last executing test programs: 15m35.125669034s ago: executing program 0 (id=563): pwrite64(0xffffffffffffffff, &(0x7f0000000580)="d87457c25f460763458a896f5098a05e4092c1d1c03b294eabdf3699b3c788bd201845eab5a272eca8ce40b259673a80f4aa43323b981bcc49af88123752e65319eee13825ae7cc7d7f53b27f935b3106ce7c42e36d98eca3305c07728f48f2b123eb8da5a628115d7898064d4e9", 0x6e, 0x1) socket$nl_generic(0x10, 0x3, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000013c0)={0x1, 0xe, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x0, 0xc578, 0x10000000}, 0x10}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x0, 0x0, 0x0}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000200)={0x4, 0x8a}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3) getsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x33, &(0x7f0000000140), 0x0) ioctl$BINDER_THREAD_EXIT(0xffffffffffffffff, 0x40046208, 0x0) sched_setaffinity(0x0, 0xfffffffffffffd58, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000032680)=""/102392, 0x18ff8) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) read$FUSE(0xffffffffffffffff, &(0x7f0000001780)={0x2020, 0x0, 0x0}, 0x2020) mount(0x0, 0x0, 0x0, 0x8002, &(0x7f0000000400)='\x00') syz_emit_vhci(&(0x7f0000000340)=ANY=[@ANYBLOB="040e0401412006c4819063e59eca202a48fbdafd4b3a"], 0x7) r3 = getpid() write$FUSE_LK(r1, &(0x7f00000000c0)={0x28, 0x0, r2, {{0x2, 0x2, 0x0, r3}}}, 0x28) r4 = bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r4, 0x0, 0x0}, 0x20) r5 = syz_open_procfs(0x0, &(0x7f0000000240)='net/igmp6\x00') pread64(r5, &(0x7f000001a240)=""/102400, 0x19000, 0x100008) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(r6, 0x29, 0x33, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000100)={0x2, 0x0, @ioapic={0x10000, 0x5fa, 0x8, 0x1ff, 0x0, [{0x6d, 0x6, 0x9, '\x00', 0xa}, {0x6, 0x4, 0x72, '\x00', 0x3}, {0x1, 0xfe, 0x9, '\x00', 0x5}, {0x81, 0x3, 0x8, '\x00', 0x5}, {0xb, 0x6, 0x7f, '\x00', 0x5c}, {0x0, 0x4, 0x6, '\x00', 0x8}, {0x6, 0x9, 0x8, '\x00', 0xa}, {0xd, 0x7, 0xb, '\x00', 0x9}, {0x2, 0x9, 0x0, '\x00', 0xa}, {0x7, 0x5, 0x0, '\x00', 0x6}, {0x40, 0x4, 0x2, '\x00', 0x1}, {0x8, 0x4, 0x19, '\x00', 0xff}, {0x1, 0x86, 0xc, '\x00', 0xfb}, {0x5, 0x4f, 0x0, '\x00', 0x80}, {0x4, 0x4, 0x96, '\x00', 0x7}, {0xf, 0x0, 0x7, '\x00', 0x7f}, {0x10, 0x5, 0x1, '\x00', 0x3}, {0x68, 0x3, 0x2, '\x00', 0x3}, {0x5, 0x9e, 0xc0, '\x00', 0x2}, {0x3e, 0x4c, 0x8, '\x00', 0x3}, {0x7, 0x1, 0x2, '\x00', 0x1}, {0x3, 0x0, 0x6, '\x00', 0x4}, {0x93, 0x4, 0x4, '\x00', 0xe9}, {0x3, 0x7f, 0xdf, '\x00', 0x47}]}}) getsockopt$inet6_buf(r6, 0x29, 0x30, 0x0, &(0x7f00000001c0)) 15m34.190247687s ago: executing program 0 (id=564): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xd, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae", @ANYRES16, @ANYRESHEX=0x0, @ANYRES64=0x0, @ANYRESDEC=0x0, @ANYRESHEX, @ANYRES64], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xdf}, 0x94) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fed007907001175f37538e486dd6317ce2200102f00fe80000000000000875a65059ff57b00000000000000000000000000ac1414aa35f022eb"], 0xcfa4) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x94) r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x88be, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0, 0x0, 0x7}, 0x18) prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) getsockopt$sock_cred(r2, 0x1, 0x1c, 0xfffffffffffffffd, &(0x7f0000000040)) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r4 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r4, 0x0, 0x80) fcntl$lock(r3, 0x25, &(0x7f00000000c0)) r5 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000000040)=0x0) timer_settime(r6, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0) fcntl$lock(r7, 0x26, &(0x7f0000000000)={0x1}) r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0) fcntl$lock(r8, 0x26, &(0x7f0000000000)={0x1}) 15m32.519985322s ago: executing program 0 (id=570): socketpair$unix(0x1, 0x1, 0x0, 0x0) syz_mount_image$udf(&(0x7f0000000c40), &(0x7f0000000680)='./file1\x00', 0x2300000, &(0x7f0000000000)=ANY=[], 0x47, 0xc1c, &(0x7f0000002a00)="$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") r0 = syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000100)='./file1\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="73686f72746e616d653d6d697865642c757466383d302c696f636861727365743d63703836302c696f636861727365743d6d616363726f617469616e2c756e695f786c6174653d312c747a3d5554432c6e6f6e756d7461696c3d302c756e695f786c6174653d312c696f636861727365743d63703433372c73686f72746e616d653d77696e6e742c726f6469722c73686f72746e616d653d6d697865642c6e6f636173652c73686f72746e616d653d6c6f7765722c73686f72746e616d653d6d697865642c6572726f72733d72656d6f756e742d726f2c6e6f6e756d7461696c3d302c736d61636b66736465663d757466383d302c64697273796e632c736d61636b66736861743d262c657569643e807d6dc634ae06b292a3825c7626caa45b7a39a81660437a556646a082c54e8cf9c81260f6a760b9f06d5738818ee5a4503b0364b0f4c56abfe2", @ANYRESDEC=0x0, @ANYBLOB="2c6f626a5f726f6c653d2c686173682ca8ea26de004d2208fc414d630834ec2191519244adb53cec31ddc7b9b58f32238fac4fbdc332b1719e34"], 0x25, 0x34f, &(0x7f0000000840)="$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") prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, &(0x7f0000000240)) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) r4 = socket$alg(0x26, 0x5, 0x0) bind$alg(r4, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000000)="addf1a9a3fc36e961ed00fe41b0cd695", 0x2f) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r5, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[], 0x94}}, 0x0) openat$sndseq(0xffffffffffffff9c, 0x0, 0x40780) prctl$PR_SET_SECUREBITS(0x1c, 0x1d) setregid(0x0, 0xee01) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) r6 = msgget(0x3, 0x100) msgctl$MSG_INFO(r6, 0xc, &(0x7f0000000140)=""/48) truncate(&(0x7f0000000000)='./file1\x00', 0x5e02) 15m28.69382428s ago: executing program 0 (id=580): bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x1, 0xe, &(0x7f0000000900)=ANY=[@ANYBLOB="b7020000f7ffffffbfa70000000000002402000020fe29817a0af0fff8ffffff69a4f0ff00000000b70600000018d1fe2d6405000000000075040000000000400704000000000000b7040000100000206a0700fe000000008500000005000000b70000000a00000095000000000000000000c2c62f60"], 0x0}, 0x94) bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000800)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x2, '\x00', 0x0, 0x0}, 0x50) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000540)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r1, @ANYBLOB, @ANYRES32=r2, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0) 15m23.672881327s ago: executing program 0 (id=587): syz_mount_image$fuse(0x0, &(0x7f0000000100)='./file0\x00', 0x20, 0x0, 0x0, 0x0, 0x0) mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0) chroot(&(0x7f0000000100)='./file0\x00') mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000240)='./file0\x00', &(0x7f0000000000)='./file0/../file0\x00') 15m23.401999344s ago: executing program 0 (id=589): rseq(&(0x7f0000000400), 0x20, 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$vsock_stream(0x28, 0x1, 0x0) bind$vsock_stream(r0, &(0x7f0000000440), 0x10) listen(r0, 0x0) r1 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10) writev(r1, 0x0, 0x0) r2 = accept4$unix(r0, 0x0, 0x0, 0x0) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r2, 0x0, r3, 0x0, 0x20000008, 0x0) 15m7.183237458s ago: executing program 32 (id=589): rseq(&(0x7f0000000400), 0x20, 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$vsock_stream(0x28, 0x1, 0x0) bind$vsock_stream(r0, &(0x7f0000000440), 0x10) listen(r0, 0x0) r1 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10) writev(r1, 0x0, 0x0) r2 = accept4$unix(r0, 0x0, 0x0, 0x0) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r2, 0x0, r3, 0x0, 0x20000008, 0x0) 1m22.173846728s ago: executing program 3 (id=2061): socket$nl_route(0x10, 0x3, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'syz_tun\x00', 0x0}) syz_open_procfs(0x0, &(0x7f0000000040)='maps\x00') openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x141202, 0x0) socket$inet_sctp(0x2, 0x1, 0x84) socket$inet_sctp(0x2, 0x1, 0x84) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r2}, &(0x7f0000000240), &(0x7f00000003c0)=r4}, 0x20) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r3, r0, 0x25, 0x2, @void}, 0x10) syz_emit_ethernet(0x46, &(0x7f00000005c0)=ANY=[@ANYBLOB="0180c20000000180c200000086dd6001012000103afffe8000000000000000000000000000bbff02000000000000000000000000000186009078000200000040000000000000206c66f5238d15c4d34eef6b2902174486400a420aa3c1bd18c0c6e7f3c7033c8079d6e66c5176676be7a075598a410f599296c500fe7ae0c53301b9250f984d9aa7c3f7e34263dfc67a823e83a2b0441d506d095f2d4df979be23120f41a3eee3b49ed1c5e943ad6bb9074ffcd0f8c647232da8d78b7e57604b199a44606cd1bf086cd0fdb3a5bbe2e1338eba"], 0x0) 1m21.55047413s ago: executing program 3 (id=2063): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb}, 0x28) 1m19.553416488s ago: executing program 3 (id=2068): r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000040)) ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000080)=0x200000000) r1 = dup2(r0, r0) preadv2(r1, &(0x7f0000000400)=[{&(0x7f0000000380)=""/90, 0x5a}], 0x1, 0xf5, 0x4, 0x15) ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000040)=0x1) ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 1m18.145642128s ago: executing program 3 (id=2071): socket$nl_route(0x10, 0x3, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'syz_tun\x00', 0x0}) syz_open_procfs(0x0, &(0x7f0000000040)='maps\x00') openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x141202, 0x0) socket$inet_sctp(0x2, 0x1, 0x84) socket$inet_sctp(0x2, 0x1, 0x84) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r2}, &(0x7f0000000240), &(0x7f00000003c0)=r4}, 0x20) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r3, r0, 0x25, 0x2, @void}, 0x10) syz_emit_ethernet(0x46, &(0x7f00000005c0)=ANY=[@ANYBLOB="0180c20000000180c200000086dd6001012000103afffe8000000000000000000000000000bbff02000000000000000000000000000186009078000200000040000000000000206c66f5238d15c4d34eef6b2902174486400a420aa3c1bd18c0c6e7f3c7033c8079d6e66c5176676be7a075598a410f599296c500fe7ae0c53301b9250f984d9aa7c3f7e34263dfc67a823e83a2b0441d506d095f2d4df979be23120f41a3eee3b49ed1c5e943ad6bb9074ffcd0f8c647232da8d78b7e57604b199a44606cd1bf086cd0fdb3a5bbe2e1338eba"], 0x0) 1m17.972390086s ago: executing program 3 (id=2073): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f00000000c0)='nfs\x00', 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26}, 0x28) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_SIOCETHTOOL(r5, 0x89f1, &(0x7f0000000340)={'sit0\x00', &(0x7f00000001c0)=@ethtool_cmd={0xb, 0x3, 0x0, 0x0, 0x7, 0x0, 0x3, 0xfc, 0x3, 0x5, 0x0, 0x9080, 0x3, 0xff, 0x0, 0x1045, [0x0, 0x7f]}}) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x60}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x1f6, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops, r4, 0x8, 0x0, 0x20, 0x10, &(0x7f0000000200), 0x1}, 0x6d) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) syz_mount_image$iso9660(&(0x7f0000000dc0), &(0x7f0000002380)='./file1\x00', 0x3a0cc0a, &(0x7f00000023c0)=ANY=[@ANYBLOB='hide,dmode=0x0000000000000005,map=normal,map=normal,session=0x000000000000000e,overriderockperm,showassoc,nocompress,utf8,map=normal,session=0x0000000000000006,map=acorn,mode=0x0000000000000086,uid=', @ANYRESDEC=0x0, @ANYBLOB='\x00\x00', @ANYRESDEC, @ANYRESDEC, @ANYRES8, @ANYRESDEC], 0x43, 0xa02, &(0x7f0000003640)="$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") name_to_handle_at(0xffffffffffffff9c, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB], &(0x7f0000000000), 0x0) fgetxattr(0xffffffffffffffff, 0x0, 0x0, 0x0) msgctl$MSG_STAT_ANY(0x0, 0xd, 0x0) prctl$PR_MCE_KILL(0x35, 0x0, 0x8) setxattr$incfs_id(&(0x7f0000000180)='./file1\x00', &(0x7f0000000380), &(0x7f0000000400)={'0000000000000000000000000000000', 0x31}, 0x20, 0x3) prctl$PR_MCE_KILL(0x35, 0x0, 0x10) 1m16.815847431s ago: executing program 3 (id=2076): socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) r2 = socket(0x40000000015, 0x5, 0x0) connect$inet(r2, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10) bind$inet(r2, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57) ioctl$NBD_SET_SIZE(0xffffffffffffffff, 0xab02, 0x4) recvmmsg(r2, &(0x7f0000001740)=[{{0x0, 0xc4, &(0x7f0000001400)=[{&(0x7f0000000400)=""/4096, 0x10c4}], 0x1}}], 0x4000210, 0x2, 0x0) sendmsg$NFT_BATCH(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[], 0xc4}}, 0x0) setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, 0x0, 0x0) 1m1.513710113s ago: executing program 33 (id=2076): socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) r2 = socket(0x40000000015, 0x5, 0x0) connect$inet(r2, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10) bind$inet(r2, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57) ioctl$NBD_SET_SIZE(0xffffffffffffffff, 0xab02, 0x4) recvmmsg(r2, &(0x7f0000001740)=[{{0x0, 0xc4, &(0x7f0000001400)=[{&(0x7f0000000400)=""/4096, 0x10c4}], 0x1}}], 0x4000210, 0x2, 0x0) sendmsg$NFT_BATCH(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[], 0xc4}}, 0x0) setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, 0x0, 0x0) 18.847998735s ago: executing program 1 (id=2178): prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0) r3 = socket(0x1e, 0x4, 0x0) connect$tipc(r3, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wlan0\x00'}) ioctl$SNDCTL_FM_4OP_ENABLE(r0, 0x4004510f, &(0x7f00000001c0)=0x3) sendmsg$NL80211_CMD_SET_NOACK_MAP(r3, 0x0, 0x20008098) sendmmsg$unix(r3, &(0x7f0000004400), 0x400000000000203, 0x0) syz_clone(0x8000, 0x0, 0x0, 0x0, 0x0, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, 0x0) r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0xa031, 0xffffffffffffffff, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0) mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204081, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f}) pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000100)='./file0\x00') ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000280)={{0x1, 0x1, 0x18}, './file0/file0\x00'}) 14.825877666s ago: executing program 1 (id=2188): r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) syz_usb_connect(0x1, 0x2d, &(0x7f0000000840)=ANY=[@ANYBLOB="120100035121fd08e80430ffbfcc0102030109021b0001400080150904"], &(0x7f0000001500)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]}) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) r1 = socket$kcm(0x29, 0x2, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x40, &(0x7f0000001dc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock=0xc}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000440)={'ip6gre0\x00', &(0x7f0000000280)={'ip6gre0\x00', 0x0, 0x29, 0x81, 0x1, 0x7, 0xd, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private2={0xfc, 0x2, '\x00', 0x1}, 0x40, 0x7800, 0x101, 0x4}}) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x7ff, '\x00', r6}, 0x50) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x18) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48) r7 = socket$kcm(0x2, 0x1, 0x0) sendmsg$inet(r7, &(0x7f0000000fc0)={&(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x20000811) ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x89e0, &(0x7f0000000040)={r7, r2}) shutdown(r7, 0x1) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000300)={&(0x7f00000001c0)=[0x0], 0x1}) ioctl$DRM_IOCTL_MODE_GETPLANE(r0, 0xc02064b6, &(0x7f00000003c0)={r8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, &(0x7f0000000340)={0x0, 0x0, r9, r10, 0x1, 0x45a, 0x0, 0xb, {0x6, 0x8, 0xd350, 0x9ee8, 0x0, 0x0, 0x232f, 0xd, 0x5, 0x93, 0x3, 0x2, 0x7, 0x3, "151b75a86633e8616cff9de7d88fe76b844a2fbc9019e5341e6b36c41122be28"}}) 14.033175704s ago: executing program 5 (id=2191): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYRES32=r0, @ANYBLOB], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000240)={0xb, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) sendmsg$IPVS_CMD_NEW_DEST(r2, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000180)={0x0}}, 0x800) sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x3c8f3000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f00000006c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) r6 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$UHID_CREATE(r6, &(0x7f00000000c0)={0x0, {'syz1\x00', 'syz1\x00', 'syz1\x00', &(0x7f0000000200)=""/88, 0x58, 0x0, 0x0, 0x1, 0x3, 0x80000000}}, 0x120) write$UHID_GET_REPORT_REPLY(r6, &(0x7f0000000bc0)={0xa, {0x4, 0x4, 0x3}}, 0xa) r7 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TCSETA(r7, 0x560a, &(0x7f0000001040)={0x0, 0x3, 0x0, 0x20, 0x2, "08000000f28f00"}) ioctl$FIDEDUPERANGE(r7, 0xc0189436, &(0x7f0000000340)={0xffff, 0x9, 0x1, 0x0, 0x0, [{{}, 0x1d321cfb}]}) sendmsg$TIPC_CMD_SET_LINK_WINDOW(r5, 0x0, 0x0) fsopen(0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000280)={0x2, 0x4, @multicast1}, 0x10) 9.946437731s ago: executing program 1 (id=2193): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getsockopt$inet_opts(0xffffffffffffffff, 0x0, 0xc, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={0xffffffffffffffff}) recvmmsg(r0, 0x0, 0x0, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00'}, 0x10) close(0xffffffffffffffff) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r2 = openat$cgroup_type(r1, &(0x7f0000000100), 0x2, 0x0) write$cgroup_type(r2, &(0x7f0000000280), 0x9) r3 = openat$cgroup_procs(r1, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0) write$cgroup_pid(r3, &(0x7f0000000c40), 0x12) r4 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0) write$cgroup_int(r4, &(0x7f0000000200)=0x1, 0x12) write$cgroup_pid(r4, &(0x7f0000000140), 0x12) 8.676983697s ago: executing program 1 (id=2195): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0xf1) mkdir(&(0x7f00000004c0)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f0000000140)='./bus\x00', &(0x7f0000000380), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) epoll_create(0x4) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) socketpair$unix(0x1, 0x2, 0x0, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r1 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x92) mknodat(r1, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0) chdir(&(0x7f00000000c0)='./bus\x00') r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) mkdir(&(0x7f0000000240)='./bus\x00', 0x0) renameat2(r2, &(0x7f00000001c0)='./file0\x00', r2, &(0x7f0000000200)='./bus/file0\x00', 0x0) 7.731731141s ago: executing program 1 (id=2196): socket$nl_route(0x10, 0x3, 0x0) socket$netlink(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) syz_emit_ethernet(0x5e, &(0x7f0000000300)=ANY=[], 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f0000000180), 0x200000, &(0x7f0000000440)=ANY=[@ANYRESHEX, @ANYBLOB, @ANYBLOB='3']) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x3, &(0x7f0000000000)=[{0x28, 0x2, 0xfd, 0x5ae9}, {0x20, 0x7f, 0x4, 0xfffff038}, {0x6, 0x0, 0x7, 0x7}]}, 0x10) sendmmsg$inet(r1, &(0x7f0000002c40)=[{{0x0, 0x0, &(0x7f0000000e80)=[{&(0x7f0000000a80)="2a73ed35", 0x732a}], 0x1}}], 0x400000000000292, 0x0) 6.997408944s ago: executing program 5 (id=2199): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mkdir(0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r1 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x92) mknodat(r1, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) mkdir(&(0x7f0000000240)='./bus\x00', 0x0) renameat2(r2, &(0x7f00000001c0)='./file0\x00', r2, &(0x7f0000000200)='./bus/file0\x00', 0x0) 5.997402804s ago: executing program 5 (id=2201): r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000a8f4dd086d0492082a6d0000000109021b0001000000000904"], 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000000)={0x2c, &(0x7f00000000c0)=ANY=[], 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$printer(r0, 0x0, 0x0) syz_usb_control_io$rtl8150(r0, 0x0, &(0x7f00000006c0)={0x2c, &(0x7f0000000700)={0x0, 0x0, 0x1, 'V'}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000880)={0x34, &(0x7f0000000f80)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$rtl8150(r0, 0x0, 0x0) 4.994007553s ago: executing program 4 (id=2204): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000002000)=""/102400, 0x19000) connect$inet(0xffffffffffffffff, 0x0, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0x4000000}, 0x28000010) 3.993960392s ago: executing program 4 (id=2206): openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7) r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102) writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0x1}], 0x1) r1 = syz_io_uring_setup(0x4d5, &(0x7f0000000480)={0x0, 0x404525, 0x80, 0x2, 0x12d}, &(0x7f0000000100)=0x0, &(0x7f0000000640)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffff8, 0x0, 0x4) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2f, 0x28, 0x0, 0x4}]}, 0x10) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_TEE={0x21, 0xda1a0b6210925d15, 0x0, @fd_index, 0x0, 0x0, 0x1, 0x1}) io_uring_enter(r1, 0x22d0, 0x20, 0x0, 0x0, 0x0) 3.977061094s ago: executing program 1 (id=2207): syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="000001006f9595d6538c6dc80804fa586226a23d71aafd23663ae6610952721f71faa0f9bbbf412166404116aa2b81a0443a169f41457a94c3cc54fe08aab15e489617968f5436df3a99f504fa0088e8b1448974a9b93c6085171af52ad83dc1a0d9db61bc4258ff449644dd8c597ebbcbc361f54e298ca8e5d80a5f64c515683dc72d205fc8529a6f849ee1806cc8d60ce55bbc50c1742c19f75d4d0081b6e6ccfb837bb993d2e941da721d6d88c6ecc94d80a1e22bd8e625"], 0x3, 0x174, &(0x7f0000000480)="$eJzsmD9PwkAYxp9rESJxcMZBE0lEI6UtalxMJPEDmOCfsEGkErSIQgdh85MYv4CLu/GjKJMLo3NN2wNOouKgJsbnN7z3vNe317u3ydOkIIT8W3pPL48XvcaKDmAGaSTk/LM+qtGU+tVssTl3vZ28K9+WdlL3/fH1BADf//rzYwAeCjo8mfv+27vTctyDNtT70LAs9SEEDKnL0HAgtQOBktQnim4G9YZxXHcd46jpVgNhBsEKgh2E/Pj++lcCVWV/Qrne7nRPK67rtH5QTOpfv6BhS9mf+r4GvTGV/lnQYEmdh0BR6k0kBr2JWqKcPxUbra//8vkpKCj+mhj5k38jsKT4U0zxj5zXOM+1O91svVGpOTXnzLbzG+aaaa7budCIoviJ/02H/pRU1p/6oDYu4riseF7LiuIwt6P4nuPGQ//TkFmMciHnVMLvwaxYCIaMLnNCCCGEEEIIIYQQQgj5duYhwr+gE7B3w+rXAAAA//9nP3XZ") r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() r2 = timerfd_create(0x3, 0x800) clock_gettime(0x0, &(0x7f0000000040)={0x0, 0x0}) clock_gettime(0x0, &(0x7f0000000300)={0x0, 0x0}) timerfd_settime(r2, 0x1, &(0x7f0000000340)={{r3, r4+60000000}, {r5, r6+10000000}}, &(0x7f0000000380)) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r7, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r8, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r9 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_test', 0x141a82, 0x0) r10 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$sock_int(r10, 0x1, 0xf, &(0x7f0000000180)=0x80000004, 0x4) setsockopt$SO_ATTACH_FILTER(r10, 0x1, 0x33, &(0x7f0000000000)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0x1}]}, 0x10) bind$inet6(r10, &(0x7f0000000200)={0xa, 0x4e20, 0x8, @empty, 0x80ad}, 0x1c) syncfs(r0) sendfile(r9, r9, 0x0, 0x4) 3.905098522s ago: executing program 2 (id=2208): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0, 0x0, 0x3}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) ioctl$COMEDI_BUFINFO(0xffffffffffffffff, 0xc02c640e, &(0x7f0000000080)={0x0, 0xce2, 0x7c, 0x101, 0x8, 0x7, 0xffff0000}) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mkdir(&(0x7f0000000300)='./file0/file0\x00', 0x10) r4 = open(0x0, 0x442, 0x2) ioctl$VHOST_VDPA_GET_VRING_GROUP(r4, 0xc008af7b, 0x0) r5 = socket(0x10, 0x3, 0x0) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) sendmsg$nl_route(r5, 0x0, 0x40000) r6 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x180300, 0x0) r7 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r7, 0xc0605345, &(0x7f0000000040)) ioctl$FBIOPUT_VSCREENINFO(r6, 0x4601, &(0x7f0000000040)={0x191, 0x78, 0xa0, 0x3f, 0x32, 0x1c0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x40, 0x0, 0x0, 0x0, 0x6, 0x1, 0x1, 0x0, 0xfffffffd, 0x0, 0x8, 0x4, 0x0, 0x2, 0xa}) pipe2$9p(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r9 = dup(r8) write$FUSE_BMAP(r9, 0x0, 0x0) 3.767299226s ago: executing program 4 (id=2209): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg(r3, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, 0xffffffffffffffff) r4 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0) r5 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r5, 0x10e, 0xc, &(0x7f0000000080)={0xffffff}, 0x10) write(r5, &(0x7f0000000000)="240000001a005f0214f9f407000904001f00000000000002000000000800040001000000", 0x24) r6 = socket(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0xff05, 0x8000000, 0x0, {0x0, 0x0, 0x4a00, 0x0, 0x157f}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @batadv={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @multicast}]}, 0x40}}, 0x20000840) r7 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r7, 0xae60) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r7, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, 0x0}], 0x1, 0x24, 0x0, 0x0) r9 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0), r6) sendmsg$TIPC_NL_BEARER_DISABLE(r4, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000140)={&(0x7f0000000880)={0x14, r9, 0x800, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x8004}, 0x10000) prctl$PR_SET_THP_DISABLE(0x41, 0x3) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000800)="c4e149646d040f72f002660ffd1594fb0000c4e1fde764c200c4c1e1d234cfc744240009000000c7442402494c85bdc7442406000000000f011c2466bad004ec660fe12e3e360f01ca2e0f01cf", 0x4d}], 0x1, 0x43, 0x0, 0x0) ioctl$BLKRRPART(r4, 0x125f, 0x0) ioctl$KVM_RUN(r8, 0xae80, 0x0) 2.71261522s ago: executing program 2 (id=2210): prlimit64(0x0, 0xe, &(0x7f0000000000)={0x2, 0x7}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2) ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000005580)=""/102392, 0x18ff8) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto$inet6(r1, &(0x7f0000000400)="2ae0", 0x2, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1}, 0x1c) setsockopt$inet6_int(r1, 0x29, 0x5, &(0x7f0000000140)=0x6, 0x4) recvmmsg(r1, &(0x7f0000000d80), 0x4000000000001e9, 0x10162, 0x0) 1.569978174s ago: executing program 2 (id=2211): sendmsg$IPSET_CMD_FLUSH(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x1c, 0x4, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0) 1.444037646s ago: executing program 2 (id=2212): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x5) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x23, 0x0, 0x0, 0x0}, 0x94) bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x2000000, 0x7, 0x0, &(0x7f0000000200)="63eced8e46dc3f", 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 1.310459639s ago: executing program 5 (id=2213): r0 = socket$inet6(0xa, 0x2, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r2 = socket(0x400000000010, 0x3, 0x0) r3 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) r5 = socket(0x400000000010, 0x3, 0x0) r6 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd29, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xc, 0xf}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_RSC={0x10, 0x1, {0x0, 0xfffffffe, 0x4}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x8001}, 0x20008850) sendmsg$nl_route_sched(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000027c0)=@newtfilter={0x38, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r4, {0x0, 0x4}, {}, {0x8}}, [@filter_kind_options=@f_matchall={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x10}, 0x0) r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r8) socket(0x2, 0x5, 0x0) ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}) r9 = socket$unix(0x1, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmmsg$inet(r0, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10, 0x0, 0x0, &(0x7f00000006c0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r10, @dev={0xac, 0x14, 0x14, 0x41}, @empty}}}], 0x20}}], 0x27, 0x0) 1.117959199s ago: executing program 2 (id=2214): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000002000)=""/102400, 0x19000) connect$inet(0xffffffffffffffff, 0x0, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000380)={0x14, 0x4, 0x6, 0x101, 0x0, 0x0, {0x7, 0x0, 0xa}}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x28000010) 1.117536829s ago: executing program 4 (id=2215): openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0) sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000000040000001400050003030000000a0000005dc00000000001080002000500000014000600ff01000a00f2f3f31f000a0000000001060001"], 0x4c}, 0x1, 0x0, 0x0, 0x8004}, 0x4040000) r2 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)=[0x0], 0x0, 0x0, 0x0, 0x1}) sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[], 0x4c}, 0x1, 0x0, 0x0, 0x24008000}, 0x4040000) 392.760421ms ago: executing program 2 (id=2216): socket$nl_route(0x10, 0x3, 0x0) socket$netlink(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) syz_emit_ethernet(0x5e, &(0x7f0000000300)=ANY=[], 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f0000000180), 0x200000, &(0x7f0000000440)=ANY=[@ANYRESHEX, @ANYBLOB='3q']) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x3, &(0x7f0000000000)=[{0x28, 0x2, 0xfd, 0x5ae9}, {0x20, 0x7f, 0x4, 0xfffff038}, {0x6, 0x0, 0x7, 0x7}]}, 0x10) sendmmsg$inet(r1, &(0x7f0000002c40)=[{{0x0, 0x0, &(0x7f0000000e80)=[{&(0x7f0000000a80)="2a73ed35", 0x732a}], 0x1}}], 0x400000000000292, 0x0) 292.662851ms ago: executing program 4 (id=2217): openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7) r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102) writev(r0, &(0x7f0000000840)=[{0x0}], 0x1) r1 = syz_io_uring_setup(0x4d5, &(0x7f0000000480)={0x0, 0x404525, 0x80, 0x2, 0x12d}, &(0x7f0000000100)=0x0, &(0x7f0000000640)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffff8, 0x0, 0x4) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2f, 0x28, 0x0, 0x4}]}, 0x10) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_TEE={0x21, 0xda1a0b6210925d15, 0x0, @fd_index, 0x0, 0x0, 0x1, 0x1}) io_uring_enter(r1, 0x22d0, 0x20, 0x0, 0x0, 0x0) 259.071994ms ago: executing program 5 (id=2218): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getsockopt$inet_opts(0xffffffffffffffff, 0x0, 0xc, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={0xffffffffffffffff}) recvmmsg(r0, 0x0, 0x0, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00'}, 0x10) close(0xffffffffffffffff) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r2 = openat$cgroup_type(r1, &(0x7f0000000100), 0x2, 0x0) write$cgroup_type(r2, &(0x7f0000000280), 0x9) r3 = openat$cgroup_procs(r1, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0) write$cgroup_pid(r3, &(0x7f0000000c40), 0x12) r4 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0) ioctl$TUNSETVNETBE(0xffffffffffffffff, 0x400454de, &(0x7f0000000080)=0x1) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xe, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48) write$cgroup_int(r4, &(0x7f0000000200)=0x1, 0x12) write$cgroup_pid(r4, &(0x7f0000000140), 0x12) 25.858137ms ago: executing program 5 (id=2219): prlimit64(0x0, 0xe, &(0x7f0000000000)={0x2, 0x7}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2) ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000005580)=""/102392, 0x18ff8) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto$inet6(r1, &(0x7f0000000400)="2ae0e7", 0x3, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1}, 0x1c) setsockopt$inet6_int(r1, 0x29, 0x5, &(0x7f0000000140)=0x6, 0x4) recvmmsg(r1, &(0x7f0000000d80), 0x4000000000001e9, 0x10162, 0x0) 0s ago: executing program 4 (id=2220): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f00000000c0)='nfs\x00', 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26}, 0x28) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_SIOCETHTOOL(r5, 0x89f1, &(0x7f0000000340)={'sit0\x00', &(0x7f00000001c0)=@ethtool_cmd={0xb, 0x3, 0x0, 0x0, 0x7, 0x0, 0x3, 0xfc, 0x3, 0x5, 0x0, 0x9080, 0x3, 0xff, 0x0, 0x1045, [0x0, 0x7f]}}) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x60}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x1f6, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops, r4, 0x8, 0x0, 0x20, 0x10, &(0x7f0000000200), 0x1}, 0x6d) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) syz_mount_image$iso9660(&(0x7f0000000dc0), &(0x7f0000002380)='./file1\x00', 0x3a0cc0a, &(0x7f00000023c0)=ANY=[@ANYBLOB='hide,dmode=0x0000000000000005,map=normal,map=normal,session=0x000000000000000e,overriderockperm,showassoc,nocompress,utf8,map=normal,session=0x0000000000000006,map=acorn,mode=0x0000000000000086,uid=', @ANYRESDEC=0x0, @ANYBLOB='\x00\x00', @ANYRESDEC, @ANYRESDEC, @ANYRES8, @ANYRESDEC], 0x43, 0xa02, &(0x7f0000003640)="$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") name_to_handle_at(0xffffffffffffff9c, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB], &(0x7f0000000000), 0x0) fgetxattr(0xffffffffffffffff, 0x0, 0x0, 0x0) msgctl$MSG_STAT_ANY(0x0, 0xd, 0x0) prctl$PR_MCE_KILL(0x35, 0x0, 0x8) setxattr$incfs_id(&(0x7f0000000180)='./file1\x00', &(0x7f0000000380), &(0x7f0000000400)={'0000000000000000000000000000000', 0x31}, 0x20, 0x3) prctl$PR_MCE_KILL(0x35, 0x0, 0x10) kernel console output (not intermixed with test programs): tected capacity change from 0 to 256 [ 667.109275][ T9437] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 667.317251][ T5797] Bluetooth: Wrong link type (-71) [ 667.467701][ T9471] FAT-fs (loop1): Directory bread(block 64) failed [ 667.508549][ T9471] FAT-fs (loop1): Directory bread(block 65) failed [ 667.524770][ T9471] FAT-fs (loop1): Directory bread(block 66) failed [ 667.539679][ T9471] FAT-fs (loop1): Directory bread(block 67) failed [ 667.564319][ T9480] IPv6: NLM_F_REPLACE set, but no existing node found! [ 667.580537][ T9471] FAT-fs (loop1): Directory bread(block 68) failed [ 667.587199][ T9471] FAT-fs (loop1): Directory bread(block 69) failed [ 667.663128][ T9471] FAT-fs (loop1): Directory bread(block 70) failed [ 667.690444][ T9471] FAT-fs (loop1): Directory bread(block 71) failed [ 667.726908][ T9471] FAT-fs (loop1): Directory bread(block 72) failed [ 667.753617][ T9471] FAT-fs (loop1): Directory bread(block 73) failed [ 668.256119][ T9484] loop3: detected capacity change from 0 to 16 [ 669.786438][ T9484] erofs: (device loop3): mounted with root inode @ nid 36. [ 670.462296][ T9485] syz.1.911: attempt to access beyond end of device [ 670.462296][ T9485] loop1: rw=0, sector=1192, nr_sectors = 4 limit=256 [ 671.142973][ T6317] kworker/u4:100: attempt to access beyond end of device [ 671.142973][ T6317] loop1: rw=1, sector=1224, nr_sectors = 544 limit=256 [ 671.249872][ T6317] kworker/u4:100: attempt to access beyond end of device [ 671.249872][ T6317] loop1: rw=1, sector=1800, nr_sectors = 128 limit=256 [ 671.563817][ T6317] kworker/u4:100: attempt to access beyond end of device [ 671.563817][ T6317] loop1: rw=1, sector=1960, nr_sectors = 31840 limit=256 [ 671.598272][ T9488] netlink: 8 bytes leftover after parsing attributes in process `syz.2.916'. [ 675.510643][ T5797] Bluetooth: Wrong link type (-71) [ 675.636962][ T27] kauditd_printk_skb: 27 callbacks suppressed [ 675.636984][ T27] audit: type=1326 audit(2000001554.316:1085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.2.922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 675.943848][ T27] audit: type=1326 audit(2000001554.386:1086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.2.922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 676.069491][ T27] audit: type=1326 audit(2000001554.386:1087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.2.922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 676.128356][ T27] audit: type=1326 audit(2000001554.386:1088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.2.922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 676.168680][ T27] audit: type=1326 audit(2000001554.396:1089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.2.922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 676.332809][ T27] audit: type=1326 audit(2000001554.566:1090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.2.922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 676.560784][ T9523] loop1: detected capacity change from 0 to 16 [ 676.650719][ T9523] erofs: (device loop1): mounted with root inode @ nid 36. [ 676.743379][ T27] audit: type=1326 audit(2000001554.566:1091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.2.922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 676.766370][ T27] audit: type=1326 audit(2000001554.566:1092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.2.922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 676.788979][ T27] audit: type=1326 audit(2000001554.566:1093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.2.922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 676.812051][ T27] audit: type=1326 audit(2000001554.716:1094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.2.922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 677.145378][ T9527] netlink: 8 bytes leftover after parsing attributes in process `syz.2.926'. [ 680.756309][ T5797] Bluetooth: Wrong link type (-71) [ 682.522805][ T9556] loop4: detected capacity change from 0 to 1764 [ 682.891718][ T9560] loop4: detected capacity change from 0 to 16 [ 682.944362][ T9560] erofs: (device loop4): mounted with root inode @ nid 36. [ 683.579979][ T9565] loop2: detected capacity change from 0 to 256 [ 683.702117][ T9566] loop4: detected capacity change from 0 to 1764 [ 684.442681][ T9565] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 687.518683][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 687.525235][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 691.588109][ T9594] loop2: detected capacity change from 0 to 16 [ 691.662433][ T9594] erofs: (device loop2): mounted with root inode @ nid 36. [ 691.979859][ T9600] loop1: detected capacity change from 0 to 256 [ 692.038166][ T9600] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 692.157135][ T9598] loop3: detected capacity change from 0 to 2048 [ 694.074492][ T5797] Bluetooth: Wrong link type (-71) [ 694.974837][ T9619] netlink: 860 bytes leftover after parsing attributes in process `syz.2.955'. [ 698.099496][ T9633] loop4: detected capacity change from 0 to 2048 [ 700.453427][ T9641] loop2: detected capacity change from 0 to 128 [ 700.560070][ T9641] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 700.766842][ T9641] ext4 filesystem being mounted at /222/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 701.318239][ T9647] loop3: detected capacity change from 0 to 1764 [ 702.427657][ T9652] loop1: detected capacity change from 0 to 512 [ 702.486643][ T5790] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 702.518658][ T9652] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #15: comm syz.1.966: iget: bad i_size value: 38620345925642 [ 702.552580][ T9652] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.966: couldn't read orphan inode 15 (err -117) [ 702.593704][ T5797] Bluetooth: Wrong link type (-71) [ 702.672445][ T9652] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 702.846977][ T9661] netlink: 860 bytes leftover after parsing attributes in process `syz.3.969'. [ 704.251987][ T9656] EXT4-fs error (device loop1): ext4_validate_block_bitmap:430: comm ext4lazyinit: bg 0: block 5: invalid block bitmap [ 704.295240][ T6318] EXT4-fs error (device loop1): ext4_validate_block_bitmap:430: comm kworker/u4:101: bg 0: block 5: invalid block bitmap [ 704.321546][ T6318] EXT4-fs (loop1): Delayed block allocation failed for inode 19 at logical offset 0 with max blocks 5 with error 117 [ 704.349914][ T6318] EXT4-fs (loop1): This should not happen!! Data will be lost [ 704.349914][ T6318] [ 704.381853][ T6318] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 128 with error 28 [ 704.463310][ T6318] EXT4-fs (loop1): This should not happen!! Data will be lost [ 704.463310][ T6318] [ 704.519192][ T9666] loop4: detected capacity change from 0 to 2048 [ 704.532513][ T6318] EXT4-fs (loop1): Total free blocks count 0 [ 704.713979][ T6318] EXT4-fs (loop1): Free/Dirty block details [ 704.753726][ T6318] EXT4-fs (loop1): free_blocks=0 [ 704.779365][ T6318] EXT4-fs (loop1): dirty_blocks=16028 [ 704.785066][ T6318] EXT4-fs (loop1): Block reservation details [ 704.944804][ T9666] loop4: detected capacity change from 0 to 256 [ 705.285427][ T9676] netlink: 64 bytes leftover after parsing attributes in process `syz.3.972'. [ 706.128471][ T9666] FAT-fs (loop4): Directory bread(block 64) failed [ 706.158987][ T9666] FAT-fs (loop4): Directory bread(block 65) failed [ 706.165726][ T9666] FAT-fs (loop4): Directory bread(block 66) failed [ 706.198706][ T9666] FAT-fs (loop4): Directory bread(block 67) failed [ 706.218685][ T9666] FAT-fs (loop4): Directory bread(block 68) failed [ 706.258564][ T9666] FAT-fs (loop4): Directory bread(block 69) failed [ 706.284121][ T9666] FAT-fs (loop4): Directory bread(block 70) failed [ 706.306002][ T9666] FAT-fs (loop4): Directory bread(block 71) failed [ 706.337584][ T9666] FAT-fs (loop4): Directory bread(block 72) failed [ 706.356275][ T9666] FAT-fs (loop4): Directory bread(block 73) failed [ 706.649917][ T9666] syz.4.970: attempt to access beyond end of device [ 706.649917][ T9666] loop4: rw=0, sector=1192, nr_sectors = 4 limit=256 [ 707.212240][ T2931] kworker/u4:7: attempt to access beyond end of device [ 707.212240][ T2931] loop4: rw=1, sector=1224, nr_sectors = 544 limit=256 [ 707.271841][ T2931] kworker/u4:7: attempt to access beyond end of device [ 707.271841][ T2931] loop4: rw=1, sector=1800, nr_sectors = 128 limit=256 [ 707.323860][ T2931] kworker/u4:7: attempt to access beyond end of device [ 707.323860][ T2931] loop4: rw=1, sector=1960, nr_sectors = 6816 limit=256 [ 707.408576][ T2931] kworker/u4:7: attempt to access beyond end of device [ 707.408576][ T2931] loop4: rw=1, sector=8776, nr_sectors = 11120 limit=256 [ 707.508528][ T2931] kworker/u4:7: attempt to access beyond end of device [ 707.508528][ T2931] loop4: rw=1, sector=19896, nr_sectors = 9320 limit=256 [ 707.566557][ T2931] kworker/u4:7: attempt to access beyond end of device [ 707.566557][ T2931] loop4: rw=1, sector=29216, nr_sectors = 4584 limit=256 [ 707.936612][ T5788] EXT4-fs: 33 callbacks suppressed [ 707.936633][ T5788] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 709.936048][ T5797] Bluetooth: Wrong link type (-71) [ 716.569269][ T9727] 9pnet_fd: Insufficient options for proto=fd [ 719.361269][ T9736] loop1: detected capacity change from 0 to 1024 [ 719.399774][ T9736] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 719.472821][ T9736] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 719.512558][ T9736] EXT4-fs (loop1): orphan cleanup on readonly fs [ 719.556134][ T9736] EXT4-fs error (device loop1): ext4_free_blocks:6676: comm syz.1.987: Freeing blocks not in datazone - block = 0, count = 4096 [ 719.612615][ T9736] EXT4-fs (loop1): 1 orphan inode deleted [ 719.623543][ T9736] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 719.813352][ T5788] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 720.012986][ T9746] Bluetooth: MGMT ver 1.22 [ 722.511065][ T5846] hid-generic 0003:0003:0000.000B: unknown main item tag 0x0 [ 722.528857][ T5846] hid-generic 0003:0003:0000.000B: unknown main item tag 0x0 [ 722.559314][ T5846] hid-generic 0003:0003:0000.000B: unknown main item tag 0x0 [ 722.593518][ T5846] hid-generic 0003:0003:0000.000B: unknown main item tag 0x0 [ 722.628313][ T5846] hid-generic 0003:0003:0000.000B: unknown main item tag 0x0 [ 722.720481][ T5846] hid-generic 0003:0003:0000.000B: unknown main item tag 0x0 [ 722.776269][ T5846] hid-generic 0003:0003:0000.000B: unknown main item tag 0x0 [ 722.814407][ T5846] hid-generic 0003:0003:0000.000B: unknown main item tag 0x0 [ 722.857526][ T5846] hid-generic 0003:0003:0000.000B: unknown main item tag 0x0 [ 722.949272][ T5846] hid-generic 0003:0003:0000.000B: unknown main item tag 0x0 [ 723.929782][ T5846] hid-generic 0003:0003:0000.000B: unknown main item tag 0x0 [ 723.949824][ T5846] hid-generic 0003:0003:0000.000B: unknown main item tag 0x0 [ 723.975406][ T5846] hid-generic 0003:0003:0000.000B: unknown main item tag 0x0 [ 724.050396][ T5846] hid-generic 0003:0003:0000.000B: hidraw0: USB HID v0.03 Device [syz0] on syz1 [ 724.237597][ T9761] fido_id[9761]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 727.265322][ T9774] netlink: 'syz.2.1000': attribute type 32 has an invalid length. [ 732.709576][ T9795] loop4: detected capacity change from 0 to 1764 [ 735.153637][ T5846] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0 [ 735.289678][ T5846] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0 [ 735.492572][ T5846] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0 [ 735.646770][ T5846] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0 [ 735.765330][ T5846] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0 [ 735.775615][ T5846] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0 [ 735.794201][ T5846] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0 [ 735.802311][ T5846] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0 [ 735.828938][ T5846] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0 [ 735.836775][ T5846] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0 [ 735.850039][ T5846] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0 [ 735.857999][ T5846] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0 [ 735.871068][ T5846] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0 [ 735.899552][ T5846] hid-generic 0003:0003:0000.000C: hidraw0: USB HID v0.03 Device [syz0] on syz1 [ 736.853655][ T9815] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1011'. [ 736.922416][ T9811] fido_id[9811]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 737.027697][ T27] kauditd_printk_skb: 10 callbacks suppressed [ 737.027714][ T27] audit: type=1326 audit(2000001871.760:1105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 737.096208][ T27] audit: type=1326 audit(2000001871.760:1106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 738.945608][ T27] audit: type=1326 audit(2000001871.810:1107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 740.853847][ T27] audit: type=1326 audit(2000001871.810:1108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 740.985749][ T27] audit: type=1326 audit(2000001871.810:1109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 741.072227][ T27] audit: type=1326 audit(2000001871.820:1110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 741.149442][ T27] audit: type=1326 audit(2000001871.830:1111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 741.181089][ T27] audit: type=1326 audit(2000001871.830:1112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 742.073008][ T9835] loop1: detected capacity change from 0 to 1764 [ 743.643349][ T27] audit: type=1326 audit(2000001871.830:1113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 743.668699][ T27] audit: type=1326 audit(2000001871.830:1114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 743.749803][ T27] audit: type=1326 audit(2000001871.830:1115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 743.841547][ T27] audit: type=1326 audit(2000001871.830:1116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 743.881012][ T27] audit: type=1326 audit(2000001871.830:1117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 743.939670][ T27] audit: type=1326 audit(2000001871.830:1118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 743.980412][ T27] audit: type=1326 audit(2000001871.840:1119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 744.039782][ T27] audit: type=1326 audit(2000001871.840:1120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 744.081920][ T9841] loop1: detected capacity change from 0 to 16 [ 744.097899][ T27] audit: type=1326 audit(2000001871.840:1121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 744.121520][ T9841] erofs: (device loop1): mounted with root inode @ nid 36. [ 744.186170][ T27] audit: type=1326 audit(2000001871.840:1122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 747.471783][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 747.478586][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 749.661196][ T27] kauditd_printk_skb: 6 callbacks suppressed [ 749.661211][ T27] audit: type=1326 audit(2000001884.396:1129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9870 comm="syz.3.1025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 749.747233][ T27] audit: type=1326 audit(2000001884.396:1130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9870 comm="syz.3.1025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 749.826890][ T27] audit: type=1326 audit(2000001884.466:1131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9870 comm="syz.3.1025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 749.917043][ T27] audit: type=1326 audit(2000001884.466:1132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9870 comm="syz.3.1025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 751.586254][ T27] audit: type=1326 audit(2000001884.466:1133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9870 comm="syz.3.1025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 751.609432][ T27] audit: type=1326 audit(2000001884.466:1134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9870 comm="syz.3.1025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 751.633405][ T27] audit: type=1326 audit(2000001884.476:1135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9870 comm="syz.3.1025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 751.656331][ T27] audit: type=1326 audit(2000001884.476:1136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9870 comm="syz.3.1025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 751.679588][ T27] audit: type=1326 audit(2000001884.476:1137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9870 comm="syz.3.1025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 751.702228][ T27] audit: type=1326 audit(2000001884.476:1138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9870 comm="syz.3.1025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77b0f8efc9 code=0x7ffc0000 [ 753.604307][ T9896] loop3: detected capacity change from 0 to 128 [ 753.747201][ T9898] loop1: detected capacity change from 0 to 512 [ 754.787701][ T9904] loop1: detected capacity change from 0 to 2048 [ 754.816014][ T9904] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 755.564853][ T27] kauditd_printk_skb: 170 callbacks suppressed [ 755.564866][ T27] audit: type=1326 audit(2000001890.309:1309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9909 comm="syz.2.1038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 755.646095][ T27] audit: type=1326 audit(2000001890.309:1310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9909 comm="syz.2.1038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 755.756534][ T27] audit: type=1326 audit(2000001890.339:1311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9909 comm="syz.2.1038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 755.820497][ T27] audit: type=1326 audit(2000001890.339:1312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9909 comm="syz.2.1038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 755.936184][ T9914] loop2: detected capacity change from 0 to 2048 [ 757.940438][ T9923] IPv6: NLM_F_REPLACE set, but no existing node found! [ 758.313519][ T9928] loop1: detected capacity change from 0 to 8 [ 759.305243][ T9931] loop3: detected capacity change from 0 to 2048 [ 759.349247][ T9931] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 761.930883][ T5797] Bluetooth: hci1: unexpected event for opcode 0x2041 [ 763.340122][ T9949] loop3: detected capacity change from 0 to 128 [ 763.501995][ T27] audit: type=1326 audit(2000001898.183:1313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9948 comm="syz.2.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 763.651304][ T27] audit: type=1326 audit(2000001898.183:1314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9948 comm="syz.2.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 763.781699][ T27] audit: type=1326 audit(2000001898.183:1315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9948 comm="syz.2.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f650db8d810 code=0x7ffc0000 [ 763.866689][ T27] audit: type=1326 audit(2000001898.183:1316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9948 comm="syz.2.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f650db907f7 code=0x7ffc0000 [ 763.893452][ T27] audit: type=1326 audit(2000001898.183:1317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9948 comm="syz.2.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 763.948045][ T27] audit: type=1326 audit(2000001898.183:1318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9948 comm="syz.2.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f650db907f7 code=0x7ffc0000 [ 764.006869][ T27] audit: type=1326 audit(2000001898.183:1319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9948 comm="syz.2.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f650db8dc2a code=0x7ffc0000 [ 764.072051][ T27] audit: type=1326 audit(2000001898.183:1320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9948 comm="syz.2.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 764.127611][ T27] audit: type=1326 audit(2000001898.193:1321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9948 comm="syz.2.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 764.174148][ T27] audit: type=1326 audit(2000001898.193:1322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9948 comm="syz.2.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 765.618858][ T787] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 765.649711][ T9959] IPv6: NLM_F_REPLACE set, but no existing node found! [ 765.838862][ T787] usb 3-1: Using ep0 maxpacket: 16 [ 765.856806][ T787] usb 3-1: config 0 has too many interfaces: 243, using maximum allowed: 32 [ 765.869247][ T787] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 243 [ 765.902990][ T787] usb 3-1: New USB device found, idVendor=0545, idProduct=8080, bcdDevice= 0.01 [ 765.915082][ T9961] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1055'. [ 765.918752][ T787] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 765.965959][ T787] usb 3-1: Product: syz [ 765.986060][ T787] usb 3-1: Manufacturer: syz [ 765.998768][ T787] usb 3-1: SerialNumber: syz [ 766.025035][ T787] usb 3-1: config 0 descriptor?? [ 766.328287][ T5880] usb 3-1: USB disconnect, device number 7 [ 766.603324][ T9969] loop3: detected capacity change from 0 to 8 [ 768.508566][ T27] kauditd_printk_skb: 115 callbacks suppressed [ 768.508582][ T27] audit: type=1326 audit(2000001903.256:1438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9976 comm="syz.2.1061" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f650db85e67 code=0x7ffc0000 [ 768.573036][ T27] audit: type=1326 audit(2000001903.286:1439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9976 comm="syz.2.1061" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f650db2b099 code=0x7ffc0000 [ 768.599163][ T27] audit: type=1326 audit(2000001903.286:1440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9976 comm="syz.2.1061" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f650db85e67 code=0x7ffc0000 [ 768.677599][ T27] audit: type=1326 audit(2000001903.286:1441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9976 comm="syz.2.1061" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f650db2b099 code=0x7ffc0000 [ 768.707762][ T27] audit: type=1326 audit(2000001903.286:1442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9976 comm="syz.2.1061" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 768.730899][ T27] audit: type=1326 audit(2000001903.286:1443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9976 comm="syz.2.1061" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f650db85e67 code=0x7ffc0000 [ 768.883340][ T27] audit: type=1326 audit(2000001903.286:1444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9976 comm="syz.2.1061" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f650db2b099 code=0x7ffc0000 [ 769.195261][ T27] audit: type=1326 audit(2000001903.286:1445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9976 comm="syz.2.1061" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 769.311098][ T27] audit: type=1326 audit(2000001903.296:1446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9976 comm="syz.2.1061" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f650db85e67 code=0x7ffc0000 [ 769.435463][ T27] audit: type=1326 audit(2000001903.296:1447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9976 comm="syz.2.1061" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f650db2b099 code=0x7ffc0000 [ 769.730557][ T9986] loop4: detected capacity change from 0 to 128 [ 769.969876][ T9992] netlink: 'syz.3.1064': attribute type 2 has an invalid length. [ 769.977906][ T9992] netlink: 'syz.3.1064': attribute type 1 has an invalid length. [ 769.986172][ T9992] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1064'. [ 771.036389][ T9994] loop2: detected capacity change from 0 to 1764 [ 771.547564][T10000] loop1: detected capacity change from 0 to 256 [ 771.801780][T10000] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 773.115426][ T5881] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 773.370952][ T5881] usb 4-1: config 0 has an invalid interface number: 1 but max is 0 [ 773.444871][ T5881] usb 4-1: config 0 has no interface number 0 [ 773.492380][ T5881] usb 4-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b [ 773.515929][ T5881] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 773.544576][ T5881] usb 4-1: Product: syz [ 773.565398][ T5881] usb 4-1: Manufacturer: syz [ 773.570558][ T5881] usb 4-1: SerialNumber: syz [ 773.637112][T10021] syz.2.1072 uses obsolete (PF_INET,SOCK_PACKET) [ 773.649711][T10021] bond0: entered promiscuous mode [ 773.655117][T10021] bond_slave_0: entered promiscuous mode [ 773.660997][T10021] bond_slave_1: entered promiscuous mode [ 773.675052][T10021] bond0: entered allmulticast mode [ 773.683705][T10021] bond_slave_0: entered allmulticast mode [ 773.692371][ T5881] usb 4-1: config 0 descriptor?? [ 773.710004][T10021] bond_slave_1: entered allmulticast mode [ 773.925109][ T5881] usb 4-1: dvb_usb_v2: found a 'E3C EC168 reference design' in warm state [ 774.046576][ T5881] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 774.068215][ T5881] dvbdev: DVB: registering new adapter (E3C EC168 reference design) [ 774.079933][ T5881] usb 4-1: media controller created [ 774.113982][ T5881] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 774.135747][T10016] usb 4-1: dvb_usb_ec168: I2C read not implemented [ 774.181285][ T27] kauditd_printk_skb: 61 callbacks suppressed [ 774.181301][ T27] audit: type=1326 audit(2000001908.928:1509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10024 comm="syz.2.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 774.243157][ T27] audit: type=1326 audit(2000001908.928:1510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10024 comm="syz.2.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 774.268714][ T5881] i2c i2c-1: ec100: i2c rd failed=-71 reg=33 [ 774.303093][ T27] audit: type=1326 audit(2000001908.928:1511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10024 comm="syz.2.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f650db8d810 code=0x7ffc0000 [ 774.357310][T10029] loop4: detected capacity change from 0 to 1764 [ 774.382956][ T27] audit: type=1326 audit(2000001908.968:1512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10024 comm="syz.2.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f650db907f7 code=0x7ffc0000 [ 774.412211][ T27] audit: type=1326 audit(2000001908.968:1513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10024 comm="syz.2.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 774.413400][ T5881] usb 4-1: USB disconnect, device number 2 [ 774.441543][ T27] audit: type=1326 audit(2000001908.968:1514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10024 comm="syz.2.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f650db907f7 code=0x7ffc0000 [ 774.519869][ T27] audit: type=1326 audit(2000001908.968:1515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10024 comm="syz.2.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f650db8dc2a code=0x7ffc0000 [ 774.548302][ T27] audit: type=1326 audit(2000001908.968:1516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10024 comm="syz.2.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 774.571554][ T27] audit: type=1326 audit(2000001908.968:1517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10024 comm="syz.2.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 774.599836][ T27] audit: type=1326 audit(2000001908.968:1518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10024 comm="syz.2.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 775.113022][T10034] loop2: detected capacity change from 0 to 128 [ 775.825276][T10041] loop4: detected capacity change from 0 to 1764 [ 780.395405][T10072] loop3: detected capacity change from 0 to 128 [ 782.242595][T10085] loop3: detected capacity change from 0 to 1764 [ 785.395356][ T5797] Bluetooth: hci2: unexpected event for opcode 0x2041 [ 786.121869][T10115] loop3: detected capacity change from 0 to 128 [ 787.697203][T10109] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1097'. [ 791.742318][ T5797] Bluetooth: hci1: unexpected event for opcode 0x2041 [ 792.464160][T10156] loop2: detected capacity change from 0 to 128 [ 793.546977][T10161] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1112'. [ 797.061190][T10183] netlink: 'syz.2.1116': attribute type 4 has an invalid length. [ 797.069275][T10183] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.1116'. [ 797.405199][ T5797] Bluetooth: hci2: unexpected event for opcode 0x2041 [ 797.868649][T10195] loop3: detected capacity change from 0 to 128 [ 801.748550][T10211] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1125'. [ 803.986250][T10224] loop1: detected capacity change from 0 to 512 [ 804.044081][T10224] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 804.106659][T10224] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 804.155590][T10224] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1128: invalid indirect mapped block 4294967295 (level 1) [ 804.195029][T10224] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1128: invalid indirect mapped block 4294967295 (level 1) [ 804.263899][T10224] EXT4-fs (loop1): 2 truncates cleaned up [ 804.320029][T10224] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 804.390024][ T5797] Bluetooth: hci0: unexpected event for opcode 0x2041 [ 804.392216][T10224] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 804.467410][ T5797] Bluetooth: Wrong link type (-71) [ 804.473280][ T5797] Bluetooth: hci1: link tx timeout [ 804.481000][ T5797] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa [ 804.983764][T10233] loop4: detected capacity change from 0 to 128 [ 806.558367][ T5797] Bluetooth: hci1: command 0x0406 tx timeout [ 808.881475][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 808.888476][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 809.290463][T10255] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1136'. [ 810.422817][T10260] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1139'. [ 812.168245][T10277] loop2: detected capacity change from 0 to 128 [ 814.075950][T10284] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1146'. [ 814.311082][T10289] loop3: detected capacity change from 0 to 2048 [ 814.343102][T10289] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 815.355784][T10294] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1149'. [ 816.584575][T10302] loop2: detected capacity change from 0 to 16 [ 816.611730][T10302] erofs: (device loop2): mounted with root inode @ nid 36. [ 819.191864][T10312] netlink: 4083 bytes leftover after parsing attributes in process `syz.2.1155'. [ 819.238415][T10311] netlink: 348 bytes leftover after parsing attributes in process `syz.2.1155'. [ 819.262210][T10311] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1155'. [ 820.979638][T10327] loop3: detected capacity change from 0 to 2048 [ 821.025326][T10327] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 821.207047][T10332] loop4: detected capacity change from 0 to 128 [ 827.865054][T10383] loop1: detected capacity change from 0 to 1764 [ 828.358933][T10385] loop2: detected capacity change from 0 to 256 [ 828.370750][T10385] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 830.843542][T10407] netlink: 'syz.2.1182': attribute type 21 has an invalid length. [ 830.851558][T10407] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1182'. [ 830.865282][T10407] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 830.874528][T10407] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 830.883849][T10407] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 830.892581][T10407] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 830.902735][T10407] netlink: 'syz.2.1182': attribute type 21 has an invalid length. [ 830.910718][T10407] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1182'. [ 839.929201][T10452] loop1: detected capacity change from 0 to 512 [ 842.223548][T10467] loop3: detected capacity change from 0 to 256 [ 843.195444][T10467] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 845.734657][T10479] loop2: detected capacity change from 0 to 2048 [ 853.640722][T10513] loop1: detected capacity change from 0 to 256 [ 853.718016][T10513] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 854.154859][T10516] loop3: detected capacity change from 0 to 512 [ 858.772875][T10538] loop3: detected capacity change from 0 to 2048 [ 859.993148][ T9071] Bluetooth: hci0: command 0x0406 tx timeout [ 860.020254][T10535] Bluetooth: hci0: Opcode 0x0c20 failed: -110 [ 862.082222][ T9071] Bluetooth: Wrong link type (-71) [ 864.354394][T10560] loop4: detected capacity change from 0 to 256 [ 864.552926][T10560] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 867.575509][T10570] loop4: detected capacity change from 0 to 2048 [ 867.717766][ T9972] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 867.826483][T10570] loop4: detected capacity change from 0 to 256 [ 869.764097][T10570] FAT-fs (loop4): Directory bread(block 64) failed [ 869.826732][T10570] FAT-fs (loop4): Directory bread(block 65) failed [ 869.856776][T10570] FAT-fs (loop4): Directory bread(block 66) failed [ 869.886706][T10570] FAT-fs (loop4): Directory bread(block 67) failed [ 871.497433][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 871.503790][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 871.596101][T10570] FAT-fs (loop4): Directory bread(block 68) failed [ 871.602719][T10570] FAT-fs (loop4): Directory bread(block 69) failed [ 871.675874][T10570] FAT-fs (loop4): Directory bread(block 70) failed [ 871.689069][T10570] FAT-fs (loop4): Directory bread(block 71) failed [ 871.716048][T10570] FAT-fs (loop4): Directory bread(block 72) failed [ 871.722664][T10570] FAT-fs (loop4): Directory bread(block 73) failed [ 885.510832][T10656] loop1: detected capacity change from 0 to 16 [ 885.590714][T10656] erofs: (device loop1): mounted with root inode @ nid 36. [ 885.805143][ T9071] Bluetooth: hci1: ACL packet for unknown connection handle 201 [ 886.511949][T10662] ptrace attach of "./syz-executor exec"[5790] was attempted by ""[10662] [ 886.698833][T10668] loop4: detected capacity change from 0 to 256 [ 886.776969][T10668] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 886.958305][T10669] loop3: detected capacity change from 0 to 512 [ 887.115679][ T9437] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 890.403248][T10692] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1260'. [ 892.060244][T10700] loop2: detected capacity change from 0 to 16 [ 892.145913][T10700] erofs: (device loop2): mounted with root inode @ nid 36. [ 892.365773][ T8] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 892.515980][T10702] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1266'. [ 892.582459][ T8] usb 2-1: Using ep0 maxpacket: 8 [ 892.607031][ T8] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 7 [ 892.747782][ T8] usb 2-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b [ 892.787527][ T8] usb 2-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3 [ 892.810503][T10711] loop3: detected capacity change from 0 to 256 [ 892.816944][ T8] usb 2-1: Product: syz [ 892.821153][ T8] usb 2-1: Manufacturer: syz [ 892.845329][ T8] usb 2-1: SerialNumber: syz [ 892.960895][T10711] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 893.145812][ T8] usb 2-1: Invalid connection information received from device [ 894.270552][ T5791] usb 2-1: USB disconnect, device number 5 [ 896.369624][T10734] loop3: detected capacity change from 0 to 16 [ 896.388096][T10734] erofs: (device loop3): mounted with root inode @ nid 36. [ 898.766878][T10757] (null): rxe_set_mtu: Set mtu to 1024 [ 899.332413][T10757] infiniband syz1: set active [ 899.337428][T10757] infiniband syz1: added syz_tun [ 900.793411][T10757] RDS/IB: syz1: added [ 900.798749][T10757] smc: adding ib device syz1 with port count 1 [ 900.805263][T10757] smc: ib device syz1 port 1 has pnetid [ 903.271913][T10773] netlink: 'syz.3.1285': attribute type 4 has an invalid length. [ 903.279722][T10773] netlink: 3657 bytes leftover after parsing attributes in process `syz.3.1285'. [ 903.507497][T10783] loop1: detected capacity change from 0 to 16 [ 903.647889][T10783] erofs: (device loop1): mounted with root inode @ nid 36. [ 911.137053][T10817] loop4: detected capacity change from 0 to 16 [ 911.213216][T10817] erofs: (device loop4): mounted with root inode @ nid 36. [ 918.966797][T10857] loop1: detected capacity change from 0 to 16 [ 919.389402][T10857] erofs: (device loop1): mounted with root inode @ nid 36. [ 922.565308][T10875] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1317'. [ 927.481071][T10905] loop1: detected capacity change from 0 to 16 [ 927.523018][T10905] erofs: (device loop1): mounted with root inode @ nid 36. [ 931.980807][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 931.987279][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 932.529116][T10926] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1327'. [ 934.466261][T10945] loop3: detected capacity change from 0 to 16 [ 934.534808][T10945] erofs: (device loop3): mounted with root inode @ nid 36. [ 934.864969][T10954] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1341'. [ 935.087823][T10957] vivid-004: disconnect [ 937.670162][T10962] syz.4.1338 (10962) used greatest stack depth: 18864 bytes left [ 938.162909][T10949] vivid-004: reconnect [ 939.803601][T10988] loop3: detected capacity change from 0 to 16 [ 939.863036][T10988] erofs: (device loop3): mounted with root inode @ nid 36. [ 940.353308][T10992] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1351'. [ 945.532761][T11017] loop1: detected capacity change from 0 to 16 [ 945.573633][T11019] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1360'. [ 945.593324][T11017] erofs: (device loop1): mounted with root inode @ nid 36. [ 948.131778][T10850] syz.4.1310 (10850) used greatest stack depth: 18568 bytes left [ 952.637315][T11055] loop4: detected capacity change from 0 to 16 [ 952.745960][T11055] erofs: (device loop4): mounted with root inode @ nid 36. [ 956.253911][T11071] netlink: 620 bytes leftover after parsing attributes in process `syz.4.1374'. [ 959.587306][T11086] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1373'. [ 959.719775][T11088] loop3: detected capacity change from 0 to 16 [ 959.754687][T11088] erofs: (device loop3): mounted with root inode @ nid 36. [ 965.181215][T11117] loop4: detected capacity change from 0 to 16 [ 965.195739][T11116] netlink: 620 bytes leftover after parsing attributes in process `syz.3.1383'. [ 965.239386][T11117] erofs: (device loop4): mounted with root inode @ nid 36. [ 972.154809][T11155] netlink: 620 bytes leftover after parsing attributes in process `syz.3.1398'. [ 975.086555][T11171] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1395'. [ 975.095992][T11171] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1395'. [ 975.105501][T11171] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1395'. [ 975.114646][T11171] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1395'. [ 983.628598][T11204] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1412'. [ 983.637569][T11204] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1412'. [ 983.647067][T11204] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1412'. [ 983.655976][T11204] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1412'. [ 983.869460][T11208] loop3: detected capacity change from 0 to 16 [ 983.888071][T11208] erofs: (device loop3): mounted with root inode @ nid 36. [ 984.179061][T11215] fuse: Unknown parameter '0x0000000000000003' [ 990.202203][T11237] random: crng reseeded on system resumption [ 991.787399][ T9071] Bluetooth: hci1: ACL packet for unknown connection handle 201 [ 992.397083][T11247] loop3: detected capacity change from 0 to 16 [ 992.438056][T11247] erofs: (device loop3): mounted with root inode @ nid 36. [ 992.703530][T11253] loop4: detected capacity change from 0 to 512 [ 992.760372][T11253] EXT4-fs error (device loop4): ext4_orphan_get:1399: inode #15: comm syz.4.1424: iget: bad i_size value: 38620345925642 [ 992.939616][T11253] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.1424: couldn't read orphan inode 15 (err -117) [ 993.006996][T11253] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 993.124765][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 993.131260][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 994.114091][ T6004] EXT4-fs error (device loop4): ext4_validate_block_bitmap:430: comm kworker/u4:12: bg 0: block 5: invalid block bitmap [ 994.149050][ T6004] EXT4-fs (loop4): Delayed block allocation failed for inode 19 at logical offset 0 with max blocks 5 with error 28 [ 994.163162][ T6004] EXT4-fs (loop4): This should not happen!! Data will be lost [ 994.163162][ T6004] [ 994.177504][ T6004] EXT4-fs (loop4): Total free blocks count 0 [ 994.185429][ T6004] EXT4-fs (loop4): Free/Dirty block details [ 994.191483][ T6004] EXT4-fs (loop4): free_blocks=0 [ 994.200820][ T6004] EXT4-fs (loop4): dirty_blocks=16013 [ 994.207905][ T6004] EXT4-fs (loop4): Block reservation details [ 994.214041][ T6004] EXT4-fs (loop4): i_reserved_data_blocks=9041 [ 994.233653][ T6004] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28 [ 994.353976][T11264] input: syz1 as /devices/virtual/input/input8 [ 998.226023][ T6004] EXT4-fs: 31 callbacks suppressed [ 998.226042][ T6004] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 4104 with max blocks 2048 with error 28 [ 998.379942][ T6004] EXT4-fs (loop4): This should not happen!! Data will be lost [ 998.379942][ T6004] [ 998.463256][ T6004] EXT4-fs (loop4): Total free blocks count 0 [ 998.469331][ T6004] EXT4-fs (loop4): Free/Dirty block details [ 998.476142][ T6004] EXT4-fs (loop4): free_blocks=0 [ 998.481185][ T6004] EXT4-fs (loop4): dirty_blocks=7812 [ 998.486775][ T6004] EXT4-fs (loop4): Block reservation details [ 998.512449][ T6004] EXT4-fs (loop4): i_reserved_data_blocks=2874 [ 998.589838][ T9071] Bluetooth: hci1: ACL packet for unknown connection handle 201 [ 999.315031][ T6004] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 6156 with max blocks 816 with error 28 [ 999.327913][ T6004] EXT4-fs (loop4): This should not happen!! Data will be lost [ 999.327913][ T6004] [ 999.470273][T11293] loop3: detected capacity change from 0 to 16 [ 999.512373][T11293] erofs: (device loop3): mounted with root inode @ nid 36. [ 1003.530964][T11321] loop4: detected capacity change from 0 to 2048 [ 1003.626775][T11210] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1003.951076][T11321] loop4: detected capacity change from 0 to 256 [ 1004.179826][T11210] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1004.349866][T11321] FAT-fs (loop4): Directory bread(block 64) failed [ 1004.356955][T11321] FAT-fs (loop4): Directory bread(block 65) failed [ 1004.378241][T11321] FAT-fs (loop4): Directory bread(block 66) failed [ 1004.409912][T11321] FAT-fs (loop4): Directory bread(block 67) failed [ 1004.421799][T11321] FAT-fs (loop4): Directory bread(block 68) failed [ 1004.428409][T11321] FAT-fs (loop4): Directory bread(block 69) failed [ 1004.470671][T11321] FAT-fs (loop4): Directory bread(block 70) failed [ 1004.488084][T11321] FAT-fs (loop4): Directory bread(block 71) failed [ 1004.501780][T11329] loop1: detected capacity change from 0 to 16 [ 1004.518991][T11321] FAT-fs (loop4): Directory bread(block 72) failed [ 1004.534632][T11329] erofs: (device loop1): mounted with root inode @ nid 36. [ 1004.544815][T11321] FAT-fs (loop4): Directory bread(block 73) failed [ 1005.272791][T11334] syz.4.1441: attempt to access beyond end of device [ 1005.272791][T11334] loop4: rw=0, sector=1192, nr_sectors = 4 limit=256 [ 1005.839052][T11333] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1444'. [ 1005.870843][ T6317] kworker/u4:100: attempt to access beyond end of device [ 1005.870843][ T6317] loop4: rw=1, sector=1224, nr_sectors = 544 limit=256 [ 1005.887986][ T6317] kworker/u4:100: attempt to access beyond end of device [ 1005.887986][ T6317] loop4: rw=1, sector=1800, nr_sectors = 128 limit=256 [ 1005.924355][ T6317] kworker/u4:100: attempt to access beyond end of device [ 1005.924355][ T6317] loop4: rw=1, sector=1960, nr_sectors = 3224 limit=256 [ 1006.086697][ T6317] kworker/u4:100: attempt to access beyond end of device [ 1006.086697][ T6317] loop4: rw=1, sector=5184, nr_sectors = 4096 limit=256 [ 1006.218532][ T6317] kworker/u4:100: attempt to access beyond end of device [ 1006.218532][ T6317] loop4: rw=1, sector=9280, nr_sectors = 4112 limit=256 [ 1006.336340][ T6317] kworker/u4:100: attempt to access beyond end of device [ 1006.336340][ T6317] loop4: rw=1, sector=13392, nr_sectors = 5760 limit=256 [ 1006.366289][ T6317] kworker/u4:100: attempt to access beyond end of device [ 1006.366289][ T6317] loop4: rw=1, sector=19152, nr_sectors = 8192 limit=256 [ 1006.879746][ T6317] kworker/u4:100: attempt to access beyond end of device [ 1006.879746][ T6317] loop4: rw=1, sector=27344, nr_sectors = 6456 limit=256 [ 1008.136462][T11356] loop1: detected capacity change from 0 to 2048 [ 1008.198324][T11356] loop1: detected capacity change from 0 to 256 [ 1008.291933][T11356] FAT-fs (loop1): Directory bread(block 64) failed [ 1008.309091][T11356] FAT-fs (loop1): Directory bread(block 65) failed [ 1008.357710][T11356] FAT-fs (loop1): Directory bread(block 66) failed [ 1008.384564][T11356] FAT-fs (loop1): Directory bread(block 67) failed [ 1008.391481][T11356] FAT-fs (loop1): Directory bread(block 68) failed [ 1008.398522][T11356] FAT-fs (loop1): Directory bread(block 69) failed [ 1008.422853][T11356] FAT-fs (loop1): Directory bread(block 70) failed [ 1009.431337][T11356] FAT-fs (loop1): Directory bread(block 71) failed [ 1009.466946][T11356] FAT-fs (loop1): Directory bread(block 72) failed [ 1009.489427][T11356] FAT-fs (loop1): Directory bread(block 73) failed [ 1009.527624][T11367] capability: warning: `syz.4.1456' uses 32-bit capabilities (legacy support in use) [ 1010.577963][T11356] syz.1.1453: attempt to access beyond end of device [ 1010.577963][T11356] loop1: rw=0, sector=1192, nr_sectors = 4 limit=256 [ 1011.103509][ T6317] kworker/u4:100: attempt to access beyond end of device [ 1011.103509][ T6317] loop1: rw=1, sector=1224, nr_sectors = 544 limit=256 [ 1011.169330][ T6317] kworker/u4:100: attempt to access beyond end of device [ 1011.169330][ T6317] loop1: rw=1, sector=1800, nr_sectors = 128 limit=256 [ 1011.410957][ T6317] kworker/u4:100: attempt to access beyond end of device [ 1011.410957][ T6317] loop1: rw=1, sector=1960, nr_sectors = 16344 limit=256 [ 1012.472931][ T9071] Bluetooth: hci1: ACL packet for unknown connection handle 201 [ 1012.798591][ T6317] kworker/u4:100: attempt to access beyond end of device [ 1012.798591][ T6317] loop1: rw=1, sector=18304, nr_sectors = 15496 limit=256 [ 1014.818610][T11405] loop2: detected capacity change from 0 to 2048 [ 1015.016023][T11210] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1015.317735][T11405] loop2: detected capacity change from 0 to 256 [ 1015.771874][T11405] FAT-fs (loop2): Directory bread(block 64) failed [ 1015.814639][T11405] FAT-fs (loop2): Directory bread(block 65) failed [ 1015.843919][T11405] FAT-fs (loop2): Directory bread(block 66) failed [ 1015.913672][T11405] FAT-fs (loop2): Directory bread(block 67) failed [ 1015.940831][T11405] FAT-fs (loop2): Directory bread(block 68) failed [ 1015.963625][T11405] FAT-fs (loop2): Directory bread(block 69) failed [ 1016.001382][T11405] FAT-fs (loop2): Directory bread(block 70) failed [ 1016.051910][T11405] FAT-fs (loop2): Directory bread(block 71) failed [ 1016.089287][T11405] FAT-fs (loop2): Directory bread(block 72) failed [ 1016.153623][T11405] FAT-fs (loop2): Directory bread(block 73) failed [ 1017.462087][T11405] syz.2.1467: attempt to access beyond end of device [ 1017.462087][T11405] loop2: rw=0, sector=1192, nr_sectors = 4 limit=256 [ 1017.593647][ T27] kauditd_printk_skb: 120 callbacks suppressed [ 1017.593666][ T27] audit: type=1800 audit(2000000011.525:1639): pid=11409 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1468" name="bus" dev="ramfs" ino=21898 res=0 errno=0 [ 1017.596049][ T6317] kworker/u4:100: attempt to access beyond end of device [ 1017.596049][ T6317] loop2: rw=1, sector=1224, nr_sectors = 544 limit=256 [ 1017.745878][ T6317] kworker/u4:100: attempt to access beyond end of device [ 1017.745878][ T6317] loop2: rw=1, sector=1800, nr_sectors = 128 limit=256 [ 1019.186221][ T6317] kworker/u4:100: attempt to access beyond end of device [ 1019.186221][ T6317] loop2: rw=1, sector=1960, nr_sectors = 31840 limit=256 [ 1024.025223][T11451] loop1: detected capacity change from 0 to 2048 [ 1024.120141][T11210] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1024.200254][T11451] loop1: detected capacity change from 0 to 256 [ 1024.208247][T11210] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1024.231197][T11445] IPv6: sit1: Disabled Multicast RS [ 1024.237086][T11445] sit1: entered allmulticast mode [ 1024.296825][T11451] FAT-fs (loop1): Directory bread(block 64) failed [ 1024.331548][T11451] FAT-fs (loop1): Directory bread(block 65) failed [ 1024.377483][T11451] FAT-fs (loop1): Directory bread(block 66) failed [ 1024.419294][T11451] FAT-fs (loop1): Directory bread(block 67) failed [ 1024.457058][T11451] FAT-fs (loop1): Directory bread(block 68) failed [ 1024.505116][T11451] FAT-fs (loop1): Directory bread(block 69) failed [ 1024.562166][T11451] FAT-fs (loop1): Directory bread(block 70) failed [ 1024.586306][T11451] FAT-fs (loop1): Directory bread(block 71) failed [ 1024.614300][T11451] FAT-fs (loop1): Directory bread(block 72) failed [ 1024.638045][T11451] FAT-fs (loop1): Directory bread(block 73) failed [ 1025.954729][T11464] syz.4.1482[11464] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1025.954911][T11464] syz.4.1482[11464] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1026.211769][T11465] syz.1.1480: attempt to access beyond end of device [ 1026.211769][T11465] loop1: rw=0, sector=1192, nr_sectors = 4 limit=256 [ 1027.025155][T11474] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 1027.039155][T11474] overlayfs: "xino" feature enabled using 2 upper inode bits. [ 1028.057828][T11478] loop3: detected capacity change from 0 to 512 [ 1028.116739][T11210] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1031.061870][T11500] Page cache invalidation failure on direct I/O. Possible data corruption due to collision with buffered I/O! [ 1031.116626][T11500] File: /dev/nullb0 PID: 11500 Comm: syz.3.1490 [ 1031.533498][T11383] Bluetooth: Wrong link type (-71) [ 1031.569240][ T6278] kworker/u4:63: attempt to access beyond end of device [ 1031.569240][ T6278] loop1: rw=1, sector=1224, nr_sectors = 544 limit=256 [ 1031.586118][ T6278] kworker/u4:63: attempt to access beyond end of device [ 1031.586118][ T6278] loop1: rw=1, sector=1800, nr_sectors = 128 limit=256 [ 1031.633521][ T6278] kworker/u4:63: attempt to access beyond end of device [ 1031.633521][ T6278] loop1: rw=1, sector=1960, nr_sectors = 5528 limit=256 [ 1032.259317][ T6278] kworker/u4:63: attempt to access beyond end of device [ 1032.259317][ T6278] loop1: rw=1, sector=7488, nr_sectors = 240 limit=256 [ 1034.123088][ T787] hid-generic 0003:0003:0000.000D: unknown main item tag 0x0 [ 1034.159806][ T787] hid-generic 0003:0003:0000.000D: unknown main item tag 0x0 [ 1034.188066][ T787] hid-generic 0003:0003:0000.000D: unknown main item tag 0x0 [ 1034.332259][ T787] hid-generic 0003:0003:0000.000D: unknown main item tag 0x0 [ 1034.387152][ T787] hid-generic 0003:0003:0000.000D: unknown main item tag 0x0 [ 1034.395611][ T787] hid-generic 0003:0003:0000.000D: unknown main item tag 0x0 [ 1034.403943][ T787] hid-generic 0003:0003:0000.000D: unknown main item tag 0x0 [ 1034.424791][ T787] hid-generic 0003:0003:0000.000D: unknown main item tag 0x0 [ 1034.435403][T11527] loop2: detected capacity change from 0 to 512 [ 1034.473797][ T787] hid-generic 0003:0003:0000.000D: unknown main item tag 0x0 [ 1034.514128][ T787] hid-generic 0003:0003:0000.000D: unknown main item tag 0x0 [ 1034.547524][ T787] hid-generic 0003:0003:0000.000D: unknown main item tag 0x0 [ 1034.585939][ T787] hid-generic 0003:0003:0000.000D: unknown main item tag 0x0 [ 1034.626936][ T787] hid-generic 0003:0003:0000.000D: unknown main item tag 0x0 [ 1034.665924][ T787] hid-generic 0003:0003:0000.000D: hidraw0: USB HID v0.03 Device [syz0] on syz1 [ 1034.931060][T11541] fido_id[11541]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 1035.254128][ T787] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 1035.385134][ T5797] Bluetooth: Wrong link type (-71) [ 1035.390965][ T5797] Bluetooth: hci3: link tx timeout [ 1035.397973][ T5797] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa [ 1036.023547][ T787] usb 2-1: Using ep0 maxpacket: 32 [ 1036.049928][ T787] usb 2-1: config 0 has an invalid interface number: 231 but max is 0 [ 1036.058898][ T787] usb 2-1: config 0 has no interface number 0 [ 1036.068314][ T787] usb 2-1: config 0 interface 231 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023 [ 1036.080263][ T787] usb 2-1: config 0 interface 231 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8 [ 1036.893920][ T787] usb 2-1: New USB device found, idVendor=067b, idProduct=27a1, bcdDevice=b0.9b [ 1036.925060][ T787] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1036.968195][ T787] usb 2-1: Product: syz [ 1037.093906][ T787] usb 2-1: Manufacturer: syz [ 1037.102198][ T787] usb 2-1: SerialNumber: syz [ 1037.149975][ T787] usb 2-1: config 0 descriptor?? [ 1037.423861][T11545] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 1038.144598][T11545] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 1038.159130][ T5797] Bluetooth: hci3: command 0x0406 tx timeout [ 1038.517381][ T787] plusb 2-1:0.231 usb0: register 'plusb' at usb-dummy_hcd.1-1, Prolific PL-2301/PL-2302/PL-25A1/PL-27A1, 8e:e1:14:d8:29:2c [ 1038.649639][ T786] usb 2-1: USB disconnect, device number 6 [ 1038.656939][ T786] plusb 2-1:0.231 usb0: unregister 'plusb' usb-dummy_hcd.1-1, Prolific PL-2301/PL-2302/PL-25A1/PL-27A1 [ 1040.297728][ T787] hid-generic 0003:0003:0000.000E: unknown main item tag 0x0 [ 1040.311761][ T787] hid-generic 0003:0003:0000.000E: unknown main item tag 0x0 [ 1040.320043][ T787] hid-generic 0003:0003:0000.000E: unknown main item tag 0x0 [ 1040.329928][ T787] hid-generic 0003:0003:0000.000E: unknown main item tag 0x0 [ 1040.339823][ T787] hid-generic 0003:0003:0000.000E: unknown main item tag 0x0 [ 1040.349800][ T787] hid-generic 0003:0003:0000.000E: unknown main item tag 0x0 [ 1040.357516][ T787] hid-generic 0003:0003:0000.000E: unknown main item tag 0x0 [ 1040.488824][ T787] hid-generic 0003:0003:0000.000E: unknown main item tag 0x0 [ 1040.509052][ T787] hid-generic 0003:0003:0000.000E: unknown main item tag 0x0 [ 1040.531378][ T787] hid-generic 0003:0003:0000.000E: unknown main item tag 0x0 [ 1040.563929][ T787] hid-generic 0003:0003:0000.000E: unknown main item tag 0x0 [ 1040.799560][ T787] hid-generic 0003:0003:0000.000E: unknown main item tag 0x0 [ 1040.807310][ T787] hid-generic 0003:0003:0000.000E: unknown main item tag 0x0 [ 1040.825489][ T787] hid-generic 0003:0003:0000.000E: hidraw0: USB HID v0.03 Device [syz0] on syz1 [ 1041.681148][T11383] Bluetooth: Wrong link type (-71) [ 1041.686605][T11383] Bluetooth: hci1: ACL packet for unknown connection handle 201 [ 1042.683350][T11591] fido_id[11591]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 1043.018806][T11600] hub 2-0:1.0: USB hub found [ 1043.030930][T11600] hub 2-0:1.0: 1 port detected [ 1045.241266][ T5881] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 1045.471098][ T5881] usb 2-1: Using ep0 maxpacket: 32 [ 1045.518520][ T5881] usb 2-1: config 0 has an invalid interface number: 51 but max is 0 [ 1045.551720][ T5881] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1046.800285][T11383] Bluetooth: hci1: ACL packet for unknown connection handle 201 [ 1047.029876][ T5881] usb 2-1: config 0 has no interface number 0 [ 1047.204145][ T5881] usb 2-1: config 0 interface 51 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 1047.648952][ T5881] usb 2-1: string descriptor 0 read error: -71 [ 1047.655670][ T5881] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 1047.697826][ T5881] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1048.513727][ T5881] usb 2-1: config 0 descriptor?? [ 1048.690054][ T5881] usb 2-1: can't set config #0, error -71 [ 1048.728799][ T5881] usb 2-1: USB disconnect, device number 7 [ 1048.753523][ T787] hid-generic 0003:0003:0000.000F: unknown main item tag 0x0 [ 1048.761378][ T787] hid-generic 0003:0003:0000.000F: unknown main item tag 0x0 [ 1048.770099][ T787] hid-generic 0003:0003:0000.000F: unknown main item tag 0x0 [ 1048.778192][ T787] hid-generic 0003:0003:0000.000F: unknown main item tag 0x0 [ 1048.778227][ T787] hid-generic 0003:0003:0000.000F: unknown main item tag 0x0 [ 1048.778254][ T787] hid-generic 0003:0003:0000.000F: unknown main item tag 0x0 [ 1048.778281][ T787] hid-generic 0003:0003:0000.000F: unknown main item tag 0x0 [ 1048.778308][ T787] hid-generic 0003:0003:0000.000F: unknown main item tag 0x0 [ 1048.778334][ T787] hid-generic 0003:0003:0000.000F: unknown main item tag 0x0 [ 1048.778361][ T787] hid-generic 0003:0003:0000.000F: unknown main item tag 0x0 [ 1048.778387][ T787] hid-generic 0003:0003:0000.000F: unknown main item tag 0x0 [ 1048.778414][ T787] hid-generic 0003:0003:0000.000F: unknown main item tag 0x0 [ 1048.778441][ T787] hid-generic 0003:0003:0000.000F: unknown main item tag 0x0 [ 1048.791882][ T787] hid-generic 0003:0003:0000.000F: hidraw0: USB HID v0.03 Device [syz0] on syz1 [ 1050.484208][T11639] fido_id[11639]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 1051.650774][T11383] Bluetooth: Wrong link type (-71) [ 1051.656736][T11383] Bluetooth: hci2: link tx timeout [ 1051.664360][T11383] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa [ 1052.914568][T11662] loop1: detected capacity change from 0 to 512 [ 1053.795032][T11383] Bluetooth: hci2: command 0x0406 tx timeout [ 1054.037159][T11671] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 1054.049202][T11671] overlayfs: "xino" feature enabled using 2 upper inode bits. [ 1056.313903][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 1056.320351][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 1057.666433][T11383] Bluetooth: Wrong link type (-71) [ 1059.279877][T11696] loop4: detected capacity change from 0 to 512 [ 1065.001516][T11383] Bluetooth: Wrong link type (-71) [ 1068.220420][T11752] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1567'. [ 1070.010561][T11383] Bluetooth: Wrong link type (-71) [ 1074.617277][T11788] netlink: 'syz.2.1579': attribute type 10 has an invalid length. [ 1074.640550][T11788] syz_tun: entered promiscuous mode [ 1074.653298][T11788] infiniband syz1: set down [ 1074.671347][T11788] infiniband syz1: set active [ 1074.852867][T11788] bond0: (slave syz_tun): Enslaving as an active interface with an up link [ 1075.017601][T11383] Bluetooth: hci2: ACL packet for unknown connection handle 201 [ 1078.838953][T11809] sctp: failed to load transform for md5: -2 [ 1079.482294][T11383] Bluetooth: hci1: ACL packet for unknown connection handle 201 [ 1081.299394][T11837] netlink: 'syz.1.1593': attribute type 21 has an invalid length. [ 1081.307476][T11837] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1593'. [ 1081.322685][T11837] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 1081.332159][T11837] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 1081.341200][T11837] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 1081.350012][T11837] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 1081.361526][T11837] netlink: 'syz.1.1593': attribute type 21 has an invalid length. [ 1081.369535][T11837] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1593'. [ 1085.529280][T11383] Bluetooth: Wrong link type (-71) [ 1085.535213][T11383] Bluetooth: hci0: link tx timeout [ 1085.543128][T11383] Bluetooth: hci0: killing stalled connection 11:aa:aa:aa:aa:aa [ 1087.566893][T11876] netlink: 'syz.1.1603': attribute type 21 has an invalid length. [ 1087.579870][T11876] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1603'. [ 1087.591987][T11876] netlink: 'syz.1.1603': attribute type 21 has an invalid length. [ 1087.602710][T11876] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1603'. [ 1087.701519][T11383] Bluetooth: hci0: command 0x0406 tx timeout [ 1091.311008][T11383] Bluetooth: hci2: ACL packet for unknown connection handle 201 [ 1096.173667][T11383] Bluetooth: hci2: ACL packet for unknown connection handle 201 [ 1097.647709][T11944] loop3: detected capacity change from 0 to 512 [ 1099.938899][T11969] netlink: 'syz.2.1632': attribute type 21 has an invalid length. [ 1100.015443][T11969] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1632'. [ 1100.038289][T11969] netlink: 'syz.2.1632': attribute type 21 has an invalid length. [ 1100.046901][T11969] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1632'. [ 1100.530866][T11976] loop2: detected capacity change from 0 to 512 [ 1100.640061][T11977] netlink: 608 bytes leftover after parsing attributes in process `syz.4.1633'. [ 1101.438990][T11986] syz1: rxe_newlink: already configured on syz_tun [ 1102.319899][T12002] netlink: 608 bytes leftover after parsing attributes in process `syz.2.1644'. [ 1103.040010][T12010] vivid-004: disconnect [ 1103.532484][T12004] vivid-004: reconnect [ 1107.919579][T12035] netlink: 608 bytes leftover after parsing attributes in process `syz.1.1653'. [ 1108.251587][T12039] loop1: detected capacity change from 0 to 512 [ 1112.140927][T12063] netlink: 608 bytes leftover after parsing attributes in process `syz.4.1664'. [ 1113.239864][T12068] loop4: detected capacity change from 0 to 512 [ 1113.962216][T12081] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 1113.973470][T12081] overlayfs: "xino" feature enabled using 2 upper inode bits. [ 1116.313890][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 1116.320277][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 1118.096562][T12096] netlink: 608 bytes leftover after parsing attributes in process `syz.2.1674'. [ 1123.957741][T12131] netlink: 608 bytes leftover after parsing attributes in process `syz.3.1683'. [ 1125.541591][T12145] vivid-002: disconnect [ 1125.994587][T12136] vivid-002: reconnect [ 1130.285826][T12176] netlink: 'syz.1.1697': attribute type 4 has an invalid length. [ 1130.306449][T12176] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1697'. [ 1130.384580][T11383] Bluetooth: hci1: ACL packet for unknown connection handle 201 [ 1130.486346][T12176] : renamed from bond0 (while UP) [ 1134.266670][T12190] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1689'. [ 1137.696373][ T27] audit: type=1326 audit(2000000899.702:1640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12230 comm="syz.2.1710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 1137.764804][ T27] audit: type=1326 audit(2000000899.722:1641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12230 comm="syz.2.1710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 1137.795679][ T27] audit: type=1326 audit(2000000899.752:1642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12230 comm="syz.2.1710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 1137.842275][ T27] audit: type=1326 audit(2000000899.752:1643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12230 comm="syz.2.1710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 1137.870260][ T27] audit: type=1326 audit(2000000899.752:1644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12230 comm="syz.2.1710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 1137.916458][ T27] audit: type=1326 audit(2000000899.752:1645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12230 comm="syz.2.1710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 1138.031340][ T27] audit: type=1326 audit(2000000899.752:1646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12230 comm="syz.2.1710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 1138.092492][ T5880] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 1138.106934][ T27] audit: type=1326 audit(2000000899.752:1647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12230 comm="syz.2.1710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 1138.141731][ T27] audit: type=1326 audit(2000000899.752:1648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12230 comm="syz.2.1710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f650db8efc9 code=0x7ffc0000 [ 1138.231215][ T27] audit: type=1326 audit(2000000899.752:1649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12230 comm="syz.2.1710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f650db85e67 code=0x7ffc0000 [ 1138.441212][ T5880] usb 5-1: Using ep0 maxpacket: 8 [ 1138.443683][ T5880] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1138.443742][ T5880] usb 5-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a [ 1138.443767][ T5880] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1138.449759][ T5880] usb 5-1: config 0 descriptor?? [ 1138.472687][ T5880] gspca_main: vc032x-2.14.0 probing 046d:0892 [ 1139.304969][ T5880] gspca_vc032x: reg_r err -110 [ 1139.305057][ T5880] vc032x: probe of 5-1:0.0 failed with error -110 [ 1140.858331][ T5881] usb 5-1: USB disconnect, device number 2 [ 1144.254106][T12295] loop1: detected capacity change from 0 to 512 [ 1144.336920][T11210] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1151.783692][T12382] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 1151.843765][T12382] overlayfs: "xino" feature enabled using 2 upper inode bits. [ 1152.480728][T12381] (null): rxe_set_mtu: Set mtu to 1024 [ 1152.489350][T12381] rdma_rxe: rxe_newlink: failed to add syz_tun [ 1154.008355][T12398] netlink: 556 bytes leftover after parsing attributes in process `syz.3.1762'. [ 1155.603138][T12422] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 1155.614633][T12422] overlayfs: "xino" feature enabled using 2 upper inode bits. [ 1156.560418][T12425] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1769'. [ 1156.605876][T12425] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1769'. [ 1156.671560][T12425] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 1156.680457][T12425] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 1156.689294][T12425] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 1156.698065][T12425] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 1156.788748][T12425] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1769'. [ 1156.830292][T12425] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1769'. [ 1158.140667][T12434] loop4: detected capacity change from 0 to 2048 [ 1158.193939][T12438] netlink: 568 bytes leftover after parsing attributes in process `syz.2.1773'. [ 1158.383042][T10922] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1158.774308][T12434] loop4: detected capacity change from 0 to 256 [ 1158.774677][T10922] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1159.232077][ T5791] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 1159.521822][ T5791] usb 3-1: Using ep0 maxpacket: 16 [ 1159.556804][T12434] FAT-fs (loop4): Directory bread(block 64) failed [ 1159.587978][T12434] FAT-fs (loop4): Directory bread(block 65) failed [ 1159.591822][ T5791] usb 3-1: config index 0 descriptor too short (expected 16456, got 72) [ 1159.637461][ T5791] usb 3-1: config 0 has an invalid interface number: 125 but max is 1 [ 1159.637710][T12434] FAT-fs (loop4): Directory bread(block 66) failed [ 1159.686582][ T5791] usb 3-1: config 0 has an invalid interface number: 125 but max is 1 [ 1159.739156][ T5791] usb 3-1: config 0 has an invalid interface number: 125 but max is 1 [ 1159.751695][T12434] FAT-fs (loop4): Directory bread(block 67) failed [ 1159.809814][T12434] FAT-fs (loop4): Directory bread(block 68) failed [ 1159.816613][ T5791] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 1159.841564][T12434] FAT-fs (loop4): Directory bread(block 69) failed [ 1159.848282][T12434] FAT-fs (loop4): Directory bread(block 70) failed [ 1159.861637][ T5791] usb 3-1: config 0 has no interface number 0 [ 1159.868190][ T5791] usb 3-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64 [ 1159.919136][T12434] FAT-fs (loop4): Directory bread(block 71) failed [ 1160.106442][T12434] FAT-fs (loop4): Directory bread(block 72) failed [ 1160.113668][ T5791] usb 3-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0 [ 1160.136876][T12434] FAT-fs (loop4): Directory bread(block 73) failed [ 1160.151371][ T5791] usb 3-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0 [ 1160.181388][ T5791] usb 3-1: config 0 interface 125 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 1160.948478][ T5791] usb 3-1: config 0 interface 125 has no altsetting 0 [ 1160.955837][ T5791] usb 3-1: config 0 interface 125 has no altsetting 2 [ 1161.149678][T12454] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 1161.161044][T12454] overlayfs: "xino" feature enabled using 2 upper inode bits. [ 1161.205068][ T5791] usb 3-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27 [ 1161.476960][T12434] syz.4.1771: attempt to access beyond end of device [ 1161.476960][T12434] loop4: rw=0, sector=1192, nr_sectors = 4 limit=256 [ 1161.992059][ T5791] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1162.000156][ T5791] usb 3-1: Product: syz [ 1162.021041][ T5791] usb 3-1: Manufacturer: syz [ 1162.036010][ T5791] usb 3-1: SerialNumber: syz [ 1162.066818][ T2931] kworker/u4:7: attempt to access beyond end of device [ 1162.066818][ T2931] loop4: rw=1, sector=1224, nr_sectors = 544 limit=256 [ 1162.241767][ T5791] usb 3-1: config 0 descriptor?? [ 1162.271417][ T5791] usb 3-1: can't set config #0, error -71 [ 1162.325601][ T2931] kworker/u4:7: attempt to access beyond end of device [ 1162.325601][ T2931] loop4: rw=1, sector=1800, nr_sectors = 128 limit=256 [ 1162.366646][T12464] (null): rxe_set_mtu: Set mtu to 1024 [ 1162.375337][T12464] rdma_rxe: rxe_newlink: failed to add syz_tun [ 1163.010501][ T5791] usb 3-1: USB disconnect, device number 8 [ 1163.246798][ T2931] kworker/u4:7: attempt to access beyond end of device [ 1163.246798][ T2931] loop4: rw=1, sector=1960, nr_sectors = 31840 limit=256 [ 1164.489741][T12473] netlink: 568 bytes leftover after parsing attributes in process `syz.2.1783'. [ 1167.338945][T12494] loop3: detected capacity change from 0 to 2048 [ 1167.752755][T11210] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1170.024989][T12494] loop3: detected capacity change from 0 to 256 [ 1170.053907][T11210] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1170.174549][T12494] FAT-fs (loop3): Directory bread(block 64) failed [ 1170.229024][T12494] FAT-fs (loop3): Directory bread(block 65) failed [ 1170.252831][T12494] FAT-fs (loop3): Directory bread(block 66) failed [ 1170.270091][T12504] netlink: 568 bytes leftover after parsing attributes in process `syz.1.1794'. [ 1170.307671][T12494] FAT-fs (loop3): Directory bread(block 67) failed [ 1170.349720][T12494] FAT-fs (loop3): Directory bread(block 68) failed [ 1170.380042][T12494] FAT-fs (loop3): Directory bread(block 69) failed [ 1170.414355][T12494] FAT-fs (loop3): Directory bread(block 70) failed [ 1170.465164][T12494] FAT-fs (loop3): Directory bread(block 71) failed [ 1170.501876][T12494] FAT-fs (loop3): Directory bread(block 72) failed [ 1170.575934][T12494] FAT-fs (loop3): Directory bread(block 73) failed [ 1171.737627][T12514] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1798'. [ 1171.759057][T12514] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1798'. [ 1171.777121][T12514] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1798'. [ 1171.793022][T12514] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1798'. [ 1172.143519][T12523] loop2: detected capacity change from 0 to 512 [ 1172.453517][T12530] (null): rxe_set_mtu: Set mtu to 1024 [ 1172.460661][T12530] rdma_rxe: rxe_newlink: failed to add syz_tun [ 1173.398702][T12537] loop3: detected capacity change from 0 to 2048 [ 1175.075204][T12549] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1811'. [ 1175.094881][T12549] netlink: 'syz.2.1811': attribute type 21 has an invalid length. [ 1175.153945][T12549] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1811'. [ 1175.203700][T12549] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1811'. [ 1175.252240][T12549] netlink: 'syz.2.1811': attribute type 21 has an invalid length. [ 1175.288450][T12549] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1811'. [ 1176.546614][T12563] loop4: detected capacity change from 0 to 2048 [ 1176.623695][T11210] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1176.703460][T12563] loop4: detected capacity change from 0 to 256 [ 1176.708347][T11210] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1177.279003][T12563] FAT-fs (loop4): Directory bread(block 64) failed [ 1177.350058][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 1177.372098][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 1177.433104][T12563] FAT-fs (loop4): Directory bread(block 65) failed [ 1177.559077][T12563] FAT-fs (loop4): Directory bread(block 66) failed [ 1177.662145][T12563] FAT-fs (loop4): Directory bread(block 67) failed [ 1177.750986][T12563] FAT-fs (loop4): Directory bread(block 68) failed [ 1177.757664][T12563] FAT-fs (loop4): Directory bread(block 69) failed [ 1177.764363][T12563] FAT-fs (loop4): Directory bread(block 70) failed [ 1177.770938][T12563] FAT-fs (loop4): Directory bread(block 71) failed [ 1177.777665][T12563] FAT-fs (loop4): Directory bread(block 72) failed [ 1177.784338][T12563] FAT-fs (loop4): Directory bread(block 73) failed [ 1178.031650][T12563] syz.4.1815: attempt to access beyond end of device [ 1178.031650][T12563] loop4: rw=0, sector=1192, nr_sectors = 4 limit=256 [ 1178.599562][ T2931] kworker/u4:7: attempt to access beyond end of device [ 1178.599562][ T2931] loop4: rw=1, sector=1224, nr_sectors = 544 limit=256 [ 1178.681249][ T2931] kworker/u4:7: attempt to access beyond end of device [ 1178.681249][ T2931] loop4: rw=1, sector=1800, nr_sectors = 128 limit=256 [ 1178.869015][ T2931] kworker/u4:7: attempt to access beyond end of device [ 1178.869015][ T2931] loop4: rw=1, sector=1960, nr_sectors = 6408 limit=256 [ 1179.108658][ T2931] kworker/u4:7: attempt to access beyond end of device [ 1179.108658][ T2931] loop4: rw=1, sector=8368, nr_sectors = 2048 limit=256 [ 1179.413457][ T2931] kworker/u4:7: attempt to access beyond end of device [ 1179.413457][ T2931] loop4: rw=1, sector=10416, nr_sectors = 3016 limit=256 [ 1179.510597][ T2931] kworker/u4:7: attempt to access beyond end of device [ 1179.510597][ T2931] loop4: rw=1, sector=13432, nr_sectors = 6848 limit=256 [ 1179.559005][T12587] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1822'. [ 1179.611928][T12587] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1822'. [ 1179.622251][T12587] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1822'. [ 1179.631702][T12587] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1822'. [ 1179.673817][ T2931] kworker/u4:7: attempt to access beyond end of device [ 1179.673817][ T2931] loop4: rw=1, sector=20280, nr_sectors = 8192 limit=256 [ 1179.706045][ T2931] kworker/u4:7: attempt to access beyond end of device [ 1179.706045][ T2931] loop4: rw=1, sector=28472, nr_sectors = 5328 limit=256 [ 1180.199447][T12591] loop2: detected capacity change from 0 to 1764 [ 1182.855928][T12605] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 1182.867985][T12605] overlayfs: "xino" feature enabled using 2 upper inode bits. [ 1183.798860][T12607] loop3: detected capacity change from 0 to 2048 [ 1183.925572][T11210] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1183.994758][T12607] loop3: detected capacity change from 0 to 256 [ 1184.001673][T11210] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1184.157422][T12607] FAT-fs (loop3): Directory bread(block 64) failed [ 1184.208486][T12607] FAT-fs (loop3): Directory bread(block 65) failed [ 1184.251973][T12607] FAT-fs (loop3): Directory bread(block 66) failed [ 1184.277068][T12607] FAT-fs (loop3): Directory bread(block 67) failed [ 1184.301838][T12607] FAT-fs (loop3): Directory bread(block 68) failed [ 1184.346331][T12607] FAT-fs (loop3): Directory bread(block 69) failed [ 1184.370321][T12607] FAT-fs (loop3): Directory bread(block 70) failed [ 1184.435675][T12615] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1831'. [ 1184.459350][T12615] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1831'. [ 1184.487164][T12615] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1831'. [ 1184.517598][T12615] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1831'. [ 1184.555368][T12607] FAT-fs (loop3): Directory bread(block 71) failed [ 1184.577552][T12607] FAT-fs (loop3): Directory bread(block 72) failed [ 1184.623856][T12607] FAT-fs (loop3): Directory bread(block 73) failed [ 1185.640746][T12607] syz.3.1828: attempt to access beyond end of device [ 1185.640746][T12607] loop3: rw=0, sector=1192, nr_sectors = 4 limit=256 [ 1186.103272][ T6317] kworker/u4:100: attempt to access beyond end of device [ 1186.103272][ T6317] loop3: rw=1, sector=1224, nr_sectors = 544 limit=256 [ 1186.156111][ T6317] kworker/u4:100: attempt to access beyond end of device [ 1186.156111][ T6317] loop3: rw=1, sector=1800, nr_sectors = 128 limit=256 [ 1186.216378][ T6317] kworker/u4:100: attempt to access beyond end of device [ 1186.216378][ T6317] loop3: rw=1, sector=1960, nr_sectors = 3240 limit=256 [ 1186.331800][ T6317] kworker/u4:100: attempt to access beyond end of device [ 1186.331800][ T6317] loop3: rw=1, sector=5200, nr_sectors = 2048 limit=256 [ 1187.334428][ T6317] kworker/u4:100: attempt to access beyond end of device [ 1187.334428][ T6317] loop3: rw=1, sector=7248, nr_sectors = 20800 limit=256 [ 1188.667359][ T6317] kworker/u4:100: attempt to access beyond end of device [ 1188.667359][ T6317] loop3: rw=1, sector=28048, nr_sectors = 5752 limit=256 [ 1189.486469][T12654] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1843'. [ 1189.511654][T12651] loop1: detected capacity change from 0 to 2048 [ 1189.516264][T12654] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1843'. [ 1189.559766][T12654] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1843'. [ 1190.551500][T12654] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1843'. [ 1190.596734][T11210] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1190.706389][T12651] loop1: detected capacity change from 0 to 256 [ 1190.917207][T12651] FAT-fs (loop1): Directory bread(block 64) failed [ 1190.942504][T12651] FAT-fs (loop1): Directory bread(block 65) failed [ 1190.969974][T12651] FAT-fs (loop1): Directory bread(block 66) failed [ 1191.010522][T12651] FAT-fs (loop1): Directory bread(block 67) failed [ 1191.054005][T12651] FAT-fs (loop1): Directory bread(block 68) failed [ 1191.096059][T12651] FAT-fs (loop1): Directory bread(block 69) failed [ 1191.156026][T12651] FAT-fs (loop1): Directory bread(block 70) failed [ 1191.162647][T12651] FAT-fs (loop1): Directory bread(block 71) failed [ 1191.231781][T12651] FAT-fs (loop1): Directory bread(block 72) failed [ 1191.279392][T12651] FAT-fs (loop1): Directory bread(block 73) failed [ 1191.580462][T12651] syz.1.1841: attempt to access beyond end of device [ 1191.580462][T12651] loop1: rw=0, sector=1192, nr_sectors = 4 limit=256 [ 1192.126220][ T2931] kworker/u4:7: attempt to access beyond end of device [ 1192.126220][ T2931] loop1: rw=1, sector=1224, nr_sectors = 544 limit=256 [ 1192.211981][ T2931] kworker/u4:7: attempt to access beyond end of device [ 1192.211981][ T2931] loop1: rw=1, sector=1800, nr_sectors = 128 limit=256 [ 1194.081770][ T2931] kworker/u4:7: attempt to access beyond end of device [ 1194.081770][ T2931] loop1: rw=1, sector=1960, nr_sectors = 7456 limit=256 [ 1194.196205][ T2931] kworker/u4:7: attempt to access beyond end of device [ 1194.196205][ T2931] loop1: rw=1, sector=9416, nr_sectors = 5608 limit=256 [ 1194.385343][ T2931] kworker/u4:7: attempt to access beyond end of device [ 1194.385343][ T2931] loop1: rw=1, sector=15024, nr_sectors = 6032 limit=256 [ 1194.571843][ T2931] kworker/u4:7: attempt to access beyond end of device [ 1194.571843][ T2931] loop1: rw=1, sector=21056, nr_sectors = 12744 limit=256 [ 1194.991048][T12685] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1853'. [ 1195.037151][T12685] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1853'. [ 1195.110353][T12685] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 1195.119316][T12685] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 1195.128120][T12685] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 1195.136890][T12685] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 1195.384708][T12685] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1853'. [ 1195.430549][T12685] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1853'. [ 1196.014448][T12690] loop3: detected capacity change from 0 to 2048 [ 1201.985328][T11383] Bluetooth: hci0: ACL packet for unknown connection handle 201 [ 1204.839608][T12734] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1865'. [ 1205.269734][T12742] loop2: detected capacity change from 0 to 512 [ 1206.030059][T11383] Bluetooth: hci1: ACL packet for unknown connection handle 201 [ 1208.109415][T12768] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1872'. [ 1208.147517][T12768] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1872'. [ 1208.341495][T12768] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1872'. [ 1208.369005][T12768] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1872'. [ 1210.762819][T12785] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 1210.774074][T12785] overlayfs: "xino" feature enabled using 2 upper inode bits. [ 1211.300755][T11383] Bluetooth: hci3: ACL packet for unknown connection handle 201 [ 1211.831718][T12797] (null): rxe_set_mtu: Set mtu to 1024 [ 1211.840651][T12797] rdma_rxe: rxe_newlink: failed to add syz_tun [ 1213.599014][T11383] Bluetooth: hci0: ACL packet for unknown connection handle 201 [ 1214.743908][T12820] IPv6: sit1: Disabled Multicast RS [ 1214.751397][T12820] sit1: entered allmulticast mode [ 1217.530613][T11383] Bluetooth: hci3: ACL packet for unknown connection handle 201 [ 1222.807115][T11383] Bluetooth: hci2: ACL packet for unknown connection handle 201 [ 1223.536576][T12873] (null): rxe_set_mtu: Set mtu to 1024 [ 1223.544885][T12873] rdma_rxe: rxe_newlink: failed to add syz_tun [ 1227.449186][T11383] Bluetooth: hci1: ACL packet for unknown connection handle 201 [ 1227.710033][T12908] random: crng reseeded on system resumption [ 1228.419082][T12915] syz1: rxe_newlink: already configured on syz_tun [ 1232.405027][T12939] overlayfs: overlapping lowerdir path [ 1233.184330][T12954] (null): rxe_set_mtu: Set mtu to 1024 [ 1233.193204][T12954] rdma_rxe: rxe_newlink: failed to add syz_tun [ 1233.405915][T11383] Bluetooth: hci2: ACL packet for unknown connection handle 201 [ 1235.123313][T12972] loop1: detected capacity change from 0 to 512 [ 1235.161167][T12972] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #15: comm syz.1.1929: iget: bad i_size value: 38620345925642 [ 1235.201818][T12972] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.1929: couldn't read orphan inode 15 (err -117) [ 1235.227503][T12972] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1236.769233][ T6326] EXT4-fs error (device loop1): ext4_validate_block_bitmap:430: comm kworker/u4:108: bg 0: block 5: invalid block bitmap [ 1236.811952][ T6326] EXT4-fs (loop1): Delayed block allocation failed for inode 19 at logical offset 0 with max blocks 5 with error 28 [ 1236.828807][ T6326] EXT4-fs (loop1): This should not happen!! Data will be lost [ 1236.828807][ T6326] [ 1236.839477][ T6326] EXT4-fs (loop1): Total free blocks count 0 [ 1236.847334][ T6326] EXT4-fs (loop1): Free/Dirty block details [ 1236.857452][ T6326] EXT4-fs (loop1): free_blocks=0 [ 1236.863927][ T6326] EXT4-fs (loop1): dirty_blocks=16017 [ 1236.870221][ T6326] EXT4-fs (loop1): Block reservation details [ 1236.882559][ T6326] EXT4-fs (loop1): i_reserved_data_blocks=10121 [ 1236.898554][ T6326] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28 [ 1238.693114][T11383] Bluetooth: hci3: ACL packet for unknown connection handle 201 [ 1238.783147][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 1238.789523][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 1241.877803][ T5788] EXT4-fs: 55 callbacks suppressed [ 1241.877819][ T5788] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1247.234719][T13042] (null): rxe_set_mtu: Set mtu to 1024 [ 1247.242359][T13042] rdma_rxe: rxe_newlink: failed to add syz_tun [ 1252.154560][T13077] (null): rxe_set_mtu: Set mtu to 1024 [ 1252.161620][T13077] rdma_rxe: rxe_newlink: failed to add syz_tun [ 1257.638002][T13112] loop3: detected capacity change from 0 to 512 [ 1257.716310][T11210] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1263.696440][T13150] loop2: detected capacity change from 0 to 512 [ 1263.733101][T13150] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.1985: iget: bad i_size value: 38620345925642 [ 1263.821140][T13150] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.1985: couldn't read orphan inode 15 (err -117) [ 1263.892504][T13150] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1265.369055][ T6330] EXT4-fs error (device loop2): ext4_validate_block_bitmap:430: comm kworker/u4:111: bg 0: block 5: invalid block bitmap [ 1265.403781][ T6330] EXT4-fs (loop2): Delayed block allocation failed for inode 19 at logical offset 0 with max blocks 5 with error 28 [ 1265.445899][ T6330] EXT4-fs (loop2): This should not happen!! Data will be lost [ 1265.445899][ T6330] [ 1265.456676][ T6330] EXT4-fs (loop2): Total free blocks count 0 [ 1265.463088][ T6330] EXT4-fs (loop2): Free/Dirty block details [ 1265.471972][ T6330] EXT4-fs (loop2): free_blocks=0 [ 1265.477196][ T6330] EXT4-fs (loop2): dirty_blocks=16033 [ 1265.484360][ T6330] EXT4-fs (loop2): Block reservation details [ 1265.490607][ T6330] EXT4-fs (loop2): i_reserved_data_blocks=14277 [ 1265.502145][ T6330] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1756 with error 28 [ 1269.931045][T13188] loop3: detected capacity change from 0 to 16 [ 1269.951742][T13188] erofs: (device loop3): mounted with root inode @ nid 36. [ 1271.420082][T13201] (null): rxe_set_mtu: Set mtu to 1024 [ 1271.427368][T13201] rdma_rxe: rxe_newlink: failed to add syz_tun [ 1279.021590][T13240] (null): rxe_set_mtu: Set mtu to 1024 [ 1279.028712][T13240] rdma_rxe: rxe_newlink: failed to add syz_tun [ 1280.943551][T13249] loop1: detected capacity change from 0 to 1764 [ 1283.419924][T11383] Bluetooth: hci1: ACL packet for unknown connection handle 201 [ 1286.643928][T13287] loop3: detected capacity change from 0 to 512 [ 1288.388844][T13313] (null): rxe_set_mtu: Set mtu to 1024 [ 1288.394760][T13313] rdma_rxe: rxe_newlink: failed to add syz_tun [ 1289.942174][T13323] loop3: detected capacity change from 0 to 512 [ 1290.033335][T11210] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1290.330418][T13324] Page cache invalidation failure on direct I/O. Possible data corruption due to collision with buffered I/O! [ 1290.342986][T13324] File: /dev/nullb0 PID: 13324 Comm: syz.4.2030 [ 1292.791879][T13352] (null): rxe_set_mtu: Set mtu to 1024 [ 1292.797918][T13352] rdma_rxe: rxe_newlink: failed to add syz_tun [ 1293.626635][T13354] loop2: detected capacity change from 0 to 16 [ 1293.656959][T13354] erofs: (device loop2): mounted with root inode @ nid 36. [ 1297.765056][T13378] loop3: detected capacity change from 0 to 1764 [ 1299.960917][T13390] loop3: detected capacity change from 0 to 512 [ 1300.162650][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 1300.169034][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 1300.269709][T11210] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1300.405239][T13398] tipc: Enabling of bearer rejected, failed to enable media [ 1302.760460][T11383] Bluetooth: hci3: ACL packet for unknown connection handle 201 [ 1303.041585][T13420] loop4: detected capacity change from 0 to 1764 [ 1305.207599][T13434] loop1: detected capacity change from 0 to 512 [ 1305.277643][T10922] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1307.161901][T13460] loop3: detected capacity change from 0 to 1764 [ 1307.655901][T11383] Bluetooth: hci2: ACL packet for unknown connection handle 201 [ 1308.075625][T13467] loop2: detected capacity change from 0 to 512 [ 1308.210038][T13467] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.2077: iget: bad i_size value: 38620345925642 [ 1308.733119][T13467] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.2077: couldn't read orphan inode 15 (err -117) [ 1308.909672][T13467] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1310.374507][ T6330] EXT4-fs error (device loop2): ext4_validate_block_bitmap:430: comm kworker/u4:111: bg 0: block 5: invalid block bitmap [ 1310.482470][ T6330] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 5 with error 28 [ 1310.567177][ T6330] EXT4-fs (loop2): This should not happen!! Data will be lost [ 1310.567177][ T6330] [ 1310.746199][ T6330] EXT4-fs (loop2): Total free blocks count 0 [ 1310.753031][ T6330] EXT4-fs (loop2): Free/Dirty block details [ 1310.759289][ T6330] EXT4-fs (loop2): free_blocks=0 [ 1310.765069][ T6330] EXT4-fs (loop2): dirty_blocks=16025 [ 1310.770806][ T6330] EXT4-fs (loop2): Block reservation details [ 1310.777134][ T6330] EXT4-fs (loop2): i_reserved_data_blocks=16025 [ 1311.615343][T13481] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 8 with max blocks 2048 with error 28 [ 1311.663592][T11383] Bluetooth: hci0: ACL packet for unknown connection handle 201 [ 1314.176431][T11383] Bluetooth: hci2: ACL packet for unknown connection handle 201 [ 1314.208817][T13502] loop2: detected capacity change from 0 to 512 [ 1314.284316][T13505] loop4: detected capacity change from 0 to 1764 [ 1315.131373][T13515] loop4: detected capacity change from 0 to 512 [ 1315.220945][T13515] EXT4-fs error (device loop4): ext4_orphan_get:1399: inode #15: comm syz.4.2088: iget: bad i_size value: 38620345925642 [ 1315.303983][T13515] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.2088: couldn't read orphan inode 15 (err -117) [ 1315.406146][T13515] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1316.054118][T11383] Bluetooth: hci2: ACL packet for unknown connection handle 201 [ 1317.205857][ T6317] EXT4-fs error (device loop4): ext4_validate_block_bitmap:430: comm kworker/u4:100: bg 0: block 5: invalid block bitmap [ 1317.244731][ T6317] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 5 with error 28 [ 1317.303204][ T6317] EXT4-fs (loop4): This should not happen!! Data will be lost [ 1317.303204][ T6317] [ 1317.346307][ T6317] EXT4-fs (loop4): Total free blocks count 0 [ 1317.352379][ T6317] EXT4-fs (loop4): Free/Dirty block details [ 1317.386109][ T6317] EXT4-fs (loop4): free_blocks=0 [ 1317.413428][ T6317] EXT4-fs (loop4): dirty_blocks=16001 [ 1317.418889][ T6317] EXT4-fs (loop4): Block reservation details [ 1317.442661][ T6317] EXT4-fs (loop4): i_reserved_data_blocks=16001 [ 1318.562093][T13523] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 8 with max blocks 2048 with error 28 [ 1319.425622][ T5880] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 1319.598605][T13542] syz1: rxe_newlink: already configured on syz_tun [ 1319.631951][T11383] Bluetooth: hci0: ACL packet for unknown connection handle 201 [ 1320.211475][ T5880] usb 2-1: device descriptor read/64, error -71 [ 1320.521765][ T5880] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 1320.794789][T13549] loop4: detected capacity change from 0 to 1764 [ 1321.858423][T13557] loop2: detected capacity change from 0 to 512 [ 1321.934496][T13557] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.2099: iget: bad i_size value: 38620345925642 [ 1322.184333][T13557] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.2099: couldn't read orphan inode 15 (err -117) [ 1322.360574][T11383] Bluetooth: hci2: ACL packet for unknown connection handle 201 [ 1322.619613][T13557] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1323.361155][T13561] EXT4-fs error (device loop2): ext4_validate_block_bitmap:430: comm ext4lazyinit: bg 0: block 5: invalid block bitmap [ 1324.957787][T11383] Bluetooth: hci2: ACL packet for unknown connection handle 201 [ 1325.140576][ T5790] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1326.520371][T13589] loop4: detected capacity change from 0 to 1764 [ 1327.598106][ T5797] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 1327.614766][ T5797] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 1327.695293][ T5797] Bluetooth: hci0: ACL packet for unknown connection handle 201 [ 1327.859731][ T5797] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 1327.883639][ T5797] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 1327.899615][ T5797] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 1328.338445][ T5797] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 1330.207067][T11383] Bluetooth: hci2: ACL packet for unknown connection handle 201 [ 1330.707525][T11383] Bluetooth: hci4: command tx timeout [ 1331.206344][ T5882] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 1331.276411][ T5791] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 1331.405801][ T5882] usb 3-1: Using ep0 maxpacket: 32 [ 1331.448227][ T5882] usb 3-1: New USB device found, idVendor=0b89, idProduct=0007, bcdDevice=ef.64 [ 1331.485508][T13473] syz_tun (unregistering): left allmulticast mode [ 1331.526630][ T5791] usb 2-1: config index 0 descriptor too short (expected 23569, got 27) [ 1331.548441][ T5882] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1331.562120][ T5791] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1331.613148][ T5882] usb 3-1: config 0 descriptor?? [ 1331.621563][ T5791] usb 2-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 1331.680436][ T5791] usb 2-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 1331.710478][ T5791] usb 2-1: Manufacturer: syz [ 1331.775796][ T5882] as10x_usb: device has been detected [ 1331.786636][ T5791] usb 2-1: config 0 descriptor?? [ 1331.787307][T13597] chnl_net:caif_netlink_parms(): no params data found [ 1331.793431][ T5882] dvbdev: DVB: registering new adapter (nBox DVB-T Dongle) [ 1331.934059][ T5882] usb 3-1: DVB: registering adapter 1 frontend 0 (nBox DVB-T Dongle)... [ 1332.035533][ T5791] rc_core: IR keymap rc-hauppauge not found [ 1332.041832][ T5791] Registered IR keymap rc-empty [ 1332.095609][ T5791] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0 [ 1332.130070][ T5882] as10x_usb: error during firmware upload part1 [ 1332.150801][ T5791] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input9 [ 1332.166009][ T5882] Registered device nBox DVB-T Dongle [ 1332.173163][ T5882] usb 3-1: USB disconnect, device number 9 [ 1332.305103][ T5882] Unregistered device nBox DVB-T Dongle [ 1332.311711][ T5882] as10x_usb: device has been disconnected [ 1332.397731][T13630] rc rc0: two consecutive events of type space [ 1332.465369][T13597] bridge0: port 1(bridge_slave_0) entered blocking state [ 1332.503369][T13597] bridge0: port 1(bridge_slave_0) entered disabled state [ 1332.526791][T13597] bridge_slave_0: entered allmulticast mode [ 1332.535409][T13597] bridge_slave_0: entered promiscuous mode [ 1332.587134][T13597] bridge0: port 2(bridge_slave_1) entered blocking state [ 1332.594447][T13597] bridge0: port 2(bridge_slave_1) entered disabled state [ 1332.616775][T13597] bridge_slave_1: entered allmulticast mode [ 1332.634534][T13597] bridge_slave_1: entered promiscuous mode [ 1332.671963][ T5881] usb 2-1: USB disconnect, device number 10 [ 1332.775451][T11383] Bluetooth: hci4: command tx timeout [ 1332.860774][T13597] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1332.889129][T13597] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1332.964204][ T6330] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 1333.019334][ T6330] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1333.137690][T13597] team0: Port device team_slave_0 added [ 1333.148255][T13597] team0: Port device team_slave_1 added [ 1333.228986][T11383] Bluetooth: hci3: ACL packet for unknown connection handle 201 [ 1334.005766][ T6330] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 1334.037495][ T6330] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1334.123699][T13597] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1334.166488][T13597] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1334.287449][T13597] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1334.372509][T13597] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1334.379677][T13597] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1334.405743][T13597] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1334.558177][ T6330] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 1334.617110][ T6330] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1334.854517][T11383] Bluetooth: hci4: command tx timeout [ 1335.350393][ T6330] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 1335.462069][ T6330] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1336.638464][T13597] hsr_slave_0: entered promiscuous mode [ 1336.731978][T13597] hsr_slave_1: entered promiscuous mode [ 1336.965691][T11383] Bluetooth: hci4: command tx timeout [ 1337.020966][T13597] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1337.064733][T13597] Cannot create hsr debugfs directory [ 1338.022608][T11383] Bluetooth: hci2: ACL packet for unknown connection handle 201 [ 1341.030678][T11383] Bluetooth: hci2: ACL packet for unknown connection handle 201 [ 1341.278360][T13692] nvme_fabrics: missing parameter 'transport=%s' [ 1341.285773][T13692] nvme_fabrics: missing parameter 'nqn=%s' [ 1342.630243][T13695] DRBG: could not allocate CTR cipher TFM handle: ctr(aes) [ 1343.883898][T13717] loop4: detected capacity change from 0 to 512 [ 1343.892077][T13597] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 1343.954465][T11210] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1344.070764][T13597] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 1344.204319][T13597] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 1344.337046][T13597] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 1345.796353][T13597] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1345.975486][T13597] 8021q: adding VLAN 0 to HW filter on device team0 [ 1346.209872][ T6330] hsr_slave_0: left promiscuous mode [ 1346.233914][ T6330] hsr_slave_1: left promiscuous mode [ 1346.265958][ T6330] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1346.310540][ T6330] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1346.344124][ T6330] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1346.352379][ T6330] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1346.391500][ T6330] bridge_slave_1: left allmulticast mode [ 1346.405540][ T6330] bridge_slave_1: left promiscuous mode [ 1346.434792][ T6330] bridge0: port 2(bridge_slave_1) entered disabled state [ 1346.465682][ T6330] bridge_slave_0: left allmulticast mode [ 1346.483281][ T6330] bridge_slave_0: left promiscuous mode [ 1346.507487][ T6330] bridge0: port 1(bridge_slave_0) entered disabled state [ 1346.667781][ T6330] veth1_macvtap: left promiscuous mode [ 1346.676879][ T6330] veth0_macvtap: left promiscuous mode [ 1346.686221][ T6330] veth1_vlan: left promiscuous mode [ 1346.714837][ T6330] veth0_vlan: left promiscuous mode [ 1347.164498][T13764] loop2: detected capacity change from 0 to 512 [ 1347.355851][T11210] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1349.414096][ T6330] team0 (unregistering): Port device team_slave_1 removed [ 1349.473036][ T6330] team0 (unregistering): Port device team_slave_0 removed [ 1349.535314][ T6330] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1349.601937][ T6330] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1350.236462][ T6330] bond0 (unregistering): Released all slaves [ 1350.315712][ T2931] bridge0: port 1(bridge_slave_0) entered blocking state [ 1350.322914][ T2931] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1350.334858][ T2931] bridge0: port 2(bridge_slave_1) entered blocking state [ 1350.342046][ T2931] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1352.230357][T13597] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1352.809476][T13825] loop2: detected capacity change from 0 to 512 [ 1354.814900][ C0] vkms_vblank_simulate: vblank timer overrun [ 1354.843885][ C0] vkms_vblank_simulate: vblank timer overrun [ 1355.930702][T13597] veth0_vlan: entered promiscuous mode [ 1356.050264][T13597] veth1_vlan: entered promiscuous mode [ 1356.259719][T13597] veth0_macvtap: entered promiscuous mode [ 1356.307353][T13597] veth1_macvtap: entered promiscuous mode [ 1356.385409][T13597] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1356.415472][T13597] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1356.448208][T13597] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1356.498370][T13597] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1356.520668][T13597] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1356.551148][T13597] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1356.577191][T13597] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1356.638855][T13597] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1356.661641][T13597] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1356.698572][T13597] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1356.723051][T13597] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1356.753286][T13597] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1356.787825][T13597] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1356.840435][T13597] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1356.887005][T13597] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1356.917372][T13597] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1356.967912][T13597] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1357.103687][T13597] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1357.514461][ T6317] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1357.561317][ T6317] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1357.682210][ T2931] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1357.736139][ T2931] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1358.432371][T13553] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 1358.792868][T13553] usb 6-1: Using ep0 maxpacket: 32 [ 1358.816995][T13553] usb 6-1: config 0 has an invalid interface number: 184 but max is 0 [ 1358.825489][T13553] usb 6-1: config 0 has no interface number 0 [ 1358.832239][T13553] usb 6-1: config 0 interface 184 has no altsetting 0 [ 1358.869118][T13553] usb 6-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 1358.900864][T13553] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1358.909483][T13553] usb 6-1: Product: syz [ 1358.913941][T13553] usb 6-1: Manufacturer: syz [ 1358.918586][T13553] usb 6-1: SerialNumber: syz [ 1358.926903][T13553] usb 6-1: config 0 descriptor?? [ 1358.936031][T13553] smsc75xx v1.0.0 [ 1360.022810][T13885] bridge0: entered promiscuous mode [ 1361.385690][T13901] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 1361.565824][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 1361.572904][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 1362.194356][T13553] smsc75xx 6-1:0.184 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -71 [ 1362.211424][T13553] smsc75xx: probe of 6-1:0.184 failed with error -71 [ 1362.288234][T13553] usb 6-1: USB disconnect, device number 2 [ 1362.549910][T13910] loop4: detected capacity change from 0 to 512 [ 1362.570139][ T5880] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 1363.192956][T13910] EXT4-fs error (device loop4): ext4_orphan_get:1399: inode #15: comm syz.4.2173: iget: bad i_size value: 38620345925642 [ 1363.217988][T13910] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.2173: couldn't read orphan inode 15 (err -117) [ 1363.292546][ T5880] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 1363.302823][ T5880] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 1363.320026][ T5880] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1363.329360][ T5880] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 1363.338115][ T5880] usb 3-1: SerialNumber: syz [ 1363.342261][T13910] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1363.353325][ T5880] cdc_ether: probe of 3-1:1.0 failed with error -22 [ 1365.008560][T13660] EXT4-fs error (device loop4): ext4_validate_block_bitmap:430: comm kworker/u4:0: bg 0: block 5: invalid block bitmap [ 1365.108049][T13660] EXT4-fs (loop4): Delayed block allocation failed for inode 19 at logical offset 0 with max blocks 5 with error 28 [ 1365.638073][T13660] EXT4-fs (loop4): This should not happen!! Data will be lost [ 1365.638073][T13660] [ 1365.658855][T13660] EXT4-fs (loop4): Total free blocks count 0 [ 1365.664934][T13660] EXT4-fs (loop4): Free/Dirty block details [ 1365.691817][T13660] EXT4-fs (loop4): free_blocks=0 [ 1365.709729][T13660] EXT4-fs (loop4): dirty_blocks=16029 [ 1365.727634][T13660] EXT4-fs (loop4): Block reservation details [ 1365.756181][T13660] EXT4-fs (loop4): i_reserved_data_blocks=15717 [ 1365.766055][T13660] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 312 with error 28 [ 1366.625162][T13938] overlayfs: overlapping lowerdir path [ 1367.466678][ T786] usb 3-1: USB disconnect, device number 10 [ 1369.070059][ T8182] EXT4-fs: 47 callbacks suppressed [ 1369.070073][ T8182] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1370.686113][T11627] usb 2-1: new low-speed USB device number 11 using dummy_hcd [ 1370.990365][T11627] usb 2-1: unable to get BOS descriptor or descriptor too short [ 1371.081546][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1372.358889][T11627] usb 2-1: config 64 has an invalid descriptor of length 0, skipping remainder of the config [ 1373.348665][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1373.365823][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1374.661777][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1374.669941][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1374.678205][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1374.699919][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1374.708428][T11627] usb 2-1: string descriptor 0 read error: -71 [ 1374.733650][T11627] usb 2-1: New USB device found, idVendor=04e8, idProduct=ff30, bcdDevice=cc.bf [ 1374.751362][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1374.780848][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1374.796423][T11627] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1374.832188][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1374.867268][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1374.876162][T11627] usb 2-1: can't set config #64, error -71 [ 1374.896913][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1374.917803][T11627] usb 2-1: USB disconnect, device number 11 [ 1374.941703][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1374.962365][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1374.995577][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.009645][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.034102][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.056628][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.089179][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.117113][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.140211][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.173789][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.189869][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.207677][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.240956][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.272406][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.293289][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.312866][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.331700][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.357358][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.375355][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.399672][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.415895][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.446315][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.472569][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.495138][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.514095][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.537181][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.556465][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.584932][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.607322][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.630824][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.665575][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.683342][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.702871][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.725582][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.733208][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.741623][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.749481][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.769702][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.782787][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.858779][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.938319][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.949866][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.958212][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.966033][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.974449][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.981905][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1375.990221][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1376.015421][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1376.062860][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1376.093460][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1376.107224][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1376.115108][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1376.133079][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1376.141387][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1376.159923][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1376.170028][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1376.181229][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1376.723940][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1376.736414][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1376.753942][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1376.787643][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1376.799835][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1376.813354][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1376.852996][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1376.883467][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1376.922292][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1376.939844][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1377.019896][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1377.028193][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1377.069076][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1377.093650][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1377.101223][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1377.159319][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1377.187457][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1377.322778][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1377.330262][ T5846] hid-generic 0000:0000:0001.0010: unknown main item tag 0x0 [ 1377.454312][ T5846] hid-generic 0000:0000:0001.0010: hidraw0: HID v0.03 Device [syz1] on syz1 [ 1378.453054][T14031] fido_id[14031]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 1379.658099][ T5880] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 1379.861626][ T5880] usb 6-1: Using ep0 maxpacket: 8 [ 1380.430431][ T5880] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1380.451621][ T5880] usb 6-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a [ 1380.460967][ T5880] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1380.517100][ T5880] usb 6-1: config 0 descriptor?? [ 1380.602303][ T5880] gspca_main: vc032x-2.14.0 probing 046d:0892 [ 1380.830535][T14060] loop1: detected capacity change from 0 to 16 [ 1380.946068][T14060] erofs: (device loop1): mounted with root inode @ nid 36. [ 1382.247158][ T5880] gspca_vc032x: reg_w err -71 [ 1382.269412][ T5880] vc032x: probe of 6-1:0.0 failed with error -71 [ 1382.355032][ T5880] usb 6-1: USB disconnect, device number 3 [ 1382.892465][T14077] batadv1: entered promiscuous mode [ 1385.868110][ C0] ------------[ cut here ]------------ [ 1385.874283][ C0] WARNING: CPU: 0 PID: 14116 at net/mac80211/tx.c:5031 __ieee80211_beacon_get+0x1233/0x1600 [ 1385.875288][T14117] loop4: detected capacity change from 0 to 1764 [ 1385.884477][ C0] Modules linked in: [ 1385.884522][ C0] CPU: 0 PID: 14116 Comm: syz.4.2220 Not tainted syzkaller #0 [ 1385.902422][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1385.912558][ C0] RIP: 0010:__ieee80211_beacon_get+0x1233/0x1600 [ 1385.918954][ C0] Code: 24 4c 89 e7 e8 9e 0b d4 f7 45 31 f6 4c 8b bc 24 a0 00 00 00 e9 7a fe ff ff e8 59 e5 96 f7 0f 0b e9 f6 f7 ff ff e8 4d e5 96 f7 <0f> 0b e9 48 fb ff ff e8 41 e5 96 f7 48 c7 c7 20 ff 23 8e 4c 89 e6 [ 1385.938772][ C0] RSP: 0018:ffffc90000007a18 EFLAGS: 00010246 [ 1385.944917][ C0] RAX: ffffffff89eea583 RBX: ffffffff89ee9386 RCX: ffff888018341e00 [ 1385.952990][ C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000 [ 1385.961045][ C0] RBP: 0000000000000000 R08: ffff888018341e00 R09: 0000000000000003 [ 1385.969060][ C0] R10: 0000000000000007 R11: 0000000000000100 R12: ffff88806d0923c0 [ 1385.977077][ C0] R13: dffffc0000000000 R14: ffff88806d0928b0 R15: ffff88802e321424 [ 1385.985110][ C0] FS: 00007fb293e6a6c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 1385.994103][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1386.000728][ C0] CR2: 00007fb293e69f98 CR3: 0000000023931000 CR4: 00000000003506f0 [ 1386.008757][ C0] Call Trace: [ 1386.012089][ C0] [ 1386.014997][ C0] ? __ieee80211_beacon_get+0x36/0x1600 [ 1386.020630][ C0] ieee80211_beacon_get_tim+0xb8/0x560 [ 1386.026313][ C0] ? ieee80211_beacon_get_template_ema_list+0x90/0x90 [ 1386.033132][ C0] mac80211_hwsim_beacon_tx+0x3c7/0x780 [ 1386.038728][ C0] __iterate_interfaces+0x243/0x500 [ 1386.043970][ C0] ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0 [ 1386.050253][ C0] ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180 [ 1386.057495][ C0] ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0 [ 1386.063786][ C0] ieee80211_iterate_active_interfaces_atomic+0xdb/0x180 [ 1386.070863][ C0] mac80211_hwsim_beacon+0xbb/0x1b0 [ 1386.076109][ C0] __hrtimer_run_queues+0x51e/0xc40 [ 1386.081453][ C0] ? hw_scan_work+0xf40/0xf40 [ 1386.086156][ C0] ? hrtimer_interrupt+0x9c0/0x9c0 [ 1386.091327][ C0] ? ktime_get_update_offsets_now+0x3d2/0x3f0 [ 1386.097424][ C0] hrtimer_run_softirq+0x187/0x2b0 [ 1386.102581][ C0] handle_softirqs+0x280/0x820 [ 1386.107392][ C0] ? __irq_exit_rcu+0xc7/0x190 [ 1386.112233][ C0] ? do_softirq+0x180/0x180 [ 1386.116779][ C0] __irq_exit_rcu+0xc7/0x190 [ 1386.121437][ C0] ? irq_exit_rcu+0x20/0x20 [ 1386.125991][ C0] irq_exit_rcu+0x9/0x20 [ 1386.130280][ C0] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 1386.135952][ C0] [ 1386.138930][ C0] [ 1386.141941][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 1386.147950][ C0] RIP: 0010:kasan_check_range+0x89/0x290 [ 1386.153646][ C0] Code: 00 fc ff df 4d 8d 34 19 4d 89 f4 4d 29 dc 49 83 fc 10 7f 29 4d 85 e4 0f 84 41 01 00 00 4c 89 cb 48 f7 d3 4c 01 fb 41 80 3b 00 <0f> 85 cc 01 00 00 49 ff c3 48 ff c3 75 ee e9 21 01 00 00 44 89 dd [ 1386.173502][ C0] RSP: 0018:ffffc90005487888 EFLAGS: 00000246 [ 1386.179613][ C0] RAX: ffffffff88612101 RBX: fffffffffffffff5 RCX: ffffffff88612119 [ 1386.187603][ C0] RDX: 0000000000000001 RSI: 0000000000000080 RDI: ffffc90005487980 [ 1386.195663][ C0] RBP: 0000000000000000 R08: ffffc900054879ff R09: 1ffff92000a90f3f [ 1386.203860][ C0] R10: dffffc0000000000 R11: fffff52000a90f35 R12: 0000000000000010 [ 1386.211890][ C0] R13: ffffc90005487d20 R14: fffff52000a90f40 R15: 1ffff92000a90f30 [ 1386.219914][ C0] ? ____sys_recvmsg+0xa1/0x5b0 [ 1386.224815][ C0] ? ____sys_recvmsg+0xb9/0x5b0 [ 1386.229725][ C0] __asan_memset+0x22/0x40 [ 1386.234163][ C0] ____sys_recvmsg+0xb9/0x5b0 [ 1386.238895][ C0] ? __sys_recvmsg_sock+0x50/0x50 [ 1386.244000][ C0] ? __asan_memset+0x22/0x40 [ 1386.248646][ C0] ? __import_iovec+0x3fa/0x860 [ 1386.253522][ C0] ? __might_fault+0xaa/0x120 [ 1386.258282][ C0] ? import_iovec+0x73/0xa0 [ 1386.262841][ C0] ___sys_recvmsg+0x1b6/0x510 [ 1386.267557][ C0] ? __sys_recvmsg+0x270/0x270 [ 1386.272394][ C0] ? __lock_acquire+0x7c80/0x7c80 [ 1386.277565][ C0] ? __might_fault+0xc6/0x120 [ 1386.282291][ C0] ? __might_fault+0xaa/0x120 [ 1386.286988][ C0] do_recvmmsg+0x360/0x7d0 [ 1386.291506][ C0] ? __sys_recvmmsg+0x280/0x280 [ 1386.296389][ C0] ? __ia32_sys_get_robust_list+0x90/0x90 [ 1386.302154][ C0] ? rcu_read_lock_sched_held+0x8a/0x100 [ 1386.307837][ C0] __x64_sys_recvmmsg+0x191/0x240 [ 1386.312921][ C0] ? do_recvmmsg+0x7d0/0x7d0 [ 1386.317581][ C0] ? lockdep_hardirqs_on+0x98/0x150 [ 1386.322867][ C0] do_syscall_64+0x55/0xb0 [ 1386.327333][ C0] ? clear_bhb_loop+0x40/0x90 [ 1386.332148][ C0] ? clear_bhb_loop+0x40/0x90 [ 1386.336840][ C0] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1386.342798][ C0] RIP: 0033:0x7fb292f8efc9 [ 1386.347246][ C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1386.366932][ C0] RSP: 002b:00007fb293e6a038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1386.375446][ C0] RAX: ffffffffffffffda RBX: 00007fb2931e6090 RCX: 00007fb292f8efc9 [ 1386.383582][ C0] RDX: 0000000000010106 RSI: 00002000000000c0 RDI: 0000000000000005 [ 1386.391624][ C0] RBP: 00007fb293011f91 R08: 0000000000000000 R09: 0000000000000000 [ 1386.399652][ C0] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000 [ 1386.407687][ C0] R13: 00007fb2931e6128 R14: 00007fb2931e6090 R15: 00007ffe867284a8 [ 1386.415722][ C0] [ 1386.418778][ C0] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1386.426066][ C0] CPU: 0 PID: 14116 Comm: syz.4.2220 Not tainted syzkaller #0 [ 1386.433533][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1386.443604][ C0] Call Trace: [ 1386.446897][ C0] [ 1386.449834][ C0] dump_stack_lvl+0x16c/0x230 [ 1386.454532][ C0] ? show_regs_print_info+0x20/0x20 [ 1386.459748][ C0] ? load_image+0x3b0/0x3b0 [ 1386.464271][ C0] panic+0x2c0/0x710 [ 1386.468184][ C0] ? bpf_jit_dump+0xd0/0xd0 [ 1386.472708][ C0] __warn+0x2e0/0x470 [ 1386.476690][ C0] ? __ieee80211_beacon_get+0x1233/0x1600 [ 1386.482441][ C0] ? __ieee80211_beacon_get+0x1233/0x1600 [ 1386.488196][ C0] report_bug+0x2be/0x4f0 [ 1386.492558][ C0] ? __ieee80211_beacon_get+0x1233/0x1600 [ 1386.498302][ C0] ? __ieee80211_beacon_get+0x1233/0x1600 [ 1386.504033][ C0] ? __ieee80211_beacon_get+0x1235/0x1600 [ 1386.509772][ C0] handle_bug+0xcf/0x120 [ 1386.514048][ C0] exc_invalid_op+0x1a/0x50 [ 1386.518569][ C0] asm_exc_invalid_op+0x1a/0x20 [ 1386.523432][ C0] RIP: 0010:__ieee80211_beacon_get+0x1233/0x1600 [ 1386.529773][ C0] Code: 24 4c 89 e7 e8 9e 0b d4 f7 45 31 f6 4c 8b bc 24 a0 00 00 00 e9 7a fe ff ff e8 59 e5 96 f7 0f 0b e9 f6 f7 ff ff e8 4d e5 96 f7 <0f> 0b e9 48 fb ff ff e8 41 e5 96 f7 48 c7 c7 20 ff 23 8e 4c 89 e6 [ 1386.549418][ C0] RSP: 0018:ffffc90000007a18 EFLAGS: 00010246 [ 1386.555493][ C0] RAX: ffffffff89eea583 RBX: ffffffff89ee9386 RCX: ffff888018341e00 [ 1386.563484][ C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000 [ 1386.571463][ C0] RBP: 0000000000000000 R08: ffff888018341e00 R09: 0000000000000003 [ 1386.579447][ C0] R10: 0000000000000007 R11: 0000000000000100 R12: ffff88806d0923c0 [ 1386.587560][ C0] R13: dffffc0000000000 R14: ffff88806d0928b0 R15: ffff88802e321424 [ 1386.595567][ C0] ? __ieee80211_beacon_get+0x36/0x1600 [ 1386.601160][ C0] ? __ieee80211_beacon_get+0x1233/0x1600 [ 1386.606919][ C0] ? __ieee80211_beacon_get+0x1233/0x1600 [ 1386.612666][ C0] ? __ieee80211_beacon_get+0x36/0x1600 [ 1386.618230][ C0] ieee80211_beacon_get_tim+0xb8/0x560 [ 1386.623706][ C0] ? ieee80211_beacon_get_template_ema_list+0x90/0x90 [ 1386.630485][ C0] mac80211_hwsim_beacon_tx+0x3c7/0x780 [ 1386.636055][ C0] __iterate_interfaces+0x243/0x500 [ 1386.641269][ C0] ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0 [ 1386.647522][ C0] ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180 [ 1386.654732][ C0] ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0 [ 1386.660989][ C0] ieee80211_iterate_active_interfaces_atomic+0xdb/0x180 [ 1386.668052][ C0] mac80211_hwsim_beacon+0xbb/0x1b0 [ 1386.673295][ C0] __hrtimer_run_queues+0x51e/0xc40 [ 1386.678528][ C0] ? hw_scan_work+0xf40/0xf40 [ 1386.683243][ C0] ? hrtimer_interrupt+0x9c0/0x9c0 [ 1386.688369][ C0] ? ktime_get_update_offsets_now+0x3d2/0x3f0 [ 1386.694455][ C0] hrtimer_run_softirq+0x187/0x2b0 [ 1386.699583][ C0] handle_softirqs+0x280/0x820 [ 1386.704356][ C0] ? __irq_exit_rcu+0xc7/0x190 [ 1386.709220][ C0] ? do_softirq+0x180/0x180 [ 1386.713743][ C0] __irq_exit_rcu+0xc7/0x190 [ 1386.718360][ C0] ? irq_exit_rcu+0x20/0x20 [ 1386.722877][ C0] irq_exit_rcu+0x9/0x20 [ 1386.727146][ C0] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 1386.732802][ C0] [ 1386.735764][ C0] [ 1386.738707][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 1386.744710][ C0] RIP: 0010:kasan_check_range+0x89/0x290 [ 1386.750400][ C0] Code: 00 fc ff df 4d 8d 34 19 4d 89 f4 4d 29 dc 49 83 fc 10 7f 29 4d 85 e4 0f 84 41 01 00 00 4c 89 cb 48 f7 d3 4c 01 fb 41 80 3b 00 <0f> 85 cc 01 00 00 49 ff c3 48 ff c3 75 ee e9 21 01 00 00 44 89 dd [ 1386.770060][ C0] RSP: 0018:ffffc90005487888 EFLAGS: 00000246 [ 1386.776141][ C0] RAX: ffffffff88612101 RBX: fffffffffffffff5 RCX: ffffffff88612119 [ 1386.784126][ C0] RDX: 0000000000000001 RSI: 0000000000000080 RDI: ffffc90005487980 [ 1386.792108][ C0] RBP: 0000000000000000 R08: ffffc900054879ff R09: 1ffff92000a90f3f [ 1386.800088][ C0] R10: dffffc0000000000 R11: fffff52000a90f35 R12: 0000000000000010 [ 1386.808069][ C0] R13: ffffc90005487d20 R14: fffff52000a90f40 R15: 1ffff92000a90f30 [ 1386.816065][ C0] ? ____sys_recvmsg+0xa1/0x5b0 [ 1386.820931][ C0] ? ____sys_recvmsg+0xb9/0x5b0 [ 1386.825804][ C0] __asan_memset+0x22/0x40 [ 1386.830245][ C0] ____sys_recvmsg+0xb9/0x5b0 [ 1386.834960][ C0] ? __sys_recvmsg_sock+0x50/0x50 [ 1386.840003][ C0] ? __asan_memset+0x22/0x40 [ 1386.844612][ C0] ? __import_iovec+0x3fa/0x860 [ 1386.849478][ C0] ? __might_fault+0xaa/0x120 [ 1386.854168][ C0] ? import_iovec+0x73/0xa0 [ 1386.858696][ C0] ___sys_recvmsg+0x1b6/0x510 [ 1386.863395][ C0] ? __sys_recvmsg+0x270/0x270 [ 1386.868188][ C0] ? __lock_acquire+0x7c80/0x7c80 [ 1386.873229][ C0] ? __might_fault+0xc6/0x120 [ 1386.877915][ C0] ? __might_fault+0xaa/0x120 [ 1386.882610][ C0] do_recvmmsg+0x360/0x7d0 [ 1386.887052][ C0] ? __sys_recvmmsg+0x280/0x280 [ 1386.891931][ C0] ? __ia32_sys_get_robust_list+0x90/0x90 [ 1386.897662][ C0] ? rcu_read_lock_sched_held+0x8a/0x100 [ 1386.903320][ C0] __x64_sys_recvmmsg+0x191/0x240 [ 1386.908362][ C0] ? do_recvmmsg+0x7d0/0x7d0 [ 1386.912979][ C0] ? lockdep_hardirqs_on+0x98/0x150 [ 1386.918204][ C0] do_syscall_64+0x55/0xb0 [ 1386.922632][ C0] ? clear_bhb_loop+0x40/0x90 [ 1386.927316][ C0] ? clear_bhb_loop+0x40/0x90 [ 1386.932004][ C0] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1386.938081][ C0] RIP: 0033:0x7fb292f8efc9 [ 1386.942543][ C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1386.962171][ C0] RSP: 002b:00007fb293e6a038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1386.970593][ C0] RAX: ffffffffffffffda RBX: 00007fb2931e6090 RCX: 00007fb292f8efc9 [ 1386.978572][ C0] RDX: 0000000000010106 RSI: 00002000000000c0 RDI: 0000000000000005 [ 1386.986553][ C0] RBP: 00007fb293011f91 R08: 0000000000000000 R09: 0000000000000000 [ 1386.994533][ C0] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000 [ 1387.002514][ C0] R13: 00007fb2931e6128 R14: 00007fb2931e6090 R15: 00007ffe867284a8 [ 1387.010507][ C0] [ 1387.013805][ C0] Kernel Offset: disabled [ 1387.018211][ C0] Rebooting in 86400 seconds..