last executing test programs: 5.454920198s ago: executing program 4: unshare(0x62040200) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, 0x0, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=@newlink={0x34, 0x10, 0x581, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x4}}}]}, 0x34}}, 0x0) 5.334682796s ago: executing program 0: bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_read_part_table(0x5bc, &(0x7f0000000000)="$eJzs279rNEUYB/Dv7t3t3oFy2ljqwdtY+RbW4Y3KmxCwCIKdoK2NiGAhKNlD0UatbCz8B9KkEKysg+g/IEKIhaCdiIVamJG9X7nE8gojfD7F8jzPzDMzxWw54f+tTAfJ4FZxWNfVOp7+ncxffS5pZ4t8tKr3E14+fXhwNDuumk2tSn7tknq1Tv9pkic3C2e2ir4e5pPTw48+/ezdJl26y5MkXyRdUtr10Ra9+bz516H/rNaL8996+lZebT69Lo9lvIjuZ3XLBoty2j5qPtx5/7O98/mDPijLTSfN9e5J9tdBKaX01/Lk3jIf5berjOrZZubqNj1YHu+mdtE/2uT15i8Ybe327Dc/nmTeLEcGW729i0ny5sVLz1RbawAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcPeUlUWyn8fHSZUM++zL56tuOWm4rLzQDJf5X9tNuznbO5++/8Fbdd7Ze/37N9776fCX8e9JBrl/+Ehp282819JudQ2T+irJE5Nd9y/rZd9+Zbs8yzzf3vvhqXqQUqbX9VHVf79Kurx43QsAAAAAAAAAAAAAAAAAAAA7enhwNDuuJ+vX9fW6XjJOqlsP3MsfpZT9lOZGdZLku8tUSX5OqbaHmmT6aJL24yargS7ezd8h/wQAAP//eKJe6g==") r2 = dup(r1) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000005c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000600)={0x0, 0x4000}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000640)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_NMI(r3, 0xae9a) ioctl$KVM_NMI(r3, 0xae9a) ioctl$KVM_RUN(r3, 0xae80, 0x0) 5.003027623s ago: executing program 2: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r1, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000002c0)=[@in6={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}]}, &(0x7f0000000180)=0x10) r3 = dup3(r1, r0, 0x0) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f0000000080)={r2, 0x3}, 0x8) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000040)={r2, 0x9}, 0x8) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7b, &(0x7f00000000c0)={r2}, 0x8) 4.885393368s ago: executing program 2: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'crc32c-generic\x00'}, 0x58) r1 = accept$alg(r0, 0x0, 0x0) recvmmsg(r1, &(0x7f00000081c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) 4.711065613s ago: executing program 2: syz_open_dev$evdev(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x71}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = fsopen(&(0x7f0000000040)='configfs\x00', 0x0) fsconfig$FSCONFIG_SET_FLAG(r4, 0x6, 0x0, 0x0, 0x0) r5 = fsmount(r4, 0x0, 0x0) r6 = openat(r5, &(0x7f0000000340)='.\x00', 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x9, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000100d50f1000000000"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90) lseek(r6, 0x1, 0x1) connect$inet6(0xffffffffffffffff, &(0x7f0000004540)={0xa, 0x0, 0x0, @mcast2}, 0x1c) 3.860672621s ago: executing program 4: ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x34, 0x4, 0x0, 0x0, 0xd0, 0x64, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x0, [0x401, 0x5, 0x0, 0x5, 0x4]}, @timestamp_prespec={0x44, 0x44, 0xc0, 0x3, 0x0, [{@private=0xa010100}, {@multicast1, 0x5}, {@remote}, {@dev={0xac, 0x14, 0x14, 0x32}, 0x659}, {@broadcast}, {@empty}, {@multicast1, 0xffd200}, {@private=0xa010100, 0x7}]}, @timestamp_prespec={0x44, 0x34, 0x0, 0x3, 0x0, [{@dev, 0x20000}, {@multicast2, 0x7}, {@private=0xa010101}, {@rand_addr=0x64010101}, {@broadcast, 0x52ae}, {@multicast2}]}, @noop, @noop, @noop, @lsrr={0x83, 0xf, 0xdc, [@private=0xa010102, @rand_addr=0x64010102, @multicast1]}, @rr={0x7, 0x17, 0x0, [@dev, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) 3.772104245s ago: executing program 2: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000000)=@framed={{0x7a, 0xa, 0x0, 0xff00, 0x0, 0x71, 0x10, 0xbc}}, &(0x7f0000000480)='syzkaller\x00'}, 0x80) 3.046713898s ago: executing program 2: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x4008032, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) inotify_init() 2.832663135s ago: executing program 0: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_io_uring_setup(0x5e2, &(0x7f0000000080), 0x0, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000000000004400000008000300", @ANYRES32=r2, @ANYBLOB="0800266ec81600000a00180000000000000000011c005a8018000180140003"], 0x4c}}, 0x0) 2.791360069s ago: executing program 4: socket$nl_netfilter(0x10, 0x3, 0xc) syz_emit_ethernet(0x0, 0x0, 0x0) sendmsg$IPCTNL_MSG_CT_GET_DYING(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000640)={0x14, 0x6, 0x1, 0x9e91dd09233669f1}, 0x14}}, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0xfff, 0x2, 0x800, 0x400, 0xffffffffffffffff, 0x5, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1, 0xc}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x90) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r1 = open(&(0x7f0000000040)='./file0\x00', 0x40c5, 0x80) open(&(0x7f0000000080)='./file0\x00', 0x1, 0x0) r2 = inotify_init1(0x800) inotify_add_watch(r2, &(0x7f00000001c0)='./file0\x00', 0xb4f) write$9p(r1, &(0x7f0000001400)="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", 0x5ee) chown(&(0x7f0000000000)='./file0\x00', 0x0, 0xee01) inotify_add_watch(r2, &(0x7f0000000180)='./file0\x00', 0x10000000) signalfd(0xffffffffffffffff, &(0x7f0000000200)={[0x5]}, 0x8) close(0xffffffffffffffff) inotify_init1(0x0) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0) getsockname$packet(r4, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14) sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="4800000010000507000000000000000016000000", @ANYRES32=r5, @ANYBLOB="0000000200000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)=@newqdisc={0x38, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xfff1, 0xffff}}, [@TCA_RATE={0x6, 0x5, {0x0, 0x9}}, @qdisc_kind_options=@q_clsact={0xb}]}, 0x38}}, 0x0) capset(0x0, 0x0) 2.651772937s ago: executing program 0: set_mempolicy(0x3, &(0x7f0000000040)=0x7, 0x37bc) syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x100800a, &(0x7f0000000200)={[], [{@uid_gt}, {@fsmagic}]}, 0x1, 0x5dd, &(0x7f0000001200)="$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") madvise(&(0x7f0000000000/0x600000)=nil, 0x60005f, 0x15) keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000001580)=""/4100, 0x1004) 2.562774827s ago: executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000001500)='kfree\x00', r1}, 0x10) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x2) readv(r0, &(0x7f0000000000)=[{&(0x7f0000001300)=""/244, 0x940}], 0x1) ioctl$TIOCVHANGUP(r0, 0x5437, 0x0) 2.532073427s ago: executing program 4: mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x50032, 0xffffffffffffffff, 0x0) move_pages(0x0, 0x1, &(0x7f0000000540)=[&(0x7f0000ffc000/0x4000)=nil], 0x0, &(0x7f0000001180), 0x0) 2.385001677s ago: executing program 4: prlimit64(0x0, 0xd, &(0x7f0000000140)={0x200000000005, 0x8000000000200003}, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r1) setpriority(0x2, 0x0, 0xffffffffffffffcd) 2.370902562s ago: executing program 0: syz_emit_ethernet(0x46, &(0x7f0000001100)={@local, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "000210", 0x10, 0x3a, 0x0, @remote, @mcast2, {[], @ni={0x8c}}}}}}, 0x0) 2.342100742s ago: executing program 3: syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5) preadv(r0, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0x19000}], 0x1, 0x0, 0x0) r1 = socket$l2tp(0x2, 0x2, 0x73) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000300)='wlan0\x00', 0x10) bind$inet(r1, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10) connect$inet(r1, &(0x7f0000000200)={0x2, 0x0, @local}, 0x10) sendmmsg$inet(r1, &(0x7f0000000900)=[{{0x0, 0x2, 0x0}}], 0x40000cf, 0x0) 1.56707706s ago: executing program 0: ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x34, 0x4, 0x0, 0x0, 0xd0, 0x64, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x0, [0x401, 0x5, 0x0, 0x5, 0x4]}, @timestamp_prespec={0x44, 0x44, 0xc0, 0x3, 0x0, [{@private=0xa010100}, {@multicast1, 0x5}, {@remote}, {@dev={0xac, 0x14, 0x14, 0x32}, 0x659}, {@broadcast}, {@empty}, {@multicast1, 0xffd200}, {@private=0xa010100, 0x7}]}, @timestamp_prespec={0x44, 0x34, 0x0, 0x3, 0x0, [{@dev, 0x20000}, {@multicast2, 0x7}, {@private=0xa010101}, {@rand_addr=0x64010101}, {@broadcast, 0x52ae}, {@multicast2}]}, @noop, @noop, @noop, @lsrr={0x83, 0xf, 0xdc, [@private=0xa010102, @rand_addr=0x64010102, @multicast1]}, @rr={0x7, 0x17, 0x0, [@dev, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) 1.51132844s ago: executing program 1: seccomp$SECCOMP_GET_NOTIF_SIZES(0x3, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) seccomp$SECCOMP_GET_NOTIF_SIZES(0x3, 0x0, &(0x7f0000000100)) seccomp$SECCOMP_GET_NOTIF_SIZES(0x3, 0x0, &(0x7f0000000180)) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) io_setup(0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r2, 0x40045402, 0x0) readv(0xffffffffffffffff, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r2, 0x40505412, &(0x7f00000000c0)) sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, 0x0, 0x0) sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) bpf$ITER_CREATE(0xb, 0x0, 0x0) openat$sndseq(0xffffffffffffff9c, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000040)={0xa, 0x0, 0x10000, @empty}, 0x1c) ioctl$SECCOMP_IOCTL_NOTIF_SEND(0xffffffffffffffff, 0xc0182101, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events.local\x00', 0x275a, 0x0) write$binfmt_misc(r4, &(0x7f0000000480)=ANY=[@ANYBLOB="8bb177c20a7c0c4100ffa6f38009f8b97ae2cfb39619c4c6a3741628a38e59ce76f73bcd7fffffffffffffff2ef1fb6954cc4701000000acae02000000513b1a51d326d737a985279d7721516dcf817c75d28509d02efeafd181fc57b37f034d89ce5f44e70112745faaac3322b3bb60027a327163b6a7d509ec30d515ec9818ce"], 0xed) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r4, 0x0) getsockopt$inet6_buf(r3, 0x29, 0x3d, 0x0, &(0x7f0000000080)) 1.422592167s ago: executing program 4: syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000180)='./file0\x00', 0x2, &(0x7f0000000040)=ANY=[@ANYBLOB="71756f74612c696f636861727365743d63703836322c6e6f71756f74612c6572726f72733d636f6e74696e75652c646973636172643d3078303030303030303030303030303030312c75737271756f74612c71756f74612c646973636172642c67727071756f74612c003efcb014a7cda3179b00fd24c7b6"], 0x1, 0x60b9, &(0x7f0000013cc0)="$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") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000) 1.277857681s ago: executing program 1: socket$nl_netfilter(0x10, 0x3, 0xc) syz_emit_ethernet(0x0, 0x0, 0x0) sendmsg$IPCTNL_MSG_CT_GET_DYING(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000640)={0x14, 0x6, 0x1, 0x9e91dd09233669f1}, 0x14}}, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0xfff, 0x2, 0x800, 0x400, 0xffffffffffffffff, 0x5, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1, 0xc}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x90) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r1 = open(&(0x7f0000000040)='./file0\x00', 0x40c5, 0x80) open(&(0x7f0000000080)='./file0\x00', 0x1, 0x0) r2 = inotify_init1(0x800) inotify_add_watch(r2, &(0x7f00000001c0)='./file0\x00', 0xb4f) write$9p(r1, &(0x7f0000001400)="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", 0x5ee) chown(&(0x7f0000000000)='./file0\x00', 0x0, 0xee01) inotify_add_watch(r2, &(0x7f0000000180)='./file0\x00', 0x10000000) signalfd(0xffffffffffffffff, &(0x7f0000000200)={[0x5]}, 0x8) close(0xffffffffffffffff) inotify_init1(0x0) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0) getsockname$packet(r4, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14) sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="4800000010000507000000000000000016000000", @ANYRES32=r5, @ANYBLOB="0000000200000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)=@newqdisc={0x38, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xfff1, 0xffff}}, [@TCA_RATE={0x6, 0x5, {0x0, 0x9}}, @qdisc_kind_options=@q_clsact={0xb}]}, 0x38}}, 0x0) capset(0x0, 0x0) 1.234636599s ago: executing program 3: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0) r3 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000080), r1) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'veth1\x00', 0x0}) r5 = socket(0xa, 0x3, 0x3a) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', 0x0}) setsockopt$MRT6_ADD_MIF(r5, 0x29, 0xca, &(0x7f0000000040)={0x1, 0x0, 0x0, r7}, 0xc) setsockopt$MRT6_DEL_MIF(r5, 0x29, 0xcb, &(0x7f0000000080)={0x0, 0x0, 0x1f, r7, 0x8}, 0xc) sendmsg$WG_CMD_GET_DEVICE(r2, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="000329bd7000fcdbdf25000000000800050001000000140002007767320000000000000000000000000008000100", @ANYRES32=r4, @ANYBLOB="24000300a05ca84f6c9c00000000fd7a70ae0fb20fa152600cb00845174f08076f8d78430800050000000000080001002c06ef9d8064ac352ca69800089dea171247e3b072f60439572b0e0f0fa8d997e4f47619babfed171b15bb77447514a306cacb33da4051340bfc19a5ef5e2fe6ca809e42780b7d933225cd8cd8ab317265cdeb71a4fe4d03ecbe22857e03d2fb2c5783", @ANYRES32=r7, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x4004000}, 0x20000800) sendmsg$NL80211_CMD_SET_TID_CONFIG(r1, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000004fc0)={0x28, r0, 0x10ada85e65c25349, 0x0, 0x0, {{0x67}, {@val={0x8, 0x6}, @val={0xc}}}}, 0x28}}, 0x0) 1.055983007s ago: executing program 3: socket$nl_netfilter(0x10, 0x3, 0xc) syz_emit_ethernet(0x0, 0x0, 0x0) sendmsg$IPCTNL_MSG_CT_GET_DYING(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000640)={0x14, 0x6, 0x1, 0x9e91dd09233669f1}, 0x14}}, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0xfff, 0x2, 0x800, 0x400, 0xffffffffffffffff, 0x5, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1, 0xc}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x90) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r1 = open(&(0x7f0000000040)='./file0\x00', 0x40c5, 0x80) open(&(0x7f0000000080)='./file0\x00', 0x1, 0x0) r2 = inotify_init1(0x800) inotify_add_watch(r2, &(0x7f00000001c0)='./file0\x00', 0xb4f) write$9p(r1, &(0x7f0000001400)="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", 0x5ee) chown(&(0x7f0000000000)='./file0\x00', 0x0, 0xee01) inotify_add_watch(r2, &(0x7f0000000180)='./file0\x00', 0x10000000) signalfd(0xffffffffffffffff, &(0x7f0000000200)={[0x5]}, 0x8) close(0xffffffffffffffff) inotify_init1(0x0) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0) getsockname$packet(r4, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14) sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="4800000010000507000000000000000016000000", @ANYRES32=r5, @ANYBLOB="0000000200000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)=@newqdisc={0x38, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xfff1, 0xffff}}, [@TCA_RATE={0x6, 0x5, {0x0, 0x9}}, @qdisc_kind_options=@q_clsact={0xb}]}, 0x38}}, 0x0) capset(0x0, 0x0) 1.033401275s ago: executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, &(0x7f00000000c0)={0x0, 0x747, 0x0, 0x4}, 0xc) connect$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe) setsockopt$bt_BT_CHANNEL_POLICY(0xffffffffffffffff, 0x112, 0xa, &(0x7f0000000080)=0x2, 0x4) io_setup(0xa4, &(0x7f0000000300)=0x0) io_submit(r1, 0x1, &(0x7f0000000040)=[&(0x7f0000000000)={0x180a, 0x0, 0x3, 0x1, 0x0, r0, 0x0}]) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x8, 0x9, 0x7, 0x2, 0x2000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x3}, 0x48) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1c, &(0x7f00000002c0)={@loopback, 0x0}, &(0x7f0000000400)=0x14) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@bloom_filter={0x1e, 0x4, 0xfffffff8, 0x1f, 0x804, r2, 0x5, '\x00', r3, 0xffffffffffffffff, 0x2, 0x3, 0x3, 0x6}, 0x48) r4 = socket$nl_route(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000000c0)={'lo\x00', 0x0}) sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@bridge_newneigh={0x34, 0x1c, 0x5, 0x0, 0x0, {0x2, 0x0, 0x0, r6, 0xa1}, [@NDA_DST_MAC={0xa}, @NDA_LLADDR={0xa, 0x2, @link_local}]}, 0x34}}, 0x0) 944.239363ms ago: executing program 2: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000140)=ANY=[@ANYBLOB="180100002100000000000000000000108500000075000000a50000002300000095"], &(0x7f0000000000)='GPL\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r3, 0x0, r2, 0x0, 0x10000008ebc, 0x0) splice(r1, 0x0, r4, 0x0, 0x25a5, 0x0) 837.161519ms ago: executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@ipv6_newrule={0x2c, 0x20, 0x1, 0x0, 0x0, {}, [@FIB_RULE_POLICY=@FRA_SUPPRESS_PREFIXLEN={0x8}, @FIB_RULE_POLICY=@FRA_TABLE={0x8}]}, 0x2c}}, 0x0) 577.828134ms ago: executing program 1: bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0x3, &(0x7f00000001c0)=ANY=[@ANYBLOB="180000000000000080"], 0x0}, 0x90) r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) getsockopt$inet6_mptcp_buf(r0, 0x11c, 0x3, &(0x7f00000001c0)=""/207, &(0x7f0000000000)=0xcf) 547.308765ms ago: executing program 3: syz_emit_ethernet(0x46, &(0x7f0000001100)={@local, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "000210", 0x10, 0x3a, 0x0, @remote, @mcast2, {[], @ni={0x8c}}}}}}, 0x0) 246.670489ms ago: executing program 1: syz_io_uring_setup(0x24fb, 0x0, &(0x7f0000000080), &(0x7f0000000140)) socket$unix(0x1, 0x1, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000180)={'wg0\x00', 0x0}) openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$binderfs(0xffffffffffffff9c, &(0x7f00000005c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="190000000000000000000100000024000300000000000000000000000000000000000000000000000000000000000000000008000100", @ANYRES32=r2], 0x40}}, 0x0) ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, 0x0) sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000100000024000300a05ca84f6c9c8e3853e2fd7a70ae0fb20fa152600cb00845174f08076f8d784314000200776730"], 0x4c}}, 0x0) 161.900954ms ago: executing program 3: syz_open_dev$evdev(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x71}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = fsopen(&(0x7f0000000040)='configfs\x00', 0x0) fsconfig$FSCONFIG_SET_FLAG(r4, 0x6, 0x0, 0x0, 0x0) r5 = fsmount(r4, 0x0, 0x0) r6 = openat(r5, &(0x7f0000000340)='.\x00', 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x9, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000100d50f1000000000"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90) lseek(r6, 0x1, 0x1) connect$inet6(0xffffffffffffffff, &(0x7f0000004540)={0xa, 0x0, 0x0, @mcast2}, 0x1c) 0s ago: executing program 0: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) bind$bt_sco(r0, &(0x7f0000000000)={0x1f, @none}, 0x8) connect$bt_sco(r0, &(0x7f0000000040), 0x8) kernel console output (not intermixed with test programs): omiscuous mode [ 161.023785][ T2870] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 161.042823][ T2870] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 161.052958][ T2870] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 161.060490][ T2870] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 161.084171][ T2870] veth1_macvtap: left promiscuous mode [ 161.089760][ T2870] veth0_macvtap: left promiscuous mode [ 161.095577][ T2870] veth1_vlan: left promiscuous mode [ 161.100899][ T2870] veth0_vlan: left promiscuous mode [ 161.520751][ T5108] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 161.532130][ T5108] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 161.542481][ T5108] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 161.551251][ T5108] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 161.574394][ T5108] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 161.582332][ T5108] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 161.658694][ T7289] loop0: detected capacity change from 0 to 2048 [ 161.779831][ T7290] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 161.957004][ T2870] team0 (unregistering): Port device team_slave_1 removed [ 161.961383][ T7290] NILFS (loop0): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 161.976208][ T7290] NILFS error (device loop0): nilfs_bmap_propagate: broken bmap (inode number=4) [ 162.006567][ T7290] Remounting filesystem read-only [ 162.019739][ T2833] NILFS (loop0): discard dirty page: offset=4096, ino=6 [ 162.027575][ T2870] team0 (unregistering): Port device team_slave_0 removed [ 162.031844][ T2833] NILFS (loop0): discard dirty block: blocknr=39, size=1024 [ 162.043517][ T2833] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 162.059574][ T2833] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 162.069876][ T2833] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 162.080175][ T2833] NILFS (loop0): discard dirty page: offset=0, ino=2 [ 162.086924][ T2833] NILFS (loop0): discard dirty block: blocknr=18, size=1024 [ 162.094463][ T2833] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 162.103457][ T2833] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 162.112341][ T2833] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 162.124093][ T2833] NILFS (loop0): discard dirty page: offset=0, ino=3 [ 162.130808][ T2833] NILFS (loop0): discard dirty block: blocknr=42, size=1024 [ 162.138247][ T2833] NILFS (loop0): discard dirty block: blocknr=43, size=1024 [ 162.145686][ T2833] NILFS (loop0): discard dirty block: blocknr=44, size=1024 [ 162.153081][ T2833] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 162.163315][ T2833] NILFS (loop0): discard dirty page: offset=98304, ino=3 [ 162.170374][ T2833] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 162.185488][ T2833] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 162.194493][ T2833] NILFS (loop0): discard dirty block: blocknr=0, size=1024 [ 162.201961][ T2833] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 162.211044][ T2833] NILFS (loop0): discard dirty page: offset=196608, ino=3 [ 162.218401][ T2833] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 162.228370][ T2833] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 162.237310][ T2833] NILFS (loop0): discard dirty block: blocknr=49, size=1024 [ 162.245388][ T2833] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 162.255550][ T2833] NILFS (loop0): discard dirty page: offset=0, ino=19 [ 162.263493][ T2833] NILFS (loop0): discard dirty block: blocknr=0, size=1024 [ 162.270728][ T2833] NILFS (loop0): discard dirty block: blocknr=0, size=1024 [ 162.278031][ T2833] NILFS (loop0): discard dirty block: blocknr=0, size=1024 [ 162.286569][ T2833] NILFS (loop0): discard dirty block: blocknr=0, size=1024 [ 162.293940][ T2833] NILFS (loop0): discard dirty page: offset=0, ino=5 [ 162.300674][ T2833] NILFS (loop0): discard dirty block: blocknr=41, size=1024 [ 162.308437][ T2833] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 162.317654][ T2833] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 162.326642][ T2833] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 162.336642][ T2833] NILFS (loop0): discard dirty page: offset=0, ino=4 [ 162.345881][ T2833] NILFS (loop0): discard dirty block: blocknr=40, size=1024 [ 162.353398][ T2833] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 162.363284][ T2833] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 162.378210][ T2833] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 162.406184][ T6020] NILFS (loop0): disposed unprocessed dirty file(s) when stopping log writer [ 162.423119][ T6020] NILFS (loop0): discard dirty page: offset=0, ino=6 [ 162.429832][ T6020] NILFS (loop0): discard dirty block: blocknr=35, size=1024 [ 162.438666][ T6020] NILFS (loop0): discard dirty block: blocknr=36, size=1024 [ 162.447032][ T6020] NILFS (loop0): discard dirty block: blocknr=37, size=1024 [ 162.455060][ T6020] NILFS (loop0): discard dirty block: blocknr=38, size=1024 [ 162.637436][ T7237] bridge0: port 1(bridge_slave_0) entered blocking state [ 162.661556][ T7237] bridge0: port 1(bridge_slave_0) entered disabled state [ 162.678442][ T7237] bridge_slave_0: entered allmulticast mode [ 162.693693][ T7237] bridge_slave_0: entered promiscuous mode [ 162.705278][ T7296] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 162.710107][ T7237] bridge0: port 2(bridge_slave_1) entered blocking state [ 162.721675][ T7237] bridge0: port 2(bridge_slave_1) entered disabled state [ 162.734787][ T7237] bridge_slave_1: entered allmulticast mode [ 162.741567][ T7237] bridge_slave_1: entered promiscuous mode [ 162.759607][ T7292] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. [ 162.843493][ T5111] Bluetooth: hci2: command tx timeout [ 162.867724][ T7237] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 162.895071][ T7299] loop3: detected capacity change from 0 to 2048 [ 162.904908][ T7237] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 162.916307][ T7299] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 162.932295][ T7299] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 162.980642][ T7299] UDF-fs: error (device loop3): udf_verify_fi: directory (ino 1376) has entry where CRC length (63772) does not match entry length (28) [ 163.066295][ T7237] team0: Port device team_slave_0 added [ 163.072650][ T7070] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 163.103377][ T7237] team0: Port device team_slave_1 added [ 163.109581][ T7070] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 163.136512][ T7070] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 163.195611][ T7070] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 163.226732][ T7237] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 163.237777][ T7237] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 163.269172][ T7237] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 163.308903][ T7237] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 163.321835][ T7237] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 163.351745][ T7237] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 163.479373][ T7237] hsr_slave_0: entered promiscuous mode [ 163.502395][ T7237] hsr_slave_1: entered promiscuous mode [ 163.521516][ T7237] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 163.540491][ T7237] Cannot create hsr debugfs directory [ 163.581103][ T7305] loop3: detected capacity change from 0 to 32768 [ 163.591585][ T7305] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (7305) [ 163.619499][ T7305] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 163.643053][ T5111] Bluetooth: hci0: command tx timeout [ 163.661961][ T7305] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 163.670883][ T7305] BTRFS info (device loop3): using free-space-tree [ 163.745264][ T7310] loop0: detected capacity change from 0 to 8 [ 163.767890][ T2870] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 163.770294][ T7310] unable to read inode lookup table [ 163.849246][ T6064] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 163.925842][ T2870] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 164.101993][ T7330] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 164.117485][ T2870] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 164.219459][ T7334] loop0: detected capacity change from 0 to 1024 [ 164.245499][ T2870] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 164.267874][ T7286] chnl_net:caif_netlink_parms(): no params data found [ 164.276049][ T7334] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 164.380714][ T6020] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.467056][ T7286] bridge0: port 1(bridge_slave_0) entered blocking state [ 164.487399][ T7286] bridge0: port 1(bridge_slave_0) entered disabled state [ 164.511778][ T7286] bridge_slave_0: entered allmulticast mode [ 164.536123][ T7286] bridge_slave_0: entered promiscuous mode [ 164.541019][ T7351] loop0: detected capacity change from 0 to 512 [ 164.553406][ T7351] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 164.570975][ T7351] EXT4-fs (loop0): blocks per group (3008) and clusters per group (32768) inconsistent [ 164.617255][ T7070] 8021q: adding VLAN 0 to HW filter on device bond0 [ 164.643822][ T7286] bridge0: port 2(bridge_slave_1) entered blocking state [ 164.659813][ T7286] bridge0: port 2(bridge_slave_1) entered disabled state [ 164.668746][ T7286] bridge_slave_1: entered allmulticast mode [ 164.678722][ T7286] bridge_slave_1: entered promiscuous mode [ 164.815661][ T7286] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 164.899436][ T7286] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 164.923175][ T5111] Bluetooth: hci2: command tx timeout [ 165.570268][ T7070] 8021q: adding VLAN 0 to HW filter on device team0 [ 165.720479][ T2870] bridge_slave_1: left allmulticast mode [ 165.740856][ T5111] Bluetooth: hci0: command tx timeout [ 165.760768][ T2870] bridge_slave_1: left promiscuous mode [ 165.780673][ T2870] bridge0: port 2(bridge_slave_1) entered disabled state [ 165.798725][ T2870] bridge_slave_0: left allmulticast mode [ 165.805177][ T2870] bridge_slave_0: left promiscuous mode [ 165.810978][ T2870] bridge0: port 1(bridge_slave_0) entered disabled state [ 165.949468][ T7371] loop3: detected capacity change from 0 to 512 [ 165.986501][ T7371] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 165.995718][ T7371] EXT4-fs (loop3): invalid inodes per group: 393248 [ 165.995718][ T7371] [ 166.223476][ T7373] loop3: detected capacity change from 0 to 2048 [ 166.287771][ T7373] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 166.308801][ T2870] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 166.328066][ T2870] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 166.349619][ T2870] bond0 (unregistering): Released all slaves [ 166.399403][ T7286] team0: Port device team_slave_0 added [ 166.415576][ T7286] team0: Port device team_slave_1 added [ 166.480665][ T7365] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. [ 166.509379][ T6064] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 166.540827][ T45] bridge0: port 1(bridge_slave_0) entered blocking state [ 166.548024][ T45] bridge0: port 1(bridge_slave_0) entered forwarding state [ 166.556696][ T45] bridge0: port 2(bridge_slave_1) entered blocking state [ 166.563870][ T45] bridge0: port 2(bridge_slave_1) entered forwarding state [ 166.581882][ T7286] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 166.590010][ T7286] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 166.619561][ T7286] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 166.705561][ T7286] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 166.714266][ T7286] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 166.717920][ T7382] loop3: detected capacity change from 0 to 1024 [ 166.740855][ T7286] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 166.786205][ T7382] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 166.870398][ T6064] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 166.921682][ T7286] hsr_slave_0: entered promiscuous mode [ 166.928580][ T7286] hsr_slave_1: entered promiscuous mode [ 166.937645][ T7286] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 166.945301][ T7286] Cannot create hsr debugfs directory [ 166.986916][ T29] audit: type=1326 audit(1717409324.958:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7385 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f37c367cee9 code=0x0 [ 167.013137][ T5111] Bluetooth: hci2: command tx timeout [ 167.038029][ T2870] hsr_slave_0: left promiscuous mode [ 167.049341][ T2870] hsr_slave_1: left promiscuous mode [ 167.057118][ T2870] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 167.064666][ T2870] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 167.072634][ T2870] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 167.080485][ T2870] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 167.120204][ T2870] veth1_macvtap: left promiscuous mode [ 167.131253][ T2870] veth0_macvtap: left promiscuous mode [ 167.137050][ T2870] veth1_vlan: left promiscuous mode [ 167.142376][ T2870] veth0_vlan: left promiscuous mode [ 167.803864][ T5111] Bluetooth: hci0: command tx timeout [ 168.338574][ T2870] team0 (unregistering): Port device team_slave_1 removed [ 168.411401][ T2870] team0 (unregistering): Port device team_slave_0 removed [ 168.458554][ T7402] capability: warning: `syz-executor.0' uses deprecated v2 capabilities in a way that may be insecure [ 168.470779][ T7402] program syz-executor.0 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 168.762954][ T7409] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 168.877782][ T7237] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 168.889501][ T7237] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 168.909150][ T7408] netlink: 'syz-executor.0': attribute type 10 has an invalid length. [ 168.979930][ T7237] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 168.989379][ T29] audit: type=1326 audit(1717409326.958:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7410 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f37c367cee9 code=0x0 [ 169.052062][ T7237] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 169.125880][ T29] audit: type=1800 audit(1717409327.108:119): pid=7418 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1949 res=0 errno=0 [ 169.464125][ T7237] 8021q: adding VLAN 0 to HW filter on device bond0 [ 169.515234][ T7070] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 169.557749][ T7237] 8021q: adding VLAN 0 to HW filter on device team0 [ 169.580191][ T5156] bridge0: port 1(bridge_slave_0) entered blocking state [ 169.587415][ T5156] bridge0: port 1(bridge_slave_0) entered forwarding state [ 169.613742][ T5109] bridge0: port 2(bridge_slave_1) entered blocking state [ 169.620884][ T5109] bridge0: port 2(bridge_slave_1) entered forwarding state [ 169.686352][ T7070] veth0_vlan: entered promiscuous mode [ 169.762347][ T7070] veth1_vlan: entered promiscuous mode [ 169.831371][ T7237] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 169.883076][ T5111] Bluetooth: hci0: command tx timeout [ 169.921911][ T7070] veth0_macvtap: entered promiscuous mode [ 169.987888][ T7070] veth1_macvtap: entered promiscuous mode [ 170.096678][ T7070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 170.122370][ T7070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 170.137447][ T7433] program syz-executor.3 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 170.143390][ T7070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 170.163041][ T7070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 170.180666][ T7070] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 170.218480][ T7070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 170.230692][ T7070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 170.241453][ T7070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 170.259282][ T7070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 170.271431][ T7070] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 170.327628][ T7070] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 170.347738][ T7070] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 170.369981][ T7070] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 170.379077][ T7070] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 170.392027][ T7429] loop0: detected capacity change from 0 to 32768 [ 170.438533][ T7286] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 170.500205][ T7286] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 170.529609][ T7286] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 170.551378][ T7286] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 170.595413][ T7237] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 170.673254][ T2870] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 170.681080][ T2870] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 170.749800][ T2801] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 170.766427][ T7237] veth0_vlan: entered promiscuous mode [ 170.795846][ T2801] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 170.813576][ T7237] veth1_vlan: entered promiscuous mode [ 170.950442][ T7286] 8021q: adding VLAN 0 to HW filter on device bond0 [ 171.002043][ T7237] veth0_macvtap: entered promiscuous mode [ 171.026362][ T7237] veth1_macvtap: entered promiscuous mode [ 171.034193][ T7449] x_tables: ip_tables: ah match: only valid for protocol 51 [ 171.072309][ T7286] 8021q: adding VLAN 0 to HW filter on device team0 [ 171.121117][ T5156] bridge0: port 1(bridge_slave_0) entered blocking state [ 171.128305][ T5156] bridge0: port 1(bridge_slave_0) entered forwarding state [ 171.150591][ T29] audit: type=1326 audit(1717409329.088:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7451 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7520e7cee9 code=0x0 [ 171.221911][ T7237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 171.254887][ T7237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 171.274282][ T7237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 171.288459][ T7237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 171.298457][ T7237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 171.309145][ T7237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 171.321804][ T7237] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 171.331341][ T5151] bridge0: port 2(bridge_slave_1) entered blocking state [ 171.338532][ T5151] bridge0: port 2(bridge_slave_1) entered forwarding state [ 171.370592][ T7463] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. [ 171.395126][ T7237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 171.416086][ T7237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 171.433873][ T7237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 171.453170][ T7237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 171.464081][ T7237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 171.482501][ T7237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 171.495721][ T7237] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 171.602460][ T7237] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 171.626281][ T7237] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 171.661128][ T7237] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 171.680242][ T7237] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 171.946579][ T4499] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 171.949636][ T7477] x_tables: ip_tables: ah match: only valid for protocol 51 [ 171.984185][ T4499] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 172.048055][ T51] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 172.067283][ T51] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 172.196781][ T7479] loop2: detected capacity change from 0 to 4096 [ 172.219039][ T7286] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 172.242341][ T7482] x_tables: ip_tables: ah match: only valid for protocol 51 [ 172.309917][ T29] audit: type=1326 audit(1717409330.278:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7486 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4b2367cee9 code=0x0 [ 172.377231][ T7479] ntfs3: loop2: ino=1f, "file2" attr_set_size [ 172.644595][ T7469] loop3: detected capacity change from 0 to 32768 [ 172.668847][ T7500] x_tables: ip_tables: ah match: only valid for protocol 51 [ 172.670245][ T7494] loop0: detected capacity change from 0 to 4096 [ 172.901939][ T7494] ntfs3: loop0: ino=1f, "file2" attr_set_size [ 172.949623][ T7286] veth0_vlan: entered promiscuous mode [ 173.034500][ T7286] veth1_vlan: entered promiscuous mode [ 173.127159][ T7286] veth0_macvtap: entered promiscuous mode [ 173.154507][ T7286] veth1_macvtap: entered promiscuous mode [ 173.209615][ T7286] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 173.243078][ T7286] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 173.267819][ T7286] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 173.288931][ T7286] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 173.299224][ T7286] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 173.320018][ T7286] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 173.331883][ T7286] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 173.363307][ T7286] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 173.394580][ T7286] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 173.448032][ T7286] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 173.466064][ T7286] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 173.479258][ T7286] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 173.496781][ T7286] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 173.508019][ T7286] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 173.527114][ T7529] x_tables: ip_tables: ah match: only valid for protocol 51 [ 173.538940][ T7286] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 173.554029][ T7526] loop0: detected capacity change from 0 to 4096 [ 173.564259][ T7286] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 173.573058][ T7526] ntfs3: Unknown parameter 'noacsrules' [ 173.581507][ T7286] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 173.599934][ T7286] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 173.637799][ T7286] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 173.683720][ T7286] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 173.692469][ T7286] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 173.716585][ T7286] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 173.730952][ T7535] loop1: detected capacity change from 0 to 1024 [ 173.752227][ T7535] hfsplus: uid requires an argument [ 173.767273][ T29] audit: type=1326 audit(1717409331.738:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7538 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f10a7cee9 code=0x7ffc0000 [ 173.768305][ T7535] hfsplus: unable to parse mount options [ 173.851630][ T29] audit: type=1326 audit(1717409331.738:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7538 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f10a7cee9 code=0x7ffc0000 [ 173.920433][ T138] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 173.938629][ T29] audit: type=1326 audit(1717409331.768:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7538 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3f10a7cee9 code=0x7ffc0000 [ 173.969958][ T138] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 174.023862][ T29] audit: type=1326 audit(1717409331.768:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7538 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f10a7cee9 code=0x7ffc0000 [ 174.025899][ T5202] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 174.057947][ T7546] Bluetooth: MGMT ver 1.22 [ 174.095553][ T29] audit: type=1326 audit(1717409331.768:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7538 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f10a7cee9 code=0x7ffc0000 [ 174.120604][ T7535] 9pnet: Could not find request transport: fd0x000000000000000b0x000000000000000a [ 174.156851][ T29] audit: type=1326 audit(1717409331.768:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7538 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3f10a7cee9 code=0x7ffc0000 [ 174.181441][ T5202] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 174.198390][ T7543] loop3: detected capacity change from 0 to 4096 [ 174.265980][ T29] audit: type=1326 audit(1717409331.768:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7538 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f10a7cee9 code=0x7ffc0000 [ 174.339125][ T29] audit: type=1326 audit(1717409331.768:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7538 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f3f10a7a667 code=0x7ffc0000 [ 174.378873][ T7552] loop2: detected capacity change from 0 to 1024 [ 174.394408][ T7552] hfsplus: type requires a 4 character value [ 174.396166][ T7556] process 'syz-executor.0' launched './file0' with NULL argv: empty string added [ 174.400413][ T7552] hfsplus: unable to parse mount options [ 174.422866][ T29] audit: type=1326 audit(1717409331.768:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7538 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f3f10a40329 code=0x7ffc0000 [ 174.487942][ T7543] ntfs3: loop3: ino=1f, "file2" attr_set_size [ 174.878149][ T7580] cgroup: none used incorrectly [ 175.372607][ T7595] netlink: 6 bytes leftover after parsing attributes in process `syz-executor.1'. [ 175.956941][ T7587] loop3: detected capacity change from 0 to 32768 [ 176.220310][ T7587] bcachefs (loop3): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 176.248627][ T7587] bcachefs (loop3): recovering from clean shutdown, journal seq 10 [ 176.319820][ T7587] bcachefs (loop3): alloc_read... done [ 176.329447][ T7587] bcachefs (loop3): stripes_read... done [ 176.335579][ T7587] bcachefs (loop3): snapshots_read... done [ 176.343629][ T7587] bcachefs (loop3): journal_replay... done [ 176.350962][ T7587] bcachefs (loop3): resume_logged_ops... done [ 176.367024][ T7587] bcachefs (loop3): going read-write [ 176.380536][ T7587] bcachefs (loop3): done starting filesystem [ 176.712437][ T6064] bcachefs (loop3): shutting down [ 176.718786][ T6064] bcachefs (loop3): going read-only [ 176.725711][ T6064] bcachefs (loop3): finished waiting for writes to stop [ 176.745446][ T6064] bcachefs (loop3): flushing journal and stopping allocators, journal seq 12 [ 176.799876][ T6064] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 13 [ 176.827912][ T6064] bcachefs (loop3): shutdown complete, journal seq 14 [ 176.837943][ T6064] bcachefs (loop3): marking filesystem clean [ 176.878283][ T6064] bcachefs (loop3): shutdown complete [ 177.837476][ T7622] loop4: detected capacity change from 0 to 64 [ 177.948842][ T7628] sp0: Synchronizing with TNC [ 178.101155][ T7634] loop1: detected capacity change from 0 to 1024 [ 178.114033][ T7634] EXT4-fs: Ignoring removed nomblk_io_submit option [ 178.155056][ T7634] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 178.411053][ T7237] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 178.992370][ T7671] binder: 7669:7671 unknown command 0 [ 179.006657][ T7671] binder: 7669:7671 ioctl c0306201 20000640 returned -22 [ 179.231553][ T7644] loop0: detected capacity change from 0 to 32768 [ 179.377549][ T7663] loop1: detected capacity change from 0 to 32768 [ 179.387776][ T7663] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (7663) [ 179.408243][ T7644] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 179.427543][ T7663] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 179.438054][ T7663] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 179.447052][ T7663] BTRFS info (device loop1): using free-space-tree [ 179.472299][ T7644] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 179.549496][ T7644] bcachefs (loop0): alloc_read... done [ 179.557004][ T7644] bcachefs (loop0): stripes_read... done [ 179.563584][ T7644] bcachefs (loop0): snapshots_read... done [ 179.585456][ T7644] bcachefs (loop0): journal_replay... done [ 179.591311][ T7644] bcachefs (loop0): resume_logged_ops... done [ 179.602863][ T7644] bcachefs (loop0): going read-write [ 179.662361][ T7644] bcachefs (loop0): done starting filesystem [ 179.681525][ T7663] BTRFS info (device loop1): checking UUID tree [ 179.940377][ T6020] bcachefs (loop0): shutting down [ 179.952874][ T6020] bcachefs (loop0): going read-only [ 179.958313][ T6020] bcachefs (loop0): finished waiting for writes to stop [ 180.018231][ T6020] bcachefs (loop0): flushing journal and stopping allocators, journal seq 12 [ 180.047895][ T6020] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 13 [ 180.060722][ T6020] bcachefs (loop0): shutdown complete, journal seq 14 [ 180.068884][ T6020] bcachefs (loop0): marking filesystem clean [ 180.140644][ T6020] bcachefs (loop0): shutdown complete [ 180.141400][ T29] kauditd_printk_skb: 4 callbacks suppressed [ 180.141414][ T29] audit: type=1800 audit(1717409338.108:135): pid=7727 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1961 res=0 errno=0 [ 180.265987][ T7237] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 180.378777][ T7734] loop2: detected capacity change from 0 to 2048 [ 180.447509][ T7734] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 180.650972][ T7734] input: syz1 as /devices/virtual/input/input9 [ 180.858890][ T7070] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 181.191266][ T7764] loop2: detected capacity change from 0 to 512 [ 181.234234][ T7764] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 181.251624][ T7764] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 181.261954][ T7764] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 181.326635][ T7764] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 181.343885][ T7764] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2234: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 181.366489][ T7764] EXT4-fs (loop2): Remounting filesystem read-only [ 181.388681][ T7764] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 181.422117][ T7764] EXT4-fs warning (device loop2): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 181.453944][ T7764] EXT4-fs warning (device loop2): dx_probe:880: Enable large directory feature to access it [ 181.481940][ T7764] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended [ 181.670855][ T7070] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 181.736545][ T7781] loop1: detected capacity change from 0 to 2048 [ 181.779467][ T7781] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 181.787828][ T7786] loop2: detected capacity change from 0 to 512 [ 181.830794][ T7786] EXT4-fs error (device loop2): ext4_orphan_get:1394: inode #15: comm syz-executor.2: casefold flag without casefold feature [ 181.842258][ T7766] loop3: detected capacity change from 0 to 32768 [ 181.849447][ T7786] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 181.864133][ T7781] input: syz1 as /devices/virtual/input/input10 [ 181.871721][ T7786] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 181.890596][ T7766] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (7766) [ 181.916349][ T7766] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 181.930674][ T7766] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 181.941959][ T7766] BTRFS info (device loop3): using free-space-tree [ 182.032588][ T7766] BTRFS info (device loop3): checking UUID tree [ 182.149194][ T7070] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 182.225035][ T29] audit: type=1326 audit(1717409340.198:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7807 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7520e7cee9 code=0x7ffc0000 [ 182.267271][ T29] audit: type=1326 audit(1717409340.198:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7807 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7520e7cee9 code=0x7ffc0000 [ 182.290271][ T29] audit: type=1326 audit(1717409340.198:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7807 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7520e7cee9 code=0x7ffc0000 [ 182.314852][ T6064] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 182.335081][ T29] audit: type=1326 audit(1717409340.198:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7807 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7520e7cee9 code=0x7ffc0000 [ 182.386279][ T29] audit: type=1326 audit(1717409340.198:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7807 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7520e7cee9 code=0x7ffc0000 [ 182.415128][ T29] audit: type=1326 audit(1717409340.228:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7807 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7520e7cee9 code=0x7ffc0000 [ 182.461935][ T29] audit: type=1326 audit(1717409340.228:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7807 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7520e7cee9 code=0x7ffc0000 [ 182.488823][ T7782] evm: overlay not supported [ 182.511982][ T29] audit: type=1326 audit(1717409340.228:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7807 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f7520e7a667 code=0x7ffc0000 [ 182.536306][ T29] audit: type=1326 audit(1717409340.228:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7807 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7520e40329 code=0x7ffc0000 [ 182.585627][ T7237] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 183.881493][ T7842] loop3: detected capacity change from 0 to 512 [ 183.897256][ T7839] netlink: 10 bytes leftover after parsing attributes in process `syz-executor.2'. [ 183.940069][ T7842] EXT4-fs error (device loop3): ext4_orphan_get:1394: inode #15: comm syz-executor.3: casefold flag without casefold feature [ 184.008403][ T7842] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 184.098874][ T7842] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 184.537164][ T6064] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 184.650882][ T5111] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 184.661433][ T5111] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 184.672579][ T5111] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 184.687303][ T5111] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 184.696099][ T5111] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 184.703904][ T5111] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 184.789501][ T7286] syz-executor.4 (7286) used greatest stack depth: 18448 bytes left [ 184.914943][ T2822] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 185.019707][ T2822] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 185.165904][ T2822] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 185.220519][ T7866] chnl_net:caif_netlink_parms(): no params data found [ 185.279333][ T2822] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 185.350608][ T7866] bridge0: port 1(bridge_slave_0) entered blocking state [ 185.357888][ T7866] bridge0: port 1(bridge_slave_0) entered disabled state [ 185.365178][ T7866] bridge_slave_0: entered allmulticast mode [ 185.371912][ T7866] bridge_slave_0: entered promiscuous mode [ 185.381946][ T7866] bridge0: port 2(bridge_slave_1) entered blocking state [ 185.389682][ T7866] bridge0: port 2(bridge_slave_1) entered disabled state [ 185.405515][ T7866] bridge_slave_1: entered allmulticast mode [ 185.416286][ T7866] bridge_slave_1: entered promiscuous mode [ 185.494453][ T7866] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 185.519709][ T7866] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 185.639241][ T7866] team0: Port device team_slave_0 added [ 185.711086][ T7866] team0: Port device team_slave_1 added [ 185.787779][ T2822] bridge_slave_1: left allmulticast mode [ 185.794929][ T2822] bridge_slave_1: left promiscuous mode [ 185.800936][ T2822] bridge0: port 2(bridge_slave_1) entered disabled state [ 185.814604][ T2822] bridge_slave_0: left allmulticast mode [ 185.822489][ T2822] bridge_slave_0: left promiscuous mode [ 185.836987][ T2822] bridge0: port 1(bridge_slave_0) entered disabled state [ 185.892255][ T7902] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 186.307193][ T2822] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 186.331084][ T2822] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 186.354838][ T2822] bond0 (unregistering): Released all slaves [ 186.386759][ T7866] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 186.400530][ T7866] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 186.488274][ T7866] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 186.512501][ T7921] loop2: detected capacity change from 0 to 2048 [ 186.531989][ T7866] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 186.556573][ T7866] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 186.583265][ T7866] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 186.595647][ T7902] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 186.611569][ T7921] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found [ 186.620199][ T7921] UDF-fs: Scanning with blocksize 512 failed [ 186.634166][ T7921] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found [ 186.641869][ T7921] UDF-fs: Scanning with blocksize 1024 failed [ 186.654397][ T7921] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=512, location=512 [ 186.664960][ T7921] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found [ 186.672995][ T7921] UDF-fs: Scanning with blocksize 2048 failed [ 186.680657][ T7921] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 186.691511][ T7921] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=512, location=512 [ 186.702415][ T7921] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found [ 186.716156][ T7921] UDF-fs: Scanning with blocksize 4096 failed [ 186.728615][ T7921] UDF-fs: warning (device loop2): udf_fill_super: No partition found (1) [ 186.775051][ T5108] Bluetooth: hci0: command tx timeout [ 186.980044][ T7903] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 187.928370][ T29] kauditd_printk_skb: 60 callbacks suppressed [ 187.928389][ T29] audit: type=1800 audit(1717409345.898:205): pid=7937 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1956 res=0 errno=0 [ 188.009356][ T7866] hsr_slave_0: entered promiscuous mode [ 188.028768][ T7866] hsr_slave_1: entered promiscuous mode [ 188.221377][ T2822] hsr_slave_0: left promiscuous mode [ 188.237437][ T2822] hsr_slave_1: left promiscuous mode [ 188.255176][ T2822] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 188.278592][ T2822] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 188.284983][ T7923] loop0: detected capacity change from 0 to 32768 [ 188.295720][ T7923] btrfs: Deprecated parameter 'usebackuproot' [ 188.301994][ T7923] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 188.302973][ T2822] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 188.320382][ T2822] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 188.322994][ T7923] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (7923) [ 188.351003][ T7923] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 188.361575][ T7923] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm [ 188.390253][ T2822] veth1_macvtap: left promiscuous mode [ 188.400633][ T2822] veth0_macvtap: left promiscuous mode [ 188.409129][ T2822] veth1_vlan: left promiscuous mode [ 188.421168][ T2822] veth0_vlan: left promiscuous mode [ 188.695382][ T7923] BTRFS info (device loop0): rebuilding free space tree [ 189.028261][ T5108] Bluetooth: hci0: command tx timeout [ 189.386981][ T7923] BTRFS info (device loop0): disabling free space tree [ 189.436584][ T7923] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 189.469719][ T7923] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 189.675773][ T6020] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 190.173646][ T7972] loop0: detected capacity change from 0 to 2048 [ 190.238961][ T7972] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 190.270666][ T7972] UDF-fs: Scanning with blocksize 512 failed [ 190.282476][ T7966] loop2: detected capacity change from 0 to 32768 [ 190.311585][ T7972] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 190.324000][ T7966] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 190.339024][ T7972] UDF-fs: Scanning with blocksize 1024 failed [ 190.394509][ T7972] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512 [ 190.406323][ T2822] team0 (unregistering): Port device team_slave_1 removed [ 190.414378][ T7972] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 190.432732][ T7972] UDF-fs: Scanning with blocksize 2048 failed [ 190.466632][ T7972] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 190.476752][ T7966] XFS (loop2): Ending clean mount [ 190.490558][ T7966] XFS (loop2): Quotacheck needed: Please wait. [ 190.519436][ T2822] team0 (unregistering): Port device team_slave_0 removed [ 190.530326][ T7972] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512 [ 190.547862][ T7972] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 190.575106][ T7972] UDF-fs: Scanning with blocksize 4096 failed [ 190.579838][ T7966] XFS (loop2): Quotacheck: Done. [ 190.581314][ T7972] UDF-fs: warning (device loop0): udf_fill_super: No partition found (1) [ 190.744123][ T7070] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 191.082886][ T5108] Bluetooth: hci0: command tx timeout [ 191.381843][ T7987] loop1: detected capacity change from 0 to 32768 [ 191.400591][ T7987] btrfs: Deprecated parameter 'usebackuproot' [ 191.406973][ T7987] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 191.420359][ T7987] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (7987) [ 191.438753][ T7987] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 191.452622][ T7987] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 191.599406][ T7987] BTRFS info (device loop1): rebuilding free space tree [ 191.612038][ T29] audit: type=1800 audit(1717409349.578:206): pid=8010 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1961 res=0 errno=0 [ 191.651019][ T7987] BTRFS info (device loop1): disabling free space tree [ 191.658369][ T29] audit: type=1804 audit(1717409349.578:207): pid=8010 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir1839109178/syzkaller.rAnCPa/109/bus" dev="sda1" ino=1961 res=1 errno=0 [ 191.692959][ T7987] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 191.708642][ T7987] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 192.009707][ T7237] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 192.087076][ T8021] loop3: detected capacity change from 0 to 256 [ 192.495579][ T8024] loop2: detected capacity change from 0 to 2048 [ 192.527870][ T8024] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found [ 192.543791][ T8024] UDF-fs: Scanning with blocksize 512 failed [ 192.578663][ T8024] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found [ 192.588243][ T8028] loop3: detected capacity change from 0 to 256 [ 192.607441][ T8024] UDF-fs: Scanning with blocksize 1024 failed [ 192.643934][ T8024] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=512, location=512 [ 192.679065][ T8024] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found [ 192.712825][ T8024] UDF-fs: Scanning with blocksize 2048 failed [ 192.733482][ T8024] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 192.747260][ T7866] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 192.760488][ T7866] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 192.769332][ T8024] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=512, location=512 [ 192.790820][ T8024] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found [ 192.803853][ T7866] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 192.811815][ T8024] UDF-fs: Scanning with blocksize 4096 failed [ 192.828715][ T7866] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 192.828830][ T8024] UDF-fs: warning (device loop2): udf_fill_super: No partition found (1) [ 193.001339][ T7866] 8021q: adding VLAN 0 to HW filter on device bond0 [ 193.065506][ T7866] 8021q: adding VLAN 0 to HW filter on device team0 [ 193.092353][ T5151] bridge0: port 1(bridge_slave_0) entered blocking state [ 193.099596][ T5151] bridge0: port 1(bridge_slave_0) entered forwarding state [ 193.145565][ T5151] bridge0: port 2(bridge_slave_1) entered blocking state [ 193.152760][ T5151] bridge0: port 2(bridge_slave_1) entered forwarding state [ 193.163167][ T5108] Bluetooth: hci0: command tx timeout [ 193.245100][ T7866] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 193.495851][ T8047] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 193.508729][ T8047] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 193.552832][ T9] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 193.590532][ T7866] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 193.676686][ T8053] loop0: detected capacity change from 0 to 256 [ 193.775794][ T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 193.799267][ T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 193.825584][ T9] usb 3-1: New USB device found, idVendor=27b8, idProduct=01ed, bcdDevice= 0.00 [ 193.841886][ T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 193.864671][ T9] usb 3-1: config 0 descriptor?? [ 194.127460][ T7866] veth0_vlan: entered promiscuous mode [ 194.160554][ T7866] veth1_vlan: entered promiscuous mode [ 194.181453][ T8051] loop1: detected capacity change from 0 to 32768 [ 194.197635][ T8051] btrfs: Deprecated parameter 'usebackuproot' [ 194.215898][ T8051] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 194.230103][ T8051] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (8051) [ 194.244598][ T7866] veth0_macvtap: entered promiscuous mode [ 194.255635][ T8062] loop0: detected capacity change from 0 to 256 [ 194.272817][ T8051] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 194.274256][ T7866] veth1_macvtap: entered promiscuous mode [ 194.294450][ T8051] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 194.317022][ T9] hid-led 0003:27B8:01ED.0002: unbalanced delimiter at end of report description [ 194.329100][ T9] hid-led 0003:27B8:01ED.0002: probe with driver hid-led failed with error -22 [ 194.358159][ T7866] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 194.380258][ T7866] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.392078][ T8051] BTRFS info (device loop1): rebuilding free space tree [ 194.399664][ T7866] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 194.419855][ T7866] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.431192][ T7866] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 194.431348][ T8051] BTRFS info (device loop1): disabling free space tree [ 194.446881][ T7866] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.450100][ T8051] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 194.458610][ T7866] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 194.468353][ T8051] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 194.484314][ T7866] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.500022][ T9] usb 3-1: USB disconnect, device number 3 [ 194.525473][ T1247] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.530898][ T7866] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 194.531767][ T1247] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.584433][ T7866] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 194.619064][ T7866] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.648230][ T7866] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 194.669202][ T7866] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.681990][ T7866] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 194.713046][ T7866] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.732442][ T7866] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 194.743203][ T7866] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.761921][ T7866] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 194.778762][ T7866] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 194.788919][ T7866] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 194.789042][ T7237] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 194.801727][ T7866] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 194.828862][ T7866] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 195.117862][ T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 195.153610][ T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 195.241247][ T2801] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 195.264465][ T8090] netlink: 'syz-executor.1': attribute type 6 has an invalid length. [ 195.267571][ T2801] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 195.280587][ T8091] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 195.307277][ T8091] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 195.683956][ T8101] loop0: detected capacity change from 0 to 256 [ 195.733803][ T5109] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 195.943195][ T5109] usb 5-1: Using ep0 maxpacket: 32 [ 195.973893][ T5109] usb 5-1: New USB device found, idVendor=0458, idProduct=7006, bcdDevice=69.91 [ 195.994680][ T5109] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 196.016987][ T5109] usb 5-1: config 0 descriptor?? [ 196.031509][ T5109] gspca_main: sunplus-2.14.0 probing 0458:7006 [ 196.227159][ T8115] netlink: 'syz-executor.0': attribute type 6 has an invalid length. [ 196.284100][ T5193] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 196.348659][ T8094] loop1: detected capacity change from 0 to 40427 [ 196.380943][ T8094] F2FS-fs (loop1): Found nat_bits in checkpoint [ 196.493099][ T8094] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 196.525299][ T5193] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 196.541249][ T8104] loop2: detected capacity change from 0 to 32768 [ 196.550605][ T5193] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 196.560441][ T5193] usb 4-1: New USB device found, idVendor=27b8, idProduct=01ed, bcdDevice= 0.00 [ 196.572853][ T5193] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 196.581047][ T8104] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz-executor.2 (8104) [ 196.596486][ T5193] usb 4-1: config 0 descriptor?? [ 196.609151][ T8104] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 196.613172][ T5151] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 196.621994][ T8104] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 196.643180][ T8104] BTRFS info (device loop2): using free-space-tree [ 196.698238][ T7237] syz-executor.1: attempt to access beyond end of device [ 196.698238][ T7237] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 196.716302][ T7237] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 196.813109][ T5151] usb 1-1: Using ep0 maxpacket: 16 [ 196.825863][ T5151] usb 1-1: New USB device found, idVendor=4855, idProduct=0091, bcdDevice=f1.23 [ 196.835113][ T5151] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 196.843883][ T5151] usb 1-1: Product: syz [ 196.848140][ T5151] usb 1-1: Manufacturer: syz [ 196.853706][ T5151] usb 1-1: SerialNumber: syz [ 196.861896][ T5151] usb 1-1: config 0 descriptor?? [ 196.874780][ T7070] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 197.052562][ T5193] hid-led 0003:27B8:01ED.0003: unbalanced delimiter at end of report description [ 197.084602][ T5193] hid-led 0003:27B8:01ED.0003: probe with driver hid-led failed with error -22 [ 197.156064][ T4499] usb 1-1: USB disconnect, device number 5 [ 197.286971][ T5193] usb 4-1: USB disconnect, device number 2 [ 197.400690][ T8140] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 197.411262][ T8140] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 197.652218][ T8138] loop2: detected capacity change from 0 to 32768 [ 197.681326][ T8138] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz-executor.2 (8138) [ 197.702402][ T4499] usb 5-1: USB disconnect, device number 2 [ 197.723265][ T8138] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 197.733894][ T8138] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 197.742629][ T8138] BTRFS info (device loop2): using free-space-tree [ 197.926386][ T8142] loop1: detected capacity change from 0 to 32768 [ 197.957141][ T8142] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (8142) [ 197.997209][ T7070] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 198.018460][ T8142] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 198.047380][ T8142] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 198.066206][ T8142] BTRFS info (device loop1): using free-space-tree [ 198.524473][ T8188] netlink: 'syz-executor.0': attribute type 6 has an invalid length. [ 198.625194][ T8190] loop2: detected capacity change from 0 to 256 [ 198.719766][ T7237] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 198.832077][ T8159] loop3: detected capacity change from 0 to 32768 [ 198.879274][ T8159] BTRFS: device /dev/loop3 (7:3) using temp-fsid 216104af-a335-4321-855e-943e8db43016 [ 198.880285][ T29] audit: type=1804 audit(1717409356.838:208): pid=8190 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.2" name=2F726F6F742F73797A6B616C6C65722D746573746469723934363338333636332F73797A6B616C6C65722E493446776F6A2F36342FE91F7189591E9233614B2F6275732F627573 dev="loop2" ino=1048636 res=1 errno=0 [ 198.897573][ T8159] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (8159) [ 198.930755][ T29] audit: type=1804 audit(1717409356.868:209): pid=8190 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.2" name=2F726F6F742F73797A6B616C6C65722D746573746469723934363338333636332F73797A6B616C6C65722E493446776F6A2F36342FE91F7189591E9233614B2F6275732F627573 dev="loop2" ino=1048636 res=1 errno=0 [ 199.037176][ T8159] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 199.073619][ T8159] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 199.084152][ T8159] BTRFS info (device loop3): using free-space-tree [ 199.358011][ T8216] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 199.367381][ T8216] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 199.481943][ T29] audit: type=1326 audit(1717409357.448:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8220 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3f10a7cee9 code=0x0 [ 199.534597][ T8221] loop1: detected capacity change from 0 to 2048 [ 199.562416][ T8221] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 199.793916][ T8199] loop4: detected capacity change from 0 to 32768 [ 199.805890][ T6064] BTRFS info (device loop3): last unmount of filesystem 216104af-a335-4321-855e-943e8db43016 [ 199.856180][ T7237] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 199.981697][ T8239] netlink: 'syz-executor.1': attribute type 6 has an invalid length. [ 199.986458][ T8199] bcachefs (loop4): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,journal_flush_delay=1311720,journal_reclaim_delay=1000,nocow [ 200.064092][ T8199] bcachefs (loop4): recovering from clean shutdown, journal seq 10 [ 200.167108][ T8199] bcachefs (loop4): alloc_read... done [ 200.180085][ T8199] bcachefs (loop4): stripes_read... done [ 200.192600][ T8199] bcachefs (loop4): snapshots_read... done [ 200.215861][ T8199] bcachefs (loop4): journal_replay... done [ 200.221940][ T8199] bcachefs (loop4): resume_logged_ops... done [ 200.228520][ T8199] bcachefs (loop4): going read-write [ 200.253837][ T8199] bcachefs (loop4): done starting filesystem [ 200.319094][ T8248] loop3: detected capacity change from 0 to 2048 [ 200.360767][ T8248] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 200.396987][ T7866] bcachefs (loop4): shutting down [ 200.414374][ T7866] bcachefs (loop4): going read-only [ 200.432782][ T7866] bcachefs (loop4): finished waiting for writes to stop [ 200.464904][ T7866] bcachefs (loop4): flushing journal and stopping allocators, journal seq 11 [ 200.493584][ T8253] loop2: detected capacity change from 0 to 1024 [ 200.548443][ T7866] bcachefs (loop4): flushing journal and stopping allocators complete, journal seq 12 [ 200.570864][ T8253] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 200.590174][ T7866] bcachefs (loop4): shutdown complete, journal seq 13 [ 200.600848][ T7866] bcachefs (loop4): marking filesystem clean [ 200.640886][ T6064] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 200.734013][ T7866] bcachefs (loop4): shutdown complete [ 200.823974][ T8241] loop1: detected capacity change from 0 to 32768 [ 200.851589][ T8241] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (8241) [ 200.857689][ T8262] loop3: detected capacity change from 0 to 256 [ 200.893179][ T8241] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 200.953191][ T8241] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 200.961947][ T8241] BTRFS info (device loop1): using free-space-tree [ 200.974671][ T29] audit: type=1804 audit(1717409358.948:211): pid=8262 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.3" name=2F726F6F742F73797A6B616C6C65722D74657374646972313833393130393137382F73797A6B616C6C65722E72416E4350612F3131382FE91F7189591E9233614B2F6275732F627573 dev="loop3" ino=1048638 res=1 errno=0 [ 201.046554][ T29] audit: type=1804 audit(1717409358.948:212): pid=8262 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.3" name=2F726F6F742F73797A6B616C6C65722D74657374646972313833393130393137382F73797A6B616C6C65722E72416E4350612F3131382FE91F7189591E9233614B2F6275732F627573 dev="loop3" ino=1048638 res=1 errno=0 [ 201.216874][ T7070] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 201.226725][ T7237] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 201.470132][ T51] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 201.740141][ T51] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 201.782156][ T8284] loop3: detected capacity change from 0 to 512 [ 201.821083][ T8284] EXT4-fs (loop3): blocks per group (34) and clusters per group (32768) inconsistent [ 201.934398][ T51] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 201.965825][ T8264] loop0: detected capacity change from 0 to 32768 [ 201.997730][ T8289] loop4: detected capacity change from 0 to 256 [ 202.004454][ T8264] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (8264) [ 202.061415][ T8264] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 202.072247][ T29] audit: type=1804 audit(1717409360.048:213): pid=8289 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.4" name=2F726F6F742F73797A6B616C6C65722D74657374646972343032353837353534332F73797A6B616C6C65722E4633744D37692F342FE91F7189591E9233614B2F6275732F627573 dev="loop4" ino=1048640 res=1 errno=0 [ 202.090544][ T8264] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 202.150247][ T8264] BTRFS info (device loop0): disk space caching is enabled [ 202.159947][ T51] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 202.192856][ T29] audit: type=1804 audit(1717409360.048:214): pid=8289 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.4" name=2F726F6F742F73797A6B616C6C65722D74657374646972343032353837353534332F73797A6B616C6C65722E4633744D37692F342FE91F7189591E9233614B2F6275732F627573 dev="loop4" ino=1048640 res=1 errno=0 [ 202.347390][ T8264] BTRFS info (device loop0): rebuilding free space tree [ 202.380438][ T5108] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 202.391791][ T5108] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 202.411520][ T8264] BTRFS info (device loop0): disabling free space tree [ 202.414473][ T5108] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 202.422598][ T8264] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 202.429104][ T5108] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 202.445367][ T5108] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 202.452820][ T5108] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 202.462356][ T8264] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 202.505083][ T51] bridge_slave_1: left allmulticast mode [ 202.525896][ T51] bridge_slave_1: left promiscuous mode [ 202.553666][ T51] bridge0: port 2(bridge_slave_1) entered disabled state [ 202.561067][ T8319] loop1: detected capacity change from 0 to 256 [ 202.571276][ T51] bridge_slave_0: left allmulticast mode [ 202.591615][ T51] bridge_slave_0: left promiscuous mode [ 202.599418][ T51] bridge0: port 1(bridge_slave_0) entered disabled state [ 202.681109][ T29] audit: type=1804 audit(1717409360.628:215): pid=8319 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.1" name=2F726F6F742F73797A6B616C6C65722D74657374646972313431343036303139312F73797A6B616C6C65722E41673847776D2F35302FE91F7189591E9233614B2F6275732F627573 dev="loop1" ino=1048642 res=1 errno=0 [ 202.734362][ T8325] btrfs: Unknown parameter 'ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ' [ 202.757579][ T8326] loop4: detected capacity change from 0 to 256 [ 202.782346][ T29] audit: type=1804 audit(1717409360.648:216): pid=8319 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.1" name=2F726F6F742F73797A6B616C6C65722D74657374646972313431343036303139312F73797A6B616C6C65722E41673847776D2F35302FE91F7189591E9233614B2F6275732F627573 dev="loop1" ino=1048642 res=1 errno=0 [ 202.879205][ T29] audit: type=1804 audit(1717409360.798:217): pid=8326 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.4" name=2F726F6F742F73797A6B616C6C65722D74657374646972343032353837353534332F73797A6B616C6C65722E4633744D37692F362FE91F7189591E9233614B2F6275732F627573 dev="loop4" ino=1048644 res=1 errno=0 [ 202.977411][ T6020] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 203.478308][ T51] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 203.513327][ T51] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 203.543973][ T51] bond0 (unregistering): Released all slaves [ 203.572823][ T8343] loop4: detected capacity change from 0 to 2048 [ 203.699579][ T8343] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 203.990874][ T29] kauditd_printk_skb: 1 callbacks suppressed [ 203.990891][ T29] audit: type=1804 audit(1717409361.958:219): pid=8343 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir4025875543/syzkaller.F3tM7i/10/file0/bus" dev="loop4" ino=18 res=1 errno=0 [ 204.123449][ T29] audit: type=1804 audit(1717409361.958:220): pid=8343 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir4025875543/syzkaller.F3tM7i/10/file0/bus" dev="loop4" ino=18 res=1 errno=0 [ 204.244273][ T51] hsr_slave_0: left promiscuous mode [ 204.257120][ T51] hsr_slave_1: left promiscuous mode [ 204.273542][ T51] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 204.281094][ T51] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 204.302301][ T51] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 204.309984][ T51] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 204.379630][ T51] veth1_macvtap: left promiscuous mode [ 204.394540][ T51] veth0_macvtap: left promiscuous mode [ 204.406080][ T51] veth1_vlan: left promiscuous mode [ 204.423950][ T51] veth0_vlan: left promiscuous mode [ 204.511407][ T8345] loop0: detected capacity change from 0 to 32768 [ 204.522881][ T5111] Bluetooth: hci4: command tx timeout [ 204.559933][ T8345] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 204.699032][ T8345] XFS (loop0): Ending clean mount [ 204.724204][ T8351] loop1: detected capacity change from 0 to 32768 [ 204.729847][ T7866] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 204.750241][ T8345] XFS (loop0): Quotacheck needed: Please wait. [ 204.766272][ T8351] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (8351) [ 204.821050][ T8351] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 204.867102][ T8351] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 204.879870][ T8345] XFS (loop0): Quotacheck: Done. [ 204.886967][ T8351] BTRFS info (device loop1): disk space caching is enabled [ 204.922033][ T8372] loop4: detected capacity change from 0 to 256 [ 204.967347][ T6020] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 205.042151][ T8351] BTRFS info (device loop1): rebuilding free space tree [ 205.065432][ T29] audit: type=1804 audit(1717409363.038:221): pid=8372 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.4" name=2F726F6F742F73797A6B616C6C65722D74657374646972343032353837353534332F73797A6B616C6C65722E4633744D37692F31312FE91F7189591E9233614B2F6275732F627573 dev="loop4" ino=1048646 res=1 errno=0 [ 205.144765][ T8351] BTRFS info (device loop1): disabling free space tree [ 205.152067][ T8351] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 205.162250][ T8351] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 205.168894][ T29] audit: type=1804 audit(1717409363.038:222): pid=8372 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.4" name=2F726F6F742F73797A6B616C6C65722D74657374646972343032353837353534332F73797A6B616C6C65722E4633744D37692F31312FE91F7189591E9233614B2F6275732F627573 dev="loop4" ino=1048646 res=1 errno=0 [ 205.203876][ C1] vkms_vblank_simulate: vblank timer overrun [ 205.462198][ T8396] netlink: 'syz-executor.4': attribute type 3 has an invalid length. [ 205.483667][ T8397] btrfs: Unknown parameter 'ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ' [ 205.717316][ T7237] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 205.750986][ T51] team0 (unregistering): Port device team_slave_1 removed [ 205.914556][ T51] team0 (unregistering): Port device team_slave_0 removed [ 206.471839][ T8394] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 206.577192][ T8309] chnl_net:caif_netlink_parms(): no params data found [ 206.605409][ T5111] Bluetooth: hci4: command tx timeout [ 206.715948][ T8418] loop3: detected capacity change from 0 to 2048 [ 206.754569][ T8419] loop1: detected capacity change from 0 to 512 [ 206.771850][ T8419] ext4: Unknown parameter 'noacl' [ 206.817716][ T8418] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 206.956268][ T8309] bridge0: port 1(bridge_slave_0) entered blocking state [ 206.972947][ T8431] loop4: detected capacity change from 0 to 512 [ 207.005354][ T8309] bridge0: port 1(bridge_slave_0) entered disabled state [ 207.032199][ T8431] EXT4-fs (loop4): blocks per group (34) and clusters per group (32768) inconsistent [ 207.044845][ T8309] bridge_slave_0: entered allmulticast mode [ 207.059453][ T8309] bridge_slave_0: entered promiscuous mode [ 207.059971][ T6064] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 207.081825][ T8309] bridge0: port 2(bridge_slave_1) entered blocking state [ 207.114686][ T8309] bridge0: port 2(bridge_slave_1) entered disabled state [ 207.136569][ T8309] bridge_slave_1: entered allmulticast mode [ 207.154242][ T8309] bridge_slave_1: entered promiscuous mode [ 207.296558][ T8309] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 207.329295][ T8309] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 207.353205][ T8438] loop3: detected capacity change from 0 to 2048 [ 207.415284][ T8309] team0: Port device team_slave_0 added [ 207.435836][ T8438] loop3: p3 < > p4 < > [ 207.442587][ T8309] team0: Port device team_slave_1 added [ 207.442765][ T8438] loop3: partition table partially beyond EOD, truncated [ 207.469190][ T8438] loop3: p3 start 4284289 is beyond EOD, truncated [ 207.512176][ T8447] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 207.574633][ T8309] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 207.581602][ T8309] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 207.630486][ T8309] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 207.646987][ T8309] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 207.654356][ T8309] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 207.681021][ T8309] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 207.780363][ T8309] hsr_slave_0: entered promiscuous mode [ 207.790176][ T8309] hsr_slave_1: entered promiscuous mode [ 207.801571][ T8309] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 207.829261][ T8309] Cannot create hsr debugfs directory [ 207.838964][ T8436] loop1: detected capacity change from 0 to 32768 [ 207.847939][ T8436] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (8436) [ 207.879328][ T8436] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 207.893075][ T8436] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 207.902327][ T8436] BTRFS info (device loop1): disk space caching is enabled [ 207.972175][ T8436] BTRFS info (device loop1): rebuilding free space tree [ 208.007733][ T8436] BTRFS info (device loop1): disabling free space tree [ 208.034176][ T8436] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 208.055290][ T8436] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 208.312024][ T8436] btrfs: Unknown parameter 'ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ' [ 208.451849][ T7237] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 208.660726][ T8309] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 208.682970][ T5111] Bluetooth: hci4: command tx timeout [ 208.736115][ T8309] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 208.800772][ T8309] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 208.864790][ T8309] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 208.977911][ T8487] loop1: detected capacity change from 0 to 512 [ 208.991482][ T8485] loop4: detected capacity change from 0 to 512 [ 209.016216][ T8487] ext4: Unknown parameter 'noacl' [ 209.035778][ T8485] EXT4-fs (loop4): blocks per group (34) and clusters per group (32768) inconsistent [ 209.139237][ T8491] loop3: detected capacity change from 0 to 256 [ 209.158265][ T8309] 8021q: adding VLAN 0 to HW filter on device bond0 [ 209.185311][ T8491] exfat: Deprecated parameter 'namecase' [ 209.203140][ T8491] exfat: Deprecated parameter 'utf8' [ 209.241174][ T8309] 8021q: adding VLAN 0 to HW filter on device team0 [ 209.268811][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 209.275982][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 209.288878][ T8491] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011f41, chksum : 0xddac5fa8, utbl_chksum : 0xe619d30d) [ 209.294283][ T928] bridge0: port 2(bridge_slave_1) entered blocking state [ 209.308362][ T928] bridge0: port 2(bridge_slave_1) entered forwarding state [ 209.795860][ T8482] loop0: detected capacity change from 0 to 32768 [ 209.820092][ T8482] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (8482) [ 209.844004][ T8482] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 209.865707][ T8482] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm [ 209.872544][ T8309] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 209.906184][ T8482] BTRFS info (device loop0): using free-space-tree [ 209.962992][ T8520] loop3: detected capacity change from 0 to 64 [ 210.015687][ T8309] veth0_vlan: entered promiscuous mode [ 210.023512][ T8520] hfs: get root inode failed [ 210.059186][ T8309] veth1_vlan: entered promiscuous mode [ 210.168013][ T6020] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 210.168216][ T8309] veth0_macvtap: entered promiscuous mode [ 210.237384][ T8309] veth1_macvtap: entered promiscuous mode [ 210.344670][ T8309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 210.369784][ T8309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 210.391321][ T8309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 210.422715][ T8309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 210.424329][ T8538] loop3: detected capacity change from 0 to 256 [ 210.432560][ T8309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 210.432580][ T8309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 210.450359][ T8538] exfat: Deprecated parameter 'namecase' [ 210.473716][ T8538] exfat: Deprecated parameter 'utf8' [ 210.500309][ T8538] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011f41, chksum : 0xddac5fa8, utbl_chksum : 0xe619d30d) [ 210.506192][ T8309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 210.544533][ T8309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 210.587037][ T8309] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 210.639200][ T8309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 210.656438][ T8309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 210.668744][ T8309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 210.685591][ T8309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 210.698269][ T8309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 210.714553][ T8309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 210.726003][ T8309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 210.736480][ T8309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 210.753926][ T8309] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 210.763113][ T5111] Bluetooth: hci4: command tx timeout [ 210.772777][ T8309] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 210.782589][ T8309] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 210.792254][ T8309] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 210.804224][ T8309] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 210.849381][ T5111] Bluetooth: hci1: unexpected event 0x03 length: 35 > 11 [ 211.013422][ T5202] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 211.024445][ T5202] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 211.120734][ T2870] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 211.158285][ T2870] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 211.236617][ T8567] loop3: detected capacity change from 0 to 256 [ 211.276950][ T8567] exfat: Deprecated parameter 'namecase' [ 211.297039][ T8567] exfat: Deprecated parameter 'utf8' [ 211.344312][ T8567] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011f41, chksum : 0xddac5fa8, utbl_chksum : 0xe619d30d) [ 211.720754][ T8578] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 212.059571][ T29] audit: type=1326 audit(1717409370.028:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8582 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f37c367cee9 code=0x0 [ 212.164548][ T8572] loop2: detected capacity change from 0 to 32768 [ 212.266987][ T8572] bcachefs (loop2): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,journal_flush_delay=1311720,journal_reclaim_delay=1000,nocow [ 212.291647][ T8572] bcachefs (loop2): recovering from clean shutdown, journal seq 10 [ 212.349574][ T8572] bcachefs (loop2): alloc_read... done [ 212.359123][ T8599] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.4'. [ 212.371721][ T8572] bcachefs (loop2): stripes_read... done [ 212.378237][ T8572] bcachefs (loop2): snapshots_read... done [ 212.391285][ T8572] bcachefs (loop2): journal_replay... done [ 212.404066][ T8572] bcachefs (loop2): resume_logged_ops... done [ 212.436163][ T8572] bcachefs (loop2): going read-write [ 212.451055][ T8572] bcachefs (loop2): done starting filesystem [ 212.573602][ T8309] bcachefs (loop2): shutting down [ 212.590592][ T8309] bcachefs (loop2): going read-only [ 212.620899][ T8309] bcachefs (loop2): finished waiting for writes to stop [ 212.661773][ T8309] bcachefs (loop2): flushing journal and stopping allocators, journal seq 11 [ 212.711703][ T8309] bcachefs (loop2): flushing journal and stopping allocators complete, journal seq 13 [ 212.748649][ T8309] bcachefs (loop2): shutdown complete, journal seq 14 [ 212.757805][ T8309] bcachefs (loop2): marking filesystem clean [ 212.797411][ T8309] bcachefs (loop2): shutdown complete [ 213.016342][ T5156] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 213.028744][ T5156] hid-generic 0000:0000:0000.0004: hidraw0: HID v0.00 Device [syz0] on syz0 [ 214.223746][ T8632] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.3'. [ 214.304081][ T8632] debugfs: Directory 'ü !' with parent 'ieee80211' already present! [ 214.792752][ T29] audit: type=1326 audit(1717409372.758:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8643 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7520e7cee9 code=0x0 [ 214.950222][ T8651] loop4: detected capacity change from 0 to 256 [ 215.000701][ T8651] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 215.001049][ T8635] loop1: detected capacity change from 0 to 32768 [ 215.074238][ T29] audit: type=1800 audit(1717409373.048:225): pid=8651 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1048653 res=0 errno=0 [ 215.167989][ T8663] loop2: detected capacity change from 0 to 256 [ 215.182189][ T8635] bcachefs (loop1): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,journal_flush_delay=1311720,journal_reclaim_delay=1000,nocow [ 215.201399][ T8635] bcachefs (loop1): recovering from clean shutdown, journal seq 10 [ 215.221090][ T8663] exFAT-fs (loop2): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d) [ 215.259841][ T8635] bcachefs (loop1): alloc_read... done [ 215.272304][ T8635] bcachefs (loop1): stripes_read... done [ 215.278200][ T8635] bcachefs (loop1): snapshots_read... done [ 215.295049][ T8635] bcachefs (loop1): journal_replay... done [ 215.304395][ T8635] bcachefs (loop1): resume_logged_ops... done [ 215.310603][ T8635] bcachefs (loop1): going read-write [ 215.319760][ T8635] bcachefs (loop1): done starting filesystem [ 215.395789][ T7237] bcachefs (loop1): shutting down [ 215.402214][ T7237] bcachefs (loop1): going read-only [ 215.445111][ T7237] bcachefs (loop1): finished waiting for writes to stop [ 215.466007][ T7237] bcachefs (loop1): flushing journal and stopping allocators, journal seq 11 [ 215.499856][ T7237] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 12 [ 215.519264][ T7237] bcachefs (loop1): shutdown complete, journal seq 13 [ 215.528324][ T7237] bcachefs (loop1): marking filesystem clean [ 215.571205][ T7237] bcachefs (loop1): shutdown complete [ 215.685487][ T8682] binder: binder_mmap: 8680 20fe8000-20feb000 bad vm_flags failed -1 [ 215.751046][ T928] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 215.758104][ T8687] loop2: detected capacity change from 0 to 256 [ 215.781904][ T8687] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 215.782852][ T928] hid-generic 0000:0000:0000.0005: hidraw0: HID v0.00 Device [syz0] on syz0 [ 215.851747][ T29] audit: type=1800 audit(1717409373.818:226): pid=8687 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=1048655 res=0 errno=0 [ 215.960490][ T8691] loop0: detected capacity change from 0 to 256 [ 215.986892][ T8691] exFAT-fs (loop0): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d) [ 216.712206][ T8718] loop4: detected capacity change from 0 to 256 [ 216.718613][ T5109] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 216.744008][ T8718] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 216.808254][ T8720] loop1: detected capacity change from 0 to 256 [ 216.819009][ T29] audit: type=1800 audit(1717409374.788:227): pid=8718 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1048657 res=0 errno=0 [ 216.829330][ T8720] exFAT-fs (loop1): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d) [ 216.884447][ T8689] loop3: detected capacity change from 0 to 40427 [ 216.913084][ T5109] usb 1-1: Using ep0 maxpacket: 8 [ 216.919125][ T8689] F2FS-fs (loop3): Found nat_bits in checkpoint [ 216.937664][ T5109] usb 1-1: config 0 interface 0 altsetting 127 has an invalid descriptor for endpoint zero, skipping [ 216.962780][ T5109] usb 1-1: config 0 interface 0 has no altsetting 0 [ 216.972056][ T8727] netlink: 'syz-executor.1': attribute type 6 has an invalid length. [ 216.977589][ T5109] usb 1-1: New USB device found, idVendor=1b80, idProduct=e400, bcdDevice=43.60 [ 216.993922][ T5109] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 217.017059][ T5109] usb 1-1: Product: syz [ 217.032188][ T5109] usb 1-1: Manufacturer: syz [ 217.039764][ T5109] usb 1-1: SerialNumber: syz [ 217.050835][ T5109] usb 1-1: config 0 descriptor?? [ 217.069226][ T8689] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 217.212242][ T6064] syz-executor.3: attempt to access beyond end of device [ 217.212242][ T6064] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 217.222018][ T8736] loop1: detected capacity change from 0 to 1024 [ 217.245434][ T6064] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 217.273351][ T5109] usb 1-1: dvb_usb_v2: usb_bulk_msg() failed=-22 [ 217.282069][ T5109] dvb_usb_af9015 1-1:0.0: probe with driver dvb_usb_af9015 failed with error -22 [ 217.316831][ T5109] usb 1-1: USB disconnect, device number 6 [ 217.356979][ T8740] binder: binder_mmap: 8739 20fe8000-20feb000 bad vm_flags failed -1 [ 217.476606][ T2870] hfsplus: b-tree write err: -5, ino 3 [ 217.514352][ T8744] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'. [ 217.576258][ T8747] binder: binder_mmap: 8745 20fe8000-20feb000 bad vm_flags failed -1 [ 217.583483][ T8748] loop2: detected capacity change from 0 to 256 [ 217.596132][ T8748] exFAT-fs (loop2): error, invalid access to FAT (entry 0x00000005) bogus content (0x00000001) [ 217.609470][ T8748] exFAT-fs (loop2): failed to load upcase table [ 217.616101][ T8748] exFAT-fs (loop2): failed to recognize exfat type [ 217.676921][ T8750] netlink: 'syz-executor.1': attribute type 6 has an invalid length. [ 217.935379][ T8760] kAFS: No cell specified [ 218.118195][ T8765] loop3: detected capacity change from 0 to 1024 [ 218.163598][ T29] audit: type=1800 audit(1717409376.148:228): pid=8770 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="sda1" ino=1962 res=0 errno=0 [ 218.300984][ T2870] hfsplus: b-tree write err: -5, ino 3 [ 218.340700][ T8775] binder: binder_mmap: 8774 20fe8000-20feb000 bad vm_flags failed -1 [ 218.519249][ T8779] loop4: detected capacity change from 0 to 128 [ 218.585666][ T8781] loop3: detected capacity change from 0 to 128 [ 218.612722][ T29] audit: type=1804 audit(1717409376.578:229): pid=8779 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.4" name="/root/syzkaller-testdir4025875543/syzkaller.F3tM7i/49/file0" dev="sda1" ino=1966 res=1 errno=0 [ 218.638192][ T8754] loop1: detected capacity change from 0 to 32768 [ 218.656328][ T8754] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (8754) [ 218.706155][ T29] audit: type=1804 audit(1717409376.678:230): pid=8781 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.3" name="/root/syzkaller-testdir1839109178/syzkaller.rAnCPa/157/file0" dev="sda1" ino=1967 res=1 errno=0 [ 218.743172][ T8754] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 218.767953][ T8754] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 218.795788][ T8754] BTRFS info (device loop1): using free-space-tree [ 218.836487][ T8783] loop4: detected capacity change from 0 to 128 [ 218.904384][ T29] audit: type=1804 audit(1717409376.878:231): pid=8783 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.4" name="/root/syzkaller-testdir4025875543/syzkaller.F3tM7i/50/file0" dev="sda1" ino=1943 res=1 errno=0 [ 218.970024][ T8754] BTRFS info (device loop1): checking UUID tree [ 219.210276][ T7237] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 219.632952][ T9] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 219.666468][ T29] audit: type=1326 audit(1717409377.638:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8815 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7520e7cee9 code=0x7ffc0000 [ 219.718830][ T29] audit: type=1326 audit(1717409377.638:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8815 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7520e7cee9 code=0x7ffc0000 [ 219.784232][ T29] audit: type=1326 audit(1717409377.678:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8815 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7520e7cee9 code=0x7ffc0000 [ 219.843162][ T29] audit: type=1326 audit(1717409377.678:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8815 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7520e7cee9 code=0x7ffc0000 [ 219.876967][ T5109] kernel write not supported for file /input/mice (pid: 5109 comm: kworker/1:3) [ 219.891618][ T29] audit: type=1326 audit(1717409377.678:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8815 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7520e7cee9 code=0x7ffc0000 [ 219.939094][ T29] audit: type=1326 audit(1717409377.688:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8815 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7520e7cee9 code=0x7ffc0000 [ 219.969391][ T8807] loop3: detected capacity change from 0 to 32768 [ 219.992925][ T8807] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (8807) [ 220.009717][ T8807] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 220.021462][ T8807] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 220.030352][ T8807] BTRFS info (device loop3): using free-space-tree [ 220.052764][ T9] usb 5-1: device not accepting address 3, error -71 [ 220.128386][ T8844] loop1: detected capacity change from 0 to 512 [ 220.159700][ T8844] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 220.191682][ T6064] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 220.227608][ T8844] EXT4-fs (loop1): 1 truncate cleaned up [ 220.239150][ T8844] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 220.350322][ T8844] EXT4-fs (loop1): Online resizing not supported with sparse_super2 [ 220.375164][ T8848] loop4: detected capacity change from 0 to 128 [ 220.478710][ T7237] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 220.627934][ T8850] loop1: detected capacity change from 0 to 128 [ 220.689673][ T8854] loop3: detected capacity change from 0 to 128 [ 220.949039][ T8840] loop0: detected capacity change from 0 to 32768 [ 221.275001][ T8873] loop1: detected capacity change from 0 to 256 [ 221.317574][ T8873] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 221.653323][ T8881] loop4: detected capacity change from 0 to 128 [ 221.696316][ T8884] loop0: detected capacity change from 0 to 64 [ 221.707986][ T8881] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 221.713712][ T8887] loop1: detected capacity change from 0 to 128 [ 221.722735][ T5151] kernel write not supported for file /input/mice (pid: 5151 comm: kworker/1:4) [ 221.765264][ T8881] ext4 filesystem being mounted at /root/syzkaller-testdir4025875543/syzkaller.F3tM7i/57/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 222.017208][ T8865] loop3: detected capacity change from 0 to 40427 [ 222.091062][ T8865] F2FS-fs (loop3): Found nat_bits in checkpoint [ 222.130672][ T7866] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 222.248103][ T8865] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 222.397627][ T6064] syz-executor.3: attempt to access beyond end of device [ 222.397627][ T6064] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 222.433032][ T5109] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 222.435514][ T6064] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 222.494205][ T8915] binder: 8914:8915 ioctl c0306201 20000580 returned -14 [ 222.582491][ T8920] loop4: detected capacity change from 0 to 64 [ 222.642790][ T5109] usb 1-1: Using ep0 maxpacket: 8 [ 222.667288][ T5109] usb 1-1: config 0 interface 0 altsetting 127 has an invalid descriptor for endpoint zero, skipping [ 222.701719][ T5109] usb 1-1: config 0 interface 0 has no altsetting 0 [ 222.725690][ T5109] usb 1-1: New USB device found, idVendor=1b80, idProduct=e400, bcdDevice=43.60 [ 222.750796][ T5109] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 222.775084][ T5109] usb 1-1: Product: syz [ 222.787185][ T5109] usb 1-1: Manufacturer: syz [ 222.798255][ T5109] usb 1-1: SerialNumber: syz [ 222.816760][ T5109] usb 1-1: config 0 descriptor?? [ 222.967072][ T8926] loop4: detected capacity change from 0 to 128 [ 223.016429][ T8926] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 223.043528][ T8926] ext4 filesystem being mounted at /root/syzkaller-testdir4025875543/syzkaller.F3tM7i/63/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 223.124468][ T5109] usb 1-1: dvb_usb_v2: usb_bulk_msg() failed=-22 [ 223.143731][ T5109] dvb_usb_af9015 1-1:0.0: probe with driver dvb_usb_af9015 failed with error -22 [ 223.173330][ T5109] usb 1-1: USB disconnect, device number 7 [ 223.284613][ T8929] loop3: detected capacity change from 0 to 736 [ 223.335179][ T8916] loop1: detected capacity change from 0 to 32768 [ 223.350288][ T7866] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 223.353579][ T8916] gfs2: fsid=(œ[{{{+: Trying to join cluster "lock_nolock", "(œ[{{{+" [ 223.368453][ T8916] gfs2: fsid=(œ[{{{+: unknown hostdata (quota=off) [ 223.400665][ T8929] rock: directory entry would overflow storage [ 223.407528][ T8929] rock: sig=0x3b10, size=4, remaining=3 [ 223.655967][ T8934] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 223.767453][ T8938] loop4: detected capacity change from 0 to 2048 [ 223.823482][ T8938] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 223.838882][ T8947] loop2: detected capacity change from 0 to 64 [ 223.907020][ T8951] loop3: detected capacity change from 0 to 64 [ 223.943734][ T8938] EXT4-fs error (device loop4): ext4_ext_precache:627: inode #2: comm syz-executor.4: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5) [ 223.999041][ T8938] EXT4-fs (loop4): Remounting filesystem read-only [ 224.049736][ T7866] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 224.112108][ T8953] netlink: 'syz-executor.3': attribute type 2 has an invalid length. [ 224.131601][ T8953] net_ratelimit: 2 callbacks suppressed [ 224.131620][ T8953] A link change request failed with some changes committed already. Interface wg1 may have been left with an inconsistent configuration, please check. [ 224.154975][ T8955] x_tables: unsorted underflow at hook 3 [ 224.207638][ T8959] loop2: detected capacity change from 0 to 64 [ 224.285086][ T8963] xt_CT: You must specify a L4 protocol and not use inversions on it [ 224.683543][ T8982] loop0: detected capacity change from 0 to 64 [ 224.750442][ T8977] loop2: detected capacity change from 0 to 2048 [ 224.821800][ T8977] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 224.905511][ T8977] EXT4-fs error (device loop2): ext4_ext_precache:627: inode #2: comm syz-executor.2: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5) [ 224.913512][ T8990] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 224.955491][ T8977] EXT4-fs (loop2): Remounting filesystem read-only [ 224.964944][ T8958] loop1: detected capacity change from 0 to 32768 [ 224.997989][ T8309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 225.010684][ T8958] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (8958) [ 225.050701][ T8958] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 225.071812][ T8958] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 225.097395][ T8958] BTRFS info (device loop1): disk space caching is enabled [ 225.228049][ T8958] BTRFS info (device loop1): rebuilding free space tree [ 225.273238][ T8958] BTRFS info (device loop1): disabling free space tree [ 225.308127][ T8958] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 225.313687][ T9015] loop2: detected capacity change from 0 to 64 [ 225.338146][ T8958] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 225.502504][ T9020] xt_CT: You must specify a L4 protocol and not use inversions on it [ 225.559836][ T9024] loop2: detected capacity change from 0 to 256 [ 225.661674][ T7237] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 225.686389][ T9024] exFAT-fs (loop2): error, invalid access to FAT (entry 0x00000005) bogus content (0x00000001) [ 225.714932][ T9024] exFAT-fs (loop2): failed to load upcase table [ 225.722518][ T9024] exFAT-fs (loop2): failed to recognize exfat type [ 225.946829][ T9030] loop3: detected capacity change from 0 to 2048 [ 226.062867][ T9030] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 226.151942][ T9040] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 226.290056][ T9030] EXT4-fs error (device loop3): ext4_ext_precache:627: inode #2: comm syz-executor.3: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5) [ 226.320139][ T9030] EXT4-fs (loop3): Remounting filesystem read-only [ 226.402406][ T6064] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 226.659813][ T9048] iommufd_mock iommufd_mock1: Adding to iommu group 1 [ 227.084160][ T9057] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 227.327227][ T5111] Bluetooth: hci3: command 0x0406 tx timeout [ 227.334227][ T9063] loop1: detected capacity change from 0 to 512 [ 227.379812][ T9063] EXT4-fs: Mount option(s) incompatible with ext3 [ 227.982415][ T9055] loop4: detected capacity change from 0 to 32768 [ 227.996595][ T9055] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (9055) [ 227.997646][ T9074] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 228.029186][ T9055] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 228.108901][ T9055] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 228.119954][ T9055] BTRFS info (device loop4): disk space caching is enabled [ 228.212895][ T9055] BTRFS info (device loop4): rebuilding free space tree [ 228.241297][ T9055] BTRFS info (device loop4): disabling free space tree [ 228.250177][ T9055] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 228.260067][ T9055] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 228.281148][ T9022] syz-executor.0 (9022): drop_caches: 1 [ 228.424895][ T7866] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 228.742506][ T9109] loop0: detected capacity change from 0 to 512 [ 228.772168][ T9109] EXT4-fs: Mount option(s) incompatible with ext3 [ 229.119099][ T9118] netlink: 'syz-executor.4': attribute type 4 has an invalid length. [ 229.490591][ T9133] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.0'. [ 229.831485][ T9148] netlink: 'syz-executor.1': attribute type 4 has an invalid length. [ 229.972941][ T9] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 230.100012][ T9112] loop2: detected capacity change from 0 to 40427 [ 230.126235][ T9112] F2FS-fs (loop2): Mismatch start address, segment0(512) cp_blkaddr(175702528) [ 230.155002][ T9112] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 230.197471][ T9112] F2FS-fs (loop2): invalid crc value [ 230.198304][ T9] usb 1-1: config 1 descriptor has 1 excess byte, ignoring [ 230.224184][ T9112] F2FS-fs (loop2): Found nat_bits in checkpoint [ 230.232308][ T9] usb 1-1: config 1 has 0 interfaces, different from the descriptor's value: 1 [ 230.277852][ T9] usb 1-1: string descriptor 0 read error: -71 [ 230.301449][ T9] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 230.317766][ T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 230.338272][ T9] usb 1-1: can't set config #1, error -71 [ 230.359397][ T9] usb 1-1: USB disconnect, device number 8 [ 230.411524][ T9112] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 230.440478][ T9112] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4 [ 230.521714][ T9137] loop3: detected capacity change from 0 to 32768 [ 230.535610][ T9112] syz-executor.2: attempt to access beyond end of device [ 230.535610][ T9112] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 230.562858][ T9137] btrfs: Unknown parameter 'fsmagic' [ 230.565954][ T9112] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 230.798335][ T9146] loop4: detected capacity change from 0 to 32768 [ 230.898169][ T9146] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 231.062211][ T9146] XFS (loop4): Ending clean mount [ 231.086456][ T9146] XFS (loop4): Quotacheck needed: Please wait. [ 231.141467][ T9146] XFS (loop4): Quotacheck: Done. [ 231.338467][ T7866] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 231.388142][ T5151] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 231.574760][ T5151] usb 2-1: config 1 descriptor has 1 excess byte, ignoring [ 231.598995][ T5151] usb 2-1: config 1 has 0 interfaces, different from the descriptor's value: 1 [ 231.639329][ T5151] usb 2-1: string descriptor 0 read error: -71 [ 231.653322][ T5151] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 231.672997][ T5151] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 231.705847][ T9185] random: crng reseeded on system resumption [ 231.727051][ T5151] usb 2-1: can't set config #1, error -71 [ 231.755119][ T5151] usb 2-1: USB disconnect, device number 3 [ 231.761528][ T9172] loop0: detected capacity change from 0 to 32768 [ 231.771015][ T9172] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (9172) [ 231.789695][ T9172] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 231.800751][ T9172] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 231.811779][ T9172] BTRFS info (device loop0): using free-space-tree [ 232.141020][ T9172] BTRFS info (device loop0): balance: start [ 232.191149][ T9172] BTRFS info (device loop0): balance: ended with status: 0 [ 232.318956][ T6020] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 232.455809][ T5111] Bluetooth: hci1: command 0x0406 tx timeout [ 232.503138][ T928] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 232.713072][ T928] usb 4-1: Using ep0 maxpacket: 16 [ 232.725857][ T928] usb 4-1: config 0 has no interfaces? [ 232.740471][ T928] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 232.767084][ T928] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 232.799682][ T928] usb 4-1: config 0 descriptor?? [ 233.145045][ T5151] usb 4-1: USB disconnect, device number 3 [ 233.290322][ T9213] loop1: detected capacity change from 0 to 32768 [ 233.331496][ T9213] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 233.492367][ T9213] XFS (loop1): Ending clean mount [ 233.540191][ T9213] XFS (loop1): Quotacheck needed: Please wait. [ 233.568116][ T9240] loop4: detected capacity change from 0 to 2048 [ 233.587081][ T9240] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 233.602561][ T9240] UDF-fs: Scanning with blocksize 512 failed [ 233.633341][ T9240] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=2167, location=2167 [ 233.658894][ T9240] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=2423, location=2423 [ 233.669146][ T9213] XFS (loop1): Quotacheck: Done. [ 233.692918][ T9240] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found [ 233.714658][ T9240] UDF-fs: Scanning with blocksize 1024 failed [ 233.750117][ T9240] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=2167, location=2167 [ 233.765213][ T29] kauditd_printk_skb: 67 callbacks suppressed [ 233.765228][ T29] audit: type=1800 audit(1717409391.738:305): pid=9213 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=9291 res=0 errno=0 [ 233.808920][ T9240] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=2423, location=2423 [ 233.824341][ T9240] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found [ 233.857598][ T9240] UDF-fs: Scanning with blocksize 2048 failed [ 233.905632][ T9240] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=2167, location=2167 [ 233.957351][ T9240] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=2423, location=2423 [ 233.968446][ T9240] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found [ 233.977034][ T9240] UDF-fs: Scanning with blocksize 4096 failed [ 233.984582][ T9240] UDF-fs: warning (device loop4): udf_fill_super: No partition found (1) [ 234.099286][ T7237] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 234.124271][ T9225] loop0: detected capacity change from 0 to 32768 [ 234.132278][ T9225] btrfs: Unknown parameter 'fsmagic' [ 235.429438][ T9268] random: crng reseeded on system resumption [ 235.563821][ T9275] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 236.113801][ T9277] loop0: detected capacity change from 0 to 512 [ 236.154947][ T9277] EXT4-fs (loop0): 1 truncate cleaned up [ 236.171645][ T9277] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 236.372837][ T5154] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 236.420932][ T6020] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 236.470339][ T9287] loop2: detected capacity change from 0 to 21 [ 236.518144][ T9287] jffs2: Unknown parameter 'uid' [ 236.562830][ T5154] usb 2-1: Using ep0 maxpacket: 16 [ 236.570196][ T5154] usb 2-1: config 0 has no interfaces? [ 236.584976][ T5154] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 236.616850][ T5154] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 236.647448][ T5154] usb 2-1: config 0 descriptor?? [ 236.973506][ T928] usb 2-1: USB disconnect, device number 4 [ 237.288180][ T9303] netlink: 432 bytes leftover after parsing attributes in process `syz-executor.3'. [ 237.377249][ T9289] loop4: detected capacity change from 0 to 32768 [ 237.398002][ T9289] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (9289) [ 237.441338][ T9289] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 237.474954][ T9289] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 237.512972][ T9289] BTRFS info (device loop4): using free-space-tree [ 237.570357][ T9310] loop3: detected capacity change from 0 to 256 [ 237.845595][ T9310] loop3: detected capacity change from 0 to 1764 [ 237.872474][ T9289] BTRFS info (device loop4): balance: start [ 237.879690][ T9289] BTRFS info (device loop4): balance: ended with status: 0 [ 238.114875][ T7866] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 238.165149][ T9333] loop3: detected capacity change from 0 to 512 [ 238.219352][ T9333] EXT4-fs (loop3): 1 truncate cleaned up [ 238.254581][ T9333] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 238.566975][ T6064] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 238.751394][ T9338] loop3: detected capacity change from 0 to 21 [ 238.774622][ T9338] jffs2: Unknown parameter 'uid' [ 238.940703][ T9346] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 240.164886][ T9360] loop3: detected capacity change from 0 to 512 [ 240.239989][ T9360] EXT4-fs (loop3): 1 truncate cleaned up [ 240.275517][ T9360] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 240.406317][ T29] audit: type=1326 audit(1717409398.378:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9368 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b2367cee9 code=0x7ffc0000 [ 240.428325][ C1] vkms_vblank_simulate: vblank timer overrun [ 240.474567][ T29] audit: type=1326 audit(1717409398.378:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9368 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b2367cee9 code=0x7ffc0000 [ 240.528740][ T6064] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 240.540491][ T29] audit: type=1326 audit(1717409398.418:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9368 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7f4b2367cee9 code=0x7ffc0000 [ 240.584336][ T29] audit: type=1326 audit(1717409398.418:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9368 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b2367cee9 code=0x7ffc0000 [ 240.690274][ T29] audit: type=1326 audit(1717409398.418:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9368 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b2367cee9 code=0x7ffc0000 [ 240.721204][ T9374] loop3: detected capacity change from 0 to 21 [ 240.739656][ T9374] jffs2: Unknown parameter 'uid' [ 241.357135][ T9391] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 241.544104][ T9398] loop2: detected capacity change from 0 to 512 [ 241.578062][ T9398] EXT4-fs (loop2): 1 truncate cleaned up [ 241.581369][ T9400] loop1: detected capacity change from 0 to 512 [ 241.585773][ T9398] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 241.632025][ T9400] EXT4-fs (loop1): 1 truncate cleaned up [ 241.653178][ T9400] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 241.759765][ T8309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 241.856768][ T7237] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 241.935445][ T9385] loop0: detected capacity change from 0 to 32768 [ 242.023725][ T9385] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 242.402990][ T9385] XFS (loop0): Ending clean mount [ 242.446072][ T9385] XFS (loop0): Quotacheck needed: Please wait. [ 242.572924][ T9385] XFS (loop0): Quotacheck: Done. [ 242.672557][ T29] audit: type=1800 audit(1717409400.638:311): pid=9385 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=9291 res=0 errno=0 [ 242.845370][ T6020] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 243.090950][ T9443] loop3: detected capacity change from 0 to 512 [ 243.139080][ T9443] EXT4-fs (loop3): 1 truncate cleaned up [ 243.178231][ T9443] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 243.344269][ T9456] loop2: detected capacity change from 0 to 512 [ 243.372351][ T9456] EXT4-fs (loop2): 1 truncate cleaned up [ 243.394698][ T9456] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 243.472126][ T6064] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 243.621866][ T8309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 244.730940][ T9484] netlink: 268 bytes leftover after parsing attributes in process `syz-executor.3'. [ 244.880373][ T9487] loop3: detected capacity change from 0 to 256 [ 245.138580][ T9497] loop0: detected capacity change from 0 to 512 [ 245.216240][ T9497] EXT4-fs (loop0): 1 truncate cleaned up [ 245.237175][ T9497] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 245.578244][ T9477] loop4: detected capacity change from 0 to 32768 [ 245.625426][ T6020] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 245.652730][ T9477] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 245.882582][ T9477] XFS (loop4): Ending clean mount [ 245.915721][ T9477] XFS (loop4): Quotacheck needed: Please wait. [ 246.045146][ T9477] XFS (loop4): Quotacheck: Done. [ 246.124304][ T9521] loop1: detected capacity change from 0 to 1024 [ 246.134458][ T9523] netlink: 268 bytes leftover after parsing attributes in process `syz-executor.0'. [ 246.145931][ T9521] hfsplus: gid requires an argument [ 246.155008][ T29] audit: type=1800 audit(1717409404.118:312): pid=9477 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=9291 res=0 errno=0 [ 246.177386][ T9521] hfsplus: unable to parse mount options [ 246.276062][ T9528] loop0: detected capacity change from 0 to 256 [ 246.390729][ T7866] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 246.966627][ T9546] loop4: detected capacity change from 0 to 256 [ 247.190651][ T9553] loop2: detected capacity change from 0 to 1024 [ 247.200737][ T9553] hfsplus: gid requires an argument [ 247.221575][ T9553] hfsplus: unable to parse mount options [ 248.101932][ T9534] loop1: detected capacity change from 0 to 32768 [ 248.152807][ T9534] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (9534) [ 248.201824][ T9534] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 248.257703][ T9534] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 248.278336][ T9534] BTRFS info (device loop1): using free-space-tree [ 248.301201][ T9567] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 248.464774][ T9573] loop0: detected capacity change from 0 to 2048 [ 248.562218][ T9573] loop0: p3 < > p4 < > [ 248.579279][ T9573] loop0: partition table partially beyond EOD, truncated [ 248.636445][ T9573] loop0: p3 start 4284289 is beyond EOD, truncated [ 248.693055][ T7237] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 250.644210][ T9618] loop1: detected capacity change from 0 to 256 [ 250.822593][ T9626] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'. [ 250.992232][ T9631] loop0: detected capacity change from 0 to 1024 [ 251.006809][ T9631] ext4: Unknown parameter 'uid>00000000000000000000' [ 251.063178][ T9636] serio: Serial port ptm0 [ 252.326564][ T9661] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 252.589341][ T9668] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 359.002586][ C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 359.009624][ C0] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P9659/1:b..l [ 359.018322][ C0] rcu: (detected by 0, t=10503 jiffies, g=38341, q=373 ncpus=2) [ 359.026051][ C0] task:syz-executor.4 state:R running task stack:25424 pid:9659 tgid:9658 ppid:7866 flags:0x00004006 [ 359.039268][ C0] Call Trace: [ 359.042569][ C0] [ 359.045514][ C0] __schedule+0x1796/0x49d0 [ 359.050042][ C0] ? mark_lock+0x9a/0x350 [ 359.054391][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 359.060388][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 359.066729][ C0] ? __pfx___schedule+0x10/0x10 [ 359.071601][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 359.077607][ C0] ? preempt_schedule_irq+0xf0/0x1c0 [ 359.082915][ C0] preempt_schedule_irq+0xfb/0x1c0 [ 359.088043][ C0] ? __pfx_preempt_schedule_irq+0x10/0x10 [ 359.093794][ C0] irqentry_exit+0x5e/0x90 [ 359.098225][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 359.104229][ C0] RIP: 0010:lock_acquire+0x264/0x550 [ 359.109528][ C0] Code: 2b 00 74 08 4c 89 f7 e8 4a 36 86 00 f6 44 24 61 02 0f 85 85 01 00 00 41 f7 c7 00 02 00 00 74 01 fb 48 c7 44 24 40 0e 36 e0 45 <4b> c7 44 25 00 00 00 00 00 43 c7 44 25 09 00 00 00 00 43 c7 44 25 [ 359.129145][ C0] RSP: 0018:ffffc90004386de0 EFLAGS: 00000206 [ 359.135229][ C0] RAX: 0000000000000001 RBX: 1ffff92000870dc8 RCX: 0000000000000001 [ 359.143208][ C0] RDX: dffffc0000000000 RSI: ffffffff8bcacbe0 RDI: ffffffff8c1f1e40 [ 359.151187][ C0] RBP: ffffc90004386f28 R08: ffffffff92f72587 R09: 1ffffffff25ee4b0 [ 359.159168][ C0] R10: dffffc0000000000 R11: fffffbfff25ee4b1 R12: 1ffff92000870dc4 [ 359.167150][ C0] R13: dffffc0000000000 R14: ffffc90004386e40 R15: 0000000000000246 [ 359.175162][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 359.180200][ C0] ? deref_stack_reg+0x1c7/0x260 [ 359.185162][ C0] ? __read_once_word_nocheck+0x9/0x20 [ 359.190639][ C0] ? deref_stack_reg+0x1c7/0x260 [ 359.195600][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 359.201767][ C0] is_bpf_text_address+0x46/0x2a0 [ 359.206814][ C0] ? is_bpf_text_address+0x26/0x2a0 [ 359.212023][ C0] ? is_bpf_text_address+0x26/0x2a0 [ 359.217231][ C0] ? is_module_text_address+0x128/0x190 [ 359.222791][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 359.228962][ C0] kernel_text_address+0xa7/0xe0 [ 359.233922][ C0] __kernel_text_address+0xd/0x40 [ 359.238963][ C0] unwind_get_return_address+0x5d/0xc0 [ 359.244437][ C0] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 359.250519][ C0] arch_stack_walk+0x125/0x1b0 [ 359.255318][ C0] stack_trace_save+0x118/0x1d0 [ 359.260182][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 359.265578][ C0] save_stack+0xfb/0x1f0 [ 359.269837][ C0] ? __pfx_save_stack+0x10/0x10 [ 359.274701][ C0] ? post_alloc_hook+0x1f3/0x230 [ 359.279647][ C0] ? get_page_from_freelist+0x2e2d/0x2ee0 [ 359.285381][ C0] ? __alloc_pages_noprof+0x256/0x6c0 [ 359.290765][ C0] ? alloc_pages_mpol_noprof+0x3e8/0x680 [ 359.296414][ C0] ? shmem_alloc_and_add_folio+0x24d/0xdb0 [ 359.302237][ C0] ? shmem_get_folio_gfp+0x82d/0x1f50 [ 359.307623][ C0] ? shmem_write_begin+0x170/0x4d0 [ 359.312742][ C0] ? generic_perform_write+0x322/0x640 [ 359.318212][ C0] ? shmem_file_write_iter+0xfc/0x120 [ 359.323590][ C0] ? vfs_write+0xa72/0xc90 [ 359.328020][ C0] ? ksys_write+0x1a0/0x2c0 [ 359.332535][ C0] ? do_syscall_64+0xf3/0x230 [ 359.337221][ C0] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 359.343313][ C0] __set_page_owner+0x92/0x800 [ 359.348094][ C0] ? __pfx_seqcount_lockdep_reader_access+0x10/0x10 [ 359.354699][ C0] ? __pfx_lock_release+0x10/0x10 [ 359.359733][ C0] ? __pfx___set_page_owner+0x10/0x10 [ 359.365115][ C0] ? do_raw_spin_trylock+0xc8/0x1f0 [ 359.370339][ C0] post_alloc_hook+0x1f3/0x230 [ 359.375123][ C0] get_page_from_freelist+0x2e2d/0x2ee0 [ 359.380704][ C0] ? __pfx___might_resched+0x10/0x10 [ 359.386023][ C0] ? prepare_alloc_pages+0x369/0x5d0 [ 359.391332][ C0] __alloc_pages_noprof+0x256/0x6c0 [ 359.396551][ C0] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 359.402303][ C0] alloc_pages_mpol_noprof+0x3e8/0x680 [ 359.407791][ C0] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 359.413780][ C0] ? xas_load+0x59b/0x5c0 [ 359.418130][ C0] ? mpol_shared_policy_lookup+0x148/0x1f0 [ 359.423955][ C0] shmem_alloc_and_add_folio+0x24d/0xdb0 [ 359.429615][ C0] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 359.435803][ C0] shmem_get_folio_gfp+0x82d/0x1f50 [ 359.441035][ C0] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 359.446690][ C0] ? fault_in_readable+0x1a6/0x2b0 [ 359.451817][ C0] shmem_write_begin+0x170/0x4d0 [ 359.456769][ C0] ? __pfx_shmem_write_begin+0x10/0x10 [ 359.462250][ C0] ? fault_in_iov_iter_readable+0x229/0x280 [ 359.468160][ C0] generic_perform_write+0x322/0x640 [ 359.473477][ C0] ? __pfx_generic_perform_write+0x10/0x10 [ 359.479298][ C0] ? preempt_count_add+0x93/0x190 [ 359.484344][ C0] ? mnt_put_write_access_file+0xbb/0x100 [ 359.490087][ C0] ? file_update_time+0x3ac/0x3e0 [ 359.495144][ C0] shmem_file_write_iter+0xfc/0x120 [ 359.500376][ C0] vfs_write+0xa72/0xc90 [ 359.504652][ C0] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 359.510474][ C0] ? __pfx_vfs_write+0x10/0x10 [ 359.515278][ C0] ksys_write+0x1a0/0x2c0 [ 359.519630][ C0] ? __pfx_ksys_write+0x10/0x10 [ 359.524500][ C0] ? exc_page_fault+0x590/0x8c0 [ 359.529370][ C0] ? do_syscall_64+0xb6/0x230 [ 359.534063][ C0] do_syscall_64+0xf3/0x230 [ 359.538580][ C0] ? clear_bhb_loop+0x35/0x90 [ 359.543272][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 359.549179][ C0] RIP: 0033:0x7fc67927bc2f [ 359.553605][ C0] RSP: 002b:00007fc679ff2e80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 359.562033][ C0] RAX: ffffffffffffffda RBX: 0000000001000000 RCX: 00007fc67927bc2f [ 359.570019][ C0] RDX: 0000000001000000 RSI: 00007fc66f000000 RDI: 0000000000000003 [ 359.578003][ C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000000060b3 [ 359.585989][ C0] R10: 0000000020013cc2 R11: 0000000000000293 R12: 0000000000000003 [ 359.593974][ C0] R13: 00007fc679ff2f80 R14: 00007fc679ff2f40 R15: 00007fc66f000000 [ 359.601974][ C0] [ 359.605004][ C0] rcu: rcu_preempt kthread starved for 10553 jiffies! g38341 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1 [ 359.616206][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 359.626183][ C0] rcu: RCU grace-period kthread stack dump: [ 359.632072][ C0] task:rcu_preempt state:R running task stack:26576 pid:17 tgid:17 ppid:2 flags:0x00004000 [ 359.643826][ C0] Call Trace: [ 359.647113][ C0] [ 359.650055][ C0] __schedule+0x1796/0x49d0 [ 359.654600][ C0] ? __pfx___schedule+0x10/0x10 [ 359.659466][ C0] ? __pfx_lock_release+0x10/0x10 [ 359.664501][ C0] ? __asan_memset+0x23/0x50 [ 359.669115][ C0] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 359.674934][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 359.681276][ C0] ? schedule+0x90/0x320 [ 359.685532][ C0] schedule+0x14b/0x320 [ 359.689709][ C0] schedule_timeout+0x1be/0x310 [ 359.694582][ C0] ? __pfx_schedule_timeout+0x10/0x10 [ 359.699968][ C0] ? __pfx_process_timeout+0x10/0x10 [ 359.705276][ C0] ? prepare_to_swait_event+0x32e/0x350 [ 359.710847][ C0] rcu_gp_fqs_loop+0x2df/0x1330 [ 359.715716][ C0] ? __pfx_rcu_gp_init+0x10/0x10 [ 359.720673][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 359.725882][ C0] ? __pfx_rcu_implicit_dynticks_qs+0x10/0x10 [ 359.731963][ C0] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 359.737257][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 359.743174][ C0] ? finish_swait+0xd4/0x1e0 [ 359.747777][ C0] rcu_gp_kthread+0xa7/0x3b0 [ 359.752378][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 359.757582][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 359.763491][ C0] ? __kthread_parkme+0x169/0x1d0 [ 359.768529][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 359.773742][ C0] kthread+0x2f0/0x390 [ 359.777826][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 359.783032][ C0] ? __pfx_kthread+0x10/0x10 [ 359.787636][ C0] ret_from_fork+0x4b/0x80 [ 359.792066][ C0] ? __pfx_kthread+0x10/0x10 [ 359.796669][ C0] ret_from_fork_asm+0x1a/0x30 [ 359.801469][ C0] [ 359.804493][ C0] rcu: Stack dump where RCU GP kthread last ran: [ 359.810835][ C0] Sending NMI from CPU 0 to CPUs 1: [ 359.816050][ C1] NMI backtrace for cpu 1 [ 359.816060][ C1] CPU: 1 PID: 9681 Comm: syz-executor.3 Not tainted 6.10.0-rc2-syzkaller #0 [ 359.816076][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 359.816085][ C1] RIP: 0010:__lock_acquire+0x35d/0x1fd0 [ 359.816105][ C1] Code: 2f 86 00 4c 8b 44 24 08 48 be 00 00 00 00 00 fc ff df 48 89 2b 48 8b 6c 24 28 49 8d 5c e8 10 48 89 d8 48 c1 e8 03 80 3c 30 00 <74> 17 48 89 df e8 69 2f 86 00 4c 8b 44 24 08 48 be 00 00 00 00 00 [ 359.816117][ C1] RSP: 0018:ffffc900044177f0 EFLAGS: 00000046 [ 359.816131][ C1] RAX: 1ffff110057a151e RBX: ffff88802bd0a8f0 RCX: ffffffff9476a603 [ 359.816143][ C1] RDX: 0000000000000000 RSI: dffffc0000000000 RDI: 00000000000001ac [ 359.816154][ C1] RBP: 0000000000000000 R08: ffff88802bd0a8e0 R09: 0000000000000000 [ 359.816164][ C1] R10: dffffc0000000000 R11: fffffbfff1f5833e R12: ffff888079ac1e18 [ 359.816175][ C1] R13: 00000000000001ac R14: 0000000000000000 R15: 0000000000000000 [ 359.816186][ C1] FS: 00007f37c43df6c0(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 [ 359.816199][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 359.816210][ C1] CR2: 0000000020404030 CR3: 000000002caae000 CR4: 00000000003506f0 [ 359.816224][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 359.816233][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 359.816243][ C1] Call Trace: [ 359.816249][ C1] [ 359.816255][ C1] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 359.816275][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 359.816291][ C1] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 359.816318][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 359.816334][ C1] ? nmi_handle+0x14f/0x5a0 [ 359.816354][ C1] ? nmi_handle+0x2a/0x5a0 [ 359.816374][ C1] ? __lock_acquire+0x35d/0x1fd0 [ 359.816389][ C1] ? default_do_nmi+0x63/0x160 [ 359.816409][ C1] ? exc_nmi+0x123/0x1f0 [ 359.816427][ C1] ? end_repeat_nmi+0xf/0x53 [ 359.816449][ C1] ? __lock_acquire+0x35d/0x1fd0 [ 359.816464][ C1] ? __lock_acquire+0x35d/0x1fd0 [ 359.816480][ C1] ? __lock_acquire+0x35d/0x1fd0 [ 359.816495][ C1] [ 359.816500][ C1] [ 359.816509][ C1] ? __might_fault+0xaa/0x120 [ 359.816527][ C1] ? __pfx_validate_chain+0x10/0x10 [ 359.816545][ C1] lock_acquire+0x1ed/0x550 [ 359.816559][ C1] ? __might_fault+0xaa/0x120 [ 359.816579][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 359.816595][ C1] ? __pfx___might_resched+0x10/0x10 [ 359.816612][ C1] ? __lock_acquire+0x1346/0x1fd0 [ 359.816633][ C1] ? __might_fault+0xaa/0x120 [ 359.816649][ C1] __might_fault+0xc6/0x120 [ 359.816665][ C1] ? __might_fault+0xaa/0x120 [ 359.816683][ C1] fpu__restore_sig+0x1a1/0x11b0 [ 359.816705][ C1] ? __pfx_fpu__restore_sig+0x10/0x10 [ 359.816731][ C1] ? __might_fault+0xc6/0x120 [ 359.816750][ C1] restore_sigcontext+0x675/0x7d0 [ 359.816770][ C1] ? __pfx_restore_sigcontext+0x10/0x10 [ 359.816798][ C1] ? __pfx___set_current_blocked+0x10/0x10 [ 359.816814][ C1] ? __task_pid_nr_ns+0x28/0x450 [ 359.816835][ C1] __do_sys_rt_sigreturn+0x17f/0x270 [ 359.816854][ C1] ? __pfx___do_sys_rt_sigreturn+0x10/0x10 [ 359.816872][ C1] ? do_syscall_64+0x100/0x230 [ 359.816889][ C1] ? do_syscall_64+0xb6/0x230 [ 359.816907][ C1] do_syscall_64+0xf3/0x230 [ 359.816922][ C1] ? clear_bhb_loop+0x35/0x90 [ 359.816939][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 359.816956][ C1] RIP: 0033:0x7f37c367cee7 [ 359.816973][ C1] Code: 14 25 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 [ 359.816985][ C1] RSP: 002b:00007f37c43df178 EFLAGS: 00000246 [ 359.816997][ C1] RAX: 00000000000000ca RBX: 00007f37c37b3fa8 RCX: 00007f37c367cee9 [ 359.817008][ C1] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f37c37b3fa8 [ 359.817017][ C1] RBP: 00007f37c37b3fa0 R08: 00007f37c43df6c0 R09: 00007f37c43df6c0 [ 359.817028][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f37c37b3fac [ 359.817037][ C1] R13: 000000000000000b R14: 00007ffea7220600 R15: 00007ffea72206e8 [ 359.817055][ C1] [ 359.818432][ C0] sched: RT throttling activated