last executing test programs: 2m26.725474906s ago: executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='ns\x00') fchdir(r0) setfsuid(0xee00) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) 2m26.481842458s ago: executing program 0: r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000040)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000280)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) ioctl$FS_IOC_RESVSP(r4, 0x40305839, &(0x7f0000000000)={0x0, 0x0, 0xefff, 0xfa64}) write$binfmt_misc(r4, &(0x7f00000004c0)=ANY=[], 0x4) r5 = socket$inet6(0xa, 0x3, 0x8000000003c) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x6, [@func_proto={0x0, 0x0, 0x0, 0x2}, @typedef={0x2, 0x0, 0x0, 0x8, 0x2}, @volatile={0x0, 0x0, 0x0, 0x9, 0x3}]}, {0x0, [0x0, 0x5f, 0x0, 0x61]}}, 0x0, 0x42}, 0x20) connect$inet6(r5, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote}, 0x1c) r6 = socket$unix(0x1, 0x1, 0x0) syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2000084e, &(0x7f0000000140)={[{@umask={'umask', 0x3d, 0x8}}, {@discard}, {@dmask={'dmask', 0x3d, 0x7}}, {@errors_remount}, {@dmask={'dmask', 0x3d, 0xc2}}, {@utf8}, {@allow_utime={'allow_utime', 0x3d, 0x1}}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'default'}}]}, 0x80, 0x1503, &(0x7f0000000580)="$eJzs3AuYj1XXMPC99t43Y5L+TXIY9trr5p8G2yRJDgk5JEmSJDklJCZJEhJDTklDEnKcJIchJIdpTBrn8yHnpMkjTZKE5BT2d+np/Tzv0/O+fe9X3+e93lm/69qXvdz/tf7rnjXX3Pf9v66Z73uOqtu8Xq2mRCT+FPj7P8lCiBghxDAhxA1CiEAIUTGuYtyV4/kUJP+5N2F/rUfTrnUH7Fri+eduPP/cjeefu/H8czeef+7G88/deP65G8+fsdxs+5yiN/LKvYs//8/N+Pr/P0hOuclfbyx3c6//QgrPP3fj+eduPP/cjeefu/H8czee//98Nf+TYzz/3I3nz1hudq0/f+Z1bde1/v5jjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMZY7nPNXaSHEv+2vdV+MMcYYY4wxxhj76/i817oDxhhjjDHGGGOM/b8HQgoltAhEHpFXxIh8IlZcJ/KL60UBcYOIiBtFnLhJFBQ3i0KisCgiiop4UUwUF0agsIJEKEqIkiIqbhGlxK0iQZQWZURZ4UQ5kShuE+XF7aKCuENUFHeKSuIuUVlUEVVFNXG3qC7uETVETVFL3Ctqizqirqgn7hP1xf2igXhANBQPikbiIdFYPCyaiEdEU/GoaCYeE83F46KFeEK0FK1Ea9FGtP2/yn9Z9BWviH6iv0gWA8RA8aoYJAaLIWKoGCZeE8PF62KEeEOkiJFilHhTjBZviTHibTFWjBPjxTtigpgoJonJYoqYKlLFu2KaeE9MF++LGWKmmCVmizQxR8wVH4h5Yr5YID4UC8VHYpFYLJaIpSJdfCwyxDKRKT4Ry8WnIkusECvFKrFarBFrxTqxXmwQG8UmsVlsEVvFNrFdfCZ2iJ1il9gt9oi9Yp/4XOwXX4gD4kuRLb76L+af/af8XiBAgAQJGjTkgTwQAzEQC7GQH/JDASgAEYhAHMRBQSgIhaAQFIEiEA/xUByKAwICAUEJKAFRiEIpKAUJkABloAw4cJAIiVAebocKUAEqQkWoBJWgMlSBKlANqkF1qA41oAbUglpQG2pDXagL98F9cD80gAbQEBpCI2gEjaExNIEm0BSaQjNoBs2hObSAFtASWkJraA1toS20g3bQHtpDR+gInaATdIbOkARJ0BW6QjfoBt2hO/SAHtATekIv6A294WV4GV6BV6A/1JYDYCAMhEEwCIbAUBgKr8FweB1ehzcgBUbCKHgT3oS3YAycgbEwDsbDeKguJ8IkmAwkp0IqpMI0mAbTYTrMgJkwE2ZDGsyBuTAX5sF8mA8fwkL4CD6CxbAYlkI6pEMGLINMyITlcBayYAWshFWwGtbAalgH62EdbIRNsBG2wBbYBtvgM/gMdsJO2A27YS/shc/hc/gCvoAUyIZsOAgH4RAcgsNwGHIgB47AETgKR+EYHIPjcBxOwEk4BSfhNJyGM3AWzsE5uAAX4CK8GP9ts72lN6QIeYWWWuaReWSMjJGxMlbml/llAVlARmRExsk4WVAWlIVkIVlEFpHxMl4Wl8UlSpQkQ1lClogRQshSspRMkAmyjCwjnXQyUSbK8rK8rCAryIryTllJ3iUryyqyg6smq8nqsqOrIWvKWrKWrC3ryLqynqwn68v6soFsIBvKhrKRbCQby4dlEzkAhsCj8spkmsuR0EKOgpaylWwt28i34EnZTo6B9rKD7CifluNgLHSW7VySfFZ2lZOgm3xeToYXZA85FXrKl2Qv2Vv2kS/LvrK96yf7yxkwQA6Us2GQHCyHyKFyHtSRVyZWV74hU+RIOUq+KZfCW3KMfFuOlePkePmOnCAnyklyspwip8pU+a6cJt+T0+X7coacKWfJ2TJNzpFz5QdynpwvF8gP5UL5kVwkF8slcqlMlx/LDLlMZspP5HL5qcySK+RKuUqulmvkWrlOrpcb5Ea5SW6WW+RWuU1ul5/JHXKn3CV3yz1yr9wnP5f75RfygPxSZsuv5EH5N3lIfi0Py29kjvxWHpHfyaPye3lM/iCPyx/lCXlSnpI/ydPyZ3lGnpXn5Hl5Qf4iL8pL8rL0UihQUimlVaDyqLwqRuVTseo6lV9drwqoG1RE3aji1E2qoLpZFVKFVRFVVMWrYqq4MgqVVaRCVUKVVFF1iyqlblUJqrQqo8oqp8qpRHWbKq9uVxXUHaqiulNVUnepyqqKqqqqqbtVdXWPqqFqqlrqXlVb1VF1VT11n6qv7lcN1AOqoXpQNVIPqcbqYdVEPaKaqkdVM/WYaq4eVy3UE6qlaqVaqzaqrXpStVNPqfaqg+qonlad1DOqs+qiktSzqqt6TnVTz6vu6gXVQ72oeqqXVC/VW/VRl9Rl5VU/1V8lqwFqoHpVDVKD1RA1VA1Tr6nh6nU1Qr2hUtRINUq9qUart9QY9bYaq8ap8eodNUFNVJPUZDVFTVWp6l01Tb2npqv31Qw1U81Ss1WamqOG/FZpwT/lD/jtqvuP+e/9i/wRv777NrVdfaZ2qJ1ql9qt9qi9ap/ap/ar/eqAOqCyVbY6qA6qQ+qQOqwOqxyVo46oI+qoOqqOqWPquDquTqiT6rz6SZ1WP6sz6qw6q86rC+qCuvjb10Bo0FIrrXWg8+i8Okbn07H6Op1fX68L6Bt0RN+o4/RNuqC+WRfShXURXVTH62K6uDYatdWkQ11Cl9RRfYsupW/VCbq0LqPLaqfL6UR925/O/6P+2uq2up1up9vr9rqj7qg76U66s+6sk3SS7qq76m66m+6uu+seuofuqXvqXrqX7qP76L66r+6n++lknawH6lf1ID1YD9FD9TD9mh6uh+sReoRO0Sl6lB6lR+vReoweo8fqsXq8Hq8n6Al6kp6kp+gpOlWn6ml6mp6up+sZeoaepWfpNJ2m5+q5ep6epxfoBXqhXqgX6UV6iV6i03W6ztAZOlNn6uV6uc7SK/QKvUqv0mv0Gr1Or9Mb9Aa9SW/SW/QWnaW36+16h96hd+ldeo/eo/fpfXq/3q8P6AM6W2frg/qgPqQP6cP6sM7ROfqIPqKP6qP6mD424Lg+rk/oE/qUPqVP69P6jD6jz+lz+oK+oC/qi/qyvnzlti+QgQx0oIM8QZ4gJogJYoPYIH+QPygQFAgiQSSIC+KCgsHNQaGgcFAkKBrEB8WC4oEJMLABBWFQIigZRINbglLBrUFCUDooE5QNXFAuSAxuC8oHtwcVgjuCisGdQaXgrqByUCWoGlQL7g6qB/cENYKaQa3g3qB2UCeoG9QL7gvqB/cHDYIHgobBg0Gj4KGgcfBw0CR4JGgaPBo0Cx4LmgePBy2CJ4KWQaugddAmaPuX1vf+TOGnXD/T3ySbAWagedUMMoPNEDPUDDOvmeHmdTPCvGFSzEgzyrxpRpu3zBjzthlrxpnx5h0zwUw0k8xkM8VMNanmXTPNvGemm/fNDDPTzDKzTZqZY+aaD8w8M98sMB+aheYjs8gsNkvMUpNuPjYZZpnJNJ+Y5eZTk2VWmJVmlVlt1py/UQiz3mwwG80ms9lsMVvNNrPdfGZ2mJ1ml9lt9pi9Zp/53Ow3X5gD5kuTbb4yB83fzCHztTlsvjE55ltzxHxnjprvzTHzgzlufjQnzElzyvxkTpufzRlz1pwz580F84u5aC6Zy8Zfubm/cnlHjRrzYB6MwRiMxVjMj/mxABbACEYwDuOwIBbEQlgIi2ARjMd4LI7F8QpCwhJYAqMYxVJYChMwActgGXToMBETsTyWxwpYAStiRayElbAyVsaqWBXvxrvxHrwHa2JNvBfvxTpYB+thPayP9bEBNsCG2BAbYSNsjI2xCTbBptgUm2EzbI7NsQW2wJbYEltja2yLbbEdtsP22B47YkfshJ2wM3bGJEzCrtgVu2E37I7dsQf2wJ7YE3thL+yDfbAv9sV+2A+TMRkH4kAchINwCA7BYTgMh+NwHIEjMAVTcBSOwtE4GsfgGByL43A8voMTcCJOwsk4BadiKqbiNJyG03E6zsAZOAtnYRqm4Vyci/NwHi7ABbgQF+IiXIRLcAmmYzpmYAZmYiYux+WYhVm4ElfialyNa3Etrsf1uBE34mbcjFtxK27H7bgDd+Au3IV7cA/uw324H/fjATyA2ZiNB/EgHsJDeBgPYw7m4BE8gkfxKB7DY3gcj+MJPIGn8BSextN4Bs/gOTyHF/AXvIiX8DJ6jLFSxNrrbH57vS1gb7AxNp/9x7iILWrjbTFb3BpbyBb+dzFaaxNsaVvGlrXOlrOJ9rbfxZVtFVvVVrN32+r2Hlvjd3F9e79tYB+wDe2Dtp6977c4769xI/uQbWwft03sE7apbWWb2Ta2uX3ctrBP2Ja2lW1t29hO9hnb2XaxSfZZ29U+97s4wy6z6+0Gu9FusvvtF/acPW+P2u/tBfuL7Wf722H2NTvcvm5H2Ddsih35u3i8fcdOsBPtJDvZTrFTfxfPsrNtmp1j59oP7Dw7/3dxuv3YLrSZdpFdbJfYpb/GV3rKtJ/Y5fZTm2VX2JV2lV1t19i1dt3/7nWV3WK32m12n/3c7rA77S672+6xe3+Nr5zHAfulzbZf2SP2O3vIfm0P22M2x377a3zl/I7ZH+xx+6M9YU/aU/Yne9r+bM/Ys7+e/5Vz/8lespett4KAJCnSFFAeyksxlI9i6TrKT9dTAbqBInQjxdFNVJBupkJUmIpQUYqnYlScDCFZIgqpBJWkKN1CpehWSqDSVIbKkqNylEi3UXm6nSrQHVSR7qRKdBdVpipUlarR3VSd7qEaVJNq0b1Um+pQXapH91F9up8a0APUkB6kRvQQNaaHqQk9Qk3pUWpGj1Fzepxa0BPUklpRa2pDbelJakdPUXvqQB3paepEz1Bn6kJJ9Cx1peeoGz1P3ekF6kEvUk96iXpRb+pDL1NfeoX6UX9KpgE0kF6lQTSYhtBQGkav0XB6nUbQG5RCI2kUvUmj6S0aQ2/TWBpH4+kdmkATaRJNpik0lVLpXTqb3qXIlXu9GTSTZtFsSqM5NJc+oHk0nxbQh7SQPqJFtJiW0FJKp48pg5ZRJn1Cy+lTyqIVtJJW0WpaQ2tpHa2nDbSRNtFm2kJbaRttp89oB+2kXbSb9tBe2kef0376gg7Ql5RNX9FB+hsdoq/pMH1DOfQtHaHv6Ch9T8foBzpOP9IJOkmn6Cc6TT/TGTpL5+g8XaBf6CJdosvkSYQQylCFOgzCPGHeMCbMF8aG14X5w+vDAuENYSS8MYwLbwoLhjeHhcLCYZGwaBgfFguLhybE0IYUhmGJsGQYDW8JS4W3hglh6bBMWDZ0YbkwMbwtLB/eHlYI7wgrhneGlcK7wsphlfDxB6uFd4fVw3vCGmHNsFZ4b1g7rBPWDeuF94X1w/vDBuEDYcPwwbBC+FDYOHw4bBI+EjYNHw2bhY+FzcPHwxbhE2HLsFXYOmwTtg2fDNuFT4Xtww5hx/DpsFP4TNg57BImhc+GXcPn/vB4cjggHBi+Gr4aev+AWhJdGk2PfhzNiC6LZkY/iS6PfhrNiq6Iroyuiq6Oromuja6Lro9uiG6Mbopujm6Jbo1ui3pfL69w4KRTTrvA5XF5XYzL52LddS6/u94VcDe4iLvRxbmbXEF3syvkCrsirqiLd8VccWccOuvIha6EK+mi7hZXyt3qElxpV8aVdc6Vc4mujWvr2rp27inX3nVwHd3T7mn3jHvGdXFd3LOuq3vOdXPPu+7uBdfDvehedC+5Xq636+Nedn3dK66f6++SXbIb6Aa6QW6QG+KGuGFumBvuhrsRboRLcSlulBvlRrvRbowb48a6sW68G+8muAlukpvkprgpLtWlumlumpvuprsZboab5Wa5NJfm5rq5bp6b5xa4BW5hwkK3yC1yS9wSl+7SXYbLcJku0y13y12Wy3Ir3Uq32q12a91at96tdxvdRrfZbXZb3Va33W13O9wOt8vtcnvcHrfP7XP73X53wB1w2S7bHXQH3SF3yB1237gc96074r5zR9337pj7wR13P7oT7qQ75X5yp93P7ow768658+6C+8VddJfcZeddauTdyLTIe5HpkfcjMyIzI7MisyNpkTmRuZEPIvMi8yMLIh9GFkY+iiyKLI4siSyNpEc+jmRElkUyI59Elkc+jWRFVkRWRlZFVkfWRLwvtiP0JXxJH/W3+FL+Vp/gS/syvqx3vpxP9Lf58v52X8Hf4Sv6O30lf5ev7Kv4qv4J39K38q19G9/WP+nb+ad8e9/Bd/RP+07+Gd/Zd/FJ/lnf1T/nu/nnfXf/gu/hX/Q9/Uu+l+/t+/iXfV//iu/n+/tkP8AP9K/6QX6wH+KH+mH+NT/cv+5H+Dd8ih/pR/k3/Wj/lh/j3/Zj/Tg/3r/jJ/iJfpKf7Kf4qT7Vv+un+ff8dP++n+Fn+ll+tk/zc/xc/4Gf5+f7Bf5Dv9B/5Bf5xX6JX+rT/cc+wy/zmf4Tv9x/6rP8Cr/Sr/Kr/Rq/1q/z6/0Gv9Fv8pv9Fr/Vb/Pb/Wd+h9/pd/ndfo/f6/f5z/1+/4U/4L/02f4rf9D/zR/yX/vD/huf47/1R/x3/qj/3h/zP/jj/kd/wp/0p/xP/rT/2Z/xZ/05f95f8L/4i/6Sv8y/s8YYY4wx9n9E/cHxAf/i/+Rv64qBQojrdxbN+eeamwv9fT9YxneKCCGe7d/z0X9btWsnJyf/9tosJYKSi4UQkav5ecTVeIXoKJ4RSaKDKP8v+xsse1+gP6gfvVOI2KuVfxUr/rn+7f9B/SefHp9RKTwX95/UXyxEQsmrOfnE1fhq/Qr/Qf3C7f6g/3xfpwrR/h9y8our8dX6ieIp8ZxI+nevZIwxxhhjjDHG/m6wrNr9j56frzyfx+urOXnF1fiPns8ZY4wxxhhjjDF27b3Qu0+XJ5OSOnTnzZ/Y1Pjv0QZvePOXba71TybGGGOMMcbYX+3qTf+17oQxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGMu9/n/8ObFrfY6MMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcbYtfa/AgAA///mJjhh") bind$unix(r6, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc) sendmsg(r5, &(0x7f00000000c0)={0x0, 0x953c, &(0x7f0000000100)=[{&(0x7f0000000000)="2b10", 0xffbd}], 0x1, 0x0, 0x0, 0x2c}, 0x4) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfc8e) 2m25.112283962s ago: executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000080)=@nat={'nat\x00', 0x1b, 0x5, 0x338, 0x0, 0x2c0, 0xffffffff, 0x170, 0xc8, 0xc8, 0x2c0, 0xffffffff, 0x2c0, 0x2c0, 0x5, 0x0, {[{{@uncond, 0x0, 0x70, 0xa8}, @DNAT0={0x38, 'DNAT\x00', 0x0, {0x1, {0x0, @empty, @loopback, @icmp_id, @icmp_id}}}}, {{@ip={@multicast2, @remote, 0x0, 0x0, 'team_slave_0\x00', 'bond_slave_1\x00'}, 0x0, 0x70, 0xa8}, @MASQUERADE={0x38, 'MASQUERADE\x00', 0x0, {0x1, {0x0, @loopback, @loopback, @gre_key, @gre_key}}}}, {{@ip={@local, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 'batadv_slave_1\x00', 'tunl0\x00'}, 0x0, 0x70, 0xa8}, @SNAT0={0x38, 'SNAT\x00', 0x0, {0x1, {0x0, @loopback, @empty, @port, @icmp_id}}}}, {{@uncond, 0x0, 0x70, 0xa8}, @SNAT0={0x38, 'SNAT\x00', 0x0, {0x1, {0x0, @dev, @remote, @gre_key, @gre_key}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x398) connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000540), 0x3c) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000040)=@gcm_256={{0x304, 0x36}, "1a88ef816c4b42ed", "a5fdeb69a751e94df50ad7e9fb434d1665e9298b01e49419567b443803cf578f", "6d02cd81", "066580001e00"}, 0x38) setsockopt$inet6_tcp_int(r0, 0x11a, 0x4, &(0x7f0000000100), 0x3c) 2m23.690195159s ago: executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="440000001100a7cc4a372eaf541d002007000000", @ANYRES32=r1, @ANYBLOB="00000000100000001c001a8008"], 0x44}}, 0x0) 2m23.420157675s ago: executing program 0: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0) syz_genetlink_get_family_id$ieee802154(&(0x7f0000000c80), 0xffffffffffffffff) sendmsg$IEEE802154_LLSEC_DEL_DEV(0xffffffffffffffff, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1800"/16], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000003680)='sched_switch\x00', r3}, 0x10) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x5, 0x1, 0x9, 0xae}, 0x48) bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@base={0xd, 0x2, 0x4, 0x4002, 0x5, r4, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x8000000}, 0x48) 2m22.033388593s ago: executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000440)={0x26, 'hash\x00', 0x0, 0x0, 'sha384-generic\x00'}, 0x58) r1 = accept$alg(r0, 0x0, 0x0) r2 = dup(r1) sendmmsg(r2, &(0x7f0000006000)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000180)="5bd7f6643e4b34774366773ac02a36673c8787d30d47e5dcd7175e1349e07ab6eba5ad608cbe4f89813e8d8f45168ea02560182a9b7c8b4518058aed49a237bd7f8baec59b0e3801b9c27f4f3d494902c190dd3f9bc00793ac7cc82dbe1b5b74a8843288556b26ad18d8569456cb01eab653fa865a96c1c0cb2fd15231e4ca47d042d60872ee0ff0188e6f96e4a9dcb62e0eed36367b9f7c2caf354f5718bd7e6bd47822b9102d92f75ac5011153fa46e10e10b5d1923ca8d24e6ea478be8b57bb7e8bd4098627331d3587a1181b44ebe7480559f8688bdc125fa2735974", 0xde}, {&(0x7f0000000280)="187e7e655af7e02b6e968ba12752ea32d5cbb93fa86a76be1c212a382815bbf3b81792f47439bbb963a8c1f40bda9107d4e00eced3d7508dfd4a46478a8ac2d8944120f5b0e3dd6d8dfbc93fa485f3a23459cde8c42bf73693b06064b23a04bdac5937a07f3a25", 0x67}, {&(0x7f0000000300)="6174124434a64ea665d6512c93e66e530b36728ae49396db0cebf5ebd9db710353b23e475fa4e2534719bc03c0e733274ea8909ff52e7e9359d519d389066ad00d87262c763e99625748e75cd94eeb1393e9f16e309fb6bae3c68ed9c6d7d014453ef504ae03ac969ca1451ebacf17eaef8a3372b080bf8d6458c983c8913f372a9403fdcec0a83635937bbeb04bb3911bfc0b0667ec737a4f97ab0e21ac5e0e94273413dd7f9a4e87476783b4224eb75f81575fce5c5f19f33eb701b56a233c3dc658bd8634211d184ef4eee60b32d74fd800a6d5cad2", 0xd7}], 0x3}}, {{0x0, 0x0, &(0x7f0000001c40)=[{&(0x7f0000000800)="0410de9d2e83a13185ddb11c5497377d9328dc06dbfe60d36782b8ee9086502e28d98a011dd59250c5a97b60ba3320", 0x2f}, {&(0x7f0000000880)="c7ec61339c2441eec2ef3d3a9065194e30984752cd883d563b54a5a313bc03c53006d2e31a2d0f34642e0a2274a8bfa6fab2ab48eb", 0x35}], 0x2}}], 0x2, 0x400c080) 1m57.670865266s ago: executing program 5: openat$userio(0xffffffffffffff9c, &(0x7f0000000540), 0x80942, 0x0) r0 = syz_io_uring_setup(0x690a, &(0x7f00000005c0)={0x0, 0x0, 0x10100}, &(0x7f0000000200), &(0x7f0000000140)=0x0) syz_io_uring_setup(0x1868, &(0x7f00000003c0), &(0x7f0000000040)=0x0, &(0x7f0000000180)) syz_io_uring_submit(r2, r1, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54}) io_uring_enter(r0, 0x184c, 0x0, 0x0, 0x0, 0x0) 1m57.017093163s ago: executing program 5: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x1, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @broadcast}}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @dev}}, @sadb_x_sa2={0x2, 0x13, 0x1}]}, 0x50}, 0x1, 0x7}, 0x0) 1m56.782322864s ago: executing program 5: syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x2000040, &(0x7f00000002c0)=ANY=[@ANYBLOB='gid=forget,umask=00000000000000000000003,uid=ignore,session=00000000000000043620,gid=ignore,iocharset=iso8859-9,gid=', @ANYRESDEC=0x0, @ANYRES16=0x0], 0xfa, 0xc2d, &(0x7f0000000f40)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x40000000000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) syz_mount_image$tmpfs(&(0x7f0000000140), &(0x7f0000000100)='./file0\x00', 0x5000, 0x0, 0x1, 0x0, &(0x7f0000006380)) r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r4, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) r5 = open_tree(r4, &(0x7f0000000640)='\x00', 0x81901) move_mount(r5, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x8000, 0x0) mount(0x0, 0x0, 0x0, 0x20000, 0x0) open_tree(r4, 0x0, 0x0) move_mount(0xffffffffffffffff, 0x0, 0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0) open_tree(r4, &(0x7f0000000640)='\x00', 0x89901) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0, r3}, 0x10) bind$alg(0xffffffffffffffff, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'blake2b-512-generic\x00'}, 0x58) syz_pidfd_open(r0, 0x0) r6 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r6, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c) bind$inet6(r6, &(0x7f0000000280)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x39}, 0xfff}, 0x1c) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x5e1a773e9e24e21f) sendto$inet6(r6, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) 1m54.13488727s ago: executing program 5: bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x13, 0x4, &(0x7f0000000040)=@framed={{0x66, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x9e}, [@call]}, &(0x7f0000000000)='GPL\x00'}, 0x80) 1m53.426631529s ago: executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="2c00000010000b000000000000000000030000001800018010"], 0x2c}}, 0x0) 1m52.74792501s ago: executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket(0x0, 0x0, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0) mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x0, 0x13, r3, 0x0) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000080)={'pim6reg0\x00', 0x232}) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r6 = openat$cgroup_ro(r5, &(0x7f0000000040)='cpuset.effective_mems\x00', 0x275a, 0x0) read$watch_queue(r6, &(0x7f0000000100)=""/33, 0x21) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000240)='rpcgss_upcall_msg\x00'}, 0x10) r7 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r7, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="02090002"], 0x10}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) syz_usb_connect$hid(0x1, 0x3f, &(0x7f0000000280)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x5b, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0xc8, 0x120, 0x4, [{{0x9, 0x4, 0x0, 0x2, 0x2, 0x3, 0x1, 0x1, 0x81, {0x9, 0x21, 0x8, 0xa, 0x1, {0x22, 0x43}}, {{{0x9, 0x5, 0x81, 0x3, 0x40, 0x7, 0x1, 0x5}}, [{{0x9, 0x5, 0x2, 0x3, 0x3ff, 0x1f, 0xb2, 0x4}}]}}}]}}]}}, &(0x7f0000000a40)={0xa, &(0x7f0000000300)={0xa, 0x6, 0x250, 0x7, 0x0, 0x87, 0x40, 0x40}, 0x1c, &(0x7f00000003c0)={0x5, 0xf, 0x1c, 0x2, [@ss_container_id={0x14, 0x10, 0x4, 0x6d, "b2f42cc05c99c448e6b757aec5243e9a"}, @generic={0x3, 0x10, 0x1}]}, 0x7, [{0x4f, &(0x7f0000000540)=@string={0x4f, 0x3, "d33d33f4079fca78dd6f54dc20a88a7bff1dc82d67cf60e4ab70f6525a7980f0244bd47fe99d8824381b5a82b901931c1fd34c5a52fb9508cef98ca292f5c0e8709b6bfb5b83af4a249ca93a2c"}}, {0xab, &(0x7f00000005c0)=@string={0xab, 0x3, "188fdddd0ef19929089822c82bd0bbb5cfc2980ae0a0e1ba0503343cf08c080286fd10feaef8f7871348bc757431f0c25bbd4eec74fa238bb68b91700fa900ea234cde92321ea053f404cf57fdf0881fdcb11b1a48e72e89ca9753d4716381c0b0bd6821dfe4eb452af30205b90e6005719973cc20ee78d936f7a09fd95bb4a6e37ff346f26492cc04d856da496f536ba5c73c724358a18f8b0e2c8010ee078c9158356b71f056f534"}}, {0x4, &(0x7f0000000340)=@lang_id={0x4, 0x3, 0x1009}}, {0xe4, &(0x7f0000000680)=@string={0xe4, 0x3, "99544582cd7fe8cb82c7c8096ca155814f4b6ff02e99dd1d31ea7920cd71400385e055e8499da183b250a77cd3ad7f9d0bd385fcd721682dab29ca77166e5f58d4a52aa5303dabe2630ff4a9e00e40623c17312de3bf23ae41bd2d6e825fdfcd554da64ca28374d6d3ec746368c3ef5866796529a0bc5ae20114caa33a1ade0ae6d659b603ef724591afd9fdd5fcdf154b28fc47247b7a7cd755ed7e2675ef7f5b9031b891f92b1586f533e3c6eddb71c529ea2fdb37fdc99f31c4df00f4e3e42a4f86a22d718d3d59248aefa3fe2504f9e00223f7e2c1cb25a18501174170f5d605"}}, {0x4, &(0x7f0000000780)=@lang_id={0x4, 0x3, 0x4c0a}}, {0x99, &(0x7f00000007c0)=@string={0x99, 0x3, "38e693da12e10a0adf413a356793d01eb30dbc3dc3dd641eecc941c3bb0f4afbfabb0d4c28736cab08359a07dc5543e157235a8bc5a2ce3e4c5204198ecb981d565154f6c9a1dfd53f119304417cfbf8fbaabe5ecc74739a78c38930ed062e169b3e495a64a2a63d46df95ae364c279de7ad0adb198786090368ad2a40daf69bea2e3fb200be9c9ffdfcf5c7f73849e25161777d9f95bf"}}, {0xd0, &(0x7f0000000880)=@string={0xd0, 0x3, "21e817fd8d157412b5d0e55896e5332e014b44f8317f8f5f70c4a581505e841ab5cb060d0452fd71f4b93a50b3c156e541ab02a65ef7bb11a6e3ef330f74ed55a8334bdc11f392dd21d69aebe9e7016e49e6e6acf1eb99fe1c6bb8ae8952d175268ba94ef5d4a2147758daf1df7d86126d117343b7532f7b099baca15eb4b29eb727438d87d5eda02809085820f1824f24c181e46ec6dbfcc402aa634ca70ff5bb8339c3d49d15bf1d92a6a695279c736cf9705f59c895ac97582ced01c021820ccd0d542d671caeb4c2a80f573f"}}]}) 1m32.338798344s ago: executing program 3: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x3, &(0x7f00000000c0)={{r0}, &(0x7f0000000000)=0x11, 0x0}, 0x20) 1m32.058450117s ago: executing program 3: syz_emit_ethernet(0x4e, &(0x7f0000000000)={@local, @random="4ba6224a6818", @void, {@ipv4={0x800, @tcp={{0xb, 0x4, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x6, 0x0, @dev, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@generic={0x7, 0xe, "0767473f4ea703c364b525bb"}, @timestamp={0x44, 0x4, 0xd, 0x2}, @cipso={0x86, 0x6}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 1m31.838216518s ago: executing program 3: eventfd2(0x0, 0x800) r0 = syz_io_uring_setup(0x70ca, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=0x0, &(0x7f0000000300)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000340)=[{0x0}, {0x0}], 0x2}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) io_uring_enter(r0, 0x5113, 0x0, 0x0, 0x0, 0x0) 1m31.543362447s ago: executing program 3: bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0) r2 = socket$isdn_base(0x22, 0x3, 0x0) ioctl$IMGETCOUNT(r2, 0x80044943, 0x0) dup(r1) mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB, @ANYRESHEX, @ANYRESHEX, @ANYBLOB]) r3 = dup(r0) write$UHID_INPUT(r3, &(0x7f0000002080)={0xfc, {"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", 0x1000}}, 0x1006) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e20}, 0x1c) r4 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000140)='tasks\x00', 0x2, 0x0) write$cgroup_pid(r4, 0x0, 0x0) syz_usb_connect$cdc_ecm(0x0, 0x56, &(0x7f0000000300)=ANY=[@ANYBLOB="12010000020000082505a5a4400000000101090244000101000000090400000302060000052406000005240000000d240f01000000000000000000090581032000000000090582"], 0x0) 1m31.510862851s ago: executing program 1: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000)) r0 = epoll_create(0x8) epoll_pwait2(r0, &(0x7f0000000080)=[{}], 0x1, &(0x7f0000000100), 0x0, 0x0) 1m31.401417684s ago: executing program 1: open$dir(&(0x7f0000000580)='./file0\x00', 0x442, 0x0) mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2001095, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x838734, &(0x7f00000003c0)={[{@usrquota}, {@grpjquota, 0x1d}, {@grpid}, {@noinit_itable}, {@jqfmt_vfsv0}, {@prjquota}, {@dax}, {@nojournal_checksum}, {@nobarrier}, {@errors_continue}, {@noquota}, {@data_ordered}]}, 0xee, 0x43a, &(0x7f0000000880)="$eJzs289vFFUcAPDvzLag/GpFREHQKhobf7S0oHLwotHEgyYmesBjbQtBFmpoTYQ0Wo3BoyHxbjya+Bd40otRTyZe9W5IiDYmoKea2Z0pu0u39Mcui8znkwy8t/N23/vum7fz9r1uAKU1lP2TROyIiN8iYqCebS4wVP/v2uL85D+L85NJLC29+WdSK3d1cX6yKFo8b3ueGU4j0k+TvJJms+cvnJ6oVqfP5fnRuTPvjc6ev/DMqTMTJ6dPTp8dP3bs6JGx558bf7YjcWZxXd3/4cyBfa++fen1yeOX3vnpm6y9ew/WzzfG0SlDWeB/LdW0nnu805X12M6GdNLXw4awLpWIyLqrvzb+B6IS1ztvIF75pKeNA7oquzdtbX96YQm4gyXR6xYAvVHc6LPvv8Vxi6Yet4UrL9a/AGVxX8uP+pm+SPMy/V2sfygiji/8+2V2RJfWIQAAGn2XzX+eXmn+l8behnK78j2UwYi4JyJ2R8S9EbEnIu6LqJW9PyIeWGf9rVtDN85/0ssbCmyNsvnfC/neVvP8r5j9xWAlz+2sxd+fnDhVnT6cvyfD0b81y4+tUsf3L//6ebtzjfO/7MjqL+aCeTsu97Us0E1NzE10alJ65eOI/X0rxZ8s7wQkEbEvIvav76V3FYlTT359oF2hm8e/ig7sMy19FfFEvf8XoiX+QrL6/uToXVGdPjxaXBU3+vmXi2+0q39T8XdA1v/bmq//lhIDfyeN+7Wz66/j4u+ftf1Os9Hrf0vyVm3Pekv+2AcTc3PnxiK2JK/V8k2Pj19/bpEvymfxDx9aefzvzp+Txf9gRGQX8cGIeCgiHs7b/khEPBoRh1aJ/8eXHnt34/F3Vxb/1Iqff8vX/2Bz/68/UTn9w7ft6l9b/x+tpYbzR2qffzex1gZu5r0DAACA/4s0InZEko4sp9N0ZKT+N/x7YltanZmde+rEzPtnp+q/ERiM/rRY6RpoWA8dSxbyV6znx/O14uL8kXzd+IvK3bX8yORMdarHsUPZbW8z/jN/VHrdOqDr/F4Lyqt1/Kc9agdw67n/Q3kZ/1Bexj+U10rj/6OWvL0AuDO5/0N5Gf9QXsY/lJfxD6W0md/1S5Q5Eelt0QyJLiV6/ckEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQGf8FAAD//yWS7pw=") 1m31.074013192s ago: executing program 1: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x3, &(0x7f00000000c0)={{r0}, &(0x7f0000000000)=0x11, 0x0}, 0x20) 1m30.829417835s ago: executing program 1: r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x6, 0x7, &(0x7f0000000040)=ANY=[@ANYBLOB="118502000000000085200000020000007d8000000000010018200000", @ANYRES32, @ANYBLOB="0000000000000000851000000800000085100000fdffffff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffff3e2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{0x1, 0xffffffffffffffff}, &(0x7f0000000400), &(0x7f0000000440)=r0}, 0x20) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000380)={0x1b, 0x0, 0x0, 0x6c7, 0x0, r1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x3}, 0x48) socketpair$unix(0x1, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) sched_setscheduler(0x0, 0x0, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x17, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xa0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup\x00', 0x0, 0x0) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000002c0)={@cgroup=r3, r2, 0x12, 0x0, 0x0, @prog_id}, 0x20) bpf$BPF_PROG_DETACH(0x9, 0x0, 0x0) mkdir(0x0, 0x0) open$dir(0x0, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) setxattr$trusted_overlay_nlink(&(0x7f0000000000)='./cgroup\x00', &(0x7f0000000300), &(0x7f0000000340)={'L-', 0x51}, 0x16, 0x2) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r4}, 0x2c, {'rootmode', 0x3d, 0x4000}}) read$FUSE(r4, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r4, &(0x7f0000004200)={0x50, 0x0, r5, {0x7, 0x1f}}, 0x50) syz_fuse_handle_req(r4, &(0x7f00000066c0)="a062030607792c01386f28a428828947de99f79cc542703d923c7cb9d4e1f6fd95fbf2f747ab32f6fb041861fb3f87a88cb85405b4e73c0b6b12c81e42a9f13d82c32b7ddb172bcba1aac5c38f083747ac179f08d4d6d342a87ba8dd9bb7a9680f27433c3357b4f6ac97b19a973592f1ac6e7853a0b15ba42a28efb9cc30b146346b546018966e94976ca28f26a1950dd64c0adbb0c2e09bbd9caa9e7886a2b3d6e2b6d6616b718f1322ea2881ca59ef73948b1bcdc2dd3970e63cbc1043ce42af0ea1f95d17268cbc3ef062c8c31a537e94a20c1c505a6022d5ece7f51bd9c754d8c47cbe80bbb30b2159991a94dd3a25e64aff8a7a17374b5a71e0c7c241cbfd7f084e18a50bea512ada902210a3881ffcd42071ab09c4d80139d8980d6dc5d12c2595ced445caf22f80d8fb1a4c243da47fadb8e28e9c04fea820a8a2f032f5adff8b7d9269e63db68d196bf7f416405e52b6b8abd8bb9d9694b8b5eddae348209963738cd9710bd6c291af1c8eaf0e52d2f2f24bef8c8bc9f77eed40104e07c8ee1b4cb358fc73e2653fef6232b5e9f5d0be26b91a0b7967ed5e3bf10c449424ff4d11951d963677001d9576425d6a9c4503268a407d74854f5e1caacc0ccc463dc56e684db1d80b370da238915579ab82cdbd7d155adf10b96ed71100ea92834e8a4e4f5b7b831bff6fb4febe01bb398ea4065446f277f107aa3cc06e0b7a6e98434bf57744ba9ecb8effe704d7f852e16bc33ac113649f7540b7a7a67cf5493b400ce06e571d485af1732938b79ded4de7dad97a7e1c0be7bd479dc264647bb76503168423e3f6fc95f8ac8ea35e39f476ab54e88286fcf73eead1f794784465592fe4ad112ac63bbc3b3f35b87c40bc5fa6e3ca6cad878f9772a61a23aa00491a9e2442eb90a32af2bd74e99d075bcda20288bfc30f3b00a7e8e1a0b4791573abd65284bbb53e2b7d667239b95b332dd423e4d7c512de559bd53fde5285add9795bda81ec142620e693af9c787a4499dd76ca0d77d9c7c4043e537ec6c1cd0b9a642b12adc782a0e00f6c1ed7379d5fff4c2feb19182db977f657b195e4710ff00f78e35a146119897495b0e1a0068a6606292ee72bf65adcd2cd29b4e59a4b3f82eac77d5254013d03d2fb2511975558906741912d09304f0d4cf08c8f62690c67968c869f75a4025224d8e84baf7a42e01b4ecf7e55d7c45839778c2266880d1bb73e3aad618d1a4f8d5a16914d64d70438a88512649fd4caa90506e5a2d58a33ecaebc9b2e5f8a4fbeca57c829ae02fd2dc146e939c3d295ada7df4a07e74b356c6ffd7a9c546b9eddf7e013cbcb2b57ae0d225249f7e06a415681d9f597a060fd55e39bd56f04b863efeca458a0cbc54b660db50ca40d27a3fda3416860e691cfc780593f06b467700968bb918c32547e378b14b4e0dcd11cb0b2fb36ea70946ac62290184b4eed38b51c322a75367b50f558e063bf363341a17c28ddcbf9ce53da06f26303fd156423a25f686809bc9845a78e0cc3d94e04bc8da85f22a4a8ece2c4ac2c79e54dcc4eabc61e067060ad880377a71fe0c2c0305256e4f3c637575f086e4ae3d7ab5d106fde03d24c47dccba3da23a244c1f50a4f60cd8d71b77390c5ce6d5612fd0260a2f33389b064ae6acac783eca62874232fd3808fb2188151a43de6cebc7e245106183f7d929f1eeff6f972da3e3d967170247925fb0f04bf38e88d06321f9ff9d2c296553d842b69036a2b6de2aad3879aedee723ff00736f7b0dffe6182104105ff0f0b636f5192d6bb5ae7ef950825827d2f3d6285d83aedca3f31474e0ad50ce6290a0e546c30d900e5b4208ecc8b3aca0ba3d110fc3c0a7e004a53e5d0ba1cc1c2bb42c3dbcbb4ceb6674151932ae56f6b03cc34ce450c292fecd2456ddcf42b075e6fd49305fbf265a36f3cff61321dd60f16e844089d659130947672a2d059e04af9ef653e8afec926b5a5d411f60a2a435437095a1df8dc60a616bd1a1ce7b5251ed8f905becffebd635eee8ff0055c40f146f1350a406b853ecb005c6ede4dc270ce6751cff915aa27f5f6b0736da14c9949de599d57868c29cc97ad03bd89502a34b88ad29c8762d0dc24a6df759821882a32e70531cab51fa1752a4fc49cf0706cb24d203174b2940f29ef8b0ce65b40cfde4e0c7310c685cc8de8384e485a951192fa8c36c11f9b88a48caf027dca480caa4fccae70ea6c837eb82f926ad7691c7709f217220d71f6e374fb8522a84c118b5c25f3d56acfb25afbe676fc9e574b6c5a59c00a0bbeeff61fd82a1677f3da9bb596133db491a8f11b945d930c8a67de9ce80025c764d518efcbae25d9194dc96c31ed02c63b1ac976715f7233ffed7cb6e929bbb5afabd34bc37c095acd0abbbdb1ea48e40a30ac99550f0ccca19ecef5acb2604c48fffb53b352d114fac72d6fc019ddec558406668f773fed9476148133c0f9ca4d1fd7e70dd04bfa089dc57e5940f29a5fd33dc79913ff48853794fdaf891d71de94c4a4fed0544e09f2bd578b07003031b8602f08ca8a79fa5ebfd5477f4d4f031c3efe0db273446a99d0cbe21a3cf43f3b82774e4657bb4f9675adbaf71c52953f0b18a61e05a9c770536fbad215848f8238e8730b9085189ea4621780dac500d7d7dc7815b45e232f86592498f1515ac8c50306013524cc5f0a74b67bc85d435d332ce69f00641c86a3e91be84b78ac358f35b18d69679df4197d3be8554417cf44aee6dc623f68ce3388df18168efa1c87c776cbda792f6110b6af178eb8200a91dfb72c1e23b5e5a66b5a3ee3f4c2bba2ccac939dcb036006b86e894093922a95fd70baba9424a3d0327a0f209fe10b39f3cec3f669d301a2834e58fd56f94d622dccf653f08e776c9f3e1b0e5b3cdef133834b93c41c70438d51a0b127262868d49ca91623c3d8b75c2cce0b771b9ac941bb96029e782224a3686a7c0dd164e162ede667e0e5817e7bde85ad3bf30a6a5bdc420f751679be74a02f84aa93b971c3f45a67d155f7ecb1d5284660918dbf102bc16f496fb62a1290e6b88ddaff55740583cba13076afd623276634e0c11663be50766980949095003ef5bc6f90a98bbad436b67928513e70115224f672ca2a24e27bb98bd5288c49ea23d47ef13c5ff28c43ce53ca16a6caeccc1f601226253c4a38a88a93828f6c800547cadbaa6d7ad26db618cccd38a671507cad5ba0065ce2edba81a059b95c36c5d04ab456fd6fd81ec3738ebe546d973c0886a5e7b83dd9c2f58f5d6c19519e67575b3732a486555f8d8c4ae004a62e8d07ab2c8ef74cdb96aa99d75aeb1c25985996f281d71106910a3c3da17de35e04dbe00e2b7b75ec2fed177a7f2d04fbf68bd0b8af682b30911867d4d1497ba060b662f4e97a8e7fd3613015cc34302377497cd08bcdc29f06dae240820d2ccddbf8c95c76a4ba5d3e1b37a62369ce3f79fb74ebd9bc82c3fa3edad4034b6715c2853fa7781c974b5a4e541e8b69bf4bd653fcce4e4340d9409fe9112e4d253a3b7e9d43f4426127b10f2d5d3fcd2193490f7d933e0cc53dae552f2d7c9d77b8f9b27c59105cfae43a0aab314a0820fbb5684bf20986e3be215688b42938d272c4c0edd17bcdc84a514d2483456d6cfb4f5c1218859ee55bfc77da36c9c75734932a12fd03df38232063ed92024f8ee7c21f314129feb10670bb4d6a0ad4fb3dc57a64cfe6509a0770650cdec0efd5e0b1fd29433cf871c9ddbe648319bd481357326ac1eb32b4bef4ad89ab6122e92dc786decac88624a4a3963ae771f8023b9a92e446114764c53d7efc07e3ea77a9daac5cabbe648a223e249db62102ef7b7b6d06df46b6ff913911b89848a47aecc0563fb06b6d77fe1daf4541cf619105ab68e0bcdf7a05af22b0551323bf33dec8167df2b7fac62dc9e286dd3462f488c82ad194f7fd5d3ca72fe9c0c37cdb6d75684326e5cb30319ab333fc70bb197320acda161d2e685e78ac2cb1417223f64742b12a316d590b18a4173b2a105a381baf6f383ec2e81d04860b5cc536475d7c5d05bd6a7db1a5d93930bacba8c1de63707bd24785e19fc1f15ba724660ac00d0f2ebbcd5528b8cbe4f3ca332e8611e937a310fc79d234be6c1cd09d6a5cb06ab36a9d667188144c81f86aaf0851763573b36cc21462ba4f3d6e95d38d1e9b943085661d234ef6d079bc9d84c7447c85baba88263451ba10559e1ce326fee5074b26b54872e690a9a1e589e1c444daa3224b292bf9ec4a604dc512760084084f27386c89a1190b8905f0d720508c0ed69272f396725805480188aa4602a26e833c16aa5079c0577a8203ec0b2b929ef3b410bb427c168b7fefd1be652f06efc61c7a295a5d07a9fd61bd5bfe67ac5f74e485a66c92950a1b460257084ca3a3489943ad450300967234b487fa3def4010f9b715196562ebb0846b7ac3eba47646af6285582b4402f64aa684dff7d9cf81fbe1aa88959f7906f06839389f2ad56efb5029afe1d5ceac99a3e698f49ff0da7db06d7c9e94a8773a13fab93def139667b4dc6b741bd2769da7786acecbe315f9006bb6b72abe5bdc587d8d5aa8f67aaefef68197fd2e7874d9b7da2c3a5618720c12e8fc31db3e334c47abcbf10c6181ec14af4f9e90e19a35360a793b1e9b336e49b3ed67568a860cd4c298f967ba323d315821959629e5b7aaac367e1ddb8a1c5d61500afa69331a4c90861852f533657b28b97a343bc531a11ff634b157a6d859a35f0d2a595375e11a32457575f1d73da033bf5eeda12337b9fdd46bce192d3aaaa240a8c65bf47704d6aa64a9531f9de14a96fc9fe380db35dd5ec52321c67fb4c18abcaf22fbe8f602ed201232251317e1a1b71e1e2c924a92d84685de348eec97fed954b7f6681ddf521b4ee03a1aeb2e446ee2a7f4dfa37b1c53831139fc624c14dcc4d144ccdf758fd9f344b4cdc1df70f6a24fa78cab136c912d1ebffa7053ccbc9b9445762236dca409820f738370117d5c369dfc50fd42277f14eeaf29110aedcd503008c42914d04e219a8b6c01e337d04724919b07157e2275ba6365a9dba5ebc8019bd1aa1b8668023f64cf47e1b49b4fbcfc10d560bb74405c90751504db8100d8a8a1a3ff84d98f1262fbbd6b962f492b9531a7411c08e7e56eb0f838075f754b6a395b6b58a8e4c47eb46bfaba2ac94800a396749d18ba0e6219f8d616ec71a1e60b3bcc24e19d4a20ddbc6a871e6d7efa50a362610598d892a5adecbcfe217534deee3620dfc88c7992ec2e710e083ef0a50c20621405f654804d1af4f24d22b8ca48f26303e6969127a74f0b276a5624c3b84410d4d5ee3c62605876e60a88df2bd6e8db8c7e486fdb452178563e7add6bc126b721b9ef8b12181989b87031573a4010d88e34f15a2344e4808b74c99ad68f0c2aca4e8d504397c03e1328c4b1ec43fd902d206c3cfb63d7541ac57fdbc70b0033f87514286101231fe7e79668c802e1c23d61540cdf13a5e675b736e221ddc29ab747d9c64f6213f51d3c1ded2e2b0efc4e45183d90468f61ec1720f7a0b87947e2c54125cebe6563ee4415d886bbe869d17d36371c942c11db1e13c1dd40ed24cabaf7ee80eae6c4db934e982d9619d753dcd679c5650cd95d21582e31b259043a0d03371cd294f4cc028042c75070c9b534a2d79f164ab9d773295795280d1584ca664b53b263fe2e23534d27b0d85742fae8061e03187795129dd272041c6eb9c10c3406da1f752f4ca697bdbddd74975cd4dbba5687fb30ac4fd5d2579494eac73053a63821a852cf41a80f6668006f7e1c4e30b48d638ebab470c558d42baeed1adc8fc71f73e95f3ca212a4b009b508e89898727f805685e4e7650a2961d62c117d1ee9017236a6bffa0c36ae11bc52d346c83399e43c42cdb9f443aa307109a97ee66ceb7a29eeb2f1a2bb3ee1492229116db07301b2aa4126aee7775daa2d0eab4d206fae11b3c6b565dcc4c7b4dd1cf2abec81150d0629803f6eb221be384b8772fe6d6c4fa98c928a9d0a02e9ff8bb7a2168dbebe140323d93bee8983c496bccf752c372b795a3493624cefb3cfeb4307bd39826cac1ea3f18912deef1b8c8db30bc016990a477bc0a925fb36453a9e21354b2d7e6e3d4ca4dd20f27a8db05429d44b7a485365191dc4ba977a815958faf6434813a9f4046054763dd55dbb7fae892b746e169ae046ae3361a9f75cf622b03f75b1633da864395bd1c3a594fab0b1fb37f088dd1f2776e2b795c78635c2026a8ce7ff40968a1960786049a217dd8872ac0c01f4bafcf2d3d751dd46a5e1bec00540a9ca7afca3ef37575d4a8b1291d05be94913092890a9b4bfff39edbff307e5654896e79228777c0f8ea46c55bfe19e522bf457ab4e6b0167d776dbcd0160598370a12c4a03e4edc82b245a7608797b03d4ed89dfc2a5bf07b9fcb251fb8608553f3b3774818717a9aabe6b2ded811515ba454b390a6065bbc59552f3bfe51d38f139792e1aae60093a7c5770b52a1730feb1049c14a7d5261d644f6b738e22ee72aafa422bd93f61e1ccac0a5ef4726c66f61bb539acb937bd63da82c700c0860be90ce5621ced22b52b63d041266fc258fbfa6641aef22e97804e5138ad2ce4405eaf76bb0acd7fc61b2d6de4aabc5c28a850fcf219cff77c97d3cb6bec0067c171b912d11d82c56cbad56c0032a9657d4cdd1eacaca53f40f5e3fe911127e1cd30781351f180e1413933cee2d46ca0eea31ee01fe4e99a567edd0b10565d47b87c8a48366143e889e52d0ff13c920aea092c2545fa9b7056204fec156549d3c0a997bc1cf4a01338483bf5c69d6958ae038f1c3e3b84baeb2c1f9e064c0750602c34c6c483c316391d975f94f21f6dfe74e92c33228b408a9e2b9abcda33c497abba9c48a63e5c8f1a8d0f4c24d36a44e1601e8a09e8a5c7179bd4c44b17e542dd99cace87aab60a5e53325d544c991b6fa5deffa49fd886332980deeca9229cb2f67f495a7b743153854ed81e1623b12dbd65512d08a5732fee2db3fb455cf6df5a1701a2b8674633c6792162dc86ac76e30da225b0167a7e704ad33ba694f9c902afbeed58eef609874767053f59414d4d3eccbbcdbc7eba997c71f9b1f5139bb020d5dae1db6e2dcfbb51b5371b08bdbc3312b05ee6d8c03c8b5a7d4f23da45f276394f222b1a0bdf4e2603243cdba60ee0530387c88bb457ca9932f2283a4d55bb1195e6d325ed93f714e21908b1baafa467f1cec7fa26e5c384ee6828e77978bd1abd014de549a5e5966f2b2f4ba000f9d77f1abfe3a6c337cdb852c1ec59f61b63d543f3062dd2616a163ed7ca60168b0347b5c5646a678dafb4c502c333a0a48f0341b47f5c5946e42e571db0bfa0682a449ca64e71b5661a842975182399245c6de241512c67ac918d7e0c5cb66565010e881b8333567ca584321ead1c383b099d8bf1c56dac08cb218cde4226ad420d6d6313f9c4884d6394722304fdaa76e61db8c0d54eb1151344c41ce1130272928eecb2f9f0f23c752622374eb1223a80efcf0b937dff7d813d7be0340226c0a7b163741d9aecafcb7ddae5a219323323f621c802be82399e06d2e1cc582e759ffa303c5103f8a44d7129d2853b02e506abda57ad2836d7ff16f95232149fbeb8b62e586d3536bb4ae042ecd9e25d1dee789353071f9c89d4361000c47b763556e8902f1f25cbd8ae71679e03ff27db0ec75eeee3fccafc7fcf22c377ac60d3c61a43cb53abf6162118f2efc86a5ce80e69a02bc1db80018beeef6d567941232e4412a958ed012bf7a832c1eaf68134ecabc4927ad666b3d0f21d4e8d52fa37e0a9751124efed8bf47544299138a6f69d89e295677f12606c79b72451c263fca3eec22bf0c47c641159a0bbfb3b2b03154af533e5c06a149e52adcfae31bfc55f30064a8903c8d3b828d275a937b1e4adffa0597da5e253b50bd71b33f057ffeff0b2a0829b3bf33350fbe67c7c79034f80d69e6a21be495a848d328f416f15966491b218eab390544e39d498258ad80ddae248634c845cbe6f1c1e93e7c2b02075411e075fe936bcc75f4a4e1a3687cb3dbbb61cb31ddfbbc87a1859b3a48fccdd8e5915c8bf4eebe8f7093cef6a7a91c8682915f9908c854c483e90c9643467292884d284134dbaddafdbc74d94a5f9713719d62b4f6b4236803d210181847ca27129fde264156895f4e1822ef78a3b215ef56d7e36d2b94c93f5e931a0d13a3a3030061ce62de595eecf47eae6bf698530145757700df18f66fd7261a12c119d6679663b3c0f99d1705aebe66dc862eb21ccb7360b93f54507149b577abf521113991e06f345e8282fdc18de673e1ca7b188ee34b14f37f86ddcf97fef0b913c33cf8e5d5d33707dbcdbe4b27cef056670252f186735cdd02f6ed6bfe5318a704f00e34ffc4fda9855bf37c51be6a7423e44dd8a98883c8fa82ca37c90d681fb7a0db915576b50e49aff545b99aa3aa6343b814ba0bf64e53b2a1edcae2231bf20d65e4bb4da6dc8382120ede652adfb7c30a46e0ee784cbde74563d83eb8d89a1573fa104fddca9d4833c49dc904bda905426c7dee3e48b596c8ee201bea57fedb1a0649457eaac3c5b5f4519af3adb66f10b861e711cd4034448890e15047c2f8902588268b5645051f3f3968ed8d630e050ccef0d01b61ffeade51e4e72d8fd46bba4c20009396e984c424d174934a67a1930665fbea04c809e7cda0a2cdfd3a14d6b99c3a8d8b3691825830456876f188ff871fc861e4c6a0ca377dc1f0cb0f929f7eb1f5da045d9a588a393312acacca5c5a3b15bb1b488b08fc40ad65ae2c1df187eccd8377525a81d80df57579ae52f775fb2efdd172a41c370300fcc594c2635dcf50e9eb9d34fa8b4bbfd13078422e3a7734a8ae6cc09e39d07c7ee19838f8da4cbafe4162c8f8dc44e284840bd0a5c80bfc657c22e37e0d9a96dda34a51ce616c9ccdc95955cf85d93860da902ab30f11aa333eacc25c47981d8636038761ed4d84fcbb0ca92dd2e07863b9505b451c3c49e36a172527578123049ff2dc2b4e258a3f698a12ca4705a6fd0ce6bc4f1767b4d9c2e57c9ed1388527964ac96ff5e4cf5ad6fdb6a853b43905df32af8bd788b520fd526cbb95195a1bc00d654cb080acdf67938517a6cdac741d86730358be16465b4e1301f47f6a444c4e8d2980b8bd98a8dcd6617cde0b287e2d1f59167b5c445146fa49728111b8a2729428cabd02facb8fbddbdb2769680f288648d6baac53e0d909335da3e2b4c13ebd41f32820c9f491e9124ca444a0532f60e2816e15a5810baa91f64454aa355f9d362c7d1a461561689d08b1350a216b6f1bda57aae0706b3710a1b8e52a7e3084e600b5ee3dc540bba0c16267d549304a7840659a32e40070715c9bb912792d4a7b84fa06e73b9ddbc2f06c4edc19d25f5a198c7e3fc6226842e6215da5d826fcf5949612889f78e9de39d4e64b86b7033b5717a21f8f2b81c799a3fc0bfe6f5837b252eefa360c91a6148296bd19d50a343d909c1edf5261e70c8dfb2c488940cf236941ad3fd01247e37902a4bbfdd1839f7c92c260a2c494022fac08629303c8e54108d78ae2c94289c7f998ba3b622b48931ee7c17c59f5499d282467a1b8050acc94a0b17b21836c80b69f519b9b077d18e33c027faad562fa09f2cc6120f8cf5ee18cf7db9d729ffbb9de58885713215b7aebb8c98d9fa009be0a9ef3ceccdb2b31968db555b26c5c94e382d06ebf6d356e8caa85def5813dd1596d823924c4fb63dba5bd094cb64f204d1e59d31287715f831a1f0be95d8749f2166ba0b0b6b64a37991be1fe1c1e922835f2da0c074ec9413561d52166576b1c4f1e18f078dc046d1c284964b80217b55c59a474740c3649116b33e927479736bff6005859c7c00598f22cb8eca38af802f4c86836e8330492ac7ef3707890a8ff856dc7786ed769bba75b18484b257b3b022eeb51aa720639f79e6e6bd3d3c9a61f7822abe562867b4693f0b2f61135aaeaa510b31112efeec48d2602c6d4f2ddeeb51bb03ab18c18d8e127a37e22881febca47742b9332d3f2251003b1a46c40eca111d02446466b669568c70971bd33254ca577777f126f86f8a3665f065b645ff261e78e0f532e83a81b99c5de3488de74ca82daa0e4e7404eff911ae955acbb800f9f91b774e472bc14aa92817b6d85877b1861a6ca92c03c83b6f1490068bad8eab1f58c9e91e1029683de2ca45c99966966031ee86d8c9995f0612480e2a6d5396e8ae361d6fd2e24557613a1191f5019d4c8078628013512ea3a59532efffa6cfe4970d28d8c7aa8c866c4275ff2b0b4ef1a7e56854d7ee4bc445713da9349d13e30a4a802cb9db2f10280fd9ea043b5b3480441e8ed2d907eae1259befba9d87a04ce42b0010c70af157b90e0bf72549852fd122edd6cf3475f76852b13b4bf887cf32e25ad34aed7fd5a6e97b307f9b4ff1c07b2b55beef5ef3dd96eeb2a57720c18209d911a55341cee67e6ff577f7acaba01c2c9690b15a3b8aaa5b9d734196467a8c074b2eeeb5ae931ddf3deb15b1a8d603e72125c2e68ad206f2c4252a659f8248ff882a8e54126ebc0c77a46101072272460e683d465279a3695be6b64c9eeb4a576d95fd520be42eab5c95cbace0dfd80e2d67bab9f683a1cc9c006c02f0f90a21a0f51218c628f5608fbf1abc79aa63452bde1002383033578f32980e3779a8edeb226f6d3f9b36d8f07bddd7479b60346a4b4fa883940e3aef8ad8d834dad4405960a4409a6255e8753d0c0ad0960ff3ef48ce93fbe6b165e86eab36fccb8b989f5b54e6ccaa19749ff065a0a732d15c41b9072bbc6f07e1fd5a3df2775874e46b61ed50714e8c403fbed6884ec06f52ab71d2c191fcc56ac0b17ba3c46d2dab3e11c79383bd8867ff14b5fbca73b9ae594b6a09fb73a2e8f15aee59150e8d6d3dad9659025d045bbd1b9ca257c67bb78abe8f7eb9c8b3bc32951c41f7390bacc8c7059a2a9b078ab50413605aec604e4666a6ace765b0e7ab558fe6232f2703d07811e3d0ac5bf9434e87876e99250ee9db6527a8ccb4a3ee3bde738563c9746f941cf2cd7efacdbd2593cafdbe5171864b2982b54dc5a32c86638c0e650a331625033b8dd65851965ae791880349d5cd52548f4422a317f96ed79e7ccf3bd671e6dc70365f521c65206386eb1f99570a544d11b3d36fea285f8a3770ca303a965a0c1d598ebe3696e647be734ccf760d3d47dec75e236d7ac08019b6622a7b9f08bc8f0937ab75e75a047a7386befbd56fc4b2f89c852dadce8df946cb3fafe4eed2678caadf1a913ae32b2c0b8a37984cb700343c5e24609f8c5ddeff5e653837a9332a41c8e21466a13d79224125d5f6a4fef79b5adae7f4ab7d351c55400545edd3c00637bd27164828925e9bb5d79f1f1e6eb3270ab799ae38772f779565d92c47503de695f7aad7ddacda6f6c71e755b3737231b64715bf07849d3466e4f92239f733436ce674389bd16900", 0x2000, &(0x7f0000008b40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x90, 0x0, 0x0, {0x100000000404, 0x0, 0xc, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000}}}, 0x0, 0x0, 0x0, 0x0}) readlink(&(0x7f0000000040)='./file0/file0/file0/file0/file0\x00', &(0x7f0000000080)=""/167, 0xa7) lstat(&(0x7f0000000000)='./file0/file0/file0/file0/file0\x00', 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000008c0)={0xffffffffffffffff, 0x0, 0x0}, 0x10) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0) 1m29.788439545s ago: executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x28, 0x3b, 0x107, 0x0, 0x0, {0x2}, [@typed={0x4}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x1d, 0x0, 0x0, @uid}]}, @typed={0x4, 0x8, 0x0, 0x0, @binary}]}, 0x28}}, 0x0) 1m29.579678665s ago: executing program 2: mkdir(&(0x7f0000000180)='./bus\x00', 0x0) r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000100)=@v1={0x0, @adiantum, 0x0, @desc1}) chdir(&(0x7f0000000300)='./bus\x00') open(&(0x7f0000000240)='./file0/file0\x00', 0x0, 0x0) r1 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000140)={'fscrypt:', @desc1}, &(0x7f00000001c0)={0x0, "28d7b07d54891881fe02c1203fe49696b9f26f2da4149683f065714f8a61d1f32c99064bbd27b2aa77459cff33a3a98350f1af9d51ed5bef3d63520d260804d0"}, 0x48, 0xfffffffffffffffd) keyctl$revoke(0x3, r1) setxattr$incfs_size(&(0x7f0000000280)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) 1m29.360465652s ago: executing program 2: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000000c0)='GPL\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='contention_begin\x00', r0}, 0x10) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r2, &(0x7f0000001680)=[{&(0x7f0000000080)="c7", 0xf000}], 0x1) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x5100, 0x0) 1m28.863757758s ago: executing program 1: mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0) r1 = openat$cgroup_devices(r0, &(0x7f0000000000)='devices.deny\x00', 0x2, 0x0) write$cgroup_devices(r1, &(0x7f0000000140)=ANY=[@ANYBLOB='b 75:*\twr'], 0xa) 1m28.818112439s ago: executing program 3: r0 = socket(0x11, 0x800000003, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000640)=@newqdisc={0xac, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x7c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [], 0x0, [0x8, 0x4], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x18, 0x2, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x1000}, @TCA_TAPRIO_SCHED_ENTRY_GATE_MASK={0x8, 0x3, 0x7ff}]}]}]}}]}, 0xac}}, 0x0) 1m28.791839543s ago: executing program 2: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in=@multicast1, 0x0, 0x32}, 0x0, @in=@loopback}]}]}, 0xfc}}, 0x0) 1m23.883661997s ago: executing program 2: mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0) r1 = openat$cgroup_devices(r0, &(0x7f0000000080)='devices.allow\x00', 0x2, 0x0) write$cgroup_devices(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="62a02a3a3409776d0a89"], 0xa) 1m23.881511374s ago: executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10) mkdir(0x0, 0x0) r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0) mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000080)={{'fd', 0x3d, r5}}) socket$inet6_tcp(0xa, 0x1, 0x0) r6 = socket$nl_xfrm(0x10, 0x3, 0x6) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r7, 0x0) r8 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48) r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x12, 0x4, 0x4, 0x12}, 0x48) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@map=r9, r8, 0x26}, 0x10) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000048c0)={r9, &(0x7f00000047c0), &(0x7f0000004880)=@udp=r7}, 0x20) recvmmsg(r7, &(0x7f0000002100), 0x0, 0x0, 0x0) ioctl$int_in(r7, 0x5452, &(0x7f00000000c0)=0x14f) setsockopt$inet6_tcp_int(r7, 0x6, 0x19, &(0x7f0000000080), 0x4) sendmsg$nl_xfrm(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)=@newsa={0xf0, 0x10, 0x1, 0x0, 0x0, {{@in6=@remote, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xa0}, {@in6=@empty}, @in6=@remote}}, 0xf0}}, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, &(0x7f0000000140)={&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000180)=0x18) 1m23.881205997s ago: executing program 4: r0 = inotify_init1(0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x103a42, 0x0) inotify_add_watch(r0, &(0x7f0000000140)='./file0\x00', 0x92000101) ftruncate(r1, 0x6000000) copy_file_range(r1, 0x0, r1, &(0x7f00000004c0)=0x100, 0x9, 0x0) 1m23.844422545s ago: executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x28, 0x3b, 0x107, 0x0, 0x0, {0x2}, [@typed={0x4}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x1d, 0x0, 0x0, @uid}]}, @typed={0x4, 0x8, 0x0, 0x0, @binary}]}, 0x28}}, 0x0) 1m23.844035008s ago: executing program 4: r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000040)=0x9, 0x4) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) sendto$packet(r0, &(0x7f0000000200)="0b030e00ebff020002004788ba96a13bb1000000000088a8", 0x5b, 0x40, &(0x7f0000000140)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14) 1m19.629657733s ago: executing program 4: recvmsg(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000080)=""/13, 0xd}], 0x2}, 0x0) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0203060910"], 0x80}}, 0x0) sendmmsg(r0, &(0x7f0000000180), 0x400000000000117, 0x0) 40.926625394s ago: executing program 3: eventfd2(0x0, 0x800) r0 = syz_io_uring_setup(0x70ca, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=0x0, &(0x7f0000000300)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000340)=[{0x0}, {0x0}], 0x2}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) io_uring_enter(r0, 0x5113, 0x0, 0x0, 0x0, 0x0) 40.7014654s ago: executing program 4: r0 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$VIDIOC_PREPARE_BUF(r0, 0xc0585609, &(0x7f00000001c0)=@userptr={0x0, 0xa, 0x4, 0x0, 0x0, {0x0, 0x2710}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "ead945b7"}, 0x0, 0x2, {0x0}}) ioctl$VIDIOC_G_MODULATOR(r0, 0xc0445636, &(0x7f0000000280)={0x8001, "8cca0285776d32e9da66b9b7fe31db4037044216594aa2b5a8685cc661c2298f", 0x40, 0x5, 0x8001, 0x2}) syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000006c0), 0xfe, 0x246, &(0x7f0000000840)="$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") prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) getpeername$packet(0xffffffffffffffff, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000340)=0x14) preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f00000000c0)=@broute={'broute\x00', 0x20, 0x2, 0x1, [], 0x2, 0x0, 0x0}, 0x79) r2 = syz_io_uring_setup(0x110, &(0x7f0000000140), &(0x7f0000000240)=0x0, &(0x7f0000000040)) syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x24, 0x301, 0x0, 0x0, {0x1}}, 0x14}}, 0x0) memfd_secret(0x0) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) io_uring_enter(r2, 0x47f6, 0x0, 0x0, 0x0, 0x0) 442.52625ms ago: executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000000c0)='GPL\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='contention_begin\x00', r0}, 0x10) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r2, &(0x7f0000001680)=[{&(0x7f0000000080)="c7", 0xf000}], 0x1) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x5100, 0x0) 0s ago: executing program 2: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-ssse3\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) sendmmsg$inet6(r1, &(0x7f00000025c0)=[{{0x0, 0x0, &(0x7f0000000d00)=[{&(0x7f0000000940)="444d1706b255d15bd373e0c2c220d300ca198a2fa1bc15101a25232aca7866ab0a8bdbd347b32f2af65ae3839a11013a9b594a239e6d4bc1dabdeb3e2ba4959ee56eb2cb5636712f28e61f09c884d65779a04b721225708b1dffb5421c7e03e142aff8fb613cb887927507ae669bed0184e4504844718f133c11663a67c49531021eaa8e12429b121e7b6aff642a13dbd1c9cd5df03c78a2a0fcb8ef1b32f8a967accf91d3be585adc3cacc1b0", 0xad}, {&(0x7f0000000a40)="afb5400deb67c726a2adf3b961e6b1b7c265cd5b8d1e33c2a31608402a7de5cda383336ef6e27ee95759eeebf2734773df83098678a64adea61a07f31e4cc22649080da189ed1e9b968db4e451d3af01b01649", 0x53}], 0x2}}], 0x1, 0x0) kernel console output (not intermixed with test programs): [ T6399] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.422781][ T6399] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 165.433733][ T6399] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.472517][ T6399] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 165.522848][ T6399] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 165.532854][ T6399] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 165.545905][ T6399] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 165.555949][ T6399] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 165.862390][ T6253] veth0_vlan: entered promiscuous mode [ 165.962295][ T6253] veth1_vlan: entered promiscuous mode [ 166.179642][ T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 166.219889][ T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 166.249379][ T53] Bluetooth: hci0: unexpected event 0x05 length: 6 > 4 [ 166.289323][ T6253] veth0_macvtap: entered promiscuous mode [ 166.312362][ T6253] veth1_macvtap: entered promiscuous mode [ 166.340354][ T951] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 166.370133][ T951] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 166.407935][ T6253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 166.419044][ T6253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.429069][ T6253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 166.440505][ T6253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.451767][ T6253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 166.462412][ T6253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.474377][ T6253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 166.494644][ T6253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.505805][ T6253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 166.520703][ T6253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.560568][ T6253] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 166.609451][ T6253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 166.624906][ T6253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.637145][ T6253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 166.648454][ T6253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.670494][ T6253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 166.687737][ T6253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.707249][ T6253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 166.727794][ T6253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.749736][ T6253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 166.761333][ T6253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.787254][ T6253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 166.817078][ T6703] loop5: detected capacity change from 0 to 64 [ 166.823537][ T5174] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 166.837267][ T6253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.885059][ T6253] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 166.955288][ T6253] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 166.970431][ T6253] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 166.982877][ T6253] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 166.994610][ T6253] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 167.037318][ T5174] usb 4-1: Using ep0 maxpacket: 16 [ 167.053466][ T5174] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 167.081915][ T5174] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 167.106049][ T5174] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 167.126327][ T5174] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 167.204626][ T5174] usb 4-1: config 0 descriptor?? [ 168.542190][ T5174] usbhid 4-1:0.0: can't add hid device: -71 [ 168.558309][ T5174] usbhid 4-1:0.0: probe with driver usbhid failed with error -71 [ 168.572146][ T5174] usb 4-1: USB disconnect, device number 4 [ 168.677782][ T6719] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 168.709083][ T5875] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 168.727782][ T5875] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 168.918961][ T2864] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 168.964495][ T2864] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 169.168556][ T6734] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check. [ 169.194494][ T6735] loop3: detected capacity change from 0 to 256 [ 169.235392][ T6731] loop1: detected capacity change from 0 to 4096 [ 169.266480][ T6731] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512). [ 169.381647][ T6731] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 169.460894][ T6739] netlink: 209840 bytes leftover after parsing attributes in process `syz-executor.0'. [ 169.786071][ T29] kauditd_printk_skb: 237 callbacks suppressed [ 169.786097][ T29] audit: type=1804 audit(169.737:324): pid=6747 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir1503777216/syzkaller.DYmNwI/9/bus/bus" dev="loop1" ino=33 res=1 errno=0 [ 169.964663][ T2864] ntfs3: loop1: ino=5, ntfs3_write_inode failed, -22. [ 170.117337][ T5204] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 170.307284][ T5204] usb 3-1: Using ep0 maxpacket: 16 [ 170.323001][ T5204] usb 3-1: New USB device found, idVendor=2770, idProduct=9050, bcdDevice=11.97 [ 170.352594][ T5204] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 170.384771][ T5204] usb 3-1: config 0 descriptor?? [ 170.405783][ T5204] gspca_main: sq905c-2.14.0 probing 2770:9050 [ 170.511304][ T6746] loop3: detected capacity change from 0 to 32768 [ 170.563372][ T6746] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (6746) [ 170.654780][ T6746] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 170.674731][ T6746] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 170.684736][ T6746] BTRFS info (device loop3): using free-space-tree [ 170.950533][ T6762] loop1: detected capacity change from 0 to 32768 [ 170.964604][ T6762] BTRFS: device /dev/loop1 (7:1) using temp-fsid 3cb716d7-e385-4c20-a2b0-25429a304ca5 [ 170.979279][ T6762] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (6762) [ 171.014374][ T6762] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 171.037373][ T6762] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 171.060490][ T6762] BTRFS info (device loop1): using free-space-tree [ 171.235233][ T5204] usb 3-1: USB disconnect, device number 2 [ 171.246924][ T5119] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 171.394289][ T29] audit: type=1800 audit(171.347:325): pid=6762 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=263 res=0 errno=0 [ 171.479889][ T29] audit: type=1800 audit(171.357:326): pid=6762 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=263 res=0 errno=0 [ 171.840270][ T6239] BTRFS info (device loop1): last unmount of filesystem 3cb716d7-e385-4c20-a2b0-25429a304ca5 [ 172.719286][ T6822] syz-executor.2 uses obsolete (PF_INET,SOCK_PACKET) [ 172.922452][ T6831] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1 [ 173.152085][ T6840] loop0: detected capacity change from 0 to 256 [ 174.951265][ T6843] loop1: detected capacity change from 0 to 32768 [ 174.983697][ T6843] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (6843) [ 174.997515][ T6867] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'. [ 175.051373][ T6867] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'. [ 175.061087][ T6843] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 175.094207][ T6843] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 175.120211][ T6843] BTRFS info (device loop1): using free-space-tree [ 175.279815][ T6847] loop5: detected capacity change from 0 to 32768 [ 175.326231][ T6847] BTRFS: device fsid 3a492a15-ac49-4ce6-945e-cef7a687c6c9 devid 1 transid 8 /dev/loop5 (7:5) scanned by syz-executor.5 (6847) [ 175.401279][ T29] audit: type=1800 audit(175.357:327): pid=6867 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1958 res=0 errno=0 [ 175.447985][ T6847] BTRFS info (device loop5): first mount of filesystem 3a492a15-ac49-4ce6-945e-cef7a687c6c9 [ 175.452236][ T29] audit: type=1800 audit(175.357:328): pid=6867 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1958 res=0 errno=0 [ 175.499643][ T6847] BTRFS info (device loop5): using crc32c (crc32c-intel) checksum algorithm [ 175.526452][ T6847] BTRFS info (device loop5): using free-space-tree [ 175.566093][ T29] audit: type=1800 audit(175.517:329): pid=6843 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=263 res=0 errno=0 [ 175.654161][ T29] audit: type=1800 audit(175.607:330): pid=6843 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=263 res=0 errno=0 [ 175.787415][ T951] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 175.841654][ T4484] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 175.853504][ T4484] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 175.862074][ T4484] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 175.910879][ T4484] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 175.921062][ T4484] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 175.931059][ T29] audit: type=1804 audit(175.897:331): pid=6847 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.5" name="/root/syzkaller-testdir1337775100/syzkaller.K4Am2K/137/file0/file1" dev="loop5" ino=260 res=1 errno=0 [ 175.955596][ T4484] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 176.024975][ T6909] Driver unsupported XDP return value 0 on prog (id 104) dev N/A, expect packet loss! [ 176.117093][ T29] audit: type=1804 audit(176.067:332): pid=6847 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.5" name="/root/syzkaller-testdir1337775100/syzkaller.K4Am2K/137/file0/file1" dev="loop5" ino=260 res=1 errno=0 [ 176.142027][ T6239] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 176.202785][ T5109] BTRFS info (device loop5): last unmount of filesystem 3a492a15-ac49-4ce6-945e-cef7a687c6c9 [ 176.256138][ T951] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 176.528068][ T951] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 176.703089][ T951] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 176.878443][ T6919] loop3: detected capacity change from 0 to 512 [ 177.069810][ T6919] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 177.078332][ T6919] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 177.118307][ T6919] EXT4-fs (loop3): 1 truncate cleaned up [ 177.161229][ T6919] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 177.225976][ T6929] loop0: detected capacity change from 0 to 256 [ 177.332355][ T951] bridge_slave_1: left allmulticast mode [ 177.346430][ T951] bridge_slave_1: left promiscuous mode [ 177.367971][ T951] bridge0: port 2(bridge_slave_1) entered disabled state [ 177.433055][ T951] bridge_slave_0: left allmulticast mode [ 177.451949][ T951] bridge_slave_0: left promiscuous mode [ 177.459318][ T6919] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback. [ 177.467542][ T951] bridge0: port 1(bridge_slave_0) entered disabled state [ 177.483186][ T6929] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0xc3dee5d6, utbl_chksum : 0xe619d30d) [ 177.516342][ T6929] exFAT-fs (loop0): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 177.988972][ T5119] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 178.063108][ T4484] Bluetooth: hci6: command tx timeout [ 178.322609][ T6953] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 178.437678][ T6953] loop3: detected capacity change from 0 to 8 [ 178.470728][ T6953] squashfs: Unknown parameter '01777777777777777777777' [ 178.750880][ T6963] loop0: detected capacity change from 0 to 2048 [ 178.927644][ T6963] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 179.082929][ T29] audit: type=1800 audit(179.007:333): pid=6963 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=1367 res=0 errno=0 [ 179.785692][ T6971] loop1: detected capacity change from 0 to 1024 [ 179.881188][ T6971] hfsplus: catalog name length corrupted [ 179.932692][ T6979] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 180.051169][ T6971] Bluetooth: MGMT ver 1.22 [ 180.127502][ T4484] Bluetooth: hci6: command tx timeout [ 180.386093][ C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 180.535848][ T6996] loop5: detected capacity change from 0 to 64 [ 180.547454][ T53] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 180.560589][ T53] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 180.588068][ T53] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 180.823858][ T53] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 180.839594][ T53] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 180.854178][ T53] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 181.181134][ T7000] loop1: detected capacity change from 0 to 2048 [ 181.249762][ T7000] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 181.400211][ T29] audit: type=1800 audit(181.317:334): pid=7000 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=1367 res=0 errno=0 [ 181.817825][ T53] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0 [ 181.826832][ T7003] loop0: detected capacity change from 0 to 2048 [ 181.834407][ T7003] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 181.845167][ T53] Bluetooth: hci4: Injecting HCI hardware error event [ 181.856686][ T4484] Bluetooth: hci4: hardware error 0x00 [ 181.907277][ T7003] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 182.214541][ T53] Bluetooth: hci6: command tx timeout [ 182.471605][ T951] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 182.608659][ T951] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 182.662929][ T7020] loop1: detected capacity change from 0 to 128 [ 182.732992][ T7020] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 182.799113][ T7020] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 182.819945][ T951] bond0 (unregistering): Released all slaves [ 182.999254][ T7015] UDF-fs: error (device loop1): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40) [ 183.017828][ T53] Bluetooth: hci7: command tx timeout [ 183.364575][ T7027] sg_write: data in/out 466764725/1492 bytes for SCSI command 0x0-- guessing data in; [ 183.364575][ T7027] program syz-executor.0 not setting count and/or reply_len properly [ 183.957642][ T7037] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'. [ 184.020145][ T6900] chnl_net:caif_netlink_parms(): no params data found [ 184.067405][ T4484] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 184.316669][ T4484] Bluetooth: hci6: command tx timeout [ 185.008449][ T951] hsr_slave_0: left promiscuous mode [ 185.087751][ T4484] Bluetooth: hci7: command tx timeout [ 185.098100][ T29] audit: type=1804 audit(185.027:335): pid=7050 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3966407931/syzkaller.L4b8WV/29/bus" dev="sda1" ino=1954 res=1 errno=0 [ 185.169481][ T951] hsr_slave_1: left promiscuous mode [ 185.367736][ T951] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 185.416996][ T951] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 185.467974][ T951] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 185.519350][ T951] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 185.600818][ T951] veth1_macvtap: left promiscuous mode [ 185.690760][ T7059] loop3: detected capacity change from 0 to 128 [ 185.717709][ T951] veth0_macvtap: left promiscuous mode [ 185.725067][ T951] veth1_vlan: left promiscuous mode [ 185.762424][ T951] veth0_vlan: left promiscuous mode [ 185.924824][ T7059] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 186.621876][ T5119] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 187.169205][ T4484] Bluetooth: hci7: command tx timeout [ 187.208171][ T29] audit: type=1804 audit(187.157:336): pid=7073 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3966407931/syzkaller.L4b8WV/31/cgroup.controllers" dev="sda1" ino=1954 res=1 errno=0 [ 187.347571][ T5178] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 187.397038][ T7077] loop3: detected capacity change from 0 to 128 [ 187.431973][ T7077] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 187.482980][ T7077] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 187.547636][ T5178] usb 6-1: Using ep0 maxpacket: 32 [ 187.591502][ T5178] usb 6-1: New USB device found, idVendor=06cd, idProduct=0110, bcdDevice=71.71 [ 187.607251][ T5178] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 187.630672][ T5178] usb 6-1: Product: syz [ 187.640671][ T5178] usb 6-1: Manufacturer: syz [ 187.652957][ T7077] UDF-fs: error (device loop3): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40) [ 187.655625][ T5178] usb 6-1: SerialNumber: syz [ 187.720965][ T5178] usb 6-1: config 0 descriptor?? [ 187.814331][ T5178] keyspan 6-1:0.0: Keyspan 2 port adapter converter detected [ 187.853713][ T5178] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 87 [ 187.890243][ T5178] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 7 [ 187.910902][ T5178] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 81 [ 187.936590][ T5178] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 1 [ 188.002800][ T5178] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 2 [ 188.012924][ T5178] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 85 [ 188.054872][ T5178] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 5 [ 188.097861][ T5178] usb 6-1: Keyspan 2 port adapter converter now attached to ttyUSB0 [ 188.135596][ T5178] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 83 [ 188.165295][ T5178] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 3 [ 188.177472][ T5178] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 4 [ 188.194901][ T5178] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 86 [ 188.202976][ T5178] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 6 [ 188.214725][ T5178] usb 6-1: Keyspan 2 port adapter converter now attached to ttyUSB1 [ 188.247447][ T5178] usb 6-1: USB disconnect, device number 4 [ 188.274675][ T5178] keyspan_2 ttyUSB0: Keyspan 2 port adapter converter now disconnected from ttyUSB0 [ 188.318157][ T5178] keyspan_2 ttyUSB1: Keyspan 2 port adapter converter now disconnected from ttyUSB1 [ 188.328642][ T5178] keyspan 6-1:0.0: device disconnected [ 188.366383][ T7090] 9pnet: p9_errstr2errno: server reported unknown error œæçæŒÎsŧ‘̼§6 [ 188.521882][ T7092] loop3: detected capacity change from 0 to 64 [ 188.547242][ T951] team0 (unregistering): Port device team_slave_1 removed [ 188.575293][ T7092] hfs: invalid btree extent records (0 size) [ 188.587161][ T7092] hfs: unable to open catalog tree [ 188.662963][ T29] audit: type=1804 audit(188.597:337): pid=7094 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir1337775100/syzkaller.K4Am2K/153/bus" dev="sda1" ino=1963 res=1 errno=0 [ 188.736226][ T951] team0 (unregistering): Port device team_slave_0 removed [ 189.292613][ T7101] loop5: detected capacity change from 0 to 128 [ 189.312280][ T4484] Bluetooth: hci7: command tx timeout [ 189.471484][ T7101] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 190.138419][ T5109] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 190.161708][ T7105] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.3'. [ 190.982759][ T7115] loop5: detected capacity change from 0 to 2048 [ 191.036431][ T7115] udf: Unknown parameter 'io×çóWq©ê$Qp@¨Ächarset' [ 191.286769][ T7118] loop5: detected capacity change from 0 to 128 [ 191.351027][ T7118] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256 [ 191.425631][ T7118] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 192.549806][ T6900] bridge0: port 1(bridge_slave_0) entered blocking state [ 192.557161][ T6900] bridge0: port 1(bridge_slave_0) entered disabled state [ 192.590493][ T6900] bridge_slave_0: entered allmulticast mode [ 192.601488][ T6900] bridge_slave_0: entered promiscuous mode [ 192.673883][ T6900] bridge0: port 2(bridge_slave_1) entered blocking state [ 192.719073][ T6900] bridge0: port 2(bridge_slave_1) entered disabled state [ 192.788389][ T6900] bridge_slave_1: entered allmulticast mode [ 192.829606][ T6900] bridge_slave_1: entered promiscuous mode [ 193.088570][ T7140] loop0: detected capacity change from 0 to 2048 [ 193.106054][ T7140] udf: Unknown parameter 'ÿÿÿÿî¦óÃËT0€Ïjv [ 193.106054][ T7140] iǺ±æ¬tOïa­Ç Ñ;MãÜU—!ÇŒÅë÷*¥tysÀlª‹¶]™¨ €®—Št *ðˆ³{­µ~ds ¢JRå' [ 193.436626][ T7140] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 193.863411][ T7142] ptrace attach of "/root/syz-executor.5 exec"[5109] was attempted by "\x0b"[7142] [ 193.909909][ T1241] ieee802154 phy0 wpan0: encryption failed: -22 [ 193.922404][ T1241] ieee802154 phy1 wpan1: encryption failed: -22 [ 193.946912][ T7144] loop1: detected capacity change from 0 to 1024 [ 193.955532][ T7144] hfsplus: unable to parse mount options [ 194.102607][ T6900] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 194.193010][ T6900] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 195.246979][ T6900] team0: Port device team_slave_0 added [ 195.283447][ T6900] team0: Port device team_slave_1 added [ 195.558205][ T6900] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 195.578604][ T6900] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 195.617006][ T7159] loop0: detected capacity change from 0 to 2048 [ 195.670870][ T7159] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 195.683554][ T6900] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 195.714608][ T6900] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 195.735989][ T6900] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 195.781368][ T6900] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 195.841749][ T6993] chnl_net:caif_netlink_parms(): no params data found [ 195.967420][ T5118] Bluetooth: hci5: command 0x0405 tx timeout [ 195.967881][ T5115] Bluetooth: hci2: command 0x0406 tx timeout [ 195.973604][ T5118] Bluetooth: hci1: command 0x0406 tx timeout [ 195.979952][ T5130] Bluetooth: hci3: command 0x0406 tx timeout [ 196.416632][ T6900] hsr_slave_0: entered promiscuous mode [ 196.445441][ T6900] hsr_slave_1: entered promiscuous mode [ 196.478124][ T7158] loop5: detected capacity change from 0 to 32768 [ 196.491577][ T6900] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 196.491738][ T7158] BTRFS: device fsid 3a492a15-ac49-4ce6-945e-cef7a687c6c9 devid 1 transid 8 /dev/loop5 (7:5) scanned by syz-executor.5 (7158) [ 196.530844][ T6900] Cannot create hsr debugfs directory [ 196.546527][ T7158] BTRFS info (device loop5): first mount of filesystem 3a492a15-ac49-4ce6-945e-cef7a687c6c9 [ 196.587563][ T7158] BTRFS info (device loop5): using crc32c (crc32c-intel) checksum algorithm [ 196.598963][ T5176] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 196.635042][ T7158] BTRFS info (device loop5): using free-space-tree [ 196.821980][ T5176] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0 [ 196.880685][ T5176] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 196.903882][ T5176] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 196.938137][ T6993] bridge0: port 1(bridge_slave_0) entered blocking state [ 196.946252][ T6993] bridge0: port 1(bridge_slave_0) entered disabled state [ 196.977607][ T5176] usb 2-1: Product: syz [ 196.995245][ T5176] usb 2-1: Manufacturer: syz [ 196.996223][ T6993] bridge_slave_0: entered allmulticast mode [ 197.000142][ T5176] usb 2-1: SerialNumber: syz [ 197.027573][ T6993] bridge_slave_0: entered promiscuous mode [ 197.041194][ T5176] usb 2-1: bad CDC descriptors [ 197.049889][ T5109] BTRFS info (device loop5): last unmount of filesystem 3a492a15-ac49-4ce6-945e-cef7a687c6c9 [ 197.103328][ T6993] bridge0: port 2(bridge_slave_1) entered blocking state [ 197.135182][ T6993] bridge0: port 2(bridge_slave_1) entered disabled state [ 197.155724][ T6993] bridge_slave_1: entered allmulticast mode [ 197.180209][ T6993] bridge_slave_1: entered promiscuous mode [ 197.272443][ T5178] usb 2-1: USB disconnect, device number 4 [ 197.480451][ T7191] loop3: detected capacity change from 0 to 256 [ 197.504349][ T7191] exfat: Unknown parameter 'dmask}00G000000000007' [ 197.544552][ T6993] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 197.602553][ T6993] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 198.063869][ T6993] team0: Port device team_slave_0 added [ 198.459815][ T7215] Bluetooth: MGMT ver 1.22 [ 199.285167][ T6993] team0: Port device team_slave_1 added [ 199.545572][ T6993] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 199.582369][ T6993] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 199.614304][ T6993] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 199.688512][ T6993] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 199.720760][ T6993] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 199.784024][ T6993] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 199.964146][ T7230] loop3: detected capacity change from 0 to 256 [ 200.161249][ T6993] hsr_slave_0: entered promiscuous mode [ 200.198959][ T6993] hsr_slave_1: entered promiscuous mode [ 200.222406][ T6993] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 200.244091][ T6993] Cannot create hsr debugfs directory [ 200.249743][ T7230] loop3: detected capacity change from 256 to 0 [ 200.278810][ T7234] syz-executor.3: attempt to access beyond end of device [ 200.278810][ T7234] loop3: rw=0, sector=12, nr_sectors = 4 limit=0 [ 200.346144][ T7234] FAT-fs (loop3): Directory bread(block 3) failed [ 200.494996][ T5119] syz-executor.3: attempt to access beyond end of device [ 200.494996][ T5119] loop3: rw=0, sector=12, nr_sectors = 4 limit=0 [ 200.537900][ T5119] FAT-fs (loop3): Directory bread(block 3) failed [ 200.752413][ T7240] loop5: detected capacity change from 0 to 2048 [ 201.732731][ T7240] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 201.766105][ T29] audit: type=1800 audit(201.717:338): pid=7239 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1367 res=0 errno=0 [ 201.822067][ T5119] syz-executor.3: attempt to access beyond end of device [ 201.822067][ T5119] loop3: rw=0, sector=0, nr_sectors = 4 limit=0 [ 201.878458][ T6900] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 201.887451][ T5119] FAT-fs (loop3): unable to read boot sector to mark fs as dirty [ 201.906521][ T6900] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 202.139954][ T6900] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 202.215782][ T6900] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 202.548204][ T12] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 202.570062][ T7231] loop1: detected capacity change from 0 to 32768 [ 202.692277][ T7251] loop0: detected capacity change from 0 to 164 [ 202.738716][ T7251] Unsupported NM flag settings (8) [ 202.822792][ T7231] bcachefs (loop1): mounting version 1.7: mi_btree_bitmap opts=nojournal_transaction_names [ 202.833458][ T7231] bcachefs (loop1): recovering from clean shutdown, journal seq 14 [ 202.875878][ T6993] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 202.940545][ T7231] bcachefs (loop1): alloc_read... done [ 202.946829][ T7231] bcachefs (loop1): stripes_read... done [ 202.994736][ T7231] bcachefs (loop1): snapshots_read... done [ 203.043569][ T7231] bcachefs (loop1): journal_replay... done [ 203.053221][ T12] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 203.077643][ T7231] bcachefs (loop1): resume_logged_ops... done [ 203.091244][ T7231] bcachefs (loop1): going read-write [ 203.110128][ T7262] loop0: detected capacity change from 0 to 64 [ 203.112986][ T7231] bcachefs (loop1): bch2_copygc_start(): error creating copygc thread EINTR [ 203.151675][ T7231] bcachefs (loop1): error starting copygc thread [ 203.205021][ T7231] bcachefs (loop1): going read-only [ 203.218659][ T7231] bcachefs (loop1): finished waiting for writes to stop [ 203.229917][ T6993] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 203.248626][ T7231] bcachefs (loop1): flushing journal and stopping allocators, journal seq 14 [ 203.267965][ T7231] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 14 [ 203.367038][ T7231] bcachefs (loop1): shutdown complete, journal seq 15 [ 203.395768][ T7231] bcachefs (loop1): marking filesystem clean [ 203.466185][ T7231] bcachefs (loop1): bch2_fs_start(): error starting filesystem EINTR [ 203.500122][ T7231] bcachefs (loop1): shutting down [ 203.524674][ T12] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 203.564264][ T7231] bcachefs (loop1): shutdown complete [ 203.763890][ T7269] loop5: detected capacity change from 0 to 2048 [ 203.779759][ T7269] udf: Unknown parameter 'ÿÿÿÿî¦óÃËT0€Ïjv [ 203.779759][ T7269] iǺ±æ¬tOïa­Ç Ñ;MãÜU—!ÇŒÅë÷*¥tysÀlª‹¶]™¨ €®—Št *ðˆ³{­µ~ds ¢JRå' [ 204.040612][ T7269] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 204.503256][ T6993] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 204.654581][ T5128] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 204.689709][ T5128] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 204.699546][ T5128] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 204.708491][ T5128] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 204.716220][ T5128] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 204.723649][ T5128] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 204.815679][ T7273] loop0: detected capacity change from 0 to 2048 [ 204.878330][ T12] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 204.919642][ T7273] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 205.143395][ T6993] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 205.191051][ T7282] loop5: detected capacity change from 0 to 128 [ 205.306361][ T7282] VFS: Found a Xenix FS (block size = 512) on device loop5 [ 205.466131][ T5109] sysv_free_block: trying to free block not in datazone [ 205.585051][ T5109] sysv_free_block: getblk() failed [ 205.597318][ T5109] sysv_free_block: getblk() failed [ 205.608475][ T5109] sysv_free_block: getblk() failed [ 205.621604][ T5109] sysv_free_block: getblk() failed [ 205.660484][ T5109] sysv_free_block: getblk() failed [ 205.685311][ T6900] 8021q: adding VLAN 0 to HW filter on device bond0 [ 205.700298][ T5109] sysv_free_block: getblk() failed [ 205.705492][ T5109] sysv_free_block: getblk() failed [ 205.717479][ T5109] sysv_free_block: getblk() failed [ 205.730125][ T5109] sysv_free_block: getblk() failed [ 205.748357][ T5109] sysv_free_block: getblk() failed [ 205.808480][ T5109] sysv_free_block: getblk() failed [ 205.813696][ T5109] sysv_free_block: getblk() failed [ 205.865881][ T5109] sysv_free_block: getblk() failed [ 205.907716][ T5109] sysv_free_block: getblk() failed [ 205.912897][ T5109] sysv_free_block: getblk() failed [ 205.954977][ T5109] sysv_free_block: getblk() failed [ 205.977440][ T5109] sysv_free_block: getblk() failed [ 205.992891][ T5109] sysv_free_block: getblk() failed [ 206.023955][ T5109] sysv_free_block: getblk() failed [ 206.067121][ T5109] sysv_free_block: getblk() failed [ 206.107449][ T5109] sysv_free_block: getblk() failed [ 206.112958][ T5109] sysv_free_block: getblk() failed [ 206.133221][ T6900] 8021q: adding VLAN 0 to HW filter on device team0 [ 206.187300][ T5109] sysv_free_block: getblk() failed [ 206.198357][ T5109] sysv_free_block: getblk() failed [ 206.203565][ T5109] sysv_free_block: getblk() failed [ 206.243091][ T12] bridge_slave_1: left allmulticast mode [ 206.250166][ T5109] sysv_free_block: getblk() failed [ 206.255363][ T5109] sysv_free_block: getblk() failed [ 206.264165][ T12] bridge_slave_1: left promiscuous mode [ 206.289729][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 206.299101][ T5109] sysv_free_block: getblk() failed [ 206.307277][ T5109] sysv_free_block: getblk() failed [ 206.313745][ T5109] sysv_free_block: getblk() failed [ 206.352044][ T12] bridge_slave_0: left allmulticast mode [ 206.357446][ T5109] sysv_free_block: getblk() failed [ 206.363026][ T5109] sysv_free_block: getblk() failed [ 206.366842][ T12] bridge_slave_0: left promiscuous mode [ 206.374053][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 206.382242][ T5109] sysv_free_block: getblk() failed [ 206.397381][ T5109] sysv_free_block: getblk() failed [ 206.404703][ T5109] sysv_free_block: getblk() failed [ 206.427429][ T5109] sysv_free_block: getblk() failed [ 206.432647][ T5109] sysv_free_block: getblk() failed [ 206.459344][ T5109] sysv_free_block: getblk() failed [ 206.486643][ T5109] sysv_free_block: getblk() failed [ 206.492176][ T5109] sysv_free_block: getblk() failed [ 206.517409][ T5109] sysv_free_block: getblk() failed [ 206.522656][ T5109] sysv_free_block: getblk() failed [ 206.541324][ T5109] sysv_free_block: trying to free block not in datazone [ 206.582455][ T5109] sysv_free_block: trying to free block not in datazone [ 206.607710][ T5109] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 206.781740][ T5128] Bluetooth: hci3: command tx timeout [ 208.320983][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 208.353198][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 208.380105][ T12] bond0 (unregistering): Released all slaves [ 208.544430][ T6993] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 208.590032][ T6993] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 208.620548][ T5175] bridge0: port 1(bridge_slave_0) entered blocking state [ 208.627787][ T5175] bridge0: port 1(bridge_slave_0) entered forwarding state [ 208.665609][ T6993] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 208.726078][ T6993] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 208.760843][ T7272] chnl_net:caif_netlink_parms(): no params data found [ 208.858248][ T5128] Bluetooth: hci3: command tx timeout [ 208.986289][ T1142] bridge0: port 2(bridge_slave_1) entered blocking state [ 208.994096][ T1142] bridge0: port 2(bridge_slave_1) entered forwarding state [ 209.024671][ T7325] loop1: detected capacity change from 0 to 128 [ 209.059659][ T7325] VFS: Found a Xenix FS (block size = 512) on device loop1 [ 209.119466][ T7318] loop0: detected capacity change from 0 to 32768 [ 209.186627][ T6239] sysv_free_block: trying to free block not in datazone [ 209.241408][ T6239] sysv_free_block: getblk() failed [ 209.246628][ T6239] sysv_free_block: getblk() failed [ 209.266331][ T6239] sysv_free_block: getblk() failed [ 209.273335][ T6239] sysv_free_block: getblk() failed [ 209.280039][ T6239] sysv_free_block: getblk() failed [ 209.291857][ T6239] sysv_free_block: getblk() failed [ 209.301581][ T7318] XFS (loop0): DAX unsupported by block device. Turning off DAX. [ 209.309848][ T6239] sysv_free_block: getblk() failed [ 209.315005][ T6239] sysv_free_block: getblk() failed [ 209.346376][ T7318] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 209.356016][ T6239] sysv_free_block: getblk() failed [ 209.366359][ T6239] sysv_free_block: getblk() failed [ 209.373528][ T6239] sysv_free_block: getblk() failed [ 209.380317][ T6239] sysv_free_block: getblk() failed [ 209.385889][ T6239] sysv_free_block: getblk() failed [ 209.396698][ T6239] sysv_free_block: getblk() failed [ 209.404543][ T6239] sysv_free_block: getblk() failed [ 209.410756][ T6239] sysv_free_block: getblk() failed [ 209.420644][ T6239] sysv_free_block: getblk() failed [ 209.425888][ T6239] sysv_free_block: getblk() failed [ 209.431258][ T6239] sysv_free_block: getblk() failed [ 209.436442][ T6239] sysv_free_block: getblk() failed [ 209.443440][ T6239] sysv_free_block: getblk() failed [ 209.468729][ T6239] sysv_free_block: getblk() failed [ 209.484620][ T6239] sysv_free_block: getblk() failed [ 209.490978][ T6239] sysv_free_block: getblk() failed [ 209.496688][ T6239] sysv_free_block: getblk() failed [ 209.502106][ T6239] sysv_free_block: getblk() failed [ 209.507661][ T6239] sysv_free_block: getblk() failed [ 209.513176][ T6239] sysv_free_block: getblk() failed [ 209.518817][ T6239] sysv_free_block: getblk() failed [ 209.522012][ T7318] XFS (loop0): Ending clean mount [ 209.524405][ T6239] sysv_free_block: getblk() failed [ 209.534371][ T6239] sysv_free_block: getblk() failed [ 209.550839][ T7338] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.5'. [ 209.560369][ T6239] sysv_free_block: getblk() failed [ 209.565724][ T6239] sysv_free_block: getblk() failed [ 209.585572][ T6239] sysv_free_block: getblk() failed [ 209.590002][ T7318] XFS (loop0): Quotacheck needed: Please wait. [ 209.590880][ T6239] sysv_free_block: getblk() failed [ 209.646548][ T6239] sysv_free_block: getblk() failed [ 209.657760][ T6239] sysv_free_block: getblk() failed [ 209.663712][ T6239] sysv_free_block: getblk() failed [ 209.669303][ T6239] sysv_free_block: getblk() failed [ 209.674853][ T6239] sysv_free_block: getblk() failed [ 209.681435][ T6239] sysv_free_block: getblk() failed [ 209.686831][ T6239] sysv_free_block: getblk() failed [ 209.714440][ T6239] sysv_free_block: trying to free block not in datazone [ 209.724985][ T6239] sysv_free_block: trying to free block not in datazone [ 209.759237][ T6239] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 209.781201][ T7318] XFS (loop0): Quotacheck: Done. [ 209.859773][ T7272] bridge0: port 1(bridge_slave_0) entered blocking state [ 209.869314][ T7272] bridge0: port 1(bridge_slave_0) entered disabled state [ 209.882636][ T7272] bridge_slave_0: entered allmulticast mode [ 209.903755][ T7272] bridge_slave_0: entered promiscuous mode [ 209.940058][ T12] hsr_slave_0: left promiscuous mode [ 209.960594][ T12] hsr_slave_1: left promiscuous mode [ 209.983414][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 209.995637][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 210.013869][ T6253] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 210.143641][ T12] veth1_macvtap: left promiscuous mode [ 210.183938][ T12] veth0_macvtap: left promiscuous mode [ 210.227433][ T12] veth1_vlan: left promiscuous mode [ 210.257831][ T12] veth0_vlan: left promiscuous mode [ 210.927740][ T5128] Bluetooth: hci3: command tx timeout [ 211.631744][ T7348] input: syz0 as /devices/virtual/input/input9 [ 212.039603][ T7355] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.5'. [ 212.304168][ T7345] loop0: detected capacity change from 0 to 32768 [ 212.320728][ T7345] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 212.349911][ T7345] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 212.470770][ T7345] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 3ms [ 212.496813][ T5175] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 212.545267][ T5175] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 212.827347][ T5175] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 282ms [ 212.840080][ T5175] gfs2: fsid=syz:syz.0: jid=0: Done [ 212.846183][ T7345] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 213.027401][ T5128] Bluetooth: hci3: command tx timeout [ 213.040520][ T12] team0 (unregistering): Port device team_slave_1 removed [ 213.607570][ T5176] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 213.828335][ T5176] usb 6-1: Using ep0 maxpacket: 8 [ 213.866036][ T5176] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 213.877581][ T5176] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 213.911805][ T5176] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 18 [ 213.957019][ T5176] usb 6-1: New USB device found, idVendor=0001, idProduct=8000, bcdDevice= 0.00 [ 213.978012][ T5176] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 214.002572][ T5176] usb 6-1: SerialNumber: syz [ 214.045555][ T5176] hub 6-1:1.0: bad descriptor, ignoring hub [ 214.057308][ T5176] hub 6-1:1.0: probe with driver hub failed with error -5 [ 214.089012][ T5176] cdc_ether 6-1:1.0: probe with driver cdc_ether failed with error -22 [ 214.537852][ T5174] usb 6-1: USB disconnect, device number 5 [ 215.791907][ T7272] bridge0: port 2(bridge_slave_1) entered blocking state [ 215.817441][ T7272] bridge0: port 2(bridge_slave_1) entered disabled state [ 215.855854][ T7272] bridge_slave_1: entered allmulticast mode [ 215.879770][ T7272] bridge_slave_1: entered promiscuous mode [ 216.083697][ T7272] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 216.170584][ T7389] ptrace attach of "/root/syz-executor.0 exec"[6253] was attempted by ""[7389] [ 216.173611][ T7272] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 216.413145][ T7386] loop5: detected capacity change from 0 to 32768 [ 216.597505][ T7386] jfs_mount: dbMount failed w/rc = -22 [ 216.604674][ T7386] Mount JFS Failure: -22 [ 216.618436][ T7386] jfs_mount failed w/return code = -22 [ 216.643208][ T7394] loop0: detected capacity change from 0 to 256 [ 216.645452][ T7272] team0: Port device team_slave_0 added [ 216.722151][ T7272] team0: Port device team_slave_1 added [ 217.130068][ T7272] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 217.137081][ T7272] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 217.197613][ T7272] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 217.299794][ T7272] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 217.306886][ T7272] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 217.349761][ T7272] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 217.601615][ T7272] hsr_slave_0: entered promiscuous mode [ 217.649706][ T7272] hsr_slave_1: entered promiscuous mode [ 217.666153][ T7272] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 217.686351][ T7272] Cannot create hsr debugfs directory [ 217.726054][ T6900] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 217.754074][ T7405] loop5: detected capacity change from 0 to 2048 [ 217.811208][ T6993] 8021q: adding VLAN 0 to HW filter on device bond0 [ 217.819166][ T7405] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 217.990451][ T6993] 8021q: adding VLAN 0 to HW filter on device team0 [ 218.079522][ T7415] loop1: detected capacity change from 0 to 2048 [ 218.095676][ T7415] udf: Unknown parameter 'io×çóWq©ê$Qp@¨Ächarset' [ 218.155876][ T5290] bridge0: port 1(bridge_slave_0) entered blocking state [ 218.163142][ T5290] bridge0: port 1(bridge_slave_0) entered forwarding state [ 218.473913][ T7422] loop0: detected capacity change from 0 to 2048 [ 218.632879][ T7422] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 219.103276][ T7419] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. [ 219.139214][ T25] bridge0: port 2(bridge_slave_1) entered blocking state [ 219.146409][ T25] bridge0: port 2(bridge_slave_1) entered forwarding state [ 219.293716][ T6253] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 219.350469][ T7415] loop1: detected capacity change from 0 to 128 [ 219.410798][ T7415] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 219.443238][ T7415] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 219.460275][ T6900] veth0_vlan: entered promiscuous mode [ 219.613689][ T6900] veth1_vlan: entered promiscuous mode [ 219.968787][ T6900] veth0_macvtap: entered promiscuous mode [ 220.011007][ T6900] veth1_macvtap: entered promiscuous mode [ 220.084526][ T6900] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 220.142999][ T6900] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 220.168465][ T6900] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 220.179423][ T6900] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 220.192052][ T6900] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 220.202699][ T6900] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 220.220306][ T6900] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 220.240000][ T6900] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 220.250561][ T6900] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 220.261506][ T6900] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 220.302664][ T6900] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 220.400707][ T7443] loop0: detected capacity change from 0 to 1024 [ 220.441712][ T7446] loop1: detected capacity change from 0 to 512 [ 220.456108][ T6900] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 220.488730][ T7446] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 220.500379][ T6900] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 220.513433][ T7446] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities [ 220.525556][ T6900] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 220.546529][ T7443] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 220.561482][ T6900] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 220.579850][ T6900] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 220.597681][ T6900] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 220.631715][ T6900] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 220.644872][ T6900] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 220.657470][ T6900] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 220.668131][ T6900] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 220.691239][ T6900] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 220.765080][ T6900] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.778180][ T6900] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.791174][ T6900] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.803486][ T6900] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.902633][ T7272] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 220.921495][ T7450] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 220.991859][ T7272] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 221.136190][ T7272] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 221.200610][ T7272] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 221.235046][ T6253] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 221.485841][ T6993] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 221.495834][ T7457] netlink: 209844 bytes leftover after parsing attributes in process `syz-executor.0'. [ 221.548875][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 221.626487][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 221.973792][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 222.025932][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 222.201982][ T7272] 8021q: adding VLAN 0 to HW filter on device bond0 [ 222.307016][ T7272] 8021q: adding VLAN 0 to HW filter on device team0 [ 222.389158][ T5174] bridge0: port 1(bridge_slave_0) entered blocking state [ 222.396343][ T5174] bridge0: port 1(bridge_slave_0) entered forwarding state [ 222.438713][ T5290] bridge0: port 2(bridge_slave_1) entered blocking state [ 222.445915][ T5290] bridge0: port 2(bridge_slave_1) entered forwarding state [ 222.864806][ T6993] veth0_vlan: entered promiscuous mode [ 222.941812][ T6993] veth1_vlan: entered promiscuous mode [ 223.021919][ T7455] loop1: detected capacity change from 0 to 40427 [ 223.052226][ T7455] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 223.080996][ T7455] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 223.152482][ T6993] veth0_macvtap: entered promiscuous mode [ 223.173400][ T7455] F2FS-fs (loop1): Found nat_bits in checkpoint [ 223.177014][ T6993] veth1_macvtap: entered promiscuous mode [ 223.244743][ T6993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 223.273469][ T7486] loop0: detected capacity change from 0 to 2048 [ 223.297504][ T6993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 223.308668][ T7486] udf: Unknown parameter 'io×çóWq©ê$Qp@¨Ächarset' [ 223.324016][ T7495] loop5: detected capacity change from 0 to 1024 [ 223.327047][ T6993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 223.360139][ T6993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 223.376854][ T7495] hfsplus: Filesystem is marked locked, mounting read-only. [ 223.388636][ T6993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 223.401123][ T6993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 223.410182][ T7495] hfsplus: invalid catalog entry type in lookup [ 223.411574][ T7455] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 223.427028][ T6993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 223.437845][ T7455] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 223.446163][ T6993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 223.466191][ T6993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 223.498584][ T6993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 223.510988][ T6993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 223.532946][ T6993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 223.589017][ T6993] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 223.713700][ T7272] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 223.720193][ T7502] loop0: detected capacity change from 0 to 128 [ 223.740064][ T6993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 223.770616][ T7502] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 223.789633][ T6993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 223.828811][ T7502] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 223.841548][ T6993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 223.885219][ T6993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 223.915267][ T6993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 223.930636][ T29] audit: type=1800 audit(223.867:339): pid=7506 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="file1" dev="sda1" ino=1958 res=0 errno=0 [ 223.964995][ T6993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 223.988899][ T6993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 224.010105][ T6993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 224.035935][ T6993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 224.070414][ T6993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 224.088236][ T6993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 224.103130][ T6993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 224.132631][ T6993] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 224.271566][ T6993] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 224.288047][ T6993] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 224.296848][ T6993] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 224.325425][ T6993] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 224.618106][ T7272] veth0_vlan: entered promiscuous mode [ 224.681256][ T7272] veth1_vlan: entered promiscuous mode [ 224.690175][ T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 224.709008][ T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 224.812348][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 224.846925][ T7272] veth0_macvtap: entered promiscuous mode [ 224.858078][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 224.904112][ T7272] veth1_macvtap: entered promiscuous mode [ 225.015604][ T7526] loop0: detected capacity change from 0 to 128 [ 225.064870][ T7272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 225.102512][ T7272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 225.134912][ T7526] VFS: Found a Xenix FS (block size = 512) on device loop0 [ 225.146729][ T7272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 225.158367][ T7526] sysv_free_block: trying to free block not in datazone [ 225.178275][ T7526] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 225.185181][ T7272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 225.212684][ T7272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 225.236519][ T7272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 225.272792][ T7272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 225.300323][ T7272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 225.336458][ T7272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 225.362807][ T7272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 225.386585][ T7272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 225.410839][ T7272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 225.423657][ T7272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 225.445399][ T7272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 225.479142][ T7272] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 225.536063][ T7272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 225.575920][ T7272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 225.599772][ T7272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 225.886962][ T7272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 225.982988][ T7272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 225.993791][ T7272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 226.003863][ T7272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 226.014486][ T7272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 226.024466][ T7272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 226.036660][ T7272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 226.046678][ T7272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 226.058032][ T7272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 226.068858][ T7272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 226.081590][ T7272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 226.102801][ T7272] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 226.141612][ T7272] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 226.151743][ T7272] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 226.160648][ T7272] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 226.170404][ T7272] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 228.419836][ T7549] loop1: detected capacity change from 0 to 1024 [ 228.492606][ T7549] hfsplus: bad catalog entry type [ 228.556761][ T51] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 228.583190][ T51] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 228.635001][ T35] hfsplus: b-tree write err: -5, ino 4 [ 228.671897][ T7554] loop5: detected capacity change from 0 to 1024 [ 228.779360][ T7554] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 228.899194][ T951] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 228.948940][ T951] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 229.578672][ T7577] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 229.750147][ T7577] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 230.675151][ T7554] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 231.921598][ T29] audit: type=1326 audit(231.877:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7589 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff01647d0a9 code=0x7ffc0000 [ 232.034004][ T29] audit: type=1326 audit(231.897:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7589 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff01647d0a9 code=0x7ffc0000 [ 232.121865][ T29] audit: type=1326 audit(231.907:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7589 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff01647d0a9 code=0x7ffc0000 [ 232.195191][ T5109] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 232.235992][ T29] audit: type=1326 audit(231.907:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7589 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff01647d0a9 code=0x7ffc0000 [ 232.277419][ T29] audit: type=1326 audit(231.907:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7589 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff01647d0a9 code=0x7ffc0000 [ 232.308370][ T29] audit: type=1326 audit(231.907:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7589 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff01647d0a9 code=0x7ffc0000 [ 232.334148][ T29] audit: type=1326 audit(231.907:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7589 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff01647d0a9 code=0x7ffc0000 [ 232.437314][ T29] audit: type=1326 audit(231.907:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7589 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7ff01647a827 code=0x7ffc0000 [ 233.484190][ T29] audit: type=1326 audit(231.907:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7589 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7ff0164404e9 code=0x7ffc0000 [ 233.508107][ T29] audit: type=1326 audit(231.907:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7589 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7ff01647a827 code=0x7ffc0000 [ 233.736279][ T7607] loop5: detected capacity change from 0 to 2048 [ 233.812500][ T7607] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 233.980483][ T7616] netlink: 'syz-executor.2': attribute type 5 has an invalid length. [ 233.989241][ T7616] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 235.155448][ T7600] loop3: detected capacity change from 0 to 32768 [ 235.207098][ T7600] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (7600) [ 235.233536][ T7600] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 235.250868][ T7600] BTRFS info (device loop3): using sha256 (sha256-ni) checksum algorithm [ 235.259523][ T7600] BTRFS info (device loop3): using free-space-tree [ 235.269707][ T7600] workqueue: Failed to create a rescuer kthread for wq "btrfs-worker": -EINTR [ 235.277834][ T7600] workqueue: Failed to create a rescuer kthread for wq "btrfs-delalloc": -EINTR [ 235.279835][ T5109] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 235.338543][ T7600] workqueue: Failed to create a rescuer kthread for wq "btrfs-flush_delalloc": -EINTR [ 235.347268][ T7600] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR [ 235.389169][ T7600] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR [ 235.425848][ T7600] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR [ 235.477843][ T7600] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR [ 235.491737][ T7600] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR [ 235.573631][ T7600] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR [ 235.687055][ T7600] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR [ 235.797013][ T7600] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR [ 235.878523][ T7600] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR [ 235.911271][ T7600] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR [ 235.973212][ T7600] BTRFS error (device loop3): open_ctree failed [ 236.248121][ T7670] netlink: 'syz-executor.4': attribute type 5 has an invalid length. [ 236.297461][ T7670] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 236.748004][ T7679] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.4'. [ 237.057665][ T7652] loop0: detected capacity change from 0 to 32768 [ 237.157126][ T7692] loop5: detected capacity change from 0 to 512 [ 237.193620][ T7692] EXT4-fs error (device loop5): mb_free_blocks:1948: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt. [ 237.211180][ T7692] EXT4-fs (loop5): 1 truncate cleaned up [ 237.218523][ T7692] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 237.536233][ T5109] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 238.054568][ T7674] loop3: detected capacity change from 0 to 32768 [ 238.136109][ T7674] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (7674) [ 238.403094][ T7674] BTRFS info (device loop3): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 238.480702][ T7674] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 238.706147][ T7674] BTRFS info (device loop3): using free-space-tree [ 239.468720][ T7674] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR [ 239.470665][ T7674] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR [ 239.529097][ T7674] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR [ 239.585834][ T7674] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR [ 239.634895][ T7674] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR [ 239.698471][ T7674] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR [ 239.740098][ T7674] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR [ 239.790439][ T7674] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR [ 239.821064][ T7674] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR [ 239.882904][ T7674] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR [ 239.894283][ T7740] netlink: 9 bytes leftover after parsing attributes in process `syz-executor.5'. [ 239.955025][ T7674] BTRFS error (device loop3): open_ctree failed [ 240.038179][ T7740] gretap0: entered promiscuous mode [ 240.437920][ T7749] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'. [ 240.902044][ T7758] loop0: detected capacity change from 0 to 2048 [ 241.471017][ T7758] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 241.921397][ T7769] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.2'. [ 242.053686][ T7769] dvmrp1: entered allmulticast mode [ 242.959342][ T29] kauditd_printk_skb: 8 callbacks suppressed [ 242.959367][ T29] audit: type=1800 audit(242.907:358): pid=7778 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="file1" dev="sda1" ino=1974 res=0 errno=0 [ 243.319401][ T6253] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 243.373281][ T7787] netlink: 9 bytes leftover after parsing attributes in process `syz-executor.1'. [ 243.408027][ T7787] gretap0: entered promiscuous mode [ 243.627256][ T29] audit: type=1804 audit(243.577:359): pid=7786 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir1049295239/syzkaller.ozd2S6/8/cgroup.controllers" dev="sda1" ino=1968 res=1 errno=0 [ 244.087524][ T5123] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 245.103464][ T5123] usb 5-1: Using ep0 maxpacket: 16 [ 245.156508][ T5123] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 245.243070][ T5123] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 245.309065][ T5123] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 245.346354][ T5123] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 245.358873][ T7810] loop0: detected capacity change from 0 to 1024 [ 245.373365][ T5123] usb 5-1: SerialNumber: syz [ 245.403142][ T5123] cdc_acm 5-1:1.0: skipping garbage [ 245.426568][ T5123] cdc_acm 5-1:1.0: Control and data interfaces are not separated! [ 245.457327][ T5123] cdc_acm 5-1:1.0: This needs exactly 3 endpoints [ 245.476819][ T5123] cdc_acm 5-1:1.0: probe with driver cdc_acm failed with error -22 [ 245.658620][ T7819] loop3: detected capacity change from 0 to 2048 [ 245.736507][ T5178] usb 5-1: USB disconnect, device number 4 [ 245.839389][ T7819] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 246.972733][ T7833] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.0'. [ 247.104687][ T7833] dvmrp1: entered allmulticast mode [ 247.190016][ T7837] bond_slave_0: entered promiscuous mode [ 247.196295][ T7837] bond_slave_1: entered promiscuous mode [ 247.441366][ T7272] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 247.553190][ T7835] bond_slave_0: left promiscuous mode [ 247.559171][ T7835] bond_slave_1: left promiscuous mode [ 247.571921][ T7830] loop0: detected capacity change from 0 to 4096 [ 247.793489][ T7830] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 247.865208][ T6253] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 249.020060][ T7829] loop5: detected capacity change from 0 to 32768 [ 249.038816][ T7829] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 249.080395][ T7829] XFS (loop5): Ending clean mount [ 249.106027][ T7829] XFS (loop5): Quotacheck needed: Please wait. [ 249.178434][ T7829] XFS (loop5): Quotacheck: Done. [ 249.219449][ T5109] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 250.940836][ T7892] netlink: 'syz-executor.2': attribute type 29 has an invalid length. [ 250.995781][ T7892] netlink: 'syz-executor.2': attribute type 29 has an invalid length. [ 252.762981][ T7893] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. [ 253.217470][ T5182] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 253.609810][ T7905] loop0: detected capacity change from 0 to 512 [ 253.651163][ T7905] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 253.729826][ T7905] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 254.435071][ T29] audit: type=1800 audit(254.387:360): pid=7935 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="file1" dev="sda1" ino=1948 res=0 errno=0 [ 254.557074][ T7930] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback. [ 254.765923][ T6253] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 255.286652][ T7962] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. [ 255.332881][ T1241] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.362583][ T1241] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.360761][ T7977] loop0: detected capacity change from 0 to 64 [ 256.415715][ T7982] trusted_key: encrypted_key: insufficient parameters specified [ 257.547623][ T5178] usb 6-1: new low-speed USB device number 6 using dummy_hcd [ 257.779212][ T5178] usb 6-1: config index 0 descriptor too short (expected 16420, got 36) [ 257.793518][ T5178] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 257.803868][ T7995] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 257.841311][ T7998] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 257.849613][ T5178] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 4 [ 257.875778][ T5178] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 257.905380][ T5178] usb 6-1: New USB device found, idVendor=1a8d, idProduct=100d, bcdDevice=dd.34 [ 257.926990][ T5178] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 257.969075][ T5178] usb 6-1: config 0 descriptor?? [ 257.991756][ T5178] option 6-1:0.0: GSM modem (1-port) converter detected [ 258.242436][ T5178] usb 6-1: USB disconnect, device number 6 [ 258.262391][ T5178] option 6-1:0.0: device disconnected [ 258.492594][ T8019] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. [ 261.363440][ T29] audit: type=1804 audit(261.317:361): pid=8030 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir318909906/syzkaller.P68DjD/40/cgroup.controllers" dev="sda1" ino=1958 res=1 errno=0 [ 262.668049][ T5117] Bluetooth: hci0: command 0x0406 tx timeout [ 263.236139][ T8073] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 264.177204][ C1] sched: RT throttling activated [ 267.915697][ T29] audit: type=1804 audit(267.867:362): pid=8103 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir1049295239/syzkaller.ozd2S6/24/cgroup.controllers" dev="sda1" ino=1945 res=1 errno=0 [ 269.281907][ T8156] EXT4-fs warning (device sda1): ext4_group_extend:1861: can't shrink FS - resize aborted [ 271.024338][ T8191] loop5: detected capacity change from 0 to 2048 [ 271.125607][ T8197] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 271.228163][ T8197] NILFS (loop5): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 271.257095][ T8197] NILFS error (device loop5): nilfs_bmap_propagate: broken bmap (inode number=4) [ 271.297397][ T29] audit: type=1804 audit(271.247:363): pid=8208 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir1503777216/syzkaller.DYmNwI/94/file0" dev="sda1" ino=1945 res=1 errno=0 [ 271.321995][ C1] vkms_vblank_simulate: vblank timer overrun [ 271.350005][ T8197] Remounting filesystem read-only [ 271.382617][ T29] audit: type=1804 audit(271.337:364): pid=8199 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir1049295239/syzkaller.ozd2S6/26/cgroup.controllers" dev="sda1" ino=1967 res=1 errno=0 [ 271.387165][ T8201] tipc: Started in network mode [ 271.408339][ C1] vkms_vblank_simulate: vblank timer overrun [ 271.438392][ T8205] syz-executor.5 (8205) used greatest stack depth: 18616 bytes left [ 271.461904][ T8201] tipc: Node identity c69b0f027ed3, cluster identity 4711 [ 271.486185][ T8201] tipc: Enabled bearer , priority 0 [ 271.530789][ T5109] NILFS (loop5): disposed unprocessed dirty file(s) when stopping log writer [ 271.565789][ T5109] NILFS (loop5): discard dirty page: offset=0, ino=2 [ 271.592972][ T5109] NILFS (loop5): discard dirty block: blocknr=18, size=1024 [ 271.625495][ T5109] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 271.654377][ T5109] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 271.655817][ T8200] tipc: Resetting bearer [ 271.687004][ T5109] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 271.713975][ T5109] NILFS (loop5): discard dirty page: offset=0, ino=18 [ 271.750028][ T5109] NILFS (loop5): discard dirty block: blocknr=0, size=1024 [ 271.773264][ T5109] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 271.832423][ T5109] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 271.834570][ T8200] tipc: Disabling bearer [ 271.887746][ T5109] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 271.897101][ T5109] NILFS (loop5): discard dirty page: offset=134217728, ino=18 [ 271.920802][ T5109] NILFS (loop5): discard dirty block: blocknr=0, size=1024 [ 271.940462][ T5109] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 271.991726][ T5109] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 272.030714][ T5109] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 272.072256][ T5109] NILFS (loop5): discard dirty page: offset=0, ino=6 [ 272.105047][ T5109] NILFS (loop5): discard dirty block: blocknr=35, size=1024 [ 272.147165][ T5109] NILFS (loop5): discard dirty block: blocknr=36, size=1024 [ 272.154629][ T5109] NILFS (loop5): discard dirty block: blocknr=37, size=1024 [ 272.208094][ T5109] NILFS (loop5): discard dirty block: blocknr=38, size=1024 [ 272.233623][ T5109] NILFS (loop5): discard dirty page: offset=4096, ino=6 [ 272.249513][ T5109] NILFS (loop5): discard dirty block: blocknr=39, size=1024 [ 272.260236][ T8229] netlink: 'syz-executor.2': attribute type 3 has an invalid length. [ 272.281305][ T8229] netlink: 'syz-executor.2': attribute type 1 has an invalid length. [ 272.290361][ T5109] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 272.308621][ T8229] netlink: 181400 bytes leftover after parsing attributes in process `syz-executor.2'. [ 272.327334][ T5109] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 272.336257][ T5109] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 272.397996][ T5109] NILFS (loop5): discard dirty page: offset=0, ino=5 [ 272.404793][ T5109] NILFS (loop5): discard dirty block: blocknr=41, size=1024 [ 272.469566][ T5109] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 272.505425][ T5109] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 272.537592][ T5109] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 272.546854][ T5109] NILFS (loop5): discard dirty page: offset=0, ino=4 [ 272.573807][ T5109] NILFS (loop5): discard dirty block: blocknr=40, size=1024 [ 272.650187][ T5109] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 272.827898][ T5109] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 272.971786][ T5109] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 273.148786][ T5109] NILFS (loop5): discard dirty page: offset=0, ino=3 [ 273.257008][ T5109] NILFS (loop5): discard dirty block: blocknr=42, size=1024 [ 273.381023][ T5109] NILFS (loop5): discard dirty block: blocknr=43, size=1024 [ 273.444392][ T5109] NILFS (loop5): discard dirty block: blocknr=44, size=1024 [ 273.451842][ T5109] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 273.460944][ T5109] NILFS (loop5): discard dirty page: offset=65536, ino=3 [ 273.469395][ T5109] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 273.479422][ T5109] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 273.488464][ T5109] NILFS (loop5): discard dirty block: blocknr=0, size=1024 [ 273.495688][ T5109] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 273.504852][ T5109] NILFS (loop5): discard dirty page: offset=196608, ino=3 [ 273.514633][ T5109] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 273.527353][ T5109] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 273.602544][ T5109] NILFS (loop5): discard dirty block: blocknr=49, size=1024 [ 273.614451][ T5109] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 273.789800][ T8261] loop0: detected capacity change from 0 to 164 [ 275.629135][ T8269] tipc: Started in network mode [ 275.653269][ T8269] tipc: Node identity 8a45a639a0a8, cluster identity 4711 [ 275.682262][ T8269] tipc: Enabled bearer , priority 0 [ 276.080888][ T8283] loop5: detected capacity change from 0 to 32768 [ 276.497054][ T8283] bcachefs (loop5): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,noshard_inode_numbers,noinodes_use_key_cache,gc_reserve_bytes=512 GiB,nojournal_transaction_names [ 276.500265][ T8292] loop0: detected capacity change from 0 to 64 [ 276.517977][ T8283] bcachefs (loop5): recovering from clean shutdown, journal seq 8 [ 276.576186][ T8268] tipc: Resetting bearer [ 276.599044][ T8283] bcachefs (loop5): alloc_read... done [ 276.604704][ T8283] bcachefs (loop5): stripes_read... done [ 276.610893][ T8283] bcachefs (loop5): snapshots_read... done [ 276.620834][ T8283] bcachefs (loop5): journal_replay... done [ 276.626883][ T8283] bcachefs (loop5): resume_logged_ops... done [ 276.634350][ T8283] bcachefs (loop5): going read-write [ 276.667847][ T8283] bcachefs (loop5): done starting filesystem [ 276.805995][ T8268] tipc: Disabling bearer [ 276.812441][ T5123] tipc: Node number set to 720217657 [ 276.942042][ T8281] syz-executor.5 (8281) used greatest stack depth: 15000 bytes left [ 279.265054][ T5109] bcachefs (loop5): shutting down [ 279.368776][ T5109] bcachefs (loop5): going read-only [ 279.420146][ T5109] bcachefs (loop5): finished waiting for writes to stop [ 282.254909][ T5109] bcachefs (loop5): flushing journal and stopping allocators, journal seq 10 [ 282.308968][ T5109] bcachefs (loop5): flushing journal and stopping allocators complete, journal seq 10 [ 282.383332][ T5109] bcachefs (loop5): shutdown complete, journal seq 11 [ 282.392698][ T5109] bcachefs (loop5): marking filesystem clean [ 282.553748][ T8318] loop0: detected capacity change from 0 to 1024 [ 282.755310][ T8318] hfsplus: failed to load root directory [ 283.048754][ T5109] bcachefs (loop5): shutdown complete [ 284.002426][ T8318] loop0: detected capacity change from 0 to 64 [ 284.065194][ T8318] hfs: bad catalog namelength [ 284.090005][ T8318] hfs: get root inode failed [ 284.479159][ T8351] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 284.513484][ T29] audit: type=1804 audit(284.467:365): pid=8336 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir1503777216/syzkaller.DYmNwI/102/cgroup.controllers" dev="sda1" ino=1942 res=1 errno=0 [ 285.124282][ T8357] loop0: detected capacity change from 0 to 256 [ 285.564587][ T8363] Falling back ldisc for ptm0. [ 286.740640][ T8379] loop0: detected capacity change from 0 to 1024 [ 286.803598][ T8379] EXT4-fs: quotafile must be on filesystem root [ 286.846239][ T8381] mkiss: ax0: crc mode is auto. [ 287.049761][ T8388] mkiss: ax0: crc mode is auto. [ 287.138905][ T8392] loop5: detected capacity change from 0 to 256 [ 287.543569][ T29] audit: type=1804 audit(287.497:366): pid=8390 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3966407931/syzkaller.L4b8WV/135/cgroup.controllers" dev="sda1" ino=1952 res=1 errno=0 [ 288.021927][ T8416] netlink: 'syz-executor.4': attribute type 29 has an invalid length. [ 288.032573][ T8416] netlink: 'syz-executor.4': attribute type 29 has an invalid length. [ 289.499616][ T8430] mkiss: ax0: crc mode is auto. [ 289.568630][ T29] audit: type=1800 audit(289.527:367): pid=8437 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1963 res=0 errno=0 [ 289.653122][ T29] audit: type=1800 audit(289.527:368): pid=8437 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1963 res=0 errno=0 [ 289.679344][ T8436] mkiss: ax0: crc mode is auto. [ 291.765638][ T8482] mkiss: ax0: crc mode is auto. [ 292.313204][ T8496] loop0: detected capacity change from 0 to 256 [ 292.328694][ T8496] exfat: Deprecated parameter 'utf8' [ 292.334282][ T8496] exfat: Deprecated parameter 'utf8' [ 292.562689][ T8496] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 293.082079][ T8482] mkiss: ax0: crc mode is auto. [ 293.512683][ T8505] loop5: detected capacity change from 0 to 1024 [ 295.355639][ T8532] loop0: detected capacity change from 0 to 4096 [ 295.441198][ T8543] mkiss: ax0: crc mode is auto. [ 295.468125][ T8532] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 297.151943][ T8550] mkiss: ax0: crc mode is auto. [ 297.219850][ T8532] ntfs3: loop0: Failed to initialize $Extend/$Reparse. [ 297.605678][ T8565] netlink: 104 bytes leftover after parsing attributes in process `syz-executor.4'. [ 298.145114][ T8583] vxcan0: tx drop: invalid da for name 0x0000000000000003 [ 298.290932][ T29] audit: type=1326 audit(298.257:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8584 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4913c7d0a9 code=0x0 [ 298.371673][ T5117] Bluetooth: hci6: command 0x0406 tx timeout [ 298.396959][ T8588] input: syz0 as /devices/virtual/input/input11 [ 299.823072][ T8620] loop5: detected capacity change from 0 to 128 [ 299.863631][ T8624] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 302.449632][ T29] audit: type=1326 audit(302.407:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8643 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4913c7d0a9 code=0x0 [ 302.507838][ T8649] input: syz0 as /devices/virtual/input/input13 [ 303.647784][ T5117] Bluetooth: hci7: command 0x0406 tx timeout [ 304.136145][ T8660] loop0: detected capacity change from 0 to 1764 [ 304.483650][ T8687] loop5: detected capacity change from 0 to 128 [ 305.735341][ T29] audit: type=1326 audit(305.687:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8700 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe38ee7d0a9 code=0x0 [ 305.804695][ T8707] input: syz0 as /devices/virtual/input/input14 [ 309.028567][ T8781] loop0: detected capacity change from 0 to 256 [ 309.043744][ T8781] exfat: Deprecated parameter 'utf8' [ 309.049460][ T8781] exfat: Deprecated parameter 'utf8' [ 309.090125][ T8781] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 310.411273][ T8794] syz-executor.2 (pid 8794) is setting deprecated v1 encryption policy; recommend upgrading to v2. [ 311.783905][ T8820] loop5: detected capacity change from 0 to 2048 [ 311.859019][ T8820] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 315.278149][ T5117] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 315.291400][ T5117] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 315.300442][ T5117] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 315.315157][ T5117] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 315.328617][ T5117] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 315.336679][ T5117] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 315.662987][ T29] audit: type=1326 audit(315.617:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8880 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe38ee7d0a9 code=0x7ffc0000 [ 315.765128][ T29] audit: type=1326 audit(315.617:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8880 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe38ee7d0a9 code=0x7ffc0000 [ 315.843386][ T29] audit: type=1326 audit(315.617:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8880 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe38ee7d0a9 code=0x7ffc0000 [ 318.157470][ T5128] Bluetooth: hci4: command tx timeout [ 318.529648][ T1241] ieee802154 phy0 wpan0: encryption failed: -22 [ 318.536078][ T1241] ieee802154 phy1 wpan1: encryption failed: -22 [ 318.677509][ T29] audit: type=1326 audit(315.617:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8880 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe38ee7d0a9 code=0x7ffc0000 [ 318.737534][ T8884] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 318.799434][ T29] audit: type=1326 audit(315.627:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8880 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe38ee7d0a9 code=0x7ffc0000 [ 318.933043][ T35] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 318.957458][ T29] audit: type=1326 audit(315.677:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8880 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe38ee7d0a9 code=0x7ffc0000 [ 318.995251][ T29] audit: type=1326 audit(315.687:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8880 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe38ee7a827 code=0x7ffc0000 [ 319.026759][ T29] audit: type=1326 audit(315.687:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8880 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fe38ee404e9 code=0x7ffc0000 [ 319.056827][ T29] audit: type=1326 audit(315.687:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8880 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe38ee7a827 code=0x7ffc0000 [ 319.163270][ T29] audit: type=1326 audit(315.687:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8880 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fe38ee404e9 code=0x7ffc0000 [ 319.208325][ T5178] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 319.252608][ T35] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 319.421562][ T5178] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 319.451034][ T5178] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 319.482708][ T5178] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 319.568609][ T5178] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 319.658555][ T8888] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 319.843104][ T35] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 320.208963][ T5117] Bluetooth: hci4: command tx timeout [ 320.449476][ T35] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 320.587963][ T5178] usb 2-1: USB disconnect, device number 5 [ 320.605274][ T8916] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 320.649898][ T8916] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 320.722419][ T8874] chnl_net:caif_netlink_parms(): no params data found [ 320.781733][ T35] bridge_slave_1: left allmulticast mode [ 320.803827][ T35] bridge_slave_1: left promiscuous mode [ 320.827839][ T35] bridge0: port 2(bridge_slave_1) entered disabled state [ 320.992193][ T35] bridge_slave_0: left allmulticast mode [ 321.053057][ T35] bridge_slave_0: left promiscuous mode [ 321.099901][ T35] bridge0: port 1(bridge_slave_0) entered disabled state [ 322.287823][ T5117] Bluetooth: hci4: command tx timeout [ 322.337325][ T5176] usb 4-1: new low-speed USB device number 5 using dummy_hcd [ 322.542301][ T5176] usb 4-1: config 1 interface 0 altsetting 2 endpoint 0x81 has invalid maxpacket 64, setting to 8 [ 322.616322][ T5176] usb 4-1: config 1 interface 0 altsetting 2 endpoint 0x2 has invalid maxpacket 1023, setting to 8 [ 322.682397][ T5176] usb 4-1: config 1 interface 0 has no altsetting 0 [ 322.742343][ T5176] usb 4-1: New USB device found, idVendor=056a, idProduct=005b, bcdDevice= 0.40 [ 322.773226][ T5176] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 322.804656][ T5176] usb 4-1: Product: ဉ [ 322.821490][ T5176] usb 4-1: Manufacturer: 輘⦙須젢퀫떻ì‹àª˜êƒ ë«¡Ì…㰴賰Ȉﶆï¸ï¢®èŸ·ä “疼ㅴ싰뵛充謣讶炑ê¤î¨€ä°£é‹žá¸²åŽ Ó´åŸïƒ½á¾ˆë‡œá¨›îˆè¤®éŸŠí‘“æ±ì‚붰Ⅸ䗫Ԃູՠ饱챳龠寙ꚴ翣䛳擲첒潉歓장爼塃辡຋耬î¸è°‡å¢‘欵ï±ï•– [ 322.929137][ T5176] usb 4-1: SerialNumber: 咙艅ç¿ì¯¨ìž‚ৈꅬ腕ä­ï¯é¤®á·î¨±â¹ç‡Í€î‚…鵉莡傲粧귓鵿팋ﲅ⇗⵨⦫矊渖塟ꗔꔪ㴰ལ꧴໠所᜼ⴱ뿣긣ëµæ¸­å¾‚췟䵕䲦莢홴æ´ì¨å£¯ç¥¦â¥¥ë² î‰šáêŠá¨ºà«ží›¦ë™™î¼ƒä•²ê¾‘﷙ﳕᗟ⡋䟼笤籺嗗续甦翯é›ë ±ï¦‘ᔫ燛⧅⿪㟛짽㆟ï€î“£ä¼ªêŠ†ç„­ã¶â‘™î¾Šïº£Ð¥îƒ¹âŒ‚î‹·ì¯ê„¥Æ…ä„—ï•°×– [ 323.082109][ T8937] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 323.090407][ T8937] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 323.259237][ T35] dvmrp1 (unregistering): left allmulticast mode [ 324.378905][ T5117] Bluetooth: hci4: command tx timeout [ 324.659342][ T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 324.685318][ T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 324.715823][ T35] bond0 (unregistering): Released all slaves [ 324.880702][ T5176] usbhid 4-1:1.0: can't add hid device: -71 [ 324.886796][ T5176] usbhid 4-1:1.0: probe with driver usbhid failed with error -71 [ 324.925039][ T5176] usb 4-1: USB disconnect, device number 5 [ 327.676971][ T8999] netlink: 'syz-executor.4': attribute type 10 has an invalid length. [ 327.717743][ T8999] netlink: 2 bytes leftover after parsing attributes in process `syz-executor.4'. [ 327.761574][ T8999] bond0: entered promiscuous mode [ 327.781058][ T8999] bond_slave_0: entered promiscuous mode [ 327.996973][ T8999] bond_slave_1: entered promiscuous mode [ 328.004534][ T8999] bridge0: port 3(bond0) entered blocking state [ 328.013530][ T8999] bridge0: port 3(bond0) entered disabled state [ 328.020965][ T8999] bond0: entered allmulticast mode [ 328.026186][ T8999] bond_slave_0: entered allmulticast mode [ 328.042484][ T8999] bond_slave_1: entered allmulticast mode [ 329.415250][ T8999] bridge0: port 3(bond0) entered blocking state [ 329.422757][ T8999] bridge0: port 3(bond0) entered forwarding state [ 330.276941][ T8998] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 330.350602][ T9003] netlink: 'syz-executor.4': attribute type 10 has an invalid length. [ 330.464024][ T9003] syz_tun: entered promiscuous mode [ 330.467497][ T5290] usb 3-1: new low-speed USB device number 3 using dummy_hcd [ 330.507535][ T9003] syz_tun: entered allmulticast mode [ 330.526358][ T9003] bond0: (slave syz_tun): Enslaving as an active interface with an up link [ 330.557737][ T8874] bridge0: port 1(bridge_slave_0) entered blocking state [ 330.567650][ T8874] bridge0: port 1(bridge_slave_0) entered disabled state [ 330.575021][ T8874] bridge_slave_0: entered allmulticast mode [ 330.625848][ T8874] bridge_slave_0: entered promiscuous mode [ 330.651216][ T8874] bridge0: port 2(bridge_slave_1) entered blocking state [ 330.670535][ T8874] bridge0: port 2(bridge_slave_1) entered disabled state [ 330.687904][ T8874] bridge_slave_1: entered allmulticast mode [ 330.690125][ T5290] usb 3-1: config 1 interface 0 altsetting 2 endpoint 0x81 has invalid maxpacket 64, setting to 8 [ 330.722552][ T8874] bridge_slave_1: entered promiscuous mode [ 331.778804][ T5290] usb 3-1: config 1 interface 0 altsetting 2 endpoint 0x2 has invalid maxpacket 1023, setting to 8 [ 331.858662][ T5290] usb 3-1: config 1 interface 0 has no altsetting 0 [ 331.866163][ T5290] usb 3-1: string descriptor 0 read error: -71 [ 331.887471][ T5290] usb 3-1: New USB device found, idVendor=056a, idProduct=005b, bcdDevice= 0.40 [ 331.896701][ T5290] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 331.933310][ T5290] usb 3-1: can't set config #1, error -71 [ 331.953279][ T5290] usb 3-1: USB disconnect, device number 3 [ 332.071234][ T9036] loop5: detected capacity change from 0 to 1024 [ 332.090352][ T9036] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 332.191777][ T9036] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz-executor.5: Invalid block bitmap block 0 in block_group 0 [ 332.212419][ T9036] __quota_error: 55 callbacks suppressed [ 332.212445][ T9036] Quota error (device loop5): write_blk: dquota write failed [ 332.226861][ T9036] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota [ 332.237557][ T9036] EXT4-fs error (device loop5): ext4_acquire_dquot:6860: comm syz-executor.5: Failed to acquire dquot type 0 [ 332.281089][ T9036] EXT4-fs error (device loop5): ext4_free_blocks:6590: comm syz-executor.5: Freeing blocks not in datazone - block = 0, count = 4096 [ 332.310528][ T9036] EXT4-fs error (device loop5): ext4_read_inode_bitmap:140: comm syz-executor.5: Invalid inode bitmap blk 0 in block_group 0 [ 332.589254][ T9036] EXT4-fs error (device loop5) in ext4_free_inode:362: Corrupt filesystem [ 332.608094][ T9036] EXT4-fs (loop5): 1 orphan inode deleted [ 332.643203][ T9036] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 332.799126][ T1092] Quota error (device loop5): do_check_range: Getting block 0 out of range 1-8 [ 332.816334][ T1092] EXT4-fs error (device loop5): ext4_release_dquot:6883: comm kworker/u8:6: Failed to release dquot type 0 [ 333.277922][ T35] hsr_slave_0: left promiscuous mode [ 333.328203][ T35] hsr_slave_1: left promiscuous mode [ 333.366906][ T29] audit: type=1804 audit(333.317:437): pid=9056 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir318909906/syzkaller.P68DjD/113/bus" dev="sda1" ino=1966 res=1 errno=0 [ 333.399060][ T9036] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback. [ 333.410194][ T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 333.419957][ T9056] Invalid ELF header magic: != ELF [ 333.443845][ T35] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 333.468670][ T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 333.487751][ T29] audit: type=1800 audit(333.357:438): pid=9056 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1966 res=0 errno=0 [ 333.487878][ T35] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 333.712801][ T5109] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 333.837504][ T35] veth1_macvtap: left promiscuous mode [ 333.843174][ T35] veth0_macvtap: left promiscuous mode [ 333.897517][ T35] veth1_vlan: left promiscuous mode [ 333.913296][ T35] veth0_vlan: left promiscuous mode [ 334.296873][ T29] audit: type=1804 audit(334.247:439): pid=9064 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir1337775100/syzkaller.K4Am2K/283/bus" dev="sda1" ino=1967 res=1 errno=0 [ 334.325021][ T9064] Invalid ELF header magic: != ELF [ 334.363392][ T9064] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 336.349960][ T9097] netlink: 'syz-executor.4': attribute type 5 has an invalid length. [ 336.449912][ T5182] usb 4-1: new low-speed USB device number 6 using dummy_hcd [ 336.992224][ T5178] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 337.041523][ T5182] usb 4-1: config 1 interface 0 altsetting 2 endpoint 0x81 has invalid maxpacket 64, setting to 8 [ 337.108032][ T5182] usb 4-1: config 1 interface 0 altsetting 2 endpoint 0x2 has invalid maxpacket 1023, setting to 8 [ 337.193872][ T5182] usb 4-1: config 1 interface 0 has no altsetting 0 [ 337.326059][ T5178] usb 2-1: Using ep0 maxpacket: 16 [ 337.368691][ T5178] usb 2-1: New USB device found, idVendor=108c, idProduct=0159, bcdDevice=20.64 [ 337.398075][ T5182] usb 4-1: New USB device found, idVendor=056a, idProduct=005b, bcdDevice= 0.40 [ 337.417314][ T5178] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 337.425561][ T5182] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 337.453052][ T5182] usb 4-1: Product: ဉ [ 337.491216][ T5182] usb 4-1: Manufacturer: 輘⦙須젢퀫떻ì‹àª˜êƒ ë«¡Ì…㰴賰Ȉﶆï¸ï¢®èŸ·ä “疼ㅴ싰뵛充謣讶炑ê¤î¨€ä°£é‹žá¸²åŽ Ó´åŸïƒ½á¾ˆë‡œá¨›îˆè¤®éŸŠí‘“æ±ì‚붰Ⅸ䗫Ԃູՠ饱챳龠寙ꚴ翣䛳擲첒潉歓장爼塃辡຋耬î¸è°‡å¢‘欵ï±ï•– [ 337.515998][ C0] vkms_vblank_simulate: vblank timer overrun [ 337.558745][ T5178] usb 2-1: config 0 descriptor?? [ 337.626601][ T5182] usb 4-1: SerialNumber: 咙艅ç¿ì¯¨ìž‚ৈꅬ腕ä­ï¯é¤®á·î¨±â¹ç‡Í€î‚…鵉莡傲粧귓鵿팋ﲅ⇗⵨⦫矊渖塟ꗔꔪ㴰ལ꧴໠所᜼ⴱ뿣긣ëµæ¸­å¾‚췟䵕䲦莢홴æ´ì¨å£¯ç¥¦â¥¥ë² î‰šáêŠá¨ºà«ží›¦ë™™î¼ƒä•²ê¾‘﷙ﳕᗟ⡋䟼笤籺嗗续甦翯é›ë ±ï¦‘ᔫ燛⧅⿪㟛짽㆟ï€î“£ä¼ªêŠ†ç„­ã¶â‘™î¾Šïº£Ð¥îƒ¹âŒ‚î‹·ì¯ê„¥Æ…ä„—ï•°×– [ 337.659835][ C0] vkms_vblank_simulate: vblank timer overrun [ 337.813280][ T5178] usb 2-1: USB disconnect, device number 6 [ 337.823936][ T9094] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 337.831542][ T9094] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 338.267678][ T35] team0 (unregistering): Port device team_slave_1 removed [ 338.313538][ T9109] loop5: detected capacity change from 0 to 2048 [ 338.322157][ T9109] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=18576, location=18576 [ 338.343030][ T9109] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 338.358312][ T35] team0 (unregistering): Port device team_slave_0 removed [ 338.917224][ C0] hrtimer: interrupt took 66060 ns [ 340.638345][ T9066] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 340.673197][ T8874] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 340.708297][ T5182] usbhid 4-1:1.0: can't add hid device: -71 [ 340.727469][ T5182] usbhid 4-1:1.0: probe with driver usbhid failed with error -71 [ 340.760194][ T5182] usb 4-1: USB disconnect, device number 6 [ 340.919108][ T8874] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 341.054918][ T5109] UDF-fs: error (device loop5): udf_read_inode: (ino 1317) failed !bh [ 341.086159][ T5109] UDF-fs: error (device loop5): udf_read_inode: (ino 1317) failed !bh [ 341.203750][ T8874] team0: Port device team_slave_0 added [ 341.297385][ T9130] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4) [ 341.304539][ T9130] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 341.340257][ T9130] vhci_hcd vhci_hcd.0: Device attached [ 341.390477][ T8874] team0: Port device team_slave_1 added [ 341.624197][ T8874] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 341.632053][ T8874] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 341.658004][ C1] vkms_vblank_simulate: vblank timer overrun [ 341.753993][ T8874] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 341.780768][ T5182] usb 12-1: SetAddress Request (2) to port 0 [ 341.822903][ T8874] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 341.831887][ T5182] usb 12-1: new SuperSpeed USB device number 2 using vhci_hcd [ 341.858300][ T8874] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 341.970254][ T8874] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 342.332977][ T8874] hsr_slave_0: entered promiscuous mode [ 342.345586][ T9131] vhci_hcd: connection reset by peer [ 342.363893][ T8874] hsr_slave_1: entered promiscuous mode [ 342.426309][ T8874] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 342.477090][ T12] vhci_hcd: stop threads [ 342.484776][ T12] vhci_hcd: release socket [ 342.491367][ T8874] Cannot create hsr debugfs directory [ 342.557374][ T12] vhci_hcd: disconnect device [ 344.396433][ T35] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 344.451152][ T5128] Bluetooth: hci3: command 0x0406 tx timeout [ 344.542320][ T5128] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 344.559175][ T5128] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 344.571598][ T5128] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 344.582026][ T5128] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 344.595013][ T5128] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 344.602583][ T5128] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 344.921783][ T35] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 345.023482][ T9185] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'. [ 345.331456][ T9194] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(4) [ 345.338058][ T9194] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 345.692918][ T9194] vhci_hcd vhci_hcd.0: Device attached [ 345.793632][ T35] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 346.233017][ T9195] vhci_hcd: cannot find the pending unlink 0 [ 346.401383][ T5178] usb 18-1: SetAddress Request (2) to port 0 [ 346.442133][ T5178] usb 18-1: new SuperSpeed USB device number 2 using vhci_hcd [ 346.685431][ T35] team0: Port device netdevsim0 removed [ 346.693332][ T5117] Bluetooth: hci1: command tx timeout [ 346.723748][ T35] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 346.789020][ T9195] vhci_hcd: connection reset by peer [ 346.819702][ T951] vhci_hcd: stop threads [ 346.823996][ T951] vhci_hcd: release socket [ 346.838897][ T951] vhci_hcd: disconnect device [ 346.927839][ T5182] usb 12-1: device descriptor read/8, error -110 [ 347.354308][ T5182] usb usb12-port1: attempt power cycle [ 347.662481][ T35] bridge_slave_1: left allmulticast mode [ 347.672097][ T35] bridge_slave_1: left promiscuous mode [ 347.844648][ T35] bridge0: port 2(bridge_slave_1) entered disabled state [ 347.884815][ T35] bridge_slave_0: left allmulticast mode [ 347.902392][ T35] bridge_slave_0: left promiscuous mode [ 347.927508][ T35] bridge0: port 1(bridge_slave_0) entered disabled state [ 348.021413][ T5182] usb usb12-port1: unable to enumerate USB device [ 348.267526][ T5204] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 348.707754][ C1] vkms_vblank_simulate: vblank timer overrun [ 349.171293][ T5204] usb 5-1: Using ep0 maxpacket: 8 [ 349.224367][ T5117] Bluetooth: hci1: command tx timeout [ 349.243257][ T29] audit: type=1326 audit(349.117:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9222 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4913c7d0a9 code=0x0 [ 349.363907][ T5204] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 349.618448][ T5204] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 349.630064][ T5204] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 349.687409][ T5204] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 349.714131][ T5204] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40 [ 349.747293][ T5204] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 349.773800][ T5204] usb 5-1: SerialNumber: syz [ 349.832481][ T5204] cdc_ether 5-1:1.0: probe with driver cdc_ether failed with error -22 [ 349.847723][ T5204] usb-storage 5-1:1.0: USB Mass Storage device detected [ 349.889810][ T5204] usb-storage 5-1:1.0: Quirks match for vid 0525 pid a4a5: 10000 [ 350.102828][ T5204] usb 5-1: USB disconnect, device number 5 [ 351.205034][ T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 351.219682][ T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 351.234241][ T35] bond0 (unregistering): Released all slaves [ 351.327432][ T5117] Bluetooth: hci1: command tx timeout [ 351.443145][ T35] tipc: Left network mode [ 351.505348][ T9173] chnl_net:caif_netlink_parms(): no params data found [ 351.567683][ T5178] usb 18-1: device descriptor read/8, error -110 [ 351.890142][ T8874] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 351.980547][ T8874] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 352.029006][ T5178] usb usb18-port1: attempt power cycle [ 352.057000][ T8874] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 353.619978][ T5117] Bluetooth: hci1: command tx timeout [ 353.919751][ T5178] usb usb18-port1: unable to enumerate USB device [ 354.048489][ T8874] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 354.492750][ T35] hsr_slave_0: left promiscuous mode [ 354.511179][ T35] hsr_slave_1: left promiscuous mode [ 354.528065][ T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 354.537126][ T35] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 354.555510][ T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 354.564218][ T35] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 354.567643][ T5175] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 354.637679][ T35] veth1_macvtap: left promiscuous mode [ 354.648307][ T35] veth0_macvtap: left promiscuous mode [ 354.662453][ T35] veth1_vlan: left promiscuous mode [ 354.678293][ T35] veth0_vlan: left promiscuous mode [ 354.817327][ T5175] usb 4-1: Using ep0 maxpacket: 8 [ 355.031007][ T5175] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 355.055484][ T5175] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 355.067113][ T5175] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 355.077513][ T5175] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 355.094482][ T5175] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40 [ 355.107283][ T5175] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 355.124724][ T5175] usb 4-1: SerialNumber: syz [ 355.137787][ T5175] cdc_ether 4-1:1.0: probe with driver cdc_ether failed with error -22 [ 355.166143][ T5175] usb-storage 4-1:1.0: USB Mass Storage device detected [ 355.218863][ T5175] usb-storage 4-1:1.0: Quirks match for vid 0525 pid a4a5: 10000 [ 355.438615][ T5175] usb 4-1: USB disconnect, device number 7 [ 356.663931][ T9326] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. [ 358.198022][ T8] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 358.271734][ T35] team0 (unregistering): Port device team_slave_1 removed [ 358.379266][ T8] usb 5-1: Using ep0 maxpacket: 8 [ 358.389842][ T8] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 358.389932][ T8] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 358.389968][ T8] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 358.389996][ T8] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 358.391461][ T8] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40 [ 358.391493][ T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 358.391520][ T8] usb 5-1: SerialNumber: syz [ 358.424042][ T8] cdc_ether 5-1:1.0: probe with driver cdc_ether failed with error -22 [ 358.437398][ T8] usb-storage 5-1:1.0: USB Mass Storage device detected [ 358.521199][ T8] usb-storage 5-1:1.0: Quirks match for vid 0525 pid a4a5: 10000 [ 358.860698][ T35] team0 (unregistering): Port device team_slave_0 removed [ 358.932667][ T5175] usb 5-1: USB disconnect, device number 6 [ 361.832820][ T9377] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(4) [ 361.839405][ T9377] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 361.857384][ T9377] vhci_hcd vhci_hcd.0: Device attached [ 361.874411][ T9378] vhci_hcd: cannot find the pending unlink 0 [ 362.174079][ C1] vkms_vblank_simulate: vblank timer overrun [ 362.211941][ T5175] usb 18-1: SetAddress Request (6) to port 0 [ 362.218133][ T5175] usb 18-1: new SuperSpeed USB device number 6 using vhci_hcd [ 362.346689][ T9173] bridge0: port 1(bridge_slave_0) entered blocking state [ 362.356762][ T9173] bridge0: port 1(bridge_slave_0) entered disabled state [ 362.367601][ T9173] bridge_slave_0: entered allmulticast mode [ 362.405964][ T9173] bridge_slave_0: entered promiscuous mode [ 362.421959][ T9173] bridge0: port 2(bridge_slave_1) entered blocking state [ 362.439184][ T9173] bridge0: port 2(bridge_slave_1) entered disabled state [ 362.447791][ T9173] bridge_slave_1: entered allmulticast mode [ 362.461336][ T9173] bridge_slave_1: entered promiscuous mode [ 362.725591][ T9173] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 362.782736][ T9378] vhci_hcd: connection reset by peer [ 362.813376][ T1092] vhci_hcd: stop threads [ 362.822467][ T1092] vhci_hcd: release socket [ 362.845746][ T9173] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 362.868041][ T1092] vhci_hcd: disconnect device [ 363.403036][ T9173] team0: Port device team_slave_0 added [ 363.432586][ T9173] team0: Port device team_slave_1 added [ 363.718462][ T9173] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 363.718487][ T9173] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 363.718526][ T9173] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 363.735702][ T9173] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 363.735725][ T9173] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 363.735757][ T9173] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 364.187436][ T5170] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 364.446965][ T5170] usb 4-1: Using ep0 maxpacket: 8 [ 364.501363][ T9173] hsr_slave_0: entered promiscuous mode [ 364.625078][ T9173] hsr_slave_1: entered promiscuous mode [ 364.636026][ T5170] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 364.636294][ T5170] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 364.636398][ T5170] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 364.636490][ T5170] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 365.117387][ T5170] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40 [ 365.175940][ T9173] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 365.189715][ T9173] Cannot create hsr debugfs directory [ 365.230952][ T5170] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 365.239143][ T9419] lo: entered allmulticast mode [ 365.244734][ T5170] usb 4-1: SerialNumber: syz [ 365.252765][ T9420] pimreg: entered allmulticast mode [ 365.258279][ T9422] lo: left allmulticast mode [ 365.263028][ T9422] pimreg: left allmulticast mode [ 365.274790][ T5170] cdc_ether 4-1:1.0: probe with driver cdc_ether failed with error -22 [ 365.331434][ T5170] usb-storage 4-1:1.0: USB Mass Storage device detected [ 365.359282][ T5170] usb-storage 4-1:1.0: Quirks match for vid 0525 pid a4a5: 10000 [ 365.577314][ T5170] usb 4-1: USB disconnect, device number 8 [ 365.812918][ T8874] 8021q: adding VLAN 0 to HW filter on device bond0 [ 365.995385][ T9440] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 366.134134][ T8874] 8021q: adding VLAN 0 to HW filter on device team0 [ 366.155796][ T5174] bridge0: port 1(bridge_slave_0) entered blocking state [ 366.163125][ T5174] bridge0: port 1(bridge_slave_0) entered forwarding state [ 366.192207][ T5174] bridge0: port 2(bridge_slave_1) entered blocking state [ 366.199544][ T5174] bridge0: port 2(bridge_slave_1) entered forwarding state [ 366.402312][ T9449] trusted_key: encrypted_key: master key parameter is missing [ 367.397337][ T5175] usb 18-1: device descriptor read/8, error -110 [ 367.849210][ T5175] usb usb18-port1: attempt power cycle [ 368.659500][ T5175] usb usb18-port1: unable to enumerate USB device [ 378.232613][ T1241] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.239041][ T1241] ieee802154 phy1 wpan1: encryption failed: -22 [ 380.821866][ T5117] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 380.831832][ T5117] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 380.840475][ T5117] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 380.849088][ T5117] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 380.859178][ T5117] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3 [ 380.866614][ T5117] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2 [ 393.447426][ T5128] Bluetooth: hci8: command tx timeout [ 414.217404][ T5117] Bluetooth: hci8: command tx timeout [ 454.058074][ C0] EXT4-fs (loop2): error count since last fsck: 3 [ 454.065537][ C0] EXT4-fs (loop2): initial error at time 116: ext4_validate_block_bitmap:441 [ 454.074370][ C0] EXT4-fs (loop2): last error at time 116: ext4_free_branches:1030: inode 11 [ 454.095799][ C0] EXT4-fs (loop4): error count since last fsck: 3 [ 454.102297][ C0] EXT4-fs (loop4): initial error at time 149: ext4_validate_block_bitmap:441 [ 454.111101][ C0] EXT4-fs (loop4): last error at time 149: ext4_free_branches:1030: inode 11 [ 454.387305][ T5128] Bluetooth: hci8: command tx timeout [ 454.473215][ T1241] ieee802154 phy0 wpan0: encryption failed: -22 [ 454.479820][ T1241] ieee802154 phy1 wpan1: encryption failed: -22 [ 455.218433][ T5117] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1 [ 455.520248][ T4484] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9 [ 455.729818][ T5130] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1 [ 455.950919][ T5130] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9 [ 455.998366][ T5115] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1 [ 456.009130][ T5115] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9 [ 456.043047][ T5118] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1 [ 456.053402][ T5118] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9 [ 456.062044][ T5118] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9 [ 456.084553][ T5118] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9 [ 456.092951][ T5118] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9 [ 456.101965][ T5115] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4 [ 456.119299][ T5118] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9 [ 456.129586][ T5118] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4 [ 456.137690][ T5115] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3 [ 456.148738][ T5118] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4 [ 456.170380][ T5115] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2 [ 456.178290][ T5118] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3 [ 456.186088][ T5118] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4 [ 456.194939][ T5118] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3 [ 456.202195][ T5118] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2 [ 456.234599][ T53] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2 [ 456.241895][ T5118] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3 [ 456.274999][ T5118] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2 [ 522.777308][ T5130] Bluetooth: hci8: command tx timeout [ 522.783368][ T5130] Bluetooth: hci4: command 0x0406 tx timeout [ 522.907384][ T30] INFO: task kworker/u8:8:2442 blocked for more than 140 seconds. [ 522.915285][ T30] Not tainted 6.10.0-rc4-syzkaller-00301-g5f583a3162ff #0 [ 522.947326][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 522.956074][ T30] task:kworker/u8:8 state:D stack:19632 pid:2442 tgid:2442 ppid:2 flags:0x00004000 [ 522.977263][ T19] rcu: INFO: rcu_preempt detected expedited stalls on CPUs/tasks: { P8 } 6799 jiffies s: 14561 root: 0x0/T [ 522.997365][ T30] Workqueue: ipv6_addrconf addrconf_dad_work [ 523.003465][ T30] Call Trace: [ 523.006813][ T30] [ 523.017270][ T19] rcu: blocking rcu_node structures (internal RCU debug): [ 523.025305][ T30] __schedule+0x17e8/0x4a20 [ 523.037273][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 523.042986][ T30] ? __pfx___schedule+0x10/0x10 [ 523.057258][ T30] ? __pfx_lock_release+0x10/0x10 [ 523.062365][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 523.077296][ T30] ? kthread_data+0x52/0xd0 [ 523.081877][ T30] ? schedule+0x90/0x320 [ 523.086190][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 523.107271][ T30] ? wq_worker_sleeping+0x66/0x240 [ 523.112473][ T30] ? schedule+0x90/0x320 [ 523.116744][ T30] schedule+0x14b/0x320 [ 523.137263][ T30] schedule_preempt_disabled+0x13/0x30 [ 523.142805][ T30] __mutex_lock+0x6a4/0xd70 [ 523.157298][ T30] ? mark_lock+0x9a/0x350 [ 523.161766][ T30] ? __mutex_lock+0x527/0xd70 [ 523.166568][ T30] ? addrconf_dad_work+0xd0/0x16f0 [ 523.187255][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 523.193137][ T30] addrconf_dad_work+0xd0/0x16f0 [ 523.207264][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 523.212976][ T30] ? __pfx_addrconf_dad_work+0x10/0x10 [ 523.227887][ T1241] ieee802154 phy0 wpan0: encryption failed: -22 [ 523.234297][ T1241] ieee802154 phy1 wpan1: encryption failed: -22 [ 523.249303][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 523.255735][ T30] ? process_scheduled_works+0x945/0x1830 [ 523.277278][ T30] process_scheduled_works+0xa2e/0x1830 [ 523.282936][ T30] ? __pfx_process_scheduled_works+0x10/0x10 [ 523.297362][ T30] ? assign_work+0x364/0x3d0 [ 523.302059][ T30] worker_thread+0x86d/0xd70 [ 523.306696][ T30] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 523.327301][ T30] ? __kthread_parkme+0x169/0x1d0 [ 523.333158][ T30] ? __pfx_worker_thread+0x10/0x10 [ 523.347331][ T30] kthread+0x2f2/0x390 [ 523.351515][ T30] ? __pfx_worker_thread+0x10/0x10 [ 523.356656][ T30] ? __pfx_kthread+0x10/0x10 [ 523.377267][ T30] ret_from_fork+0x4d/0x80 [ 523.381817][ T30] ? __pfx_kthread+0x10/0x10 [ 523.386443][ T30] ret_from_fork_asm+0x1a/0x30 [ 523.407277][ T30] [ 523.410411][ T30] INFO: task kworker/0:5:5174 blocked for more than 141 seconds. [ 523.420101][ T30] Not tainted 6.10.0-rc4-syzkaller-00301-g5f583a3162ff #0 [ 523.427921][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 523.437802][ T30] task:kworker/0:5 state:D stack:22168 pid:5174 tgid:5174 ppid:2 flags:0x00004000 [ 523.473502][ T30] Workqueue: events linkwatch_event [ 523.487251][ T30] Call Trace: [ 523.490605][ T30] [ 523.493556][ T30] __schedule+0x17e8/0x4a20 [ 523.503262][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 523.509243][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 523.514917][ T30] ? __pfx___schedule+0x10/0x10 [ 523.519857][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 523.525970][ T30] ? __pfx_lock_release+0x10/0x10 [ 523.531082][ T30] ? kick_pool+0x45c/0x620 [ 523.536260][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 523.541565][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 523.547318][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 523.552565][ T30] ? schedule+0x90/0x320 [ 523.556833][ T30] schedule+0x14b/0x320 [ 523.561072][ T30] schedule_preempt_disabled+0x13/0x30 [ 523.566640][ T30] __mutex_lock+0x6a4/0xd70 [ 523.571226][ T30] ? __mutex_lock+0x527/0xd70 [ 523.575934][ T30] ? linkwatch_event+0xe/0x60 [ 523.580691][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 523.585765][ T30] ? process_scheduled_works+0x945/0x1830 [ 523.591561][ T30] linkwatch_event+0xe/0x60 [ 523.596088][ T30] process_scheduled_works+0xa2e/0x1830 [ 523.602343][ T30] ? __pfx_process_scheduled_works+0x10/0x10 [ 523.608625][ T30] ? assign_work+0x364/0x3d0 [ 523.613257][ T30] worker_thread+0x86d/0xd70 [ 523.617951][ T30] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 523.623895][ T30] ? __kthread_parkme+0x169/0x1d0 [ 523.628996][ T30] ? __pfx_worker_thread+0x10/0x10 [ 523.634224][ T30] kthread+0x2f2/0x390 [ 523.638778][ T30] ? __pfx_worker_thread+0x10/0x10 [ 523.643925][ T30] ? __pfx_kthread+0x10/0x10 [ 523.649005][ T30] ret_from_fork+0x4d/0x80 [ 523.653470][ T30] ? __pfx_kthread+0x10/0x10 [ 523.658160][ T30] ret_from_fork_asm+0x1a/0x30 [ 523.662981][ T30] [ 523.666040][ T30] INFO: task syz-executor.0:8874 blocked for more than 141 seconds. [ 523.674125][ T30] Not tainted 6.10.0-rc4-syzkaller-00301-g5f583a3162ff #0 [ 523.681810][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 523.690533][ T30] task:syz-executor.0 state:D stack:20288 pid:8874 tgid:8874 ppid:1 flags:0x00000006 [ 523.700896][ T30] Call Trace: [ 523.704728][ T30] [ 523.707736][ T30] __schedule+0x17e8/0x4a20 [ 523.712287][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 523.717999][ T30] ? __pfx___schedule+0x10/0x10 [ 523.722879][ T30] ? __pfx_lock_release+0x10/0x10 [ 523.727983][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 523.733494][ T30] ? schedule+0x90/0x320 [ 523.738200][ T30] schedule+0x14b/0x320 [ 523.742387][ T30] schedule_preempt_disabled+0x13/0x30 [ 523.748746][ T30] __mutex_lock+0x6a4/0xd70 [ 523.753293][ T30] ? __mutex_lock+0x527/0xd70 [ 523.758172][ T30] ? rtnetlink_rcv_msg+0x842/0x1180 [ 523.763423][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 523.768563][ T30] rtnetlink_rcv_msg+0x842/0x1180 [ 523.773632][ T30] ? rtnetlink_rcv_msg+0x208/0x1180 [ 523.778921][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 523.784412][ T30] ? is_bpf_text_address+0x285/0x2a0 [ 523.789781][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 523.795440][ T30] ? __pfx_validate_chain+0x10/0x10 [ 523.800815][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 523.807012][ T30] ? __pfx_validate_chain+0x10/0x10 [ 523.812312][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 523.818018][ T30] ? arch_stack_walk+0x16d/0x1b0 [ 523.823009][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 523.828800][ T30] ? mark_lock+0x9a/0x350 [ 523.833160][ T30] ? __pfx_validate_chain+0x10/0x10 [ 523.838450][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 523.844815][ T30] ? __lock_acquire+0x1346/0x1fd0 [ 523.850024][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 523.855719][ T30] ? mark_lock+0x9a/0x350 [ 523.860153][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 523.865809][ T30] ? __lock_acquire+0x1346/0x1fd0 [ 523.871029][ T30] netlink_rcv_skb+0x1e5/0x430 [ 523.875835][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 523.881384][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 523.886735][ T30] ? netlink_deliver_tap+0x2e/0x1b0 [ 523.892014][ T30] netlink_unicast+0x7ec/0x980 [ 523.896827][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 523.902489][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 523.908624][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 523.914286][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 523.920204][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 523.925864][ T30] ? __check_object_size+0x49c/0x900 [ 523.931279][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 523.936947][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 523.943099][ T30] netlink_sendmsg+0x8db/0xcb0 [ 523.948377][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 523.953714][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 523.959787][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 523.965450][ T30] ? aa_sock_msg_perm+0x91/0x160 [ 523.970482][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 523.976139][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 523.981857][ T30] ? security_socket_sendmsg+0x87/0xb0 [ 523.987396][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 523.992728][ T30] __sock_sendmsg+0x223/0x270 [ 523.997610][ T30] __sys_sendto+0x3a4/0x4f0 [ 524.002166][ T30] ? __pfx___sys_sendto+0x10/0x10 [ 524.007333][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 524.013538][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 524.019629][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 524.025997][ T30] __x64_sys_sendto+0xde/0x100 [ 524.030863][ T30] do_syscall_64+0xf3/0x230 [ 524.035410][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 524.041130][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 524.047548][ T30] RIP: 0033:0x7fd23707ed9c [ 524.051986][ T30] RSP: 002b:00007ffc5c7a4a70 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 524.061217][ T30] RAX: ffffffffffffffda RBX: 00007fd237ce4620 RCX: 00007fd23707ed9c [ 524.077288][ T30] RDX: 0000000000000028 RSI: 00007fd237ce4670 RDI: 0000000000000003 [ 524.085345][ T30] RBP: 0000000000000000 R08: 00007ffc5c7a4ac4 R09: 000000000000000c [ 524.127254][ T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 524.135312][ T30] R13: 0000000000000000 R14: 00007fd237ce4670 R15: 0000000000000000 [ 524.157716][ T30] [ 524.160807][ T30] INFO: task syz-executor.5:9173 blocked for more than 141 seconds. [ 524.177246][ T30] Not tainted 6.10.0-rc4-syzkaller-00301-g5f583a3162ff #0 [ 524.184923][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 524.217244][ T30] task:syz-executor.5 state:D stack:21024 pid:9173 tgid:9173 ppid:1 flags:0x00004006 [ 524.254663][ T30] Call Trace: [ 524.261216][ T30] [ 524.264210][ T30] __schedule+0x17e8/0x4a20 [ 524.268935][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 524.274610][ T30] ? __pfx___schedule+0x10/0x10 [ 524.279544][ T30] ? __pfx_lock_release+0x10/0x10 [ 524.284599][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 524.290150][ T30] ? schedule+0x90/0x320 [ 524.294412][ T30] schedule+0x14b/0x320 [ 524.302073][ T30] schedule_preempt_disabled+0x13/0x30 [ 524.307698][ T30] __mutex_lock+0x6a4/0xd70 [ 524.312232][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 524.318280][ T30] ? do_raw_spin_unlock+0x13c/0x8b0 [ 524.323528][ T30] ? __mutex_lock+0x527/0xd70 [ 524.328493][ T30] ? nsim_destroy+0x71/0x5c0 [ 524.333127][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 524.338335][ T30] ? __pfx_mntput_no_expire+0x10/0x10 [ 524.343772][ T30] ? _raw_spin_unlock+0x28/0x50 [ 524.349048][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 524.355428][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 524.361170][ T30] nsim_destroy+0x71/0x5c0 [ 524.365613][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 524.371325][ T30] __nsim_dev_port_del+0x14b/0x1b0 [ 524.376478][ T30] nsim_dev_reload_destroy+0x28a/0x490 [ 524.382026][ T30] ? __pfx_nsim_bus_remove+0x10/0x10 [ 524.387375][ T30] nsim_drv_remove+0x58/0x160 [ 524.392130][ T30] device_release_driver_internal+0x4ab/0x7c0 [ 524.398380][ T30] bus_remove_device+0x34f/0x420 [ 524.403373][ T30] device_del+0x57a/0x9b0 [ 524.407820][ T30] ? __pfx_device_del+0x10/0x10 [ 524.412723][ T30] device_unregister+0x20/0xc0 [ 524.417575][ T30] del_device_store+0x363/0x480 [ 524.423002][ T30] ? __pfx_del_device_store+0x10/0x10 [ 524.428473][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 524.434127][ T30] ? sysfs_kf_write+0x182/0x2a0 [ 524.439062][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 524.444715][ T30] ? bus_attr_store+0x4f/0xa0 [ 524.449738][ T30] ? __pfx_sysfs_kf_write+0x10/0x10 [ 524.455691][ T30] kernfs_fop_write_iter+0x3a3/0x500 [ 524.461092][ T30] vfs_write+0xa74/0xc90 [ 524.465373][ T30] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 524.471260][ T30] ? __pfx_vfs_write+0x10/0x10 [ 524.476074][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 524.481785][ T30] ksys_write+0x1a0/0x2c0 [ 524.486143][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 524.491860][ T30] ? __pfx_ksys_write+0x10/0x10 [ 524.496742][ T30] ? do_syscall_64+0x100/0x230 [ 524.501677][ T30] ? do_syscall_64+0xb6/0x230 [ 524.506402][ T30] do_syscall_64+0xf3/0x230 [ 524.511076][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 524.517251][ T30] RIP: 0033:0x7f933a67bdef [ 524.521691][ T30] RSP: 002b:00007ffc42ab95c0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 524.530540][ T30] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f933a67bdef [ 524.538786][ T30] RDX: 0000000000000001 RSI: 00007ffc42ab9610 RDI: 0000000000000005 [ 524.546799][ T30] RBP: 00007f933a6da33a R08: 0000000000000000 R09: 00007ffc42ab9417 [ 524.554968][ T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 524.563468][ T30] R13: 00007ffc42ab9610 R14: 00007f933b2e4620 R15: 0000000000000003 [ 524.573346][ T30] [ 524.576416][ T30] INFO: task syz-executor.2:9457 blocked for more than 142 seconds. [ 524.587361][ T30] Not tainted 6.10.0-rc4-syzkaller-00301-g5f583a3162ff #0 [ 524.595062][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 524.627239][ T30] task:syz-executor.2 state:D stack:27360 pid:9457 tgid:9456 ppid:6900 flags:0x00000006 [ 524.647402][ T30] Call Trace: [ 524.650787][ T30] [ 524.653736][ T30] __schedule+0x17e8/0x4a20 [ 524.667273][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 524.672979][ T30] ? __pfx___schedule+0x10/0x10 [ 524.687249][ T30] ? __pfx_lock_release+0x10/0x10 [ 524.692334][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 524.707287][ T30] ? schedule+0x90/0x320 [ 524.711599][ T30] schedule+0x14b/0x320 [ 524.715817][ T30] schedule_preempt_disabled+0x13/0x30 [ 524.737251][ T30] __mutex_lock+0x6a4/0xd70 [ 524.741922][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 524.752246][ T30] ? __mutex_lock+0x527/0xd70 [ 524.757012][ T30] ? cgrp_css_online+0x90/0x2f0 [ 524.762364][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 524.767806][ T30] ? __local_bh_enable_ip+0x168/0x200 [ 524.773206][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 524.778922][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 524.784155][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 524.789874][ T30] ? __local_bh_enable_ip+0x168/0x200 [ 524.795282][ T30] cgrp_css_online+0x90/0x2f0 [ 524.800088][ T30] online_css+0xbd/0x260 [ 524.804366][ T30] cgroup_apply_control_enable+0x7d7/0xaf0 [ 524.810276][ T30] cgroup_mkdir+0xa52/0xd30 [ 524.814827][ T30] ? __pfx_cgroup_mkdir+0x10/0x10 [ 524.819937][ T30] kernfs_iop_mkdir+0x255/0x3f0 [ 524.824826][ T30] vfs_mkdir+0x2fb/0x4f0 [ 524.829159][ T30] do_mkdirat+0x264/0x3a0 [ 524.834045][ T30] ? __might_fault+0xc6/0x120 [ 524.838850][ T30] ? __pfx_do_mkdirat+0x10/0x10 [ 524.843734][ T30] ? getname_flags+0x1fe/0x4f0 [ 524.848718][ T30] __x64_sys_mkdirat+0x89/0xa0 [ 524.853517][ T30] do_syscall_64+0xf3/0x230 [ 524.858112][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 524.864494][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 524.870492][ T30] RIP: 0033:0x7f4913c7d0a9 [ 524.874927][ T30] RSP: 002b:00007f491496b0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102 [ 524.883425][ T30] RAX: ffffffffffffffda RBX: 00007f4913db3f80 RCX: 00007f4913c7d0a9 [ 524.891500][ T30] RDX: 00000000000001ff RSI: 0000000020000040 RDI: ffffffffffffff9c [ 524.899742][ T30] RBP: 00007f4913cec074 R08: 0000000000000000 R09: 0000000000000000 [ 524.907788][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 524.915781][ T30] R13: 000000000000000b R14: 00007f4913db3f80 R15: 00007ffded077cd8 [ 524.923846][ T30] [ 524.926879][ T30] INFO: task syz-executor.2:9458 blocked for more than 142 seconds. [ 524.935281][ T30] Not tainted 6.10.0-rc4-syzkaller-00301-g5f583a3162ff #0 [ 524.943177][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 524.951993][ T30] task:syz-executor.2 state:D stack:25208 pid:9458 tgid:9456 ppid:6900 flags:0x00000006 [ 524.962250][ T30] Call Trace: [ 524.965542][ T30] [ 524.968937][ T30] __schedule+0x17e8/0x4a20 [ 524.973498][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 524.979542][ T30] ? __pfx___schedule+0x10/0x10 [ 524.984426][ T30] ? __pfx_lock_release+0x10/0x10 [ 524.989536][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 524.995547][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 525.001991][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 525.007151][ T30] ? schedule+0x90/0x320 [ 525.011483][ T30] schedule+0x14b/0x320 [ 525.015670][ T30] ? down_read+0x6a5/0xa40 [ 525.021352][ T30] schedule_preempt_disabled+0x13/0x30 [ 525.026857][ T30] down_read+0x705/0xa40 [ 525.036319][ T30] ? __pfx_down_read+0x10/0x10 [ 525.041759][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.047741][ T30] ? dput+0x37/0x2b0 [ 525.051857][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.057586][ T30] lookup_slow+0x45/0x70 [ 525.061859][ T30] walk_component+0x2e1/0x410 [ 525.066581][ T30] path_lookupat+0x16f/0x450 [ 525.071640][ T30] do_o_path+0x95/0x230 [ 525.075826][ T30] ? __pfx_do_o_path+0x10/0x10 [ 525.081012][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.086674][ T30] ? init_file+0x15c/0x200 [ 525.091175][ T30] path_openat+0x2adf/0x3280 [ 525.095798][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.101668][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.107378][ T30] ? mark_lock+0x9a/0x350 [ 525.111755][ T30] ? __lock_acquire+0x1346/0x1fd0 [ 525.116806][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.122526][ T30] ? mark_lock+0x9a/0x350 [ 525.126893][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.132599][ T30] ? __lock_acquire+0x1346/0x1fd0 [ 525.138051][ T30] ? __pfx_path_openat+0x10/0x10 [ 525.143050][ T30] do_filp_open+0x235/0x490 [ 525.148006][ T30] ? __pfx_do_filp_open+0x10/0x10 [ 525.153094][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.158811][ T30] ? _raw_spin_unlock+0x28/0x50 [ 525.163696][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.169395][ T30] ? alloc_fd+0x5a1/0x640 [ 525.174546][ T30] do_sys_openat2+0x13e/0x1d0 [ 525.179326][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 525.185733][ T30] ? __pfx_do_sys_openat2+0x10/0x10 [ 525.191032][ T30] ? _raw_spin_unlock_irqrestore+0x8f/0x140 [ 525.196966][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.203063][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 525.208352][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.214005][ T30] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 525.220022][ T30] __x64_sys_openat+0x247/0x2a0 [ 525.224923][ T30] ? __pfx___x64_sys_openat+0x10/0x10 [ 525.230390][ T30] ? do_syscall_64+0x100/0x230 [ 525.235195][ T30] ? do_syscall_64+0xb6/0x230 [ 525.240302][ T30] do_syscall_64+0xf3/0x230 [ 525.244890][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.250899][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 525.256832][ T30] RIP: 0033:0x7f4913c7d0a9 [ 525.261325][ T30] RSP: 002b:00007f491494a0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 525.269822][ T30] RAX: ffffffffffffffda RBX: 00007f4913db4050 RCX: 00007f4913c7d0a9 [ 525.278266][ T30] RDX: 0000000000200002 RSI: 0000000020000040 RDI: ffffffffffffff9c [ 525.286263][ T30] RBP: 00007f4913cec074 R08: 0000000000000000 R09: 0000000000000000 [ 525.294642][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 525.302779][ T30] R13: 000000000000006e R14: 00007f4913db4050 R15: 00007ffded077cd8 [ 525.310845][ T30] [ 525.313884][ T30] INFO: task syz-executor.0:9468 blocked for more than 143 seconds. [ 525.321929][ T30] Not tainted 6.10.0-rc4-syzkaller-00301-g5f583a3162ff #0 [ 525.329615][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 525.338344][ T30] task:syz-executor.0 state:D stack:24992 pid:9468 tgid:9468 ppid:1 flags:0x00000006 [ 525.348991][ T30] Call Trace: [ 525.352289][ T30] [ 525.355238][ T30] __schedule+0x17e8/0x4a20 [ 525.362290][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.387295][ T30] ? __pfx___schedule+0x10/0x10 [ 525.392230][ T30] ? __pfx_lock_release+0x10/0x10 [ 525.403787][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 525.409333][ T30] ? schedule+0x90/0x320 [ 525.413598][ T30] schedule+0x14b/0x320 [ 525.417805][ T30] schedule_preempt_disabled+0x13/0x30 [ 525.423277][ T30] __mutex_lock+0x6a4/0xd70 [ 525.427836][ T30] ? __mutex_lock+0x527/0xd70 [ 525.432536][ T30] ? rtnetlink_rcv_msg+0x842/0x1180 [ 525.437797][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 525.442862][ T30] rtnetlink_rcv_msg+0x842/0x1180 [ 525.448333][ T30] ? rtnetlink_rcv_msg+0x208/0x1180 [ 525.453572][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 525.459263][ T30] ? is_bpf_text_address+0x285/0x2a0 [ 525.464619][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.470303][ T30] ? __pfx_validate_chain+0x10/0x10 [ 525.475523][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.481551][ T30] ? __pfx_validate_chain+0x10/0x10 [ 525.486779][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.492733][ T30] ? arch_stack_walk+0x16d/0x1b0 [ 525.498016][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.503670][ T30] ? mark_lock+0x9a/0x350 [ 525.508054][ T30] ? __pfx_validate_chain+0x10/0x10 [ 525.513279][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.518959][ T30] ? __lock_acquire+0x1346/0x1fd0 [ 525.524020][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.529698][ T30] ? mark_lock+0x9a/0x350 [ 525.534053][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.539742][ T30] ? __lock_acquire+0x1346/0x1fd0 [ 525.544811][ T30] netlink_rcv_skb+0x1e5/0x430 [ 525.549977][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 525.555475][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 525.560991][ T30] ? netlink_deliver_tap+0x2e/0x1b0 [ 525.566251][ T30] netlink_unicast+0x7ec/0x980 [ 525.571083][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 525.576387][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.582408][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.588358][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.594010][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.599759][ T30] ? __check_object_size+0x49c/0x900 [ 525.605076][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.610751][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.616404][ T30] netlink_sendmsg+0x8db/0xcb0 [ 525.621245][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 525.626562][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.632239][ T30] ? aa_sock_msg_perm+0x91/0x160 [ 525.637244][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.642891][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.648651][ T30] ? security_socket_sendmsg+0x87/0xb0 [ 525.654586][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 525.659934][ T30] __sock_sendmsg+0x223/0x270 [ 525.664647][ T30] __sys_sendto+0x3a4/0x4f0 [ 525.669207][ T30] ? __pfx___sys_sendto+0x10/0x10 [ 525.674281][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 525.679959][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 525.686576][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 525.692964][ T30] ? exc_page_fault+0x590/0x8c0 [ 525.697921][ T30] __x64_sys_sendto+0xde/0x100 [ 525.702714][ T30] do_syscall_64+0xf3/0x230 [ 525.707288][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 525.713210][ T30] RIP: 0033:0x7fec9ee7ed9c [ 525.717669][ T30] RSP: 002b:00007ffc118cafe0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 525.726104][ T30] RAX: ffffffffffffffda RBX: 00007fec9fae4620 RCX: 00007fec9ee7ed9c [ 525.747415][ T30] RDX: 0000000000000028 RSI: 00007fec9fae4670 RDI: 0000000000000003 [ 525.755982][ T30] RBP: 0000000000000000 R08: 00007ffc118cb034 R09: 000000000000000c [ 525.777216][ T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 525.785213][ T30] R13: 0000000000000000 R14: 00007fec9fae4670 R15: 0000000000000000 [ 525.807236][ T30] [ 525.810283][ T30] [ 525.810283][ T30] Showing all locks held in the system: [ 525.827214][ T30] 3 locks held by kworker/0:0/8: [ 525.832192][ T30] 4 locks held by kworker/u8:1/12: [ 525.847533][ T30] #0: ffff888015081148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 525.872538][ T30] #1: ffffc90000117d00 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 525.884907][ T30] #2: ffff888079b00768 (&rdev->wiphy.mtx){+.+.}-{3:3}, at: cfg80211_wiphy_work+0x35/0x260 [ 525.895349][ T30] #3: ffffffff8e339378 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830 [ 525.906905][ T30] 1 lock held by khungtaskd/30: [ 525.911801][ T30] #0: ffffffff8e333fa0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 525.921924][ T30] 5 locks held by kworker/u8:2/35: [ 525.927057][ T30] 3 locks held by kworker/u9:0/53: [ 525.932229][ T30] 3 locks held by kworker/u8:4/61: [ 525.937373][ T30] #0: ffff888015081148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 525.949158][ T30] #1: ffffc900015c7d00 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 525.961810][ T30] #2: ffff888022c78768 (&rdev->wiphy.mtx){+.+.}-{3:3}, at: cfg80211_wiphy_work+0x35/0x260 [ 525.987254][ T30] 3 locks held by kworker/u8:5/951: [ 525.993100][ T30] #0: ffff888015081148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 526.037219][ T30] #1: ffffc90003de7d00 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 526.077216][ T30] #2: ffff888022dc0768 (&rdev->wiphy.mtx){+.+.}-{3:3}, at: cfg80211_wiphy_work+0x35/0x260 [ 526.107248][ T30] 3 locks held by kworker/u8:6/1092: [ 526.112668][ T30] #0: ffff888015081148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 526.167214][ T30] #1: ffffc90004317d00 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 526.197323][ T30] #2: ffff88807a488768 (&rdev->wiphy.mtx){+.+.}-{3:3}, at: cfg80211_wiphy_work+0x35/0x260 [ 526.227222][ T30] 3 locks held by kworker/u8:8/2442: [ 526.232525][ T30] #0: ffff888029c94148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 526.287214][ T30] #1: ffffc90009497d00 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 526.317211][ T30] #2: ffffffff8f5e6ec8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0 [ 526.326695][ T30] 4 locks held by kworker/u9:1/4484: [ 526.367214][ T30] #0: ffff88807e0a0948 ((wq_completion)hci11#2){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 526.407213][ T30] #1: ffffc9000cdbfd00 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 526.437211][ T30] #2: ffff88805e1c4078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x97/0xaf0 [ 526.467241][ T30] #3: ffffffff8f751588 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x4c3/0xaf0 [ 526.497259][ T30] 2 locks held by getty/4841: [ 526.501951][ T30] #0: ffff88802aec40a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 526.537223][ T30] #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 [ 526.557239][ T30] 4 locks held by kworker/u9:3/5115: [ 526.562543][ T30] #0: ffff8880791ec948 ((wq_completion)hci9#2){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 526.573909][ T30] #1: ffffc90004577d00 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 526.586156][ T30] #2: ffff88802f14c078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x97/0xaf0 [ 526.596190][ T30] #3: ffffffff8f751588 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x4c3/0xaf0 [ 526.607126][ T30] 4 locks held by kworker/u9:4/5117: [ 526.612729][ T30] #0: ffff888017fb3148 ((wq_completion)hci10#2){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 526.623882][ T30] #1: ffffc90004567d00 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 526.635978][ T30] #2: ffff88802cac4078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x97/0xaf0 [ 526.645994][ T30] #3: ffffffff8f751588 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x4c3/0xaf0 [ 526.656583][ T30] 4 locks held by kworker/u9:5/5118: [ 526.661902][ T30] #0: ffff888050c65948 ((wq_completion)hci12#2){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 526.673342][ T30] #1: ffffc90004557d00 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 526.685577][ T30] #2: ffff8880553a8078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x97/0xaf0 [ 526.695606][ T30] #3: ffffffff8f751588 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x4c3/0xaf0 [ 526.706531][ T30] 5 locks held by kworker/u9:8/5128: [ 526.712351][ T30] #0: ffff88805d671148 ((wq_completion)hci4){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 526.723502][ T30] #1: ffffc90002f8fd00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 526.736121][ T30] #2: ffff88805a2a4d88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x1ec/0x400 [ 526.746044][ T30] #3: ffff88805a2a4078 (&hdev->lock){+.+.}-{3:3}, at: hci_abort_conn_sync+0x1ea/0xde0 [ 526.755858][ T30] #4: ffffffff8f751588 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_failed+0x185/0x340 [ 526.765700][ T30] 5 locks held by kworker/u9:10/5130: [ 526.771108][ T30] #0: ffff88805c7d8148 ((wq_completion)hci1){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 526.782283][ T30] #1: ffffc90004587d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 526.795039][ T30] #2: ffff88802e66cd88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x1ec/0x400 [ 526.805669][ T30] #3: ffff88802e66c078 (&hdev->lock){+.+.}-{3:3}, at: hci_abort_conn_sync+0x1ea/0xde0 [ 526.815777][ T30] #4: ffffffff8f751588 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_failed+0x185/0x340 [ 526.825905][ T30] 3 locks held by kworker/0:5/5174: [ 526.831145][ T30] #0: ffff888015078948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 526.842194][ T30] #1: ffffc900042f7d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 526.865094][ T30] #2: ffffffff8f5e6ec8 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 526.887341][ T30] 4 locks held by kworker/1:5/5176: [ 526.892706][ T30] #0: ffff88807de48948 ((wq_completion)wg-kex-wg2#24){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 526.917315][ T30] #1: ffffc900042d7d00 ((work_completion)(&({ do { const void *__vpp_verify = (typeof((worker) + 0))((void *)0); (void)__vpp_verify; } while (0); ({ unsigned long __ptr; __ptr = (unsigned long) ((typeof(*((worker))) *)((worker))); (typeof((typeof(*((worker))) *)((worker)))) (__ptr + (((__per_cpu_offset[(cpu)])))); }); })->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 526.976150][ T30] #2: ffff88806574d228 (&wg->static_identity.lock){++++}-{3:3}, at: wg_noise_handshake_consume_initiation+0x156/0xf70 [ 526.989343][ T30] #3: ffff88802dd028b8 (&handshake->lock){++++}-{3:3}, at: wg_noise_handshake_consume_initiation+0x844/0xf70 [ 527.001535][ T30] 2 locks held by kworker/1:6/5177: [ 527.006782][ T30] #0: ffff888015078948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 527.018612][ T30] #1: ffffc900042c7d00 (free_ipc_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 527.029784][ T30] 4 locks held by kworker/0:7/5182: [ 527.035086][ T30] 3 locks held by syz-executor.4/6993: [ 527.041284][ T30] #0: ffff888055e6cd88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_unregister_dev+0x1d3/0x4e0 [ 527.051512][ T30] #1: ffff888055e6c078 (&hdev->lock){+.+.}-{3:3}, at: hci_dev_close_sync+0x494/0xf60 [ 527.061364][ T30] #2: ffffffff8f751588 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_hash_flush+0xa6/0x240 [ 527.071702][ T30] 1 lock held by syz-executor.0/8874: [ 527.077108][ T30] #0: ffffffff8f5e6ec8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x842/0x1180 [ 527.087390][ T30] 7 locks held by syz-executor.5/9173: [ 527.092890][ T30] #0: ffff8880301f0420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90 [ 527.102470][ T30] #1: ffff88807b9b9488 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500 [ 527.112456][ T30] #2: ffff8880220261e8 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500 [ 527.123116][ T30] #3: ffffffff8eef45e8 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480 [ 527.133980][ T30] #4: ffff88805bb680e8 (&dev->mutex){....}-{3:3}, at: device_release_driver_internal+0xce/0x7c0 [ 527.144904][ T30] #5: ffff88805bb69250 (&devlink->lock_key#3){+.+.}-{3:3}, at: nsim_drv_remove+0x50/0x160 [ 527.155072][ T30] #6: ffffffff8f5e6ec8 (rtnl_mutex){+.+.}-{3:3}, at: nsim_destroy+0x71/0x5c0 [ 527.164072][ T30] 2 locks held by syz-executor.3/9443: [ 527.169585][ T30] #0: ffffffff8f5e6ec8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x842/0x1180 [ 527.179218][ T30] #1: ffffffff8e339378 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830 [ 527.190615][ T30] 2 locks held by syz-executor.1/9464: [ 527.196101][ T30] 4 locks held by syz-executor.2/9457: [ 527.201825][ T30] #0: ffff888022c3a420 (sb_writers#11){.+.+}-{0:0}, at: mnt_want_write+0x3f/0x90 [ 527.211216][ T30] #1: ffff888058c0cb70 (&type->i_mutex_dir_key#7/1){+.+.}-{3:3}, at: filename_create+0x260/0x540 [ 527.222378][ T30] #2: ffffffff8e361fa8 (cgroup_mutex){+.+.}-{3:3}, at: cgroup_kn_lock_live+0xe6/0x290 [ 527.232517][ T30] #3: ffffffff8f5e6ec8 (rtnl_mutex){+.+.}-{3:3}, at: cgrp_css_online+0x90/0x2f0 [ 527.241883][ T30] 1 lock held by syz-executor.2/9458: [ 527.247306][ T30] #0: ffff888058c0cb70 (&type->i_mutex_dir_key#7){++++}-{3:3}, at: lookup_slow+0x45/0x70 [ 527.257356][ T30] 1 lock held by syz-executor.0/9468: [ 527.262735][ T30] #0: ffffffff8f5e6ec8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x842/0x1180 [ 527.272349][ T30] 1 lock held by syz-executor.3/9474: [ 527.277772][ T30] #0: ffffffff8f5e6ec8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x842/0x1180 [ 527.287821][ T30] 1 lock held by syz-executor.4/9478: [ 527.293205][ T30] #0: ffffffff8f5e6ec8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x842/0x1180 [ 527.303025][ T30] 1 lock held by syz-executor.1/9480: [ 527.308463][ T30] #0: ffffffff8f5e6ec8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x842/0x1180 [ 527.318079][ T30] 1 lock held by syz-executor.2/9482: [ 527.324204][ T30] #0: ffffffff8f5e6ec8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x842/0x1180 [ 527.333841][ T30] [ 527.336190][ T30] ============================================= [ 527.336190][ T30] [ 527.344755][ T30] NMI backtrace for cpu 1 [ 527.349087][ T30] CPU: 1 PID: 30 Comm: khungtaskd Not tainted 6.10.0-rc4-syzkaller-00301-g5f583a3162ff #0 [ 527.358985][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 527.369046][ T30] Call Trace: [ 527.372335][ T30] [ 527.375277][ T30] dump_stack_lvl+0x241/0x360 [ 527.379988][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 527.385213][ T30] ? __pfx__printk+0x10/0x10 [ 527.389821][ T30] ? vprintk_emit+0x631/0x770 [ 527.394527][ T30] ? __pfx_vprintk_emit+0x10/0x10 [ 527.399589][ T30] nmi_cpu_backtrace+0x49c/0x4d0 [ 527.404552][ T30] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 527.410022][ T30] ? _printk+0xd5/0x120 [ 527.414198][ T30] ? __pfx__printk+0x10/0x10 [ 527.418813][ T30] ? __wake_up_klogd+0xcc/0x110 [ 527.423700][ T30] ? __pfx__printk+0x10/0x10 [ 527.428313][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.433956][ T30] ? __rcu_read_unlock+0xa1/0x110 [ 527.439042][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 527.445044][ T30] nmi_trigger_cpumask_backtrace+0x198/0x320 [ 527.451053][ T30] watchdog+0xfde/0x1020 [ 527.455316][ T30] ? watchdog+0x1ea/0x1020 [ 527.459760][ T30] ? __pfx_watchdog+0x10/0x10 [ 527.464453][ T30] kthread+0x2f2/0x390 [ 527.468543][ T30] ? __pfx_watchdog+0x10/0x10 [ 527.473236][ T30] ? __pfx_kthread+0x10/0x10 [ 527.477845][ T30] ret_from_fork+0x4d/0x80 [ 527.482286][ T30] ? __pfx_kthread+0x10/0x10 [ 527.486899][ T30] ret_from_fork_asm+0x1a/0x30 [ 527.491716][ T30] [ 527.495401][ T30] Sending NMI from CPU 1 to CPUs 0: [ 527.501135][ C0] NMI backtrace for cpu 0 [ 527.501150][ C0] CPU: 0 PID: 9464 Comm: syz-executor.1 Not tainted 6.10.0-rc4-syzkaller-00301-g5f583a3162ff #0 [ 527.501174][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 527.501188][ C0] RIP: 0010:__lock_acquire+0x135a/0x1fd0 [ 527.501220][ C0] Code: 02 00 00 4c 89 e7 48 8b 74 24 48 44 89 f2 48 89 e9 e8 4a 98 00 00 31 c9 85 c0 0f 84 80 00 00 00 48 ba 00 00 00 00 00 fc ff df <48> 8b 44 24 20 0f b6 04 10 84 c0 0f 85 d6 07 00 00 48 8b 44 24 10 [ 527.501239][ C0] RSP: 0018:ffffc90000007950 EFLAGS: 00000002 [ 527.501259][ C0] RAX: 0000000000000001 RBX: ffffffff92c8d588 RCX: 0000000000000000 [ 527.501275][ C0] RDX: dffffc0000000000 RSI: 0000000000000008 RDI: ffffffff92fa7580 [ 527.501291][ C0] RBP: d4c9f0e422e098f3 R08: ffffffff92fa7587 R09: 1ffffffff25f4eb0 [ 527.501308][ C0] R10: dffffc0000000000 R11: fffffbfff25f4eb1 R12: ffff888061339e00 [ 527.501326][ C0] R13: ffff888061339e00 R14: 0000000000000000 R15: ffff888061339e00 [ 527.501347][ C0] FS: 00007f8bce5796c0(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000 [ 527.501367][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 527.501383][ C0] CR2: 00007fe38fae56c6 CR3: 0000000023c6e000 CR4: 0000000000350ef0 [ 527.501402][ C0] Call Trace: [ 527.501411][ C0] [ 527.501420][ C0] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 527.501453][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 527.501480][ C0] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 527.501516][ C0] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 527.501543][ C0] ? nmi_handle+0x151/0x5a0 [ 527.501578][ C0] ? nmi_handle+0x2a/0x5a0 [ 527.501613][ C0] ? __lock_acquire+0x135a/0x1fd0 [ 527.501637][ C0] ? default_do_nmi+0x63/0x160 [ 527.501662][ C0] ? exc_nmi+0x123/0x1f0 [ 527.501685][ C0] ? end_repeat_nmi+0xf/0x53 [ 527.501727][ C0] ? __lock_acquire+0x135a/0x1fd0 [ 527.501753][ C0] ? __lock_acquire+0x135a/0x1fd0 [ 527.501779][ C0] ? __lock_acquire+0x135a/0x1fd0 [ 527.501804][ C0] [ 527.501811][ C0] [ 527.501832][ C0] lock_acquire+0x1ed/0x550 [ 527.501855][ C0] ? debug_object_deactivate+0x158/0x390 [ 527.501896][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 527.501924][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.501946][ C0] ? do_raw_spin_unlock+0x13c/0x8b0 [ 527.501984][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.502006][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 527.502045][ C0] _raw_spin_lock_irqsave+0xd5/0x120 [ 527.502080][ C0] ? debug_object_deactivate+0x158/0x390 [ 527.502112][ C0] ? __pfx__raw_spin_lock_irqsave+0x10/0x10 [ 527.502155][ C0] debug_object_deactivate+0x158/0x390 [ 527.502191][ C0] ? __pfx_debug_object_deactivate+0x10/0x10 [ 527.502226][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.502247][ C0] ? timerqueue_add+0x260/0x290 [ 527.502283][ C0] ? __pfx__raw_spin_lock_irq+0x10/0x10 [ 527.502323][ C0] debug_deactivate+0x1b/0x220 [ 527.502359][ C0] __hrtimer_run_queues+0x305/0xd50 [ 527.502392][ C0] ? ktime_get_update_offsets_now+0x3c/0x250 [ 527.502429][ C0] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 527.502474][ C0] hrtimer_interrupt+0x396/0x990 [ 527.502523][ C0] __sysvec_apic_timer_interrupt+0x112/0x3f0 [ 527.502560][ C0] sysvec_apic_timer_interrupt+0xa1/0xc0 [ 527.502590][ C0] [ 527.502597][ C0] [ 527.502606][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 527.502640][ C0] RIP: 0010:lock_acquire+0x264/0x550 [ 527.502664][ C0] Code: 2b 00 74 08 4c 89 f7 e8 7a 6b 89 00 f6 44 24 61 02 0f 85 85 01 00 00 41 f7 c7 00 02 00 00 74 01 fb 48 c7 44 24 40 0e 36 e0 45 <4b> c7 44 25 00 00 00 00 00 43 c7 44 25 09 00 00 00 00 43 c7 44 25 [ 527.502681][ C0] RSP: 0018:ffffc9000f3af440 EFLAGS: 00000206 [ 527.502701][ C0] RAX: 0000000000000001 RBX: 1ffff92001e75e94 RCX: 0000000000000001 [ 527.502716][ C0] RDX: dffffc0000000000 RSI: ffffffff8bcacd00 RDI: ffffffff8c1feb80 [ 527.502733][ C0] RBP: ffffc9000f3af588 R08: ffffffff92fa762f R09: 1ffffffff25f4ec5 [ 527.502750][ C0] R10: dffffc0000000000 R11: fffffbfff25f4ec6 R12: 1ffff92001e75e90 [ 527.502768][ C0] R13: dffffc0000000000 R14: ffffc9000f3af4a0 R15: 0000000000000246 [ 527.502802][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 527.502826][ C0] ? __pfx_validate_chain+0x10/0x10 [ 527.502857][ C0] ? __pfx___might_resched+0x10/0x10 [ 527.502885][ C0] ? validate_chain+0x11e/0x5900 [ 527.502914][ C0] ? __unix_dgram_recvmsg+0xcf4/0x12f0 [ 527.502949][ C0] ? __pfx_lock_release+0x10/0x10 [ 527.502980][ C0] __mutex_lock+0x136/0xd70 [ 527.503006][ C0] ? __unix_dgram_recvmsg+0x246/0x12f0 [ 527.503042][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.503063][ C0] ? __mutex_unlock_slowpath+0x21d/0x750 [ 527.503090][ C0] ? __pfx_validate_chain+0x10/0x10 [ 527.503118][ C0] ? __unix_dgram_recvmsg+0x246/0x12f0 [ 527.503153][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 527.503185][ C0] ? __lock_acquire+0x1346/0x1fd0 [ 527.503213][ C0] __unix_dgram_recvmsg+0x246/0x12f0 [ 527.503256][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.503279][ C0] ? __pfx___unix_dgram_recvmsg+0x10/0x10 [ 527.503316][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.503341][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.503362][ C0] ? iovec_from_user+0x61/0x240 [ 527.503389][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.503411][ C0] ? unix_dgram_recvmsg+0xb6/0xe0 [ 527.503434][ C0] ? __pfx_unix_dgram_recvmsg+0x10/0x10 [ 527.503467][ C0] sock_recvmsg_nosec+0x190/0x1d0 [ 527.503506][ C0] ____sys_recvmsg+0x3c0/0x470 [ 527.503542][ C0] ? __pfx_____sys_recvmsg+0x10/0x10 [ 527.503579][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.503602][ C0] ? __might_fault+0xaa/0x120 [ 527.503640][ C0] do_recvmmsg+0x474/0xae0 [ 527.503674][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 527.503702][ C0] ? __pfx_do_recvmmsg+0x10/0x10 [ 527.503731][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.503771][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.503796][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.503835][ C0] ? _raw_spin_unlock_irqrestore+0x8f/0x140 [ 527.503870][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.503893][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.503914][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 527.503955][ C0] __x64_sys_recvmmsg+0x199/0x250 [ 527.503987][ C0] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 527.504018][ C0] ? do_syscall_64+0x100/0x230 [ 527.504053][ C0] ? do_syscall_64+0xb6/0x230 [ 527.504086][ C0] do_syscall_64+0xf3/0x230 [ 527.504118][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.504142][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 527.504175][ C0] RIP: 0033:0x7f8bcd87d0a9 [ 527.504193][ C0] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 527.504211][ C0] RSP: 002b:00007f8bce5790c8 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 527.504233][ C0] RAX: ffffffffffffffda RBX: 00007f8bcd9b4050 RCX: 00007f8bcd87d0a9 [ 527.504250][ C0] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 527.504265][ C0] RBP: 00007f8bcd8ec074 R08: 0000000000000000 R09: 0000000000000000 [ 527.504280][ C0] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000 [ 527.504294][ C0] R13: 000000000000006e R14: 00007f8bcd9b4050 R15: 00007ffda522dc28 [ 527.504321][ C0] [ 528.217961][ T30] Kernel panic - not syncing: hung_task: blocked tasks [ 528.224826][ T30] CPU: 1 PID: 30 Comm: khungtaskd Not tainted 6.10.0-rc4-syzkaller-00301-g5f583a3162ff #0 [ 528.234726][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 528.244875][ T30] Call Trace: [ 528.248160][ T30] [ 528.251100][ T30] dump_stack_lvl+0x241/0x360 [ 528.255811][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 528.261037][ T30] ? __pfx__printk+0x10/0x10 [ 528.265645][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 528.271653][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 528.277301][ T30] ? vscnprintf+0x5d/0x90 [ 528.281647][ T30] panic+0x349/0x860 [ 528.285566][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 528.291218][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 528.297390][ T30] ? __pfx_panic+0x10/0x10 [ 528.301829][ T30] ? tick_nohz_tick_stopped+0x82/0xb0 [ 528.307228][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 528.312877][ T30] ? __irq_work_queue_local+0x137/0x410 [ 528.318443][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 528.324085][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 528.329473][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 528.335639][ T30] ? nmi_trigger_cpumask_backtrace+0x2d4/0x320 [ 528.341812][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 528.347454][ T30] ? nmi_trigger_cpumask_backtrace+0x2d9/0x320 [ 528.353626][ T30] watchdog+0x101d/0x1020 [ 528.357978][ T30] ? watchdog+0x1ea/0x1020 [ 528.362419][ T30] ? __pfx_watchdog+0x10/0x10 [ 528.367110][ T30] kthread+0x2f2/0x390 [ 528.371198][ T30] ? __pfx_watchdog+0x10/0x10 [ 528.375890][ T30] ? __pfx_kthread+0x10/0x10 [ 528.380501][ T30] ret_from_fork+0x4d/0x80 [ 528.384940][ T30] ? __pfx_kthread+0x10/0x10 [ 528.389548][ T30] ret_from_fork_asm+0x1a/0x30 [ 528.394357][ T30] [ 529.569745][ T30] Shutting down cpus with NMI [ 529.574724][ T30] Kernel Offset: disabled [ 529.579052][ T30] Rebooting in 86400 seconds..