cj+bhMj8ZzcEyX4rmpZytKmvNbz2E9rM7famIH0eK/vrbdwc8j39f593d0yDe+ub6u8/WOnmo++HA+/1PHD92cXD4N57e7nXaqgEnL7enb99pjA4ND4/0bK7lb/9kz7aB/L3F3nSdiJh/483XW1NTk3P3/6I8BXZR/RF6kWqPS08f1ovFvTgh9+5F1A5EMx5O33kMlPf/9yLF7777n90bfuf+X49f6by7e4ePn//Z+v3/xc072uH9v7a5Xr7/l/f0re7/T/ZsezH/bqSvFlFfuDXbdzyiPv/Gm6fat1o3J29OTp8/ffrLg4NfPne673BE/UZ7arLn1Z4cLgAAAAAAAAAAAAAAAIAHJxXx+5Gi9ePV1IiIO9V8rYGLg8+eeuZQHKrmW22Yt/3ayLVLjZdnbs3OTc7PT040Rqfb4zMTkzv9uno13Wt0aHhfOvOhjuxz+4/UX56ZfWOuffOPF7b8/Gj90vX5hbnW+NYfx5EoIpq9W05WDR4dGq4aPdVuTVdVr245mf6j60tF/FekGD/fSJ/P2/L8/80z/DfM/1/cvKN9mv//iZ5t5XemVMTPI8Xv/NXT8fmqnUfjnmOWy/1dpDh54XO5XBwuy3Xb0HmuQGdmYFn2/yLFP/1iY9nufMgn18ue2fGBfUSU438sUnz/L74bv5m3bXz+w9bjf3TzjvZp/J/q2XZ0w/MKdt118vifihQvPfl2/Fbe9kHP/+g+e+NELnz3+Rz7NP6f6tk2kL/3t/em6wAAAAAAAAAAAI+0vlTE30eKHw7X0gt5207+/t/E5h3t09//+nTPtom9Wa/oQ1/s+qACAAAAwAHRl4r4SaS4ufD23TnUG+d/98z//L31+Z9DadOn1Z/z/Vr13IC9/PO/XgP5e8d2320AAAAAAAAAAAAAAAAAAAA4UFIq4oW8nvpYNZ9/Ytv11JcjxSv/81wul46X5brrwA9Uv9avzEyfujQ1NTPeWmhdn5psjMy2xifLuk9FitW//VyuW1Trq3fXm++s8b6+FvtcpBj+h27Zzlrs3bXJn1ove6Ys+4lI8d//uLFsdx3rT62XPVuW/ZtI8fV/2brs8fWy58qy340UP/p6o1v2aFm2+3zUT6+XfX58ptiHUQEAAAAAAAAAAAAAAAAAAOBx05eK+PNI8b+3lu7O5c/r//f1vK289c2e9f43uVOt8z9Qrf+/3ev7Wf+/eq7A4nbfCgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAH08pingzUsxeWU3L/eX7jvrl9vTtO6NDw1tXO5Kqmoeq8uVP/czZc+e/9MLghW5+cP299pl4beTapcbLM7dm5ybn5ycnGqPT7fGZickd72G39Tc7WR2Axq3Xb0/cuDHfOPv8uQ0f3xl4v/+J4wMXB5899Uy37OjQ8PBIT5la331/+z3SNtsPRxF/HSme+95P0w/7I4rY/bH4kHNnvx2pOnGy6sTo0HDVkal2a3qh/PBq90AUEY2eSs3uMXoAY7ErzYjFsvllg0+W3RuZbc21rk9NNq625hbaC+2Z6aup09qyP40o4kKKWIqIlf57d9cXRbweKb5zbDX9a3/Eoe5x+OKVka+ePrt9O4p97OMOlO1s9EUsFY/AmB1g/VHEP0eKn71zIv6tP6IWnZ/4QsSrZf4g4q3ojHcqT4zzEe9tcR7xaKpFEf9fjv/F1fROf3k96F5XLn+t8ZXpGzM9ZbvXlUf+/vAgHfBrUz2K+FF1xV9N/+6/awAAAAAAAAAAAAAAAIADpIhfjxQvvnsiVfOD784pbk/fbFxrXZ/qTOvrzv3rzpleW1tba6RONnOO5VzMuZRzOedKzihy/ZzNMutra2P5/WLOpZzLOVdyxqFcP2cz51jOxZxLOZdzruSMWq6fs5lzLOdizqWcyzlXcsYBmbsHAAAAAAAAAAAAAAAAAAB8vBTVPym+/Y3VtNbfWV96LDq5bD3Qj71fBgAA//8dq/O8") ioctl$FS_IOC_SET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x800c6613, 0x0) mkdir(&(0x7f0000000340)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r1 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0) renameat2(r0, &(0x7f0000000000)='./file0\x00', r1, &(0x7f00000004c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', 0x0) rename(&(0x7f0000000200)='./file0\x00', &(0x7f0000000f00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 0s ago: executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x3, 0x0) socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000680)=@newtfilter={0x38, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {}, {0xd}}, [@filter_kind_options=@f_u32={{0x8}, {0xc, 0x2, [@TCA_U32_HASH={0x8}]}}]}, 0x38}}, 0x0) kernel console output (not intermixed with test programs): 338.364682][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 338.390432][ T5862] veth1_vlan: entered promiscuous mode [ 338.413951][ T5140] bridge0: port 2(bridge_slave_1) entered blocking state [ 338.421698][ T5140] bridge0: port 2(bridge_slave_1) entered forwarding state [ 338.659075][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 338.669904][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 338.684894][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 338.904191][ T5831] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 338.915232][ T5831] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 338.926624][ T5831] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 338.935843][ T5831] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 339.216826][ T5862] veth0_macvtap: entered promiscuous mode [ 339.347624][ T5862] veth1_macvtap: entered promiscuous mode [ 339.428586][ T5951] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 339.555097][ T5951] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 339.655264][ T5951] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 339.794717][ T5951] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 339.860534][ T5862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 339.872332][ T5862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 339.882579][ T5862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 339.893312][ T5862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 339.908589][ T5862] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 340.307052][ T5862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 340.318518][ T5862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 340.328843][ T5862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 340.339684][ T5862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 340.354877][ T5862] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 340.541557][ T779] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 340.551231][ T779] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 340.627905][ T5862] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 340.637163][ T5862] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 340.647371][ T5862] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 340.657318][ T5862] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 340.894701][ T2924] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 340.902985][ T2924] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 341.639700][ T5951] 8021q: adding VLAN 0 to HW filter on device bond0 [ 341.747036][ T5909] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 341.887138][ T5951] 8021q: adding VLAN 0 to HW filter on device team0 [ 342.029112][ T43] bridge0: port 1(bridge_slave_0) entered blocking state [ 342.037073][ T43] bridge0: port 1(bridge_slave_0) entered forwarding state [ 342.095813][ T1226] ieee802154 phy0 wpan0: encryption failed: -22 [ 342.102664][ T1226] ieee802154 phy1 wpan1: encryption failed: -22 [ 342.237001][ T43] bridge0: port 2(bridge_slave_1) entered blocking state [ 342.244823][ T43] bridge0: port 2(bridge_slave_1) entered forwarding state [ 343.280428][ T29] audit: type=1804 audit(1717836084.222:11): pid=6056 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir4034226804/syzkaller.W0z7ie/1/cgroup.controllers" dev="sda1" ino=1942 res=1 errno=0 [ 344.327776][ T29] audit: type=1800 audit(1717836085.282:12): pid=6074 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1948 res=0 errno=0 [ 344.350633][ T29] audit: type=1804 audit(1717836085.312:13): pid=6074 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir4034226804/syzkaller.W0z7ie/2/bus/bus" dev="sda1" ino=1948 res=1 errno=0 [ 344.834531][ T5951] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 345.063111][ T5909] veth0_vlan: entered promiscuous mode [ 345.284972][ T5909] veth1_vlan: entered promiscuous mode [ 345.486491][ T5951] veth0_vlan: entered promiscuous mode [ 345.603710][ T5909] veth0_macvtap: entered promiscuous mode [ 345.621672][ T5951] veth1_vlan: entered promiscuous mode [ 345.775790][ T5909] veth1_macvtap: entered promiscuous mode [ 345.983161][ T5909] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 345.993978][ T5909] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 346.004286][ T5909] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 346.015034][ T5909] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 346.025209][ T5909] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 346.037760][ T5909] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 346.055581][ T5909] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 346.081381][ T5951] veth0_macvtap: entered promiscuous mode [ 346.202841][ T5951] veth1_macvtap: entered promiscuous mode [ 346.330075][ T5909] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 346.341014][ T5909] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 346.351297][ T5909] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 346.362252][ T5909] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 346.372408][ T5909] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 346.379872][ T29] audit: type=1326 audit(1717836087.252:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6093 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa25f87cf69 code=0x7ffc0000 [ 346.383120][ T5909] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 346.407657][ T29] audit: type=1326 audit(1717836087.252:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6093 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa25f87cf69 code=0x7ffc0000 [ 346.420822][ T5909] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 346.440424][ T29] audit: type=1326 audit(1717836087.252:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6093 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa25f87cf69 code=0x7ffc0000 [ 346.440646][ T29] audit: type=1326 audit(1717836087.252:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6093 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa25f87cf69 code=0x7ffc0000 [ 346.440854][ T29] audit: type=1326 audit(1717836087.252:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6093 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa25f87cf69 code=0x7ffc0000 [ 346.441060][ T29] audit: type=1326 audit(1717836087.252:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6093 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa25f87cf69 code=0x7ffc0000 [ 346.623711][ T5951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 346.634608][ T5951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 346.644829][ T5951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 346.655569][ T5951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 346.665789][ T5951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 346.676629][ T5951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 346.686865][ T5951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 346.697705][ T5951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 346.716372][ T5951] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 346.775621][ T5909] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 346.787012][ T5909] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 346.799196][ T5909] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 346.810492][ T5909] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 346.957208][ T5951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 346.968152][ T5951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 346.979095][ T5951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 346.990205][ T5951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 347.001748][ T5951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 347.015386][ T5951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 347.025513][ T5951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 347.036346][ T5951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 347.051486][ T5951] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 347.126904][ T5951] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 347.136130][ T5951] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 347.145302][ T5951] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 347.161170][ T5951] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 347.303627][ T6101] serio: Serial port pts0 [ 347.943038][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 347.951201][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 348.161954][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 348.171132][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 349.636695][ T2970] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 349.645897][ T2970] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 349.864099][ T779] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 349.873170][ T779] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 350.518772][ T6130] kvm: kvm [6128]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x600100000800 [ 350.617548][ T6130] kvm: kvm [6128]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x8e0100000800 [ 351.623847][ T6154] Zero length message leads to an empty skb [ 351.964608][ T6153] loop2: detected capacity change from 0 to 2048 [ 352.109865][ T6163] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 352.322739][ T29] audit: type=1800 audit(1717836093.242:20): pid=6162 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1954 res=0 errno=0 [ 352.503336][ T6163] NILFS (loop2): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 352.515731][ T6163] NILFS error (device loop2): nilfs_bmap_propagate: broken bmap (inode number=4) [ 352.528126][ T6162] loop0: detected capacity change from 0 to 1024 [ 352.669189][ T6163] Remounting filesystem read-only [ 353.133003][ T5831] NILFS (loop2): disposed unprocessed dirty file(s) when stopping log writer [ 353.142430][ T5831] NILFS (loop2): discard dirty page: offset=0, ino=15 [ 353.149437][ T5831] NILFS (loop2): discard dirty block: blocknr=22, size=1024 [ 353.159047][ T5831] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 353.167777][ T5831] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 353.177039][ T5831] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 353.195229][ T5129] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 353.263368][ T5831] NILFS (loop2): discard dirty page: offset=0, ino=6 [ 353.270419][ T5831] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 353.279753][ T5831] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 353.289237][ T5831] NILFS (loop2): discard dirty block: blocknr=37, size=1024 [ 353.296892][ T5831] NILFS (loop2): discard dirty block: blocknr=38, size=1024 [ 353.323545][ T29] audit: type=1326 audit(1717836094.232:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6168 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa25f87cf69 code=0x0 [ 353.376970][ T5831] NILFS (loop2): discard dirty page: offset=0, ino=5 [ 353.384137][ T5831] NILFS (loop2): discard dirty block: blocknr=41, size=1024 [ 353.391673][ T5831] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 353.401037][ T5831] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 353.410404][ T5831] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 353.472357][ T5129] usb 1-1: Using ep0 maxpacket: 8 [ 353.616389][ T5129] usb 1-1: config 135 has an invalid interface number: 230 but max is 0 [ 353.625146][ T5129] usb 1-1: config 135 has no interface number 0 [ 353.631674][ T5129] usb 1-1: config 135 interface 230 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3 [ 353.794835][ T5831] NILFS (loop2): discard dirty page: offset=0, ino=4 [ 353.801916][ T5831] NILFS (loop2): discard dirty block: blocknr=40, size=1024 [ 353.809687][ T5831] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 353.818977][ T5831] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 353.828226][ T5831] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 353.891981][ T5831] NILFS (loop2): discard dirty page: offset=0, ino=3 [ 353.895377][ T5129] usb 1-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=3f.3a [ 353.899229][ T5831] NILFS (loop2): discard dirty block: blocknr=42, size=1024 [ 353.908460][ T5129] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 353.908592][ T5129] usb 1-1: Product: syz [ 353.916078][ T5831] NILFS (loop2): discard dirty block: blocknr=43, size=1024 [ 353.924236][ T5129] usb 1-1: Manufacturer: syz [ 353.928353][ T5831] NILFS (loop2): discard dirty block: blocknr=44, size=1024 [ 353.935791][ T5129] usb 1-1: SerialNumber: syz [ 353.940438][ T5831] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 353.962770][ T5831] NILFS (loop2): discard dirty page: offset=229376, ino=3 [ 353.976600][ T5831] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 353.988193][ T5831] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 353.997444][ T5831] NILFS (loop2): discard dirty block: blocknr=50, size=1024 [ 354.005099][ T5831] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 354.046728][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 354.055554][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 354.206642][ T34] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 354.214900][ T34] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 354.445115][ T6162] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 354.532701][ T779] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 354.540770][ T779] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 354.581807][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 354.595303][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 354.673145][ T5129] usb 1-1: Found UVC 0.00 device syz (18ec:3288) [ 354.679841][ T5129] usb 1-1: No valid video chain found. [ 354.777775][ T5129] usb 1-1: USB disconnect, device number 3 [ 354.950873][ T13] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 355.071499][ T29] audit: type=1326 audit(1717836095.962:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6179 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa25f87cf69 code=0x0 [ 355.239760][ T13] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 355.425133][ T13] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 355.646971][ T13] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 355.673178][ T6184] loop1: detected capacity change from 0 to 2048 [ 355.767396][ T6184] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 355.940175][ T6189] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 356.398319][ T13] bridge_slave_1: left allmulticast mode [ 356.404969][ T13] bridge_slave_1: left promiscuous mode [ 356.411568][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 356.570566][ T13] bridge_slave_0: left allmulticast mode [ 356.577883][ T13] bridge_slave_0: left promiscuous mode [ 356.584835][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 357.389787][ T6193] loop4: detected capacity change from 0 to 32768 [ 357.807300][ T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 357.914739][ T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 357.976135][ T13] bond0 (unregistering): Released all slaves [ 359.103584][ T6207] loop4: detected capacity change from 0 to 256 [ 359.369087][ T6205] loop3: detected capacity change from 0 to 32768 [ 359.387687][ T6205] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (6205) [ 359.464348][ T6205] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 359.475003][ T6205] BTRFS info (device loop3): using sha256 (sha256-generic) checksum algorithm [ 359.486394][ T6205] BTRFS info (device loop3): using free-space-tree [ 359.593313][ T6207] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 359.821566][ T13] hsr_slave_0: left promiscuous mode [ 359.876161][ T6205] BTRFS info (device loop3): rebuilding free space tree [ 359.918709][ T13] hsr_slave_1: left promiscuous mode [ 360.031571][ T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 360.039762][ T13] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 360.118456][ T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 360.126317][ T13] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 360.265518][ T13] veth1_macvtap: left promiscuous mode [ 360.271338][ T13] veth0_macvtap: left promiscuous mode [ 360.277523][ T13] veth1_vlan: left promiscuous mode [ 360.283215][ T13] veth0_vlan: left promiscuous mode [ 360.301711][ T29] audit: type=1804 audit(1717836101.202:23): pid=6228 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir4034226804/syzkaller.W0z7ie/10/bus/bus" dev="loop3" ino=263 res=1 errno=0 [ 360.380304][ T6226] loop0: detected capacity change from 0 to 2048 [ 360.734787][ T6226] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 360.867187][ T5076] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 360.876985][ T5076] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 360.889706][ T5076] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 360.945452][ T5076] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 360.980861][ T5076] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 360.994949][ T5076] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 362.113111][ T13] team0 (unregistering): Port device team_slave_1 removed [ 362.231595][ T13] team0 (unregistering): Port device team_slave_0 removed [ 363.284879][ T5076] Bluetooth: hci2: command tx timeout [ 363.537738][ T5770] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 363.783567][ T5133] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 364.033364][ T5862] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 364.102497][ T5133] usb 2-1: Using ep0 maxpacket: 32 [ 364.254996][ T5133] usb 2-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 364.265989][ T5133] usb 2-1: config 4 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 364.279514][ T5133] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 364.289038][ T5133] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 364.447789][ T5133] hub 2-1:4.0: bad descriptor, ignoring hub [ 364.454320][ T5133] hub 2-1:4.0: probe with driver hub failed with error -5 [ 364.468439][ T5133] usbhid 2-1:4.0: couldn't find an input interrupt endpoint [ 364.674869][ T6265] fuse: Unknown parameter '' [ 364.786000][ T6265] input: syz1 as /devices/virtual/input/input14 [ 364.886618][ T6275] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 364.896519][ T6275] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 364.955833][ T6236] chnl_net:caif_netlink_parms(): no params data found [ 365.314792][ T5076] Bluetooth: hci2: command tx timeout [ 366.095522][ T5133] usb 2-1: USB disconnect, device number 5 [ 367.014301][ T6236] bridge0: port 1(bridge_slave_0) entered blocking state [ 367.022022][ T6236] bridge0: port 1(bridge_slave_0) entered disabled state [ 367.030465][ T6236] bridge_slave_0: entered allmulticast mode [ 367.039686][ T6236] bridge_slave_0: entered promiscuous mode [ 367.345065][ T6236] bridge0: port 2(bridge_slave_1) entered blocking state [ 367.352943][ T6236] bridge0: port 2(bridge_slave_1) entered disabled state [ 367.360772][ T6236] bridge_slave_1: entered allmulticast mode [ 367.370336][ T6236] bridge_slave_1: entered promiscuous mode [ 367.422717][ T5076] Bluetooth: hci2: command tx timeout [ 367.928852][ T6236] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 368.106252][ T6236] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 368.450832][ T29] audit: type=1326 audit(1717836109.362:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6311 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 368.472966][ T6236] team0: Port device team_slave_0 added [ 368.474108][ T29] audit: type=1326 audit(1717836109.362:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6311 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 368.502829][ T29] audit: type=1326 audit(1717836109.422:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6311 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 368.531108][ T29] audit: type=1326 audit(1717836109.422:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6311 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 368.538011][ T6236] team0: Port device team_slave_1 added [ 368.555573][ T29] audit: type=1326 audit(1717836109.422:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6311 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 368.583180][ T29] audit: type=1326 audit(1717836109.422:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6311 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 368.606470][ T29] audit: type=1326 audit(1717836109.422:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6311 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 368.999342][ T6236] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 369.007683][ T6236] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 369.039853][ T6236] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 369.266170][ T6236] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 369.273577][ T6236] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 369.299979][ T6236] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 369.481358][ T5076] Bluetooth: hci2: command tx timeout [ 369.930872][ T6236] hsr_slave_0: entered promiscuous mode [ 369.989745][ T6236] hsr_slave_1: entered promiscuous mode [ 370.088578][ T6236] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 370.096474][ T6236] Cannot create hsr debugfs directory [ 370.715173][ T2914] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 370.952686][ T2914] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 371.329997][ T2914] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 371.580706][ T2914] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 371.875097][ T5079] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 371.884944][ T5079] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 371.949021][ T5079] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 371.984370][ T5079] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 372.030152][ T5079] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 372.044260][ T5079] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 372.642957][ T2914] bridge_slave_1: left allmulticast mode [ 372.648867][ T2914] bridge_slave_1: left promiscuous mode [ 372.655969][ T2914] bridge0: port 2(bridge_slave_1) entered disabled state [ 372.736774][ T2914] bridge_slave_0: left allmulticast mode [ 372.743100][ T2914] bridge_slave_0: left promiscuous mode [ 372.757261][ T2914] bridge0: port 1(bridge_slave_0) entered disabled state [ 373.724323][ T2914] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 373.814536][ T2914] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 373.865220][ T2914] bond0 (unregistering): Released all slaves [ 374.116474][ T5076] Bluetooth: hci4: command tx timeout [ 374.933030][ T6236] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 375.009248][ T6236] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 375.093749][ T6236] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 375.220652][ T2914] hsr_slave_0: left promiscuous mode [ 375.266581][ T2914] hsr_slave_1: left promiscuous mode [ 375.289585][ T6385] loop0: detected capacity change from 0 to 256 [ 375.298332][ T2914] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 375.307196][ T2914] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 375.342071][ T2914] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 375.351135][ T2914] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 375.403126][ T2914] veth1_macvtap: left promiscuous mode [ 375.408894][ T2914] veth0_macvtap: left promiscuous mode [ 375.414969][ T2914] veth1_vlan: left promiscuous mode [ 375.420542][ T2914] veth0_vlan: left promiscuous mode [ 375.460083][ T6385] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 376.168038][ T2914] team0 (unregistering): Port device team_slave_1 removed [ 376.193686][ T5076] Bluetooth: hci4: command tx timeout [ 376.208445][ T2914] team0 (unregistering): Port device team_slave_0 removed [ 376.837649][ T6236] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 377.618407][ T6350] chnl_net:caif_netlink_parms(): no params data found [ 378.285032][ T5076] Bluetooth: hci4: command tx timeout [ 378.657903][ T6236] 8021q: adding VLAN 0 to HW filter on device bond0 [ 378.966819][ T6236] 8021q: adding VLAN 0 to HW filter on device team0 [ 379.034842][ T779] bridge0: port 1(bridge_slave_0) entered blocking state [ 379.042713][ T779] bridge0: port 1(bridge_slave_0) entered forwarding state [ 379.180879][ T779] bridge0: port 2(bridge_slave_1) entered blocking state [ 379.188714][ T779] bridge0: port 2(bridge_slave_1) entered forwarding state [ 379.976864][ T6350] bridge0: port 1(bridge_slave_0) entered blocking state [ 379.990243][ T6350] bridge0: port 1(bridge_slave_0) entered disabled state [ 379.998185][ T6350] bridge_slave_0: entered allmulticast mode [ 380.007300][ T6350] bridge_slave_0: entered promiscuous mode [ 380.134750][ T6436] loop0: detected capacity change from 0 to 256 [ 380.156112][ T6350] bridge0: port 2(bridge_slave_1) entered blocking state [ 380.164817][ T6350] bridge0: port 2(bridge_slave_1) entered disabled state [ 380.172815][ T6350] bridge_slave_1: entered allmulticast mode [ 380.181830][ T6350] bridge_slave_1: entered promiscuous mode [ 380.357023][ T5076] Bluetooth: hci4: command tx timeout [ 380.387013][ T6436] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 380.642823][ T6350] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 380.737249][ T6350] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 381.018032][ T6350] team0: Port device team_slave_0 added [ 381.140158][ T6350] team0: Port device team_slave_1 added [ 381.483966][ T6350] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 381.491121][ T6350] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 381.521759][ T6350] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 381.780094][ T6350] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 381.788639][ T6350] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 381.816305][ T6350] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 382.043716][ T6236] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 382.485762][ T6350] hsr_slave_0: entered promiscuous mode [ 382.544360][ T6350] hsr_slave_1: entered promiscuous mode [ 382.577519][ T6350] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 382.586549][ T6350] Cannot create hsr debugfs directory [ 383.184764][ T6236] veth0_vlan: entered promiscuous mode [ 383.295531][ T6236] veth1_vlan: entered promiscuous mode [ 384.123096][ T6236] veth0_macvtap: entered promiscuous mode [ 384.284626][ T6236] veth1_macvtap: entered promiscuous mode [ 384.558418][ T29] audit: type=1800 audit(1717836125.522:31): pid=6484 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1940 res=0 errno=0 [ 384.579827][ T29] audit: type=1804 audit(1717836125.542:32): pid=6484 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir615082741/syzkaller.EfpWAk/20/bus/bus" dev="sda1" ino=1940 res=1 errno=0 [ 384.651308][ T6236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 384.662081][ T6236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 384.672604][ T6236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 384.683345][ T6236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 384.695465][ T6236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 384.706922][ T6236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 384.722076][ T6236] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 384.742505][ T6350] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 384.883183][ T6350] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 384.969754][ T6350] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 385.047862][ T6350] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 385.078794][ T6236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 385.089956][ T6236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 385.104569][ T6236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 385.116568][ T6236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 385.126806][ T6236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 385.137613][ T6236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 385.153449][ T6236] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 385.176362][ T6489] loop4: detected capacity change from 0 to 256 [ 385.194276][ T6236] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 385.208178][ T6236] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 385.218574][ T6236] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 385.227799][ T6236] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 385.456727][ T6489] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 386.910879][ T6350] 8021q: adding VLAN 0 to HW filter on device bond0 [ 387.181303][ T6350] 8021q: adding VLAN 0 to HW filter on device team0 [ 387.307331][ T5947] bridge0: port 1(bridge_slave_0) entered blocking state [ 387.315142][ T5947] bridge0: port 1(bridge_slave_0) entered forwarding state [ 387.449959][ T5947] bridge0: port 2(bridge_slave_1) entered blocking state [ 387.457767][ T5947] bridge0: port 2(bridge_slave_1) entered forwarding state [ 389.167891][ T6538] loop4: detected capacity change from 0 to 256 [ 389.327611][ T29] audit: type=1800 audit(1717836130.232:33): pid=6532 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1962 res=0 errno=0 [ 389.348795][ T29] audit: type=1804 audit(1717836130.252:34): pid=6540 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir615082741/syzkaller.EfpWAk/24/file0/bus/bus" dev="sda1" ino=1962 res=1 errno=0 [ 389.548069][ T6538] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 389.590956][ T6350] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 390.261681][ T6350] veth0_vlan: entered promiscuous mode [ 390.704485][ T6350] veth1_vlan: entered promiscuous mode [ 391.237508][ T6350] veth0_macvtap: entered promiscuous mode [ 391.314787][ T6350] veth1_macvtap: entered promiscuous mode [ 391.523484][ T6350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 391.534323][ T6350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 391.546318][ T6350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 391.562517][ T6350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 391.574026][ T6350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 391.584846][ T6350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 391.595025][ T6350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 391.606051][ T6350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 391.621249][ T6350] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 391.899889][ T6350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 391.912347][ T6350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 391.922788][ T6350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 391.933551][ T6350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 391.943687][ T6350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 391.960094][ T6350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 391.975204][ T6350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 391.987295][ T6350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 392.002572][ T6350] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 392.147128][ T6350] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 392.156927][ T6350] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 392.168306][ T6350] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 392.178499][ T6350] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 392.915935][ T3762] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 392.924501][ T3762] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 393.103812][ T5133] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 393.112000][ T5133] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 393.766858][ T29] audit: type=1800 audit(1717836134.692:35): pid=6584 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="overlay" ino=1940 res=0 errno=0 [ 393.788651][ T29] audit: type=1804 audit(1717836134.742:36): pid=6589 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir1661350368/syzkaller.ev1hbT/32/file0/bus/bus" dev="overlay" ino=1940 res=1 errno=0 [ 394.156041][ T6594] loop0: detected capacity change from 0 to 256 [ 394.452095][ T6594] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 397.136978][ T29] audit: type=1800 audit(1717836138.012:37): pid=6631 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1946 res=0 errno=0 [ 397.160187][ T29] audit: type=1804 audit(1717836138.042:38): pid=6633 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir1661350368/syzkaller.ev1hbT/35/file0/bus/bus" dev="sda1" ino=1946 res=1 errno=0 [ 397.262700][ T5947] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 397.327775][ T6637] loop0: detected capacity change from 0 to 256 [ 397.549060][ T6637] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 397.556997][ T5947] usb 2-1: Using ep0 maxpacket: 32 [ 397.714027][ T5947] usb 2-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 397.725046][ T5947] usb 2-1: config 4 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 397.738512][ T5947] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 397.748149][ T5947] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 397.886621][ T5947] hub 2-1:4.0: bad descriptor, ignoring hub [ 397.893007][ T5947] hub 2-1:4.0: probe with driver hub failed with error -5 [ 397.909450][ T5947] usbhid 2-1:4.0: couldn't find an input interrupt endpoint [ 398.196570][ T6632] fuse: Unknown parameter '' [ 398.264890][ T6632] input: syz1 as /devices/virtual/input/input15 [ 398.368247][ T6632] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 398.377616][ T6632] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 399.030408][ T34] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 399.038676][ T34] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 399.276748][ T10] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 399.285097][ T10] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 399.323606][ T779] usb 2-1: USB disconnect, device number 6 [ 400.041414][ T29] audit: type=1800 audit(1717836140.982:39): pid=6674 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1962 res=0 errno=0 [ 400.065333][ T29] audit: type=1804 audit(1717836141.002:40): pid=6674 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir1661350368/syzkaller.ev1hbT/39/bus/bus" dev="sda1" ino=1962 res=1 errno=0 [ 400.198049][ T6680] loop2: detected capacity change from 0 to 256 [ 400.383750][ T6680] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 401.352506][ T8] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 401.622706][ T8] usb 2-1: Using ep0 maxpacket: 32 [ 401.742991][ T8] usb 2-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 401.753962][ T8] usb 2-1: config 4 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 401.767360][ T8] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 401.776814][ T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 401.885539][ T8] hub 2-1:4.0: bad descriptor, ignoring hub [ 401.896581][ T8] hub 2-1:4.0: probe with driver hub failed with error -5 [ 401.911624][ T8] usbhid 2-1:4.0: couldn't find an input interrupt endpoint [ 402.114633][ T6691] fuse: Unknown parameter '' [ 402.251644][ T29] audit: type=1800 audit(1717836143.242:41): pid=6711 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1943 res=0 errno=0 [ 402.313751][ T6713] input: syz1 as /devices/virtual/input/input16 [ 402.346980][ T6691] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 402.356808][ T6691] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 402.363480][ T29] audit: type=1804 audit(1717836143.342:42): pid=6711 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir3349367462/syzkaller.PICMXC/11/bus/bus" dev="sda1" ino=1943 res=1 errno=0 [ 402.520257][ T6716] loop4: detected capacity change from 0 to 256 [ 402.593085][ T6716] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 403.153389][ T5947] usb 2-1: USB disconnect, device number 7 [ 403.502079][ T1226] ieee802154 phy0 wpan0: encryption failed: -22 [ 403.508887][ T1226] ieee802154 phy1 wpan1: encryption failed: -22 [ 404.459762][ T29] audit: type=1800 audit(1717836145.382:43): pid=6747 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1964 res=0 errno=0 [ 404.468907][ T6748] loop1: detected capacity change from 0 to 256 [ 404.481769][ T29] audit: type=1804 audit(1717836145.392:44): pid=6747 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3821981363/syzkaller.A8TwbC/49/bus/bus" dev="sda1" ino=1964 res=1 errno=0 [ 404.706683][ T6748] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 405.052493][ T25] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 405.293538][ T25] usb 4-1: Using ep0 maxpacket: 32 [ 405.422796][ T25] usb 4-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 405.434216][ T25] usb 4-1: config 4 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 405.448631][ T25] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 405.458622][ T25] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 405.575334][ T25] hub 4-1:4.0: bad descriptor, ignoring hub [ 405.590200][ T25] hub 4-1:4.0: probe with driver hub failed with error -5 [ 405.607229][ T25] usbhid 4-1:4.0: couldn't find an input interrupt endpoint [ 405.808255][ T6752] fuse: Unknown parameter '' [ 405.894760][ T6752] input: syz1 as /devices/virtual/input/input17 [ 406.016302][ T6752] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 406.026155][ T6752] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 406.823342][ T29] audit: type=1800 audit(1717836147.752:45): pid=6779 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="overlay" ino=1970 res=0 errno=0 [ 406.845670][ T29] audit: type=1804 audit(1717836147.772:46): pid=6779 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3821981363/syzkaller.A8TwbC/51/bus/bus" dev="overlay" ino=1970 res=1 errno=0 [ 407.034126][ T8] usb 4-1: USB disconnect, device number 3 [ 407.287609][ T6789] loop1: detected capacity change from 0 to 256 [ 407.451697][ T6789] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 408.847553][ T29] audit: type=1800 audit(1717836149.812:47): pid=6815 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1965 res=0 errno=0 [ 408.874381][ T29] audit: type=1804 audit(1717836149.812:48): pid=6815 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir1661350368/syzkaller.ev1hbT/52/bus/bus" dev="sda1" ino=1965 res=1 errno=0 [ 409.092795][ T779] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 409.123467][ T6822] loop3: detected capacity change from 0 to 256 [ 409.316147][ T6822] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 409.378088][ T779] usb 3-1: Using ep0 maxpacket: 32 [ 409.564445][ T779] usb 3-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 409.580838][ T779] usb 3-1: config 4 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 409.596370][ T779] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 409.605842][ T779] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 409.727248][ T779] hub 3-1:4.0: bad descriptor, ignoring hub [ 409.733664][ T779] hub 3-1:4.0: probe with driver hub failed with error -5 [ 409.748206][ T779] usbhid 3-1:4.0: couldn't find an input interrupt endpoint [ 409.948025][ T6814] fuse: Unknown parameter '' [ 409.994122][ T6814] input: syz1 as /devices/virtual/input/input18 [ 410.023903][ T6814] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 410.033159][ T6814] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 410.774410][ T29] audit: type=1800 audit(1717836151.732:49): pid=6846 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="overlay" ino=1966 res=0 errno=0 [ 410.820385][ T29] audit: type=1804 audit(1717836151.802:50): pid=6841 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir4238893759/syzkaller.ovCApC/14/bus/bus" dev="overlay" ino=1966 res=1 errno=0 [ 411.081003][ T779] usb 3-1: USB disconnect, device number 2 [ 411.584415][ T6858] loop4: detected capacity change from 0 to 256 [ 411.721639][ T6858] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 412.695417][ T29] audit: type=1800 audit(1717836153.652:51): pid=6878 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="overlay" ino=1950 res=0 errno=0 [ 412.717005][ T29] audit: type=1804 audit(1717836153.682:52): pid=6874 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir615082741/syzkaller.EfpWAk/52/file0/bus/bus" dev="overlay" ino=1950 res=1 errno=0 [ 412.835558][ T8] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 413.115464][ T8] usb 3-1: Using ep0 maxpacket: 32 [ 413.253607][ T8] usb 3-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 413.266927][ T8] usb 3-1: config 4 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 413.281159][ T8] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 413.290600][ T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 413.445400][ T8] hub 3-1:4.0: bad descriptor, ignoring hub [ 413.451682][ T8] hub 3-1:4.0: probe with driver hub failed with error -5 [ 413.469554][ T8] usbhid 3-1:4.0: couldn't find an input interrupt endpoint [ 413.720071][ T6871] fuse: Unknown parameter '' [ 413.807961][ T6871] input: syz1 as /devices/virtual/input/input19 [ 413.837942][ T6871] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 413.847193][ T6871] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 414.076002][ T6897] loop3: detected capacity change from 0 to 256 [ 414.256980][ T6897] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 414.805762][ T779] usb 3-1: USB disconnect, device number 3 [ 415.390456][ T29] audit: type=1800 audit(1717836156.342:53): pid=6910 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1952 res=0 errno=0 [ 415.414425][ T29] audit: type=1804 audit(1717836156.352:54): pid=6910 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3821981363/syzkaller.A8TwbC/63/file0/bus/bus" dev="sda1" ino=1952 res=1 errno=0 [ 416.286179][ T6926] loop3: detected capacity change from 0 to 256 [ 416.429008][ T6926] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 416.645786][ T779] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 416.923679][ T779] usb 3-1: Using ep0 maxpacket: 32 [ 417.043910][ T779] usb 3-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 417.060232][ T779] usb 3-1: config 4 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 417.075646][ T779] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 417.085085][ T779] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 417.201937][ T779] hub 3-1:4.0: bad descriptor, ignoring hub [ 417.208324][ T779] hub 3-1:4.0: probe with driver hub failed with error -5 [ 417.223122][ T779] usbhid 3-1:4.0: couldn't find an input interrupt endpoint [ 417.426355][ T6930] fuse: Unknown parameter '' [ 417.538976][ T6930] input: syz1 as /devices/virtual/input/input20 [ 417.604246][ T6930] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 417.613422][ T6930] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 417.624495][ T29] audit: type=1800 audit(1717836158.552:55): pid=6948 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1975 res=0 errno=0 [ 417.697892][ T29] audit: type=1804 audit(1717836158.642:56): pid=6950 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir1661350368/syzkaller.ev1hbT/64/file0/bus/bus" dev="sda1" ino=1975 res=1 errno=0 [ 418.623959][ T5132] usb 3-1: USB disconnect, device number 4 [ 418.654656][ T6966] loop1: detected capacity change from 0 to 256 [ 418.855293][ T6966] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 420.005543][ T29] audit: type=1800 audit(1717836160.942:57): pid=6990 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1942 res=0 errno=0 [ 420.032806][ T29] audit: type=1804 audit(1717836160.952:58): pid=6990 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir3349367462/syzkaller.PICMXC/30/file0/bus/bus" dev="sda1" ino=1942 res=1 errno=0 [ 420.822641][ T10] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 420.863654][ T7003] loop1: detected capacity change from 0 to 256 [ 420.969320][ T7003] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 421.132656][ T10] usb 4-1: Using ep0 maxpacket: 32 [ 421.273350][ T10] usb 4-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 421.283924][ T10] usb 4-1: config 4 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 421.297392][ T10] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 421.306812][ T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 421.422779][ T10] hub 4-1:4.0: bad descriptor, ignoring hub [ 421.428956][ T10] hub 4-1:4.0: probe with driver hub failed with error -5 [ 421.443120][ T10] usbhid 4-1:4.0: couldn't find an input interrupt endpoint [ 421.646800][ T6997] fuse: Unknown parameter '' [ 421.741255][ T6997] input: syz1 as /devices/virtual/input/input21 [ 421.819712][ T6997] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 421.829642][ T6997] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 421.909760][ T29] audit: type=1800 audit(1717836162.842:59): pid=7022 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1950 res=0 errno=0 [ 421.931250][ T29] audit: type=1804 audit(1717836162.902:60): pid=7022 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3821981363/syzkaller.A8TwbC/73/file0/bus/bus" dev="sda1" ino=1950 res=1 errno=0 [ 422.744489][ T5132] usb 4-1: USB disconnect, device number 4 [ 423.470101][ T7045] loop4: detected capacity change from 0 to 256 [ 423.609920][ T7045] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 423.977187][ T29] audit: type=1326 audit(1717836164.932:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7051 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb9b2c7cf69 code=0x0 [ 424.329422][ T29] audit: type=1800 audit(1717836165.262:62): pid=7063 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1973 res=0 errno=0 [ 424.350688][ T29] audit: type=1804 audit(1717836165.302:63): pid=7063 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3821981363/syzkaller.A8TwbC/76/file0/bus/bus" dev="sda1" ino=1973 res=1 errno=0 [ 425.123099][ T25] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 425.392428][ T25] usb 2-1: Using ep0 maxpacket: 32 [ 425.512718][ T25] usb 2-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 425.523354][ T25] usb 2-1: config 4 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 425.536837][ T25] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 425.551986][ T25] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 425.648267][ T25] hub 2-1:4.0: bad descriptor, ignoring hub [ 425.663891][ T25] hub 2-1:4.0: probe with driver hub failed with error -5 [ 425.679830][ T25] usbhid 2-1:4.0: couldn't find an input interrupt endpoint [ 425.850489][ T7083] loop0: detected capacity change from 0 to 256 [ 425.876190][ T7068] fuse: Unknown parameter '' [ 425.934917][ T7068] input: syz1 as /devices/virtual/input/input22 [ 425.986945][ T7083] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 425.992589][ T7068] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 426.008340][ T7068] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 426.727682][ T29] audit: type=1800 audit(1717836167.642:64): pid=7099 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1941 res=0 errno=0 [ 426.749034][ T29] audit: type=1804 audit(1717836167.642:65): pid=7099 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3821981363/syzkaller.A8TwbC/79/bus/bus" dev="sda1" ino=1941 res=1 errno=0 [ 426.951461][ T29] audit: type=1326 audit(1717836167.942:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7101 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb9b2c7cf69 code=0x0 [ 427.191783][ T43] usb 2-1: USB disconnect, device number 8 [ 428.175752][ T7117] loop2: detected capacity change from 0 to 256 [ 428.354639][ T7117] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 428.642796][ T29] audit: type=1800 audit(1717836169.582:67): pid=7130 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="overlay" ino=1973 res=0 errno=0 [ 428.664146][ T29] audit: type=1804 audit(1717836169.592:68): pid=7128 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir615082741/syzkaller.EfpWAk/72/bus/bus" dev="overlay" ino=1973 res=1 errno=0 [ 429.834301][ T29] audit: type=1326 audit(1717836170.752:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7144 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x0 [ 430.219204][ T7155] loop4: detected capacity change from 0 to 256 [ 430.420822][ T7155] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 430.878087][ T29] audit: type=1800 audit(1717836171.842:70): pid=7162 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1966 res=0 errno=0 [ 430.899398][ T29] audit: type=1804 audit(1717836171.852:71): pid=7160 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir4238893759/syzkaller.ovCApC/36/bus/bus" dev="sda1" ino=1966 res=1 errno=0 [ 432.387403][ T29] audit: type=1326 audit(1717836173.332:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7190 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 432.416295][ T29] audit: type=1326 audit(1717836173.332:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7190 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 432.441421][ T29] audit: type=1326 audit(1717836173.352:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7190 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 432.464735][ T29] audit: type=1326 audit(1717836173.352:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7190 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 432.488176][ T29] audit: type=1326 audit(1717836173.362:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7190 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 432.516873][ T29] audit: type=1326 audit(1717836173.362:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7190 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 432.543397][ T29] audit: type=1326 audit(1717836173.372:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7190 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 432.567127][ T29] audit: type=1326 audit(1717836173.372:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7190 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 432.786717][ T7193] loop3: detected capacity change from 0 to 256 [ 432.902704][ T7193] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 433.083273][ T7195] overlayfs: failed to resolve './file1': -2 [ 434.107894][ T29] audit: type=1326 audit(1717836175.052:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7213 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9b2c7cf69 code=0x7ffc0000 [ 434.131874][ T29] audit: type=1326 audit(1717836175.052:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7213 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9b2c7cf69 code=0x7ffc0000 [ 434.598713][ T7223] loop3: detected capacity change from 0 to 256 [ 434.794673][ T7223] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 434.979696][ T7228] overlayfs: failed to resolve './file1': -2 [ 435.120263][ T7231] 9pnet_fd: Insufficient options for proto=fd [ 436.272677][ T5079] Bluetooth: hci3: command 0x0406 tx timeout [ 436.749253][ T7260] loop0: detected capacity change from 0 to 256 [ 436.799645][ T7261] overlayfs: failed to resolve './file1': -2 [ 437.071136][ T7260] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 437.098628][ T7265] 9pnet_fd: Insufficient options for proto=fd [ 438.160620][ T29] kauditd_printk_skb: 15 callbacks suppressed [ 438.160696][ T29] audit: type=1326 audit(1717836179.152:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7282 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72b947cf69 code=0x7ffc0000 [ 438.279627][ T29] audit: type=1326 audit(1717836179.222:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7282 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f72b947cf69 code=0x7ffc0000 [ 438.303080][ T29] audit: type=1326 audit(1717836179.222:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7282 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72b947cf69 code=0x7ffc0000 [ 438.326872][ T29] audit: type=1326 audit(1717836179.222:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7282 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72b947cf69 code=0x7ffc0000 [ 438.355495][ T29] audit: type=1326 audit(1717836179.252:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7282 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f72b947cf69 code=0x7ffc0000 [ 438.380503][ T29] audit: type=1326 audit(1717836179.252:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7282 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72b947cf69 code=0x7ffc0000 [ 438.403883][ T29] audit: type=1326 audit(1717836179.252:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7282 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72b947cf69 code=0x7ffc0000 [ 438.427190][ T29] audit: type=1326 audit(1717836179.252:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7282 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f72b947cf69 code=0x7ffc0000 [ 438.456382][ T29] audit: type=1326 audit(1717836179.272:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7282 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72b947cf69 code=0x7ffc0000 [ 438.481663][ T29] audit: type=1326 audit(1717836179.272:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7282 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72b947cf69 code=0x7ffc0000 [ 438.949628][ T7293] overlayfs: failed to resolve './file0': -2 [ 438.971173][ T7296] 9pnet_fd: Insufficient options for proto=fd [ 439.200765][ T7299] loop4: detected capacity change from 0 to 256 [ 439.327692][ T7299] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 440.750749][ T7330] 9pnet_fd: Insufficient options for proto=fd [ 441.132835][ T7334] overlayfs: failed to resolve './file0': -2 [ 441.280675][ T7338] loop4: detected capacity change from 0 to 256 [ 441.395411][ T5079] Bluetooth: hci0: command 0x0406 tx timeout [ 441.474949][ T7338] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 442.520419][ T7357] 9pnet_fd: Insufficient options for proto=fd [ 442.793917][ T7364] overlayfs: failed to resolve './file0': -2 [ 443.260406][ T7371] syz-executor.4[7371] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 443.260963][ T7371] syz-executor.4[7371] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 443.533491][ T7376] loop3: detected capacity change from 0 to 256 [ 443.719157][ T29] kauditd_printk_skb: 16 callbacks suppressed [ 443.719232][ T29] audit: type=1326 audit(1717836184.712:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7379 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 443.764832][ T7376] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 443.817724][ T29] audit: type=1326 audit(1717836184.742:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7379 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 443.841483][ T29] audit: type=1326 audit(1717836184.762:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7379 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 443.864846][ T29] audit: type=1326 audit(1717836184.762:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7379 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 443.893487][ T29] audit: type=1326 audit(1717836184.792:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7379 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 443.918690][ T29] audit: type=1326 audit(1717836184.792:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7379 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 443.941964][ T29] audit: type=1326 audit(1717836184.792:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7379 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 443.965382][ T29] audit: type=1326 audit(1717836184.792:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7379 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 444.704216][ T7392] 9pnet_fd: Insufficient options for proto=fd [ 445.590852][ T29] audit: type=1326 audit(1717836186.542:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7410 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9b2c7cf69 code=0x7ffc0000 [ 445.614456][ T29] audit: type=1326 audit(1717836186.552:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7410 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9b2c7cf69 code=0x7ffc0000 [ 445.967141][ T7414] loop2: detected capacity change from 0 to 256 [ 446.142365][ T7414] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 446.637827][ T7425] 9pnet_fd: Insufficient options for proto=fd [ 448.241024][ T7453] loop3: detected capacity change from 0 to 256 [ 448.347221][ T7453] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 448.483197][ T7459] 9pnet_fd: Insufficient options for proto=fd [ 448.794421][ T29] kauditd_printk_skb: 14 callbacks suppressed [ 448.794498][ T29] audit: type=1326 audit(1717836189.772:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aa2e7cf69 code=0x7ffc0000 [ 448.824350][ T29] audit: type=1326 audit(1717836189.772:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aa2e7cf69 code=0x7ffc0000 [ 448.847680][ T29] audit: type=1326 audit(1717836189.772:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1aa2e7cf69 code=0x7ffc0000 [ 448.879894][ T29] audit: type=1326 audit(1717836189.782:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aa2e7cf69 code=0x7ffc0000 [ 448.965875][ T29] audit: type=1326 audit(1717836189.912:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1aa2e7cf69 code=0x7ffc0000 [ 448.989344][ T29] audit: type=1326 audit(1717836189.912:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aa2e7cf69 code=0x7ffc0000 [ 449.015584][ T29] audit: type=1326 audit(1717836189.912:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aa2e7cf69 code=0x7ffc0000 [ 449.039599][ T29] audit: type=1326 audit(1717836189.922:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f1aa2e7cf69 code=0x7ffc0000 [ 449.066844][ T29] audit: type=1326 audit(1717836189.922:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aa2e7cf69 code=0x7ffc0000 [ 450.165615][ T7487] loop2: detected capacity change from 0 to 256 [ 450.380433][ T7487] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 450.509380][ T7489] 9pnet_fd: Insufficient options for proto=fd [ 450.595909][ T29] audit: type=1326 audit(1717836191.542:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7492 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 451.632514][ T5079] Bluetooth: hci1: command 0x0406 tx timeout [ 452.389964][ T7526] loop2: detected capacity change from 0 to 256 [ 452.421785][ T7525] 9pnet_fd: Insufficient options for proto=fd [ 452.617440][ T7526] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 454.229259][ T7558] 9pnet_fd: Insufficient options for proto=fd [ 454.268592][ T7560] sit0: entered promiscuous mode [ 454.291036][ T7560] netlink: 'syz-executor.4': attribute type 1 has an invalid length. [ 454.299474][ T7560] netlink: 1 bytes leftover after parsing attributes in process `syz-executor.4'. [ 454.626737][ T7566] loop2: detected capacity change from 0 to 256 [ 454.797142][ T29] kauditd_printk_skb: 16 callbacks suppressed [ 454.797218][ T29] audit: type=1326 audit(1717836195.792:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 454.899887][ T7566] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 454.907630][ T29] audit: type=1326 audit(1717836195.842:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 454.938138][ T29] audit: type=1326 audit(1717836195.862:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 454.962477][ T29] audit: type=1326 audit(1717836195.862:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 454.985948][ T29] audit: type=1326 audit(1717836195.872:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 455.009189][ T29] audit: type=1326 audit(1717836195.872:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 455.033412][ T29] audit: type=1326 audit(1717836195.872:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 455.059018][ T29] audit: type=1326 audit(1717836195.872:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 455.083074][ T29] audit: type=1326 audit(1717836195.872:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 456.585813][ T7595] 9pnet_fd: Insufficient options for proto=fd [ 456.684941][ T29] audit: type=1326 audit(1717836197.632:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7597 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72b947cf69 code=0x7ffc0000 [ 457.151520][ T7608] loop2: detected capacity change from 0 to 256 [ 457.270435][ T7608] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 458.895466][ T7633] 9pnet_fd: Insufficient options for proto=fd [ 460.503389][ T29] kauditd_printk_skb: 14 callbacks suppressed [ 460.503464][ T29] audit: type=1326 audit(1717836201.492:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7669 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 460.582513][ T29] audit: type=1326 audit(1717836201.532:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7669 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 460.606032][ T29] audit: type=1326 audit(1717836201.532:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7669 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 460.629418][ T29] audit: type=1326 audit(1717836201.542:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7669 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 460.652880][ T29] audit: type=1326 audit(1717836201.542:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7669 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 460.681466][ T29] audit: type=1326 audit(1717836201.572:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7669 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 460.706517][ T29] audit: type=1326 audit(1717836201.582:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7669 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 460.730274][ T29] audit: type=1326 audit(1717836201.582:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7669 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 461.255402][ T7676] 9pnet_fd: Insufficient options for proto=fd [ 461.549579][ T7672] loop1: detected capacity change from 0 to 4096 [ 461.576997][ T7672] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512). [ 461.723473][ T7672] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 462.059335][ T7672] ntfs3: loop1: ino=1a, Correct links count -> 1. [ 463.293800][ T7691] could not allocate digest TFM handle sha512-ssse3 [ 464.114199][ T29] audit: type=1326 audit(1717836204.972:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7705 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 464.137588][ T29] audit: type=1326 audit(1717836204.972:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7705 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 464.174615][ T7709] x_tables: duplicate underflow at hook 4 [ 464.956537][ T1226] ieee802154 phy0 wpan0: encryption failed: -22 [ 464.963155][ T1226] ieee802154 phy1 wpan1: encryption failed: -22 [ 465.564644][ T7721] 9pnet_fd: Insufficient options for proto=fd [ 466.135446][ T7728] overlayfs: missing 'lowerdir' [ 466.771237][ T29] kauditd_printk_skb: 4 callbacks suppressed [ 466.771313][ T29] audit: type=1326 audit(1717836207.712:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7735 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72b947cf69 code=0x7ffc0000 [ 466.801845][ T29] audit: type=1326 audit(1717836207.712:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7735 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72b947cf69 code=0x7ffc0000 [ 466.827931][ T29] audit: type=1326 audit(1717836207.732:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7735 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f72b947cf69 code=0x7ffc0000 [ 466.852488][ T29] audit: type=1326 audit(1717836207.732:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7735 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72b947cf69 code=0x7ffc0000 [ 466.876170][ T29] audit: type=1326 audit(1717836207.742:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7735 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f72b947cf69 code=0x7ffc0000 [ 466.899620][ T29] audit: type=1326 audit(1717836207.742:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7735 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72b947cf69 code=0x7ffc0000 [ 466.923099][ T29] audit: type=1326 audit(1717836207.742:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7735 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f72b947cf69 code=0x7ffc0000 [ 466.956160][ T29] audit: type=1326 audit(1717836207.742:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7735 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72b947cf69 code=0x7ffc0000 [ 466.981062][ T29] audit: type=1326 audit(1717836207.742:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7735 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72b947cf69 code=0x7ffc0000 [ 467.231656][ T7730] loop3: detected capacity change from 0 to 4096 [ 467.262995][ T7730] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512). [ 467.978071][ T2914] Bluetooth: hci5: Frame reassembly failed (-84) [ 469.952425][ T5076] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 470.745430][ T7730] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 470.787578][ T7730] ntfs3: loop3: Failed to read $AttrDef (-4). [ 471.076948][ T7754] 9pnet_fd: Insufficient options for proto=fd [ 471.653358][ T7760] overlayfs: missing 'lowerdir' [ 471.817496][ T29] audit: type=1326 audit(1717836212.732:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7762 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 471.846293][ T29] audit: type=1326 audit(1717836212.752:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7762 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 471.871412][ T29] audit: type=1326 audit(1717836212.762:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7762 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 471.894784][ T29] audit: type=1326 audit(1717836212.782:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7762 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 471.918099][ T29] audit: type=1326 audit(1717836212.782:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7762 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 471.946634][ T29] audit: type=1326 audit(1717836212.782:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7762 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 471.971765][ T29] audit: type=1326 audit(1717836212.792:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7762 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 471.995172][ T29] audit: type=1326 audit(1717836212.802:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7762 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 473.627390][ T7778] loop3: detected capacity change from 0 to 4096 [ 473.678757][ T7778] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512). [ 473.710272][ T7784] 9pnet_fd: Insufficient options for proto=fd [ 473.846990][ T7778] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 474.064725][ T7778] ntfs3: loop3: ino=1a, Correct links count -> 1. [ 474.197014][ T7782] loop1: detected capacity change from 0 to 4096 [ 475.222479][ T7789] 9pnet: Could not find request transport: fd0xffffffffffffffff/Ec=lDSFPr:-FrN30HZsn9)δse?v3掆y2b|1ŠfEvK-Ҹ^0xffffffffffffffff [ 475.600963][ T29] audit: type=1326 audit(1717836216.492:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7790 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 475.626873][ T29] audit: type=1326 audit(1717836216.502:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7790 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 476.445395][ T7798] overlayfs: missing 'lowerdir' [ 477.661166][ T7813] 9pnet_fd: Insufficient options for proto=fd [ 478.594792][ T29] kauditd_printk_skb: 4 callbacks suppressed [ 478.594868][ T29] audit: type=1326 audit(1717836219.582:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7821 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 478.759663][ T29] audit: type=1326 audit(1717836219.692:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7821 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 478.783013][ T29] audit: type=1326 audit(1717836219.692:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7821 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 478.811722][ T29] audit: type=1326 audit(1717836219.702:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7821 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 478.836801][ T29] audit: type=1326 audit(1717836219.722:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7821 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 478.860204][ T29] audit: type=1326 audit(1717836219.722:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7821 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 478.883445][ T29] audit: type=1326 audit(1717836219.722:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7821 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 478.914043][ T29] audit: type=1326 audit(1717836219.732:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7821 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 478.937523][ T29] audit: type=1326 audit(1717836219.732:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7821 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x7ffc0000 [ 479.218519][ T7817] loop3: detected capacity change from 0 to 4096 [ 479.251246][ T7817] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512). [ 479.344998][ T7830] overlayfs: failed to resolve './file0': -2 [ 479.471070][ T7817] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 479.736387][ T7817] ntfs3: loop3: ino=1a, Correct links count -> 1. [ 483.207242][ T7841] 9pnet_fd: Insufficient options for proto=fd [ 483.977300][ T29] audit: type=1326 audit(1717836224.922:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7849 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 484.000680][ T29] audit: type=1326 audit(1717836224.922:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7849 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 484.027573][ T29] audit: type=1326 audit(1717836224.942:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7849 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 484.051703][ T29] audit: type=1326 audit(1717836224.952:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7849 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 484.074832][ T29] audit: type=1326 audit(1717836224.952:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7849 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 484.097931][ T29] audit: type=1326 audit(1717836224.952:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7849 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 484.124887][ T29] audit: type=1326 audit(1717836224.952:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7849 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 484.149096][ T29] audit: type=1326 audit(1717836224.962:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7849 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 484.172234][ T29] audit: type=1326 audit(1717836224.962:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7849 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x7ffc0000 [ 484.351521][ T7854] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 484.360518][ T7854] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 484.556408][ T7847] loop3: detected capacity change from 0 to 1024 [ 484.989849][ T7847] loop3: detected capacity change from 0 to 256 [ 485.057868][ T7847] FAT-fs (loop3): Unrecognized mount option "iocharseodir" or missing value [ 486.120582][ T7873] 9pnet_fd: Insufficient options for proto=fd [ 486.639813][ T7870] loop1: detected capacity change from 0 to 4096 [ 486.734764][ T7870] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512). [ 486.936224][ T7870] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 487.251746][ T7870] ntfs3: loop1: ino=1a, Correct links count -> 1. [ 487.472673][ T5079] Bluetooth: hci2: command 0x0406 tx timeout [ 488.392920][ T7884] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 488.401796][ T7884] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 489.815698][ T7900] 9pnet_fd: Insufficient options for proto=fd [ 490.613327][ T7910] overlayfs: missing 'lowerdir' [ 491.765623][ T7924] syz-executor.1[7924] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 491.766490][ T7924] syz-executor.1[7924] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 492.323349][ T7930] 9pnet_fd: Insufficient options for proto=fd [ 493.056695][ T7938] overlayfs: missing 'lowerdir' [ 493.660614][ T7948] syz-executor.1[7948] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 493.661640][ T7948] syz-executor.1[7948] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 493.841328][ T7948] syz-executor.1[7948] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 493.883606][ T7948] syz-executor.1[7948] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 494.699701][ T7959] 9pnet_fd: Insufficient options for proto=fd [ 497.750969][ T5076] Bluetooth: hci4: command 0x0406 tx timeout [ 497.861172][ T8081] overlay: ./bus is not a directory [ 498.092645][ T29] audit: type=1800 audit(1717836238.782:252): pid=8060 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1969 res=0 errno=0 [ 498.115191][ T29] audit: type=1804 audit(1717836239.062:253): pid=8070 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3821981363/syzkaller.A8TwbC/164/file0/bus/bus" dev="sda1" ino=1969 res=1 errno=0 [ 499.456274][ T8105] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 500.279206][ T8113] 9pnet_fd: Insufficient options for proto=fd [ 501.234331][ T8121] overlayfs: missing 'workdir' [ 501.306581][ T29] audit: type=1800 audit(1717836242.242:254): pid=8121 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1964 res=0 errno=0 [ 501.331253][ T29] audit: type=1804 audit(1717836242.272:255): pid=8121 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir1661350368/syzkaller.ev1hbT/143/file0/bus/bus" dev="sda1" ino=1964 res=1 errno=0 [ 502.769212][ T8146] warning: `syz-executor.2' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 503.343505][ T8153] overlayfs: missing 'workdir' [ 503.754555][ T8161] net_ratelimit: 44 callbacks suppressed [ 503.754608][ T8161] do_dccp_getsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app [ 503.902699][ T8160] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.2'. [ 504.981233][ T8175] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 505.147825][ T8181] dvmrp0: entered allmulticast mode [ 505.204816][ T8184] dvmrp0: left allmulticast mode [ 505.370961][ T8185] overlayfs: missing 'workdir' [ 506.177301][ T8189] loop4: detected capacity change from 0 to 1024 [ 506.437922][ T8189] loop4: detected capacity change from 0 to 256 [ 506.486927][ T8189] FAT-fs (loop4): Unrecognized mount option "iocharseodir" or missing value [ 508.227535][ T29] audit: type=1804 audit(1717836249.162:256): pid=8221 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir4238893759/syzkaller.ovCApC/95/bus" dev="sda1" ino=1955 res=1 errno=0 [ 508.372893][ T5079] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201' [ 508.373001][ T5079] CPU: 0 PID: 5079 Comm: kworker/u9:4 Not tainted 6.9.0-syzkaller-02707-g614da38e2f7a #0 [ 508.373144][ T5079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 508.373281][ T5079] Workqueue: hci2 hci_rx_work [ 508.373501][ T5079] Call Trace: [ 508.373556][ T5079] [ 508.373608][ T5079] dump_stack_lvl+0x216/0x2d0 [ 508.373807][ T5079] dump_stack+0x1e/0x30 [ 508.373979][ T5079] sysfs_create_dir_ns+0x45f/0x4c0 [ 508.374156][ T5079] kobject_add_internal+0xfe7/0x1900 [ 508.374328][ T5079] kobject_add+0x28c/0x3c0 [ 508.374529][ T5079] ? kmsan_get_metadata+0x146/0x1d0 [ 508.374691][ T5079] device_add+0xa93/0x1c90 [ 508.374865][ T5079] hci_conn_add_sysfs+0x161/0x2c0 [ 508.375100][ T5079] le_conn_complete_evt+0x1975/0x1f40 [ 508.375299][ T5079] ? kmsan_get_metadata+0x146/0x1d0 [ 508.375454][ T5079] hci_le_enh_conn_complete_evt+0x15e/0x210 [ 508.375655][ T5079] hci_le_meta_evt+0x600/0x850 [ 508.375822][ T5079] ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10 [ 508.376030][ T5079] hci_event_packet+0x1118/0x1bc0 [ 508.376185][ T5079] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 508.376381][ T5079] hci_rx_work+0x687/0x1130 [ 508.376554][ T5079] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 508.376708][ T5079] ? __pfx_hci_rx_work+0x10/0x10 [ 508.376874][ T5079] ? __pfx_hci_rx_work+0x10/0x10 [ 508.377039][ T5079] process_scheduled_works+0xa81/0x1bd0 [ 508.377235][ T5079] worker_thread+0xea5/0x1560 [ 508.377417][ T5079] kthread+0x3e2/0x540 [ 508.377582][ T5079] ? __pfx_worker_thread+0x10/0x10 [ 508.377749][ T5079] ? __pfx_kthread+0x10/0x10 [ 508.377915][ T5079] ret_from_fork+0x6d/0x90 [ 508.378061][ T5079] ? __pfx_kthread+0x10/0x10 [ 508.378228][ T5079] ret_from_fork_asm+0x1a/0x30 [ 508.378422][ T5079] [ 508.378536][ T5079] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 508.378699][ T5079] Bluetooth: hci2: failed to register connection device [ 509.471422][ T29] audit: type=1326 audit(1717836250.462:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8232 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x0 [ 510.432995][ T5076] Bluetooth: hci2: command 0x0406 tx timeout [ 512.594548][ T8268] bridge0: entered promiscuous mode [ 512.758856][ T8268] bridge0: left promiscuous mode [ 513.197851][ T5076] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:201' [ 513.197941][ T5076] CPU: 0 PID: 5076 Comm: kworker/u9:3 Not tainted 6.9.0-syzkaller-02707-g614da38e2f7a #0 [ 513.198085][ T5076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 513.198189][ T5076] Workqueue: hci4 hci_rx_work [ 513.198361][ T5076] Call Trace: [ 513.198416][ T5076] [ 513.198468][ T5076] dump_stack_lvl+0x216/0x2d0 [ 513.198658][ T5076] dump_stack+0x1e/0x30 [ 513.198822][ T5076] sysfs_create_dir_ns+0x45f/0x4c0 [ 513.198994][ T5076] kobject_add_internal+0xfe7/0x1900 [ 513.199159][ T5076] kobject_add+0x28c/0x3c0 [ 513.199360][ T5076] ? kmsan_get_metadata+0x146/0x1d0 [ 513.199525][ T5076] device_add+0xa93/0x1c90 [ 513.199688][ T5076] hci_conn_add_sysfs+0x161/0x2c0 [ 513.199893][ T5076] le_conn_complete_evt+0x1975/0x1f40 [ 513.200085][ T5076] ? kmsan_get_metadata+0x146/0x1d0 [ 513.200242][ T5076] hci_le_enh_conn_complete_evt+0x15e/0x210 [ 513.200443][ T5076] hci_le_meta_evt+0x600/0x850 [ 513.200616][ T5076] ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10 [ 513.200820][ T5076] hci_event_packet+0x1118/0x1bc0 [ 513.200983][ T5076] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 513.201185][ T5076] hci_rx_work+0x687/0x1130 [ 513.201362][ T5076] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 513.201523][ T5076] ? __pfx_hci_rx_work+0x10/0x10 [ 513.201693][ T5076] ? __pfx_hci_rx_work+0x10/0x10 [ 513.201858][ T5076] process_scheduled_works+0xa81/0x1bd0 [ 513.202068][ T5076] worker_thread+0xea5/0x1560 [ 513.202253][ T5076] kthread+0x3e2/0x540 [ 513.202535][ T5076] ? __pfx_worker_thread+0x10/0x10 [ 513.202717][ T5076] ? __pfx_kthread+0x10/0x10 [ 513.202888][ T5076] ret_from_fork+0x6d/0x90 [ 513.203034][ T5076] ? __pfx_kthread+0x10/0x10 [ 513.203208][ T5076] ret_from_fork_asm+0x1a/0x30 [ 513.203399][ T5076] [ 513.207155][ T5076] kobject: kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 513.207329][ T5076] Bluetooth: hci4: failed to register connection device [ 515.266114][ T5079] Bluetooth: hci4: command 0x0406 tx timeout [ 518.434407][ T5079] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection [ 519.586765][ T8336] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1 [ 519.589593][ T8336] gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue [ 519.589740][ T8336] gretap1: entered promiscuous mode [ 519.589802][ T8336] gretap1: entered allmulticast mode [ 521.886427][ T8351] 9pnet: Could not find request transport: fd0x0000000000000003 [ 524.830649][ T8382] 9pnet: Could not find request transport: fd0x0000000000000003 [ 525.103781][ T8390] Bluetooth: MGMT ver 1.22 [ 525.408152][ T8394] loop3: detected capacity change from 0 to 1024 [ 525.721222][ T8394] loop3: detected capacity change from 0 to 256 [ 525.755732][ T8394] FAT-fs (loop3): Unrecognized mount option "iocharseodir" or missing value [ 526.336159][ T8407] loop0: detected capacity change from 0 to 512 [ 526.386213][ T1226] ieee802154 phy0 wpan0: encryption failed: -22 [ 526.393199][ T1226] ieee802154 phy1 wpan1: encryption failed: -22 [ 526.581607][ T8407] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 526.595608][ T8407] ext4 filesystem being mounted at /root/syzkaller-testdir3821981363/syzkaller.A8TwbC/192/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 527.100640][ T5862] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 527.391734][ T8416] loop4: detected capacity change from 0 to 4096 [ 527.445504][ T8416] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512). [ 527.898373][ T29] audit: type=1326 audit(1717836268.882:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8414 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aa2e7cf69 code=0x7ffc0000 [ 527.921817][ T29] audit: type=1326 audit(1717836268.882:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8414 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aa2e7cf69 code=0x7ffc0000 [ 527.945671][ T29] audit: type=1326 audit(1717836268.892:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8414 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1aa2e7cf69 code=0x7ffc0000 [ 527.970325][ T29] audit: type=1326 audit(1717836268.912:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8414 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aa2e7cf69 code=0x7ffc0000 [ 527.993988][ T29] audit: type=1326 audit(1717836268.912:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8414 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aa2e7cf69 code=0x7ffc0000 [ 528.017029][ T29] audit: type=1326 audit(1717836268.912:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8414 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1aa2e7cf69 code=0x7ffc0000 [ 528.040076][ T29] audit: type=1326 audit(1717836268.922:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8414 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aa2e7cf69 code=0x7ffc0000 [ 528.064989][ T29] audit: type=1326 audit(1717836268.922:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8414 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f1aa2e7cf69 code=0x7ffc0000 [ 528.088488][ T29] audit: type=1326 audit(1717836268.922:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8414 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aa2e7cf69 code=0x7ffc0000 [ 528.188644][ T29] audit: type=1326 audit(1717836269.122:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8414 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f1aa2e7cf69 code=0x7ffc0000 [ 528.889055][ T8428] 9pnet: Could not find request transport: fd0x0000000000000003 [ 532.690431][ T8470] 9pnet_fd: Insufficient options for proto=fd [ 536.238601][ T8501] 9pnet_fd: Insufficient options for proto=fd [ 539.073374][ T29] kauditd_printk_skb: 2 callbacks suppressed [ 539.073450][ T29] audit: type=1800 audit(1717836280.062:270): pid=8532 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="overlay" ino=10 res=0 errno=0 [ 539.637104][ T8535] 9pnet_fd: Insufficient options for proto=fd [ 540.902747][ T8544] loop2: detected capacity change from 0 to 2048 [ 541.084472][ T8544] GPT:first_usable_lbas don't match. [ 541.090214][ T8544] GPT:34 != 290 [ 541.094441][ T8544] GPT: Use GNU Parted to correct GPT errors. [ 541.102812][ T8544] loop2: p1 p2 p3 [ 541.601609][ T29] audit: type=1326 audit(1717836282.542:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8556 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x0 [ 542.318852][ T29] audit: type=1800 audit(1717836283.262:272): pid=8563 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="overlay" ino=10 res=0 errno=0 [ 543.509216][ T8576] 9pnet_fd: Insufficient options for proto=fd [ 545.334996][ T29] audit: type=1326 audit(1717836286.312:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8592 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x0 [ 545.558107][ T29] audit: type=1800 audit(1717836286.512:274): pid=8599 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="overlay" ino=10 res=0 errno=0 [ 546.652874][ T8610] 9pnet_fd: Insufficient options for proto=fd [ 549.147048][ T29] audit: type=1800 audit(1717836290.122:275): pid=8631 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="overlay" ino=10 res=0 errno=0 [ 549.169102][ T29] audit: type=1804 audit(1717836290.122:276): pid=8631 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir1661350368/syzkaller.ev1hbT/179/file0/bus/bus" dev="overlay" ino=10 res=1 errno=0 [ 549.523680][ T8636] 9pnet_fd: Insufficient options for proto=fd [ 549.525863][ T29] audit: type=1326 audit(1717836290.482:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8633 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb9b2c7cf69 code=0x0 [ 550.961933][ T8648] 9pnet_fd: Insufficient options for proto=fd [ 552.881945][ T29] audit: type=1800 audit(1717836293.782:278): pid=8665 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="overlay" ino=10 res=0 errno=0 [ 552.903393][ T29] audit: type=1804 audit(1717836293.792:279): pid=8665 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir1661350368/syzkaller.ev1hbT/183/file0/bus/bus" dev="overlay" ino=10 res=1 errno=0 [ 553.108717][ T8668] 9pnet_fd: Insufficient options for proto=fd [ 553.505163][ T29] audit: type=1326 audit(1717836294.482:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8672 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1aa2e7cf69 code=0x0 [ 555.019418][ T8688] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. [ 555.642728][ T29] audit: type=1800 audit(1717836296.562:281): pid=8695 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="overlay" ino=10 res=0 errno=0 [ 555.664390][ T29] audit: type=1804 audit(1717836296.602:282): pid=8695 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir4238893759/syzkaller.ovCApC/121/file0/bus/bus" dev="overlay" ino=10 res=1 errno=0 [ 556.446015][ T8709] 9pnet_fd: Insufficient options for proto=fd [ 556.863740][ T29] audit: type=1326 audit(1717836297.772:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8711 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x0 [ 557.855272][ T8725] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. [ 559.169783][ T29] audit: type=1800 audit(1717836300.052:284): pid=8736 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="overlay" ino=10 res=0 errno=0 [ 559.197087][ T29] audit: type=1804 audit(1717836300.102:285): pid=8734 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir4238893759/syzkaller.ovCApC/125/file0/bus/bus" dev="overlay" ino=10 res=1 errno=0 [ 561.460302][ T29] audit: type=1326 audit(1717836302.392:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8757 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x0 [ 561.849127][ T8766] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'. [ 564.887773][ T29] audit: type=1326 audit(1717836305.852:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8807 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x0 [ 565.146076][ T8814] loop3: detected capacity change from 0 to 128 [ 565.193117][ T8814] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1) [ 565.594324][ T8043] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1) [ 567.839533][ T8848] fuse: Bad value for 'fd' [ 567.896936][ T8848] 9pnet_fd: Insufficient options for proto=fd [ 568.269367][ T29] audit: type=1326 audit(1717836309.222:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8853 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x0 [ 568.714748][ T8862] loop3: detected capacity change from 0 to 512 [ 568.749180][ T8862] ext4: Unknown parameter 'obj_type' [ 570.513769][ T8890] fuse: Bad value for 'fd' [ 570.562627][ T8890] 9pnet_fd: Insufficient options for proto=fd [ 571.315788][ T29] audit: type=1326 audit(1717836312.252:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8901 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x0 [ 573.048707][ T8923] fuse: Bad value for 'fd' [ 573.140831][ T8923] 9pnet_fd: Insufficient options for proto=fd [ 574.614890][ T29] audit: type=1326 audit(1717836315.572:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8943 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f511807cf69 code=0x0 [ 575.446866][ T8955] 9pnet_fd: Insufficient options for proto=fd [ 576.799222][ T8959] loop1: detected capacity change from 0 to 8192 [ 576.884865][ T8959] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 578.866033][ T29] audit: type=1326 audit(1717836319.792:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8984 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f72b947cf69 code=0x0 [ 579.055136][ T8993] 9pnet_fd: Insufficient options for proto=fd [ 580.264463][ T9009] TCP: TCP_TX_DELAY enabled [ 581.525092][ T9032] 9pnet_fd: Insufficient options for proto=fd [ 581.839822][ T29] audit: type=1326 audit(1717836322.792:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9034 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f72b947cf69 code=0x0 [ 584.133182][ T9071] serio: Serial port pts0 [ 584.761031][ T29] audit: type=1326 audit(1717836325.712:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9080 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd55e87cf69 code=0x0 [ 586.153876][ T9100] serio: Serial port pts0 [ 586.154201][ T8037] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 586.384460][ T8037] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 586.581397][ T8037] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 586.738456][ T8037] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 587.090809][ T8037] bridge_slave_1: left allmulticast mode [ 587.097121][ T8037] bridge_slave_1: left promiscuous mode [ 587.103840][ T8037] bridge0: port 2(bridge_slave_1) entered disabled state [ 587.129484][ T9118] 9pnet_fd: Insufficient options for proto=fd [ 587.170931][ T8037] bridge_slave_0: left allmulticast mode [ 587.177761][ T8037] bridge_slave_0: left promiscuous mode [ 587.184590][ T8037] bridge0: port 1(bridge_slave_0) entered disabled state [ 587.688737][ T8037] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 587.722090][ T8037] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 587.787985][ T8037] bond0 (unregistering): Released all slaves [ 587.821453][ T1226] ieee802154 phy0 wpan0: encryption failed: -22 [ 587.828090][ T1226] ieee802154 phy1 wpan1: encryption failed: -22 [ 588.217629][ T9122] bridge: RTM_NEWNEIGH with invalid state 0x0 [ 588.600899][ T8037] hsr_slave_0: left promiscuous mode [ 588.625356][ T8037] hsr_slave_1: left promiscuous mode [ 588.683232][ T5129] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 588.691704][ T8037] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 588.699740][ T8037] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 588.855158][ T8037] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 588.862984][ T8037] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 589.148505][ T8037] veth1_macvtap: left promiscuous mode [ 589.154415][ T8037] veth0_macvtap: left promiscuous mode [ 589.160335][ T8037] veth1_vlan: left promiscuous mode [ 589.166027][ T8037] veth0_vlan: left promiscuous mode [ 589.509636][ T5129] usb 4-1: device descriptor read/64, error -71 [ 589.862543][ T5129] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 590.100940][ T5129] usb 4-1: device descriptor read/64, error -71 [ 590.126274][ T8037] team0 (unregistering): Port device team_slave_1 removed [ 590.201761][ T8037] team0 (unregistering): Port device team_slave_0 removed [ 590.254272][ T5129] usb usb4-port1: attempt power cycle [ 590.439345][ T9148] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 590.455603][ T9148] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 590.475671][ T9148] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 590.500797][ T9148] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 590.518308][ T9148] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 590.557612][ T9148] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 590.972588][ T5129] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 591.105913][ T5129] usb 4-1: device descriptor read/8, error -71 [ 591.425526][ T5129] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 591.704022][ T9161] 9pnet_fd: Insufficient options for proto=fd [ 591.712845][ T5129] usb 4-1: device not accepting address 8, error -71 [ 591.776811][ T5129] usb usb4-port1: unable to enumerate USB device [ 591.861767][ T9147] chnl_net:caif_netlink_parms(): no params data found [ 592.592808][ T9148] Bluetooth: hci1: command tx timeout [ 593.431376][ T9147] bridge0: port 1(bridge_slave_0) entered blocking state [ 593.439247][ T9147] bridge0: port 1(bridge_slave_0) entered disabled state [ 593.447198][ T9147] bridge_slave_0: entered allmulticast mode [ 593.456405][ T9147] bridge_slave_0: entered promiscuous mode [ 593.511367][ T9147] bridge0: port 2(bridge_slave_1) entered blocking state [ 593.519242][ T9147] bridge0: port 2(bridge_slave_1) entered disabled state [ 593.527644][ T9147] bridge_slave_1: entered allmulticast mode [ 593.536782][ T9147] bridge_slave_1: entered promiscuous mode [ 593.672292][ T9184] netlink: 'syz-executor.2': attribute type 1 has an invalid length. [ 593.680597][ T9184] netlink: 9352 bytes leftover after parsing attributes in process `syz-executor.2'. [ 593.946313][ T9147] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 594.070341][ T9147] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 594.315256][ T9147] team0: Port device team_slave_0 added [ 594.408783][ T9147] team0: Port device team_slave_1 added [ 594.615259][ T9190] kvm: emulating exchange as write [ 594.674006][ T9147] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 594.681146][ T9147] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 594.707637][ T9147] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 594.750054][ T9148] Bluetooth: hci1: command tx timeout [ 594.770572][ T9147] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 594.777869][ T9147] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 594.804177][ T9147] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 595.098347][ T9147] hsr_slave_0: entered promiscuous mode [ 595.145425][ T9147] hsr_slave_1: entered promiscuous mode [ 595.181017][ T9147] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 595.189120][ T9147] Cannot create hsr debugfs directory [ 595.550869][ T9207] netlink: 'syz-executor.0': attribute type 4 has an invalid length. [ 596.845980][ T9148] Bluetooth: hci1: command tx timeout [ 597.109012][ T9147] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 597.186205][ T9147] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 597.247551][ T9147] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 597.332663][ T9147] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 598.614609][ T9147] 8021q: adding VLAN 0 to HW filter on device bond0 [ 598.826389][ T9147] 8021q: adding VLAN 0 to HW filter on device team0 [ 598.888599][ T779] bridge0: port 1(bridge_slave_0) entered blocking state [ 598.896436][ T779] bridge0: port 1(bridge_slave_0) entered forwarding state [ 598.914762][ T9148] Bluetooth: hci1: command tx timeout [ 599.100941][ T779] bridge0: port 2(bridge_slave_1) entered blocking state [ 599.108775][ T779] bridge0: port 2(bridge_slave_1) entered forwarding state [ 599.997758][ T9256] loop2: detected capacity change from 0 to 512 [ 600.141599][ T9256] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 600.149997][ T9256] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=1843c01c, mo2=0002] [ 600.164547][ T9256] EXT4-fs (loop2): couldn't mount RDWR because of unsupported optional features (80) [ 600.174370][ T9256] EXT4-fs (loop2): Skipping orphan cleanup due to unknown ROCOMPAT features [ 600.183422][ T9256] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 600.547413][ T6236] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 601.182709][ T9147] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 601.807977][ T9147] veth0_vlan: entered promiscuous mode [ 601.933340][ T9147] veth1_vlan: entered promiscuous mode [ 602.342399][ T9147] veth0_macvtap: entered promiscuous mode [ 602.440578][ T9147] veth1_macvtap: entered promiscuous mode [ 602.733538][ T9147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 602.744539][ T9147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 602.757560][ T9147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 602.768345][ T9147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 602.778627][ T9147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 602.789479][ T9147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 602.799659][ T9147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 602.816125][ T9147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 602.832887][ T9147] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 602.980878][ T9147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 602.991655][ T9147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 603.001979][ T9147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 603.013807][ T9147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 603.024247][ T9147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 603.034972][ T9147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 603.045057][ T9147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 603.055878][ T9147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 603.070862][ T9147] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 603.181986][ T9147] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 603.192347][ T9147] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 603.201368][ T9147] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 603.212015][ T9147] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 609.873593][ T8037] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 609.881656][ T8037] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 610.230274][ T25] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 610.238599][ T25] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 611.811522][ T9390] loop0: detected capacity change from 0 to 1024 [ 612.034304][ T9390] hfsplus: bad catalog entry type [ 612.457445][ T2970] hfsplus: b-tree write err: -5, ino 4 [ 612.546644][ T9397] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 614.553116][ T5076] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 614.563377][ T5076] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 614.588954][ T5076] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 614.612362][ T5076] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 614.707398][ T5076] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 614.720977][ T5076] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 614.963095][ T9415] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 615.824065][ T9428] loop0: detected capacity change from 0 to 2048 [ 615.951499][ T9428] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 615.959719][ T8043] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 616.098871][ T9428] ===================================================== [ 616.106348][ T9428] BUG: KMSAN: uninit-value in crc_itu_t+0x287/0x2e0 [ 616.115870][ T9428] crc_itu_t+0x287/0x2e0 [ 616.120318][ T9428] udf_update_tag+0x5c/0x2a0 [ 616.126169][ T9428] udf_rename+0x1202/0x16d0 [ 616.126516][ T8043] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 616.130836][ T9428] vfs_rename+0x1d9a/0x2280 [ 616.146130][ T9428] do_renameat2+0x18cc/0x1d50 [ 616.150978][ T9428] __x64_sys_renameat2+0x153/0x200 [ 616.156788][ T9428] x64_sys_call+0x2993/0x3b50 [ 616.161671][ T9428] do_syscall_64+0xcf/0x1e0 [ 616.166599][ T9428] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 616.172847][ T9428] [ 616.175267][ T9428] Local variable diriter created at: [ 616.180655][ T9428] udf_rename+0xbe/0x16d0 [ 616.185275][ T9428] vfs_rename+0x1d9a/0x2280 [ 616.189936][ T9428] [ 616.192603][ T9428] CPU: 0 PID: 9428 Comm: syz-executor.0 Not tainted 6.9.0-syzkaller-02707-g614da38e2f7a #0 [ 616.204647][ T9428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 616.216166][ T9428] ===================================================== [ 616.224276][ T9428] Disabling lock debugging due to kernel taint [ 616.230536][ T9428] Kernel panic - not syncing: kmsan.panic set ... [ 616.237067][ T9428] CPU: 0 PID: 9428 Comm: syz-executor.0 Tainted: G B 6.9.0-syzkaller-02707-g614da38e2f7a #0 [ 616.248710][ T9428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 616.258906][ T9428] Call Trace: [ 616.262293][ T9428] [ 616.265325][ T9428] dump_stack_lvl+0x216/0x2d0 [ 616.270217][ T9428] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 616.276220][ T9428] dump_stack+0x1e/0x30 [ 616.280579][ T9428] panic+0x4e2/0xcd0 [ 616.284680][ T9428] ? kmsan_get_metadata+0xf1/0x1d0 [ 616.290027][ T9428] kmsan_report+0x2d5/0x2e0 [ 616.294737][ T9428] ? kmsan_internal_poison_memory+0x49/0x90 [ 616.300855][ T9428] ? kmsan_slab_free+0xd6/0x140 [ 616.305882][ T9428] ? kfree+0x20f/0xa60 [ 616.310109][ T9428] ? udf_fiiter_release+0x115/0x160 [ 616.315495][ T9428] ? __msan_warning+0x95/0x120 [ 616.320428][ T9428] ? crc_itu_t+0x287/0x2e0 [ 616.325042][ T9428] ? udf_update_tag+0x5c/0x2a0 [ 616.330002][ T9428] ? udf_rename+0x1202/0x16d0 [ 616.334891][ T9428] ? vfs_rename+0x1d9a/0x2280 [ 616.339738][ T9428] ? do_renameat2+0x18cc/0x1d50 [ 616.344774][ T9428] ? __x64_sys_renameat2+0x153/0x200 [ 616.350243][ T9428] ? x64_sys_call+0x2993/0x3b50 [ 616.355306][ T9428] ? do_syscall_64+0xcf/0x1e0 [ 616.360212][ T9428] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 616.366609][ T9428] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 616.372620][ T9428] ? current_time+0x44/0x550 [ 616.377415][ T9428] ? filter_irq_stacks+0x60/0x1a0 [ 616.382674][ T9428] ? kmsan_get_metadata+0x146/0x1d0 [ 616.388060][ T9428] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 616.394067][ T9428] ? kmsan_get_metadata+0x146/0x1d0 [ 616.399451][ T9428] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 616.405459][ T9428] ? kmsan_get_metadata+0x146/0x1d0 [ 616.410833][ T9428] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 616.416836][ T9428] __msan_warning+0x95/0x120 [ 616.421599][ T9428] crc_itu_t+0x287/0x2e0 [ 616.426046][ T9428] udf_update_tag+0x5c/0x2a0 [ 616.430843][ T9428] udf_rename+0x1202/0x16d0 [ 616.435581][ T9428] ? kmsan_internal_set_shadow_origin+0x66/0xe0 [ 616.442054][ T9428] ? kmsan_get_metadata+0x146/0x1d0 [ 616.447430][ T9428] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 616.453492][ T9428] ? __pfx_udf_rename+0x10/0x10 [ 616.458557][ T9428] vfs_rename+0x1d9a/0x2280 [ 616.463268][ T9428] do_renameat2+0x18cc/0x1d50 [ 616.468150][ T9428] __x64_sys_renameat2+0x153/0x200 [ 616.473449][ T9428] x64_sys_call+0x2993/0x3b50 [ 616.478335][ T9428] do_syscall_64+0xcf/0x1e0 [ 616.483039][ T9428] ? clear_bhb_loop+0x25/0x80 [ 616.487929][ T9428] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 616.494048][ T9428] RIP: 0033:0x7fd55e87cf69 [ 616.498602][ T9428] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 616.518408][ T9428] RSP: 002b:00007fd55f6720c8 EFLAGS: 00000246 ORIG_RAX: 000000000000013c [ 616.527027][ T9428] RAX: ffffffffffffffda RBX: 00007fd55e9b3f80 RCX: 00007fd55e87cf69 [ 616.535156][ T9428] RDX: 0000000000000005 RSI: 0000000020000000 RDI: 0000000000000004 [ 616.543267][ T9428] RBP: 00007fd55e8da6fe R08: 0000000000000000 R09: 0000000000000000 [ 616.551377][ T9428] R10: 00000000200004c0 R11: 0000000000000246 R12: 0000000000000000 [ 616.559496][ T9428] R13: 000000000000000b R14: 00007fd55e9b3f80 R15: 00007fffdead2d58 [ 616.567634][ T9428] [ 616.570975][ T9428] Kernel Offset: disabled [ 616.575357][ T9428] Rebooting in 86400 seconds..