last executing test programs: 16.555732748s ago: executing program 3 (id=2178): socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r0, 0x8990, &(0x7f0000000080)={'sit0\x00', @random="00bc008000"}) ioctl$TIOCGWINSZ(0xffffffffffffffff, 0x5413, 0x0) ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000080)="290000001e00190f00003fffffffda060200000000e80001dd0008040d0008000c0000000005000000", 0x29}], 0x1) 15.871108939s ago: executing program 3 (id=2180): r0 = openat$uinput(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$UI_DEV_DESTROY(r0, 0x5502) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r1, 0x1) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}}]}, &(0x7f0000000140)=0x10) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f0000000a80)={r4, 0x0, "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"}, &(0x7f0000000180)=0xfebd) 14.809576573s ago: executing program 1 (id=2191): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000) r1 = dup(r0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) bind$inet6(r2, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) listen(r2, 0x4) setsockopt$inet_sctp6_SCTP_ASSOCINFO(r2, 0x84, 0x1, &(0x7f0000000200)={0x0, 0xfd1c, 0x4, 0x400, 0xed, 0x1}, 0x14) sendmmsg$inet6(r1, &(0x7f0000000000)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)="f6", 0x1}], 0x1}}], 0x1, 0x0) 14.763444825s ago: executing program 4 (id=2192): socket$igmp6(0xa, 0x3, 0x2) openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x2, 0x0) syz_usb_connect(0x1, 0x3d, 0x0, 0x0) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f00003b6000/0x4000)=nil, &(0x7f0000ff8000/0x8000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045) r0 = io_uring_setup(0x1e64, &(0x7f0000000040)={0x0, 0xc89a, 0xc000, 0x7fff, 0x65}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0xfff0}, {0xe, 0xffff}}}, 0x24}}, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4) r1 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0) 14.632002169s ago: executing program 3 (id=2195): mkdirat(0xffffffffffffff9c, 0x0, 0x1c0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, 0x0, 0x0, 0x2, 0x0, 0x0, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sched_setaffinity(0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000040), 0x80002c1, 0x2, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000340)={0x8, 0x8, 0x9, 0x5, 0x1, 0x2}) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000040)={0x44, 0x2, 0x6, 0x801, 0x0, 0x0, {0xa}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x2}]}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_TYPENAME={0x10, 0x3, 'hash:ip,mac\x00'}]}, 0x44}, 0x1, 0x0, 0x0, 0x50}, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_FLUSH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)={0x1c, 0x4, 0x6, 0x201, 0x0, 0x0, {0xa, 0x0, 0x5}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x11}, 0x28000080) 14.25135133s ago: executing program 1 (id=2197): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000840)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040084) r3 = socket$unix(0x1, 0x1, 0x0) r4 = socket$kcm(0x11, 0x3, 0x0) r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r5) socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000480)={'syzkaller0\x00', 0x0}) r7 = socket(0x400000000010, 0x3, 0x0) r8 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=@newtfilter={0x88, 0x2c, 0xd3f, 0x30bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, r9, {0xb, 0xfff3}, {}, {0x8, 0xe}}, [@filter_kind_options=@f_basic={{0xa}, {0x58, 0x2, [@TCA_BASIC_ACT={0x54, 0x3, [@m_connmark={0x50, 0x1, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xfffffffe, 0x2, 0x10000000, 0x6, 0x2}, 0x1}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}]}]}}]}, 0x88}, 0x1, 0x0, 0x0, 0x10}, 0x0) setsockopt$sock_attach_bpf(r4, 0x107, 0xf, &(0x7f0000000600), 0x56) sendmsg$kcm(r4, &(0x7f0000000000)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r6, 0x7}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000180)="27030200080314000e00072f01000000000000003cfdcb00000080ed00827600000000000100", 0x26}, {&(0x7f0000000780)="9942d6af00007f8f", 0x8}], 0x2}, 0x5) 14.131557374s ago: executing program 3 (id=2200): mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c1) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000040)={0x28, 0x2, 0x0, {0x1, 0x9, 0x9}}, 0x28) 14.067358806s ago: executing program 3 (id=2201): write(0xffffffffffffffff, 0x0, 0x0) socket$pppl2tp(0x18, 0x1, 0x1) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x161182) r1 = socket(0x40000000015, 0x5, 0x0) bind$inet6(r1, &(0x7f0000000080)={0xa, 0x4e25, 0x2, @empty, 0x40003ff}, 0x1b) writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) r2 = socket(0x10, 0x3, 0x0) r3 = socket(0x2, 0x80805, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(r3, 0x84, 0x1c, 0x0, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc08000340000000140800"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800e80010000d0428bd7000fcdbff2500008000", @ANYRES32=r2, @ANYBLOB="1000000000000000280012800b0001006272696467650000180002800500190084000000"], 0x48}}, 0x4084) sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840) sendmmsg(r2, &(0x7f0000000000), 0x4000000000001f2, 0x0) syz_usb_connect$uac1(0x1, 0x0, 0x0, 0x0) socket$inet_udp(0x2, 0x2, 0x0) 13.555650533s ago: executing program 4 (id=2203): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_user\x00', 0x275a, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0x4030582a, 0x0) r1 = socket$pppl2tp(0x18, 0x1, 0x1) r2 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r1, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, r2, {0x2, 0x4e24, @broadcast}, 0x2, 0x0, 0x3}}, 0x26) sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(0xffffffffffffffff, 0x0, 0x400c001) connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x4e21, @broadcast}, 0x2, 0x9800, 0xfffffffd}}, 0x2e) r3 = socket$pppl2tp(0x18, 0x1, 0x1) connect$pppl2tp(r3, &(0x7f00000000c0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x2, 0x2}}, 0x26) bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000001900)={0x19, 0x0, 0x0, &(0x7f0000000300)='syzkaller\x00', 0x1000, 0x1000, &(0x7f0000000780)=""/4096, 0x40f00, 0x29, '\x00', 0x0, @cgroup_sockopt=0x16, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f00000017c0)={0x1, 0x2, 0x2, 0x9}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x9}, 0x94) r4 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0) ioctl$PPPIOCATTCHAN(r4, 0x40047438, &(0x7f0000000500)=0x2) ioctl$PPPIOCBRIDGECHAN(r4, 0x40047435, 0x0) 13.431281136s ago: executing program 4 (id=2204): r0 = socket$inet6(0xa, 0x400000000001, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) mkdirat(0xffffffffffffff9c, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() r2 = syz_open_procfs$pagemap(0x0, 0x0) ioctl$PAGEMAP_SCAN(r2, 0xc0606610, &(0x7f0000000100)={0x60, 0x0, &(0x7f0000000000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0xf8f, 0x0, 0x0, 0x0, 0x0, 0x2}) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r3 = socket$can_j1939(0x1d, 0x2, 0x7) setsockopt$SO_J1939_PROMISC(r3, 0x6b, 0x2, &(0x7f0000000040), 0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(0xffffffffffffffff, 0xc01064b5, &(0x7f0000000140)={&(0x7f00000006c0)=[0x0], 0x1}) ioctl$DRM_IOCTL_MODE_GETPLANE(0xffffffffffffffff, 0xc02064b6, 0x0) ioctl$DRM_IOCTL_MODE_SETPLANE(0xffffffffffffffff, 0xc03064b7, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x20, 0xffffffcd, 0x0, 0x3, 0x0, 0x0, 0x30000, 0x200000}) sendto$inet6(r0, 0x0, 0x0, 0x20004048, &(0x7f00000001c0)={0xa, 0x4e20, 0x0, @loopback, 0x4}, 0x1c) getsockopt$inet_int(r0, 0x0, 0xe, 0x0, &(0x7f0000000500)=0x3) bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xc, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000d1000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b400000095"], &(0x7f0000000340)='GPL\x00', 0x12, 0x0, 0x0, 0x41100, 0x65, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94) 12.546269474s ago: executing program 4 (id=2206): r0 = socket$packet(0x11, 0x3, 0x300) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x180, 0x0) close(r2) socket$nl_route(0x10, 0x3, 0x0) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000440)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfb, {0x0, 0x0, 0x0, r4, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x5, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x404c800}, 0x400c000) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x207, 0x4) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'syzkaller0\x00', 0x0}) sendto$packet(r0, &(0x7f00000002c0)="05031620d3fc140000004788031c09102c28", 0xfdef, 0x4, &(0x7f0000000140)={0x11, 0x86dd, r6, 0x1, 0x0, 0x6, @multicast}, 0x14) 12.007417992s ago: executing program 2 (id=2208): r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=@newtaction={0x6c, 0x30, 0x1, 0x0, 0x0, {}, [{0x58, 0x1, [@m_nat={0x54, 0x1, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0xfffffff6, 0xe, 0x0, 0x1, 0x4}, @rand_addr=0x64010101, @dev={0xac, 0x14, 0x14, 0x42}, 0xffffffff}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x20008000}, 0x8000) sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x20044890) r2 = socket$netlink(0x10, 0x3, 0x1) bind$netlink(r2, &(0x7f00000000c0)={0x10, 0x0, 0x25dfdbfb, 0x2ffffffff}, 0xc) setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000040)={0x84, @broadcast, 0x4e21, 0x3, 'rr\x00', 0x1, 0x10000004, 0x8}, 0x2c) r3 = socket$kcm(0xa, 0x2, 0x0) r4 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, 0x0, 0x0) r5 = socket$inet_udp(0x2, 0x2, 0x0) recvmmsg(r5, 0x0, 0x0, 0x2, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0) setsockopt$IP_VS_SO_SET_ADDDEST(r4, 0x0, 0x487, 0x0, 0x0) sendmsg$sock(r3, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0x0, @dev, 0xfffffeec}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x0) 1.498766913s ago: executing program 0 (id=2210): r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) socket$qrtr(0x2a, 0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_BSS(r1, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f0000000c00)={0x24, r0, 0x40d, 0x70bd25, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_BSS_CTS_PROT={0x5, 0x1c, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x28080800}, 0x4004000) 1.484847963s ago: executing program 1 (id=2211): mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c1) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f00000002c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}) write$FUSE_NOTIFY_INVAL_INODE(r0, 0x0, 0x0) 1.411210926s ago: executing program 1 (id=2212): socket$inet6(0xa, 0x2, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x29, 0x14, 0x0, 0xffffffffffffffdc) r4 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, 0x0, 0x0) ioctl$SOUND_MIXER_WRITE_VOLUME(0xffffffffffffffff, 0xc0040d07, &(0x7f0000000040)=0x121) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_LIST(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, 0x7, 0x6, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20004080}, 0x48810) recvmsg(r5, &(0x7f000000c1c0)={0x0, 0x0, 0x0}, 0x20) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000100)={@loopback, 0x0, 0x2, 0x3, 0x9, 0x0, 0xc96e}, 0x20) close(0xffffffffffffffff) socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b14, &(0x7f0000000000)={'wlan1\x00', @random="018d008dffff"}) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x2, &(0x7f0000000000)=[{0x28, 0x2, 0xfd, 0x5ae9}, {0x6, 0x0, 0x8, 0x7}]}, 0x10) 960.26444ms ago: executing program 2 (id=2213): r0 = socket$vsock_stream(0x28, 0x1, 0x0) setsockopt$sock_int(r0, 0x1, 0x12, &(0x7f0000000040)=0x80000000, 0x4) 948.33577ms ago: executing program 0 (id=2214): socket$inet_icmp_raw(0x2, 0x3, 0x1) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5) close(0x4) syz_open_procfs$namespace(0x0, &(0x7f0000000200)='ns/pid_for_children\x00') unshare(0x6a040000) r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x42000, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x20) 947.80143ms ago: executing program 4 (id=2215): r0 = syz_open_procfs(0xffffffffffffffff, 0x0) fcntl$getownex(r0, 0x10, &(0x7f0000000080)={0x0, 0x0}) prlimit64(r1, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) sendmsg$NFT_BATCH(r0, &(0x7f00000006c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000680)={&(0x7f0000000480)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_DELRULE={0x70, 0x8, 0xa, 0x201, 0x0, 0x0, {0xa, 0x0, 0x5}, [@NFTA_RULE_COMPAT={0x14, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x73}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x9000}]}, @NFTA_RULE_COMPAT={0x34, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x73}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0xa01}, @NFTA_RULE_COMPAT_FLAGS={0x8}]}, @NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x2}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x4}]}, @NFT_MSG_DELFLOWTABLE={0xb8, 0x18, 0xa, 0xb01, 0x0, 0x0, {0x9}, [@NFTA_FLOWTABLE_HOOK={0xa4, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x8aa}, @NFTA_FLOWTABLE_HOOK_DEVS={0x90, 0x3, 0x0, 0x1, [{0x14, 0x1, 'wg0\x00'}, {0x14, 0x1, 'syzkaller0\x00'}, {0x14, 0x1, 'batadv0\x00'}, {0x14}, {0x14, 0x1, 'ipvlan0\x00'}, {0x14, 0x1, 'ip6gretap0\x00'}, {0x14, 0x1, 'lo\x00'}]}]}]}, @NFT_MSG_DELCHAIN={0x6c, 0x5, 0xa, 0x101, 0x0, 0x0, {0x5, 0x0, 0x7}, [@NFTA_CHAIN_TYPE={0xb, 0x7, 'filter\x00'}, @NFTA_CHAIN_USERDATA={0x8, 0xc, "55837956"}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x4}, @NFTA_CHAIN_HOOK={0x28, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x6f7cc431}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_HOOK_DEV={0x14, 0x3, 'dvmrp0\x00'}]}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}, @NFTA_CHAIN_TYPE={0x8, 0x7, 'nat\x00'}]}, @NFT_MSG_NEWTABLE={0x3c, 0x0, 0xa, 0x301, 0x0, 0x0, {0x3, 0x0, 0x4}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x6}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x1f8}}, 0x40081) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SET_MM(0x23, 0xa, &(0x7f00002d5000/0x2000)=nil) r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='environ\x00') preadv(r5, &(0x7f0000001400)=[{&(0x7f0000000040)=""/113, 0x200000b1}], 0x1, 0xc002a0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) 886.704572ms ago: executing program 2 (id=2216): mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x21c0, 0x103) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f0000004140)={0x2020, 0x0, 0x0}, 0x2020) syz_fuse_handle_req(r0, &(0x7f00000062c0)="23db5037805f177d136115e6a1a5903469af39c1fb9cb38215fe64cff9f2f0444a57e22b0cc5cb4f74c9792365400d9e1c68539ea5eff0a5ed0864814d39251bee8dfea69aa052d900bc0c792e1c9752b7d3a3222f6a1ad3e44c1f65617b128aea51911861ca36ba7c96b96b2fba0fdaa49ffb2612f3e81fe565327dd9965a60046442c9dcd0d552c6a00388be3b438a08883c7349761531880294ad9887db97d8c2f74921c57910cf1f5cc528e17bd5c3746b6202f26d621535aac5f7872c2cb3295e42524b5acb249b2d1ac1b53a4e31271decfca3fad2e2f740768adf00875c18cb7d115150f83ceb73f77a1f61f1666c2bb9f6bd9f0fb55b3a619446e32bae2a1d99aa49e5f3822e048f8be44b707f2db10d7916ec9a10a695d573d871cf24959c3d15e61344a68309d186956537c6ea8532fc2e1c7649f8409d8dcde4c8ee1530470ac9c870f9f1837574e444ba6addf5ddb2dec67c0e76df79f265b403818dddb4efc27c90985ed69a48b12056e548f9c99edf80d2b195d26acb1127661727a0600257f4b2546513d03930a0638a71bd3223e51fbb75c832ef737907f2f4d3f0505f431ea02783c798b5c4579c99961fb73dc623a0d99c1b306435464d413b537d42c6444851b36482597140b22fbc0ebc7e795b2f96739bf139f5823bc869ede547da4f394fa1b1787836095e1013264042e53d5006ea059d0488cb2f5ccd44b30d25ea53c2dda71d112d7d441dbfc9f8462c99c098b1958c80b237d83c32f2759c9a9c081d7d7666a477cfda59354309b09f2a8b9f6c3077b0df1e8d0c71ac07232de4f437107cb0eb9b47b2267efe31938a337cf11cadad72ced56895bb14763cca5bdadd245d801e829a1eb3bb4ed851a345918efd2dcf8d38f66badc773068e6a2ef59b2bb838abd8b043cf6ac54550f3fde1bbb9e761095e4b8ef1891757d376be1f778142610c0acbbfc697f51fbb7a1602ed46e82813c74f41ee2bae818174809f3692084bea7310ebec3d6166702ae62aad84313e19b4d145167185ea8d53cb21d099fb592d7d7f8bc305dd375b5c0cd73be44f49ff53cee220085d4706bbf50c6f63b02e7e805e8fa4c73046a57a8700886da29ea53e5a316e7b011c44a0f7be5cc5cb5641ba0069ff591eee18966c7f005ef40046a5fe2bf325b2545b009867761264aa9611d184fa372ba3c5c33d9a50717210f7cec7f6dc4418a87a797eb6aaf6ab3892bd3f559547c88d8c29646c8173fad1588f52beb34ff863be65e7ec1598cfb465f270bd5532fa7035aae077eedbc846058fa19f58ffb1cf0f1863f6d33f2e5c454d18b66be766ca369af2cc9656fa34c6c10e4d4da44ce5e2370aaf60c4e130da331d3489e8f44c600246323409fdd35d11da27128c9d64be65dd3a90c1546a6eb9185cb6d3a4a9cfad0e41ea03896fd2346f745eb3563d7a79fd345b037c040e56f0677840bf9b0d295bcfa98b931464c5ce9fcaf745720deac2d8b4edeffc0fe6f089ed7c3880959fcf8e31f7b7054bc4f5c9d3ed3f66c968d0bc20b2d66c374f030f3f1965f43a98519e527caf693362412d523eeb38c8b016ff77f78f833d7513e4b5a53d5ed5143916673f822ceac9967b8788bc6428283181eaf8d99e48286aacf4f658a903e9f08659450f7f9483807c2e013a1d9d199f18886a8cb4e14d41c71e5731455a4394551281eca12a1bb6ae717f5da2949175d0f1f3d718b761dfc1099c7d9d8928c899ac8e936e69d19fcbfcfdee83b68ef8e15eed41a8ac0d54aa92d7d2ee58bb4799f378225ec9ba4709e5ce2b77208ecc85c22c64967a9ef3360c54d311b8917ceb7b432c90cc5e98de9327c1400f8ec89261b1d77d8874b0bbdd2c5eb59df415705de52b08b0e12c07fb7367c6d461c19f282d51e482cb4fb9ceb0249ac2d6400ca170fbd6c0063224179c616bb030a5c10102aa2eea92f1e6f5828590b250b09e6d1a9535c298a68160b7c281fecdd295dc3396c4e6eb3395d5a677d5fa95a732dfdef81f4346545dd1a74bb3aa9b516699bdf0a59165077ab459a5ffe0dbb3ef8afa7a8382a8441e0c36ffabbed8f93f4bbeb97e5f6a704bf63a0de9ccf8fef643ebc530a80920931002003b027014de317c42f861d98ef4fef66d232d9706e6bd263347384dadadaa43a7e106bbb21bd822d468ace171b3f04b996112135b63dcbd612b5888ec40da583ab549c340ddaf5d7406c3e99322c68874214356c1fd9b5f84348e629cc3487a901d1b7a2fa531b1509ac1c93de3da9f1c3773e3a2aba2b29d2419f240ae6d24ed9f14bf0b9b0f1e740a2db06dab64d6386f950bff4e4c94160ef4b832bbde3af4937b7528658b5c16a51cb22193fe99385721ce5b048d9338e289dcb40683140c413eca52c8e4b64b306f47569477379c864cfb3aa3e349262407d3935ab9a0916eb0f6db2be71a7eb8f9968dfac44995d5bff8ef617fceeaa448f5e5f8d4b39e3512fe7ae9ee1d8a0d5912b6148969ab0325f3f76e2340fbd67ce156bdf638140b3ccdb08e5049db15957915cb05db8901249b10c59cc5c3ff836290e3334eee2df387e44c57b4d6198c3749f5dc57f6c3de115ced6b43cbddd762b58f1fb40b2baf3b381febdc073142e30d2e9a1a69e8d86314221e540f195509d223b206173dc5406865d8064817c30c284c034035a63190ab86df3bae4168c58e01d2251748fd5d9d610024129e83a5730fe83cf0918790e6854ab765c78649b91c06655f0cb9e26d8432df78bbadd99583b6a8afcf177ed6f339e08c0b36a16c6d31d8a24cb6f2bc3ba58d7711b6f8b988dc3e3144be619548457d4f40509f17eeb186cb93a2928ecb951593d1907c8bbb9f4c8999caba3059c8e73dce54ad6f87bcd51d559f7759902b14e68d3b845c0b179b38f4e6f0bd3a89cbcd5ebed9972102048647da1eda5c8456442369f4ae871d4037ba26f27d27371ce57e23adca5af8dc93f934f2ef8d69ad3b2db66657b3868dd839c2b522f5461f24407ef091b77242fc70a48b7eec45f3bcbcfbc6bdc36e4b67295020a345233a32a0a0af4d03a53ef67e69716d5ae35342722afbe7558946475a9ebf5b39c18558a0011f68bc8a78590b0cb63618379a512790c42d94bb239dd3ef5b8d1036cf0391aded8802a7a447c38f231ae611aeeab9bba44cd14369473758b64108d0bc9b6bc9e9b497c2d1d2acbae7c620a55c226cf371331688eaddec61fe961c5fcef71dad45820ed0ac8dc7641d82150f1318ac15aa41e7be585b6a50da1b3cd95239ee61cfde15aba80ae8ebc21ba4540883c6f44cd35b6b97da4640c97f5a2b6efa8d184fec823abc754ab8a0db6c45c2293e90d9c154c4a3e0b9ec2b6113ce6583b80f0d234dec9a9815067244733e2134b9ba93bb9692fb44200bb5501bb109f2401e8baaf0115d795bb0346dfafaf953bed8e9a52a5b9b02d490c55fd89daf311ad5e08b070a9571f696d6df4715c8b69b840e4e03d6f361326e20d9546c47b3a63163e7df9bd260621358c166177ee7c69ed63a8c43dd4a78543aa9f922c0ef527f4aa61ff65bb14595f518412ce25a1e103df89cd4b363593da16c11d80a23a9b5ad8e3a7be8f697cecf82c8fbd889a4f743c839b67f7ba5453b10bbf59b1e4f4e821872c061a4125c0c15c1ca5164efe61a58bb54dcedc849800a6021a448d4660c3b85e2362b7cd8ce95156fbf408a09a30a8ccfc3554004e9f9a35382907eec00617e2ae1f8803146bc8c28b4f3bf3c6b183ae9248e7f05c4adce3e0b7ff29252b5be9b19431e3fe612d471f52c5c34cc12c83049189f4d2e5ca516df78766ba3449d07ef9436c68052c986d9dde8802c931194e2ce34acb8cc26663a09348b15c6c145d26306bded0d1f482803ae6dee26562b03fcb183b69ee4a0491e8776ecdadfca395cb4eac2948d4d64321a4e669f2f663eb54f05f12ed9c685835c3e79f982152dbe701073b9a4ab2932b46ee2424a5e18bbe5f25ce0b898ff6937927f4670defe430ac86021226ae055daf39b535cdc0899fcc99d15e67d66bd2dd89bb21b8d2689a8af10a1b0bd44103c469922c36fc0228d7b6febf5e366dceecf8bb1db385c8ab95d86ff09b76c2fa6282de81fd6864c495a4c8295df61a2548e1b81c3e3f30d7a41216801d6c2d1743f66ae2055756083e8bf403d436b8244ac214f4d84a693d13f299ba267401d094f2df70840e8a980622794212f0992ecf5a47980ab2cf7d5a6f12b0a489af3c3c847ac59bc89f36fbb0e08bf283b68213a17de38b3a45eade6f0b198def408f7711c16367bcc0ded794a9a323c7e7f07fad96ea9c4d7344c26e43844a27c21076b8d7cd07677602d91eac825eb5fd0631755c2dd1dbf7bce3eb3c3f7377fc6080ecd0b894e29769845725943e25932d4249abb4ab78d4e2ff2e2df42c8d884cd6bd13886cef080c6491c217abae0eec6e9d4d49eab6657f15cfd38e6cd6d0bd33198c4685ab302d0f46e42f4a5d5bb7d2840a0a8817b98a856700d4de74351896fe7d7d5a0d1bc57fb4c828aa51f9637807aeb905780f239527ed4affd83f68be8b7ad1e10d9e797ba39cdee24f7be0a0ab0ac22ea3968dac61eb4bdd522c9ce570edf63a439abfd9954bf6a16c88d86157d05477200a83255cde279b454979cee4de00e81cb44acdc4295c877566a749ab5b91d250f03d46ecc14210c196700338eea028c930ce104f20a9e7fabb0ad1d314ec1a2d97d1d1b9e09114dee0e3e513eacede01971ff85dc98634156073df4e8acd6c3aadd615adaffa7a81573813bc4ca21886ddd532021bba5c84b34c34665534db48d61903a03c1cca4ed955ca92c1e33b7664b494e3db6d1e637a49e537808a2669ebeca301691acd4fab0af197b9c7db01b7862466b568ab3a4712a25210264fb297a6b679dfc3fceb65bddd1a23d5b507a0d6da83d73b716d971c5179a92e57b9b93451eb943845a549de737f2d082a83682c32649b4941e787758ead9d2c256b2b4ed1e0255952ce83cccecc39e5bbdd38490f1960b26e5379943be3d9a64b5149c84d577e5fd099560baa292befa06ce9065fb03ed432a9e055ca4ad0e952f8368b3d230fd5239726f79f4c98a0b4a9648382b245d324cb61049562f765f923fc657ef36747658494d78590a1e27a2d09856acf50c3b26271c6d5aa96e8ff9bdb9043859665e21ea53a050c335cac414bbf27b0328ac2c7450acb26b093bf232358afd1135ee50ac3fb26b5f0256ccdd37033c8a59740607cfd549d4c6540afe4a6b4425ae1f633872dcfb5da8d0547cf0c4888817b71fbc7c45b2a641e9c1a76b6a6be124402422ada35edc02ed997d6b87b361aee95a16d2c528d89a52fe40dfd83434969bd86f02e63fc1ae72941209af39a08cfbb4c320bc47d853f5dbaf0cd60ec54608aadbc382fa6b5cab3e9cac57bea26609f4c79f6a6b4eb4a9336fa95783b0c0c366f36d5d6b8310b3cfdb800207919a131bc7f984f7fa11fd0bf2c89e060e9d1286e453fe97363ef72bd6eba29a85ffeccdc3bee72e12284333a5a40622c01619558d2750fc45abfa22059ebdf743f8e50ad29770d19f84d8a34232d6918514769b3bb2a1ea5e59e9556332ba669675764458e9349a1835c501a93e91dd3b31018979880a9913f54ec1e8526b8cffcb776b97fbb9424faa5c5eb60d2ac74955bba4b5182571d0d9f84f0df1baa722b20a78c9c0011c667f688b58489c9e450d83e40ac5eb41c5564b6d76a226448abe4a3f499927074125aa9c0e7e704c36df5bb110a0f15f8433a470e81db414827d5ce21ca1da1c8d51d746d1e1ca110127c15e92afd75d3cd05ce0b632cfa03745de3cdd4b57373d46676583c89f045c26c6fc5793e5489555ced08f83ba351135834a2028113c319af30cc85bc01a7f8208822d7d607aed0d2e12c80aa009100441b75beaccfe0adbda7e8bb870edf4963158794c8c3a5baacf6eec7b5efaefb7602dab8409d161beeb281cba21f1da0ccdc092d0433fb940d79699ffeb87ea775829a6e7e3b308a2ee0b7aec8ac5f35eed61be374c7c77196f7119a8882deff68230f461cb917b0ccb2b8597efcbdd1003b7b77b2c601ebd4b45c35b8426f7b9138ab3df0ec00819604ab8e1e64cf2aa2282b1269585af127a268cd207f964edff172e555398a16df44bdc52889538c3a27f8fbfffb61f7aeb55b259952bbfea81d73058d8b0f78ece9dc08e660437d21d4e3ec38b19e5afda7a6e33023f9158db8a1c14dabd9b8b307ddc66927f7b19df5e0da2237d98ddd890b81f1963808977d02198e8ae2e97419dbb1f8e51cad36a3424b955500fbdaab6ff8dbf028708b1f951fe43864b59b6c2368b816c98023d4480a91b3f1059e9c214bf55a7f8c7da907f79ff5568fd787d3aa022ab9d03cde551f7e3295f02c4f3aa37e4cebdd968c0f82f09eb004fbdb1a4ef3a0d426691bde3964c29ea65622f5d3ffd854053545ba1ec164495e4bef4845439c058f9438d13be7922b656db499c246ee6176a15b97e6a68e42f0c703033b699504e1f92b43054c7237199bd013d96faab47433b6b3f91dc66368706439d4ef7da3942ce8b9c1c9a9d0643fc4540e7d3f1c3821267e866cacd3e904be9f9df80381eec09eb2b0d745ff03ffb199b917a14fdd8fbfbffe8bfb0cf7023aa7183301a8a41e7097ff9f5247f8b78f7d08bbfc596a81047807cf0929677222e7e9e921b294e04088c3746d8dc19294645f1c093a21b4c5e6d92e54dd90465b11dd5d9d42af849070edff4ec63970f4088daaa33afdebb28d01df5ee043a8150ab1b25d864ef31e20c84696596cfbea92d02ea29c4a3933c41ec68aee7d68d7eea7f30d8920e14e62be42bcf856d7a58f46fdb2438b023e974f77281c5a462553627e9614504cbd3f1cae6e0fd9f7e89d9bce48946d0508616fbe542303dc542982c61d7bb4afbf3e76bf1fb2381cdc99f2175ef944dcd826aabdca2b7678db5262733c69ce504c38e7deb7adfb9b6d8bb00d8e4251e0438417ea615cde58bd76c2427b3d7a0578bbbff9fde2abbc5d60307aff0050b18176158aaedb34e283886378ff798b4f74e0a0c95d64271f1916280dd247304d9201c67f5e2640d9706add8703cac81795a0190107e2bb2941ed13738595da1c86ba0f68e2283a435cb5f162c74071a13dfe2266d05abaef080dd6b1dade115e883e04f0bb4be4d91f535ae6f822b02e814e65d2b7807d199a23d3f26209f6c9f93602a3a93ccfdebb5f8161b7928059674e15820d1848a980c8d1af5a73aadc5c402fbb6e730ba51227913ca27f0d78d331d6325d0a7926c238296b2a22b10a69cdffeb087dfe175511ed8e2cde8d7dae140e4ce92f892b129d9940e4a30b19f822ef7611b8750eaea8e55502604b7d2358c09a217af8be6c86d67cf6ff6130c971c9765d56631fe6224fbe1e833d497b534fbf6b030af93691f59295279aa1bdfb5d5d9d4668d5aea70e2b8fc117df0042e91c7e6225f27329727ed6e14a87c7943c040dfee4e5c06a20251c39a45ab4865951b0daefb9c05571fdcc21d1761945bd2b8047ccedd6f1e708646fbe61e75bb2728e8cee893d7e6f642119e786155a6cbab057d6d83b77716145119e974ad7355179d2adc3d748fa249cb58e32e6791d646240c05da4427b2f359976c8fd1486c604cb7ee647e24633d8fca8314cf1f85110ca6351156a2b26e44b040f7d2810acd36f45a3969c1fafd1a7e0bc14fd9b26593375be8e750c3f6534ffb85904d15d75fba05dac4a673de97f7543ee931724cd35474cd7ff5cf3e8abaf206f3030e92895633fa9d8499ea763601560260109dad18bd64b990531fc5377e6eaa5da050b98e1c6515ea48c7de1a15b63283d4a694cbad379356bfdac50e6c343879e29f6b9ab425600d51f257ceb35d0ca00f83cf5bd734223de716747614666ba1f1a8fa756e5f3ff0fc94fa4bd4073bddb0098cf565ee40af5732ee9218d262e5b64ad6b8118c54eeaf7072f2e15514a401779b425fa89d8abb1750e56cc3108dffdcf2d3fd86b8af4560d56f7ff0702154211f9949e3992d93e66892b297fa2d4bfe18de3fd74e96c9d30eb14fd458fdbc9e9a34e00f3280dd732520147fa2a8fa83e91dd0687501466a300015bf888c03fc08190c2753d7719acf6f84885c4c5642f466c1984f15a7716a9b608ee5f1b395726bcc8519766667d24d11e396e62ea39640c9e73e4e9e9e5076d7019ca1bebbd7097807f46b3b6fcb96ed4b433b25ec551fb176a5fa252ed1d81b0350cfdfb8069c9916495bef3a262b6668910896c0b37eee40547c663a901e92f41b417ac50e88d058d021a8f9a5783bd936cca4962bec1c9886689cc547970f9215232596392515182e563f720bb79d29baaabf0e2697de6500bc677e346847011ee3450358c0b16ca528368b5cbb8df5ab974a3cef072d20c9906fa585e0f3083ec6d8507b8561f64e65aa1aecf825fc47ad1459c87771549fd5c9a9cc094e7b1179ee1e90eff7158f28f59f029d90e708f4ec50b4f67d8b4bb7140065528354a7e25d63e92977183a0284ec22aa923210f0bfea89cca53547137381e5de0f60bc484bc2daf129b0380244f1ed4bfb674eb2791e76dce33cae684ad36620d5d67cb587f840caed316b7439b0e8c3de0e065e62680f3997369be3466670278168c9a1a644d870e3a8d0a79b2b720e8c3c51bb9133532beee64319e98714bb2e6d5c0b723962d923b0ef454361d4b3cb470bf8c39031ed4a75267f499741be15aacac92d8e6afdcb01a2e7d2dbf549ceb2a2108c4079c620f05ca1bd31d631c2c8d35ca0d73155f56ed020c25e389db356edf510ae088d11b5e4fed51d0dce4d3aa04924b09c28200ede5bec1a8f38cc5f081055e0f28d75afc4d588ca0e828d00085d150beafdda17b8df9e7d9218ea7d81f2e076412901c5ae04d6929d717fea2fcc8e5a1e69dbd7b5258799a2fa5eb108b6cc35dfab599fb27e6d75f1030b83f452af8137830337141f031942eba83123d3f87b5f01623d4613e5a44b4952c300baf3d4d3dbbfb0ad024a19b3810a174ef8453d85a25822f66e45eba2490f29de1077683ccc32e3517f88b51e010672a982f7c8591450c9ab1573143aefb61c17ebb0c92dcb0494d116b970c2a827a6b3608ae10d583d1f7d092263fa873de9f31cd59bc9491ff012059b63a9120af89477f2ccc34eee7bd66de60af64730c879128b49d31da6400c2471e0d5abf707e560574b477b8e20ca45d92182d639eb434e14aea1a3f91ad8fb60e4859b77389753990513181ea3a82884235e8520294359435cfba220502b591fc28ac36ec697442657d290bd7aad7fce53a3f1766f2bf7d55c24d7c0e9c7a71d6f1282ea1478e0a36378b50e4fee281f686bc53f50138036e2a5d6199d40caff084fde7b63b3c0a47da0791107c3218330f7c2e2c7609aba202fae5290243b6033379eb15edc572eee452008e04c9b53efd5f3d88327317b38934745bc3de4c55bd818febc7a7953bf03c4029f77177c2a974310f0485aa46252f1000dc71934947287c38ea5854f29c7b82f630afb8caf1fd880670307b155a6e7feddc019cfbbbdc18f3bc03da3bd371d93ccbf56bcb39eea55c2d113efc148127c30089d21ce6a5088dbfbcf8f8d75c19456bc962c371548634a95382acb5a0886efc46a87bdc111dc0d1e54084cea0d58054f00762c91d7fe0f0fbcf4c280f29f9cd5999a5e8c6f507f8080d7c7ea9a8685be50722cf1a082f3728dec8d6152cdc72f8da6b1805643c042f4f6780ba79cc8a2165d9d7acec8ab2f421bc3e77b51c62c4bbb262b5674ea7d2dcf9acb894d050e91b052364322a5b08bd9667249571c004fb495da7e24fc5620adda3af6848ccf238911a52bdbff766e4e279ac274afa2c2302faba25b5fe98d972a04aa13f77c0c05d7dd82b0a19f1ded8cf5f99c80e392b0aab1264a29e9fbcf0b69f6b0a9f2332e09ab74dea7277106d0883bb264e279c67e5bc69009225bf4fd1a8532f9392a011b55a73a7cf8d16a59d695b2a65b57fad64a2041f8c28804ee1a48845c5dab757d04f1d95520aa9ddb69904d6529c0e14bd789dfe37067073b3e0e136ae2aebb1c34c55b94ce942f786be4b45f801f35f7c768d91a460b92ffa57ff675f0b4b00437a07f871a8650f21b2bf7c722c1d9e860e8955fef5699ee53a5f6fe46fb9e5e17a1c69fe2538af4718b7215ad2c00c3d420589a8653ee511b809945451fb8205b19ce377c8d0253b05493c557cf2bd8ef208e8fc01beceea1acca38d025f328f28d69bcfaa3adc6d9573a3832dc3f3c758fe08cf9cd0c32acfddae81b3682869e8aa9725b64336252aeb2ee8eb78f0721aa3158217a3009948adb297c5ea45ec26cb6d963c7be47ee1b93fa136ebe73a21936df0148fa311206f8bca2e80719aeca8745ff74ddaad5182644762c66333f942d9a93c467d5f9fd5d0dbbe57480362d4bb0f760294f4eba3e1b08047d256dbda157635d21a43aff3a71f6ad574b402bb36e5270d7ed082c6fbae07771721513ae9ddb22d23b00733046c898ee6ac05ef8a51ce41919e1f241cb98e0592ace68214620ba1a748ef81131661f58f1635713ca2873e150a3e848c8d2ebd039769fda112b73050efa4d1c35dbb46ca5a7b7ccbed1dcded36af272f6838b4c1e7e6778e7e9ca3d794f275d49c9e32e768097349118d2337e7c031ada38d0cc5c04c286ff93083f6d58d73a821118c93432fda9a8c76fa2cbcc093a7decac8e4f001ecc9f67faf1c2f102120f0618469cf653bbd5fcefd4ef2bae86dc4f5393b840f9f47140cf7f46a186c21878a43612a71d3b540b9994f010ab623f878264cf46c7366d0bec5d43d481b47846091fd3cda73a9a28ceb7f839eca695c9f084a16c812475f6575ef2368c88cc6655f47663ef69ce4779fe3ccc4dd85a07a9e4c6f39f42690d231f5727f45c247a53fd8df029fcefda4f328658435892519c17205a3c715ad6bb7387d09a5e387c83f008daf626f5977c66203af1143ef7b59ccd8e3c17bb156bca317861f0b9f222ea63c044075a3a74beaf05c23d0a75caa60397d831bbe507234fff154960faf0f02776d3f9038c955bf0c1ec9c92523cf0b855c18d6ac3b35d437796420ba3dfd581dc6adac64315c1cb1a2c3a45ec4655bb2bd6e0b4a3082281ed0697a213d1d93142e96b4fd57431d2f4547451d008ab58bcd9765ccf3ca3297becd5de9e2be0263cfca09935c9334b5e687bc7e7057dc2ed03873be22200c9fe32a9497dd00a336cf4c723ead302340b5cd1fef8cd88330a9089fc93af4ef739295b94407b291bf33f4f39c936736e1166106428f8796a4b92805f4dfcf46d8692b54e40a9e8584c0eaac4caada87bb33f553eafeef5051b889402176ab766936a38ddd7e5205d2c87e133a02e84ab24ba2d889a4c4db8cbe18b271455e84da716f4a32acdbc0a5aaba25a2ec757c73847dd1c4ccb2967c651e5257692a4553dde227846bfe2977021805f46a287c835ea8dc5", 0x2000, &(0x7f00000015c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)={0x10, 0xffffffffffffffda, 0x3ff, {0x0, 0xb}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) write$FUSE_INIT(r0, &(0x7f0000000180)={0x50, 0x0, r1, {0x7, 0x2b, 0xffffffde, 0x2040d00c, 0x0, 0xfffe, 0x2, 0x1, 0x0, 0x0, 0x100, 0x100}}, 0x50) openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40242, 0x1) r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x72, 0x0, 0x7fff0000}]}) close_range(r2, 0xffffffffffffffff, 0x0) r3 = syz_create_resource$binfmt(&(0x7f0000000200)='./file0\x00') openat$binfmt(0xffffffffffffff9c, r3, 0x42, 0x1ff) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x3000000, 0x10011, r2, 0x78e17000) 886.226722ms ago: executing program 2 (id=2217): syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0) r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100)) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000200)=[@increfs], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000480)={0x18, 0x0, &(0x7f0000000340)=[@request_death, @decrefs], 0x0, 0x1000000, 0x0}) 832.480964ms ago: executing program 2 (id=2218): r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) write$UHID_CREATE2(r0, 0x0, 0x119) r1 = syz_open_dev$hidraw(&(0x7f00000004c0), 0x0, 0x14a042) r2 = dup(r1) ioctl$HIDIOCSREPORT(r2, 0x400c4808, 0x0) 832.181124ms ago: executing program 3 (id=2219): r0 = openat$uinput(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$UI_DEV_DESTROY(r0, 0x5502) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r1, 0x1) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}}]}, &(0x7f0000000140)=0x10) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f0000000a80)={r4, 0x0, "132bf2b2631e4a669e5ab545f4df3af85ad7e43ec2b129366fe8ac9c1291a08c84ed3776ca81ad429d1e191a9da28672a0c89918f82b3644e9a664401d7ec9e25042e90414c4f943f35b4c60700c72b70000000000000003505b51bb8eeb1449cf9d99e7b3adbe3558ce2d6936970000000000000033bb5d6df9ccad91e68ef25fc13090e1d4fc2762b409ab624c2226c25046ec660f62e30273f0f80710a31a7e77320f2f4a668a4d04c2660c33d55c1a614dc7f7b661388c206c2866c471a6c8041154dda81b53b0e76e36baf7291a4b3a4fbaa730a40c37ccfeb40bbf81ce072c2f4babe8b3d02bf7acf1bc1a895954b126b13c2de9a82827b16cd7113a09dc75a66e9ae1818fcb99c0cdeda4aa33885c6cb93acf9df129e8e9fa70b45e564aa876eba6ff8a5cfbe113bc6a36953e928ab7df3e8729f2d823ccd4926d416ee924fc230371f8931349a964a27ec40ffd703e08754d8f7ec57c3373de88"}, &(0x7f0000000180)=0xfebd) 831.990764ms ago: executing program 0 (id=2220): bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x0, 0x5, 0x18, 0xffffeff3, 0x200, 0x1, 0xbc7, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x3, 0x1}, 0x50) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff) sendmsg$TIPC_NL_LINK_SET(r0, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x0) 831.803774ms ago: executing program 2 (id=2221): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', 0x0}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6) bpf$TOKEN_CREATE(0x24, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r6 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r6, &(0x7f00000014c0)={0x2, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="0218000014000000000000000000000005000500000000000a00ffff00000000fe8000000000000000000000000000aa0000000000000000080012000000000003000000000000001000000000000000000000000000000002000002000000000000000000000000fc010000000000000000000000000000050006006c0000000a"], 0xa0}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0xffe0}, {0xffff, 0xffff}, {0x10}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x4, 0x3, 0x0, 0x1}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x51}, 0x0) syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) unlinkat(0xffffffffffffff9c, &(0x7f0000000180)='./file0/file0\x00', 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newqdisc={0x178, 0x24, 0xd0f, 0x200000, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x148, 0x2, [@TCA_GRED_STAB={0x104, 0x2, "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"}, @TCA_GRED_PARMS={0x38, 0x1, {0x100, 0x5, 0x400, 0x9, 0x81, 0x101, 0xe, 0xc40, 0x7fffffff, 0xfffffffd, 0x20, 0xb, 0xff, 0x6, 0xca11, 0xfffe}}, @TCA_GRED_MAX_P={0x8, 0x4, 0x5}]}}]}, 0x178}, 0x1, 0x0, 0x0, 0x845}, 0x24008004) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0026}]}) acct(0x0) fdatasync(r1) 685.310649ms ago: executing program 0 (id=2222): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000840)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040084) r3 = socket$unix(0x1, 0x1, 0x0) r4 = socket$kcm(0x11, 0x3, 0x0) r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r5) socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000480)={'syzkaller0\x00', 0x0}) r7 = socket(0x400000000010, 0x3, 0x0) r8 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=@newtfilter={0x88, 0x2c, 0xd3f, 0x30bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, r9, {0xb, 0xfff3}, {}, {0x8, 0xe}}, [@filter_kind_options=@f_basic={{0xa}, {0x58, 0x2, [@TCA_BASIC_ACT={0x54, 0x3, [@m_connmark={0x50, 0x1, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xfffffffe, 0x2, 0x10000000, 0x6, 0x2}, 0x1}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}]}]}}]}, 0x88}, 0x1, 0x0, 0x0, 0x10}, 0x0) setsockopt$sock_attach_bpf(r4, 0x107, 0xf, &(0x7f0000000600), 0x56) sendmsg$kcm(r4, &(0x7f0000000000)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r6, 0x7}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000180)="27030200080314000e00072f01000000000000003cfdcb00000080ed00827600000000000100", 0x26}, {&(0x7f0000000780)="9942d6af00007f8f", 0x8}], 0x2}, 0x5) 455.470976ms ago: executing program 1 (id=2223): mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c1) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f00000002c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}) write$FUSE_NOTIFY_INVAL_INODE(r0, 0x0, 0x0) 207.519744ms ago: executing program 1 (id=2224): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000040), 0x6) r1 = socket$nl_generic(0x10, 0x3, 0x10) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0) sendmsg$IEEE802154_LLSEC_SETPARAMS(0xffffffffffffffff, &(0x7f0000006780)={0x0, 0x0, &(0x7f0000006740)={&(0x7f0000000180)=ANY=[@ANYRES8=r0, @ANYRES16=r3, @ANYRES32=r4, @ANYRES8=r1, @ANYRES32, @ANYRES16=r2, @ANYRES32=r0], 0x30}, 0x1, 0x0, 0x0, 0x8004}, 0x48000) ioctl$sock_bt_hci(r0, 0x800448d5, &(0x7f0000000440)="22bf8b43e5") 83.584968ms ago: executing program 0 (id=2225): r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) socket$qrtr(0x2a, 0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_BSS(r1, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f0000000c00)={0x24, r0, 0x40d, 0x70bd25, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_BSS_CTS_PROT={0x5, 0x1c, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x28080800}, 0x4004000) 50.590538ms ago: executing program 0 (id=2226): r0 = socket$packet(0x11, 0x3, 0x300) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x180, 0x0) close(r2) socket$nl_route(0x10, 0x3, 0x0) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000440)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfb, {0x0, 0x0, 0x0, r4, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x5, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0x7ffff, {0x0, 0x0, 0x0, r4, {0x0, 0xffe0}, {0xb, 0xb}, {0x0, 0x1}}}, 0x24}, 0x1, 0x0, 0x0, 0x404c800}, 0x400c000) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x207, 0x4) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'syzkaller0\x00', 0x0}) sendto$packet(r0, &(0x7f00000002c0)="05031620d3fc140000004788031c09102c28", 0xfdef, 0x4, &(0x7f0000000140)={0x11, 0x86dd, r6, 0x1, 0x0, 0x6, @multicast}, 0x14) 0s ago: executing program 4 (id=2227): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000380)={'syzkaller0\x00', 0x2}) r1 = socket$kcm(0x11, 0x3, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) r3 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) close(r3) r4 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000740)=@newqdisc={0x60, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2, 0x5}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_BURST={0x8, 0x6, 0x800}, @TCA_TBF_PARMS={0x28, 0x1, {{0x81, 0x0, 0xee8, 0x1c, 0x800, 0x8}, {0x7, 0x2, 0x7, 0x1003, 0x5, 0x20000007}, 0x6db6312a, 0x7, 0x1257}}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0) ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r6 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r6, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000480)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x0, 0x3}, {0xffff, 0xb}, {0x0, 0x1}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x4004}, 0x4850) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) setsockopt$sock_attach_bpf(r1, 0x107, 0xf, &(0x7f0000000600), 0x56) sendmsg$kcm(r1, &(0x7f00000000c0)={&(0x7f0000000580)=@xdp={0x2c, 0x700, r7, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000180)="27030200590214000600002fb96dbcf706e10500000086ddffff1144ee1611d4b8bf4a31accb", 0xfdef}], 0x1}, 0x0) kernel console output (not intermixed with test programs): 45.899538][ T4316] udevd[4316]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 45.899586][ T4567] udevd[4567]: inotify_add_watch(7, /dev/loop4p6, 10) failed: No such file or directory [ 45.902996][ T4317] udevd[4317]: inotify_add_watch(7, /dev/loop4p5, 10) failed: No such file or directory [ 45.908894][ T4339] EXT4-fs (loop4): unmounting filesystem. [ 45.910346][ T4625] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 45.911990][ T4625] FAT-fs (loop1): Filesystem has been set read-only [ 45.940074][ T4314] udevd[4314]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory [ 45.946593][ T4318] udevd[4318]: inotify_add_watch(7, /dev/loop4p8, 10) failed: No such file or directory [ 46.762982][ T4637] udevd[4637]: inotify_add_watch(7, /dev/loop4p10, 10) failed: No such file or directory [ 46.812684][ T4636] udevd[4636]: inotify_add_watch(7, /dev/loop4p9, 10) failed: No such file or directory [ 46.818610][ T4656] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 46.841335][ T4641] udevd[4641]: inotify_add_watch(7, /dev/loop4p14, 10) failed: No such file or directory [ 46.855940][ T4656] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 46.860222][ T4638] udevd[4638]: inotify_add_watch(7, /dev/loop4p11, 10) failed: No such file or directory [ 46.883595][ T4657] loop0: detected capacity change from 0 to 512 [ 46.891577][ T4657] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 46.930941][ T4657] EXT4-fs (loop0): 1 truncate cleaned up [ 46.932061][ T4657] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 46.977609][ T4326] EXT4-fs (loop0): unmounting filesystem. [ 47.016717][ T4664] loop0: detected capacity change from 0 to 512 [ 47.028929][ T4664] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 47.051227][ T4664] EXT4-fs (loop0): 1 truncate cleaned up [ 47.052381][ T4664] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 47.071655][ T4666] bridge0: port 1(bridge_slave_0) entered disabled state [ 47.098939][ T4666] bridge0: port 2(bridge_slave_1) entered disabled state [ 47.210975][ T4326] EXT4-fs (loop0): unmounting filesystem. [ 47.246174][ T4675] loop0: detected capacity change from 0 to 256 [ 47.282533][ T4660] loop1: detected capacity change from 0 to 40427 [ 47.285379][ T4660] F2FS-fs (loop1): Invalid SB checksum offset: 0 [ 47.287974][ T4660] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock [ 47.300491][ T4660] F2FS-fs (loop1): invalid crc value [ 47.951551][ T4660] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 47.996605][ T4660] F2FS-fs (loop1): Try to recover 2th superblock, ret: 0 [ 47.998022][ T4660] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 48.342254][ T4695] netlink: 20 bytes leftover after parsing attributes in process `syz.3.73'. [ 49.304383][ T4722] loop4: detected capacity change from 0 to 4096 [ 49.308246][ T4722] EXT4-fs: inline encryption not supported [ 49.312733][ T4722] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 49.315544][ T4722] EXT4-fs (loop4): Test dummy encryption mode enabled [ 49.323716][ T4722] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003] [ 49.325504][ T4722] System zones: 0-5 [ 49.351237][ T4722] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 49.405637][ T4339] EXT4-fs (loop4): unmounting filesystem. [ 49.482041][ T4732] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 49.486625][ T4732] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 49.497747][ T4732] xt_hashlimit: size too large, truncated to 1048576 [ 49.574507][ T4735] loop4: detected capacity change from 0 to 512 [ 49.578115][ T4735] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 49.586453][ T4735] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 49.599519][ T4735] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ee02c, mo2=0002] [ 49.603439][ T4735] System zones: 1-12 [ 49.917283][ T4735] EXT4-fs (loop4): orphan cleanup on readonly fs [ 49.947136][ T4735] EXT4-fs error (device loop4): ext4_get_branch:178: inode #11: block 33619980: comm syz.4.85: invalid block [ 50.033577][ T4735] EXT4-fs (loop4): Remounting filesystem read-only [ 50.049675][ T4735] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.85: invalid indirect mapped block 2 (level 2) [ 50.133992][ T4735] EXT4-fs (loop4): Remounting filesystem read-only [ 50.135824][ T4735] EXT4-fs (loop4): 1 truncate cleaned up [ 50.139215][ T4735] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 51.074046][ T4714] loop3: detected capacity change from 0 to 131072 [ 51.091099][ T4314] udevd[4314]: inotify_add_watch(7, /dev/loop4p10, 10) failed: No such file or directory [ 51.102353][ T4714] F2FS-fs (loop3): Found nat_bits in checkpoint [ 51.111174][ T4641] udevd[4641]: inotify_add_watch(7, /dev/loop4p8, 10) failed: No such file or directory [ 51.119247][ T4714] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 51.125145][ T4567] udevd[4567]: inotify_add_watch(7, /dev/loop4p9, 10) failed: No such file or directory [ 51.130714][ T4714] F2FS-fs (loop3): lookup inode (7) has corrupted xattr [ 51.132036][ T4638] udevd[4638]: inotify_add_watch(7, /dev/loop4p11, 10) failed: No such file or directory [ 51.141014][ T4714] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=fff70000, run fsck to fix. [ 51.142953][ T4317] udevd[4317]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory [ 51.143603][ T4316] udevd[4316]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 51.162171][ T4640] udevd[4640]: inotify_add_watch(7, /dev/loop4p6, 10) failed: No such file or directory [ 51.217828][ T4317] udevd[4317]: inotify_add_watch(7, /dev/loop4p12, 10) failed: No such file or directory [ 51.226545][ T4637] udevd[4637]: inotify_add_watch(7, /dev/loop4p5, 10) failed: No such file or directory [ 51.245578][ T4636] udevd[4636]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 51.295524][ T4760] tipc: Enabled bearer , priority 10 [ 52.169966][ T27] audit: type=1326 audit(52.160:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4780 comm="syz.0.100" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffff9bb77a28 code=0x0 [ 52.982628][ T4807] loop0: detected capacity change from 0 to 256 [ 52.986308][ T4807] exfat: Deprecated parameter 'namecase' [ 52.988737][ T4807] exfat: Deprecated parameter 'namecase' [ 52.992138][ T4807] exfat: Bad value for 'errors' [ 53.162168][ T4801] loop3: detected capacity change from 0 to 40427 [ 53.171483][ T4801] F2FS-fs (loop3): build fault injection attr: rate: 174, type: 0x3ffff [ 53.290047][ T4813] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.295155][ T4813] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.527022][ T4567] I/O error, dev loop3, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 53.654317][ T4823] loop3: detected capacity change from 0 to 512 [ 53.657279][ T4823] EXT4-fs: Ignoring removed nobh option [ 53.811663][ T4823] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 53.849536][ T4325] EXT4-fs (loop3): unmounting filesystem. [ 54.045684][ T4837] loop0: detected capacity change from 0 to 4096 [ 54.047612][ T4837] EXT4-fs: inline encryption not supported [ 54.057184][ T4837] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 54.062184][ T4837] EXT4-fs (loop0): Test dummy encryption mode enabled [ 54.077683][ T4837] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a85ec028, mo2=0003] [ 54.079553][ T4837] System zones: 0-5 [ 54.088581][ T4837] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 54.122095][ T4326] EXT4-fs (loop0): unmounting filesystem. [ 54.139903][ T4843] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 54.145101][ T4843] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 55.718054][ T4854] loop1: detected capacity change from 0 to 512 [ 55.758534][ T4854] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 56.267970][ T4339] EXT4-fs (loop4): unmounting filesystem. [ 56.508275][ T4883] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.510722][ T4883] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.586849][ T4884] loop3: detected capacity change from 0 to 128 [ 58.130883][ T4884] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 58.153224][ T4882] block device autoloading is deprecated and will be removed. [ 58.160576][ T4882] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 58.162113][ T4882] FAT-fs (loop3): Filesystem has been set read-only [ 58.239097][ T4324] EXT4-fs (loop1): unmounting filesystem. [ 58.389254][ T4895] loop1: detected capacity change from 0 to 512 [ 58.770360][ T4895] EXT4-fs (loop1): 1 truncate cleaned up [ 58.771660][ T4895] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 59.220255][ T4914] xt_TPROXY: Can be used only with -p tcp or -p udp [ 59.221100][ T4914] netlink: 68 bytes leftover after parsing attributes in process `syz.1.137'. [ 59.581243][ T4918] tipc: Can't bind to reserved service type 1 [ 59.652730][ T7] kernel write not supported for file /uinput (pid: 7 comm: kworker/0:0) [ 59.665378][ T4324] EXT4-fs (loop1): unmounting filesystem. [ 59.774035][ T4937] loop0: detected capacity change from 0 to 512 [ 59.797002][ T4937] EXT4-fs error (device loop0): ext4_validate_block_bitmap:429: comm syz.0.152: bg 0: block 104: invalid block bitmap [ 59.938208][ T4937] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6180: Corrupt filesystem [ 59.946499][ T4937] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.152: invalid indirect mapped block 1 (level 1) [ 59.959881][ T4937] EXT4-fs (loop0): 1 truncate cleaned up [ 59.972324][ T4937] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 60.342461][ T4326] EXT4-fs (loop0): unmounting filesystem. [ 60.805027][ T4965] loop2: detected capacity change from 0 to 8192 [ 61.135973][ T4974] loop4: detected capacity change from 0 to 40427 [ 61.151314][ T4974] F2FS-fs (loop4): Invalid SB checksum offset: 0 [ 61.152711][ T4974] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 61.159724][ T4974] F2FS-fs (loop4): invalid crc value [ 61.192571][ T4974] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 61.221502][ T4974] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 61.222989][ T4974] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 62.307853][ T5013] bridge0: port 1(bridge_slave_0) entered disabled state [ 62.312258][ T5013] bridge0: port 2(bridge_slave_1) entered disabled state [ 62.523519][ T5010] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 62.525185][ T5010] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 62.665438][ T27] audit: type=1326 audit(62.428:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5024 comm="syz.0.182" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffff9bb77a28 code=0x0 [ 64.302945][ T5058] netlink: 193 bytes leftover after parsing attributes in process `syz.0.191'. [ 64.495567][ T5065] 9pnet_fd: Insufficient options for proto=fd [ 64.775306][ T5070] loop3: detected capacity change from 0 to 512 [ 64.839268][ T2060] ieee802154 phy0 wpan0: encryption failed: -22 [ 64.840619][ T2060] ieee802154 phy1 wpan1: encryption failed: -22 [ 64.863533][ T5070] EXT4-fs (loop3): Test dummy encryption mode enabled [ 64.979564][ T5070] EXT4-fs error (device loop3): ext4_orphan_get:1405: inode #15: comm syz.3.197: inode has both inline data and extents flags [ 64.995865][ T5070] EXT4-fs error (device loop3): ext4_orphan_get:1410: comm syz.3.197: couldn't read orphan inode 15 (err -117) [ 65.179342][ T5070] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 65.197527][ T5070] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-ce" [ 65.240478][ T4325] EXT4-fs (loop3): unmounting filesystem. [ 65.376968][ T5062] loop2: detected capacity change from 0 to 131072 [ 65.387794][ T5062] F2FS-fs (loop2): Test dummy encryption mode enabled [ 65.392379][ T5062] F2FS-fs (loop2): invalid crc value [ 65.414597][ T5062] F2FS-fs (loop2): Found nat_bits in checkpoint [ 65.435792][ T5062] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 65.503345][ T5058] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 65.517338][ T5076] loop4: detected capacity change from 0 to 40427 [ 65.528005][ T5076] F2FS-fs (loop4): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288) [ 65.529735][ T5076] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 65.531360][ T5076] F2FS-fs (loop4): build fault injection attr: rate: 0, type: 0x35f7 [ 65.534266][ T5076] F2FS-fs (loop4): build fault injection attr: rate: 690, type: 0x3ffff [ 65.552951][ T5076] F2FS-fs (loop4): invalid crc value [ 65.556809][ T5058] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 65.571768][ T5076] F2FS-fs (loop4): Found nat_bits in checkpoint [ 65.587643][ T5076] F2FS-fs (loop4): Start checkpoint disabled! [ 65.605560][ T5076] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 65.606877][ T5076] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6 [ 65.617616][ T5076] syz.4.198: attempt to access beyond end of device [ 65.617616][ T5076] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 65.641082][ T5076] syz.4.198: attempt to access beyond end of device [ 65.641082][ T5076] loop4: rw=2049, sector=45104, nr_sectors = 40 limit=40427 [ 65.643798][ T5076] syz.4.198: attempt to access beyond end of device [ 65.643798][ T5076] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 65.713426][ T4354] kworker/u4:5: attempt to access beyond end of device [ 65.713426][ T4354] loop4: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 65.742044][ T27] audit: type=1400 audit(65.301:4): apparmor="DENIED" operation="setprocattr" info="fscreate" error=-22 profile="unconfined" pid=5103 comm="syz.1.205" [ 65.823977][ T27] audit: type=1400 audit(65.375:5): apparmor="DENIED" operation="setprocattr" info="fscreate" error=-22 profile="unconfined" pid=5105 comm="syz.1.206" [ 65.869765][ T27] audit: type=1400 audit(65.422:6): apparmor="DENIED" operation="setprocattr" info="fscreate" error=-22 profile="unconfined" pid=5110 comm="syz.4.204" [ 66.033932][ T5058] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 66.036030][ T5058] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 66.037898][ T5058] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 66.040844][ T5058] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 66.069483][ T5111] loop4: detected capacity change from 0 to 40427 [ 66.081588][ T5111] F2FS-fs (loop4): Invalid SB checksum offset: 0 [ 66.084389][ T5111] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 66.112249][ T5111] F2FS-fs (loop4): invalid crc value [ 66.136994][ T5111] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 66.162641][ T5111] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 66.164424][ T5111] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 66.594227][ T5112] loop3: detected capacity change from 0 to 131072 [ 66.604460][ T5112] F2FS-fs (loop3): Test dummy encryption mode enabled [ 66.611408][ T5112] F2FS-fs (loop3): invalid crc value [ 66.617169][ T5112] F2FS-fs (loop3): Found nat_bits in checkpoint [ 66.638604][ T5112] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 66.761466][ T5133] loop2: detected capacity change from 0 to 256 [ 66.771273][ T5133] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x33d7a56e, utbl_chksum : 0xe619d30d) [ 66.834247][ T5135] loop1: detected capacity change from 0 to 4096 [ 66.869351][ T5135] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 66.884753][ T4339] syz-executor: attempt to access beyond end of device [ 66.884753][ T4339] loop4: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 66.969201][ T5140] loop3: detected capacity change from 0 to 128 [ 66.970971][ T5140] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 67.035302][ T5140] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 67.973081][ T4324] EXT4-fs (loop1): unmounting filesystem. [ 67.997693][ T5150] serio: Serial port ptm0 [ 68.100107][ T5166] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized [ 68.161927][ T5175] binder: 5173:5175 tried to acquire reference to desc 0, got 1 instead [ 68.181263][ T7] binder: undelivered transaction 5, process died. [ 68.240526][ T5179] device bridge_slave_1 left promiscuous mode [ 68.242648][ T5179] bridge0: port 2(bridge_slave_1) entered disabled state [ 68.289101][ T5179] device bridge_slave_0 left promiscuous mode [ 68.290634][ T5179] bridge0: port 1(bridge_slave_0) entered disabled state [ 68.292435][ T5186] loop3: detected capacity change from 0 to 1024 [ 68.294775][ T5186] EXT4-fs: Ignoring removed mblk_io_submit option [ 68.297684][ T5190] loop4: detected capacity change from 0 to 256 [ 68.299609][ T5188] netlink: 8 bytes leftover after parsing attributes in process `syz.2.232'. [ 68.302684][ T5186] EXT4-fs (loop3): bad geometry: bigalloc file system with non-zero first_data_block [ 68.302684][ T5186] [ 68.310465][ T5190] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x68afaf67, utbl_chksum : 0xe619d30d) [ 68.330792][ T5190] [syz.4.230/5190] FS: loop4 File: /file1 would truncate fibmap result [ 68.343840][ T5192] syz.2.233 uses obsolete (PF_INET,SOCK_PACKET) [ 68.351966][ T4636] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 68.418682][ T5196] loop3: detected capacity change from 0 to 1024 [ 68.421600][ T5196] EXT4-fs: Ignoring removed mblk_io_submit option [ 68.425710][ T5198] loop2: detected capacity change from 0 to 512 [ 68.427490][ T5196] EXT4-fs: Ignoring removed bh option [ 68.435347][ T5198] EXT4-fs: Ignoring removed i_version option [ 68.472072][ T5196] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 68.482118][ T5196] EXT4-fs (loop3): shut down requested (2) [ 68.484584][ T5198] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 68.522339][ T4325] EXT4-fs (loop3): unmounting filesystem. [ 68.527823][ T4330] EXT4-fs (loop2): unmounting filesystem. [ 68.606064][ T5208] loop3: detected capacity change from 0 to 4096 [ 68.611428][ T5208] EXT4-fs: inline encryption not supported [ 68.617505][ T5208] EXT4-fs (loop3): Test dummy encryption mode enabled [ 68.619685][ T5200] loop4: detected capacity change from 0 to 40427 [ 68.622642][ T5200] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 68.624144][ T5208] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003] [ 68.625711][ T5208] System zones: 0-5 [ 68.627122][ T5200] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 68.628966][ T5208] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 68.634774][ T5200] F2FS-fs (loop4): invalid crc value [ 68.677127][ T5200] F2FS-fs (loop4): Found nat_bits in checkpoint [ 68.685423][ T4325] EXT4-fs (loop3): unmounting filesystem. [ 68.730131][ T5200] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 68.731726][ T5200] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 68.747483][ T5200] syz.4.237: attempt to access beyond end of device [ 68.747483][ T5200] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 68.763990][ T5219] EXT4-fs: Ignoring removed nobh option [ 68.768232][ T5219] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 68.788289][ T5219] EXT4-fs (loop1): 1 truncate cleaned up [ 68.790085][ T5219] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 68.872105][ T5219] EXT4-fs warning (device loop1): verify_group_input:151: Cannot add at group 261 (only 1 groups) [ 69.183237][ T5227] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 69.185176][ T5227] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 69.373944][ T4324] EXT4-fs (loop1): unmounting filesystem. [ 69.381658][ T5227] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 69.567648][ T5174] F2FS-fs (loop0): Wrong NAT boundary, start(2560) end(5) blocks(1024) [ 69.570107][ T5174] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock [ 69.598400][ T5174] F2FS-fs (loop0): Found nat_bits in checkpoint [ 69.613119][ T5174] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0 [ 69.614973][ T5174] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 69.628010][ T5174] syz.0.225 (pid 5174) is setting an IV_INO_LBLK_32 encryption policy. This should only be used if there are certain hardware limitations. [ 69.731151][ T5233] F2FS-fs (loop2): Invalid SB checksum offset: 0 [ 69.738016][ T5233] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock [ 69.740416][ T5233] F2FS-fs (loop2): invalid crc value [ 69.763219][ T5233] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 69.797902][ T5233] F2FS-fs (loop2): Try to recover 2th superblock, ret: 0 [ 69.799825][ T5233] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 69.843942][ T4330] syz-executor: attempt to access beyond end of device [ 69.843942][ T4330] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 70.091802][ T5271] EXT4-fs: Ignoring removed bh option [ 70.130753][ T5271] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 70.140305][ T5271] EXT4-fs error (device loop4): ext4_map_blocks:747: inode #15: block 3: comm syz.4.258: lblock 3 mapped to illegal pblock 3 (length 3) [ 70.151213][ T5280] EXT4-fs: Ignoring removed nobh option [ 70.162681][ T5271] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117 [ 70.166447][ T5271] EXT4-fs (loop4): This should not happen!! Data will be lost [ 70.166447][ T5271] [ 70.174339][ T5271] EXT4-fs error (device loop4): ext4_map_blocks:637: inode #15: block 3: comm syz.4.258: lblock 3 mapped to illegal pblock 3 (length 1) [ 70.183590][ T5271] EXT4-fs error (device loop4): ext4_map_blocks:637: inode #15: block 3: comm syz.4.258: lblock 3 mapped to illegal pblock 3 (length 1) [ 70.190445][ T5271] EXT4-fs error (device loop4): ext4_map_blocks:637: inode #15: block 3: comm syz.4.258: lblock 3 mapped to illegal pblock 3 (length 1) [ 70.192036][ T5280] EXT4-fs error (device loop0): __ext4_fill_super:5465: inode #2: comm syz.0.261: iget: bogus i_mode (1755) [ 70.197724][ T5271] EXT4-fs error (device loop4): ext4_map_blocks:637: inode #15: block 3: comm syz.4.258: lblock 3 mapped to illegal pblock 3 (length 1) [ 70.198235][ T5280] EXT4-fs (loop0): get root inode failed [ 70.208973][ T5280] EXT4-fs (loop0): mount failed [ 70.209180][ T5271] EXT4-fs error (device loop4): ext4_map_blocks:637: inode #15: block 3: comm syz.4.258: lblock 3 mapped to illegal pblock 3 (length 1) [ 70.215262][ T5271] EXT4-fs error (device loop4): ext4_map_blocks:637: inode #15: block 3: comm syz.4.258: lblock 3 mapped to illegal pblock 3 (length 1) [ 70.218390][ T5271] EXT4-fs error (device loop4): ext4_map_blocks:637: inode #15: block 3: comm syz.4.258: lblock 3 mapped to illegal pblock 3 (length 1) [ 70.224224][ T5271] EXT4-fs error (device loop4): ext4_map_blocks:637: inode #15: block 3: comm syz.4.258: lblock 3 mapped to illegal pblock 3 (length 1) [ 70.230732][ T5286] EXT4-fs error (device loop4): ext4_map_blocks:637: inode #15: block 3: comm syz.4.258: lblock 3 mapped to illegal pblock 3 (length 1) [ 70.310293][ T22] cfg80211: failed to load regulatory.db [ 70.348517][ T4339] EXT4-fs (loop4): unmounting filesystem. [ 70.365825][ T5290] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 70.378882][ T5290] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock [ 70.380422][ T5290] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock [ 70.382170][ T5290] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 1 overlaps superblock [ 70.423508][ T5294] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 70.452087][ T5290] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 70.459196][ T5290] EXT4-fs (loop1): orphan cleanup on readonly fs [ 70.469518][ T5290] Quota error (device loop1): find_tree_dqentry: Cycle in quota tree detected: block 3 index 0 [ 70.478818][ T5290] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0 [ 70.485902][ T5294] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 70.507985][ T5290] EXT4-fs error (device loop1): ext4_acquire_dquot:6841: comm syz.1.264: Failed to acquire dquot type 1 [ 70.538766][ T5290] EXT4-fs (loop1): 1 truncate cleaned up [ 70.540341][ T5290] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 70.580594][ T5294] EXT4-fs warning (device loop0): ext4_group_add:1743: No reserved GDT blocks, can't resize [ 70.656325][ T4326] EXT4-fs (loop0): unmounting filesystem. [ 70.699804][ T4324] EXT4-fs (loop1): unmounting filesystem. [ 71.391447][ T5322] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011a39, chksum : 0xd54015fb, utbl_chksum : 0xe619d30d) [ 71.474883][ T5332] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 71.483315][ T5332] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 71.534941][ T5334] FAT-fs (loop4): Directory bread(block 64) failed [ 71.540840][ T5334] FAT-fs (loop4): Directory bread(block 65) failed [ 71.545638][ T5334] FAT-fs (loop4): Directory bread(block 66) failed [ 71.554810][ T5334] FAT-fs (loop4): Directory bread(block 67) failed [ 71.561847][ T5334] FAT-fs (loop4): Directory bread(block 68) failed [ 71.568837][ T5334] FAT-fs (loop4): Directory bread(block 69) failed [ 71.572507][ T5334] FAT-fs (loop4): Directory bread(block 70) failed [ 71.575858][ T5334] FAT-fs (loop4): Directory bread(block 71) failed [ 71.579754][ T5334] FAT-fs (loop4): Directory bread(block 72) failed [ 71.583441][ T5334] FAT-fs (loop4): Directory bread(block 73) failed [ 72.371333][ T5360] set_capacity_and_notify: 9 callbacks suppressed [ 72.371342][ T5360] loop4: detected capacity change from 0 to 40427 [ 72.379178][ T5360] F2FS-fs (loop4): Invalid SB checksum offset: 0 [ 72.382330][ T5360] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 72.388874][ T5360] F2FS-fs (loop4): invalid crc value [ 72.415175][ T5360] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 72.431327][ T5360] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 72.433654][ T5360] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 72.497214][ T5372] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 72.498972][ T5372] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 72.571608][ T5346] loop3: detected capacity change from 0 to 131072 [ 72.581682][ T5346] F2FS-fs (loop3): Wrong NAT boundary, start(2560) end(5) blocks(1024) [ 72.583239][ T5346] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 72.605530][ T5346] F2FS-fs (loop3): Found nat_bits in checkpoint [ 72.613501][ T5346] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 72.614882][ T5346] F2FS-fs (loop3): Mounted with checkpoint version = 753bd00b [ 73.251146][ T5412] netlink: 12 bytes leftover after parsing attributes in process `syz.3.305'. [ 73.991073][ T5436] loop0: detected capacity change from 0 to 40427 [ 74.000877][ T5436] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 74.002638][ T5436] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 74.004942][ T5436] F2FS-fs (loop0): invalid crc value [ 74.045373][ T5436] F2FS-fs (loop0): Found nat_bits in checkpoint [ 74.119712][ T5436] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 74.121346][ T5436] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 74.165570][ T5454] device syzkaller0 entered promiscuous mode [ 74.239451][ T5456] device gretap0 entered promiscuous mode [ 74.871144][ T5476] netlink: 28 bytes leftover after parsing attributes in process `syz.3.328'. [ 74.873274][ T5476] netlink: 28 bytes leftover after parsing attributes in process `syz.3.328'. [ 74.876263][ T5469] netlink: 28 bytes leftover after parsing attributes in process `syz.2.324'. [ 74.878449][ T5469] 8021q: adding VLAN 0 to HW filter on device bond1 [ 74.993562][ T5485] loop2: detected capacity change from 0 to 764 [ 75.030853][ T5485] Symlink component flag not implemented [ 75.036174][ T5485] Symlink component flag not implemented [ 75.038690][ T5485] Symlink component flag not implemented (129) [ 75.042314][ T5485] Symlink component flag not implemented (6) [ 75.106568][ T5495] device syzkaller0 entered promiscuous mode [ 75.542395][ T5523] loop0: detected capacity change from 0 to 128 [ 75.568422][ T5523] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 75.570920][ T5523] FAT-fs (loop0): Filesystem has been set read-only [ 75.626376][ T5529] loop4: detected capacity change from 0 to 512 [ 75.681167][ T5529] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 76.005842][ T4339] EXT4-fs (loop4): unmounting filesystem. [ 76.078823][ T5539] device syzkaller0 entered promiscuous mode [ 76.236113][ T5549] netlink: 14 bytes leftover after parsing attributes in process `syz.4.358'. [ 76.339441][ T5549] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 76.376884][ T5549] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 76.424147][ T5549] bond0 (unregistering): Released all slaves [ 76.598125][ T5582] loop3: detected capacity change from 0 to 512 [ 76.614317][ T5582] EXT4-fs (loop3): unsupported inode size: 143 [ 76.615650][ T5582] EXT4-fs (loop3): blocksize: 2048 [ 77.528855][ T5621] netlink: 8 bytes leftover after parsing attributes in process `syz.4.388'. [ 77.921592][ T5636] loop4: detected capacity change from 0 to 512 [ 77.926110][ T5636] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 77.933572][ T5636] EXT4-fs (loop4): 1 truncate cleaned up [ 77.934871][ T5636] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 77.965217][ T4339] EXT4-fs (loop4): unmounting filesystem. [ 78.317068][ T5645] loop1: detected capacity change from 0 to 512 [ 78.357255][ T4636] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 78.738957][ T5684] loop4: detected capacity change from 0 to 512 [ 78.741055][ T5684] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 78.746832][ T5684] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.414: invalid indirect mapped block 256 (level 2) [ 78.749799][ T5684] EXT4-fs (loop4): 2 truncates cleaned up [ 78.751116][ T5684] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 78.764928][ T4339] EXT4-fs (loop4): unmounting filesystem. [ 79.661418][ T5705] device syzkaller0 entered promiscuous mode [ 80.347435][ T5722] netlink: 8 bytes leftover after parsing attributes in process `syz.4.427'. [ 80.350249][ T5722] netlink: 8 bytes leftover after parsing attributes in process `syz.4.427'. [ 80.352186][ T5722] netlink: 8 bytes leftover after parsing attributes in process `syz.4.427'. [ 80.354967][ T5722] netlink: 8 bytes leftover after parsing attributes in process `syz.4.427'. [ 80.357271][ T5722] netlink: 8 bytes leftover after parsing attributes in process `syz.4.427'. [ 80.836525][ T5740] loop1: detected capacity change from 0 to 256 [ 80.843730][ T5742] loop3: detected capacity change from 0 to 128 [ 80.851018][ T5742] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 80.860927][ T5742] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 80.877087][ T5743] loop2: detected capacity change from 0 to 2048 [ 80.879129][ T5743] EXT4-fs: Ignoring removed nomblk_io_submit option [ 80.957043][ T5743] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 80.979434][ T4477] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 80.995987][ T5743] EXT4-fs error (device loop2): ext4_find_inline_data_nolock:164: inode #15: comm syz.2.435: inline data xattr refers to an external xattr inode [ 81.303026][ T5743] EXT4-fs (loop2): Remounting filesystem read-only [ 81.343274][ T4330] EXT4-fs (loop2): unmounting filesystem. [ 81.406990][ T5763] netlink: 48 bytes leftover after parsing attributes in process `syz.3.443'. [ 81.409876][ T5763] netlink: 48 bytes leftover after parsing attributes in process `syz.3.443'. [ 82.371826][ T27] audit: type=1326 audit(80.863:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5792 comm="syz.1.452" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb9377a28 code=0x7ffc0000 [ 82.376741][ T27] audit: type=1326 audit(80.863:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5792 comm="syz.1.452" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb9377a28 code=0x7ffc0000 [ 82.389319][ T27] audit: type=1326 audit(80.863:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5792 comm="syz.1.452" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb9377a28 code=0x7ffc0000 [ 82.403588][ T27] audit: type=1326 audit(80.863:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5792 comm="syz.1.452" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb9377a28 code=0x7ffc0000 [ 82.413894][ T27] audit: type=1326 audit(80.863:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5792 comm="syz.1.452" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=209 compat=0 ip=0xffffb9377a28 code=0x7ffc0000 [ 82.419831][ T27] audit: type=1326 audit(80.863:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5792 comm="syz.1.452" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb9377a28 code=0x7ffc0000 [ 82.427048][ T27] audit: type=1326 audit(80.863:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5792 comm="syz.1.452" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb9377a28 code=0x7ffc0000 [ 82.431543][ T27] audit: type=1326 audit(80.863:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5792 comm="syz.1.452" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=436 compat=0 ip=0xffffb9377a28 code=0x7ffc0000 [ 82.435952][ T27] audit: type=1326 audit(80.863:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5792 comm="syz.1.452" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=94 compat=0 ip=0xffffb9377a28 code=0x7ffc0000 [ 83.438462][ T5819] team0 (unregistering): Port device team_slave_0 removed [ 83.444129][ T5819] team0 (unregistering): Failed to send options change via netlink (err -105) [ 83.447776][ T5819] team0 (unregistering): Failed to send port change of device team_slave_1 via netlink (err -105) [ 83.450463][ T5819] team0 (unregistering): Port device team_slave_1 removed [ 84.805600][ T27] audit: type=1400 audit(83.146:16): apparmor="DENIED" operation="setprocattr" info="fscreate" error=-22 profile="unconfined" pid=5856 comm="syz.2.473" [ 84.849105][ T5859] loop3: detected capacity change from 0 to 512 [ 84.875566][ T5859] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 84.877147][ T5861] loop0: detected capacity change from 0 to 1764 [ 84.915670][ T4325] EXT4-fs (loop3): unmounting filesystem. [ 85.020586][ T5857] loop2: detected capacity change from 0 to 40427 [ 85.028320][ T5857] F2FS-fs (loop2): Invalid SB checksum offset: 0 [ 85.031014][ T5857] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock [ 85.033536][ T5857] F2FS-fs (loop2): invalid crc value [ 85.060541][ T5857] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 85.193740][ T5857] F2FS-fs (loop2): Try to recover 2th superblock, ret: 0 [ 85.365690][ T5857] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 85.931450][ T5891] loop4: detected capacity change from 0 to 128 [ 85.947615][ T5891] FAT-fs (loop4): bogus number of reserved sectors [ 85.949082][ T5891] FAT-fs (loop4): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero [ 85.954784][ T5891] FAT-fs (loop4): Can't find a valid FAT filesystem [ 86.329527][ T4330] syz-executor: attempt to access beyond end of device [ 86.329527][ T4330] loop2: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 86.423722][ T4318] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 87.692219][ T5928] 9pnet_fd: Insufficient options for proto=fd [ 87.738024][ T5930] loop4: detected capacity change from 0 to 1024 [ 87.741444][ T5932] loop2: detected capacity change from 0 to 256 [ 87.756578][ T5930] EXT4-fs: Ignoring removed oldalloc option [ 87.813669][ T5933] bridge0: port 1(bridge_slave_0) entered disabled state [ 87.816576][ T5930] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 87.827252][ T5933] bridge0: port 2(bridge_slave_1) entered disabled state [ 87.884342][ T4339] EXT4-fs (loop4): unmounting filesystem. [ 88.934173][ T5968] 9pnet_fd: Insufficient options for proto=fd [ 89.355402][ T5979] netlink: 3 bytes leftover after parsing attributes in process `syz.2.514'. [ 89.397039][ T5983] loop2: detected capacity change from 0 to 512 [ 89.421675][ T5983] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 89.438769][ T4330] EXT4-fs (loop2): unmounting filesystem. [ 89.447710][ T5988] bridge0: port 3(syz_tun) entered blocking state [ 89.450533][ T5988] bridge0: port 3(syz_tun) entered disabled state [ 89.453924][ T5988] device syz_tun entered promiscuous mode [ 89.524710][ T5990] device syzkaller0 entered promiscuous mode [ 89.923786][ T6000] bond0: (slave bond_slave_0): Releasing backup interface [ 89.952226][ T6003] 9pnet_fd: Insufficient options for proto=fd [ 89.956890][ T6000] bond0: (slave bond_slave_1): Releasing backup interface [ 90.023337][ T6000] team0: Port device team_slave_0 removed [ 90.082963][ T6000] team0: Port device team_slave_1 removed [ 90.084765][ T6000] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 90.089489][ T6000] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 90.096567][ T6000] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 90.096587][ T6000] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 90.133757][ T6014] device syzkaller1 entered promiscuous mode [ 90.457469][ T6028] device syzkaller0 entered promiscuous mode [ 91.076264][ T6044] PF_CAN: dropped non conform CAN XL skbuff: dev type 65534, len 40 [ 91.136880][ T6045] 9pnet_fd: Insufficient options for proto=fd [ 91.932975][ T6065] netlink: 76 bytes leftover after parsing attributes in process `syz.1.547'. [ 92.376502][ T6063] loop3: detected capacity change from 0 to 131072 [ 92.385997][ T6063] F2FS-fs (loop3): Wrong NAT boundary, start(2560) end(5) blocks(1024) [ 92.389297][ T6063] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 92.400609][ T6063] F2FS-fs (loop3): Found nat_bits in checkpoint [ 92.418788][ T6063] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 92.421445][ T6063] F2FS-fs (loop3): Mounted with checkpoint version = 753bd00b [ 92.464268][ T6063] fscrypt: loop3: 2 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 5 [ 93.371134][ T6111] 9pnet_fd: Insufficient options for proto=fd [ 93.756212][ T6117] device syzkaller0 entered promiscuous mode [ 94.159814][ T6125] device syzkaller0 entered promiscuous mode [ 94.689626][ T6141] netlink: 20 bytes leftover after parsing attributes in process `syz.3.565'. [ 94.693082][ T6141] device geneve2 entered promiscuous mode [ 94.794889][ T6143] loop3: detected capacity change from 0 to 512 [ 94.963206][ T6152] device syzkaller0 entered promiscuous mode [ 95.296975][ T6160] loop2: detected capacity change from 0 to 764 [ 95.325712][ T6161] 9pnet_fd: Insufficient options for proto=fd [ 95.549589][ T6086] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 95.660635][ T6171] netlink: 12 bytes leftover after parsing attributes in process `syz.2.578'. [ 95.700917][ T6174] set match dimension is over the limit! [ 95.751481][ T6179] loop2: detected capacity change from 0 to 1024 [ 95.761272][ T6179] EXT4-fs: Ignoring removed oldalloc option [ 95.817980][ T6179] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 95.847687][ T4330] EXT4-fs (loop2): unmounting filesystem. [ 96.215547][ T6209] netlink: 12 bytes leftover after parsing attributes in process `syz.4.593'. [ 96.257896][ T6211] netlink: 76 bytes leftover after parsing attributes in process `syz.0.592'. [ 96.371411][ T6222] loop4: detected capacity change from 0 to 512 [ 96.503225][ T6227] netlink: 'syz.2.595': attribute type 21 has an invalid length. [ 96.504834][ T6227] netlink: 36 bytes leftover after parsing attributes in process `syz.2.595'. [ 97.465398][ T6242] loop3: detected capacity change from 0 to 128 [ 97.483977][ T6244] netlink: 12 bytes leftover after parsing attributes in process `syz.2.604'. [ 97.504347][ T6242] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 97.543489][ T4325] EXT4-fs (loop3): unmounting filesystem. [ 97.644690][ T6260] loop4: detected capacity change from 0 to 512 [ 97.653330][ T6260] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 97.658564][ T6266] netlink: 76 bytes leftover after parsing attributes in process `syz.2.610'. [ 97.729104][ T4339] EXT4-fs (loop4): unmounting filesystem. [ 97.765440][ T6276] device syzkaller0 entered promiscuous mode [ 97.987163][ T6288] netlink: 'syz.1.614': attribute type 21 has an invalid length. [ 97.988670][ T6288] netlink: 36 bytes leftover after parsing attributes in process `syz.1.614'. [ 98.906038][ T6297] device gretap0 entered promiscuous mode [ 98.974565][ T6301] loop2: detected capacity change from 0 to 128 [ 98.979467][ T6301] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 98.984901][ T6301] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 99.068686][ T6301] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 99.070492][ T6301] FAT-fs (loop2): Filesystem has been set read-only [ 100.057509][ T6328] loop0: detected capacity change from 0 to 128 [ 100.067957][ T6328] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 100.084328][ T6328] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 100.111639][ T6331] device syzkaller0 entered promiscuous mode [ 100.208029][ T4373] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 100.387400][ T6342] device syzkaller0 entered promiscuous mode [ 101.789979][ T6398] device syzkaller0 entered promiscuous mode [ 102.154996][ T6414] device syzkaller0 entered promiscuous mode [ 103.028974][ T6450] 9pnet_virtio: no channels available for device syz [ 103.043585][ T6451] block device autoloading is deprecated and will be removed. [ 103.103809][ T6455] device syzkaller0 entered promiscuous mode [ 103.173372][ T6459] loop1: detected capacity change from 0 to 1024 [ 103.174992][ T6459] EXT4-fs: Ignoring removed oldalloc option [ 103.181276][ T27] audit: type=1400 audit(100.346:17): apparmor="DENIED" operation="setprocattr" info="fscreate" error=-22 profile="unconfined" pid=6457 comm="syz.0.678" [ 103.200114][ T6459] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 103.232099][ T4324] EXT4-fs (loop1): unmounting filesystem. [ 103.380349][ T6476] device syzkaller0 entered promiscuous mode [ 103.407717][ T6477] block device autoloading is deprecated and will be removed. [ 103.725989][ T6489] loop1: detected capacity change from 0 to 128 [ 103.755476][ T6489] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 103.760477][ T6493] loop4: detected capacity change from 0 to 1024 [ 103.762125][ T6493] EXT4-fs: Ignoring removed oldalloc option [ 104.048095][ T6493] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 104.105199][ T4324] EXT4-fs (loop1): unmounting filesystem. [ 104.132951][ T4339] EXT4-fs (loop4): unmounting filesystem. [ 104.218242][ T6506] device syzkaller0 entered promiscuous mode [ 104.283908][ T6513] device syzkaller0 entered promiscuous mode €[ 104.340683][ T6515] device syzkaller0 entered promiscuous mode [ 104.529812][ T6530] loop0: detected capacity change from 0 to 128 [ 104.533137][ T6530] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 104.554819][ T4326] EXT4-fs (loop0): unmounting filesystem. [ 104.585552][ T27] audit: type=1400 audit(101.656:18): apparmor="DENIED" operation="setprocattr" info="fscreate" error=-22 profile="unconfined" pid=6533 comm="syz.4.705" [ 104.587751][ T6535] Bluetooth: MGMT ver 1.22 [ 104.731763][ T6548] device syzkaller0 entered promiscuous mode [ 104.859227][ T6553] binder: 6552:6553 tried to acquire reference to desc 0, got 1 instead [ 104.862063][ T6553] binder: 6552:6553 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 104.864879][ T6553] binder: 6553 RLIMIT_NICE not set [ 104.865846][ T6553] binder: 6553 RLIMIT_NICE not set [ 104.867338][ T6553] binder: release 6552:6553 transaction 17 out, still active [ 104.869395][ T6553] binder: release 6552:6553 transaction 10 in, still active [ 104.876385][ T6553] binder: undelivered TRANSACTION_COMPLETE [ 104.877766][ T6553] binder: release 6552:6553 transaction 10 out, still active [ 104.879479][ T6553] binder: undelivered TRANSACTION_COMPLETE [ 104.880716][ T6553] binder: send failed reply for transaction 17, target dead [ 104.882031][ T6553] binder: send failed reply for transaction 10, target dead [ 105.022161][ T6558] device syzkaller0 entered promiscuous mode [ 105.266299][ T6566] loop1: detected capacity change from 0 to 128 [ 105.268279][ T6566] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 105.271534][ T6566] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 105.338648][ T4373] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 105.750390][ T6583] loop1: detected capacity change from 0 to 1024 [ 105.752321][ T6583] EXT4-fs: Ignoring removed oldalloc option [ 105.839624][ T6583] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 105.926158][ T6590] loop4: detected capacity change from 0 to 128 [ 105.929644][ T6590] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 106.053940][ T6590] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 106.071562][ T6590] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 106.073227][ T6590] FAT-fs (loop4): Filesystem has been set read-only [ 106.703125][ T4324] EXT4-fs (loop1): unmounting filesystem. [ 106.730626][ T6598] netlink: 48 bytes leftover after parsing attributes in process `syz.0.729'. [ 106.844175][ T6604] device syzkaller0 entered promiscuous mode [ 106.951008][ T27] audit: type=1400 audit(103.865:19): apparmor="DENIED" operation="setprocattr" info="fscreate" error=-22 profile="unconfined" pid=6614 comm="syz.1.734" [ 107.100478][ T6621] loop4: detected capacity change from 0 to 1024 [ 107.105175][ T6621] EXT4-fs: Ignoring removed oldalloc option [ 107.137555][ T6621] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 107.143553][ T6631] loop0: detected capacity change from 0 to 128 [ 107.145907][ T6631] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 107.217423][ T6631] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 107.487069][ T6637] netlink: 48 bytes leftover after parsing attributes in process `syz.3.741'. [ 107.491576][ T4339] EXT4-fs (loop4): unmounting filesystem. [ 107.615164][ T6647] netlink: 'syz.3.746': attribute type 1 has an invalid length. [ 107.616821][ T6647] netlink: 224 bytes leftover after parsing attributes in process `syz.3.746'. [ 107.706408][ T6660] loop3: detected capacity change from 0 to 128 [ 107.711815][ T6658] device syzkaller0 entered promiscuous mode [ 107.721367][ T6660] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 107.743180][ T4325] EXT4-fs (loop3): unmounting filesystem. [ 107.865298][ T6667] device syzkaller0 entered promiscuous mode [ 107.897283][ T6674] loop1: detected capacity change from 0 to 128 [ 107.901506][ T6674] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 107.910149][ T6674] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 108.269038][ T6699] loop1: detected capacity change from 0 to 128 [ 108.294295][ T6699] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 108.318407][ T4324] EXT4-fs (loop1): unmounting filesystem. [ 108.330900][ T6708] device syzkaller0 entered promiscuous mode [ 108.356447][ T6711] loop1: detected capacity change from 0 to 128 [ 108.362256][ T6711] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 108.374188][ T6711] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 108.893273][ T6732] netlink: 4 bytes leftover after parsing attributes in process `syz.0.774'. [ 109.032928][ T6745] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 109.063518][ T4339] EXT4-fs (loop4): unmounting filesystem. [ 109.098964][ T6751] device syzkaller0 entered promiscuous mode [ 109.248490][ T6769] EXT4-fs: Ignoring removed oldalloc option [ 109.271866][ T6769] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 109.313715][ T4339] EXT4-fs (loop4): unmounting filesystem. [ 109.375542][ T6776] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 109.414525][ T4339] EXT4-fs (loop4): unmounting filesystem. [ 109.440518][ T6785] netlink: 48 bytes leftover after parsing attributes in process `syz.0.795'. [ 109.551801][ T6795] device syzkaller0 entered promiscuous mode [ 109.558378][ T6799] EXT4-fs: Ignoring removed oldalloc option [ 109.595480][ T6799] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 109.926187][ T4325] EXT4-fs (loop3): unmounting filesystem. [ 110.355303][ T6842] set_capacity_and_notify: 4 callbacks suppressed [ 110.355314][ T6842] loop1: detected capacity change from 0 to 128 [ 110.376336][ T6842] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 110.392079][ T6842] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 110.438740][ T4912] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 110.512160][ T6849] device syzkaller0 entered promiscuous mode [ 110.777693][ T6871] loop4: detected capacity change from 0 to 1024 [ 110.794044][ T6871] EXT4-fs: Ignoring removed oldalloc option [ 110.813702][ T6871] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 110.843995][ T4339] EXT4-fs (loop4): unmounting filesystem. [ 111.396161][ T6898] block device autoloading is deprecated and will be removed. [ 111.469419][ T6907] loop3: detected capacity change from 0 to 1024 [ 111.474079][ T6907] EXT4-fs: Ignoring removed oldalloc option [ 111.487709][ T6907] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 111.505211][ T4325] EXT4-fs (loop3): unmounting filesystem. [ 122.702804][ T6933] netlink: 76 bytes leftover after parsing attributes in process `syz.3.845'. [ 122.851121][ T6967] 9pnet_fd: Insufficient options for proto=fd [ 123.051910][ T6997] device syzkaller0 entered promiscuous mode [ 123.090000][ T7000] netlink: 76 bytes leftover after parsing attributes in process `syz.1.864'. [ 123.874876][ T7020] 9pnet_fd: Insufficient options for proto=fd [ 123.905452][ T7022] loop3: detected capacity change from 0 to 128 [ 123.914904][ T7022] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 123.919147][ T7022] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 123.941223][ T4541] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 130.504604][ T2060] ieee802154 phy0 wpan0: encryption failed: -22 [ 130.505784][ T2060] ieee802154 phy1 wpan1: encryption failed: -22 [ 134.822307][ T7004] bridge: RTM_NEWNEIGH with invalid state 0x700 [ 134.946056][ T7060] 9pnet_fd: Insufficient options for proto=fd [ 135.004654][ T7067] loop3: detected capacity change from 0 to 128 [ 135.006454][ T7067] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 135.020566][ T7067] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 135.051366][ T39] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 135.104515][ T7075] loop0: detected capacity change from 0 to 128 [ 135.125643][ T7075] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 135.160219][ T4326] EXT4-fs (loop0): unmounting filesystem. [ 135.208419][ T27] audit: type=1400 audit(130.311:20): apparmor="DENIED" operation="setprocattr" info="fscreate" error=-22 profile="unconfined" pid=7085 comm="syz.0.889" [ 135.236518][ T7088] netlink: 48 bytes leftover after parsing attributes in process `syz.3.891'. [ 146.879916][ T7116] device syzkaller0 entered promiscuous mode [ 146.916343][ T7121] 9pnet_fd: Insufficient options for proto=fd [ 146.941160][ T7125] netlink: 48 bytes leftover after parsing attributes in process `syz.2.902'. [ 147.265979][ T7145] device syzkaller0 entered promiscuous mode [ 147.316477][ T27] audit: type=1400 audit(141.643:21): apparmor="DENIED" operation="setprocattr" info="fscreate" error=-22 profile="unconfined" pid=7147 comm="syz.3.910" [ 147.941055][ T7153] 9pnet_fd: Insufficient options for proto=fd [ 159.006902][ T7178] netlink: 48 bytes leftover after parsing attributes in process `syz.3.919'. [ 159.131365][ T7189] 9pnet_fd: Insufficient options for proto=fd [ 159.379607][ T27] audit: type=1400 audit(152.938:22): apparmor="DENIED" operation="setprocattr" info="fscreate" error=-22 profile="unconfined" pid=7205 comm="syz.4.930" [ 159.771551][ T7230] 9pnet_fd: Insufficient options for proto=fd [ 159.894757][ T7240] netlink: 48 bytes leftover after parsing attributes in process `syz.2.937'. [ 160.072048][ T4327] Bluetooth: hci0: command 0x0406 tx timeout [ 160.073199][ T4327] Bluetooth: hci3: command 0x0406 tx timeout [ 160.074271][ T4327] Bluetooth: hci4: command 0x0406 tx timeout [ 160.075363][ T4327] Bluetooth: hci1: command 0x0406 tx timeout [ 160.076378][ T4327] Bluetooth: hci2: command 0x0406 tx timeout [ 160.667084][ T7266] 9pnet_fd: Insufficient options for proto=fd [ 161.042341][ T7282] netlink: 48 bytes leftover after parsing attributes in process `syz.2.949'. [ 172.388613][ T7296] device syzkaller0 entered promiscuous mode [ 172.416607][ T27] audit: type=1400 audit(165.132:23): apparmor="DENIED" operation="setprocattr" info="fscreate" error=-22 profile="unconfined" pid=7300 comm="syz.0.956" [ 172.442957][ T7303] 9pnet_fd: Insufficient options for proto=fd [ 173.516914][ T7340] 9pnet_fd: Insufficient options for proto=fd [ 174.660034][ T7373] 9pnet_fd: Insufficient options for proto=fd [ 174.919823][ T7392] netlink: 8 bytes leftover after parsing attributes in process `syz.0.985'. [ 186.425291][ T7407] loop3: detected capacity change from 0 to 128 [ 186.436600][ T7407] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 186.475537][ T4325] EXT4-fs (loop3): unmounting filesystem. [ 186.594375][ T7424] 9pnet_fd: Insufficient options for proto=fd [ 186.626768][ T27] audit: type=1400 audit(178.401:24): apparmor="DENIED" operation="setprocattr" info="fscreate" error=-22 profile="unconfined" pid=7422 comm="syz.0.993" [ 187.666699][ T7440] device syzkaller0 entered promiscuous mode [ 188.025425][ T7469] 9pnet_fd: Insufficient options for proto=fd [ 188.160005][ T27] audit: type=1400 audit(179.861:25): apparmor="DENIED" operation="setprocattr" info="fscreate" error=-22 profile="unconfined" pid=7478 comm="syz.0.1010" [ 188.989498][ T7496] loop3: detected capacity change from 0 to 128 [ 189.006289][ T7496] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 189.092371][ T4325] EXT4-fs (loop3): unmounting filesystem. [ 190.056375][ T7515] 9pnet_fd: Insufficient options for proto=fd [ 196.159105][ T2060] ieee802154 phy0 wpan0: encryption failed: -22 [ 196.160249][ T2060] ieee802154 phy1 wpan1: encryption failed: -22 [ 201.412186][ T27] audit: type=1400 audit(192.260:26): apparmor="DENIED" operation="setprocattr" info="fscreate" error=-22 profile="unconfined" pid=7555 comm="syz.0.1027" [ 202.372240][ T7567] 9pnet_fd: Insufficient options for proto=fd [ 202.697501][ T7595] loop0: detected capacity change from 0 to 128 [ 202.701687][ T7595] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 202.738184][ T7595] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 202.780649][ T4477] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 202.806803][ T27] audit: type=1400 audit(193.571:27): apparmor="DENIED" operation="setprocattr" info="fscreate" error=-22 profile="unconfined" pid=7598 comm="syz.0.1041" [ 203.623046][ T7609] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1043'. [ 203.717877][ T7613] loop0: detected capacity change from 0 to 128 [ 203.727470][ T7613] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 203.752444][ T4326] EXT4-fs (loop0): unmounting filesystem. [ 215.164403][ T7646] loop0: detected capacity change from 0 to 128 [ 215.171833][ T7646] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 215.186994][ T7646] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 215.261159][ T39] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 215.619516][ T7662] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1056'. [ 215.687327][ T7664] loop3: detected capacity change from 0 to 128 [ 215.697157][ T7664] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 215.719887][ T4325] EXT4-fs (loop3): unmounting filesystem. [ 215.832216][ T7674] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 215.835483][ T7674] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 227.732182][ T7707] input: syz0 as /devices/virtual/input/input2 [ 227.740326][ T7710] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1068'. [ 227.775572][ T7713] loop3: detected capacity change from 0 to 128 [ 227.804762][ T7713] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 227.872219][ T27] audit: type=1400 audit(217.022:28): apparmor="DENIED" operation="setprocattr" info="fscreate" error=-22 profile="unconfined" pid=7725 comm="syz.4.1073" [ 227.921577][ T4325] EXT4-fs (loop3): unmounting filesystem. [ 228.972519][ T7764] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1084'. [ 241.691143][ T7813] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1096'. [ 241.786309][ T7818] device syzkaller0 entered promiscuous mode [ 241.789359][ T7815] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 242.898618][ T7851] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1108'. [ 243.000783][ T7864] device syzkaller0 entered promiscuous mode [ 243.291521][ T7880] loop3: detected capacity change from 0 to 128 [ 243.303772][ T7877] device syzkaller0 entered promiscuous mode [ 243.313351][ T7880] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 243.334918][ T4325] EXT4-fs (loop3): unmounting filesystem. [ 243.517076][ T7893] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1122'. [ 243.858541][ T27] audit: type=1400 audit(231.985:29): apparmor="DENIED" operation="setprocattr" info="fscreate" error=-22 profile="unconfined" pid=7898 comm="syz.4.1124" [ 255.058488][ T7938] loop3: detected capacity change from 0 to 128 [ 255.082638][ T7938] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 255.144448][ T7951] device syzkaller0 entered promiscuous mode [ 255.151539][ T4325] EXT4-fs (loop3): unmounting filesystem. [ 255.164578][ T27] audit: type=1400 audit(242.569:30): apparmor="DENIED" operation="setprocattr" info="fscreate" error=-22 profile="unconfined" pid=7952 comm="syz.1.1136" [ 255.824015][ T7978] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 255.825692][ T7978] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 255.874673][ T7978] netlink: 'syz.4.1142': attribute type 11 has an invalid length. [ 255.878150][ T7978] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 255.879887][ T7978] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 256.097571][ T7978] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 256.101005][ T7978] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 256.215313][ T7985] device syzkaller0 entered promiscuous mode [ 256.751078][ T8002] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 261.803386][ T2060] ieee802154 phy0 wpan0: encryption failed: -22 [ 261.804685][ T2060] ieee802154 phy1 wpan1: encryption failed: -22 [ 269.027568][ T8050] tipc: Started in network mode [ 269.028755][ T8050] tipc: Node identity 4, cluster identity 4711 [ 269.030098][ T8050] tipc: Node number set to 4 [ 270.435486][ T8074] capability: warning: `syz.1.1165' uses deprecated v2 capabilities in a way that may be insecure [ 270.606065][ T8077] IPVS: dh: FWM 3 0x00000003 - no destination available [ 270.704901][ T22] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 270.715239][ C1] raw-gadget.0 gadget.0: ignoring, device is not running [ 270.793825][ T8080] fuse: Unknown parameter 'grou00000000000000000000' [ 270.875983][ T22] usb 1-1: device descriptor read/64, error -32 [ 271.345258][ T8093] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6) [ 271.346786][ T8093] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 271.349698][ T8093] vhci_hcd vhci_hcd.0: Device attached [ 271.353463][ T22] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 271.368205][ T8093] vhci_hcd vhci_hcd.0: pdev(4) rhport(1) sockfd(8) [ 271.369537][ T8093] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 271.370997][ T8093] vhci_hcd vhci_hcd.0: Device attached [ 271.410933][ T8093] vhci_hcd vhci_hcd.0: pdev(4) rhport(2) sockfd(10) [ 271.412403][ T8093] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 271.413957][ T8093] vhci_hcd vhci_hcd.0: Device attached [ 271.634421][ T4342] Bluetooth: hci1: command 0x0401 tx timeout [ 271.686828][ T22] usb 1-1: unable to get BOS descriptor or descriptor too short [ 271.758474][ T22] usb 1-1: New USB device found, idVendor=0e41, idProduct=414d, bcdDevice= 0.40 [ 271.760676][ T22] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 271.762268][ T22] usb 1-1: Product: syz [ 271.764815][ T22] usb 1-1: Manufacturer: syz [ 271.765985][ T22] usb 1-1: SerialNumber: syz [ 271.773367][ T4469] vhci_hcd: vhci_device speed not set [ 272.072705][ T4469] usb 10-1: new full-speed USB device number 2 using vhci_hcd [ 272.220188][ T8095] vhci_hcd: connection reset by peer [ 272.220596][ T8101] vhci_hcd: connection closed [ 272.222654][ T8099] vhci_hcd: connection closed [ 272.225264][ T4373] vhci_hcd: stop threads [ 272.227586][ T4373] vhci_hcd: release socket [ 272.228993][ T4373] vhci_hcd: disconnect device [ 272.231822][ T4373] vhci_hcd: stop threads [ 272.236345][ T4373] vhci_hcd: release socket [ 272.237499][ T4373] vhci_hcd: disconnect device [ 272.238776][ T4373] vhci_hcd: stop threads [ 272.239574][ T4373] vhci_hcd: release socket [ 272.623867][ T4373] vhci_hcd: disconnect device [ 273.410884][ T8129] IPVS: dh: FWM 3 0x00000003 - no destination available [ 273.878536][ T22] usb 1-1: 1:1: invalid format type 0x1001 is detected, processed as PCM [ 274.021713][ T8137] fuse: Bad value for 'fd' [ 274.022965][ T22] usb 1-1: 2:1 : UAC_AS_GENERAL descriptor not found [ 274.038287][ T22] usb 1-1: USB disconnect, device number 3 [ 274.906961][ T8119] udevd[8119]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 277.554322][ T4469] vhci_hcd: vhci_device speed not set [ 286.031999][ T8173] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1185'. [ 286.154727][ T8189] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 286.156502][ T8189] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 286.770082][ T8197] fuse: Unknown parameter 'group_i00000000000000000000' [ 286.888556][ T8201] SET target dimension over the limit! [ 288.353014][ T8223] bridge0: port 3(veth1_to_bridge) entered blocking state [ 288.355616][ T8223] bridge0: port 3(veth1_to_bridge) entered disabled state [ 288.361468][ T8223] device veth1_to_bridge entered promiscuous mode [ 288.682877][ T8230] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1199'. [ 289.357019][ T8246] fuse: Bad value for 'fd' [ 289.758198][ T8255] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 289.760771][ T8255] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 290.441981][ T8277] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1211'. [ 290.466308][ T8275] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 291.009631][ T8284] fuse: Unknown parameter 'group_i00000000000000000000' [ 291.399439][ T8291] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 291.401456][ T8291] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 291.777838][ T8309] device syzkaller0 entered promiscuous mode [ 292.605444][ T8319] fuse: Unknown parameter 'group_id00000000000000000000' [ 293.723921][ T8350] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 293.725907][ T8350] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 293.727517][ T8350] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 293.729279][ T8350] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 293.780967][ T8350] netdevsim netdevsim4 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 293.782859][ T8350] netdevsim netdevsim4 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 293.784527][ T8350] netdevsim netdevsim4 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 293.786414][ T8350] netdevsim netdevsim4 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 293.903583][ T8351] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 293.905504][ T8351] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 293.907168][ T8351] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 293.909065][ T8351] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 293.969944][ T8351] netdevsim netdevsim4 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 293.971907][ T8351] netdevsim netdevsim4 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 293.973504][ T8351] netdevsim netdevsim4 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 293.975326][ T8351] netdevsim netdevsim4 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 294.548878][ T8361] fuse: Unknown parameter 'group_id00000000000000000000' [ 294.570851][ T8363] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1241'. [ 294.804620][ T8366] device syzkaller0 entered promiscuous mode [ 295.453184][ T8381] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1248'. [ 295.591574][ T8391] fuse: Unknown parameter 'group_id00000000000000000000' [ 296.095210][ T8405] device syzkaller0 entered promiscuous mode [ 296.705249][ T4342] Bluetooth: min 6 > max 0 [ 296.775529][ T8422] fuse: Bad value for 'fd' [ 298.905058][ T4327] Bluetooth: hci3: command 0x2021 tx timeout [ 308.456082][ T8471] fuse: Bad value for 'user_id' [ 309.269441][ T8501] fuse: Bad value for 'fd' [ 309.490238][ T8512] fuse: Bad value for 'user_id' [ 309.510540][ T8514] device syzkaller0 entered promiscuous mode [ 321.466134][ T8556] fuse: Bad value for 'fd' [ 322.051532][ T8583] tipc: Enabling of bearer rejected, failed to enable media [ 322.585173][ T8601] fuse: Bad value for 'fd' [ 323.252792][ T8624] fuse: Bad value for 'fd' [ 323.286833][ T8627] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 323.288814][ T8627] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 323.439175][ T8631] fuse: Bad value for 'fd' [ 323.977121][ T8642] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1333'. [ 324.368297][ T8656] fuse: Bad value for 'fd' [ 325.041866][ T8682] fuse: Bad value for 'fd' [ 325.741083][ T8702] SET target dimension over the limit! [ 326.449180][ T8715] fuse: Bad value for 'fd' [ 326.564238][ T8724] device syzkaller0 entered promiscuous mode [ 326.615538][ T8730] fuse: Bad value for 'fd' [ 327.459735][ T2060] ieee802154 phy0 wpan0: encryption failed: -22 [ 327.461378][ T2060] ieee802154 phy1 wpan1: encryption failed: -22 [ 328.475216][ T8766] process 'syz.0.1375' launched './file2' with NULL argv: empty string added [ 329.227088][ T8793] fuse: Bad value for 'fd' [ 329.253711][ T3896] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 330.366649][ T3896] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 330.717582][ T14] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 330.891759][ T8877] device syzkaller0 entered promiscuous mode [ 331.006128][ T8882] ubi0: attaching mtd0 [ 331.010692][ T8882] ubi0: scanning is finished [ 331.011642][ T8882] ubi0: empty MTD device detected [ 331.231781][ T8882] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 331.233412][ T8882] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 331.234965][ T8882] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 331.236295][ T8882] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 331.237730][ T8882] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 331.239043][ T8882] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 331.240568][ T8882] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 943082909 [ 331.242625][ T8882] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 331.245088][ T8883] ubi0: background thread "ubi_bgt0d" started, PID 8883 [ 331.433145][ T8894] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 331.444478][ T8894] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 331.476407][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 331.508966][ T8898] device syzkaller0 entered promiscuous mode [ 332.576792][ T3896] usb 1-1: new full-speed USB device number 4 using dummy_hcd [ 332.587749][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 332.770725][ T3896] usb 1-1: unable to get BOS descriptor or descriptor too short [ 332.772511][ T3896] usb 1-1: not running at top speed; connect to a high speed hub [ 332.775184][ T3896] usb 1-1: config 25 has an invalid interface number: 198 but max is 0 [ 332.776768][ T3896] usb 1-1: config 25 has no interface number 0 [ 332.777942][ T3896] usb 1-1: config 25 interface 198 altsetting 8 endpoint 0x5 has invalid maxpacket 512, setting to 64 [ 332.782678][ T3896] usb 1-1: config 25 interface 198 altsetting 8 endpoint 0x1 has invalid maxpacket 1023, setting to 64 [ 332.784901][ T3896] usb 1-1: config 25 interface 198 has no altsetting 0 [ 332.788207][ T3896] usb 1-1: New USB device found, idVendor=06a3, idProduct=ff04, bcdDevice=76.3b [ 332.790122][ T3896] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 332.791951][ T3896] usb 1-1: Product: syz [ 332.792709][ T3896] usb 1-1: Manufacturer: syz [ 332.793766][ T3896] usb 1-1: SerialNumber: syz [ 333.032210][ T3896] usb 1-1: USB disconnect, device number 4 [ 333.325616][ T8936] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 333.327900][ T8936] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 333.699100][ T3896] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 334.023548][ T114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 334.088495][ T8946] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1409'. [ 334.726203][ T8946] device hsr_slave_1 left promiscuous mode [ 334.901705][ T8958] device syzkaller0 entered promiscuous mode [ 335.138026][ T3896] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 336.479804][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 336.481532][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 337.300151][ T114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 337.631431][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 338.401655][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 338.405206][ T4814] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 338.407931][ T14] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 338.410494][ T3896] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 338.742782][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 340.976146][ T3896] net_ratelimit: 1 callbacks suppressed [ 340.976159][ T3896] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 341.649377][ T14] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 342.087502][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 343.198860][ T3896] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 344.299492][ T3896] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 344.908741][ T14] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 345.410891][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 346.522228][ T3896] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 346.607683][ T114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 347.675836][ T8994] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 347.678115][ T8994] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 347.678213][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 347.807091][ T9000] ubi: mtd0 is already attached to ubi0 [ 348.272953][ T14] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 348.944015][ T3896] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 350.027325][ T3896] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 351.138861][ T3896] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 351.480588][ T14] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 352.145275][ T9044] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1434'. [ 352.250486][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 353.361500][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 354.472807][ T3896] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 354.739833][ T114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 354.814881][ T14] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 355.584110][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 356.695363][ T3896] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 357.817590][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 357.977683][ T114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 358.918227][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 360.029423][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 361.140961][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 361.226207][ T114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 361.474128][ T9027] netlink: 'syz.3.1431': attribute type 8 has an invalid length. [ 361.532809][ T9048] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 361.559929][ T9048] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 362.538045][ T3896] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 362.596688][ T9084] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 362.600849][ T9084] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 363.363576][ T9098] fuse: Bad value for 'fd' [ 363.403288][ T9102] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1448'. [ 363.620091][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 363.844069][ T9127] fuse: Bad value for 'fd' [ 364.551945][ T4469] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 364.591975][ T9141] fuse: Bad value for 'fd' [ 364.731456][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 365.361236][ T4469] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 365.419394][ T9174] fuse: Bad value for 'fd' [ 365.504444][ T9177] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1468'. [ 365.862483][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 365.867235][ T9180] fuse: Bad value for 'fd' [ 365.912214][ T9184] device syzkaller0 entered promiscuous mode [ 366.463765][ T9205] fuse: Bad value for 'fd' [ 366.958161][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 367.069741][ T9230] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5) [ 367.070996][ T9230] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 367.074102][ T9230] vhci_hcd vhci_hcd.0: Device attached [ 367.076761][ T9230] vhci_hcd vhci_hcd.0: pdev(1) rhport(1) sockfd(7) [ 367.078090][ T9230] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 367.079660][ T9230] vhci_hcd vhci_hcd.0: Device attached [ 367.081552][ T9230] vhci_hcd vhci_hcd.0: pdev(1) rhport(2) sockfd(9) [ 367.082905][ T9230] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 367.084495][ T9230] vhci_hcd vhci_hcd.0: Device attached [ 367.084859][ T9232] device syzkaller0 entered promiscuous mode [ 367.337717][ T9240] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 367.339604][ T9240] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 367.819650][ T4469] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 367.916806][ T9238] vhci_hcd: connection closed [ 367.916898][ T9236] vhci_hcd: connection closed [ 367.918007][ T9234] vhci_hcd: connection closed [ 367.919115][ T4435] vhci_hcd: stop threads [ 367.920884][ T4435] vhci_hcd: release socket [ 367.921754][ T4435] vhci_hcd: disconnect device [ 367.922799][ T4435] vhci_hcd: stop threads [ 367.923527][ T4435] vhci_hcd: release socket [ 367.924510][ T4435] vhci_hcd: disconnect device [ 367.925484][ T4435] vhci_hcd: stop threads [ 367.927755][ T4435] vhci_hcd: release socket [ 367.928614][ T4435] vhci_hcd: disconnect device [ 367.947775][ T14] vhci_hcd: vhci_device speed not set [ 368.065708][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 368.495263][ T9251] fuse: Bad value for 'fd' [ 368.537429][ T9255] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 368.540403][ T9255] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 368.615747][ T9257] fuse: Bad value for 'fd' [ 368.639234][ T9259] fuse: Bad value for 'fd' [ 368.824303][ T9270] device syzkaller0 entered promiscuous mode [ 369.177103][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 369.334462][ T9278] fuse: Bad value for 'fd' [ 369.689358][ T9284] fuse: Bad value for 'fd' [ 369.721104][ T9287] fuse: Bad value for 'fd' [ 369.727828][ T9285] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check. [ 369.759728][ T9289] fuse: Bad value for 'fd' [ 370.289093][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 370.290669][ T9305] device syzkaller0 entered promiscuous mode [ 370.664856][ T9315] fuse: Bad value for 'fd' [ 370.686305][ T9317] fuse: Bad value for 'fd' [ 370.710600][ T9319] fuse: Bad value for 'fd' [ 370.804963][ T9327] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 370.808037][ T9327] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 371.187743][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 371.312209][ T9339] fuse: Bad value for 'fd' [ 371.334852][ T9341] fuse: Bad value for 'fd' [ 371.360291][ T9344] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 371.362104][ T9344] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 371.399591][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 371.558872][ T9351] device syzkaller0 entered promiscuous mode [ 371.562097][ T9353] fuse: Bad value for 'fd' [ 371.915970][ T9370] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 371.918045][ T9370] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 371.919806][ T9370] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 371.921595][ T9370] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 371.923373][ T9370] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 372.210502][ T9376] fuse: Bad value for 'fd' [ 372.289912][ T9381] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1539'. [ 372.641419][ T9393] device syzkaller0 entered promiscuous mode [ 372.845680][ T9405] fuse: Unknown parameter '0xffffffffffffffff' [ 372.923903][ T9404] device bond0 entered promiscuous mode [ 372.925191][ T9404] device bond_slave_0 entered promiscuous mode [ 372.926470][ T9404] device bond_slave_1 entered promiscuous mode [ 373.576261][ T9416] random: crng reseeded on system resumption [ 373.590539][ T9416] Restarting kernel threads ... done. [ 373.594827][ T9418] fuse: Bad value for 'fd' [ 374.575271][ T9421] net_ratelimit: 9 callbacks suppressed [ 374.575285][ T9421] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 375.020447][ T9441] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 375.022341][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 375.051039][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 375.136193][ T9444] device syzkaller0 entered promiscuous mode [ 375.176142][ T9447] fuse: Unknown parameter '0x0000000000000004' [ 375.331985][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 376.040881][ T9475] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 376.042639][ T9475] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 376.044375][ T9475] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 376.046124][ T9475] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 376.054538][ T9479] fuse: Unknown parameter '0x0000000000000004' [ 376.375837][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 376.401359][ T9475] netdevsim netdevsim4 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 376.403288][ T9475] netdevsim netdevsim4 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 376.404898][ T9475] netdevsim netdevsim4 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 376.406617][ T9475] netdevsim netdevsim4 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 376.569713][ T9495] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2 [ 376.576342][ T9495] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2 [ 376.577802][ T9495] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2 [ 376.579156][ T9495] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2 [ 377.011491][ T9477] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 377.013335][ T9477] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 377.014921][ T9477] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 377.016512][ T9477] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 377.042222][ T9477] netdevsim netdevsim4 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 377.043931][ T9477] netdevsim netdevsim4 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 377.045558][ T9477] netdevsim netdevsim4 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 377.047213][ T9477] netdevsim netdevsim4 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 377.177224][ T9521] capability: warning: `syz.0.1589' uses 32-bit capabilities (legacy support in use) [ 378.201819][ T9524] fuse: Bad value for 'fd' [ 378.237595][ T9496] device syzkaller0 entered promiscuous mode [ 379.476700][ T9571] xt_hashlimit: size too large, truncated to 1048576 [ 380.375785][ T22] net_ratelimit: 3329 callbacks suppressed [ 380.375800][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 380.974150][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 381.487149][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 382.609138][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 383.709787][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 383.993619][ T9579] fuse: Bad value for 'fd' [ 384.010691][ T4327] Bluetooth: min 0 < 6 [ 384.222643][ T114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 384.229621][ T9587] xt_CT: You must specify a L4 protocol and not use inversions on it [ 384.821127][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 384.823149][ T8130] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 384.826348][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 384.828696][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 385.932462][ T4444] net_ratelimit: 1 callbacks suppressed [ 385.932476][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 386.199424][ T4327] Bluetooth: hci3: command 0x2021 tx timeout [ 387.043866][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 387.481865][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 388.155178][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 389.266479][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 390.230135][ T9558] netlink: 'syz.0.1598': attribute type 4 has an invalid length. [ 390.233071][ T9587] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1607'. [ 390.378219][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 390.719876][ T114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 391.049622][ T9610] fuse: Bad value for 'fd' [ 391.489214][ T3896] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 391.601969][ T9622] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 391.608266][ T9622] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 392.600832][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 392.607517][ T9653] fuse: Bad value for 'fd' [ 393.136348][ T2060] ieee802154 phy0 wpan0: encryption failed: -22 [ 393.138875][ T2060] ieee802154 phy1 wpan1: encryption failed: -22 [ 393.180039][ T9680] fuse: Bad value for 'fd' [ 393.712190][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 393.980114][ T114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 394.107269][ T9708] fuse: Bad value for 'fd' [ 394.333708][ T9718] loop3: detected capacity change from 0 to 128 [ 394.335445][ T9718] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 394.471480][ T9718] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 394.722353][ T9720] fuse: Unknown parameter 'use00000000000000000000' [ 394.823456][ T3896] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 396.032267][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 396.035715][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 396.048357][ T9752] fuse: Bad value for 'fd' [ 396.277113][ T9764] mmap: syz.1.1655 (9764) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 396.586002][ T9768] device syzkaller0 entered promiscuous mode [ 396.615985][ T9770] fuse: Unknown parameter 'user_i00000000000000000000' [ 397.274582][ T9780] 9pnet_fd: Insufficient options for proto=fd [ 397.278258][ T114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 397.291212][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 399.182596][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 400.073221][ T9804] fuse: Bad value for 'fd' [ 400.362911][ T4377] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 400.378097][ T9806] device syzkaller0 entered promiscuous mode [ 400.518568][ T9816] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 400.522756][ T9816] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 400.531678][ T9816] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 400.539364][ T9816] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 400.551518][ T9816] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 400.559181][ T9816] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 401.365548][ T9833] 9pnet_fd: Insufficient options for proto=fd [ 401.679683][ T9842] fuse: Unknown parameter 'user_i00000000000000000000' [ 401.684663][ T9837] device syzkaller0 entered promiscuous mode [ 401.780255][ T9845] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 402.655149][ T9857] fuse: Bad value for 'fd' [ 402.687054][ T4377] net_ratelimit: 3 callbacks suppressed [ 402.687066][ T4377] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 403.325001][ T9886] fuse: Unknown parameter 'user_id00000000000000000000' [ 403.706099][ T9892] 9pnet_fd: Insufficient options for proto=fd [ 403.980715][ T9834] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 404.086721][ T9901] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1697'. [ 404.094384][ T9901] device dummy0 entered promiscuous mode [ 404.098221][ T9901] device macsec0 entered promiscuous mode [ 404.126655][ T9901] device dummy0 left promiscuous mode [ 404.517352][ T114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 404.546778][ T9923] fuse: Unknown parameter 'user_id00000000000000000000' [ 404.552339][ T9925] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1705'. [ 405.051081][ T9925] device hsr_slave_1 left promiscuous mode [ 405.461594][ T4455] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 405.684546][ T9952] 9pnet_fd: Insufficient options for proto=fd [ 406.074162][ T9960] fuse: Unknown parameter 'user_id00000000000000000000' [ 406.119946][ T14] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 406.530537][ T9962] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 406.532324][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 406.535137][ T4455] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 407.823265][ T4377] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 407.825319][ T14] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 408.117163][T10006] 9pnet_fd: Insufficient options for proto=fd [ 408.646049][T10012] fuse: Bad value for 'fd' [ 408.712116][T10018] fuse: Bad value for 'fd' [ 408.783614][T10019] loop4: detected capacity change from 0 to 128 [ 408.787481][T10019] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 408.795556][T10019] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 408.932265][ T4455] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 410.055087][ T4455] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 410.886082][T10058] 9pnet_fd: Insufficient options for proto=fd [ 411.076837][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 411.173674][ T4455] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 411.192960][T10064] fuse: Bad value for 'fd' [ 411.272303][ T27] audit: type=1326 audit(388.657:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10069 comm="syz.4.1746" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa8777a28 code=0x7ffc0000 [ 411.277586][ T27] audit: type=1326 audit(388.657:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10069 comm="syz.4.1746" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa8777a28 code=0x7ffc0000 [ 411.288174][ T27] audit: type=1326 audit(388.657:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10069 comm="syz.4.1746" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=274 compat=0 ip=0xffffa8777a28 code=0x7ffc0000 [ 411.296428][ T27] audit: type=1326 audit(388.657:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10069 comm="syz.4.1746" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa8777a28 code=0x7ffc0000 [ 411.301556][ T27] audit: type=1326 audit(388.657:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10069 comm="syz.4.1746" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa8777a28 code=0x7ffc0000 [ 411.572283][T10080] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1748'. [ 412.318523][ T4455] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 413.045816][T10107] fuse: Unknown parameter '0x0000000000000003' [ 413.506943][ T114] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 413.519534][ T9834] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 413.539474][ T114] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz1] on syz0 [ 414.315939][ T14] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 414.527150][T10151] fuse: Unknown parameter '0xffffffffffffffff' [ 414.656911][ T4377] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 414.688002][ T4467] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 414.689849][ T4467] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 414.692358][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 414.931275][T10163] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 414.933513][T10163] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 415.771781][ T4469] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 415.810562][ T4455] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 415.812494][ T9834] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 415.931169][T10183] fuse: Unknown parameter '0xffffffffffffffff' [ 416.642992][T10172] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 417.437385][ T4455] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 417.439193][ T9834] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 417.563876][T10172] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 418.091901][T10216] ubi: mtd0 is already attached to ubi0 [ 418.589597][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 418.683831][T10229] fuse: Unknown parameter '0x0000000000000003' [ 419.735104][T10253] net_ratelimit: 2 callbacks suppressed [ 419.735114][T10253] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 419.738406][T10253] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 419.740222][T10253] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 419.742064][T10253] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 419.743969][T10253] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 419.819883][ T4455] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 419.821934][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 420.262817][T10264] fuse: Unknown parameter '0x0000000000000003' [ 420.343699][T10247] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 421.262259][T10283] lo: Caught tx_queue_len zero misconfig [ 421.573759][T10172] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 421.581158][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 422.402798][T10302] fuse: Unknown parameter '0x0000000000000003' [ 424.713774][T10338] fuse: Unknown parameter 'fd0x0000000000000003' [ 424.953701][T10345] loop1: detected capacity change from 0 to 128 [ 424.956417][T10345] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 424.983918][T10345] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 425.165319][T10353] (syz.3.1825,10353,0):ocfs2_fill_super:990 ERROR: superblock probe failed! [ 425.167039][T10353] (syz.3.1825,10353,0):ocfs2_fill_super:1176 ERROR: status = -22 [ 425.397475][ T4444] net_ratelimit: 14 callbacks suppressed [ 425.397492][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 425.401317][ T4455] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 425.402906][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 425.404513][ T4377] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 425.771021][ T4375] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 425.863747][ T4375] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 425.865608][ T4469] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 426.294066][T10378] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 426.295773][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 426.627632][ T4455] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 427.185208][T10388] fuse: Unknown parameter 'fd0x0000000000000003' [ 427.200151][T10391] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 427.211954][T10391] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 427.911369][T10407] Option 'D' to dns_resolver key: bad/missing value [ 428.350417][T10412] loop4: detected capacity change from 0 to 128 [ 428.352610][T10412] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 428.355636][T10412] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 430.630104][T10439] fuse: Unknown parameter 'fd0x0000000000000003' [ 430.718545][T10446] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 430.722293][T10446] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 431.754449][ T4377] net_ratelimit: 37 callbacks suppressed [ 431.754461][ T4377] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 431.757225][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 431.835166][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 431.836893][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 431.963343][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 432.131511][T10463] netlink: 'syz.2.1855': attribute type 1 has an invalid length. [ 432.338145][ T4469] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 432.352635][T10172] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 432.354434][ T4469] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 432.873807][ T4455] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 432.875823][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 432.908046][T10474] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1859'. [ 433.964449][T10507] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 433.966723][T10507] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 435.774089][ T4444] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 435.777269][ T4444] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz1] on syz0 [ 436.763464][ T4327] Bluetooth: to_multiplier 0 < 10 [ 437.338289][T10172] net_ratelimit: 26 callbacks suppressed [ 437.338302][T10172] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 437.341216][ T4469] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 437.982125][T10571] loop4: detected capacity change from 0 to 128 [ 437.983881][T10571] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 437.992578][T10571] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 438.081257][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 438.083138][ T4455] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 438.084842][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 438.086610][ T4377] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 438.650811][T10172] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 439.470971][ T4342] Bluetooth: hci4: command 0x2021 tx timeout [ 439.552636][ T4469] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 439.566254][T10172] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 439.566548][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 440.467491][ T27] audit: type=1326 audit(415.411:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10588 comm="syz.4.1892" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffffa8777a28 code=0x0 [ 441.275930][ T4444] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 441.278051][ T4444] hid-generic 0000:0000:0000.0003: hidraw0: HID v0.00 Device [syz1] on syz0 [ 443.231439][ T4444] net_ratelimit: 9 callbacks suppressed [ 443.231453][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 443.234177][ T4377] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 443.235771][ T4455] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 443.237215][ T4455] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 443.252846][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 443.292185][ T4375] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 443.296408][ T4375] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 443.399403][T10644] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 443.401264][T10644] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 443.403283][T10644] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 447.520754][T10172] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 447.523087][T10172] hid-generic 0000:0000:0000.0004: hidraw0: HID v0.00 Device [syz1] on syz0 [ 448.294609][T10701] fido_id[10701]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 448.803086][ T4455] net_ratelimit: 20 callbacks suppressed [ 448.803097][ T4455] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 448.807192][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 448.812459][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 448.825718][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 449.976301][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 449.978740][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 449.980826][ T4455] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 450.089736][ T4455] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 450.651499][ T4469] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 450.694700][ T4469] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 451.095331][T10724] syz.3.1928 (10724): drop_caches: 2 [ 451.657669][T10780] SET target dimension over the limit! [ 453.045923][T10785] device syzkaller0 left promiscuous mode [ 454.597306][ T4455] net_ratelimit: 25 callbacks suppressed [ 454.597320][ T4455] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 454.600683][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 454.603264][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 454.763004][T10830] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 454.765056][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 455.009349][ T4375] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 455.042183][T10832] tmpfs: Unknown parameter 'inoyt›¢' [ 455.178097][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 455.350665][T10172] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 455.357515][ T4375] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 455.691564][ T4455] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 456.323037][T10842] device syzkaller0 entered promiscuous mode [ 458.215325][T10868] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1971'. [ 458.239635][T10868] bridge0: port 3(syz_tun) entered disabled state [ 458.314236][T10868] device syz_tun left promiscuous mode [ 458.316392][T10868] bridge0: port 3(syz_tun) entered disabled state [ 458.396082][T10877] fuse: Bad value for 'fd' [ 458.558952][T10881] loop1: detected capacity change from 0 to 128 [ 458.560957][T10881] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 458.622347][T10881] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 458.769495][ T2060] ieee802154 phy0 wpan0: encryption failed: -22 [ 458.772012][ T2060] ieee802154 phy1 wpan1: encryption failed: -22 [ 460.176959][ T4444] net_ratelimit: 20 callbacks suppressed [ 460.176972][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 460.250161][T10906] device syzkaller0 entered promiscuous mode [ 460.369918][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 460.371713][ T4377] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 460.373401][ T4455] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 460.820563][T10172] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 460.822630][ T4469] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 460.836437][T10172] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 460.948397][T10913] netlink: 'syz.0.1982': attribute type 5 has an invalid length. [ 460.986507][T10916] fuse: Bad value for 'fd' [ 461.441907][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 461.486892][T10935] netlink: 'syz.1.1990': attribute type 4 has an invalid length. [ 461.505181][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 461.506795][ T4383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 461.886995][T10955] input input3: cannot allocate more than FF_MAX_EFFECTS effects [ 462.976282][T10973] netlink: 'syz.1.2000': attribute type 5 has an invalid length. [ 463.918918][T10994] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2009'. [ 463.934830][T10994] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 463.937544][T10994] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 464.109872][T11006] loop3: detected capacity change from 0 to 128 [ 464.113005][T11006] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 464.129193][T11006] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 465.064605][T11017] netlink: 68 bytes leftover after parsing attributes in process `syz.1.2013'. [ 465.795104][ T14] net_ratelimit: 18 callbacks suppressed [ 465.795118][ T14] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 465.805800][ T4469] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 466.382055][ T4377] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 466.383830][ T4455] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 466.462534][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 466.566669][T11025] loop4: detected capacity change from 0 to 7 [ 466.585743][ C0] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 466.608093][ C0] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 466.608157][ C0] Buffer I/O error on dev loop4, logical block 0, async page read [ 466.608622][ C0] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 466.608633][ C0] Buffer I/O error on dev loop4, logical block 0, async page read [ 466.677114][T11038] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 466.677446][T11038] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 466.677647][T11038] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 466.677813][T11038] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 466.677917][T11038] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 466.745974][ C1] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 466.746005][ C1] Buffer I/O error on dev loop4, logical block 0, async page read [ 466.751033][ C1] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 466.751048][ C1] Buffer I/O error on dev loop4, logical block 0, async page read [ 466.751599][ C1] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 466.751616][ C1] Buffer I/O error on dev loop4, logical block 0, async page read [ 466.855107][T11049] binder: BINDER_SET_CONTEXT_MGR already set [ 466.859952][T11049] binder: 11048:11049 ioctl 4018620d 20000040 returned -16 [ 466.919751][T11055] binder: tried to use weak ref as strong ref [ 466.921579][T11055] binder: 11048:11055 Acquire 1 refcount change on invalid ref 0 ret -22 [ 466.924624][T11049] binder: 11048:11049 got transaction to invalid handle, 1 [ 466.926033][T11049] binder: 11049:11048 cannot find target node [ 466.932907][T11049] binder: 11048:11049 transaction call to 0:0 failed 20/29201/-22, size 0-0 line 3045 [ 466.938531][T11049] binder: 11048:11049 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 466.948924][T11049] binder: 11049 RLIMIT_NICE not set [ 466.949866][T11049] binder: 11048:11049 ioctl c0306201 20000240 returned -11 [ 466.951420][T11049] binder: 11048:11049 got reply transaction with no transaction stack [ 466.959633][T11049] binder: 11048:11049 transaction reply to 0:0 failed 21/29201/-71, size 48-24 line 2946 [ 466.964288][ T4469] binder: undelivered TRANSACTION_ERROR: 29201 [ 467.791006][T10172] binder: undelivered TRANSACTION_ERROR: 29201 [ 468.212680][T11077] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2033'. [ 468.249304][T11079] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2034'. [ 468.251255][T11079] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2034'. [ 468.283105][T11081] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5) [ 468.284483][T11081] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 468.286030][T11081] vhci_hcd vhci_hcd.0: Device attached [ 468.383883][T11091] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 468.387317][T11091] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 468.567756][T11062] vhci_hcd: vhci_device speed not set [ 468.642452][T11062] usb 10-1: new full-speed USB device number 3 using vhci_hcd [ 469.313483][T11102] netlink: 68 bytes leftover after parsing attributes in process `syz.2.2041'. [ 469.314583][T11082] vhci_hcd: connection reset by peer [ 469.411395][ T4541] vhci_hcd: stop threads [ 469.478701][ T4541] vhci_hcd: release socket [ 469.479945][ T4541] vhci_hcd: disconnect device [ 469.777972][T11110] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2045'. [ 470.514786][T11125] loop3: detected capacity change from 0 to 128 [ 470.516840][T11125] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 471.526701][ T4469] net_ratelimit: 18 callbacks suppressed [ 471.526711][ T4469] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 471.553710][T11125] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 471.627354][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 471.628299][ T4469] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 471.630723][T10172] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 471.642505][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 471.644120][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 472.148480][T11148] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 472.150254][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 472.630423][T11152] netlink: 68 bytes leftover after parsing attributes in process `syz.0.2057'. [ 472.946503][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 472.948283][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 473.015871][T11156] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2060'. [ 473.516777][T11175] loop3: detected capacity change from 0 to 128 [ 473.518823][T11175] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 473.599497][T11175] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 474.410444][T11195] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2071'. [ 474.781987][T11062] vhci_hcd: vhci_device speed not set [ 474.824498][T11208] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2076'. [ 476.386955][T11224] netlink: 68 bytes leftover after parsing attributes in process `syz.1.2079'. [ 476.902653][ T4444] net_ratelimit: 18 callbacks suppressed [ 476.902668][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 477.741439][T11256] input input4: cannot allocate more than FF_MAX_EFFECTS effects [ 477.917948][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 477.918005][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 477.922560][T11062] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 478.014197][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 478.089507][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 478.091287][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 478.093068][T11127] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 478.155313][ T7] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 478.157795][ T7] hid-generic 0000:0000:0000.0005: hidraw0: HID v0.00 Device [syz1] on syz0 [ 478.191088][T11269] fido_id[11269]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 478.244024][T11274] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 478.246224][T11274] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 479.422095][T11288] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2102'. [ 479.500879][T11291] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2103'. [ 479.504223][T11291] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2103'. [ 480.040410][ T4444] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 480.043193][ T4444] hid-generic 0000:0000:0000.0006: hidraw0: HID v0.00 Device [syz1] on syz0 [ 480.071085][T11305] fido_id[11305]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 480.252127][T11315] netlink: 64 bytes leftover after parsing attributes in process `syz.0.2113'. [ 481.524384][T11127] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 481.527130][T11127] hid-generic 0000:0000:0000.0007: hidraw0: HID v0.00 Device [syz1] on syz0 [ 481.556748][T11345] fido_id[11345]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 482.506395][ T4444] net_ratelimit: 18 callbacks suppressed [ 482.506410][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 482.509243][T11062] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 482.705608][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 482.784446][T11374] device syzkaller0 entered promiscuous mode [ 483.183591][T11384] (syz.4.2130,11384,0):ocfs2_fill_super:990 ERROR: superblock probe failed! [ 483.185680][T11384] (syz.4.2130,11384,0):ocfs2_fill_super:1176 ERROR: status = -22 [ 483.912976][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 483.914748][T11062] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 483.916438][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 483.978723][T11414] device syzkaller0 entered promiscuous mode [ 484.029275][T11416] netlink: 68 bytes leftover after parsing attributes in process `syz.4.2140'. [ 484.671622][T11127] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 484.674592][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 484.676426][ T4469] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 485.028737][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 486.928217][T11501] netlink: 68 bytes leftover after parsing attributes in process `syz.0.2166'. [ 487.563773][T11520] netlink: 'syz.3.2173': attribute type 1 has an invalid length. [ 487.924713][ T4469] net_ratelimit: 14 callbacks suppressed [ 487.924726][ T4469] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 487.927677][ T4469] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 487.929325][ T4469] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 488.040763][T11528] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 488.042920][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 488.044903][T11528] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 488.049121][T11528] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 488.052057][T11528] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 488.055906][T11528] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2176'. [ 488.058272][T11527] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 488.061584][T11062] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 488.476937][T11535] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2174'. [ 488.479456][T11535] netlink: 67 bytes leftover after parsing attributes in process `syz.0.2174'. [ 488.723746][T11542] netlink: 'syz.3.2178': attribute type 8 has an invalid length. [ 488.815943][T11549] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 488.819191][T11549] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 488.877735][T11552] fuse: Unknown parameter 'group_i00000000000000000000' [ 490.356854][T11603] device syzkaller0 entered promiscuous mode [ 494.246414][ T4444] net_ratelimit: 25 callbacks suppressed [ 494.246427][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 494.249193][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 494.250811][ T4444] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 494.417293][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 494.418904][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 494.420446][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 494.423199][ T9979] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 494.425665][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 494.428079][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 495.357702][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 499.813885][ T22] net_ratelimit: 20 callbacks suppressed [ 499.813898][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 499.816703][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 499.818267][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 500.914474][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 500.916359][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 500.917980][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 500.925279][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 500.926902][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 500.928464][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 502.025821][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 503.087701][T11613] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 503.089519][T11613] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 503.091096][T11613] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 503.092741][T11613] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 503.158554][T11613] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 503.160469][T11613] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 503.162201][T11613] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 503.163858][T11613] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 503.236817][T11621] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 503.238597][T11621] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 503.240641][T11621] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 503.242263][T11621] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 503.276156][T11621] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 503.278128][T11621] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 503.279791][T11621] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 503.281518][T11621] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 504.668979][T11702] ================================================================== [ 504.670686][T11702] BUG: KASAN: use-after-free in ieee80211_monitor_select_queue+0x20c/0x210 [ 504.672506][T11702] Read of size 2 at addr ffff0000f5dde5fb by task syz.4.2227/11702 [ 504.674056][T11702] [ 504.674518][T11702] CPU: 1 PID: 11702 Comm: syz.4.2227 Not tainted syzkaller #0 [ 504.676049][T11702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 504.678041][T11702] Call trace: [ 504.678670][T11702] dump_backtrace+0x1c0/0x1ec [ 504.679520][T11702] show_stack+0x2c/0x3c [ 504.680280][T11702] __dump_stack+0x30/0x40 [ 504.681047][T11702] dump_stack_lvl+0xf4/0x15c [ 504.681905][T11702] print_address_description+0x88/0x218 [ 504.682999][T11702] print_report+0x50/0x68 [ 504.683957][T11702] kasan_report+0xa8/0xfc [ 504.684843][T11702] __asan_report_load2_noabort+0x2c/0x38 [ 504.686046][T11702] ieee80211_monitor_select_queue+0x20c/0x210 [ 504.687307][T11702] netdev_core_pick_tx+0x130/0x320 [ 504.688360][T11702] __dev_queue_xmit+0x738/0x3118 [ 504.689402][T11702] dev_queue_xmit+0x24/0x34 [ 504.690321][T11702] packet_sendmsg+0x2f9c/0x3fd0 [ 504.691315][T11702] ____sys_sendmsg+0x5c8/0x938 [ 504.692335][T11702] __sys_sendmsg+0x288/0x374 [ 504.693252][T11702] __arm64_sys_sendmsg+0x80/0x94 [ 504.694215][T11702] invoke_syscall+0x98/0x2b4 [ 504.695179][T11702] el0_svc_common+0x138/0x258 [ 504.696106][T11702] do_el0_svc+0x58/0x130 [ 504.696962][T11702] el0_svc+0x58/0x128 [ 504.697969][T11702] el0t_64_sync_handler+0x84/0xf0 [ 504.698996][T11702] el0t_64_sync+0x18c/0x190 [ 504.699881][T11702] [ 504.700318][T11702] Allocated by task 11255: [ 504.701155][T11702] kasan_set_track+0x4c/0x80 [ 504.702100][T11702] kasan_save_alloc_info+0x24/0x30 [ 504.703157][T11702] __kasan_kmalloc+0xa0/0xb8 [ 504.704092][T11702] __kmalloc_node_track_caller+0xe0/0x16c [ 504.705266][T11702] __alloc_skb+0x264/0x714 [ 504.706127][T11702] alloc_skb_with_frags+0xa0/0x54c [ 504.707197][T11702] sock_alloc_send_pskb+0x73c/0x850 [ 504.708332][T11702] j1939_sk_sendmsg+0x53c/0xf3c [ 504.709336][T11702] ____sys_sendmsg+0x5c8/0x938 [ 504.710312][T11702] __sys_sendmmsg+0x344/0x834 [ 504.711234][T11702] __arm64_sys_sendmmsg+0xa0/0xbc [ 504.712303][T11702] invoke_syscall+0x98/0x2b4 [ 504.713208][T11702] el0_svc_common+0x138/0x258 [ 504.714137][T11702] do_el0_svc+0x58/0x130 [ 504.714972][T11702] el0_svc+0x58/0x128 [ 504.715806][T11702] el0t_64_sync_handler+0x84/0xf0 [ 504.716910][T11702] el0t_64_sync+0x18c/0x190 [ 504.717830][T11702] [ 504.718337][T11702] The buggy address belongs to the object at ffff0000f5dde400 [ 504.718337][T11702] which belongs to the cache kmalloc-512 of size 512 [ 504.721282][T11702] The buggy address is located 507 bytes inside of [ 504.721282][T11702] 512-byte region [ffff0000f5dde400, ffff0000f5dde600) [ 504.723956][T11702] [ 504.724452][T11702] The buggy address belongs to the physical page: [ 504.725769][T11702] page:000000006d9e500f refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff0000f5dde400 pfn:0x135ddc [ 504.728066][T11702] head:000000006d9e500f order:2 compound_mapcount:0 compound_pincount:0 [ 504.729737][T11702] flags: 0x5ffc00000010200(slab|head|node=0|zone=2|lastcpupid=0x7ff) [ 504.731495][T11702] raw: 05ffc00000010200 fffffc00030c4a08 fffffc0003d13e08 ffff0000c0002600 [ 504.733259][T11702] raw: ffff0000f5dde400 0000000000100005 00000001ffffffff 0000000000000000 [ 504.734965][T11702] page dumped because: kasan: bad access detected [ 504.736232][T11702] [ 504.736725][T11702] Memory state around the buggy address: [ 504.737865][T11702] ffff0000f5dde480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 504.739497][T11702] ffff0000f5dde500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 504.741046][T11702] >ffff0000f5dde580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 504.742730][T11702] ^ [ 504.744399][T11702] ffff0000f5dde600: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 504.746075][T11702] ffff0000f5dde680: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 504.747665][T11702] ================================================================== [ 504.749389][T11702] Disabling lock debugging due to kernel taint [ 505.359793][ T22] net_ratelimit: 11 callbacks suppressed [ 505.359804][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 505.362639][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 505.364220][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 506.471159][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 506.473095][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 506.474698][ T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 507.326015][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 507.327935][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 507.328094][ T9979] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 507.331798][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 510.916590][T11062] net_ratelimit: 18 callbacks suppressed [ 510.916602][T11062] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 510.919186][T11062] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 510.920787][T11062] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 512.027824][T11062] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 512.029529][T11062] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 512.031153][T11062] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 513.139287][T11062] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 513.141097][T11062] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 513.142753][T11062] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 513.481158][T11127] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog