last executing test programs: 2.570868676s ago: executing program 2: bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x10, 0x16, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48) 2.528085003s ago: executing program 2: syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000740)={[{@jqfmt_vfsv1}, {@nolazytime}, {@abort}, {@init_itable}, {@nombcache}, {@discard}, {@dioread_lock}, {@sysvgroups}, {@nolazytime}]}, 0x1, 0x4f9, &(0x7f00000007c0)="$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") symlink(&(0x7f0000000180)='./file0\x00', &(0x7f0000000280)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 2.195312975s ago: executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7902}) write$cgroup_devices(r0, &(0x7f0000000440)=ANY=[@ANYBLOB="0904009da4d22835"], 0xffdd) 2.105013229s ago: executing program 2: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x2, 0x4, 0x1, 0xbf22}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xd, 0x6, 0x4, 0x5, 0x0, r0}, 0x48) bpf$MAP_LOOKUP_ELEM(0x15, &(0x7f0000000180)={r1, &(0x7f0000000080), 0x0}, 0x20) 1.417278767s ago: executing program 4: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000a40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000740)=[{0x5}]}, 0x90) bpf$PROG_LOAD(0x2, &(0x7f0000000680)={0x3, 0x3, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x48) 1.368139745s ago: executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r0) sendmsg$IEEE802154_ADD_IFACE(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01000000ecffffffffff2000000005002000000000000c001f00", @ANYRESDEC], 0x28}}, 0x0) 1.356656627s ago: executing program 4: r0 = socket$inet6(0xa, 0x3, 0x8000000003c) bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0xc9d7, 0x9, 0x1}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r1, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r1, 0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r1, &(0x7f0000000000), &(0x7f0000000880)=""/120}, 0x20) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c) write$binfmt_script(0xffffffffffffffff, 0x0, 0x0) sendmsg(r0, &(0x7f00000000c0)={0x0, 0x9504, &(0x7f0000000100)=[{&(0x7f0000000000)="2b10", 0xffbd}], 0x1, 0x0, 0x0, 0x2c}, 0x4) 1.329420161s ago: executing program 4: bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000400)='global_dirty_state\x00', r0}, 0x10) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r1, &(0x7f0000000180), 0x40001) 1.290843647s ago: executing program 1: r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b703000000ff00008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r1}, 0x10) rt_sigprocmask(0x0, &(0x7f0000000100)={[0xfffffffffffe]}, 0x0, 0x8) r2 = gettid() timer_create(0x0, &(0x7f0000000180)={0x0, 0x2f, 0x4, @tid=r2}, &(0x7f0000000080)) rt_sigtimedwait(&(0x7f00000001c0)={[0xffffffffffffffff]}, 0x0, 0x0, 0x8) timer_settime(0x0, 0x0, &(0x7f00000000c0)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) 1.183501794s ago: executing program 2: socket$nl_netfilter(0x10, 0x3, 0xc) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x8000000, {{@in6=@rand_addr=' \x01\x00', @in=@empty, 0x0, 0x0, 0x0, 0x0, 0xa}}}, 0xb8}}, 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b8000000150001000000000000000000e00000020000000000000000000000000000000000000000000000000000000006000000000000000a00000000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/112], 0xb8}}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f0000000180)=@file={0x0, './bus\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000500)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a5050000000077d8f3b423cdac8d80000000000000002be16ad10a48b243ccc42606d25dfd73a015e0ca7fc250d40f7535f7866907dc6751dfb265a0e3ccae669e17fd6587d452d6453559c3421eed73d56615fe6c54c3b3ffe1b4ce25d7c9837d5ac03bf3a48dfe47ec9dd6c091c30b93bfae76d9ebacd3ed3e26e7a23129d6606fd28a69989d552af6bda9df2c3af36effff9af2551ce935b0f327cb3f011a7d06602e2fd52347125907000000000000003ed38ae89d24e1cebfba2f87925bfacba83109751fe6c05405d027edd68149ee99eef6a6992308a4fc0b7c70bc677d6dd4aed4af7500d7900a820b6347184e9a217b5614cd50cbe43a1ed2526814bc0000e9e086ce48e90defb6670c3df262ad0a97aec7291c25447c106a9b893e10db21901eb397b2f5fd71d20fa7a050fbbef9e326ea27e513e96068fd1e8a43e89f9c85c822a961546ed5363c17ff1432d08806bc376e3e49ee52b59d13182e1f24ed200ada12f7a1525320e716660000000000b02b001500a710eb1affb87ba55b2d72078e9f40b4ae7d01000000d11cd22c35d3294000000000000000000000000000000000000000000000000000000000000000000000000c52f4ebd2c893bb97a068bd10734a83584898eccb26f7b789cfc4cd995fa3e11a5c74c85404e2df3ad37b729ac83b0dcb4f48f3c3356b9997fc455a17690b6f7f9ccbe4b1701941b18a904c0e585a66c3b84b138efc20a546d3d5227e23b03f2a834391ad24fe7d9b20cf92cb151763d41f5c76e2ff3e93ee296c4082ee73e7e197253a2b66c353312c9d75711ce1623e9c5452f42e09b388a14b22bdff59d2a69dcb7d84c235b23a4480c2461b405cfd1a38992f295ad3adc94cd07c850d1c77a211bfa02c24e9280333152fb794e4ddea02017a6c139b50101caecaf2abc0843b99a96fc4275ad107274e2934a87a4ddcdb112754ca5bdec0ead14b6c0f19a43a2f04c7f0be31491eb8c9ff68236c8600000000000000000000000066e034c81c3cab4e33fc8dc55ce0ada18dcbf31c6e82893add3bee3e10fc873d1d922b0877cbcd95b839d3059d5140a1f742f6e75741e39e5cb6a193e06a1043375b0f61b5d4e17c81baa31b924d84f2243471221c15fa12313ffbfa7c2730302b66cf8aeb1f98bd67bfd38ec2beac3ca99f66705b71e6205e7cbf3643561eabb9a63fcd604d5cc27e1317ad94d81150c68ab27987655e1dd676ceef54ad4d663f88b6f82a65f7c94a0e40cbb782ff536bd67ba81125f8e0af199094b407f630dc6eb3b79615a4e63f75ab30b1e475748cb5dce6581dc92f740a21fb8dec725b4f2a0b0972f852504245d5ce11cfdead09c9b6e094261084cd20c2294525061a4638c0bfd08dfa70d24bf85d9cfd940e1a4f1509bed8233f22506e5b000000000000862a01def6c9e879a87688ad151c14ae7ff8a090aebe7e4f936c26e565ae96d38ee5f794468caa17419e22ff13df60a95596490358a3b8121511e427d619ad87fe998702ea0b659eff3f5cd8f4094fdd6b1d45facfe6629846170d99de670a9e72e21ed7363876612bf58a17142abccbbe4762f531067f92af24f5354f432ed1df74f8168d05de528f63a98bca22820439c567973de0077c068d1b70b6"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10) socket$netlink(0x10, 0x3, 0x0) r7 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x0, 0x0) ioctl$PPPIOCNEWUNIT(r7, 0xc004743e, &(0x7f0000000180)) readv(r7, &(0x7f0000000100)=[{0x0}, {&(0x7f0000000340)=""/237, 0xed}], 0x2) fchmod(r1, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)) r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f00000000c0)={'pimreg0\x00', 0x7c2}) ioctl$TUNATTACHFILTER(r8, 0x401054d5, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]}) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) 1.182459724s ago: executing program 1: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r2}, 0x10) recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0) syz_usb_connect(0x0, 0x48, &(0x7f00000005c0)=ANY=[], 0x0) 1.178035615s ago: executing program 4: bpf$MAP_DELETE_ELEM(0x3, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10) r2 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$lock(r3, 0x6, &(0x7f0000002000)={0x1}) fcntl$lock(r3, 0x26, &(0x7f0000000040)) 761.23933ms ago: executing program 3: bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000002c7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r1, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000067dfb4a518110000", @ANYRES32, @ANYBLOB="0000000000000000b708000006000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112}) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00', r2}, 0x10) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00', r3}, 0x10) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000180)={'rose0\x00', 0x112}) ioctl$TUNSETQUEUE(r4, 0x400454d9, &(0x7f0000000100)={'vlan0\x00', 0x400}) 757.458561ms ago: executing program 0: socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000680)='blkio.bfq.sectors_recursive\x00', 0x275a, 0x0) mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x0) sendmsg$inet(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000001c0)="8ec1cc54649640be1983f79c5bfe88cd6a6afd5570ab59578db363f4892559f334d436138406b699de69db13fd73742880", 0x31}, {&(0x7f0000000a40)="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", 0x21c}, {&(0x7f0000000580)="1b3b351333f3a3b13679144b7cd8a483d6dbc75ded5829aceff163e19496e9ba6875841285b877fac97b183e950017761d4433127df4ffeab47d3545970ac2571b8775e05a2ec30dbc2154f17ddb1de319411d093471a30c77ca0d06d1576a43cbd422dd9fc5aeeef4a0a53a5d93a9b5b000bba7223848aa6b97abe164077f7737311f187ffdfefdae072f6c3d59bf", 0x8f}], 0x3}, 0x0) recvmsg(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)=""/233, 0xe9}], 0x1, &(0x7f0000001d00)=""/4080, 0xff0}, 0x0) close(r0) 748.261742ms ago: executing program 3: r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b703000000ff00008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r1}, 0x10) rt_sigprocmask(0x0, &(0x7f0000000100)={[0xfffffffffffe]}, 0x0, 0x8) r2 = gettid() timer_create(0x0, &(0x7f0000000180)={0x0, 0x2f, 0x4, @tid=r2}, &(0x7f0000000080)) rt_sigtimedwait(&(0x7f00000001c0)={[0xffffffffffffffff]}, 0x0, 0x0, 0x8) timer_settime(0x0, 0x0, &(0x7f00000000c0)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) 693.360561ms ago: executing program 0: r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xf, 0x4, 0x8, 0x8}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000000)='kfree\x00', r2}, 0x10) fchdir(r0) close(r0) fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0) 676.701074ms ago: executing program 0: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10) r2 = socket$igmp6(0xa, 0x3, 0x2) setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f0000000000)=0x1bc, 0x4) sendmmsg$inet6(r2, &(0x7f00000000c0)=[{{&(0x7f00000001c0)={0xa, 0x0, 0x0, @mcast2}, 0x1c, 0x0}}], 0x1, 0x0) recvfrom$inet6(r2, 0x0, 0x2, 0x2100, 0x0, 0x0) 657.324577ms ago: executing program 3: r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) statfs(&(0x7f0000000180)='./file2\x00', 0x0) 655.939627ms ago: executing program 0: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f00000002c0)}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000dc0)={&(0x7f0000000040)='ext4_unlink_enter\x00', r1}, 0x10) unlink(&(0x7f0000000140)='./cgroup\x00') 634.59556ms ago: executing program 3: syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000040)='./bus\x00', 0x1a00040, &(0x7f00000004c0)={[{@utf8}, {@rodir}, {@uni_xlate}, {@uni_xlate}, {@shortname_win95}, {@uni_xlateno}, {@fat=@errors_remount}, {@fat=@codepage={'codepage', 0x3d, '737'}}, {@rodir}, {@iocharset={'iocharset', 0x3d, 'macinuit'}}, {@rodir}, {@utf8no}]}, 0x3, 0x350, &(0x7f0000000580)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.io_queued_recursive\x00', 0x275a, 0x0) 632.94079ms ago: executing program 0: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000a40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000740)=[{0x5}]}, 0x90) bpf$PROG_LOAD(0x2, &(0x7f0000000680)={0x3, 0x3, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x48) 624.857092ms ago: executing program 3: bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='ext4_es_lookup_extent_enter\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='ext4_es_lookup_extent_enter\x00', r2}, 0x10) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) 612.691813ms ago: executing program 3: syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x10, &(0x7f00000014c0), 0x1, 0x793, &(0x7f0000001700)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) open(&(0x7f0000007fc0)='./bus\x00', 0x60142, 0x0) open(&(0x7f0000000380)='./file1\x00', 0x0, 0x0) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000001740)={0x9c02}, 0x8) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000004000000000000000000850000002300000095"], &(0x7f0000000180)='GPL\x00', 0x4, 0x8f, &(0x7f00000002c0)=""/143}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000380)='sched_switch\x00', r3}, 0x10) r4 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r4, 0x107, 0xd, &(0x7f0000000100)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c) mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x0, 0x13012, r4, 0x0) r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='smaps\x00') read$FUSE(r5, &(0x7f0000004180)={0x2020}, 0x2020) 546.172924ms ago: executing program 0: socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00) sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0x810100, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1, 0x0, 0x0, 0x3}, 0x40000000) setsockopt$TIPC_DEST_DROPPABLE(r0, 0x10f, 0x8a, &(0x7f0000000000), 0x4) 505.13262ms ago: executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0xc, &(0x7f0000000640)=0x4, 0x4) sendmsg$netlink(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000003c0)=ANY=[@ANYBLOB="1c0000005e000106000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ca"], 0x1c}], 0x1}, 0x0) 193.674479ms ago: executing program 1: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000d0000000002a870000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000280)='netlink_extack\x00', r0}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x213) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000001c0)=@ipv6_getroute={0x30, 0x1a, 0x1, 0x0, 0x0, {0x2}, [@RTA_GATEWAY={0x14, 0x5, @private0}]}, 0x30}}, 0x0) 189.59271ms ago: executing program 4: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xf, 0x4, 0x8, 0x8, 0x2000}, 0x48) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x19) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) bind$unix(r6, &(0x7f0000000200)=@abs={0x1}, 0x6e) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={0xffffffffffffffff}) sendmmsg$unix(r7, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000000000)=@abs={0x1}, 0x6e, 0x0, 0x0, &(0x7f00000004c0)=ANY=[@ANYRESHEX, @ANYRES32, @ANYRESOCT=r5, @ANYRES32=0x0, @ANYBLOB="0100000014000000000000000100000001000000", @ANYRES32=r7, @ANYBLOB='\x00\x00\x00\x00', @ANYRESDEC, @ANYRES8=0x0], 0x38}}], 0x2, 0x0) fsopen(&(0x7f0000000000)='tmpfs\x00', 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800001f00000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r8}, 0x10) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040)) mremap(&(0x7f0000097000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f0000bff000/0x400000)=nil) madvise(&(0x7f00000d9000/0x2000)=nil, 0x2000, 0x14) socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'macsec0\x00'}) 137.158938ms ago: executing program 1: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x9, 0x2, 0x3, 0x1}, 0x48) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000000c0)={r0, &(0x7f0000000080), 0x0}, 0x20) 114.695742ms ago: executing program 1: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b00000000001b000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000006ffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x3ffffffffffffda, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0) r4 = socket(0x11, 0x3, 0x0) r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r5}, 0x10) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000005c0)={'gre0\x00', 0x0}) bind$packet(r4, &(0x7f0000000180)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @dev}, 0x14) setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f0000000240)=0xe9, 0x4) sendmsg$netlink(r4, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="02011400012918000e3580009f0001140000002f0600ac141414e0000003808a8972bd0b72e41082b1a3d2061fd7fdfe4b88942a31f48597e36e039b1c599db6e466749c2d4c8303a0f7fbda34fb8825f80200e3c0aba61f6304000000ffffca88faca"], 0xdd12}], 0x1}, 0x0) io_submit(0x0, 0x0, 0x0) 0s ago: executing program 2: r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000dc0)='rcu_utilization\x00', r1}, 0x5e) preadv(r0, &(0x7f0000001e00)=[{&(0x7f0000000d00)=""/4096, 0x1000}], 0x1, 0x0, 0x0) kernel console output (not intermixed with test programs): s mode [ 647.718233][T25120] incfs: Can't find or create .index dir in ./file0 [ 647.725092][T25120] incfs: mount failed -14 [ 647.806577][T25122] input: syz0 as /devices/virtual/input/input63 [ 648.018229][T25126] bridge0: port 1(bridge_slave_0) entered blocking state [ 648.025091][T25126] bridge0: port 1(bridge_slave_0) entered disabled state [ 648.032372][T25126] device bridge_slave_0 entered promiscuous mode [ 648.039372][T25126] bridge0: port 2(bridge_slave_1) entered blocking state [ 648.046203][T25126] bridge0: port 2(bridge_slave_1) entered disabled state [ 648.053656][T25126] device bridge_slave_1 entered promiscuous mode [ 648.103444][T25126] bridge0: port 2(bridge_slave_1) entered blocking state [ 648.110317][T25126] bridge0: port 2(bridge_slave_1) entered forwarding state [ 648.117469][T25126] bridge0: port 1(bridge_slave_0) entered blocking state [ 648.124301][T25126] bridge0: port 1(bridge_slave_0) entered forwarding state [ 648.150452][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 648.158012][ T20] bridge0: port 1(bridge_slave_0) entered disabled state [ 648.165164][ T20] bridge0: port 2(bridge_slave_1) entered disabled state [ 648.176814][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 648.184908][ T42] bridge0: port 1(bridge_slave_0) entered blocking state [ 648.191761][ T42] bridge0: port 1(bridge_slave_0) entered forwarding state [ 648.200833][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 648.208953][ T20] bridge0: port 2(bridge_slave_1) entered blocking state [ 648.215809][ T20] bridge0: port 2(bridge_slave_1) entered forwarding state [ 648.234211][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 648.242026][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 648.249661][ T316] usb 5-1: new high-speed USB device number 73 using dummy_hcd [ 648.262760][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 648.274612][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 648.282908][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 648.294156][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 648.303202][T25131] EXT4-fs (sda1): re-mounted. Opts: (null). Quota mode: none. [ 648.313184][T25126] device veth0_vlan entered promiscuous mode [ 648.326748][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 648.336038][T25131] input input64: cannot allocate more than FF_MAX_EFFECTS effects [ 648.337287][T25126] device veth1_macvtap entered promiscuous mode [ 648.359639][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 648.363125][T25133] loop1: detected capacity change from 0 to 512 [ 648.384364][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 648.408402][T25133] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 648.419471][T25133] ext4 filesystem being mounted at /root/syzkaller-testdir3910677929/syzkaller.vutUCW/116/file0 supports timestamps until 2038 (0x7fffffff) [ 648.616311][T25145] xt_bpf: check failed: parse error [ 648.799282][T25149] bridge: RTM_NEWNEIGH with invalid ether address [ 648.830939][ T8] device bridge_slave_1 left promiscuous mode [ 648.837014][ T8] bridge0: port 2(bridge_slave_1) entered disabled state [ 648.844695][ T8] device bridge_slave_0 left promiscuous mode [ 648.850668][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 648.859179][ T8] device veth1_macvtap left promiscuous mode [ 648.865279][ T316] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0 [ 648.875042][ T8] device veth0_vlan left promiscuous mode [ 648.880674][ T316] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0 [ 649.067562][ T316] usb 5-1: New USB device found, idVendor=10b5, idProduct=ac70, bcdDevice=9c.3c [ 649.076595][ T316] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 649.085098][ T316] usb 5-1: Product: syz [ 649.089405][ T316] usb 5-1: Manufacturer: syz [ 649.093815][ T316] usb 5-1: SerialNumber: syz [ 649.099029][ T316] usb 5-1: config 0 descriptor?? [ 649.110805][ T3536] usb 2-1: new high-speed USB device number 62 using dummy_hcd [ 649.129685][T25151] loop2: detected capacity change from 0 to 131072 [ 649.143717][ T316] pl2303 5-1:0.0: required endpoints missing [ 649.177983][T25151] F2FS-fs (loop2): invalid crc value [ 649.184867][T25151] F2FS-fs (loop2): Found nat_bits in checkpoint [ 649.210515][T25151] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4 [ 649.344655][T19944] F2FS-fs (loop2): sanity_check_inode: inode (ino=6, mode=41471) should not have inline_data, run fsck to fix [ 649.358788][T19944] F2FS-fs (loop2): sanity_check_inode: inode (ino=6, mode=41471) should not have inline_data, run fsck to fix [ 649.371205][ T3536] usb 2-1: Using ep0 maxpacket: 16 [ 649.379619][ T42] usb 5-1: USB disconnect, device number 73 [ 649.392127][ T30] kauditd_printk_skb: 32 callbacks suppressed [ 649.392142][ T30] audit: type=1400 audit(2000000269.756:13820): avc: denied { module_load } for pid=25162 comm="syz-executor.0" path="/root/syzkaller-testdir201727418/syzkaller.wSvMlm/3/file0/bus" dev="ramfs" ino=134826 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=system permissive=1 [ 649.392489][T25163] Invalid ELF header magic: != ELF [ 649.475733][T25169] loop0: detected capacity change from 0 to 128 [ 649.500979][ T3536] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0 [ 649.552085][T25169] tipc: Enabling of bearer rejected, media not registered [ 649.696079][ T3536] usb 2-1: New USB device found, idVendor=0b49, idProduct=064f, bcdDevice=b9.e8 [ 649.777873][T25177] input: syz0 as /devices/virtual/input/input65 [ 649.882368][ T3536] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 649.890204][ T3536] usb 2-1: Product: syz [ 649.894246][ T3536] usb 2-1: Manufacturer: syz [ 649.898608][ T3536] usb 2-1: SerialNumber: syz [ 649.907193][ T3536] usb 2-1: config 0 descriptor?? [ 649.923271][T25175] bridge0: port 1(bridge_slave_0) entered blocking state [ 649.930458][T25175] bridge0: port 1(bridge_slave_0) entered disabled state [ 649.937863][T25175] device bridge_slave_0 entered promiscuous mode [ 649.947865][T25175] bridge0: port 2(bridge_slave_1) entered blocking state [ 649.954761][T25175] bridge0: port 2(bridge_slave_1) entered disabled state [ 649.963502][T25175] device bridge_slave_1 entered promiscuous mode [ 650.051694][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 650.059750][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 650.087618][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 650.095877][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 650.104163][ T20] bridge0: port 1(bridge_slave_0) entered blocking state [ 650.111022][ T20] bridge0: port 1(bridge_slave_0) entered forwarding state [ 650.119611][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 650.127830][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 650.135886][ T20] bridge0: port 2(bridge_slave_1) entered blocking state [ 650.142737][ T20] bridge0: port 2(bridge_slave_1) entered forwarding state [ 650.149978][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 650.158208][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 650.172135][T25175] device veth0_vlan entered promiscuous mode [ 650.181160][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 650.181648][ T42] usb 2-1: USB disconnect, device number 62 [ 650.189474][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 650.201729][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 650.209148][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 650.217600][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 650.242671][ T6629] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 650.261023][T25175] device veth1_macvtap entered promiscuous mode [ 650.277228][ T6629] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 650.291925][ T5975] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 650.314905][ T8] device bridge_slave_1 left promiscuous mode [ 650.321695][ T8] bridge0: port 2(bridge_slave_1) entered disabled state [ 650.329990][ T8] device bridge_slave_0 left promiscuous mode [ 650.336681][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 650.347681][ T8] device veth1_macvtap left promiscuous mode [ 650.353718][ T8] device veth0_vlan left promiscuous mode [ 650.375641][ T30] audit: type=1326 audit(2000000270.670:13821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25187 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a4cc5cf29 code=0x7ffc0000 [ 650.432583][ T30] audit: type=1326 audit(2000000270.670:13822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25187 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9a4cc5cf29 code=0x7ffc0000 [ 650.478839][ T30] audit: type=1326 audit(2000000270.698:13823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25187 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a4cc5cf29 code=0x7ffc0000 [ 650.538873][ T30] audit: type=1326 audit(2000000270.698:13824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25187 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a4cc5cf29 code=0x7ffc0000 [ 650.567784][ T30] audit: type=1326 audit(2000000270.698:13825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25187 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9a4cc5cf29 code=0x7ffc0000 [ 650.572669][T25184] loop4: detected capacity change from 0 to 131072 [ 650.592217][ T30] audit: type=1326 audit(2000000270.698:13826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25187 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a4cc5cf29 code=0x7ffc0000 [ 650.622923][ T30] audit: type=1326 audit(2000000270.698:13827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25187 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9a4cc5a6a7 code=0x7ffc0000 [ 650.647779][ T30] audit: type=1326 audit(2000000270.698:13828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25187 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9a4cc20379 code=0x7ffc0000 [ 650.671905][ T30] audit: type=1326 audit(2000000270.698:13829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25187 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9a4cc5a6a7 code=0x7ffc0000 [ 650.721642][T25184] F2FS-fs (loop4): invalid crc value [ 650.737046][T25184] F2FS-fs (loop4): Found nat_bits in checkpoint [ 650.788608][T25184] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4 [ 650.996152][T25224] input: syz0 as /devices/virtual/input/input66 [ 651.148456][T25041] F2FS-fs (loop4): sanity_check_inode: inode (ino=6, mode=41471) should not have inline_data, run fsck to fix [ 651.160324][T25041] F2FS-fs (loop4): sanity_check_inode: inode (ino=6, mode=41471) should not have inline_data, run fsck to fix [ 651.201813][ T20] usb 2-1: new high-speed USB device number 63 using dummy_hcd [ 651.404501][T25226] bridge0: port 1(bridge_slave_0) entered blocking state [ 651.411447][T25226] bridge0: port 1(bridge_slave_0) entered disabled state [ 651.418839][T25226] device bridge_slave_0 entered promiscuous mode [ 651.427529][T25226] bridge0: port 2(bridge_slave_1) entered blocking state [ 651.434592][T25226] bridge0: port 2(bridge_slave_1) entered disabled state [ 651.441815][T25226] device bridge_slave_1 entered promiscuous mode [ 651.489549][T25226] bridge0: port 2(bridge_slave_1) entered blocking state [ 651.496428][T25226] bridge0: port 2(bridge_slave_1) entered forwarding state [ 651.503546][T25226] bridge0: port 1(bridge_slave_0) entered blocking state [ 651.510365][T25226] bridge0: port 1(bridge_slave_0) entered forwarding state [ 651.534654][ T5975] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 651.542344][ T5975] bridge0: port 1(bridge_slave_0) entered disabled state [ 651.549820][ T5975] bridge0: port 2(bridge_slave_1) entered disabled state [ 651.561421][ T5975] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 651.569422][ T5975] bridge0: port 1(bridge_slave_0) entered blocking state [ 651.576447][ T5975] bridge0: port 1(bridge_slave_0) entered forwarding state [ 651.585396][ T3536] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 651.593494][ T3536] bridge0: port 2(bridge_slave_1) entered blocking state [ 651.600330][ T3536] bridge0: port 2(bridge_slave_1) entered forwarding state [ 651.607753][ T20] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0 [ 651.617595][ T20] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0 [ 651.635568][ T3536] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 651.645050][ T5975] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 651.659781][ T3536] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 651.674342][T25226] device veth0_vlan entered promiscuous mode [ 651.680732][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 651.688748][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 651.696792][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 651.705268][ T8] device bridge_slave_1 left promiscuous mode [ 651.712388][ T8] bridge0: port 2(bridge_slave_1) entered disabled state [ 651.719990][ T8] device bridge_slave_0 left promiscuous mode [ 651.726398][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 651.734648][ T8] device veth1_macvtap left promiscuous mode [ 651.740595][ T8] device veth0_vlan left promiscuous mode [ 651.797773][ T20] usb 2-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=48.99 [ 651.806866][ T20] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 651.816419][ T20] usb 2-1: Product: syz [ 651.820471][ T20] usb 2-1: Manufacturer: syz [ 651.824843][ T20] usb 2-1: SerialNumber: syz [ 651.830921][ T20] usb 2-1: config 0 descriptor?? [ 651.858300][T25226] device veth1_macvtap entered promiscuous mode [ 651.867649][ T3536] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 651.886103][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 651.894403][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 651.974202][T25252] loop4: detected capacity change from 0 to 256 [ 651.999154][T25252] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 652.047077][T25250] loop2: detected capacity change from 0 to 40427 [ 652.091459][T25250] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 652.099069][T25250] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 652.108585][T25250] F2FS-fs (loop2): invalid crc value [ 652.115572][T25250] F2FS-fs (loop2): Found nat_bits in checkpoint [ 652.134072][ T20] snd-usb-audio: probe of 2-1:0.0 failed with error -12 [ 652.141561][ T20] usb 2-1: USB disconnect, device number 63 [ 652.145104][T25250] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 652.154280][T25250] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 652.203058][ T5975] usb 1-1: new high-speed USB device number 41 using dummy_hcd [ 652.417373][T25260] attempt to access beyond end of device [ 652.417373][T25260] loop2: rw=2049, want=78368, limit=40427 [ 652.523843][ T5975] usb 1-1: Using ep0 maxpacket: 16 [ 652.664530][ T5975] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0 [ 652.806592][T25268] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.1'. [ 652.815713][T25268] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.1'. [ 652.865405][ T6629] usb 5-1: new high-speed USB device number 74 using dummy_hcd [ 652.891247][ T5975] usb 1-1: New USB device found, idVendor=0b49, idProduct=064f, bcdDevice=b9.e8 [ 652.900392][ T5975] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 652.908616][ T5975] usb 1-1: Product: syz [ 652.912676][ T5975] usb 1-1: Manufacturer: syz [ 652.914176][ T3342] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 652.917231][ T5975] usb 1-1: SerialNumber: syz [ 652.925879][ T3342] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 652.939617][ T5975] usb 1-1: config 0 descriptor?? [ 653.052153][T25285] tmpfs: Unknown parameter '' [ 653.201237][ T42] usb 1-1: USB disconnect, device number 41 [ 653.303740][ T6629] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 653.313640][ T6629] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 653.357856][ T417] usb 2-1: new high-speed USB device number 64 using dummy_hcd [ 653.477078][ T6629] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 653.485947][ T6629] usb 5-1: New USB device strings: Mfr=0, Product=254, SerialNumber=2 [ 653.493940][ T6629] usb 5-1: Product: syz [ 653.497901][ T6629] usb 5-1: SerialNumber: syz [ 653.769837][ T417] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0 [ 653.779320][ T417] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0 [ 653.845516][ T6629] usb 5-1: 0:2 : does not exist [ 653.851321][ T6629] usb 5-1: USB disconnect, device number 74 [ 653.953809][ T417] usb 2-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=48.99 [ 653.962712][ T417] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 653.970713][ T417] usb 2-1: Product: syz [ 653.974673][ T417] usb 2-1: Manufacturer: syz [ 653.979129][ T417] usb 2-1: SerialNumber: syz [ 653.984154][ T417] usb 2-1: config 0 descriptor?? [ 654.268082][ T417] snd-usb-audio: probe of 2-1:0.0 failed with error -12 [ 654.275397][ T417] usb 2-1: USB disconnect, device number 64 [ 654.738426][T25292] 9pnet: p9_errstr2errno: server reported unknown error @rH [ 654.757107][T25295] netlink: 'syz-executor.4': attribute type 8 has an invalid length. [ 654.816959][ T30] kauditd_printk_skb: 78 callbacks suppressed [ 654.816974][ T30] audit: type=1326 audit(2000000274.768:13908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25303 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69b430af29 code=0x7ffc0000 [ 654.850832][ T30] audit: type=1326 audit(2000000274.805:13909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25303 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f69b430af29 code=0x7ffc0000 [ 654.884608][ T30] audit: type=1326 audit(2000000274.805:13910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25303 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69b430af29 code=0x7ffc0000 [ 654.909898][ T30] audit: type=1326 audit(2000000274.805:13911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25303 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=87 compat=0 ip=0x7f69b430af29 code=0x7ffc0000 [ 654.935980][ T30] audit: type=1326 audit(2000000274.805:13912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25303 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69b430af29 code=0x7ffc0000 [ 654.962849][ T30] audit: type=1326 audit(2000000274.805:13913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25303 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f69b430af29 code=0x7ffc0000 [ 654.998043][ T30] audit: type=1326 audit(2000000274.805:13914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25303 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69b430af29 code=0x7ffc0000 [ 655.116569][T25312] input: syz0 as /devices/virtual/input/input67 [ 655.196402][ T30] audit: type=1326 audit(2000000274.805:13915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25303 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f69b4309b20 code=0x7ffc0000 [ 655.220909][ T30] audit: type=1326 audit(2000000274.805:13916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25303 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f69b430ac8b code=0x7ffc0000 [ 655.245025][ T30] audit: type=1326 audit(2000000274.805:13917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25303 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f69b430ac8b code=0x7ffc0000 [ 655.331835][T25326] 9pnet: p9_errstr2errno: server reported unknown error @rH [ 655.394658][ T20] usb 1-1: new high-speed USB device number 42 using dummy_hcd [ 655.560230][T25322] loop4: detected capacity change from 0 to 131072 [ 655.589696][ T6629] usb 3-1: new high-speed USB device number 49 using dummy_hcd [ 655.612913][T25322] F2FS-fs (loop4): invalid crc value [ 655.619705][T25322] F2FS-fs (loop4): Found nat_bits in checkpoint [ 655.641836][T25322] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4 [ 655.654733][ T20] usb 1-1: Using ep0 maxpacket: 32 [ 655.665536][ T417] usb 2-1: new high-speed USB device number 65 using dummy_hcd [ 655.777010][T25226] F2FS-fs (loop4): sanity_check_inode: inode (ino=6, mode=41471) should not have inline_data, run fsck to fix [ 655.784769][ T20] usb 1-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config [ 655.788885][T25226] F2FS-fs (loop4): sanity_check_inode: inode (ino=6, mode=41471) should not have inline_data, run fsck to fix [ 655.798649][ T20] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 655.819179][ T20] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 655.828164][ T20] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 655.836633][ T20] usb 1-1: config 0 descriptor?? [ 656.012354][ T6629] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0 [ 656.021919][ T6629] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0 [ 656.077358][ T417] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0 [ 656.086833][ T417] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0 [ 656.108874][ T3536] usb 1-1: USB disconnect, device number 42 [ 656.126995][T25336] bridge0: port 1(bridge_slave_0) entered blocking state [ 656.134032][T25336] bridge0: port 1(bridge_slave_0) entered disabled state [ 656.141189][T25336] device bridge_slave_0 entered promiscuous mode [ 656.148071][T25336] bridge0: port 2(bridge_slave_1) entered blocking state [ 656.155048][T25336] bridge0: port 2(bridge_slave_1) entered disabled state [ 656.162216][T25336] device bridge_slave_1 entered promiscuous mode [ 656.204944][T25336] bridge0: port 2(bridge_slave_1) entered blocking state [ 656.211894][T25336] bridge0: port 2(bridge_slave_1) entered forwarding state [ 656.218999][T25336] bridge0: port 1(bridge_slave_0) entered blocking state [ 656.225755][T25336] bridge0: port 1(bridge_slave_0) entered forwarding state [ 656.228988][ T6629] usb 3-1: New USB device found, idVendor=10b5, idProduct=ac70, bcdDevice=9c.3c [ 656.243365][ T6629] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 656.251393][ T6629] usb 3-1: Product: syz [ 656.256081][ T6629] usb 3-1: Manufacturer: syz [ 656.260435][ T6629] usb 3-1: SerialNumber: syz [ 656.266423][ T6629] usb 3-1: config 0 descriptor?? [ 656.277554][ T1248] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 656.285211][ T1248] bridge0: port 1(bridge_slave_0) entered disabled state [ 656.292362][ T1248] bridge0: port 2(bridge_slave_1) entered disabled state [ 656.301491][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 656.309908][ T316] bridge0: port 1(bridge_slave_0) entered blocking state [ 656.315712][ T417] usb 2-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=48.99 [ 656.316771][ T316] bridge0: port 1(bridge_slave_0) entered forwarding state [ 656.325600][ T417] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 656.325621][ T417] usb 2-1: Product: syz [ 656.344926][ T6629] pl2303 3-1:0.0: required endpoints missing [ 656.344994][ T3536] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 656.351767][ T417] usb 2-1: Manufacturer: syz [ 656.359111][ T3536] bridge0: port 2(bridge_slave_1) entered blocking state [ 656.363008][ T417] usb 2-1: SerialNumber: syz [ 656.369852][ T3536] bridge0: port 2(bridge_slave_1) entered forwarding state [ 656.375433][ T417] usb 2-1: config 0 descriptor?? [ 656.389171][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 656.405833][T25336] device veth0_vlan entered promiscuous mode [ 656.413302][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 656.421626][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 656.429680][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 656.436953][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 656.444707][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 656.459747][T25336] device veth1_macvtap entered promiscuous mode [ 656.470026][ T3536] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 656.479898][ T6629] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 656.491058][ T1248] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 656.500634][ T8] device bridge_slave_1 left promiscuous mode [ 656.506565][ T8] bridge0: port 2(bridge_slave_1) entered disabled state [ 656.514125][ T8] device bridge_slave_0 left promiscuous mode [ 656.520040][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 656.527908][ T8] device veth1_macvtap left promiscuous mode [ 656.533814][ T8] device veth0_vlan left promiscuous mode [ 656.557503][ T316] usb 3-1: USB disconnect, device number 49 [ 656.673370][ T417] snd-usb-audio: probe of 2-1:0.0 failed with error -12 [ 656.686073][ T417] usb 2-1: USB disconnect, device number 65 [ 656.941178][T25370] input: syz0 as /devices/virtual/input/input68 [ 657.201550][T25390] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 657.283943][T25394] loop2: detected capacity change from 0 to 256 [ 657.671205][T25410] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=27 sclass=netlink_route_socket pid=25410 comm=syz-executor.0 [ 657.745743][ T417] usb 3-1: new high-speed USB device number 50 using dummy_hcd [ 657.891077][T25420] loop1: detected capacity change from 0 to 256 [ 657.984175][ T316] usb 1-1: new high-speed USB device number 43 using dummy_hcd [ 658.244270][ T417] usb 3-1: New USB device found, idVendor=077b, idProduct=2226, bcdDevice=ca.8b [ 658.265102][ T417] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 658.325412][ T417] usb 3-1: config 0 descriptor?? [ 658.367488][T25448] loop1: detected capacity change from 0 to 256 [ 658.454561][T25451] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability [ 658.462538][T25451] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16 [ 658.612615][ T316] usb 1-1: config 0 has an invalid interface number: 18 but max is 0 [ 658.620652][ T316] usb 1-1: config 0 has no interface number 0 [ 658.626697][ T316] usb 1-1: config 0 interface 18 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 658.638990][ T316] usb 1-1: config 0 interface 18 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 658.731808][ T316] usb 1-1: New USB device found, idVendor=054c, idProduct=03d5, bcdDevice= 0.10 [ 658.740951][ T316] usb 1-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0 [ 658.748943][ T316] usb 1-1: Manufacturer: syz [ 658.753350][ T417] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 658.753434][ T417] asix: probe of 3-1:0.0 failed with error -71 [ 658.771787][ T316] usb 1-1: config 0 descriptor?? [ 658.772088][ T417] usb 3-1: USB disconnect, device number 50 [ 659.139964][T25478] loop4: detected capacity change from 0 to 256 [ 659.284138][T25480] loop4: detected capacity change from 0 to 512 [ 659.306453][ T316] input: syz as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.18/0003:054C:03D5.0072/input/input69 [ 659.321225][ T316] sony 0003:054C:03D5.0072: input,hidraw0: USB HID v0.00 Joystick [syz] on usb-dummy_hcd.0-1/input18 [ 659.328741][T25480] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 659.377629][T25480] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1053: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 659.479901][T25480] EXT4-fs (loop4): 1 truncate cleaned up [ 659.485373][T25480] EXT4-fs (loop4): mounted filesystem without journal. Opts: nodelalloc,block_validity,sysvgroups,,errors=continue. Quota mode: writeback. [ 659.503804][T25480] EXT4-fs error (device loop4): ext4_xattr_block_get:546: inode #15: comm syz-executor.4: corrupted xattr block 19 [ 659.523068][ T20] usb 1-1: USB disconnect, device number 43 [ 659.529752][T25480] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 659.538641][T25480] EXT4-fs error (device loop4): ext4_xattr_block_get:546: inode #15: comm syz-executor.4: corrupted xattr block 19 [ 659.551098][T25480] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 659.612698][T25498] loop4: detected capacity change from 0 to 512 [ 659.664217][T25498] EXT4-fs (loop4): Ignoring removed bh option [ 659.670122][T25498] EXT4-fs (loop4): Journaled quota options ignored when QUOTA feature is enabled [ 659.679457][T25498] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock [ 659.689035][T25498] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock [ 659.698652][T25498] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 1 overlaps superblock [ 659.708752][T25498] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 659.716561][T25498] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c040e01c, mo2=0000] [ 659.724533][T25498] EXT4-fs (loop4): orphan cleanup on readonly fs [ 659.731527][T25498] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz-executor.4: bg 0: block 34: padding at end of block bitmap is not set [ 659.746575][T25498] EXT4-fs (loop4): 1 truncate cleaned up [ 659.752752][T25498] EXT4-fs (loop4): mounted filesystem without journal. Opts: bh,discard,usrjquota=./file0,noblock_validity,,errors=continue. Quota mode: writeback. [ 659.768434][T25498] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 659.776442][T25498] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c040e01c, mo2=0000] [ 659.789812][T25506] loop1: detected capacity change from 0 to 256 [ 659.882733][T25516] loop4: detected capacity change from 0 to 512 [ 659.901840][ T6319] usb 3-1: new high-speed USB device number 51 using dummy_hcd [ 659.924875][T25516] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 659.947174][T25516] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1053: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 659.965776][T25516] EXT4-fs (loop4): 1 truncate cleaned up [ 659.971510][T25516] EXT4-fs (loop4): mounted filesystem without journal. Opts: nodelalloc,block_validity,sysvgroups,,errors=continue. Quota mode: writeback. [ 659.988718][T25516] EXT4-fs error (device loop4): ext4_xattr_block_get:546: inode #15: comm syz-executor.4: corrupted xattr block 19 [ 660.000900][T25516] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 660.009719][T25516] EXT4-fs error (device loop4): ext4_xattr_block_get:546: inode #15: comm syz-executor.4: corrupted xattr block 19 [ 660.022038][T25516] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 660.047461][T25522] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability [ 660.055194][T25522] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16 [ 660.530299][ T6319] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 660.551750][ T6319] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 660.573458][ T6319] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 660.593288][ T6319] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 660.601931][ T6319] usb 3-1: config 0 descriptor?? [ 660.839457][T25533] loop0: detected capacity change from 0 to 131072 [ 660.899856][T25533] F2FS-fs (loop0): Test dummy encryption mode enabled [ 660.909690][T25533] F2FS-fs (loop0): Found nat_bits in checkpoint [ 660.946327][T25533] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 661.137767][ T6319] plantronics 0003:047F:FFFF.0073: unbalanced collection at end of report description [ 661.158676][ T6319] plantronics 0003:047F:FFFF.0073: parse failed [ 661.164857][ T6319] plantronics: probe of 0003:047F:FFFF.0073 failed with error -22 [ 661.286819][ T30] kauditd_printk_skb: 58 callbacks suppressed [ 661.286836][ T30] audit: type=1326 audit(2000000280.740:13974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25561 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69b430af29 code=0x7ffc0000 [ 661.838072][ T30] audit: type=1326 audit(2000000280.740:13975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25561 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f69b430af29 code=0x7ffc0000 [ 661.862107][ T30] audit: type=1326 audit(2000000280.740:13976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25561 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69b430af29 code=0x7ffc0000 [ 661.868415][ T6629] usb 3-1: USB disconnect, device number 51 [ 661.891994][ T30] audit: type=1326 audit(2000000280.777:13977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25561 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f69b430af29 code=0x7ffc0000 [ 661.916041][ T30] audit: type=1326 audit(2000000280.777:13978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25561 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69b430af29 code=0x7ffc0000 [ 661.940518][ T30] audit: type=1326 audit(2000000280.777:13979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25561 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f69b43086a7 code=0x7ffc0000 [ 661.964492][ T30] audit: type=1326 audit(2000000280.777:13980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25561 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f69b42ce379 code=0x7ffc0000 [ 661.988558][ T30] audit: type=1326 audit(2000000280.777:13981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25561 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f69b430af29 code=0x7ffc0000 [ 662.029857][ T30] audit: type=1326 audit(2000000280.777:13982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25561 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f69b43086a7 code=0x7ffc0000 [ 662.054049][ T30] audit: type=1326 audit(2000000280.777:13983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25561 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f69b42ce379 code=0x7ffc0000 [ 662.182821][T25565] loop4: detected capacity change from 0 to 131072 [ 662.443603][T25565] F2FS-fs (loop4): Test dummy encryption mode enabled [ 662.456250][T25565] F2FS-fs (loop4): Found nat_bits in checkpoint [ 662.498415][T25565] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 662.514744][T25591] incfs: ino conflict with backing FS 1 [ 662.521540][T25591] incfs: ino conflict with backing FS 2 [ 662.538985][T25593] loop0: detected capacity change from 0 to 512 [ 662.567929][T25593] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 662.580259][T25593] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1053: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 662.595041][T25593] EXT4-fs (loop0): 1 truncate cleaned up [ 662.600586][T25593] EXT4-fs (loop0): mounted filesystem without journal. Opts: nodelalloc,block_validity,sysvgroups,,errors=continue. Quota mode: writeback. [ 662.617904][T25593] EXT4-fs error (device loop0): ext4_xattr_block_get:546: inode #15: comm syz-executor.0: corrupted xattr block 19 [ 662.630139][T25593] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop0 ino=15 [ 662.639037][T25593] EXT4-fs error (device loop0): ext4_xattr_block_get:546: inode #15: comm syz-executor.0: corrupted xattr block 19 [ 662.651253][T25593] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop0 ino=15 [ 662.669683][T25599] loop4: detected capacity change from 0 to 256 [ 662.687999][T25601] loop2: detected capacity change from 0 to 2048 [ 662.717750][T25601] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a802c018, mo2=0002] [ 662.726106][T25601] System zones: 0-7 [ 662.730443][T25601] EXT4-fs (loop2): mounted filesystem without journal. Opts: debug,,errors=continue. Quota mode: none. [ 662.749555][T25601] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz-executor.2: bg 0: block 234: padding at end of block bitmap is not set [ 662.764419][T25601] EXT4-fs (loop2): Delayed block allocation failed for inode 19 at logical offset 0 with max blocks 33 with error 117 [ 662.777053][T25601] EXT4-fs (loop2): This should not happen!! Data will be lost [ 662.777053][T25601] [ 663.409379][T25601] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5820: Corrupt filesystem [ 663.427834][T25601] EXT4-fs error (device loop2): ext4_update_disksize_before_punch:3949: inode #19: comm syz-executor.2: mark_inode_dirty error [ 663.460758][T25175] EXT4-fs error (device loop2): ext4_map_blocks:602: inode #2: block 16: comm syz-executor.2: lblock 0 mapped to illegal pblock 16 (length 1) [ 663.485154][T25175] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5820: Corrupt filesystem [ 663.495064][T25175] EXT4-fs error (device loop2): ext4_dirty_inode:6024: inode #19: comm syz-executor.2: mark_inode_dirty error [ 663.507208][T25175] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5820: Corrupt filesystem [ 663.517068][T25175] EXT4-fs error (device loop2): ext4_dirty_inode:6024: inode #2: comm syz-executor.2: mark_inode_dirty error [ 664.181229][ T417] usb 5-1: new high-speed USB device number 75 using dummy_hcd [ 664.336217][ T792] device bridge_slave_1 left promiscuous mode [ 664.342192][ T792] bridge0: port 2(bridge_slave_1) entered disabled state [ 664.349899][ T792] device bridge_slave_0 left promiscuous mode [ 664.355970][ T792] bridge0: port 1(bridge_slave_0) entered disabled state [ 664.366137][ T792] device veth1_macvtap left promiscuous mode [ 664.376534][T25632] loop0: detected capacity change from 0 to 131072 [ 664.383035][ T792] device veth0_vlan left promiscuous mode [ 664.413393][T25638] loop1: detected capacity change from 0 to 512 [ 664.420537][T25632] F2FS-fs (loop0): Invalid log_blocksize (32), supports only 12 [ 664.429003][T25632] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 664.443769][T25632] F2FS-fs (loop0): Found nat_bits in checkpoint [ 664.464258][T25638] EXT4-fs (loop1): Ignoring removed bh option [ 664.468083][T25632] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 664.470341][T25638] EXT4-fs (loop1): Journaled quota options ignored when QUOTA feature is enabled [ 664.477992][T25632] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 664.493947][T25638] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock [ 664.504774][T25638] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock [ 664.514385][T25638] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 1 overlaps superblock [ 664.526452][T25638] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 664.536071][T25638] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c040e01c, mo2=0000] [ 664.544252][T25638] EXT4-fs (loop1): orphan cleanup on readonly fs [ 664.551179][T25638] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz-executor.1: bg 0: block 34: padding at end of block bitmap is not set [ 664.574687][T25638] EXT4-fs (loop1): 1 truncate cleaned up [ 664.587907][T25638] EXT4-fs (loop1): mounted filesystem without journal. Opts: bh,discard,usrjquota=./file0,noblock_validity,,errors=continue. Quota mode: writeback. [ 664.603830][ T417] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 664.614779][T25638] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 664.622622][T25638] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c040e01c, mo2=0000] [ 664.630537][ T417] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 664.643399][ T417] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 664.652278][ T417] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 664.664577][ T417] usb 5-1: config 0 descriptor?? [ 664.804182][T25639] bridge0: port 1(bridge_slave_0) entered blocking state [ 664.811149][T25639] bridge0: port 1(bridge_slave_0) entered disabled state [ 664.818764][T25639] device bridge_slave_0 entered promiscuous mode [ 664.825904][T25639] bridge0: port 2(bridge_slave_1) entered blocking state [ 664.832793][T25639] bridge0: port 2(bridge_slave_1) entered disabled state [ 664.840145][T25639] device bridge_slave_1 entered promiscuous mode [ 664.894142][T25639] bridge0: port 2(bridge_slave_1) entered blocking state [ 664.901027][T25639] bridge0: port 2(bridge_slave_1) entered forwarding state [ 664.908194][T25639] bridge0: port 1(bridge_slave_0) entered blocking state [ 664.915035][T25639] bridge0: port 1(bridge_slave_0) entered forwarding state [ 664.942929][ T6629] bridge0: port 1(bridge_slave_0) entered disabled state [ 664.950334][ T6629] bridge0: port 2(bridge_slave_1) entered disabled state [ 664.958104][ T6629] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 664.965485][ T6629] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 664.984476][ T6629] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 664.992706][ T6629] bridge0: port 1(bridge_slave_0) entered blocking state [ 664.999576][ T6629] bridge0: port 1(bridge_slave_0) entered forwarding state [ 665.007240][ T6629] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 665.031097][ T6629] bridge0: port 2(bridge_slave_1) entered blocking state [ 665.037974][ T6629] bridge0: port 2(bridge_slave_1) entered forwarding state [ 665.046430][ T6629] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 665.078253][ T6629] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 665.196692][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 665.219643][ T417] plantronics 0003:047F:FFFF.0074: unbalanced collection at end of report description [ 665.229722][ T417] plantronics 0003:047F:FFFF.0074: parse failed [ 665.235959][ T417] plantronics: probe of 0003:047F:FFFF.0074 failed with error -22 [ 665.237474][T25639] device veth0_vlan entered promiscuous mode [ 665.250469][ T6319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 665.259543][ T6319] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 665.266918][ T6319] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 665.279378][T25639] device veth1_macvtap entered promiscuous mode [ 665.286515][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 665.298648][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 665.311089][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 665.464366][ T42] usb 5-1: USB disconnect, device number 75 [ 665.679948][T25678] loop2: detected capacity change from 0 to 1024 [ 665.732344][T25678] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 666.314851][T25694] overlayfs: failed to resolve './file0': -2 [ 667.148608][T25720] loop4: detected capacity change from 0 to 1024 [ 667.186697][T25682] loop2: detected capacity change from 0 to 131072 [ 667.205434][T25720] EXT4-fs (loop4): Ignoring removed orlov option [ 667.211633][T25720] EXT4-fs (loop4): Ignoring removed nomblk_io_submit option [ 667.220105][T25720] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a80ec018, mo2=0002] [ 667.228172][T25720] System zones: 0-1, 3-36 [ 667.230414][T25682] F2FS-fs (loop2): Invalid log_blocksize (32), supports only 12 [ 667.233379][T25720] EXT4-fs (loop4): mounted filesystem without journal. Opts: debug,orlov,nomblk_io_submit,block_validity,debug_want_extra_isize=0x0000000000000006,init_itable=0x0000000000000000,usrquota,usrquota,,errors=continue. Quota mode: writeback. [ 667.239963][T25682] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 667.273444][T25682] F2FS-fs (loop2): Found nat_bits in checkpoint [ 667.303730][T25682] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 667.310622][T25682] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 668.516828][T25752] overlayfs: failed to resolve './file0': -2 [ 668.850147][ T30] kauditd_printk_skb: 3453 callbacks suppressed [ 668.850163][ T30] audit: type=1326 audit(2000000287.718:17435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25765 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbad2cc5f29 code=0x7ffc0000 [ 668.880480][ T30] audit: type=1326 audit(2000000287.755:17436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25765 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=132 compat=0 ip=0x7fbad2cc5f29 code=0x7ffc0000 [ 668.904523][ T30] audit: type=1326 audit(2000000287.755:17437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25765 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbad2cc5f29 code=0x7ffc0000 [ 668.946024][T25761] bridge0: port 1(bridge_slave_0) entered blocking state [ 668.952991][T25761] bridge0: port 1(bridge_slave_0) entered disabled state [ 668.960348][T25761] device bridge_slave_0 entered promiscuous mode [ 668.967542][T25761] bridge0: port 2(bridge_slave_1) entered blocking state [ 668.974604][T25761] bridge0: port 2(bridge_slave_1) entered disabled state [ 668.981943][T25761] device bridge_slave_1 entered promiscuous mode [ 669.082681][T25761] bridge0: port 2(bridge_slave_1) entered blocking state [ 669.089568][T25761] bridge0: port 2(bridge_slave_1) entered forwarding state [ 669.096697][T25761] bridge0: port 1(bridge_slave_0) entered blocking state [ 669.103565][T25761] bridge0: port 1(bridge_slave_0) entered forwarding state [ 669.215876][ T60] bridge0: port 1(bridge_slave_0) entered disabled state [ 669.225338][ T60] bridge0: port 2(bridge_slave_1) entered disabled state [ 669.233822][ T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 669.242221][ T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 669.275817][ T60] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 669.284380][ T60] bridge0: port 1(bridge_slave_0) entered blocking state [ 669.291255][ T60] bridge0: port 1(bridge_slave_0) entered forwarding state [ 669.299162][ T60] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 669.307886][ T60] bridge0: port 2(bridge_slave_1) entered blocking state [ 669.314766][ T60] bridge0: port 2(bridge_slave_1) entered forwarding state [ 669.337463][ T30] audit: type=1326 audit(2000000288.170:17438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25790 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbad2cc5f29 code=0x7ffc0000 [ 669.350960][T25761] device veth0_vlan entered promiscuous mode [ 669.368633][T25789] incfs: Can't find or create .index dir in ./file0 [ 669.377257][T25761] device veth1_macvtap entered promiscuous mode [ 669.383492][T25789] incfs: mount failed -5 [ 669.386018][ T30] audit: type=1326 audit(2000000288.170:17439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25790 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbad2cc5f29 code=0x7ffc0000 [ 669.412029][ T30] audit: type=1326 audit(2000000288.170:17440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25790 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=152 compat=0 ip=0x7fbad2cc5f29 code=0x7ffc0000 [ 669.436744][ T5975] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 669.439434][ T30] audit: type=1326 audit(2000000288.170:17441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25790 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbad2cc5f29 code=0x7ffc0000 [ 669.446866][ T5975] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 669.470661][ T30] audit: type=1326 audit(2000000288.170:17442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25790 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbad2cc5f29 code=0x7ffc0000 [ 669.476828][ T5975] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 669.507432][ T5975] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 669.514945][ T5975] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 669.523115][ T5975] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 669.530897][ T5975] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 669.544013][ T6319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 669.555739][ T30] audit: type=1326 audit(2000000288.373:17443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25796 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69b430af29 code=0x7ffc0000 [ 669.582248][ T30] audit: type=1326 audit(2000000288.373:17444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25796 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=132 compat=0 ip=0x7f69b430af29 code=0x7ffc0000 [ 669.590435][T25801] loop1: detected capacity change from 0 to 512 [ 669.617115][ T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 669.645630][T25801] EXT4-fs (loop1): Ignoring removed nobh option [ 669.654196][T25801] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 669.676426][T25801] EXT4-fs (loop1): 1 truncate cleaned up [ 669.682015][T25801] EXT4-fs (loop1): mounted filesystem without journal. Opts: i_version,nobh,debug_want_extra_isize=0x0000000000000068,lazytime,block_validity,quota,,errors=continue. Quota mode: writeback. [ 669.863034][T25834] incfs: mount failed -22 [ 669.941117][T25838] overlayfs: failed to resolve './file0': -2 [ 670.055793][T25839] loop1: detected capacity change from 0 to 512 [ 670.122456][T25839] EXT4-fs (loop1): Ignoring removed nobh option [ 670.128749][T25839] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 670.140913][T25839] EXT4-fs (loop1): 1 truncate cleaned up [ 670.146419][T25839] EXT4-fs (loop1): mounted filesystem without journal. Opts: i_version,nobh,debug_want_extra_isize=0x0000000000000068,lazytime,block_validity,quota,,errors=continue. Quota mode: writeback. [ 670.207052][T25847] tmpfs: Unknown parameter 'nolazytime' [ 670.540932][ T6319] usb 5-1: new high-speed USB device number 76 using dummy_hcd [ 670.800945][ T6319] usb 5-1: Using ep0 maxpacket: 16 [ 670.814922][T25874] tmpfs: Unknown parameter 'nolazytime' [ 670.932047][ T6319] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0 [ 670.944025][T25887] loop0: detected capacity change from 0 to 512 [ 671.009794][T25887] EXT4-fs (loop0): Ignoring removed nobh option [ 671.015942][T25887] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 671.053122][T25887] EXT4-fs (loop0): 1 truncate cleaned up [ 671.059615][T25887] EXT4-fs (loop0): mounted filesystem without journal. Opts: i_version,nobh,debug_want_extra_isize=0x0000000000000068,lazytime,block_validity,quota,,errors=continue. Quota mode: writeback. [ 671.180268][ T6319] usb 5-1: New USB device found, idVendor=0421, idProduct=044d, bcdDevice=b0.17 [ 671.193506][ T6319] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 671.210395][ T6319] usb 5-1: Product: syz [ 671.215552][ T6319] usb 5-1: Manufacturer: syz [ 671.219963][ T6319] usb 5-1: SerialNumber: syz [ 671.225562][ T6319] usb 5-1: config 0 descriptor?? [ 671.267245][ T6319] rndis_host 5-1:0.0: invalid descriptor buffer length [ 671.285205][ T6319] usb 5-1: bad CDC descriptors [ 671.290304][ T6319] cdc_acm 5-1:0.0: invalid descriptor buffer length [ 671.332603][T25894] loop0: detected capacity change from 0 to 40427 [ 671.376080][T25894] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 671.383742][T25894] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 671.392844][T25894] F2FS-fs (loop0): invalid crc value [ 671.399556][T25894] F2FS-fs (loop0): Found nat_bits in checkpoint [ 671.449257][T25894] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 671.457652][T25894] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 671.600312][ T7657] usb 5-1: USB disconnect, device number 76 [ 671.623480][T25894] attempt to access beyond end of device [ 671.623480][T25894] loop0: rw=2049, want=45104, limit=40427 [ 672.264097][ T329] usb 1-1: new high-speed USB device number 44 using dummy_hcd [ 672.721529][T25949] overlayfs: failed to resolve './file0': -2 [ 673.310884][T25960] netlink: 'syz-executor.1': attribute type 4 has an invalid length. [ 673.542529][ T329] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 673.627794][ T329] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 673.702498][ T329] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 673.717235][ T329] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 673.731877][ T329] usb 1-1: config 0 descriptor?? [ 673.744011][T25980] loop4: detected capacity change from 0 to 40427 [ 673.761217][T25996] netlink: 'syz-executor.1': attribute type 4 has an invalid length. [ 673.772829][T25980] F2FS-fs (loop4): Mismatch start address, segment0(512) cp_blkaddr(175702528) [ 673.782058][T25980] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 673.791290][T25980] F2FS-fs (loop4): invalid crc value [ 673.798360][T25980] F2FS-fs (loop4): Found nat_bits in checkpoint [ 673.825981][T25980] F2FS-fs (loop4): Cannot turn on quotas: -2 on 0 [ 673.832975][T25980] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 673.839945][T25980] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4 [ 673.864674][ T8] attempt to access beyond end of device [ 673.864674][ T8] loop4: rw=2049, want=40968, limit=40427 [ 674.246457][ T329] hid (null): bogus close delimiter [ 674.267887][ T30] kauditd_printk_skb: 13191 callbacks suppressed [ 674.267902][ T30] audit: type=1326 audit(2000000292.721:30636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26002 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbad2cc36a7 code=0x7ffc0000 [ 674.298638][ T30] audit: type=1326 audit(2000000292.730:30637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26002 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fbad2c89379 code=0x7ffc0000 [ 674.324970][ T30] audit: type=1326 audit(2000000292.730:30638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26002 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbad2cc36a7 code=0x7ffc0000 [ 674.357533][ T30] audit: type=1326 audit(2000000292.730:30639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26002 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fbad2c89379 code=0x7ffc0000 [ 674.381760][ T30] audit: type=1326 audit(2000000292.730:30640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26002 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbad2cc36a7 code=0x7ffc0000 [ 674.406081][ T30] audit: type=1326 audit(2000000292.730:30641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26002 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fbad2c89379 code=0x7ffc0000 [ 674.430175][ T30] audit: type=1326 audit(2000000292.730:30642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26002 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbad2cc36a7 code=0x7ffc0000 [ 674.454242][ T30] audit: type=1326 audit(2000000292.730:30643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26002 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fbad2c89379 code=0x7ffc0000 [ 674.478501][ T30] audit: type=1326 audit(2000000292.730:30644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26002 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbad2cc36a7 code=0x7ffc0000 [ 674.921858][ T329] usb 1-1: string descriptor 0 read error: -22 [ 674.946443][ T30] audit: type=1326 audit(2000000292.730:30645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26002 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fbad2c89379 code=0x7ffc0000 [ 674.980266][T26029] device lo entered promiscuous mode [ 674.986563][T26029] device tunl0 entered promiscuous mode [ 674.992893][T26029] device gre0 entered promiscuous mode [ 675.011675][T26029] device gretap0 entered promiscuous mode [ 675.023007][T26029] device erspan0 entered promiscuous mode [ 675.031967][T26029] device ip_vti0 entered promiscuous mode [ 675.042720][T26029] A link change request failed with some changes committed already. Interface ip_vti0 may have been left with an inconsistent configuration, please check. [ 675.061811][ T329] uclogic 0003:256C:006D.0075: interface is invalid, ignoring [ 675.070191][T26033] bridge: RTM_NEWNEIGH with invalid ether address [ 675.102718][T25837] usb 4-1: new high-speed USB device number 58 using dummy_hcd [ 675.364542][ T7657] usb 1-1: USB disconnect, device number 44 [ 675.449148][T25837] usb 4-1: Using ep0 maxpacket: 16 [ 675.481922][T26060] fscrypt (sda1, inode 1959): Unsupported encryption flags (0xcc) [ 675.488460][T26062] bridge0: port 3(vlan2) entered blocking state [ 675.495784][T26062] bridge0: port 3(vlan2) entered disabled state [ 675.505559][T26060] netlink: 'syz-executor.1': attribute type 4 has an invalid length. [ 675.573575][T26060] fscrypt: key with description 'fscrypt:e8dab99234bb312e' has invalid payload [ 675.589271][T26069] bridge: RTM_NEWNEIGH with invalid ether address [ 675.600654][T25837] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 675.626620][T25837] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 675.644201][T25837] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 675.668756][T25837] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 675.690601][T25837] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 675.707635][T25837] usb 4-1: config 0 descriptor?? [ 676.118881][T26097] loop2: detected capacity change from 0 to 1024 [ 676.198770][T26097] EXT4-fs (loop2): Ignoring removed nobh option [ 676.205454][T26097] EXT4-fs (loop2): Ignoring removed oldalloc option [ 676.212709][T26097] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 676.230137][T25837] microsoft 0003:045E:07DA.0076: unknown main item tag 0x0 [ 676.237291][T25837] microsoft 0003:045E:07DA.0076: unknown main item tag 0x0 [ 676.254556][T25837] microsoft 0003:045E:07DA.0076: unknown main item tag 0x0 [ 676.261735][T25837] microsoft 0003:045E:07DA.0076: unknown main item tag 0x0 [ 676.269390][T25837] microsoft 0003:045E:07DA.0076: unknown main item tag 0x0 [ 676.272346][T26097] EXT4-fs (loop2): mounted filesystem without journal. Opts: nobh,noauto_da_alloc,sysvgroups,dioread_nolock,noauto_da_alloc,lazytime,sysvgroups,oldalloc,jqfmt=vfsv1,,errors=continue. Quota mode: none. [ 676.276966][T25837] microsoft 0003:045E:07DA.0076: unknown main item tag 0x0 [ 676.304233][T26109] overlayfs: failed to resolve './file1': -2 [ 676.312807][T25837] microsoft 0003:045E:07DA.0076: unknown main item tag 0x0 [ 676.333066][T25837] microsoft 0003:045E:07DA.0076: unknown main item tag 0x0 [ 676.341424][T25837] microsoft 0003:045E:07DA.0076: unknown main item tag 0x0 [ 676.348722][T25837] microsoft 0003:045E:07DA.0076: unknown main item tag 0x0 [ 676.363588][T25837] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:045E:07DA.0076/input/input70 [ 676.388574][T25837] microsoft 0003:045E:07DA.0076: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0 [ 676.463693][ T316] usb 4-1: USB disconnect, device number 58 [ 676.907979][T26139] loop2: detected capacity change from 0 to 2048 [ 677.148527][T26139] EXT4-fs (loop2): mounted filesystem without journal. Opts: commit=0x0000000000000005,,errors=continue. Quota mode: none. [ 677.176662][T26139] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 677.224841][T26158] loop1: detected capacity change from 0 to 16 [ 677.243370][T26158] erofs: (device loop1): mounted with root inode @ nid 36. [ 677.279817][T26158] erofs: (device loop1): erofs_readdir: invalid de[0].nameoff 0 @ nid 89 [ 677.486097][T26179] loop2: detected capacity change from 0 to 2048 [ 677.528735][T26179] EXT4-fs (loop2): mounted filesystem without journal. Opts: commit=0x0000000000000005,,errors=continue. Quota mode: none. [ 677.559913][T26179] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 677.652196][T26183] bridge0: port 1(bridge_slave_0) entered blocking state [ 677.659761][T26183] bridge0: port 1(bridge_slave_0) entered disabled state [ 677.667105][T26183] device bridge_slave_0 entered promiscuous mode [ 677.676297][T26183] bridge0: port 2(bridge_slave_1) entered blocking state [ 677.683286][T26183] bridge0: port 2(bridge_slave_1) entered disabled state [ 677.690707][T26183] device bridge_slave_1 entered promiscuous mode [ 678.002949][T26183] bridge0: port 2(bridge_slave_1) entered blocking state [ 678.009840][T26183] bridge0: port 2(bridge_slave_1) entered forwarding state [ 678.016976][T26183] bridge0: port 1(bridge_slave_0) entered blocking state [ 678.023812][T26183] bridge0: port 1(bridge_slave_0) entered forwarding state [ 678.465138][ T7657] bridge0: port 1(bridge_slave_0) entered disabled state [ 678.472854][ T7657] bridge0: port 2(bridge_slave_1) entered disabled state [ 678.521602][ T7657] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 678.529498][ T7657] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 678.554709][ T569] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 678.566508][ T569] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 678.582587][ T569] bridge0: port 1(bridge_slave_0) entered blocking state [ 678.589498][ T569] bridge0: port 1(bridge_slave_0) entered forwarding state [ 678.611273][ T569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 678.626140][ T569] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 678.634694][ T569] bridge0: port 2(bridge_slave_1) entered blocking state [ 678.641559][ T569] bridge0: port 2(bridge_slave_1) entered forwarding state [ 678.657164][ T569] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 678.665616][ T569] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 678.675015][ T569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 678.683124][ T569] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 678.709452][ T329] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 678.721167][ T329] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 678.742064][T26183] device veth0_vlan entered promiscuous mode [ 678.750091][ T569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 678.762874][ T569] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 678.778075][ T569] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 678.786818][ T569] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 678.802695][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 678.805857][T26216] loop1: detected capacity change from 0 to 2048 [ 678.817025][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 678.830853][T26183] device veth1_macvtap entered promiscuous mode [ 678.842923][ T569] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 678.853126][ T569] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 678.865986][ T569] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 678.898392][T26224] binder: 26223:26224 ioctl 4018620d 0 returned -22 [ 678.907324][ T329] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 678.915489][ T329] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 678.923787][T26216] EXT4-fs (loop1): mounted filesystem without journal. Opts: commit=0x0000000000000005,,errors=continue. Quota mode: none. [ 678.944438][T26216] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 679.021733][T26240] loop2: detected capacity change from 0 to 1024 [ 679.029157][T26235] bridge0: port 3(vlan2) entered blocking state [ 679.035676][T26235] bridge0: port 3(vlan2) entered disabled state [ 679.049286][ T8] device bridge_slave_1 left promiscuous mode [ 679.055478][ T8] bridge0: port 2(bridge_slave_1) entered disabled state [ 679.063086][ T8] device bridge_slave_0 left promiscuous mode [ 679.069134][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 679.069982][T26240] EXT4-fs (loop2): Ignoring removed nobh option [ 679.082599][T26240] EXT4-fs (loop2): Ignoring removed oldalloc option [ 679.089201][T26240] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 679.089589][ T8] device veth1_macvtap left promiscuous mode [ 679.107347][ T8] device veth0_vlan left promiscuous mode [ 679.118699][T26240] EXT4-fs (loop2): mounted filesystem without journal. Opts: nobh,noauto_da_alloc,sysvgroups,dioread_nolock,noauto_da_alloc,lazytime,sysvgroups,oldalloc,jqfmt=vfsv1,,errors=continue. Quota mode: none. [ 679.128179][T26248] loop1: detected capacity change from 0 to 512 [ 679.193187][T26248] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 679.204807][T26248] ext4 filesystem being mounted at /root/syzkaller-testdir3910677929/syzkaller.vutUCW/250/file0 supports timestamps until 2038 (0x7fffffff) [ 679.223487][T26220] bridge0: port 1(bridge_slave_0) entered blocking state [ 679.230633][T26220] bridge0: port 1(bridge_slave_0) entered disabled state [ 679.240835][T26220] device bridge_slave_0 entered promiscuous mode [ 679.248036][T26256] binder: 26255:26256 ioctl 4018620d 0 returned -22 [ 679.264001][T26220] bridge0: port 2(bridge_slave_1) entered blocking state [ 679.274122][T26220] bridge0: port 2(bridge_slave_1) entered disabled state [ 679.281694][T26220] device bridge_slave_1 entered promiscuous mode [ 679.321435][T26265] loop1: detected capacity change from 0 to 512 [ 679.805047][T26265] EXT4-fs error (device loop1): ext4_orphan_get:1397: inode #15: comm syz-executor.1: casefold flag without casefold feature [ 679.822498][T26265] EXT4-fs error (device loop1): __ext4_iget:4892: inode #12: block 2: comm syz-executor.1: invalid block [ 679.834196][T26265] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz-executor.1: error while reading EA inode 12 err=-117 [ 679.847201][T26265] EXT4-fs (loop1): 1 orphan inode deleted [ 679.852851][T26265] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 679.924096][ T30] kauditd_printk_skb: 3407 callbacks suppressed [ 679.924112][ T30] audit: type=1400 audit(2000000297.945:34053): avc: denied { nlmsg_read } for pid=26263 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1 [ 679.989912][T26269] bridge0: port 1(bridge_slave_0) entered blocking state [ 679.996909][T26269] bridge0: port 1(bridge_slave_0) entered disabled state [ 680.004499][T26269] device bridge_slave_0 entered promiscuous mode [ 680.012371][T26269] bridge0: port 2(bridge_slave_1) entered blocking state [ 680.019443][T26269] bridge0: port 2(bridge_slave_1) entered disabled state [ 680.027166][T26269] device bridge_slave_1 entered promiscuous mode [ 680.080253][T26287] loop1: detected capacity change from 0 to 512 [ 680.108487][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 680.115921][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 680.131033][ T6319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 680.139264][ T6319] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 680.148176][ T6319] bridge0: port 1(bridge_slave_0) entered blocking state [ 680.155054][ T6319] bridge0: port 1(bridge_slave_0) entered forwarding state [ 680.162482][ T6319] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 680.170815][ T6319] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 680.179094][ T6319] bridge0: port 2(bridge_slave_1) entered blocking state [ 680.185976][ T6319] bridge0: port 2(bridge_slave_1) entered forwarding state [ 680.193718][ T6319] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 680.202815][T26287] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 680.214169][T26287] ext4 filesystem being mounted at /root/syzkaller-testdir3910677929/syzkaller.vutUCW/256/file0 supports timestamps until 2038 (0x7fffffff) [ 680.246664][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 680.255067][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 680.299042][T26296] binder: 26295:26296 ioctl 4018620d 0 returned -22 [ 680.314861][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 680.328349][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 680.341413][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 680.349340][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 680.373734][T26220] device veth0_vlan entered promiscuous mode [ 680.409605][T26300] loop1: detected capacity change from 0 to 1024 [ 680.417805][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 680.427438][T26220] device veth1_macvtap entered promiscuous mode [ 680.440876][T26300] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000088,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,usrquota,data_err=abort,data_err=abort,,errors=continue. Quota mode: writeback. [ 680.484534][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 680.492786][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 680.502107][ T316] bridge0: port 1(bridge_slave_0) entered blocking state [ 680.508990][ T316] bridge0: port 1(bridge_slave_0) entered forwarding state [ 680.517066][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 680.525627][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 680.535102][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 680.557813][ T7657] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 680.566497][ T7657] bridge0: port 2(bridge_slave_1) entered blocking state [ 680.573379][ T7657] bridge0: port 2(bridge_slave_1) entered forwarding state [ 680.580671][ T7657] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 680.622061][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 680.630693][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 680.639774][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 680.664503][T26269] device veth0_vlan entered promiscuous mode [ 680.671060][ T7657] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 680.686301][ T7657] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 680.695012][ T7657] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 680.711372][T26269] device veth1_macvtap entered promiscuous mode [ 680.727161][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 680.759467][ T7657] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 680.774682][ T7657] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 680.839768][ T30] audit: type=1326 audit(2000000298.794:34054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26322 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f99aba0ff29 code=0x0 [ 680.942390][ T792] Bluetooth: hci0: Frame reassembly failed (-84) [ 680.957568][ T30] audit: type=1326 audit(2000000298.905:34055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26322 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f99aba0ff29 code=0x7ffc0000 [ 680.982671][ T8] device bridge_slave_1 left promiscuous mode [ 680.989985][ T8] bridge0: port 2(bridge_slave_1) entered disabled state [ 680.999239][ T30] audit: type=1326 audit(2000000298.905:34056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26322 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f99aba0ff29 code=0x7ffc0000 [ 681.023455][ T8] device bridge_slave_0 left promiscuous mode [ 681.028860][ T30] audit: type=1326 audit(2000000298.905:34057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26322 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f99aba0ff29 code=0x7ffc0000 [ 681.029919][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 681.053659][ T30] audit: type=1326 audit(2000000298.905:34058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26322 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f99aba0ff29 code=0x7ffc0000 [ 681.084962][ T30] audit: type=1326 audit(2000000298.905:34059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26322 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f99aba0ff29 code=0x7ffc0000 [ 681.109315][ T8] device bridge_slave_1 left promiscuous mode [ 681.109544][ T30] audit: type=1326 audit(2000000298.905:34060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26322 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f99aba0ff29 code=0x7ffc0000 [ 681.139353][ T30] audit: type=1326 audit(2000000298.923:34061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26322 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f99aba0ff29 code=0x7ffc0000 [ 681.139597][ T8] bridge0: port 2(bridge_slave_1) entered disabled state [ 681.163463][ T30] audit: type=1326 audit(2000000298.932:34062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26322 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f99aba0ff29 code=0x7ffc0000 [ 681.194497][ T8] device bridge_slave_0 left promiscuous mode [ 681.201040][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 681.210165][ T8] device veth1_macvtap left promiscuous mode [ 681.216385][ T8] device veth0_vlan left promiscuous mode [ 681.222495][ T8] device veth1_macvtap left promiscuous mode [ 681.233494][ T8] device veth0_vlan left promiscuous mode [ 681.249679][T26336] loop0: detected capacity change from 0 to 16 [ 681.289760][T26336] erofs: (device loop0): mounted with root inode @ nid 36. [ 681.305162][T26336] erofs: (device loop0): erofs_readdir: invalid de[0].nameoff 0 @ nid 89 [ 681.427819][T26338] tun0: tun_chr_ioctl cmd 1074812118 [ 682.116462][T26365] tun0: tun_chr_ioctl cmd 1074812118 [ 682.123882][T26362] loop3: detected capacity change from 0 to 512 [ 682.171063][T26362] EXT4-fs error (device loop3): ext4_orphan_get:1397: inode #15: comm syz-executor.3: casefold flag without casefold feature [ 682.184990][T26362] EXT4-fs error (device loop3): __ext4_iget:4892: inode #12: block 2: comm syz-executor.3: invalid block [ 682.204529][T26362] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz-executor.3: error while reading EA inode 12 err=-117 [ 682.225713][T26362] EXT4-fs (loop3): 1 orphan inode deleted [ 682.234603][T26362] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 682.338953][T26389] loop4: detected capacity change from 0 to 512 [ 682.362938][T26389] EXT4-fs (loop4): mounted filesystem without journal. Opts: usrquota,nobarrier,noauto_da_alloc,,errors=continue. Quota mode: writeback. [ 682.378291][T26389] ext4 filesystem being mounted at /root/syzkaller-testdir284967228/syzkaller.a233rp/11/bus supports timestamps until 2038 (0x7fffffff) [ 682.401674][T26395] syz-executor.3[26395] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 682.401758][T26395] syz-executor.3[26395] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 682.429349][T26397] tun0: tun_chr_ioctl cmd 1074812118 [ 682.571373][T26410] input: syz0 as /devices/virtual/input/input71 [ 682.633177][T26416] loop3: detected capacity change from 0 to 512 [ 682.687302][T26416] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 682.698255][T26416] ext4 filesystem being mounted at /root/syzkaller-testdir3464421881/syzkaller.t19kcX/9/file0 supports timestamps until 2038 (0x7fffffff) [ 682.795800][T26428] loop3: detected capacity change from 0 to 512 [ 682.828410][T26428] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2759: inode #12: comm syz-executor.3: corrupted xattr block 142 [ 682.841633][T26428] EXT4-fs (loop3): Remounting filesystem read-only [ 682.853587][T26428] EXT4-fs (loop3): 1 truncate cleaned up [ 682.859062][T26428] EXT4-fs (loop3): mounted filesystem without journal. Opts: abort,jqfmt=vfsv0,debug_want_extra_isize=0x000000000000005c,noauto_da_alloc,errors=remount-ro,usrjquota=,noload,. Quota mode: none. [ 682.879118][T26428] EXT4-fs error (device loop3): ext4_xattr_block_get:546: inode #12: comm syz-executor.3: corrupted xattr block 142 [ 682.891595][T26428] EXT4-fs (loop3): Remounting filesystem read-only [ 682.898054][T26428] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=12 [ 682.906978][T26428] EXT4-fs error (device loop3): ext4_xattr_block_get:546: inode #12: comm syz-executor.3: corrupted xattr block 142 [ 682.919339][T26428] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=12 [ 682.928739][T26428] EXT4-fs error (device loop3): ext4_xattr_block_get:546: inode #12: comm syz-executor.3: corrupted xattr block 142 [ 682.941162][T26428] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=12 [ 683.023090][T26435] loop3: detected capacity change from 0 to 256 [ 683.047064][T26435] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 683.152018][ T6] Bluetooth: hci0: command 0x1003 tx timeout [ 683.157862][ T9306] Bluetooth: hci0: sending frame failed (-49) [ 683.183494][T26443] input: syz0 as /devices/virtual/input/input72 [ 683.204089][T26445] device pim6reg1 entered promiscuous mode [ 683.291821][T26455] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.3'. [ 683.498135][T26474] device pim6reg1 entered promiscuous mode [ 683.745023][T26483] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.0'. [ 683.767450][T26487] loop0: detected capacity change from 0 to 256 [ 683.826929][T26487] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 683.907555][T26496] netlink: 92 bytes leftover after parsing attributes in process `syz-executor.0'. [ 684.272657][T26521] loop2: detected capacity change from 0 to 256 [ 684.298321][T26521] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 684.329442][T26525] netlink: 92 bytes leftover after parsing attributes in process `syz-executor.3'. [ 684.393307][T26540] input: syz0 as /devices/virtual/input/input73 [ 684.435080][T26545] loop2: detected capacity change from 0 to 16 [ 684.464644][T26545] erofs: (device loop2): mounted with root inode @ nid 36. [ 684.473083][T26545] erofs: (device loop2): find_target_block_classic: corrupted dir block 0 @ nid 36 [ 684.615709][T26556] loop2: detected capacity change from 0 to 256 [ 684.644096][T26556] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 684.767024][T26561] netlink: 92 bytes leftover after parsing attributes in process `syz-executor.2'. [ 684.865113][T26569] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 684.904620][T26571] input: syz1 as /devices/virtual/input/input74 [ 685.264819][T26574] loop0: detected capacity change from 0 to 8192 [ 685.324852][T26576] binder: binder_mmap: 26575 20446000-20448000 bad vm_flags failed -1 [ 685.365863][T26584] loop3: detected capacity change from 0 to 16 [ 685.373627][T26582] device pim6reg1 entered promiscuous mode [ 685.387919][T26586] loop4: detected capacity change from 0 to 512 [ 685.396037][T26584] erofs: (device loop3): mounted with root inode @ nid 36. [ 685.403907][T26584] erofs: (device loop3): find_target_block_classic: corrupted dir block 0 @ nid 36 [ 685.405560][ T6] Bluetooth: hci0: command 0x1001 tx timeout [ 685.419188][ T9306] Bluetooth: hci0: sending frame failed (-49) [ 685.428934][T26586] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2759: inode #12: comm syz-executor.4: corrupted xattr block 142 [ 685.442032][T26586] EXT4-fs (loop4): Remounting filesystem read-only [ 685.448430][T26586] EXT4-fs (loop4): 1 truncate cleaned up [ 685.453923][T26586] EXT4-fs (loop4): mounted filesystem without journal. Opts: abort,jqfmt=vfsv0,debug_want_extra_isize=0x000000000000005c,noauto_da_alloc,errors=remount-ro,usrjquota=,noload,. Quota mode: none. [ 685.458311][T26594] loop0: detected capacity change from 0 to 512 [ 685.479247][T26586] EXT4-fs error (device loop4): ext4_xattr_block_get:546: inode #12: comm syz-executor.4: corrupted xattr block 142 [ 685.491825][T26586] EXT4-fs (loop4): Remounting filesystem read-only [ 685.498425][T26586] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=12 [ 685.507296][T26586] EXT4-fs error (device loop4): ext4_xattr_block_get:546: inode #12: comm syz-executor.4: corrupted xattr block 142 [ 685.519647][T26586] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=12 [ 685.529578][T26586] EXT4-fs error (device loop4): ext4_xattr_block_get:546: inode #12: comm syz-executor.4: corrupted xattr block 142 [ 685.536838][T26594] EXT4-fs error (device loop0): ext4_orphan_get:1397: inode #15: comm syz-executor.0: casefold flag without casefold feature [ 685.541946][T26586] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=12 [ 685.554679][T26594] EXT4-fs error (device loop0): __ext4_iget:4892: inode #12: block 2: comm syz-executor.0: invalid block [ 685.576171][T26594] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz-executor.0: error while reading EA inode 12 err=-117 [ 685.589830][T26594] EXT4-fs (loop0): 1 orphan inode deleted [ 685.595404][T26594] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 685.624580][T26604] binder: binder_mmap: 26603 20446000-20448000 bad vm_flags failed -1 [ 685.639822][T26606] loop4: detected capacity change from 0 to 1024 [ 685.674435][T26602] loop2: detected capacity change from 0 to 8192 [ 685.733265][T26606] EXT4-fs (loop4): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,max_dir_size_kb=0x00000000000007b1,stripe=0x0000000000000020,bsdgroups,max_batch_time=0x00000000000003fe,user_xattr,quota,,errors=continue. Quota mode: writeback. [ 685.738101][T26615] loop2: detected capacity change from 0 to 256 [ 685.768681][T26606] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 685.775654][T26606] overlayfs: failed to set xattr on upper [ 685.785046][T26617] loop0: detected capacity change from 0 to 512 [ 685.792193][T26615] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 685.836871][T26621] loop4: detected capacity change from 0 to 16 [ 685.845583][T26617] EXT4-fs (loop0): 1 orphan inode deleted [ 685.848295][T26623] device pim6reg1 entered promiscuous mode [ 685.851265][T26617] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 685.867792][T26617] ext4 filesystem being mounted at /root/syzkaller-testdir201727418/syzkaller.wSvMlm/112/file1 supports timestamps until 2038 (0x7fffffff) [ 685.883257][T26621] erofs: (device loop4): mounted with root inode @ nid 36. [ 685.891007][T26621] erofs: (device loop4): find_target_block_classic: corrupted dir block 0 @ nid 36 [ 685.893668][T26617] EXT4-fs error (device loop0): __ext4_get_inode_loc:4340: comm syz-executor.0: Invalid inode table block 0 in block_group 0 [ 685.918072][T25126] EXT4-fs error (device loop0): ext4_map_blocks:602: inode #2: block 3: comm syz-executor.0: lblock 0 mapped to illegal pblock 3 (length 1) [ 685.932657][T25126] EXT4-fs error (device loop0): __ext4_get_inode_loc:4340: comm syz-executor.0: Invalid inode table block 0 in block_group 0 [ 685.946062][T25126] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5820: Corrupt filesystem [ 685.955601][T25126] EXT4-fs error (device loop0): ext4_dirty_inode:6024: inode #2: comm syz-executor.0: mark_inode_dirty error [ 685.969476][ T42] usb 4-1: new high-speed USB device number 59 using dummy_hcd [ 685.977620][T26629] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 685.978709][ T792] EXT4-fs error (device loop0): __ext4_get_inode_loc:4340: comm kworker/u4:5: Invalid inode table block 0 in block_group 0 [ 685.999701][ T792] EXT4-fs error (device loop0): __ext4_get_inode_loc:4340: comm kworker/u4:5: Invalid inode table block 0 in block_group 0 [ 686.021082][T26633] binder: binder_mmap: 26632 20446000-20448000 bad vm_flags failed -1 [ 686.477205][ T30] kauditd_printk_skb: 7966 callbacks suppressed [ 686.477219][ T30] audit: type=1400 audit(2000000303.990:42029): avc: denied { mounton } for pid=26645 comm="syz-executor.2" path="/root/syzkaller-testdir2912897056/syzkaller.U2jcGP/84/file0" dev="sda1" ino=1953 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=blk_file permissive=1 [ 686.561439][T26647] bridge0: port 1(bridge_slave_0) entered blocking state [ 686.568358][T26647] bridge0: port 1(bridge_slave_0) entered disabled state [ 686.575479][T26647] device bridge_slave_0 entered promiscuous mode [ 686.584808][T26647] bridge0: port 2(bridge_slave_1) entered blocking state [ 686.591910][T26647] bridge0: port 2(bridge_slave_1) entered disabled state [ 686.599207][T26647] device bridge_slave_1 entered promiscuous mode [ 686.651466][ T42] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 686.662335][ T42] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 686.672188][ T42] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 686.672435][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 686.681161][ T42] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 686.682317][ T42] usb 4-1: config 0 descriptor?? [ 686.688680][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 686.719866][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 686.728038][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 686.736195][ T316] bridge0: port 1(bridge_slave_0) entered blocking state [ 686.743044][ T316] bridge0: port 1(bridge_slave_0) entered forwarding state [ 686.750765][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 686.758945][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 686.766961][ T316] bridge0: port 2(bridge_slave_1) entered blocking state [ 686.773798][ T316] bridge0: port 2(bridge_slave_1) entered forwarding state [ 686.780986][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 686.788812][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 686.797126][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 686.814409][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 686.822666][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 686.830467][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 686.838108][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 686.846175][T26647] device veth0_vlan entered promiscuous mode [ 686.859534][ T329] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 686.868863][T26647] device veth1_macvtap entered promiscuous mode [ 686.878809][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 686.892245][ T3536] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 686.999110][ T792] device bridge_slave_1 left promiscuous mode [ 687.005123][ T792] bridge0: port 2(bridge_slave_1) entered disabled state [ 687.013102][ T792] device bridge_slave_0 left promiscuous mode [ 687.019147][ T792] bridge0: port 1(bridge_slave_0) entered disabled state [ 687.027426][ T792] device veth1_macvtap left promiscuous mode [ 687.033392][ T792] device veth0_vlan left promiscuous mode [ 687.108726][T26674] SELinux: security_context_str_to_sid(sysadm_u) failed for (dev ?, type ?) errno=-22 [ 687.118635][T26674] SELinux: security_context_str_to_sid(sysadm_u) failed for (dev sda1, type ext4) errno=-22 [ 687.193988][T26681] pim6reg0: tun_chr_ioctl cmd 3222336776 [ 687.226066][ T42] hid (null): bogus close delimiter [ 687.272490][T26682] loop0: detected capacity change from 0 to 40427 [ 687.314576][T26682] F2FS-fs (loop0): invalid crc value [ 687.320772][T26682] F2FS-fs (loop0): Found nat_bits in checkpoint [ 687.358247][T26682] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 687.377817][T26682] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=10, npages=1 [ 687.390439][T26647] attempt to access beyond end of device [ 687.390439][T26647] loop0: rw=2049, want=45104, limit=40427 [ 687.453694][ T42] usb 4-1: language id specifier not provided by device, defaulting to English [ 687.529704][T26705] SELinux: Context 1000000 is not valid (left unmapped). [ 687.550418][T26709] pim6reg0: tun_chr_ioctl cmd 3222336776 [ 687.567346][T26711] SELinux: security_context_str_to_sid(sysadm_u) failed for (dev ?, type ?) errno=-22 [ 687.576995][T26711] SELinux: security_context_str_to_sid(sysadm_u) failed for (dev sda1, type ext4) errno=-22 [ 687.660065][ T3536] Bluetooth: hci0: command 0x1009 tx timeout [ 687.734461][T26720] loop4: detected capacity change from 0 to 40427 [ 687.769396][T26720] F2FS-fs (loop4): invalid crc value [ 687.775777][T26720] F2FS-fs (loop4): Found nat_bits in checkpoint [ 687.810153][T26727] loop0: detected capacity change from 0 to 40427 [ 687.810773][T26720] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 687.834836][T26720] F2FS-fs (loop4): Unexpected flush for atomic writes: ino=10, npages=1 [ 687.846455][T26220] attempt to access beyond end of device [ 687.846455][T26220] loop4: rw=2049, want=45104, limit=40427 [ 687.857355][T26727] F2FS-fs (loop0): Found nat_bits in checkpoint [ 687.892362][T26727] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 687.907266][T26730] attempt to access beyond end of device [ 687.907266][T26730] loop0: rw=2049, want=45112, limit=40427 [ 688.027027][T26739] syz-executor.0[26739] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 688.027121][T26739] syz-executor.0[26739] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 688.081098][T26737] loop4: detected capacity change from 0 to 40427 [ 688.114213][T26747] pim6reg0: tun_chr_ioctl cmd 3222336776 [ 688.137676][T26737] F2FS-fs (loop4): invalid crc value [ 688.144526][T26737] F2FS-fs (loop4): Found nat_bits in checkpoint [ 688.177927][T26737] F2FS-fs (loop4): Cannot turn on quotas: -2 on 1 [ 688.184387][ T42] uclogic 0003:256C:006D.0077: failed retrieving string descriptor #100: -71 [ 688.193703][ T42] uclogic 0003:256C:006D.0077: failed retrieving pen parameters: -71 [ 688.201826][ T42] uclogic 0003:256C:006D.0077: failed probing pen v1 parameters: -71 [ 688.209775][ T42] uclogic 0003:256C:006D.0077: failed probing parameters: -71 [ 688.217396][ T42] uclogic: probe of 0003:256C:006D.0077 failed with error -71 [ 688.224854][T26737] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 688.233465][ T42] usb 4-1: USB disconnect, device number 59 [ 688.358419][ T30] audit: type=1400 audit(2000000305.735:42030): avc: denied { create } for pid=26764 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 688.441888][T26787] loop4: detected capacity change from 0 to 256 [ 688.956224][T26797] input: syz1 as /devices/virtual/input/input75 [ 689.560694][T26799] loop3: detected capacity change from 0 to 131072 [ 689.599228][T26799] F2FS-fs (loop3): QUOTA feature is enabled, so ignore qf_name [ 689.609632][T26799] F2FS-fs (loop3): invalid crc value [ 689.616912][T26799] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 275811881701387) [ 689.648757][T26799] F2FS-fs (loop3): Mounted with checkpoint version = 753bd00b [ 690.193157][T26821] loop4: detected capacity change from 0 to 40427 [ 690.202766][T26825] bridge0: port 1(bridge_slave_0) entered blocking state [ 690.209651][T26825] bridge0: port 1(bridge_slave_0) entered disabled state [ 690.224545][T26831] loop3: detected capacity change from 0 to 2048 [ 690.232124][T26825] device bridge_slave_0 entered promiscuous mode [ 690.241631][T26825] bridge0: port 2(bridge_slave_1) entered blocking state [ 690.241701][T26821] F2FS-fs (loop4): invalid crc value [ 690.248605][T26825] bridge0: port 2(bridge_slave_1) entered disabled state [ 690.261503][T26825] device bridge_slave_1 entered promiscuous mode [ 690.273628][T26831] EXT4-fs (loop3): Invalid want_extra_isize 128 [ 690.276060][T26821] F2FS-fs (loop4): Found nat_bits in checkpoint [ 690.321319][T26821] F2FS-fs (loop4): Cannot turn on quotas: -2 on 1 [ 690.339596][T26821] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 690.345978][T26825] bridge0: port 2(bridge_slave_1) entered blocking state [ 690.353767][T26825] bridge0: port 2(bridge_slave_1) entered forwarding state [ 690.360894][T26825] bridge0: port 1(bridge_slave_0) entered blocking state [ 690.367756][T26825] bridge0: port 1(bridge_slave_0) entered forwarding state [ 690.398168][ T3536] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 690.410189][ T3536] bridge0: port 1(bridge_slave_0) entered disabled state [ 690.420821][ T3536] bridge0: port 2(bridge_slave_1) entered disabled state [ 690.452741][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 690.461507][ T316] bridge0: port 1(bridge_slave_0) entered blocking state [ 690.468376][ T316] bridge0: port 1(bridge_slave_0) entered forwarding state [ 690.475665][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 690.483992][ T316] bridge0: port 2(bridge_slave_1) entered blocking state [ 690.490855][ T316] bridge0: port 2(bridge_slave_1) entered forwarding state [ 690.514254][T26839] loop3: detected capacity change from 0 to 512 [ 690.530502][ T329] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 690.550219][ T329] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 690.555562][T26841] loop4: detected capacity change from 0 to 512 [ 690.560636][ T329] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 690.578168][T26825] device veth0_vlan entered promiscuous mode [ 690.585533][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 690.589522][T26839] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 690.593768][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 690.608276][ T42] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 690.620636][T26839] EXT4-fs (loop3): 1 truncate cleaned up [ 690.622461][T26825] device veth1_macvtap entered promiscuous mode [ 690.626095][T26839] EXT4-fs (loop3): mounted filesystem without journal. Opts: journal_dev=0x0000000000000009,noblock_validity,usrquota,journal_dev=0x0000000000000002,debug_want_extra_isize=0x0000000000000008,jqfmt=vfsold,usrjquota=min_batch_time=0x0000000000000a9f,nodiscard,,errors=continue. Quota mode: writeback. [ 690.638169][ T3536] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 690.676662][ T8] device bridge_slave_1 left promiscuous mode [ 690.684014][ T8] bridge0: port 2(bridge_slave_1) entered disabled state [ 690.696785][T26841] EXT4-fs (loop4): 1 orphan inode deleted [ 690.700011][ T8] device bridge_slave_0 left promiscuous mode [ 690.708438][T26841] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 690.708852][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 690.728241][ T8] device veth1_macvtap left promiscuous mode [ 690.734079][ T8] device veth0_vlan left promiscuous mode [ 690.742055][T26841] ext4 filesystem being mounted at /root/syzkaller-testdir284967228/syzkaller.a233rp/71/file1 supports timestamps until 2038 (0x7fffffff) [ 690.778164][T26841] EXT4-fs error (device loop4): __ext4_get_inode_loc:4340: comm syz-executor.4: Invalid inode table block 0 in block_group 0 [ 690.797133][T26220] EXT4-fs error (device loop4): ext4_map_blocks:602: inode #2: block 3: comm syz-executor.4: lblock 0 mapped to illegal pblock 3 (length 1) [ 690.812170][T26220] EXT4-fs error (device loop4): __ext4_get_inode_loc:4340: comm syz-executor.4: Invalid inode table block 0 in block_group 0 [ 690.825602][T26220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5820: Corrupt filesystem [ 690.835026][T26220] EXT4-fs error (device loop4): ext4_dirty_inode:6024: inode #2: comm syz-executor.4: mark_inode_dirty error [ 690.853773][ T792] EXT4-fs error (device loop4): __ext4_get_inode_loc:4340: comm kworker/u4:5: Invalid inode table block 0 in block_group 0 [ 690.866890][T26861] loop3: detected capacity change from 0 to 512 [ 690.867455][ T792] EXT4-fs error (device loop4): __ext4_get_inode_loc:4340: comm kworker/u4:5: Invalid inode table block 0 in block_group 0 [ 690.911288][T26861] EXT4-fs (loop3): orphan cleanup on readonly fs [ 690.918500][T26861] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz-executor.3: bg 0: block 248: padding at end of block bitmap is not set [ 690.925529][T26864] loop0: detected capacity change from 0 to 2048 [ 690.934257][T26861] Quota error (device loop3): write_blk: dquota write failed [ 690.946375][T26861] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 690.956561][T26861] EXT4-fs (loop3): 1 truncate cleaned up [ 690.962397][T26861] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 690.976791][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 690.985763][T26864] EXT4-fs (loop0): Invalid want_extra_isize 128 [ 690.992506][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 691.067028][T26870] device veth0_vlan left promiscuous mode [ 691.072980][T26870] device veth0_vlan entered promiscuous mode [ 691.121742][T26883] loop2: detected capacity change from 0 to 512 [ 691.136432][T26868] bridge0: port 1(bridge_slave_0) entered blocking state [ 691.143668][T26868] bridge0: port 1(bridge_slave_0) entered disabled state [ 691.152118][T26868] device bridge_slave_0 entered promiscuous mode [ 691.167925][T26883] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 691.172827][T26868] bridge0: port 2(bridge_slave_1) entered blocking state [ 691.186832][T26868] bridge0: port 2(bridge_slave_1) entered disabled state [ 691.190273][T26886] loop0: detected capacity change from 0 to 1024 [ 691.194505][T26868] device bridge_slave_1 entered promiscuous mode [ 691.200009][T26883] EXT4-fs (loop2): 1 truncate cleaned up [ 691.218305][ T30] audit: type=1326 audit(2000000308.375:42031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26884 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f99aba0ff29 code=0x7ffc0000 [ 691.220212][T26883] EXT4-fs (loop2): mounted filesystem without journal. Opts: journal_dev=0x0000000000000009,noblock_validity,usrquota,journal_dev=0x0000000000000002,debug_want_extra_isize=0x0000000000000008,jqfmt=vfsold,usrjquota=min_batch_time=0x0000000000000a9f,nodiscard,,errors=continue. Quota mode: writeback. [ 691.270225][ T30] audit: type=1326 audit(2000000308.402:42032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26884 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f99aba0ff29 code=0x7ffc0000 [ 691.298095][ T30] audit: type=1326 audit(2000000308.402:42033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26884 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=155 compat=0 ip=0x7f99aba0ff29 code=0x7ffc0000 [ 691.322785][ T30] audit: type=1326 audit(2000000308.402:42034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26884 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f99aba0ff29 code=0x7ffc0000 [ 691.348557][ T30] audit: type=1326 audit(2000000308.402:42035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26884 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f99aba0ff29 code=0x7ffc0000 [ 691.372886][T26886] EXT4-fs (loop0): barriers disabled [ 691.382545][T26886] JBD2: no valid journal superblock found [ 691.388356][T26886] EXT4-fs (loop0): error loading journal [ 691.424563][T26868] bridge0: port 2(bridge_slave_1) entered blocking state [ 691.431451][T26868] bridge0: port 2(bridge_slave_1) entered forwarding state [ 691.438533][T26868] bridge0: port 1(bridge_slave_0) entered blocking state [ 691.445330][T26868] bridge0: port 1(bridge_slave_0) entered forwarding state [ 691.487220][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 691.495389][ T6] bridge0: port 1(bridge_slave_0) entered disabled state [ 691.502859][ T6] bridge0: port 2(bridge_slave_1) entered disabled state [ 691.522502][T26901] IPv6: NLM_F_REPLACE set, but no existing node found! [ 691.535756][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 691.544233][ T316] bridge0: port 1(bridge_slave_0) entered blocking state [ 691.551110][ T316] bridge0: port 1(bridge_slave_0) entered forwarding state [ 691.563960][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 691.574667][ T316] bridge0: port 2(bridge_slave_1) entered blocking state [ 691.581553][ T316] bridge0: port 2(bridge_slave_1) entered forwarding state [ 691.583900][T26907] loop2: detected capacity change from 0 to 512 [ 691.589042][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 691.606287][ T329] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 691.622898][T26868] device veth0_vlan entered promiscuous mode [ 691.629465][ T329] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 691.638541][T26907] EXT4-fs (loop2): Quota format mount options ignored when QUOTA feature is enabled [ 691.645715][T26908] loop0: detected capacity change from 0 to 2048 [ 691.654645][ T329] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 691.663229][T26908] EXT4-fs (loop0): Invalid want_extra_isize 128 [ 691.663296][ T329] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 691.671425][T26907] EXT4-fs error (device loop2): ext4_do_update_inode:5191: inode #16: comm syz-executor.2: corrupted inode contents [ 691.676740][ T329] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 691.688600][T26907] EXT4-fs error (device loop2): ext4_dirty_inode:6024: inode #16: comm syz-executor.2: mark_inode_dirty error [ 691.707171][T26907] EXT4-fs error (device loop2): ext4_do_update_inode:5191: inode #16: comm syz-executor.2: corrupted inode contents [ 691.714312][T26868] device veth1_macvtap entered promiscuous mode [ 691.719519][T26907] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #16: comm syz-executor.2: mark_inode_dirty error [ 691.739169][T26907] EXT4-fs error (device loop2): ext4_do_update_inode:5191: inode #16: comm syz-executor.2: corrupted inode contents [ 691.739637][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 691.751454][T26907] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #16: comm syz-executor.2: mark_inode_dirty error [ 691.771138][T26907] EXT4-fs error (device loop2): ext4_do_update_inode:5191: inode #16: comm syz-executor.2: corrupted inode contents [ 691.783291][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 691.783409][T26907] EXT4-fs error (device loop2): ext4_truncate:4292: inode #16: comm syz-executor.2: mark_inode_dirty error [ 691.798151][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 691.823546][T26907] EXT4-fs error (device loop2): ext4_evict_inode:294: comm syz-executor.2: couldn't truncate inode 16 (err -117) [ 691.849145][T26907] EXT4-fs (loop2): 1 orphan inode deleted [ 691.857636][T26907] EXT4-fs (loop2): mounted filesystem without journal. Opts: jqfmt=vfsv1,nolazytime,abort,init_itable,nombcache,discard,dioread_lock,sysvgroups,nolazytime,,errors=continue. Quota mode: writeback. [ 691.884025][T26907] ext4 filesystem being mounted at /root/syzkaller-testdir352300195/syzkaller.jJSkAj/9/file1 supports timestamps until 2038 (0x7fffffff) [ 691.939062][T26928] IPv6: NLM_F_REPLACE set, but no existing node found! [ 691.958751][ T30] audit: type=1400 audit(2000000309.049:42036): avc: denied { relabelfrom } for pid=26924 comm="syz-executor.1" name="AF_VSOCK" dev="sockfs" ino=145021 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 691.958783][T26935] SELinux: Context system_u:object_r:sshd_exec_t:s0 is not valid (left unmapped). [ 692.002459][ T30] audit: type=1400 audit(2000000309.095:42037): avc: denied { relabelto } for pid=26924 comm="syz-executor.1" name="AF_VSOCK" dev="sockfs" ino=145021 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=vsock_socket permissive=1 trawcon="system_u:object_r:sshd_exec_t:s0" [ 692.110259][T26949] loop4: detected capacity change from 0 to 128 [ 692.121067][T26951] loop0: detected capacity change from 0 to 512 [ 692.146980][T26951] EXT4-fs (loop0): Quota format mount options ignored when QUOTA feature is enabled [ 692.172317][T26951] EXT4-fs error (device loop0): ext4_do_update_inode:5191: inode #16: comm syz-executor.0: corrupted inode contents [ 692.184864][T26951] EXT4-fs error (device loop0): ext4_dirty_inode:6024: inode #16: comm syz-executor.0: mark_inode_dirty error [ 692.196645][T26951] EXT4-fs error (device loop0): ext4_do_update_inode:5191: inode #16: comm syz-executor.0: corrupted inode contents [ 692.209595][T26951] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #16: comm syz-executor.0: mark_inode_dirty error [ 692.221580][T26951] EXT4-fs error (device loop0): ext4_do_update_inode:5191: inode #16: comm syz-executor.0: corrupted inode contents [ 692.241954][T26951] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #16: comm syz-executor.0: mark_inode_dirty error [ 692.262600][T26951] EXT4-fs error (device loop0): ext4_do_update_inode:5191: inode #16: comm syz-executor.0: corrupted inode contents [ 692.270791][T26949] device syzkaller0 entered promiscuous mode [ 692.276310][T26951] EXT4-fs error (device loop0): ext4_truncate:4292: inode #16: comm syz-executor.0: mark_inode_dirty error [ 692.291925][T26951] EXT4-fs error (device loop0): ext4_evict_inode:294: comm syz-executor.0: couldn't truncate inode 16 (err -117) [ 692.303976][T26951] EXT4-fs (loop0): 1 orphan inode deleted [ 692.304357][T26954] bridge0: port 1(bridge_slave_0) entered blocking state [ 692.316573][T26954] bridge0: port 1(bridge_slave_0) entered disabled state [ 692.316766][T26951] EXT4-fs (loop0): mounted filesystem without journal. Opts: jqfmt=vfsv1,nolazytime,abort,init_itable,nombcache,discard,dioread_lock,sysvgroups,nolazytime,,errors=continue. Quota mode: writeback. [ 692.323870][T26954] device bridge_slave_0 entered promiscuous mode [ 692.348836][T26951] ext4 filesystem being mounted at /root/syzkaller-testdir823348930/syzkaller.L3lUBe/52/file1 supports timestamps until 2038 (0x7fffffff) [ 692.372989][ T8] device bridge_slave_1 left promiscuous mode [ 692.379030][ T8] bridge0: port 2(bridge_slave_1) entered disabled state [ 692.386724][ T8] device bridge_slave_0 left promiscuous mode [ 692.392854][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 692.400630][ T8] device veth1_macvtap left promiscuous mode [ 692.406505][ T8] device veth0_vlan left promiscuous mode [ 692.485616][T26954] bridge0: port 2(bridge_slave_1) entered blocking state [ 692.492602][T26954] bridge0: port 2(bridge_slave_1) entered disabled state [ 692.499926][T26954] device bridge_slave_1 entered promiscuous mode [ 692.595310][T26954] bridge0: port 2(bridge_slave_1) entered blocking state [ 692.602174][T26954] bridge0: port 2(bridge_slave_1) entered forwarding state [ 692.609259][T26954] bridge0: port 1(bridge_slave_0) entered blocking state [ 692.616052][T26954] bridge0: port 1(bridge_slave_0) entered forwarding state [ 692.646119][ T569] bridge0: port 1(bridge_slave_0) entered disabled state [ 692.654869][ T569] bridge0: port 2(bridge_slave_1) entered disabled state [ 692.662736][ T569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 692.670115][ T569] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 692.687842][ T6319] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 692.696283][ T6319] bridge0: port 1(bridge_slave_0) entered blocking state [ 692.703173][ T6319] bridge0: port 1(bridge_slave_0) entered forwarding state [ 692.710419][ T6319] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 692.718437][ T6319] bridge0: port 2(bridge_slave_1) entered blocking state [ 692.725276][ T6319] bridge0: port 2(bridge_slave_1) entered forwarding state [ 692.754761][ T6319] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 692.762977][ T6319] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 692.780012][T26954] device veth0_vlan entered promiscuous mode [ 692.782166][T26985] syz-executor.4[26985] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 692.790223][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 692.791173][T26985] syz-executor.4[26985] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 692.802650][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 692.838778][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 692.846571][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 692.858579][T26989] EXT4-fs (sda1): re-mounted. Opts: (null). Quota mode: none. [ 692.863162][T26954] device veth1_macvtap entered promiscuous mode [ 692.874917][ T3536] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 692.890506][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 692.898800][ T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 692.929277][ T30] audit: type=1400 audit(2000000309.953:42038): avc: denied { nlmsg_read } for pid=26993 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 692.954364][T26994] netlink: 104 bytes leftover after parsing attributes in process `syz-executor.2'. [ 693.179847][ T30] audit: type=1400 audit(2000000310.128:42039): avc: denied { setattr } for pid=26993 comm="syz-executor.2" name="NETLINK" dev="sockfs" ino=145322 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 693.418030][T27022] EXT4-fs (sda1): re-mounted. Opts: (null). Quota mode: none. [ 693.499846][ T8] device bridge_slave_1 left promiscuous mode [ 693.506980][ T8] bridge0: port 2(bridge_slave_1) entered disabled state [ 693.515599][ T8] device bridge_slave_0 left promiscuous mode [ 693.521706][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 693.533652][ T8] device veth1_macvtap left promiscuous mode [ 693.539939][ T8] device veth0_vlan left promiscuous mode [ 693.921508][T27047] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 694.114455][T27056] syz-executor.4[27056] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 694.114767][T27056] syz-executor.4[27056] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 802.740214][ C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 802.758658][ C1] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P3536/1:b..l [ 802.766361][ C1] (detected by 1, t=10004 jiffies, g=116017, q=565) [ 802.772872][ C1] task:kworker/0:6 state:R running task stack:21448 pid: 3536 ppid: 2 flags:0x00004000 [ 802.783466][ C1] Workqueue: ipv6_addrconf addrconf_dad_work [ 802.789272][ C1] Call Trace: [ 802.792400][ C1] [ 802.795186][ C1] __schedule+0xccc/0x1590 [ 802.799431][ C1] ? __sched_text_start+0x8/0x8 [ 802.804112][ C1] ? __stack_depot_save+0x34/0x470 [ 802.809062][ C1] preempt_schedule_irq+0xc7/0x140 [ 802.814133][ C1] ? __cond_resched+0x20/0x20 [ 802.818648][ C1] ? dst_cow_metrics_generic+0x55/0x1c0 [ 802.824023][ C1] ? mld_sendpack+0x4db/0xbb0 [ 802.828542][ C1] ? ipv6_mc_dad_complete+0x283/0x5f0 [ 802.833747][ C1] ? addrconf_dad_completed+0x6d0/0xd80 [ 802.839223][ C1] ? addrconf_dad_work+0xdc1/0x1710 [ 802.844270][ C1] ? worker_thread+0xad5/0x12a0 [ 802.848935][ C1] irqentry_exit_cond_resched+0x2a/0x30 [ 802.854312][ C1] irqentry_exit+0x30/0x40 [ 802.858581][ C1] sysvec_reschedule_ipi+0x7d/0x150 [ 802.863601][ C1] asm_sysvec_reschedule_ipi+0x1b/0x20 [ 802.868899][ C1] RIP: 0010:xfrm_lookup_with_ifid+0x1832/0x20d0 [ 802.874972][ C1] Code: fd 85 db 4c 8b 64 24 08 0f 8e ac 03 00 00 e8 95 72 28 fd 48 8b 1c 24 4d 89 e6 48 85 db 0f 85 10 ed ff ff e8 80 72 28 fd 31 c0 <49> 89 c5 4c 89 f0 48 c1 e8 03 42 80 3c 38 00 74 08 4c 89 f7 e8 d5 [ 802.894414][ C1] RSP: 0018:ffffc90000a676c0 EFLAGS: 00000246 [ 802.900312][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff88810aca4f00 [ 802.908127][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 802.916023][ C1] RBP: ffffc90000a677d0 R08: ffffffff8447aff9 R09: ffffc90000a67760 [ 802.923834][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 000000000000000a [ 802.931643][ C1] R13: ffff888119058000 R14: ffff888117124a00 R15: dffffc0000000000 [ 802.939460][ C1] ? xfrm_lookup_with_ifid+0x349/0x20d0 [ 802.944853][ C1] ? __xfrm_sk_clone_policy+0x930/0x930 [ 802.950219][ C1] ? _raw_spin_lock_bh+0xa4/0x1b0 [ 802.955084][ C1] ? _raw_spin_lock_irq+0x1b0/0x1b0 [ 802.960117][ C1] xfrm_lookup+0x38/0x50 [ 802.964194][ C1] icmp6_dst_alloc+0x4f0/0x560 [ 802.968793][ C1] mld_sendpack+0x4db/0xbb0 [ 802.973138][ C1] ? add_grec+0x13a0/0x13a0 [ 802.977471][ C1] ? memcpy+0x56/0x70 [ 802.981290][ C1] ? add_grec+0x112/0x13a0 [ 802.985546][ C1] ? wait_for_completion_killable_timeout+0x10/0x10 [ 802.991968][ C1] ? cancel_work+0x20/0x20 [ 802.996226][ C1] ipv6_mc_dad_complete+0x283/0x5f0 [ 803.001254][ C1] addrconf_dad_completed+0x6d0/0xd80 [ 803.006463][ C1] ? addrconf_dad_stop+0x410/0x410 [ 803.011413][ C1] addrconf_dad_work+0xdc1/0x1710 [ 803.016269][ C1] ? ipv6_get_saddr_eval+0xf20/0xf20 [ 803.021388][ C1] ? pwq_activate_inactive_work+0x366/0x4a0 [ 803.027118][ C1] ? __kasan_check_read+0x11/0x20 [ 803.031980][ C1] ? read_word_at_a_time+0x12/0x20 [ 803.036923][ C1] ? strscpy+0x9c/0x260 [ 803.040923][ C1] process_one_work+0x6bb/0xc10 [ 803.045604][ C1] worker_thread+0xad5/0x12a0 [ 803.050121][ C1] ? _raw_spin_lock+0x1b0/0x1b0 [ 803.054806][ C1] kthread+0x421/0x510 [ 803.058708][ C1] ? worker_clr_flags+0x180/0x180 [ 803.063565][ C1] ? kthread_blkcg+0xd0/0xd0 [ 803.067995][ C1] ret_from_fork+0x1f/0x30 [ 803.072249][ C1] [ 803.075115][ C1] rcu: rcu_preempt kthread starved for 10029 jiffies! g116017 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1 [ 803.086225][ C1] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 803.096030][ C1] rcu: RCU grace-period kthread stack dump: [ 803.101758][ C1] task:rcu_preempt state:R running task stack:27976 pid: 14 ppid: 2 flags:0x00004000 [ 803.112348][ C1] Call Trace: [ 803.115470][ C1] [ 803.118248][ C1] __schedule+0xccc/0x1590 [ 803.122500][ C1] ? __sched_text_start+0x8/0x8 [ 803.127187][ C1] ? preempt_schedule_common+0xbe/0xf0 [ 803.132481][ C1] ? preempt_schedule+0xd9/0xe0 [ 803.137170][ C1] schedule+0x11f/0x1e0 [ 803.141160][ C1] schedule_timeout+0x18c/0x370 [ 803.145846][ C1] ? preempt_schedule_thunk+0x16/0x18 [ 803.151053][ C1] ? console_conditional_schedule+0x30/0x30 [ 803.156782][ C1] ? update_process_times+0x200/0x200 [ 803.161991][ C1] ? prepare_to_swait_event+0x308/0x320 [ 803.167373][ C1] rcu_gp_fqs_loop+0x2af/0xf80 [ 803.171971][ C1] ? asm_sysvec_reschedule_ipi+0x1b/0x20 [ 803.177439][ C1] ? dump_blkd_tasks+0x7e0/0x7e0 [ 803.182212][ C1] ? preempt_schedule_thunk+0x16/0x18 [ 803.187422][ C1] ? rcu_gp_init+0xc30/0xc30 [ 803.191847][ C1] ? _raw_spin_unlock_irq+0x61/0x70 [ 803.196880][ C1] ? rcu_gp_init+0x9cf/0xc30 [ 803.201305][ C1] rcu_gp_kthread+0xa4/0x350 [ 803.205730][ C1] ? _raw_spin_lock+0x1b0/0x1b0 [ 803.210421][ C1] ? wake_nocb_gp+0x1e0/0x1e0 [ 803.214933][ C1] ? __kasan_check_read+0x11/0x20 [ 803.219801][ C1] ? __kthread_parkme+0xb2/0x200 [ 803.224569][ C1] kthread+0x421/0x510 [ 803.228474][ C1] ? wake_nocb_gp+0x1e0/0x1e0 [ 803.232984][ C1] ? kthread_blkcg+0xd0/0xd0 [ 803.237412][ C1] ret_from_fork+0x1f/0x30 [ 803.241671][ C1] [ 803.244529][ C1] rcu: Stack dump where RCU GP kthread last ran: [ 803.250701][ C1] NMI backtrace for cpu 1 [ 803.254859][ C1] CPU: 1 PID: 27053 Comm: syz-executor.1 Tainted: G W 5.15.149-syzkaller-00165-g85445b5a2107 #0 [ 803.266399][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 803.276307][ C1] Call Trace: [ 803.279419][ C1] [ 803.282109][ C1] dump_stack_lvl+0x151/0x1b7 [ 803.286624][ C1] ? io_uring_drop_tctx_refs+0x190/0x190 [ 803.292093][ C1] dump_stack+0x15/0x17 [ 803.296084][ C1] nmi_cpu_backtrace+0x2f7/0x300 [ 803.300859][ C1] ? nmi_trigger_cpumask_backtrace+0x270/0x270 [ 803.306845][ C1] ? panic+0x751/0x751 [ 803.310750][ C1] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 803.316653][ C1] nmi_trigger_cpumask_backtrace+0x15d/0x270 [ 803.322469][ C1] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 803.328457][ C1] arch_trigger_cpumask_backtrace+0x10/0x20 [ 803.334192][ C1] rcu_check_gp_kthread_starvation+0x1e3/0x250 [ 803.340173][ C1] ? wq_watchdog_touch+0x72/0x110 [ 803.345034][ C1] print_other_cpu_stall+0x112d/0x1340 [ 803.350330][ C1] ? try_to_wake_up+0x697/0x1160 [ 803.355101][ C1] ? print_cpu_stall+0x5f0/0x5f0 [ 803.359874][ C1] ? bpf_trace_run1+0xc4/0x1c0 [ 803.364479][ C1] ? rcu_sched_clock_irq+0x11ab/0x12f0 [ 803.369768][ C1] rcu_sched_clock_irq+0xaec/0x12f0 [ 803.374802][ C1] ? rcu_boost_kthread_setaffinity+0x340/0x340 [ 803.380791][ C1] ? hrtimer_run_queues+0x15f/0x440 [ 803.385828][ C1] update_process_times+0x198/0x200 [ 803.390859][ C1] tick_sched_timer+0x188/0x240 [ 803.395546][ C1] ? tick_setup_sched_timer+0x480/0x480 [ 803.400927][ C1] __hrtimer_run_queues+0x41a/0xad0 [ 803.405964][ C1] ? hrtimer_interrupt+0xaa0/0xaa0 [ 803.410907][ C1] ? clockevents_program_event+0x236/0x300 [ 803.416635][ C1] ? ktime_get_update_offsets_now+0x2ba/0x2d0 [ 803.422541][ C1] hrtimer_interrupt+0x40c/0xaa0 [ 803.427317][ C1] __sysvec_apic_timer_interrupt+0xfd/0x3c0 [ 803.433040][ C1] sysvec_apic_timer_interrupt+0x95/0xc0 [ 803.438509][ C1] [ 803.441290][ C1] [ 803.444062][ C1] asm_sysvec_apic_timer_interrupt+0x1b/0x20 [ 803.449878][ C1] RIP: 0010:_raw_spin_unlock_irq+0x49/0x70 [ 803.455519][ C1] Code: 08 00 74 0c 48 c7 c7 d8 54 8d 86 e8 31 45 e9 fc 48 83 3d 31 29 c4 01 00 74 2a 48 89 df e8 a3 bb 8b fc 66 90 fb bf 01 00 00 00 02 ff 82 fc 65 8b 05 c3 41 39 7b 85 c0 74 03 5b 5d c3 e8 c3 55 [ 803.474963][ C1] RSP: 0018:ffffc90000e27bb8 EFLAGS: 00000246 [ 803.480862][ C1] RAX: 0000000000000001 RBX: ffff88810af29180 RCX: dffffc0000000000 [ 803.488673][ C1] RDX: ffffc90003160000 RSI: 000000000003ffff RDI: 0000000000000001 [ 803.496485][ C1] RBP: ffffc90000e27bc0 R08: ffffffff81456eda R09: fffff520001c4fc0 [ 803.504295][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff88810af29180 [ 803.512108][ C1] R13: ffff88810af295a0 R14: 0000000000000021 R15: dffffc0000000000 [ 803.520184][ C1] ? get_signal+0x151a/0x1630 [ 803.524692][ C1] ? _raw_spin_unlock_irq+0x41/0x70 [ 803.529732][ C1] get_signal+0x1562/0x1630 [ 803.534068][ C1] arch_do_signal_or_restart+0xbd/0x1680 [ 803.539533][ C1] ? __do_compat_sys_x32_rt_sigreturn+0x1e0/0x1e0 [ 803.545786][ C1] ? __kasan_check_write+0x14/0x20 [ 803.550728][ C1] ? _copy_from_user+0x96/0xd0 [ 803.555335][ C1] ? restore_altstack+0x274/0x400 [ 803.560191][ C1] ? get_sigframe_size+0x10/0x10 [ 803.564966][ C1] ? __se_sys_futex+0x37b/0x3e0 [ 803.569653][ C1] exit_to_user_mode_loop+0xa0/0xe0 [ 803.574687][ C1] exit_to_user_mode_prepare+0x5a/0xa0 [ 803.579981][ C1] syscall_exit_to_user_mode+0x26/0x160 [ 803.585361][ C1] do_syscall_64+0x49/0xb0 [ 803.589612][ C1] ? sysvec_apic_timer_interrupt+0x55/0xc0 [ 803.595255][ C1] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 803.600980][ C1] RIP: 0033:0x7fbad2cc5f29 [ 803.605236][ C1] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 803.624676][ C1] RSP: 002b:00007fbad2040178 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 803.632919][ C1] RAX: fffffffffffffe00 RBX: 00007fbad2dfcf88 RCX: 00007fbad2cc5f29 [ 803.640820][ C1] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbad2dfcf88 [ 803.648633][ C1] RBP: 00007fbad2dfcf80 R08: 00007fbad20406c0 R09: 00007fbad20406c0 [ 803.656440][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbad2dfcf8c [ 803.664250][ C1] R13: 000000000000000b R14: 00007ffd7e0f47c0 R15: 00007ffd7e0f48a8 [ 803.672071][ C1] [ 883.889005][ C0] BUG: workqueue lockup - pool cpus=0 node=0 flags=0x0 nice=0 stuck for 174s! [ 883.897718][ C0] BUG: workqueue lockup - pool cpus=0 node=0 flags=0x0 nice=-20 stuck for 172s! [ 883.906630][ C0] Showing busy workqueues and worker pools: [ 883.912504][ C0] workqueue events: flags=0x0 [ 883.916981][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=4/256 refcnt=5 [ 883.917022][ C0] in-flight: 42:fqdir_free_fn fqdir_free_fn, 569:linkwatch_event [ 883.917085][ C0] pending: kfree_rcu_monitor [ 883.917112][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=6/256 refcnt=7 [ 883.917147][ C0] pending: bpf_prog_free_deferred, vmstat_shepherd, psi_avgs_work, destroy_list_workfn, kfree_rcu_monitor, rht_deferred_worker [ 883.917238][ C0] workqueue events_long: flags=0x0 [ 883.963035][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=4/256 refcnt=5 [ 883.963090][ C0] pending: br_fdb_cleanup, br_fdb_cleanup, br_fdb_cleanup, br_multicast_gc_work [ 883.963154][ C0] workqueue events_unbound: flags=0x2 [ 883.984904][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=2/512 refcnt=4 [ 883.984944][ C0] pending: toggle_allocation_gate, flush_memcg_stats_dwork [ 883.984994][ C0] workqueue events_power_efficient: flags=0x80 [ 884.005301][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=4/256 refcnt=5 [ 884.005359][ C0] pending: neigh_periodic_work, neigh_periodic_work, gc_worker, check_lifetime [ 884.005430][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.005469][ C0] pending: wg_ratelimiter_gc_entries [ 884.005495][ C0] workqueue rcu_gp: flags=0x8 [ 884.039494][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.039540][ C0] pending: process_srcu [ 884.039571][ C0] workqueue netns: flags=0xe000a [ 884.056146][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/1 refcnt=3 [ 884.056184][ C0] in-flight: 8:cleanup_net [ 884.056218][ C0] workqueue mm_percpu_wq: flags=0x8 [ 884.072643][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.072691][ C0] pending: vmstat_update [ 884.072721][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.072754][ C0] pending: vmstat_update [ 884.096607][ C0] workqueue writeback: flags=0x4a [ 884.101460][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=5/256 refcnt=7 [ 884.101499][ C0] pending: wb_workfn, wb_workfn, wb_workfn, wb_workfn, wb_workfn [ 884.101594][ C0] workqueue kblockd: flags=0x18 [ 884.121173][ C0] pwq 3: cpus=1 node=0 flags=0x0 nice=-20 active=1/256 refcnt=2 [ 884.121216][ C0] pending: blk_mq_timeout_work [ 884.121238][ C0] pwq 1: cpus=0 node=0 flags=0x0 nice=-20 active=3/256 refcnt=4 [ 884.121271][ C0] pending: blk_mq_timeout_work, blk_mq_timeout_work, blk_mq_timeout_work [ 884.121321][ C0] workqueue dm_bufio_cache: flags=0x8 [ 884.155319][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.155369][ C0] pending: work_fn [ 884.155397][ C0] workqueue mld: flags=0x40008 [ 884.171311][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/1 refcnt=3 [ 884.171352][ C0] pending: mld_dad_work [ 884.171378][ C0] inactive: mld_dad_work [ 884.171396][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/1 refcnt=8 [ 884.171430][ C0] pending: mld_dad_work [ 884.171451][ C0] inactive: mld_dad_work, mld_ifc_work, mld_dad_work, mld_dad_work, mld_dad_work, mld_dad_work [ 884.171518][ C0] workqueue ipv6_addrconf: flags=0x40008 [ 884.215174][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/1 refcnt=9 [ 884.215218][ C0] in-flight: 329:addrconf_dad_work [ 884.215253][ C0] inactive: addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_verify_work [ 884.215341][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/1 refcnt=37 [ 884.215374][ C0] in-flight: 3536:addrconf_dad_work [ 884.215404][ C0] inactive: addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work, addrconf_dad_work [ 884.215826][ C0] workqueue wg-crypt-wg0: flags=0x28 [ 884.322236][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.322284][ C0] pending: wg_packet_encrypt_worker [ 884.322320][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.322360][ C0] pending: wg_packet_encrypt_worker [ 884.322390][ C0] workqueue wg-crypt-wg1: flags=0x28 [ 884.353255][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.353302][ C0] pending: wg_packet_encrypt_worker [ 884.353332][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.353370][ C0] pending: wg_packet_encrypt_worker [ 884.353399][ C0] workqueue wg-crypt-wg2: flags=0x28 [ 884.384192][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.384239][ C0] pending: wg_packet_encrypt_worker [ 884.384268][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.384306][ C0] pending: wg_packet_encrypt_worker [ 884.384334][ C0] workqueue wg-crypt-wg0: flags=0x28 [ 884.415109][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.415153][ C0] pending: wg_packet_encrypt_worker [ 884.415183][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.415219][ C0] pending: wg_packet_encrypt_worker [ 884.415247][ C0] workqueue wg-kex-wg1: flags=0x6 [ 884.445793][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3 [ 884.445836][ C0] pending: wg_packet_handshake_send_worker [ 884.445866][ C0] workqueue wg-crypt-wg1: flags=0x28 [ 884.463937][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.463985][ C0] pending: wg_packet_encrypt_worker [ 884.464017][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.464054][ C0] pending: wg_packet_encrypt_worker [ 884.464082][ C0] workqueue wg-crypt-wg2: flags=0x28 [ 884.494860][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.494916][ C0] pending: wg_packet_encrypt_worker [ 884.494951][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.494989][ C0] pending: wg_packet_encrypt_worker [ 884.495018][ C0] workqueue wg-kex-wg0: flags=0x6 [ 884.525542][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3 [ 884.525585][ C0] pending: wg_packet_handshake_send_worker [ 884.525613][ C0] workqueue wg-crypt-wg0: flags=0x28 [ 884.543704][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.543748][ C0] pending: wg_packet_encrypt_worker [ 884.543779][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.543815][ C0] pending: wg_packet_encrypt_worker [ 884.543844][ C0] workqueue wg-kex-wg1: flags=0x6 [ 884.574392][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3 [ 884.574436][ C0] pending: wg_packet_handshake_send_worker [ 884.574465][ C0] workqueue wg-crypt-wg1: flags=0x28 [ 884.592599][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.592646][ C0] pending: wg_packet_encrypt_worker [ 884.592675][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.592713][ C0] pending: wg_packet_encrypt_worker [ 884.592740][ C0] workqueue wg-kex-wg2: flags=0x6 [ 884.623256][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3 [ 884.623298][ C0] pending: wg_packet_handshake_send_worker [ 884.623326][ C0] workqueue wg-crypt-wg2: flags=0x28 [ 884.641395][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.641441][ C0] pending: wg_packet_encrypt_worker [ 884.641469][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.641507][ C0] pending: wg_packet_encrypt_worker [ 884.641541][ C0] workqueue wg-kex-wg0: flags=0x6 [ 884.672086][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3 [ 884.672128][ C0] pending: wg_packet_handshake_send_worker [ 884.672159][ C0] workqueue wg-crypt-wg0: flags=0x28 [ 884.690200][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.690242][ C0] pending: wg_packet_encrypt_worker [ 884.690271][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.690306][ C0] pending: wg_packet_encrypt_worker [ 884.716044][ C0] workqueue wg-kex-wg1: flags=0x6 [ 884.720861][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3 [ 884.720899][ C0] pending: wg_packet_handshake_send_worker [ 884.720930][ C0] workqueue wg-crypt-wg1: flags=0x28 [ 884.739010][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.739068][ C0] pending: wg_packet_encrypt_worker [ 884.739099][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.739139][ C0] pending: wg_packet_encrypt_worker [ 884.739183][ C0] workqueue wg-kex-wg2: flags=0x6 [ 884.769736][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3 [ 884.769781][ C0] pending: wg_packet_handshake_send_worker [ 884.769815][ C0] workqueue wg-crypt-wg2: flags=0x28 [ 884.787845][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.787896][ C0] pending: wg_packet_encrypt_worker [ 884.800825][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.800873][ C0] pending: wg_packet_encrypt_worker [ 884.800924][ C0] workqueue wg-crypt-wg0: flags=0x28 [ 884.818856][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.818900][ C0] pending: wg_packet_encrypt_worker [ 884.818932][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.818967][ C0] pending: wg_packet_encrypt_worker [ 884.819006][ C0] workqueue wg-kex-wg1: flags=0x6 [ 884.849779][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3 [ 884.849822][ C0] pending: wg_packet_handshake_send_worker [ 884.849851][ C0] workqueue wg-crypt-wg1: flags=0x28 [ 884.867955][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.868004][ C0] pending: wg_packet_encrypt_worker [ 884.868033][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.868070][ C0] pending: wg_packet_encrypt_worker [ 884.868098][ C0] workqueue wg-crypt-wg2: flags=0x28 [ 884.898910][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.898960][ C0] pending: wg_packet_encrypt_worker [ 884.898991][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.899029][ C0] pending: wg_packet_encrypt_worker [ 884.899058][ C0] workqueue wg-kex-wg0: flags=0x6 [ 884.929619][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3 [ 884.929667][ C0] pending: wg_packet_handshake_send_worker [ 884.929699][ C0] workqueue wg-crypt-wg0: flags=0x28 [ 884.947712][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.947755][ C0] pending: wg_packet_encrypt_worker [ 884.947786][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.947822][ C0] pending: wg_packet_encrypt_worker [ 884.947852][ C0] workqueue wg-crypt-wg1: flags=0x28 [ 884.978715][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.978762][ C0] pending: wg_packet_encrypt_worker [ 884.978792][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 884.978830][ C0] pending: wg_packet_encrypt_worker [ 884.978857][ C0] workqueue wg-kex-wg2: flags=0x6 [ 885.009404][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3 [ 885.009449][ C0] pending: wg_packet_handshake_send_worker [ 885.009481][ C0] workqueue wg-crypt-wg2: flags=0x28 [ 885.027542][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 885.027589][ C0] pending: wg_packet_encrypt_worker [ 885.027618][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 885.027655][ C0] pending: wg_packet_encrypt_worker [ 885.027685][ C0] workqueue wg-kex-wg0: flags=0x6 [ 885.058208][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3 [ 885.058249][ C0] pending: wg_packet_handshake_send_worker [ 885.058280][ C0] workqueue wg-crypt-wg0: flags=0x28 [ 885.076338][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 885.076381][ C0] pending: wg_packet_encrypt_worker [ 885.076410][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 885.076443][ C0] pending: wg_packet_encrypt_worker [ 885.076473][ C0] workqueue wg-kex-wg1: flags=0x6 [ 885.106994][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3 [ 885.107034][ C0] pending: wg_packet_handshake_send_worker [ 885.107065][ C0] workqueue wg-crypt-wg1: flags=0x28 [ 885.125160][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 885.125205][ C0] pending: wg_packet_encrypt_worker [ 885.125237][ C0] workqueue wg-kex-wg2: flags=0x6 [ 885.142836][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3 [ 885.142874][ C0] pending: wg_packet_handshake_send_worker [ 885.142906][ C0] workqueue wg-crypt-wg2: flags=0x28 [ 885.161015][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 885.161060][ C0] pending: wg_packet_encrypt_worker [ 885.161088][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 885.161127][ C0] pending: wg_packet_encrypt_worker [ 885.161156][ C0] workqueue wg-kex-wg0: flags=0x6 [ 885.191700][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3 [ 885.191744][ C0] pending: wg_packet_handshake_send_worker [ 885.191773][ C0] workqueue wg-crypt-wg0: flags=0x28 [ 885.209824][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 885.209868][ C0] pending: wg_packet_encrypt_worker [ 885.209898][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 885.209931][ C0] pending: wg_packet_encrypt_worker [ 885.209974][ C0] workqueue wg-crypt-wg1: flags=0x28 [ 885.240920][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 885.240965][ C0] pending: wg_packet_encrypt_worker [ 885.240995][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 885.241031][ C0] pending: wg_packet_encrypt_worker [ 885.241059][ C0] workqueue wg-kex-wg2: flags=0x6 [ 885.271559][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3 [ 885.271603][ C0] pending: wg_packet_handshake_send_worker [ 885.271633][ C0] workqueue wg-crypt-wg2: flags=0x28 [ 885.289727][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 885.289772][ C0] pending: wg_packet_encrypt_worker [ 885.289802][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 885.289839][ C0] pending: wg_packet_encrypt_worker [ 885.289865][ C0] pool 0: cpus=0 node=0 flags=0x0 nice=0 hung=176s workers=7 idle: 316 6319 6 20 330 461 [ 885.289935][ C0] pool 2: cpus=1 node=0 flags=0x0 nice=0 hung=176s workers=10 idle: 7657 60 25837 5975 1248 417 6629 [ 885.290010][ C0] pool 4: cpus=0-1 flags=0x4 nice=0 hung=176s workers=4 idle: 792 376 3342