last executing test programs: 8.954150162s ago: executing program 3 (id=1849): r0 = socket$can_raw(0x1d, 0x3, 0x1) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/protocols\x00') preadv(r2, &(0x7f0000000400)=[{&(0x7f0000000500)=""/180, 0xfffffe47}], 0x1, 0x0, 0x0) bind$can_raw(r0, &(0x7f00000005c0), 0x10) recvmmsg(r0, &(0x7f0000003080)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000017c0)=""/16, 0x10}], 0x1}}], 0x1, 0x0, 0x0) setsockopt$CAN_RAW_RECV_OWN_MSGS(r0, 0x65, 0x4, &(0x7f0000000580)=0x1, 0x4) sendmsg$can_raw(r0, &(0x7f0000000240)={&(0x7f0000000780)={0x1d, r1}, 0x10, &(0x7f0000000200)={&(0x7f0000000140)=@can={{}, 0x0, 0x0, 0x0, 0x0, "5b7ba3698f28aaf0"}, 0x10}}, 0x0) 7.587484858s ago: executing program 3 (id=1857): mknod(&(0x7f0000000040)='./file0\x00', 0x8000, 0x6) mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1/file2\x00', 0xc000, 0x0) renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', 0xffffffffffffff9c, &(0x7f00000001c0)='./file1/file2\x00', 0x2) 7.45758655s ago: executing program 3 (id=1861): sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYBLOB], 0x78}, 0x1, 0x7}, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x60005f, 0x19) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_emit_ethernet(0x4a, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) r1 = socket(0x40000000015, 0x5, 0x0) setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4) bind$inet(r1, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10) recvmmsg(r1, &(0x7f00000040c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=""/142, 0x8e}}], 0x1, 0x0, 0x0) sendto$inet(r1, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x2, 0x0, @loopback}, 0x10) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) syz_usb_connect(0x0, 0x2d, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x43, 0x63, 0x19, 0x8, 0xeb1a, 0xa316, 0xd548, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x62, 0x5d, 0x3, 0x0, [], [{{0x9, 0x5, 0x82}}]}}]}}]}}, 0x0) r2 = openat$hwrng(0xffffffffffffff9c, 0x0, 0x48001, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5) preadv(r2, &(0x7f0000001880), 0x0, 0x0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) mincore(&(0x7f0000000000/0x800000)=nil, 0x800000, &(0x7f0000000000)=""/188) socket$inet6_dccp(0xa, 0x6, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0) 3.843136714s ago: executing program 4 (id=1891): r0 = socket$nl_sock_diag(0x10, 0x3, 0x4) capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000180)) sendmsg$DCCPDIAG_GETSOCK(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="540000001300070500005d3f000000000600"/56, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000040001"], 0x54}}, 0x0) 3.700356068s ago: executing program 4 (id=1892): socket$inet_udplite(0x2, 0x2, 0x88) socket$inet6_tcp(0xa, 0x1, 0x0) socket(0x1, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) socket$inet6_tcp(0xa, 0x1, 0x0) socket$netlink(0x10, 0x3, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000180), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000400)={'batadv0\x00', 0x0}) sendmsg$BATADV_CMD_SET_HARDIF(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000000500000008000600", @ANYRES32=r0, @ANYBLOB="08000300", @ANYRES32=r3], 0x34}}, 0x0) 3.400818115s ago: executing program 4 (id=1896): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413e850000000f0000"], &(0x7f0000000440)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10) bpf$BPF_GET_BTF_INFO(0xf, 0x0, 0x0) r2 = socket(0x10, 0x803, 0x0) socket$netlink(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$nl_route_sched(r3, 0x0, 0x0) getsockname$packet(r3, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0) sendmsg$nl_route_sched(r3, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000001800181100", @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) sendmsg$MPTCP_PM_CMD_SET_FLAGS(0xffffffffffffffff, 0x0, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000001c0)={'vlan0\x00', 0x0}) unshare(0x62040200) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x759, &(0x7f0000000100)={[{@noload}, {@noblock_validity}, {@discard}, {@errors_remount}, {@inode_readahead_blks, 0x0}, {@noauto_da_alloc}, {@noload}, {@journal_checksum}, {@mblk_io_submit}, {@noacl}, {@usrjquota}, {@nolazytime}, {@journal_dev={'journal_dev', 0x3d, 0x765}}, {@norecovery}, {@nobarrier}, {@data_writeback}, {@resgid}], [{@audit}, {@uid_lt={'uid<', 0xee01}}], 0x2c}, 0x2, 0x4f8, &(0x7f0000000700)="$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") gettid() sendmsg$nl_route(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000005f00)=ANY=[@ANYBLOB="2800000010000100"/20, @ANYRES32=r5, @ANYBLOB="6d3082610000000008001300"], 0x28}}, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, 0x0) 3.266459518s ago: executing program 3 (id=1897): openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0) r0 = syz_open_dev$sndpcmc(&(0x7f0000004240), 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_STATUS64(r0, 0x40044103, &(0x7f0000000080)) 3.079095245s ago: executing program 3 (id=1898): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)={0x15, 0x65, 0xffff, 0x0, 0x8, '9P2000.u'}, 0x15) pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff0180"], 0x15) r2 = dup(r1) write$P9_RLERRORu(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="8b"], 0x53) write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000180)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f00000002c0)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, 0x30) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0x7c8) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000001340)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@access_any}], [], 0x6b}}) readv(r0, &(0x7f0000000100), 0x0) chdir(&(0x7f0000000200)='./file0\x00') open(&(0x7f0000000100)='./file0\x00', 0x101eff, 0xfeffff) 2.945023378s ago: executing program 4 (id=1900): r0 = io_uring_setup(0x177f, &(0x7f0000000140)) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000540), 0x3c) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f000000e0c0), 0x10010) setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, 0x0, 0x0) sendfile(r1, r2, &(0x7f0000000100), 0x100000000010001) close_range(r0, 0xffffffffffffffff, 0x0) 2.847376516s ago: executing program 3 (id=1903): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFQNL_MSG_CONFIG(r1, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f00000008c0)={0x24, 0x2, 0x3, 0x401, 0x0, 0x0, {0x0, 0x0, 0x5}, [@NFQA_CFG_FLAGS={0x8, 0x5, 0x1, 0x0, 0x20}, @NFQA_CFG_MASK={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x800) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1, 0x3, &(0x7f0000000900)=@ringbuf={{}, {{0x6}, {}, {}, {0x85, 0x0, 0x0, 0x44}}}, &(0x7f00000004c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) dup(r0) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000ac0), 0x0, 0x0) prlimit64(0x0, 0x0, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000780)) r3 = socket$inet_smc(0x2b, 0x1, 0x0) ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000d00)={'geneve0\x00', &(0x7f0000000000)=@ethtool_sset_info={0x37, 0x0, 0xfffffffffffffffc}}) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000280)={'syztnl0\x00', &(0x7f00000001c0)={'sit0\x00', 0x0, 0x80, 0x80, 0x1, 0x3, {{0x1f, 0x4, 0x2, 0x1e, 0x7c, 0x66, 0x0, 0x81, 0x4, 0x0, @multicast1, @initdev={0xac, 0x1e, 0x1, 0x0}, {[@timestamp_prespec={0x44, 0x24, 0xe0, 0x3, 0x0, [{@loopback, 0x10000}, {@remote, 0xffffffe0}, {@multicast2, 0x94f}, {@rand_addr=0x64010100, 0x30000000}]}, @generic={0x88, 0xd, "e9af892ae933adbf8af8a2"}, @generic={0x89, 0xd, "b3eb22f12305b35322e355"}, @timestamp={0x44, 0x1c, 0x8, 0x0, 0x0, [0x0, 0xfffffffb, 0x7ff, 0x9, 0x1, 0xfff]}, @generic={0x83, 0xe, "f368dd347d9484d82b6602ce"}]}}}}}) r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', r4, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0xf, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r5}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0xc}, {0xac}}, [], {{0x7, 0x1, 0x3, 0x8, 0x9, 0x8004}, {0x4, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) utimes(&(0x7f0000000040)='./file0\x00', &(0x7f0000000180)={{r6, r7/1000+10000}}) bpf$PROG_LOAD(0x5, 0x0, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340), 0xfffffffffffffe19, 0x0, 0xffffffffffffffff, 0x54, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x42) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x800c6613, &(0x7f0000000000)=@v1={0x0, @adiantum, 0x0, @desc1}) syz_usb_connect(0x0, 0x2d, &(0x7f00000000c0)=ANY=[@ANYBLOB="12014000f273a440cd061501c3d90102030109021b0001000000000904000c019d0178000905", @ANYBLOB="872ff7"], 0x0) socket$kcm(0x29, 0x5, 0x0) readv(r2, &(0x7f0000000280)=[{&(0x7f0000000000)=""/41, 0xfffffdd6}, {&(0x7f0000000080)=""/56, 0x41}, {&(0x7f00000000c0)=""/167, 0xa7}, {&(0x7f0000000180)=""/213, 0xec}], 0x4) socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r8, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00) sendmsg$tipc(r9, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0x73220c8b}], 0x1}, 0x0) setsockopt$TIPC_CONN_TIMEOUT(r8, 0x10f, 0x8a, &(0x7f00000000c0)=0x2000000, 0x4) 1.777144896s ago: executing program 2 (id=1906): socket$inet_udplite(0x2, 0x2, 0x88) socket$inet6_tcp(0xa, 0x1, 0x0) socket(0x1, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) socket$inet6_tcp(0xa, 0x1, 0x0) socket$netlink(0x10, 0x3, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000180), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000400)={'batadv0\x00', 0x0}) sendmsg$BATADV_CMD_SET_HARDIF(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000000500000008000600", @ANYRES32=r0, @ANYBLOB="08000300", @ANYRES32=r3], 0x34}}, 0x0) 1.595867172s ago: executing program 4 (id=1909): openat$vicodec0(0xffffff9c, &(0x7f0000000280), 0x2, 0x0) r0 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', &(0x7f0000000200)={0x10103, 0x4, 0x10}, 0x18) linkat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000000240)='./file0\x00', 0x2400) r1 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, 0x0) r3 = socket$can_raw(0x1d, 0x3, 0x1) bind$can_raw(r3, &(0x7f0000000000), 0x10) setsockopt$CAN_RAW_FILTER(r3, 0x65, 0x1, &(0x7f0000000040)=[{{0x3, 0x0, 0x1}, {0x4, 0x1, 0x1}}, {{0x2}, {0x0, 0x0, 0x0, 0x1}}], 0x10) socket$nl_xfrm(0x10, 0x3, 0x6) socket$nl_netfilter(0x10, 0x3, 0xc) r4 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000100)={'vxcan0\x00', 0x0}) socket$can_raw(0x1d, 0x3, 0x1) sendmsg$nl_route_sched(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@getchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {0xfff2}}}, 0x24}}, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, &(0x7f0000000240)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x3, 0x0, 0x9, 0x0, 0x0, 0x0, 'syz1\x00', &(0x7f0000000480)}) r6 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) syz_usb_disconnect(r6) unlinkat(r0, &(0x7f0000000400)='./file0\x00', 0x0) syz_usb_connect(0x6, 0x24, &(0x7f0000000000)=ANY=[], 0x0) ioctl$EVIOCRMFF(r6, 0x5509, 0x0) r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/rt_cache\x00') readahead(r7, 0x0, 0xfffffffffffffffe) r8 = syz_open_dev$swradio(&(0x7f00000000c0), 0x1, 0x2) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000004c0)) pselect6(0x40, &(0x7f0000000080)={0x8, 0x2, 0x7, 0x8, 0x4, 0x4, 0x1, 0x80000001}, &(0x7f00000002c0)={0xaf7, 0x80000001, 0x6, 0xfff, 0x4, 0x1b5, 0x1000, 0x2}, &(0x7f0000000300)={0x4, 0x5, 0x8001, 0x97, 0x7, 0x3, 0x5, 0xff}, &(0x7f0000000340), &(0x7f00000003c0)={&(0x7f0000000380)={[0x3]}, 0x8}) ioctl$VIDIOC_S_FREQUENCY(r8, 0x402c5639, &(0x7f0000000040)={0x1, 0x4}) bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x19, 0x4, &(0x7f0000000000)=ANY=[@ANYRES8], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) 1.535352498s ago: executing program 0 (id=1910): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413e850000000f0000"], &(0x7f0000000440)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10) bpf$BPF_GET_BTF_INFO(0xf, 0x0, 0x0) r2 = socket(0x10, 0x803, 0x0) socket$netlink(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$nl_route_sched(r3, 0x0, 0x0) getsockname$packet(r3, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0) sendmsg$nl_route_sched(r3, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000001800181100", @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) sendmsg$MPTCP_PM_CMD_SET_FLAGS(0xffffffffffffffff, 0x0, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000001c0)={'vlan0\x00', 0x0}) unshare(0x62040200) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x759, &(0x7f0000000100)={[{@noload}, {@noblock_validity}, {@discard}, {@errors_remount}, {@inode_readahead_blks, 0x0}, {@noauto_da_alloc}, {@noload}, {@journal_checksum}, {@mblk_io_submit}, {@noacl}, {@usrjquota}, {@nolazytime}, {@journal_dev={'journal_dev', 0x3d, 0x765}}, {@norecovery}, {@nobarrier}, {@data_writeback}, {@resgid}], [{@audit}, {@uid_lt={'uid<', 0xee01}}], 0x2c}, 0x2, 0x4f8, &(0x7f0000000700)="$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") gettid() sendmsg$nl_route(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000005f00)=ANY=[@ANYBLOB="2800000010000100"/20, @ANYRES32=r5, @ANYBLOB="6d3082610000000008001300"], 0x28}}, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, 0x0) 1.487579202s ago: executing program 2 (id=1911): socket$nl_netfilter(0x10, 0x3, 0xc) socket(0x10, 0x803, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) ioctl$SOUND_PCM_READ_RATE(0xffffffffffffffff, 0x80045002, 0x0) mmap$dsp(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x5, 0x11, 0xffffffffffffffff, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) r0 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10) r1 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10) sendmmsg(r1, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000) setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4) socket$nl_generic(0x10, 0x3, 0x10) sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000) recvmmsg$unix(r0, &(0x7f00000027c0)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)=""/104, 0x68}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0, 0x0) 1.337905806s ago: executing program 1 (id=1912): unshare(0x400) r0 = openat$fb0(0xffffff9c, 0x0, 0x101880, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 1.175146891s ago: executing program 1 (id=1913): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000140)=ANY=[], 0x20) 1.094552378s ago: executing program 1 (id=1914): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)={0x15, 0x65, 0xffff, 0x0, 0x8, '9P2000.u'}, 0x15) pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff0180"], 0x15) r2 = dup(r1) write$P9_RLERRORu(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="8b"], 0x53) write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000180)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f00000002c0)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, 0x30) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0x7c8) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000001340)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@access_any}], [], 0x6b}}) readv(r0, &(0x7f0000000100)=[{0x0}], 0x1) chdir(&(0x7f0000000200)='./file0\x00') open(&(0x7f0000000100)='./file0\x00', 0x101eff, 0xfeffff) 1.042235983s ago: executing program 2 (id=1915): unshare(0x2000400) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000012c0)='/proc/cpuinfo\x00', 0x0, 0x0) lseek(r0, 0x0, 0x0) 967.47722ms ago: executing program 1 (id=1916): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000002c0)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0xffffffffffffffff}, 0x13) statx(0xffffffffffffffff, 0x0, 0x400, 0x20, 0x0) r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x800) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1e, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xd, &(0x7f0000000300)=ANY=[@ANYRES32=r2, @ANYRES8=r0, @ANYRES32=r3, @ANYRESDEC=r1], &(0x7f00000004c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffffffffffdf6) creat(0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x1060020, &(0x7f0000000240)={[{@noquota}, {@resuid={'resuid', 0x3d, 0xee01}}, {@orlov}, {@data_err_ignore}, {@debug}, {@dax_never}], [{@audit}]}, 0x3, 0x45a, &(0x7f0000000cc0)="$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") mmap(&(0x7f0000755000/0x4000)=nil, 0x4000, 0x1, 0x2030, 0xffffffffffffffff, 0xe505b000) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4) set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0x9) r4 = socket(0x40000000015, 0x5, 0x0) connect$inet(r4, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) bind$inet(r4, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10) r5 = epoll_create1(0x0) r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count', 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r6, &(0x7f00000000c0)={0x6000001f}) read$char_usb(r6, &(0x7f0000000100)=""/169, 0xa9) epoll_pwait(r5, &(0x7f0000000200)=[{}], 0x1, 0x0, 0x0, 0x0) sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[], 0x7c}}, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) syslog(0x4, &(0x7f0000000740)=""/28, 0x1c) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r2, 0x4058534c, &(0x7f0000000180)={0x80, 0x2b, 0x3}) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r2, 0x4058534c, &(0x7f0000000040)={0x8, 0x200, 0x2, 0xfffffffc}) 967.25485ms ago: executing program 0 (id=1917): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000000)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0x1, 0x7fff0000}]}) timer_settime(0x0, 0x1, 0x0, 0x0) 794.937616ms ago: executing program 2 (id=1918): r0 = syz_open_procfs$pagemap(0x0, &(0x7f0000001080)) madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe) bpf$BPF_BTF_GET_NEXT_ID(0x7, &(0x7f00000000c0)={0x20fffffe}, 0x8) ioctl$PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f00000006c0)={0x60, 0x0, &(0x7f0000001000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xe, 0x5c}) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r1, 0x84, 0x81, &(0x7f00000002c0)="1a000000", 0x4) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, 0x0, 0x0) r2 = socket(0x2a, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)=@deltclass={0x24, 0x29, 0x300, 0x70bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x4, 0x7}, {0x4, 0xd}, {0x1, 0xa}}}, 0x24}}, 0x0) getsockname$packet(r2, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0xfffffcb7, &(0x7f0000000280)={&(0x7f00000001c0)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@newtfilter={0x50, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {}, {0x2, 0x1}}, [@filter_kind_options=@f_basic={{0xa}, {0x20, 0x2, [@TCA_BASIC_EMATCHES={0x1c, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x10, 0x2, 0x0, 0x1, [@TCF_EM_CONTAINER={0xc, 0x1, 0x0, 0x0, {{0x1, 0x0, 0xa3cc}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x800}}]}]}}]}, 0x50}}, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0x9}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x30, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @socket={{0xb}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_SOCKET_DREG={0x8, 0x2, 0x1, 0x0, 0x16}, @NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SOCKET_LEVEL={0x8, 0x3, 0xe1}]}}}]}]}], {0x14}}, 0xcc}}, 0x4000040) r5 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r5, &(0x7f00000002c0), 0x40000000000009f, 0x0) r6 = fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0) r7 = fsmount(r6, 0x0, 0x0) semget$private(0x0, 0x0, 0x109) syz_clone3(&(0x7f0000000340)={0x200000000, 0x0, 0x0, 0x0, {0x3a}, 0x0, 0x0, 0x0, 0x0, 0x0, {r7}}, 0x58) setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r1, 0x84, 0x15, &(0x7f0000000080)={0x8}, 0x1) sendto$inet6(r1, &(0x7f0000000040)='l', 0x1, 0x0, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendto$inet6(r1, &(0x7f00000007c0)="87", 0x1, 0x0, 0x0, 0x0) sendto$inet6(r1, &(0x7f0000000240)="1a", 0x1, 0x0, 0x0, 0x0) shutdown(r1, 0x1) 767.551099ms ago: executing program 0 (id=1919): r0 = io_uring_setup(0x177f, &(0x7f0000000140)) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000540), 0x3c) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f000000e0c0), 0x10010) setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000200)=@gcm_256={{0x304}, "00e0f07600", "832b4d2434b35bca8c0b78d2afff6d70d2025c7f53123828322d5af0d5c6c3a5", '`\a-N', "298f0e6df9ae9b3d"}, 0x38) sendfile(r1, r2, 0x0, 0x100000000010001) close_range(r0, 0xffffffffffffffff, 0x0) 602.418684ms ago: executing program 4 (id=1920): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10) setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f0000000080)="fe", 0x1, 0x80, 0x0, 0x0) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000340)=[@window, @mss, @window, @sack_perm, @mss={0x2, 0x2}, @timestamp, @mss, @sack_perm], 0x8) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4) sendto$inet(r0, &(0x7f00000004c0)="3ce2de4d8d957a8de4e490b6cd14b988d4edef164bd3377aa381b5f50b7ca414516489f78cd7208982e9bde22b2b7c1c7606d565477f3db9d2b077283644c0f27ab52a863a42863e06944e40a0b3c5d21c8cbe102e7f726263f28aef1bc12a069063d4c30e8f329fdb36859be727fbef4314161e5fb5f01ae00a2634d5cdecca2089c62e32f4c919886b2b88d237e287318739bec0364caf15889f38a312ef6621c0f21709a4bf2b16274cf933f6ad8fcc9c2024bc1b4713f650e860f93ae93b2361956b3e80c38c5fd29b5c1b5d7ce67edc856a8dc0ba54cee53de9a48c131389426bd06ec7c695add357934fc0321f0d3d7982e4fe5a0039decc491a663afd02facb08dd9695f854c7b031d9af8bd7350897996b5208b23030cc0feb84570730eaf24b9f2ac05d0feb3be07a29f887095f36f3c8f0e77e45509acd14a5be4a1572dd4cd1231087b830fa03e071571d4abd694710ef140469cf6df8a59839aafe046a5bffb97e5247be901789eafd726ba090337a2c49207e6b900c7e982472e6aac70e5d52ca2c1bab47b1f6d00f9601e2281686c21f770ae96e0ffec4b30496d012fa00958f794cdbd721bd155cae87", 0x109e8, 0x805, 0x0, 0x6) 519.072212ms ago: executing program 0 (id=1921): mknod(&(0x7f0000000040)='./file0\x00', 0x8000, 0x6) mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0) mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1/file2\x00', 0xc000, 0x0) landlock_restrict_self(0xffffffffffffffff, 0x0) renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', 0xffffffffffffff9c, &(0x7f00000001c0)='./file1/file2\x00', 0x2) 470.974756ms ago: executing program 2 (id=1922): unshare(0x2c060000) unshare(0x24020400) r0 = socket(0x1, 0x2, 0x0) bind$unix(r0, &(0x7f00000001c0)=@file={0x1, './file0\x00'}, 0x6e) sendmmsg$unix(r0, &(0x7f0000001680)=[{{&(0x7f0000000380)=@file={0x1, './file0\x00'}, 0x6e, 0x0}}], 0x1, 0x0) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="1b00000000000000000000000200000000000000", @ANYBLOB="04000000000000000700"/19, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="03000000000000000300"/28], 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x10, 0x23, &(0x7f0000000680)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x3}, {{0x18, 0x1, 0x1, 0x0, 0x1}}, {}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xffffffff}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}}, @generic={0xc, 0xc, 0x5, 0xfffa, 0x2}, @call={0x85, 0x0, 0x0, 0x1d}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit, @exit, @map_val={0x18, 0x2, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x7f}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000300)='GPL\x00', 0x10001, 0x8e, &(0x7f0000000340)=""/142, 0x41100, 0x0, '\x00', 0x0, @sk_msg=0x7, 0xffffffffffffffff, 0x8, &(0x7f0000000400)={0x1000002, 0x5}, 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x6, &(0x7f0000000440)=[0x1, 0x1, r1, 0x1], &(0x7f0000000480)=[{0x5, 0x4, 0xb, 0x2}, {0x1, 0x4, 0x9, 0x6}, {0x1, 0x2, 0x0, 0xb}, {0x2, 0x3, 0x3, 0xa}, {0x4, 0x3, 0xd, 0xc}, {0x4, 0x2, 0x2, 0x3}], 0x10, 0x60, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r3 = socket$l2tp(0x2, 0x2, 0x73) bind$inet(r3, &(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @remote}, 0x10) getpeername$l2tp(r3, 0x0, &(0x7f0000000640)=0x6) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r4, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f0000000240)=@setlink={0x40, 0x13, 0x5, 0x0, 0x0, {}, [@IFLA_IFNAME={0x14, 0x3, 'wlan1\x00'}, @IFLA_ADDRESS={0xa, 0x1, @local}]}, 0x40}, 0x1, 0x0, 0x0, 0x804}, 0x20000804) r5 = syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0) r6 = syz_open_dev$usbfs(&(0x7f0000000000), 0x20000007d, 0x0) dup3(r5, r6, 0x0) r7 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0) r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000000280)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r8}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x6, 0x0, 0xb, 0x9, 0x0, 0x8}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x7, 0x1, 0xb, 0x7, 0x8}, {0x7, 0x0, 0x0, 0x7}, {}, {}, {}, {0x18, 0x8, 0x2, 0x0, r7}, {}, {0x46, 0x0, 0x2, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000001c0)={r9, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f0000000240)=[0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10) syz_open_dev$usbmon(&(0x7f0000000040), 0x100008, 0x20201) unshare(0xd982d858956cfdcb) ioctl$MON_IOCG_STATS(r5, 0xc0109207, &(0x7f00000001c0)) 310.685761ms ago: executing program 0 (id=1923): openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_GUEST_DEBUG(0xffffffffffffffff, 0x4048ae9b, &(0x7f0000000300)={0xe0001}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000011000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, &(0x7f0000000180)="6567e02f0fc7b20000360f01daf3d926c400650fc75e2601532336f20f0018dab400000f20e06635040000000f22e03e670f01c8", 0x34}], 0x1, 0x10, 0x0, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 107.79817ms ago: executing program 1 (id=1924): r0 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(r0, 0x10e, 0xc, &(0x7f0000000040)=0x2, 0x4) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0) 27.123428ms ago: executing program 2 (id=1925): socket$nl_netfilter(0x10, 0x3, 0xc) socket(0x10, 0x803, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) ioctl$SOUND_PCM_READ_RATE(0xffffffffffffffff, 0x80045002, 0x0) mmap$dsp(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x5, 0x11, 0xffffffffffffffff, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) r0 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10) r1 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10) sendmmsg(r1, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000) setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4) sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000) recvmmsg$unix(r0, &(0x7f00000027c0)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)=""/104, 0x68}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0, 0x0) 26.943207ms ago: executing program 0 (id=1926): r0 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'}) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syzkaller0\x00', 0x0}) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000100)={r2, 0x2, 0x6}, 0x10) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r3}, 0x10) r4 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r4, 0x89a1, &(0x7f0000000040)={'syzkaller0\x00'}) 0s ago: executing program 1 (id=1927): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000040)=ANY=[]) kernel console output (not intermixed with test programs): ="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 267.492745][ T26] audit: type=1326 audit(1727777715.228:2265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6835 comm="syz.3.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 267.589255][ T26] audit: type=1326 audit(1727777715.248:2266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6835 comm="syz.3.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 267.622638][ T26] audit: type=1326 audit(1727777715.258:2267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6835 comm="syz.3.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 267.745158][ T26] audit: type=1326 audit(1727777715.338:2268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6835 comm="syz.3.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 268.794043][ T26] audit: type=1326 audit(1727777715.338:2269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6835 comm="syz.3.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 268.941538][ T26] audit: type=1326 audit(1727777715.338:2270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6835 comm="syz.3.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 269.025275][ T26] audit: type=1326 audit(1727777715.338:2271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6835 comm="syz.3.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 269.152427][ T26] audit: type=1326 audit(1727777715.338:2272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6835 comm="syz.3.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 269.431547][ T26] audit: type=1326 audit(1727777715.338:2273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6835 comm="syz.3.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 270.150376][ T3837] loop: Write error at byte offset 9223372036854800383, length 2048. [ 271.132347][ C1] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 271.142044][ C1] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 272.872593][ T26] kauditd_printk_skb: 15 callbacks suppressed [ 272.872610][ T26] audit: type=1326 audit(1727777720.818:2289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6914 comm="syz.2.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1084b7dff9 code=0x7ffc0000 [ 272.933523][ T26] audit: type=1326 audit(1727777720.848:2290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6914 comm="syz.2.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1084b7dff9 code=0x7ffc0000 [ 273.070743][ T26] audit: type=1326 audit(1727777720.848:2291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6914 comm="syz.2.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1084b7dff9 code=0x7ffc0000 [ 273.223510][ T26] audit: type=1326 audit(1727777720.848:2292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6914 comm="syz.2.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1084b7dff9 code=0x7ffc0000 [ 274.076832][ T26] audit: type=1326 audit(1727777720.848:2293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6914 comm="syz.2.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1084b7dff9 code=0x7ffc0000 [ 274.099884][ T26] audit: type=1326 audit(1727777720.848:2294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6914 comm="syz.2.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1084b7dff9 code=0x7ffc0000 [ 274.140912][ T26] audit: type=1326 audit(1727777720.848:2295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6914 comm="syz.2.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1084b7dff9 code=0x7ffc0000 [ 274.233471][ T26] audit: type=1326 audit(1727777720.848:2296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6914 comm="syz.2.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1084b7dff9 code=0x7ffc0000 [ 274.362016][ T26] audit: type=1326 audit(1727777720.848:2297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6914 comm="syz.2.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1084b7dff9 code=0x7ffc0000 [ 275.169403][ T3909] loop: Write error at byte offset 9223372036854800383, length 2048. [ 275.196974][ C1] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 275.206661][ C1] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 275.278601][ T6957] ptrace attach of "./syz-executor exec"[5328] was attempted by "./syz-executor exec"[6957] [ 275.375540][ T26] audit: type=1326 audit(1727777720.848:2298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6914 comm="syz.2.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1084b7dff9 code=0x7ffc0000 [ 275.502959][ T6963] loop4: detected capacity change from 0 to 512 [ 275.513491][ T6963] /dev/loop4: Can't open blockdev [ 277.407907][ T7005] Cannot find set identified by id 0 to match [ 277.730994][ T7017] loop3: detected capacity change from 0 to 512 [ 277.824303][ T7017] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 277.872478][ T7017] ext4 filesystem being mounted at /27/file0 supports timestamps until 2038 (0x7fffffff) [ 277.934373][ T7017] EXT4-fs (loop3): unmounting filesystem. [ 279.287593][ T26] kauditd_printk_skb: 27 callbacks suppressed [ 279.287609][ T26] audit: type=1326 audit(1727777727.218:2326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7047 comm="syz.2.1016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1084b7dff9 code=0x7ffc0000 [ 279.377996][ T26] audit: type=1326 audit(1727777727.278:2327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7047 comm="syz.2.1016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1084b7dff9 code=0x7ffc0000 [ 279.420731][ T26] audit: type=1326 audit(1727777727.278:2328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7047 comm="syz.2.1016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=179 compat=0 ip=0x7f1084b7dff9 code=0x7ffc0000 [ 279.594024][ T7059] dccp_xmit_packet: Payload too large (65475) for featneg. [ 279.705800][ T7061] loop0: detected capacity change from 0 to 512 [ 279.767683][ T7061] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 279.784118][ T7061] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e12c, mo2=0002] [ 279.805334][ T7061] EXT4-fs (loop0): write access unavailable, skipping orphan cleanup [ 279.821860][ T7061] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 279.921698][ T26] audit: type=1326 audit(1727777727.858:2329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7067 comm="syz.3.1025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 279.992186][ T26] audit: type=1326 audit(1727777727.888:2330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7067 comm="syz.3.1025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 280.054392][ T26] audit: type=1326 audit(1727777727.888:2331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7067 comm="syz.3.1025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 280.140790][ T26] audit: type=1326 audit(1727777727.888:2332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7067 comm="syz.3.1025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 280.208762][ T11] loop: Write error at byte offset 9223372036854800383, length 2048. [ 280.229941][ C0] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 280.239730][ C0] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 280.259723][ T26] audit: type=1326 audit(1727777727.888:2333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7067 comm="syz.3.1025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 280.389958][ T26] audit: type=1326 audit(1727777727.888:2334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7067 comm="syz.3.1025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 280.511656][ T26] audit: type=1326 audit(1727777727.888:2335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7067 comm="syz.3.1025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 280.958259][ T5328] EXT4-fs (loop0): unmounting filesystem. [ 282.175081][ T7091] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1032'. [ 282.226164][ T7097] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present [ 282.639369][ T7110] loop3: detected capacity change from 0 to 512 [ 282.660361][ T7110] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities [ 282.749115][ T7113] loop0: detected capacity change from 0 to 512 [ 282.773584][ T7113] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 282.806493][ T7113] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e12c, mo2=0002] [ 282.820501][ T7113] EXT4-fs (loop0): write access unavailable, skipping orphan cleanup [ 282.829184][ T7113] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 282.879115][ T5328] EXT4-fs (loop0): unmounting filesystem. [ 283.041055][ T7119] loop0: detected capacity change from 0 to 2048 [ 283.057588][ T7119] /dev/loop0: Can't open blockdev [ 283.155140][ T7125] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1046'. [ 283.199117][ T7125] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1046'. [ 283.208199][ T7126] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 0, id = 0 [ 283.238091][ T7125] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 283.271640][ T7125] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 283.279901][ T7125] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 283.301679][ T7125] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 283.970432][ T7144] loop4: detected capacity change from 0 to 512 [ 284.008124][ T7144] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 284.043538][ T3655] Bluetooth: hci4: command 0x0406 tx timeout [ 284.104236][ T7144] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e12c, mo2=0002] [ 284.124084][ T7144] EXT4-fs (loop4): write access unavailable, skipping orphan cleanup [ 284.167396][ T7144] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 284.466816][ T3639] EXT4-fs (loop4): unmounting filesystem. [ 284.617812][ T7159] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1055'. [ 284.656457][ T7159] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present [ 284.745732][ T7162] loop3: detected capacity change from 0 to 2048 [ 284.809729][ T7162] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 284.874204][ T6432] EXT4-fs (loop3): unmounting filesystem. [ 285.112521][ T7174] random: crng reseeded on system resumption [ 285.249891][ T6954] loop: Write error at byte offset 9223372036854800383, length 2048. [ 285.265362][ C1] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 285.275119][ C1] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 285.707358][ T7188] loop4: detected capacity change from 0 to 512 [ 285.739923][ T7186] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1066'. [ 285.749999][ T7188] /dev/loop4: Can't open blockdev [ 286.165627][ T26] kauditd_printk_skb: 37 callbacks suppressed [ 286.165674][ T26] audit: type=1326 audit(1727777734.108:2373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7204 comm="syz.1.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 286.254117][ T26] audit: type=1326 audit(1727777734.148:2374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7204 comm="syz.1.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 286.318151][ T26] audit: type=1326 audit(1727777734.148:2375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7204 comm="syz.1.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 286.357796][ T26] audit: type=1326 audit(1727777734.148:2376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7204 comm="syz.1.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 286.397849][ T26] audit: type=1326 audit(1727777734.158:2377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7204 comm="syz.1.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 286.456036][ T26] audit: type=1326 audit(1727777734.158:2378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7204 comm="syz.1.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 286.542328][ T26] audit: type=1326 audit(1727777734.158:2379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7204 comm="syz.1.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=441 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 286.602900][ T26] audit: type=1326 audit(1727777734.158:2380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7204 comm="syz.1.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 286.922252][ T3683] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 287.112693][ T3683] usb 5-1: device descriptor read/64, error -71 [ 287.390620][ T3683] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 287.510577][ T26] audit: type=1326 audit(1727777735.448:2381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7225 comm="syz.3.1081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 287.581737][ T26] audit: type=1326 audit(1727777735.478:2382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7225 comm="syz.3.1081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 287.611576][ T3683] usb 5-1: device descriptor read/64, error -71 [ 287.630255][ T7224] loop0: detected capacity change from 0 to 164 [ 287.703381][ T7221] syz.0.1078: attempt to access beyond end of device [ 287.703381][ T7221] loop0: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 287.739492][ T3683] usb usb5-port1: attempt power cycle [ 287.746219][ T7221] syz.0.1078: attempt to access beyond end of device [ 287.746219][ T7221] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 288.191554][ T3683] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 288.301634][ T3683] usb 5-1: device descriptor read/8, error -71 [ 288.571563][ T3683] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 288.821761][ T22] usb 1-1: new full-speed USB device number 2 using dummy_hcd [ 289.241664][ T22] usb 1-1: not running at top speed; connect to a high speed hub [ 289.330651][ T22] usb 1-1: config 1 interface 0 altsetting 4 endpoint 0x82 has invalid maxpacket 1023, setting to 64 [ 289.361675][ T22] usb 1-1: config 1 interface 0 has no altsetting 0 [ 289.563051][ T22] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 289.579684][ T22] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 289.597439][ T22] usb 1-1: Product: syz [ 289.609019][ T22] usb 1-1: Manufacturer: 먃뷺룢뭭癊䕩篶媪 [ 289.623994][ T22] usb 1-1: SerialNumber: syz [ 289.703493][ T7248] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22 [ 290.612530][ T3763] loop: Write error at byte offset 9223372036854800383, length 2048. [ 290.632911][ C0] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 290.642531][ C0] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 290.869995][ T3655] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1 [ 290.887941][ T3655] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9 [ 290.896839][ T3655] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9 [ 290.908051][ T3655] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4 [ 290.917147][ T3655] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3 [ 290.925630][ T3655] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2 [ 291.570707][ T7301] chnl_net:caif_netlink_parms(): no params data found [ 291.880722][ T22] cdc_ether: probe of 1-1:1.0 failed with error -71 [ 291.916269][ T22] usb 1-1: USB disconnect, device number 2 [ 291.935480][ T26] kauditd_printk_skb: 21 callbacks suppressed [ 291.935496][ T26] audit: type=1326 audit(1727777739.878:2404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7322 comm="syz.0.1103" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fefdc17dff9 code=0x0 [ 292.025926][ T7326] loop0: detected capacity change from 0 to 128 [ 292.060877][ T7328] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1105'. [ 292.082810][ T26] audit: type=1326 audit(1727777740.028:2405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7329 comm="syz.1.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 292.143252][ T7301] bridge0: port 1(bridge_slave_0) entered blocking state [ 292.178335][ T7301] bridge0: port 1(bridge_slave_0) entered disabled state [ 292.206425][ T7301] device bridge_slave_0 entered promiscuous mode [ 292.209392][ T26] audit: type=1326 audit(1727777740.058:2406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7329 comm="syz.1.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 292.248870][ T7301] bridge0: port 2(bridge_slave_1) entered blocking state [ 292.256205][ T26] audit: type=1326 audit(1727777740.058:2407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7329 comm="syz.1.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 292.278955][ T7301] bridge0: port 2(bridge_slave_1) entered disabled state [ 292.316339][ T26] audit: type=1326 audit(1727777740.058:2408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7329 comm="syz.1.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 292.324673][ T7301] device bridge_slave_1 entered promiscuous mode [ 292.388857][ T26] audit: type=1326 audit(1727777740.058:2409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7329 comm="syz.1.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 292.495600][ T7301] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 292.517686][ T26] audit: type=1326 audit(1727777740.078:2410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7329 comm="syz.1.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 292.538644][ T7301] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 292.601134][ T26] audit: type=1326 audit(1727777740.078:2411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7329 comm="syz.1.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 292.667798][ T7301] team0: Port device team_slave_0 added [ 292.669335][ T26] audit: type=1326 audit(1727777740.078:2412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7329 comm="syz.1.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 292.707927][ T7301] team0: Port device team_slave_1 added [ 292.752549][ T26] audit: type=1326 audit(1727777740.078:2413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7329 comm="syz.1.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 292.868109][ T7301] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 292.888996][ T7301] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 293.011679][ T3655] Bluetooth: hci10: command tx timeout [ 293.054620][ T7301] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 293.077724][ T7301] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 293.084810][ T7301] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 293.112200][ T7301] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 293.416002][ T7301] device hsr_slave_0 entered promiscuous mode [ 293.448558][ T7301] device hsr_slave_1 entered promiscuous mode [ 293.476436][ T7301] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 293.501984][ T7301] Cannot create hsr debugfs directory [ 293.757492][ T3683] usb 5-1: device descriptor read/8, error -110 [ 295.081631][ T3655] Bluetooth: hci10: command tx timeout [ 295.322957][ T11] loop: Write error at byte offset 9223372036854800383, length 2048. [ 295.331781][ T3683] usb usb5-port1: unable to enumerate USB device [ 295.345752][ C0] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 295.355433][ C0] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 295.764498][ T7357] syz.4.1114[7357] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 295.764610][ T7357] syz.4.1114[7357] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 296.016614][ T7301] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 296.915414][ T7301] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 296.953961][ T7373] EXT4-fs (sda1): resizing filesystem from 262144 to 1 blocks [ 297.003631][ T7373] EXT4-fs warning (device sda1): ext4_resize_fs:2051: can't shrink FS - resize aborted [ 297.241688][ T3655] Bluetooth: hci10: command tx timeout [ 298.819608][ T7301] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 299.020032][ T7301] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 299.063941][ T7397] netlink: 'syz.1.1126': attribute type 10 has an invalid length. [ 299.091948][ T7397] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1126'. [ 299.236433][ T7301] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 299.264317][ T7301] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 299.295821][ T7301] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 299.319995][ T7301] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 299.331772][ T3655] Bluetooth: hci10: command tx timeout [ 299.581289][ T7301] 8021q: adding VLAN 0 to HW filter on device bond0 [ 299.619469][ T3725] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 299.629902][ T3725] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 301.211855][ T3909] loop: Write error at byte offset 9223372036854800383, length 2048. [ 301.227275][ C0] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 301.237061][ C0] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 301.251030][ T7301] 8021q: adding VLAN 0 to HW filter on device team0 [ 302.071810][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 302.102256][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 302.148674][ T26] kauditd_printk_skb: 2 callbacks suppressed [ 302.148692][ T26] audit: type=1326 audit(1727777750.088:2416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7432 comm="syz.0.1139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 302.178634][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 302.185796][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 302.222184][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 302.254603][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 302.285865][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 302.303861][ T26] audit: type=1326 audit(1727777750.088:2417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7432 comm="syz.0.1139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=172 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 302.328234][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 302.335525][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 302.372053][ T26] audit: type=1326 audit(1727777750.088:2418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7432 comm="syz.0.1139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 302.406110][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 302.452711][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 302.473335][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 302.503105][ T7444] syz.1.1142[7444] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 302.503216][ T7444] syz.1.1142[7444] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 302.504493][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 302.596927][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 302.631894][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 302.650510][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 302.667129][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 302.702888][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 302.716189][ T7453] syz.0.1148[7453] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 302.716292][ T7453] syz.0.1148[7453] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 302.730471][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 302.782371][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 302.805951][ T7301] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 304.213843][ T7485] ebt_among: dst integrity fail: 101 [ 304.312474][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 304.352686][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 304.392388][ T7301] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 304.526395][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 304.536860][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 304.612775][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 304.635037][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 304.665331][ T7301] device veth0_vlan entered promiscuous mode [ 304.673598][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 304.701082][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 304.730831][ T7301] device veth1_vlan entered promiscuous mode [ 304.755195][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 305.625888][ T3881] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 305.675831][ T3881] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 305.697713][ T26] audit: type=1326 audit(1727777753.638:2419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7480 comm="syz.1.1156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 305.725621][ T7301] device veth0_macvtap entered promiscuous mode [ 305.782057][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 305.821602][ T26] audit: type=1326 audit(1727777753.688:2420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7480 comm="syz.1.1156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=438 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 305.824223][ T7301] device veth1_macvtap entered promiscuous mode [ 305.873721][ T7505] netlink: 'syz.3.1164': attribute type 27 has an invalid length. [ 305.932784][ T26] audit: type=1326 audit(1727777753.688:2421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7480 comm="syz.1.1156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 306.006719][ T26] audit: type=1326 audit(1727777753.708:2422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7504 comm="syz.3.1164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 306.086262][ T26] audit: type=1326 audit(1727777753.718:2423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7504 comm="syz.3.1164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 306.137910][ T26] audit: type=1326 audit(1727777753.728:2424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7504 comm="syz.3.1164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 306.188416][ T26] audit: type=1326 audit(1727777753.728:2425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7504 comm="syz.3.1164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 306.282634][ T11] loop: Write error at byte offset 9223372036854800383, length 2048. [ 306.295417][ C1] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 306.305139][ C1] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 307.039926][ T7505] bridge0: port 2(bridge_slave_1) entered disabled state [ 307.047343][ T7505] bridge0: port 1(bridge_slave_0) entered disabled state [ 307.754462][ T7505] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 307.810878][ T7505] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 308.343909][ T7505] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 308.353009][ T7505] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 308.363047][ T7505] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 308.374499][ T7505] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 308.584560][ T7531] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1173'. [ 308.704248][ T7301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 308.753339][ T7301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 308.785005][ T7301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 308.831589][ T7301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 308.861742][ T7301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 308.895197][ T7301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 308.930894][ T7301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 308.957129][ T7301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 308.979781][ T7301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 309.010978][ T7301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 309.047077][ T7301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 309.073996][ T7301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 309.084255][ T7301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 309.094984][ T7301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 309.111645][ T26] kauditd_printk_skb: 39 callbacks suppressed [ 309.111663][ T26] audit: type=1326 audit(1727777757.048:2465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7553 comm="syz.4.1183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a8c77dff9 code=0x7ffc0000 [ 309.145913][ T7301] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 309.172684][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 309.192817][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 309.234573][ T26] audit: type=1326 audit(1727777757.048:2466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7553 comm="syz.4.1183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=438 compat=0 ip=0x7f9a8c77dff9 code=0x7ffc0000 [ 309.245159][ T7301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 309.321835][ T26] audit: type=1326 audit(1727777757.048:2467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7553 comm="syz.4.1183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a8c77dff9 code=0x7ffc0000 [ 309.324254][ T7301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 309.377815][ T7301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 309.398924][ T7301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 309.420557][ T7301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 309.446661][ T7301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 309.472459][ T7301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 309.512327][ T7301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 309.560907][ T7301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 309.590849][ T7301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 309.608746][ T7301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 309.634299][ T7301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 309.665201][ T7301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 309.761048][ T7301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 309.806258][ T7301] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 309.853398][ T7561] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1186'. [ 310.014458][ T3725] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 310.028421][ T3725] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 310.039814][ T7301] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 310.081159][ T7301] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 310.104015][ T7301] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 310.125575][ T7301] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 310.291557][ T26] audit: type=1326 audit(1727777758.188:2468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7578 comm="syz.1.1194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 310.343047][ T3909] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 310.351309][ T3909] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 310.380528][ T3881] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 310.392593][ T3881] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 310.405708][ T3725] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 310.426214][ T26] audit: type=1326 audit(1727777758.198:2469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7578 comm="syz.1.1194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 310.450142][ T3725] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 310.471848][ T26] audit: type=1326 audit(1727777758.198:2470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7578 comm="syz.1.1194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 310.539428][ T26] audit: type=1326 audit(1727777758.198:2471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7578 comm="syz.1.1194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 310.611749][ T26] audit: type=1326 audit(1727777758.198:2472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7578 comm="syz.1.1194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 310.691608][ T26] audit: type=1326 audit(1727777758.198:2473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7578 comm="syz.1.1194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 310.778551][ T26] audit: type=1326 audit(1727777758.198:2474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7578 comm="syz.1.1194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 310.784132][ T7598] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1200'. [ 311.014061][ T7607] loop3: detected capacity change from 0 to 512 [ 311.130043][ T7607] EXT4-fs error (device loop3): ext4_orphan_get:1396: inode #17: comm syz.3.1206: iget: bogus i_mode (0) [ 311.182341][ T7607] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz.3.1206: couldn't read orphan inode 17 (err -117) [ 311.242488][ T7607] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 311.323884][ T3725] loop: Write error at byte offset 9223372036854800383, length 2048. [ 311.336800][ T7607] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.1206: bg 0: block 7: invalid block bitmap [ 311.361548][ C0] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 311.371201][ C0] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 311.512214][ T6432] EXT4-fs (loop3): unmounting filesystem. [ 311.907237][ T7653] can0: slcan on ttyS3. [ 311.991746][ T7653] can0 (unregistered): slcan off ttyS3. [ 311.999993][ T7653] Falling back ldisc for ttyS3. [ 312.328452][ T7670] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4) [ 312.335483][ T7670] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 312.359576][ T7670] vhci_hcd vhci_hcd.0: Device attached [ 312.378220][ T7671] vhci_hcd: connection closed [ 312.382857][ T3881] vhci_hcd: stop threads [ 312.402428][ T3881] vhci_hcd: release socket [ 312.409957][ T3881] vhci_hcd: disconnect device [ 312.723594][ T7688] dccp_close: ABORT with 1 bytes unread [ 314.659967][ T7724] loop3: detected capacity change from 0 to 164 [ 314.697980][ T7724] Unable to read rock-ridge attributes [ 314.700290][ T7722] loop0: detected capacity change from 0 to 2048 [ 314.718655][ T7724] Unable to read rock-ridge attributes [ 314.726029][ T7722] /dev/loop0: Can't open blockdev [ 314.781715][ T7724] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 314.899788][ T7731] loop0: detected capacity change from 0 to 128 [ 314.912520][ T7731] /dev/loop0: Can't open blockdev [ 314.958724][ T26] kauditd_printk_skb: 56 callbacks suppressed [ 314.958740][ T26] audit: type=1326 audit(1727777762.898:2531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.0.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 315.012472][ T26] audit: type=1326 audit(1727777762.928:2532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.0.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 315.055514][ T26] audit: type=1326 audit(1727777762.928:2533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.0.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 315.124280][ T26] audit: type=1326 audit(1727777762.928:2534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.0.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 315.175644][ T26] audit: type=1326 audit(1727777762.928:2535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.0.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 315.199807][ T7741] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1256'. [ 315.251403][ T26] audit: type=1326 audit(1727777762.928:2536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.0.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 315.308040][ T26] audit: type=1326 audit(1727777762.928:2537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.0.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 315.347515][ T26] audit: type=1326 audit(1727777762.928:2538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.0.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 315.392410][ T26] audit: type=1326 audit(1727777762.928:2539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.0.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 315.433338][ T26] audit: type=1326 audit(1727777762.938:2540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.0.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 320.142642][ T3655] Bluetooth: hci9: Controller not accepting commands anymore: ncmd = 0 [ 320.151324][ T3655] Bluetooth: hci9: Injecting HCI hardware error event [ 320.159759][ T3653] Bluetooth: hci9: hardware error 0x00 [ 320.167319][ T1271] ieee802154 phy1 wpan1: encryption failed: -22 [ 320.176201][ T7424] loop: Write error at byte offset 9223372036854800383, length 2048. [ 320.266795][ C0] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 320.276493][ C0] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 320.636692][ T7771] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1266'. [ 321.543452][ T7775] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present [ 322.372811][ T3653] Bluetooth: hci9: Opcode 0x0c03 failed: -110 [ 324.598889][ T7786] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1271'. [ 324.861210][ T26] kauditd_printk_skb: 35 callbacks suppressed [ 324.861227][ T26] audit: type=1326 audit(1727777772.798:2576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.2.1277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 324.936573][ T26] audit: type=1326 audit(1727777772.838:2577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.2.1277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 324.979588][ T26] audit: type=1326 audit(1727777772.858:2578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.2.1277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 325.827745][ T26] audit: type=1326 audit(1727777772.858:2579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.2.1277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 325.850377][ T26] audit: type=1326 audit(1727777772.858:2580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.2.1277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 325.902040][ T3725] loop: Write error at byte offset 9223372036854800383, length 2048. [ 325.910290][ C0] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 325.919974][ C0] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 326.061587][ T26] audit: type=1326 audit(1727777772.858:2581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.2.1277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 326.256366][ T26] audit: type=1326 audit(1727777772.858:2582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.2.1277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 326.320557][ T26] audit: type=1326 audit(1727777772.858:2583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.2.1277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 326.358415][ T7821] loop4: detected capacity change from 0 to 2048 [ 326.369564][ T26] audit: type=1326 audit(1727777772.858:2584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.2.1277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 326.430077][ T26] audit: type=1326 audit(1727777772.858:2585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.2.1277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 326.750241][ T7840] loop4: detected capacity change from 0 to 1024 [ 326.770762][ T7840] EXT4-fs: Ignoring removed oldalloc option [ 326.784460][ T7840] /dev/loop4: Can't open blockdev [ 327.303291][ T7840] loop4: detected capacity change from 0 to 1024 [ 327.310917][ T7840] /dev/loop4: Can't open blockdev [ 327.362369][ T7840] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1289'. [ 327.739845][ T7867] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1298'. [ 327.809552][ T7867] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1298'. [ 328.246200][ T7875] device wireguard0 entered promiscuous mode [ 328.931977][ T3653] Bluetooth: hci10: Controller not accepting commands anymore: ncmd = 0 [ 328.940971][ T3653] Bluetooth: hci10: Injecting HCI hardware error event [ 328.951405][ T3655] Bluetooth: hci10: hardware error 0x00 [ 329.864465][ T26] kauditd_printk_skb: 337 callbacks suppressed [ 329.864483][ T26] audit: type=1326 audit(1727777777.798:2923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7907 comm="syz.0.1311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 330.007468][ T26] audit: type=1326 audit(1727777777.838:2924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7912 comm="syz.0.1311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fefdc1b00e5 code=0x7ffc0000 [ 330.059907][ T26] audit: type=1326 audit(1727777777.988:2925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7912 comm="syz.0.1311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 334.456850][ T3655] Bluetooth: hci10: Opcode 0x0c03 failed: -110 [ 334.476832][ T3881] loop: Write error at byte offset 9223372036854800383, length 2048. [ 334.629160][ C0] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 334.638897][ C0] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 334.902423][ T7941] dccp_xmit_packet: Payload too large (65475) for featneg. [ 336.835934][ T7969] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1328'. [ 336.848375][ T26] audit: type=1326 audit(1727777784.798:2926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7966 comm="syz.0.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 336.935769][ T26] audit: type=1326 audit(1727777784.798:2927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7966 comm="syz.0.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 336.959973][ T26] audit: type=1326 audit(1727777784.818:2928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7966 comm="syz.0.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 336.990629][ T26] audit: type=1326 audit(1727777784.828:2929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7966 comm="syz.0.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 337.022754][ T26] audit: type=1326 audit(1727777784.828:2930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7966 comm="syz.0.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 337.049337][ T26] audit: type=1326 audit(1727777784.828:2931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7966 comm="syz.0.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 337.075714][ T26] audit: type=1326 audit(1727777784.828:2932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7966 comm="syz.0.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 337.174618][ T26] audit: type=1326 audit(1727777784.828:2933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7966 comm="syz.0.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 337.278641][ T26] audit: type=1326 audit(1727777784.828:2934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7966 comm="syz.0.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 337.345340][ T26] audit: type=1326 audit(1727777784.828:2935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7966 comm="syz.0.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 337.653533][ T7983] loop3: detected capacity change from 0 to 512 [ 337.857159][ T7983] EXT4-fs error (device loop3): ext4_orphan_get:1396: inode #17: comm syz.3.1334: iget: bogus i_mode (0) [ 338.854828][ T7983] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz.3.1334: couldn't read orphan inode 17 (err -117) [ 338.998919][ T7983] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 339.104633][ T7983] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.1334: bg 0: block 7: invalid block bitmap [ 339.410661][ T6432] EXT4-fs (loop3): unmounting filesystem. [ 339.479450][ T152] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x4 [ 339.487569][ T56] loop: Write error at byte offset 9223372036854800383, length 2048. [ 339.496509][ C0] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 339.497618][ T152] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x2 [ 339.506148][ C0] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 339.574825][ T152] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 339.597276][ T152] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 339.617562][ T152] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 339.636395][ T152] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 339.655345][ T152] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 339.672807][ T152] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 339.695058][ T152] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 339.703904][ T152] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 339.712763][ T152] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 339.732049][ T152] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 339.740164][ T152] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 339.749365][ T152] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 339.757680][ T152] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 339.786650][ T152] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 339.810183][ T152] hid-generic 0000:3000000:0000.0002: hidraw0: HID v0.00 Device [sy] on syz0 [ 341.294079][ T8047] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1354'. [ 342.222580][ T8072] loop0: detected capacity change from 0 to 512 [ 342.263256][ T8072] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 342.632920][ T8072] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e12c, mo2=0002] [ 342.973970][ T8072] EXT4-fs (loop0): write access unavailable, skipping orphan cleanup [ 343.092824][ T8072] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 343.185943][ T8085] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1368'. [ 343.199058][ T8084] program syz.4.1366 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 343.245826][ T5328] EXT4-fs (loop0): unmounting filesystem. [ 344.901682][ T9] loop: Write error at byte offset 9223372036854800383, length 2048. [ 344.981024][ C1] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 344.990742][ C1] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 345.400991][ T26] kauditd_printk_skb: 23 callbacks suppressed [ 345.401009][ T26] audit: type=1326 audit(1727777793.338:2959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8113 comm="syz.4.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a8c77dff9 code=0x7ffc0000 [ 345.490913][ T26] audit: type=1326 audit(1727777793.378:2960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8113 comm="syz.4.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9a8c77dff9 code=0x7ffc0000 [ 345.574757][ T26] audit: type=1326 audit(1727777793.378:2961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8113 comm="syz.4.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a8c77dff9 code=0x7ffc0000 [ 345.674963][ T26] audit: type=1326 audit(1727777793.378:2962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8113 comm="syz.4.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a8c77dff9 code=0x7ffc0000 [ 345.736969][ T8123] loop0: detected capacity change from 0 to 512 [ 345.782872][ T26] audit: type=1326 audit(1727777793.388:2963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8113 comm="syz.4.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9a8c77dff9 code=0x7ffc0000 [ 345.831370][ T8123] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 345.875950][ T26] audit: type=1326 audit(1727777793.388:2964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8113 comm="syz.4.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a8c77dff9 code=0x7ffc0000 [ 345.905573][ T26] audit: type=1326 audit(1727777793.388:2965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8113 comm="syz.4.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9a8c77dff9 code=0x7ffc0000 [ 345.928678][ T8123] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e12c, mo2=0002] [ 345.960734][ T8123] EXT4-fs (loop0): write access unavailable, skipping orphan cleanup [ 345.969879][ T8123] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 346.065999][ T26] audit: type=1326 audit(1727777793.398:2966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8113 comm="syz.4.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a8c77dff9 code=0x7ffc0000 [ 346.174229][ T26] audit: type=1326 audit(1727777793.398:2967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8113 comm="syz.4.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=115 compat=0 ip=0x7f9a8c77dff9 code=0x7ffc0000 [ 346.230118][ T26] audit: type=1326 audit(1727777793.398:2968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8113 comm="syz.4.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a8c77dff9 code=0x7ffc0000 [ 346.394210][ T5328] EXT4-fs (loop0): unmounting filesystem. [ 349.276463][ T8172] netlink: 'syz.0.1396': attribute type 3 has an invalid length. [ 349.302310][ T8172] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1396'. [ 349.509514][ T8178] loop3: detected capacity change from 0 to 1024 [ 349.528827][ T8178] EXT4-fs: Ignoring removed bh option [ 349.562314][ T9] loop: Write error at byte offset 9223372036854800383, length 2048. [ 349.570513][ C0] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 349.580203][ C0] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 349.693035][ T8178] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a000c118, mo2=0002] [ 349.701241][ T8178] System zones: 0-1, 3-12 [ 350.382619][ T8178] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 350.545933][ T26] kauditd_printk_skb: 28 callbacks suppressed [ 350.545947][ T26] audit: type=1800 audit(1727777798.488:2997): pid=8178 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1399" name="bus" dev="loop3" ino=18 res=0 errno=0 [ 350.690811][ T8206] loop4: detected capacity change from 0 to 256 [ 350.877230][ T6432] EXT4-fs (loop3): unmounting filesystem. [ 351.040008][ T8213] serio: Serial port ptm0 [ 351.043520][ T8205] syzkaller0 speed is unknown, defaulting to 1000 [ 351.051212][ T8205] syzkaller0 speed is unknown, defaulting to 1000 [ 351.097161][ T8205] syzkaller0 speed is unknown, defaulting to 1000 [ 351.104176][ T8215] Cache volume key already in use (9p,(null),) [ 351.175392][ T8205] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 351.238887][ T8223] loop3: detected capacity change from 0 to 736 [ 351.248831][ T8205] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 351.362432][ T8205] syzkaller0 speed is unknown, defaulting to 1000 [ 351.409206][ T8205] syzkaller0 speed is unknown, defaulting to 1000 [ 351.435128][ T8223] Symlink component flag not implemented [ 351.441349][ T8223] Symlink component flag not implemented (247) [ 351.442633][ T8205] syzkaller0 speed is unknown, defaulting to 1000 [ 351.492860][ T8205] syzkaller0 speed is unknown, defaulting to 1000 [ 351.507935][ T8205] syzkaller0 speed is unknown, defaulting to 1000 [ 351.539249][ T8205] syzkaller0 speed is unknown, defaulting to 1000 [ 351.561050][ T8205] syzkaller0 speed is unknown, defaulting to 1000 [ 351.583406][ T8205] syzkaller0 speed is unknown, defaulting to 1000 [ 351.605211][ T8205] syzkaller0 speed is unknown, defaulting to 1000 [ 351.633879][ T8205] syzkaller0 speed is unknown, defaulting to 1000 [ 351.660538][ T8205] syzkaller0 speed is unknown, defaulting to 1000 [ 351.921111][ T26] audit: type=1326 audit(1727777799.858:2998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.3.1419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 351.999159][ T26] audit: type=1326 audit(1727777799.898:2999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.3.1419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 352.025837][ T26] audit: type=1326 audit(1727777799.898:3000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.3.1419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 352.066707][ T26] audit: type=1326 audit(1727777799.908:3001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.3.1419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 352.791714][ T26] audit: type=1326 audit(1727777799.908:3002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.3.1419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 352.943627][ T26] audit: type=1326 audit(1727777799.908:3003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.3.1419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 353.884965][ T26] audit: type=1326 audit(1727777799.908:3004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.3.1419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 354.001819][ T26] audit: type=1326 audit(1727777799.908:3005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.3.1419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 354.017637][ T8264] syz.2.1422[8264] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 354.040331][ T8264] syz.2.1422[8264] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 354.095573][ T26] audit: type=1326 audit(1727777799.908:3006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.3.1419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 354.406397][ T8275] loop0: detected capacity change from 0 to 512 [ 354.437324][ T8275] /dev/loop0: Can't open blockdev [ 354.524494][ T8279] dccp_xmit_packet: Payload too large (65475) for featneg. [ 354.601883][ T9] loop: Write error at byte offset 9223372036854800383, length 2048. [ 354.615780][ C1] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 354.625499][ C1] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 354.890164][ T8288] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1433'. [ 356.825516][ T8311] dccp_xmit_packet: Payload too large (65475) for featneg. [ 358.365331][ T8349] dccp_xmit_packet: Payload too large (65475) for featneg. [ 359.393326][ T8367] 9pnet_fd: Insufficient options for proto=fd [ 359.642246][ T46] loop: Write error at byte offset 9223372036854800383, length 2048. [ 359.662275][ C1] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 359.671954][ C1] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 359.741239][ T26] kauditd_printk_skb: 17 callbacks suppressed [ 359.741256][ T26] audit: type=1326 audit(1727777807.678:3024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8386 comm="syz.2.1468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 359.809899][ T8391] loop3: detected capacity change from 0 to 512 [ 359.819377][ T26] audit: type=1326 audit(1727777807.698:3025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8386 comm="syz.2.1468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 359.857244][ T26] audit: type=1326 audit(1727777807.698:3026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8386 comm="syz.2.1468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 359.905036][ T8391] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 359.933631][ T26] audit: type=1326 audit(1727777807.698:3027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8386 comm="syz.2.1468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 359.947000][ T8391] ext4 filesystem being mounted at /129/file0 supports timestamps until 2038 (0x7fffffff) [ 359.957098][ T26] audit: type=1326 audit(1727777807.698:3028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8386 comm="syz.2.1468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 359.989668][ T26] audit: type=1326 audit(1727777807.698:3029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8386 comm="syz.2.1468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 360.056644][ T26] audit: type=1326 audit(1727777807.698:3030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8386 comm="syz.2.1468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 360.082004][ T8383] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 360.119342][ T8402] loop0: detected capacity change from 0 to 128 [ 360.126692][ T26] audit: type=1326 audit(1727777807.698:3031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8386 comm="syz.2.1468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 360.126741][ T26] audit: type=1326 audit(1727777807.698:3032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8386 comm="syz.2.1468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 360.126778][ T26] audit: type=1326 audit(1727777807.698:3033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8386 comm="syz.2.1468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 360.156012][ T8401] dccp_xmit_packet: Payload too large (65475) for featneg. [ 360.225052][ T8383] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 360.261300][ T8383] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 3 with error 28 [ 360.287397][ T8383] EXT4-fs (loop3): This should not happen!! Data will be lost [ 360.287397][ T8383] [ 360.305199][ T8383] EXT4-fs (loop3): Total free blocks count 0 [ 360.318084][ T8383] EXT4-fs (loop3): Free/Dirty block details [ 360.330689][ T8383] EXT4-fs (loop3): free_blocks=65280 [ 360.336532][ T8383] EXT4-fs (loop3): dirty_blocks=3 [ 360.341854][ T8383] EXT4-fs (loop3): Block reservation details [ 360.348079][ T8383] EXT4-fs (loop3): i_reserved_data_blocks=3 [ 360.463337][ T6432] EXT4-fs (loop3): unmounting filesystem. [ 360.612453][ T8411] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1476'. [ 360.674401][ T8411] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 360.766428][ T8417] loop3: detected capacity change from 0 to 512 [ 360.852495][ T8426] dccp_xmit_packet: Payload too large (65475) for featneg. [ 361.358972][ T8438] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 361.371061][ T8438] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 362.947041][ T8469] loop0: detected capacity change from 0 to 512 [ 363.268972][ T8481] device syzkaller0 entered promiscuous mode [ 363.517080][ T8500] loop0: detected capacity change from 0 to 512 [ 363.562441][ T8500] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 363.596406][ T8500] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e12c, mo2=0002] [ 363.613886][ T8500] EXT4-fs (loop0): write access unavailable, skipping orphan cleanup [ 363.630595][ T8500] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 365.045023][ T5619] loop: Write error at byte offset 9223372036854800383, length 2048. [ 365.081538][ C0] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 365.091159][ C0] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 368.295563][ T8499] syzkaller0 speed is unknown, defaulting to 1000 [ 368.578161][ T5328] EXT4-fs (loop0): unmounting filesystem. [ 368.808733][ T8553] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1525'. [ 368.932786][ T8546] loop3: detected capacity change from 0 to 8192 [ 369.050945][ T8546] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 369.263933][ T26] kauditd_printk_skb: 222 callbacks suppressed [ 369.264105][ T26] audit: type=1800 audit(1727777817.208:3256): pid=8546 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1523" name="bus" dev="loop3" ino=1048626 res=0 errno=0 [ 369.706042][ T26] audit: type=1326 audit(1727777817.648:3257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8557 comm="syz.1.1526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 369.791522][ T26] audit: type=1326 audit(1727777817.648:3258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8557 comm="syz.1.1526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 369.850399][ T26] audit: type=1326 audit(1727777817.668:3259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8557 comm="syz.1.1526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 369.879576][ T26] audit: type=1326 audit(1727777817.668:3260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8557 comm="syz.1.1526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 369.903570][ T26] audit: type=1326 audit(1727777817.668:3261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8557 comm="syz.1.1526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 369.930759][ T26] audit: type=1326 audit(1727777817.668:3262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8557 comm="syz.1.1526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 369.961596][ T26] audit: type=1326 audit(1727777817.668:3263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8557 comm="syz.1.1526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 370.008032][ T26] audit: type=1326 audit(1727777817.668:3264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8557 comm="syz.1.1526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 370.062839][ T8577] syzkaller0 speed is unknown, defaulting to 1000 [ 370.091611][ T26] audit: type=1326 audit(1727777817.668:3265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8557 comm="syz.1.1526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 370.121949][ T6792] loop: Write error at byte offset 9223372036854800383, length 2048. [ 370.136861][ C0] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 370.146638][ C0] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 370.163240][ T8579] loop4: detected capacity change from 0 to 512 [ 370.204321][ T8579] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 370.287907][ T8579] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e12c, mo2=0002] [ 370.301925][ T8579] EXT4-fs (loop4): write access unavailable, skipping orphan cleanup [ 370.310619][ T8579] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 370.597117][ T3639] EXT4-fs (loop4): unmounting filesystem. [ 371.289669][ T8589] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 371.453000][ T8594] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1536'. [ 371.928644][ T8619] loop0: detected capacity change from 0 to 512 [ 371.947065][ T8618] syzkaller0 speed is unknown, defaulting to 1000 [ 371.991521][ T8619] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 372.052892][ T8619] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e12c, mo2=0002] [ 372.096282][ T8619] EXT4-fs (loop0): write access unavailable, skipping orphan cleanup [ 372.106426][ T8619] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 372.228901][ T5328] EXT4-fs (loop0): unmounting filesystem. [ 373.730109][ T8641] IPVS: Error joining to the multicast group [ 373.936748][ T8650] loop3: detected capacity change from 0 to 512 [ 373.952500][ T8650] EXT4-fs: Ignoring removed orlov option [ 373.969095][ T8652] syzkaller0 speed is unknown, defaulting to 1000 [ 373.982166][ T8650] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 374.043598][ T8650] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 374.071840][ T8650] ext4 filesystem being mounted at /145/file0 supports timestamps until 2038 (0x7fffffff) [ 374.570865][ T26] kauditd_printk_skb: 136 callbacks suppressed [ 374.570883][ T26] audit: type=1326 audit(1727777822.508:3402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8668 comm="syz.0.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 374.591204][ T8669] loop0: detected capacity change from 0 to 512 [ 374.635503][ T26] audit: type=1326 audit(1727777822.508:3403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8668 comm="syz.0.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 374.659560][ T26] audit: type=1326 audit(1727777822.508:3404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8668 comm="syz.0.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 374.684960][ T26] audit: type=1326 audit(1727777822.508:3405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8668 comm="syz.0.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 374.718458][ T26] audit: type=1326 audit(1727777822.508:3406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8668 comm="syz.0.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 374.765282][ T26] audit: type=1326 audit(1727777822.508:3407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8668 comm="syz.0.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 374.789497][ T26] audit: type=1326 audit(1727777822.508:3408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8668 comm="syz.0.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 374.793339][ T6432] EXT4-fs (loop3): unmounting filesystem. [ 374.827247][ T26] audit: type=1326 audit(1727777822.508:3409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8668 comm="syz.0.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 374.873934][ T26] audit: type=1326 audit(1727777822.528:3410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8668 comm="syz.0.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 374.949452][ T26] audit: type=1326 audit(1727777822.528:3411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8668 comm="syz.0.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 375.168862][ T6792] loop: Write error at byte offset 9223372036854800383, length 2048. [ 375.216873][ C0] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 375.226745][ C0] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 377.467500][ T8722] syzkaller0 speed is unknown, defaulting to 1000 [ 377.570064][ T8723] loop0: detected capacity change from 0 to 512 [ 377.710115][ T8723] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 378.084059][ T8723] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e12c, mo2=0002] [ 378.532837][ T8723] EXT4-fs (loop0): write access unavailable, skipping orphan cleanup [ 378.541161][ T8723] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 378.776926][ T5328] EXT4-fs (loop0): unmounting filesystem. [ 378.871059][ T8751] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 380.201720][ T3763] loop: Write error at byte offset 9223372036854800383, length 2048. [ 380.230632][ C1] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 380.240325][ C1] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 380.616147][ T8786] loop3: detected capacity change from 0 to 512 [ 380.623973][ T8781] syzkaller0 speed is unknown, defaulting to 1000 [ 380.643071][ T8786] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 380.780731][ T8786] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e12c, mo2=0002] [ 380.873045][ T8786] EXT4-fs (loop3): orphan cleanup on readonly fs [ 380.952781][ T8786] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1600: bg 0: block 361: padding at end of block bitmap is not set [ 380.990286][ T8786] EXT4-fs (loop3): Remounting filesystem read-only [ 381.022950][ T8786] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6172: Corrupt filesystem [ 381.056097][ T8786] EXT4-fs error (device loop3): ext4_clear_blocks:883: inode #11: comm syz.3.1600: attempt to clear invalid blocks 33619980 len 1 [ 381.072757][ T8786] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1600: invalid indirect mapped block 1811939328 (level 0) [ 381.087935][ T8786] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1600: invalid indirect mapped block 2185560079 (level 1) [ 381.106385][ T8786] EXT4-fs (loop3): 1 truncate cleaned up [ 381.113981][ T8786] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 381.264059][ T8781] A link change request failed with some changes committed already. Interface vlan0 may have been left with an inconsistent configuration, please check. [ 381.418478][ T6432] EXT4-fs (loop3): unmounting filesystem. [ 381.882627][ T947] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 382.131531][ T947] usb 2-1: Using ep0 maxpacket: 16 [ 382.251800][ T947] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 382.274408][ T947] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 382.311588][ T947] usb 2-1: New USB device found, idVendor=05ac, idProduct=027b, bcdDevice= 0.00 [ 382.339329][ T947] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 382.419950][ T947] usb 2-1: config 0 descriptor?? [ 382.921796][ T947] apple 0003:05AC:027B.0003: hidraw0: USB HID v0.00 Device [HID 05ac:027b] on usb-dummy_hcd.1-1/input0 [ 383.601251][ T8844] syzkaller0 speed is unknown, defaulting to 1000 [ 383.639070][ T8845] loop3: detected capacity change from 0 to 512 [ 383.716761][ T8845] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 383.803157][ T1271] ieee802154 phy1 wpan1: encryption failed: -22 [ 383.819037][ T8845] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e12c, mo2=0002] [ 383.875998][ T8832] loop4: detected capacity change from 0 to 32768 [ 383.893240][ T8832] /dev/loop4: Can't open blockdev [ 383.912563][ T8845] EXT4-fs (loop3): orphan cleanup on readonly fs [ 383.980960][ T8845] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1621: bg 0: block 361: padding at end of block bitmap is not set [ 384.074608][ T8845] EXT4-fs (loop3): Remounting filesystem read-only [ 384.101553][ T8845] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6172: Corrupt filesystem [ 384.142350][ T8845] EXT4-fs error (device loop3): ext4_clear_blocks:883: inode #11: comm syz.3.1621: attempt to clear invalid blocks 33619980 len 1 [ 384.206650][ T8845] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1621: invalid indirect mapped block 1811939328 (level 0) [ 384.286245][ T8845] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1621: invalid indirect mapped block 2185560079 (level 1) [ 384.360326][ T8845] EXT4-fs (loop3): 1 truncate cleaned up [ 384.394280][ T8845] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 384.529259][ T3683] usb 2-1: USB disconnect, device number 2 [ 384.579280][ T6432] EXT4-fs (loop3): unmounting filesystem. [ 384.884453][ T8867] IPVS: Error connecting to the multicast addr [ 384.910389][ T8864] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1622'. [ 385.192005][ T8874] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1631'. [ 385.242283][ T33] loop: Write error at byte offset 9223372036854800383, length 2048. [ 385.254070][ C1] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 385.263767][ C1] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 385.411592][ T947] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 385.881660][ T8889] syzkaller0 speed is unknown, defaulting to 1000 [ 386.391518][ T8901] syzkaller0 speed is unknown, defaulting to 1000 [ 386.560928][ T8887] loop4: detected capacity change from 0 to 32768 [ 386.583162][ T8887] /dev/loop4: Can't open blockdev [ 386.872690][ T26] kauditd_printk_skb: 223 callbacks suppressed [ 386.872707][ T26] audit: type=1326 audit(1727777834.818:3635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8900 comm="syz.1.1641" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x0 [ 387.335715][ T8914] netlink: 11 bytes leftover after parsing attributes in process `syz.1.1646'. [ 387.519080][ T8923] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1649'. [ 387.716275][ T8930] syzkaller0 speed is unknown, defaulting to 1000 [ 387.783876][ T8932] loop0: detected capacity change from 0 to 512 [ 387.828623][ T8932] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 387.856116][ T8932] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e12c, mo2=0002] [ 387.889143][ T8932] EXT4-fs (loop0): write access unavailable, skipping orphan cleanup [ 387.948862][ T8932] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 388.137132][ T5328] EXT4-fs (loop0): unmounting filesystem. [ 388.346971][ T26] audit: type=1326 audit(1727777836.288:3636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8941 comm="syz.0.1655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 388.377509][ T26] audit: type=1326 audit(1727777836.288:3637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8941 comm="syz.0.1655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 388.400805][ T26] audit: type=1326 audit(1727777836.288:3638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8941 comm="syz.0.1655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 388.423517][ T26] audit: type=1326 audit(1727777836.288:3639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8941 comm="syz.0.1655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 388.481122][ T8942] loop0: detected capacity change from 0 to 512 [ 388.588421][ T26] audit: type=1326 audit(1727777836.418:3640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8941 comm="syz.0.1655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 388.663056][ T26] audit: type=1326 audit(1727777836.418:3641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8941 comm="syz.0.1655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 388.797749][ T26] audit: type=1326 audit(1727777836.418:3642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8941 comm="syz.0.1655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 388.858683][ T26] audit: type=1326 audit(1727777836.418:3643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8941 comm="syz.0.1655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 388.973005][ T26] audit: type=1326 audit(1727777836.418:3644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8941 comm="syz.0.1655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 389.237969][ T8952] netlink: 'syz.1.1659': attribute type 1 has an invalid length. [ 389.829553][ T8961] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1660'. [ 390.264479][ T8974] syzkaller0 speed is unknown, defaulting to 1000 [ 390.281796][ T3725] loop: Write error at byte offset 9223372036854800383, length 2048. [ 390.289995][ C0] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 390.299647][ C0] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 390.386645][ T8981] loop0: detected capacity change from 0 to 512 [ 390.438143][ T8981] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 390.490357][ T8981] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e12c, mo2=0002] [ 390.529057][ T8981] EXT4-fs (loop0): write access unavailable, skipping orphan cleanup [ 390.539452][ T8988] loop3: detected capacity change from 0 to 512 [ 390.541711][ T8981] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 390.661330][ T5328] EXT4-fs (loop0): unmounting filesystem. [ 391.072628][ T9000] netlink: 'syz.0.1674': attribute type 27 has an invalid length. [ 391.474920][ T9015] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present [ 391.990083][ T26] kauditd_printk_skb: 180 callbacks suppressed [ 391.990101][ T26] audit: type=1326 audit(1727777839.928:3825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9023 comm="syz.3.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 392.023964][ T9000] bridge0: port 2(bridge_slave_1) entered disabled state [ 392.031330][ T9000] bridge0: port 1(bridge_slave_0) entered disabled state [ 392.064739][ T9024] loop3: detected capacity change from 0 to 512 [ 392.068783][ T26] audit: type=1326 audit(1727777839.928:3826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9023 comm="syz.3.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 392.119787][ T26] audit: type=1326 audit(1727777839.978:3827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9023 comm="syz.3.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 392.181844][ T26] audit: type=1326 audit(1727777839.978:3828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9023 comm="syz.3.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 392.238038][ T26] audit: type=1326 audit(1727777839.978:3829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9023 comm="syz.3.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 392.274256][ T26] audit: type=1326 audit(1727777839.978:3830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9023 comm="syz.3.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 392.298739][ T26] audit: type=1326 audit(1727777839.978:3831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9023 comm="syz.3.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 392.324846][ T26] audit: type=1326 audit(1727777839.978:3832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9023 comm="syz.3.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 392.347842][ T26] audit: type=1326 audit(1727777839.978:3833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9023 comm="syz.3.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 392.370798][ T26] audit: type=1326 audit(1727777839.978:3834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9023 comm="syz.3.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52fb17dff9 code=0x7ffc0000 [ 392.816502][ T9000] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 392.855809][ T9000] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 393.378280][ T9000] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 393.387627][ T9000] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 393.396650][ T9000] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 393.407044][ T9000] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 393.616281][ T9004] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1676'. [ 393.638457][ T9020] syzkaller0 speed is unknown, defaulting to 1000 [ 393.719077][ T9034] PF_CAN: dropped non conform CAN FD skbuff: dev type 65534, len 64993 [ 393.869366][ T9041] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_bridge, syncid = 0, id = 0 [ 395.286968][ T9056] loop4: detected capacity change from 0 to 512 [ 395.322980][ T3701] loop: Write error at byte offset 9223372036854800383, length 2048. [ 395.331151][ C0] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 395.340805][ C0] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 396.385844][ T9069] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1699'. [ 396.594707][ T9080] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1702'. [ 396.624083][ T9080] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1702'. [ 397.672160][ T9093] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present [ 398.386324][ T26] kauditd_printk_skb: 133 callbacks suppressed [ 398.386524][ T26] audit: type=1326 audit(1727777846.328:3968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9102 comm="syz.4.1710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a8c77dff9 code=0x7ffc0000 [ 398.780770][ T26] audit: type=1326 audit(1727777846.378:3969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9102 comm="syz.4.1710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a8c77dff9 code=0x7ffc0000 [ 398.815966][ T9104] loop4: detected capacity change from 0 to 512 [ 398.861701][ T26] audit: type=1326 audit(1727777846.438:3970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9102 comm="syz.4.1710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9a8c77dff9 code=0x7ffc0000 [ 398.924493][ T26] audit: type=1326 audit(1727777846.438:3971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9102 comm="syz.4.1710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a8c77dff9 code=0x7ffc0000 [ 398.948571][ T26] audit: type=1326 audit(1727777846.438:3972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9102 comm="syz.4.1710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a8c77dff9 code=0x7ffc0000 [ 398.991489][ T26] audit: type=1326 audit(1727777846.448:3973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9102 comm="syz.4.1710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9a8c77dff9 code=0x7ffc0000 [ 399.034548][ T26] audit: type=1326 audit(1727777846.458:3974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9102 comm="syz.4.1710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a8c77dff9 code=0x7ffc0000 [ 399.101518][ T26] audit: type=1326 audit(1727777846.458:3975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9102 comm="syz.4.1710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a8c77dff9 code=0x7ffc0000 [ 399.163880][ T26] audit: type=1326 audit(1727777846.508:3976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9102 comm="syz.4.1710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7f9a8c77dff9 code=0x7ffc0000 [ 399.231613][ T26] audit: type=1326 audit(1727777846.508:3977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9102 comm="syz.4.1710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a8c77dff9 code=0x7ffc0000 [ 399.296706][ T9123] netlink: 'syz.3.1719': attribute type 10 has an invalid length. [ 399.326514][ T9123] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 399.367180][ T9126] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1719'. [ 400.226232][ T9126] device bridge_slave_1 left promiscuous mode [ 400.308719][ T9126] bridge0: port 2(bridge_slave_1) entered disabled state [ 400.361960][ T8363] loop: Write error at byte offset 9223372036854800383, length 2048. [ 400.393215][ T9126] device bridge_slave_0 left promiscuous mode [ 400.400272][ C0] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 400.410023][ C0] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 400.511984][ T9126] bridge0: port 1(bridge_slave_0) entered disabled state [ 400.628181][ T9146] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1725'. [ 400.663986][ T9126] bond0: (slave bridge0): Releasing backup interface [ 401.601485][ T7] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 402.779457][ T7] usb 4-1: config 223 has too many interfaces: 178, using maximum allowed: 32 [ 402.791321][ T7] usb 4-1: config 223 has an invalid descriptor of length 182, skipping remainder of the config [ 402.805628][ T7] usb 4-1: config 223 has 0 interfaces, different from the descriptor's value: 178 [ 402.891716][ T7] usb 4-1: string descriptor 0 read error: -71 [ 402.899373][ T7] usb 4-1: New USB device found, idVendor=05d1, idProduct=2021, bcdDevice=31.00 [ 402.951327][ T7] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 402.991813][ T7] usb 4-1: can't set config #223, error -71 [ 403.014406][ T7] usb 4-1: USB disconnect, device number 3 [ 403.200867][ T9182] netlink: 'syz.4.1739': attribute type 27 has an invalid length. [ 404.658285][ T9191] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present [ 405.402426][ T56] loop: Write error at byte offset 9223372036854800383, length 2048. [ 405.432080][ C1] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 405.441762][ C1] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 405.576351][ T26] kauditd_printk_skb: 138 callbacks suppressed [ 405.576369][ T26] audit: type=1326 audit(1727777853.518:4116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.1.1745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 405.608929][ T26] audit: type=1326 audit(1727777853.528:4117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.1.1745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 405.631917][ T26] audit: type=1326 audit(1727777853.528:4118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.1.1745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 405.668727][ T26] audit: type=1326 audit(1727777853.528:4119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.1.1745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 405.701689][ T26] audit: type=1326 audit(1727777853.528:4120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.1.1745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 405.725319][ T26] audit: type=1326 audit(1727777853.528:4121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.1.1745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 405.748291][ T26] audit: type=1326 audit(1727777853.528:4122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.1.1745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 405.773241][ T26] audit: type=1326 audit(1727777853.558:4123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.1.1745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 405.796921][ T26] audit: type=1326 audit(1727777853.558:4124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.1.1745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 405.820750][ T26] audit: type=1326 audit(1727777853.558:4125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.1.1745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 408.685842][ T9182] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 408.701544][ T9182] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 408.720779][ T9182] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 408.731941][ T9182] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 409.171034][ T9221] siw: device registration error -23 [ 409.175739][ T9223] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1753'. [ 409.217604][ T9227] loop4: detected capacity change from 0 to 512 [ 409.544170][ T9241] netlink: 'syz.2.1761': attribute type 27 has an invalid length. [ 410.259098][ T9251] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present [ 410.558326][ T4974] loop: Write error at byte offset 9223372036854800383, length 2048. [ 410.604624][ C1] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 410.614315][ C1] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 411.027371][ T9224] loop0: detected capacity change from 0 to 32768 [ 411.056941][ T9224] /dev/loop0: Can't open blockdev [ 412.008357][ T9241] bridge0: port 2(bridge_slave_1) entered disabled state [ 412.015913][ T9241] bridge0: port 1(bridge_slave_0) entered disabled state [ 412.653682][ T9241] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 412.714358][ T9241] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 413.229569][ T9241] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 413.238957][ T9241] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 413.248269][ T9241] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 413.257885][ T9241] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 413.549124][ T26] kauditd_printk_skb: 184 callbacks suppressed [ 413.549142][ T26] audit: type=1326 audit(1727777861.488:4310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9268 comm="syz.0.1779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 413.676333][ T9273] siw: device registration error -23 [ 413.762897][ T26] audit: type=1326 audit(1727777861.608:4311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9268 comm="syz.0.1779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 413.816027][ T9281] netlink: 'syz.0.1779': attribute type 27 has an invalid length. [ 413.841632][ T26] audit: type=1326 audit(1727777861.628:4312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9272 comm="syz.1.1770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 413.887438][ T9283] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1774'. [ 413.912851][ T26] audit: type=1326 audit(1727777861.628:4313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9272 comm="syz.1.1770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 413.918751][ T9283] netlink: 80 bytes leftover after parsing attributes in process `syz.2.1774'. [ 413.948289][ T26] audit: type=1326 audit(1727777861.638:4314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9272 comm="syz.1.1770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 413.951616][ T9285] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1775'. [ 413.970711][ C1] vkms_vblank_simulate: vblank timer overrun [ 413.982078][ T26] audit: type=1326 audit(1727777861.638:4315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9272 comm="syz.1.1770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 414.009097][ C1] vkms_vblank_simulate: vblank timer overrun [ 414.049830][ T26] audit: type=1326 audit(1727777861.638:4316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9272 comm="syz.1.1770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 414.072320][ C1] vkms_vblank_simulate: vblank timer overrun [ 414.091167][ T26] audit: type=1326 audit(1727777861.638:4317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9272 comm="syz.1.1770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 414.114165][ T26] audit: type=1326 audit(1727777861.638:4319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9268 comm="syz.0.1779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 414.137550][ T26] audit: type=1326 audit(1727777861.638:4320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9268 comm="syz.0.1779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdc17dff9 code=0x7ffc0000 [ 414.467791][ T3688] usb 3-1: new low-speed USB device number 2 using dummy_hcd [ 414.501820][ T947] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 414.512516][ T9302] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present [ 414.871787][ T3688] usb 3-1: config 168 descriptor has 1 excess byte, ignoring [ 414.922233][ T3688] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt [ 415.079063][ T3688] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 415.196273][ T3688] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10 [ 415.255376][ T3688] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 415.381746][ T3688] usb 3-1: config 168 descriptor has 1 excess byte, ignoring [ 415.391707][ T3688] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt [ 415.561775][ T5619] loop: Write error at byte offset 9223372036854800383, length 2048. [ 415.584433][ C0] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 415.594222][ C0] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 415.604626][ T3688] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 415.615420][ T3688] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10 [ 415.628810][ T3688] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 415.712480][ T3688] usb 3-1: config 168 descriptor has 1 excess byte, ignoring [ 415.720354][ T3688] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt [ 415.819977][ T3688] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 416.017484][ T3688] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10 [ 416.264865][ T3688] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 416.731711][ T3688] usb 3-1: string descriptor 0 read error: -22 [ 416.748362][ T3688] usb 3-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 416.771569][ T3688] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 416.851334][ T3688] adutux 3-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 417.073381][ T3688] usb 3-1: USB disconnect, device number 2 [ 418.429830][ T9343] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1795'. [ 418.481583][ T947] usb 4-1: device descriptor read/all, error -71 [ 419.875569][ T26] kauditd_printk_skb: 168 callbacks suppressed [ 419.875585][ T26] audit: type=1326 audit(1727777867.818:4488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9361 comm="syz.2.1803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 419.932042][ T26] audit: type=1326 audit(1727777867.818:4489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9361 comm="syz.2.1803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 420.011865][ T26] audit: type=1326 audit(1727777867.858:4490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9361 comm="syz.2.1803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 420.080576][ T26] audit: type=1326 audit(1727777867.858:4491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9361 comm="syz.2.1803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 420.119880][ T26] audit: type=1326 audit(1727777867.858:4492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9361 comm="syz.2.1803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 420.168665][ T26] audit: type=1326 audit(1727777867.898:4493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9361 comm="syz.2.1803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 420.239021][ T9342] loop4: detected capacity change from 0 to 32768 [ 420.251231][ T9342] /dev/loop4: Can't open blockdev [ 420.251659][ T26] audit: type=1326 audit(1727777867.898:4494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9361 comm="syz.2.1803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 420.291906][ T26] audit: type=1326 audit(1727777867.898:4495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9361 comm="syz.2.1803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 420.314294][ C1] vkms_vblank_simulate: vblank timer overrun [ 420.320556][ T26] audit: type=1326 audit(1727777867.898:4496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9361 comm="syz.2.1803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 420.351538][ T26] audit: type=1326 audit(1727777867.898:4497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9361 comm="syz.2.1803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 420.521628][ T3688] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 420.587702][ T9378] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1810'. [ 420.602270][ T5652] loop: Write error at byte offset 9223372036854800383, length 2048. [ 420.617751][ C0] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 420.627469][ C0] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 421.092030][ T3688] usb 2-1: config 0 interface 0 altsetting 12 endpoint 0x87 has an invalid bInterval 255, changing to 11 [ 421.195997][ T3688] usb 2-1: config 0 interface 0 altsetting 12 endpoint 0x87 has invalid maxpacket 59127, setting to 1024 [ 421.368935][ T3688] usb 2-1: config 0 interface 0 has no altsetting 0 [ 422.868465][ T9406] loop0: detected capacity change from 0 to 512 [ 423.465321][ T9426] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1826'. [ 423.561720][ T3688] usb 2-1: string descriptor 0 read error: -71 [ 423.568275][ T3688] usb 2-1: New USB device found, idVendor=06cd, idProduct=0115, bcdDevice=d9.c3 [ 423.579221][ T3688] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 423.589929][ T3688] usb 2-1: config 0 descriptor?? [ 423.616013][ T3688] usb 2-1: can't set config #0, error -71 [ 423.784845][ T3688] usb 2-1: USB disconnect, device number 3 [ 424.572123][ T9436] syzkaller0 speed is unknown, defaulting to 1000 [ 424.689866][ T9412] loop3: detected capacity change from 0 to 32768 [ 424.820164][ T9412] XFS (loop3): Mounting V5 Filesystem [ 424.954313][ T9412] XFS (loop3): Ending clean mount [ 425.197315][ T6432] XFS (loop3): Unmounting Filesystem [ 425.731560][ T9] loop: Write error at byte offset 9223372036854800383, length 2048. [ 425.767807][ C0] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 425.777514][ C0] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 426.980546][ T26] kauditd_printk_skb: 198 callbacks suppressed [ 426.980563][ T26] audit: type=1326 audit(1727777874.918:4696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9485 comm="syz.2.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 427.072217][ T9493] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1846'. [ 427.096611][ T26] audit: type=1326 audit(1727777874.958:4697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9485 comm="syz.2.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 427.143736][ T9495] loop3: detected capacity change from 0 to 512 [ 427.210601][ T9492] syzkaller0 speed is unknown, defaulting to 1000 [ 427.227422][ T26] audit: type=1326 audit(1727777874.968:4698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9485 comm="syz.2.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 427.229673][ T9495] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 427.331000][ T26] audit: type=1326 audit(1727777874.978:4699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9485 comm="syz.2.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 427.437468][ T26] audit: type=1326 audit(1727777874.978:4700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9485 comm="syz.2.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 427.456990][ T9495] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e12c, mo2=0002] [ 427.506121][ T9495] EXT4-fs (loop3): orphan cleanup on readonly fs [ 427.546682][ T26] audit: type=1326 audit(1727777874.978:4701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9485 comm="syz.2.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 427.580070][ T9495] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1843: bg 0: block 361: padding at end of block bitmap is not set [ 427.597341][ T9495] EXT4-fs (loop3): Remounting filesystem read-only [ 427.607115][ T9495] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6172: Corrupt filesystem [ 427.616187][ T26] audit: type=1326 audit(1727777874.978:4702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9485 comm="syz.2.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 427.640419][ T9495] EXT4-fs error (device loop3): ext4_clear_blocks:883: inode #11: comm syz.3.1843: attempt to clear invalid blocks 33619980 len 1 [ 427.674326][ T9495] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1843: invalid indirect mapped block 1811939328 (level 0) [ 427.686530][ T26] audit: type=1326 audit(1727777874.978:4703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9485 comm="syz.2.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 427.759185][ T9495] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1843: invalid indirect mapped block 2185560079 (level 1) [ 427.770729][ T26] audit: type=1326 audit(1727777874.978:4704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9485 comm="syz.2.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 427.803471][ T9495] EXT4-fs (loop3): 1 truncate cleaned up [ 427.810411][ T9495] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 427.914077][ T26] audit: type=1326 audit(1727777874.988:4705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9485 comm="syz.2.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73a057dff9 code=0x7ffc0000 [ 428.008530][ T6432] EXT4-fs (loop3): unmounting filesystem. [ 430.407906][ T9568] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1871'. [ 430.691631][ T3642] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 431.372674][ T3837] loop: Write error at byte offset 9223372036854800383, length 2048. [ 431.386422][ C1] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 431.396184][ C1] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 431.701506][ T3642] usb 4-1: Using ep0 maxpacket: 8 [ 431.827916][ T9594] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1878'. [ 431.841765][ T3642] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 432.013216][ T3642] usb 4-1: New USB device found, idVendor=eb1a, idProduct=a316, bcdDevice=d5.48 [ 432.045381][ T3642] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 432.072192][ T3642] usb 4-1: Product: syz [ 432.078833][ T3642] usb 4-1: Manufacturer: syz [ 432.092730][ T3642] usb 4-1: SerialNumber: syz [ 432.114057][ T3642] usb 4-1: config 0 descriptor?? [ 432.160419][ T9605] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1883'. [ 432.174975][ T3642] em28xx 4-1:0.0: New device syz syz @ 480 Mbps (eb1a:a316, interface 0, class 0) [ 432.190686][ T3642] em28xx 4-1:0.0: Video interface 0 found: [ 432.309747][ T9610] syzkaller0 speed is unknown, defaulting to 1000 [ 432.531574][ T22] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 432.791785][ T22] usb 2-1: Using ep0 maxpacket: 8 [ 432.922115][ T22] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 432.946087][ T22] usb 2-1: config 0 has no interfaces? [ 433.108379][ T9623] capability: warning: `syz.4.1891' uses 32-bit capabilities (legacy support in use) [ 433.121980][ T22] usb 2-1: New USB device found, idVendor=0c45, idProduct=613a, bcdDevice=c4.6d [ 433.139273][ T22] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 433.156287][ T22] usb 2-1: Product: syz [ 433.170064][ T22] usb 2-1: Manufacturer: syz [ 433.182014][ T22] usb 2-1: SerialNumber: syz [ 433.188743][ T9626] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1890'. [ 433.201613][ T3642] em28xx 4-1:0.0: unknown em28xx chip ID (0) [ 433.216137][ T22] usb 2-1: config 0 descriptor?? [ 433.366000][ T9633] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1892'. [ 433.425555][ T9636] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1894'. [ 433.461730][ T3642] em28xx 4-1:0.0: reading from i2c device at 0xa0 failed (error=-5) [ 433.483163][ T3642] em28xx 4-1:0.0: board has no eeprom [ 433.525078][ T3683] usb 2-1: USB disconnect, device number 4 [ 433.611750][ T3642] em28xx 4-1:0.0: Identified as Kworld PlusTV HD Hybrid 330 (card=57) [ 433.630355][ T3642] em28xx 4-1:0.0: analog set to bulk mode. [ 433.673371][ T3642] usb 4-1: USB disconnect, device number 6 [ 433.688370][ T9644] syzkaller0 speed is unknown, defaulting to 1000 [ 433.692643][ T3642] em28xx 4-1:0.0: Disconnecting em28xx [ 433.723845][ T3686] em28xx 4-1:0.0: Registering V4L2 extension [ 433.768327][ T9646] loop4: detected capacity change from 0 to 512 [ 433.811862][ T9646] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 433.848857][ T9646] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e12c, mo2=0002] [ 433.872883][ T9646] EXT4-fs (loop4): write access unavailable, skipping orphan cleanup [ 433.891524][ T9646] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 433.971171][ T3686] em28xx 4-1:0.0: Config register raw data: 0xffffffed [ 433.988625][ T3686] em28xx 4-1:0.0: AC97 chip type couldn't be determined [ 434.026851][ T3686] em28xx 4-1:0.0: No AC97 audio processor [ 434.082714][ T3686] usb 4-1: Decoder not found [ 434.087476][ T3686] em28xx 4-1:0.0: failed to create media graph [ 434.121730][ T3686] em28xx 4-1:0.0: V4L2 device video71 deregistered [ 434.147374][ T3686] em28xx 4-1:0.0: Binding DVB extension [ 434.173717][ T3686] em28xx 4-1:0.0: no endpoint for DVB mode and transfer type 0 [ 434.376733][ T3686] em28xx 4-1:0.0: failed to pre-allocate USB transfer buffers for DVB. [ 434.386056][ T3686] em28xx 4-1:0.0: Remote control support is not available for this card. [ 434.395618][ T3642] em28xx 4-1:0.0: Closing input extension [ 434.414558][ T3642] em28xx 4-1:0.0: Freeing device [ 434.432189][ T3639] EXT4-fs (loop4): unmounting filesystem. [ 435.327941][ T9674] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1906'. [ 435.368514][ T9678] device syzkaller1 entered promiscuous mode [ 435.484679][ T9680] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1909'. [ 435.564396][ T3629] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 435.594142][ T9687] syzkaller0 speed is unknown, defaulting to 1000 [ 435.655578][ T9690] loop0: detected capacity change from 0 to 512 [ 435.711633][ T9690] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 435.758290][ T9690] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e12c, mo2=0002] [ 435.788947][ T9690] EXT4-fs (loop0): write access unavailable, skipping orphan cleanup [ 435.802377][ T9690] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 435.892054][ T5651] loop: Write error at byte offset 9223372036854800383, length 2048. [ 435.937519][ C0] I/O error, dev loop2, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2 [ 435.947217][ C0] Buffer I/O error on dev loop2, logical block 12, lost sync page write [ 435.964908][ T5328] EXT4-fs (loop0): unmounting filesystem. [ 435.982954][ T3629] usb 4-1: config 0 interface 0 altsetting 12 endpoint 0x87 has an invalid bInterval 255, changing to 11 [ 436.003215][ T3629] usb 4-1: config 0 interface 0 altsetting 12 endpoint 0x87 has invalid maxpacket 59127, setting to 1024 [ 436.025566][ T26] kauditd_printk_skb: 131 callbacks suppressed [ 436.025584][ T26] audit: type=1326 audit(1727777883.968:4837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9701 comm="syz.1.1916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 436.054373][ T3629] usb 4-1: config 0 interface 0 has no altsetting 0 [ 436.117639][ T26] audit: type=1326 audit(1727777883.968:4838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9701 comm="syz.1.1916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 436.160280][ T26] audit: type=1326 audit(1727777884.018:4839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9701 comm="syz.1.1916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 436.197960][ T26] audit: type=1326 audit(1727777884.018:4840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9701 comm="syz.1.1916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 436.211798][ T3629] usb 4-1: New USB device found, idVendor=06cd, idProduct=0115, bcdDevice=d9.c3 [ 436.254324][ T26] audit: type=1326 audit(1727777884.018:4841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9701 comm="syz.1.1916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 436.256440][ T3629] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 436.276723][ C1] vkms_vblank_simulate: vblank timer overrun [ 436.314452][ T3629] usb 4-1: Product: syz [ 436.318832][ T3629] usb 4-1: Manufacturer: syz [ 436.323950][ T3629] usb 4-1: SerialNumber: syz [ 436.349046][ T3629] usb 4-1: config 0 descriptor?? [ 436.349582][ T26] audit: type=1326 audit(1727777884.018:4842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9701 comm="syz.1.1916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 436.376772][ C1] vkms_vblank_simulate: vblank timer overrun [ 436.381874][ T9671] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 436.443337][ T3629] keyspan 4-1:0.0: Keyspan 2 port adapter converter detected [ 436.461800][ T3629] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 7 [ 436.462779][ T26] audit: type=1326 audit(1727777884.018:4843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9701 comm="syz.1.1916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 436.484291][ T3629] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 81 [ 436.515358][ T3629] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 1 [ 436.532401][ T3629] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 2 [ 436.540621][ T3629] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 85 [ 436.548661][ T3629] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 5 [ 436.560413][ T26] audit: type=1326 audit(1727777884.018:4844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9701 comm="syz.1.1916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 436.562771][ T3629] usb 4-1: Keyspan 2 port adapter converter now attached to ttyUSB0 [ 436.596586][ T26] audit: type=1326 audit(1727777884.018:4845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9701 comm="syz.1.1916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 436.601868][ T3629] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 83 [ 436.631576][ T26] audit: type=1326 audit(1727777884.018:4846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9701 comm="syz.1.1916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ab8f7dff9 code=0x7ffc0000 [ 436.697471][ T3629] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 3 [ 436.716041][ T3629] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 4 [ 436.726974][ T3629] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 86 [ 436.738391][ T3629] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 6 [ 436.774074][ T3629] usb 4-1: Keyspan 2 port adapter converter now attached to ttyUSB1 [ 436.921846][ T28] INFO: task syz.2.1016:7048 blocked for more than 146 seconds. [ 436.937811][ T28] Not tainted 6.1.112-syzkaller #0 [ 436.958138][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 436.987401][ T28] task:syz.2.1016 state:D stack:26144 pid:7048 ppid:5313 flags:0x00004004 [ 437.018935][ T28] Call Trace: [ 437.029037][ T28] [ 437.037696][ T28] __schedule+0x143f/0x4570 [ 437.050314][ T28] ? release_firmware_map_entry+0x186/0x186 [ 437.062115][ T28] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 437.072178][ T28] ? print_irqtrace_events+0x210/0x210 [ 437.081084][ T28] ? _raw_spin_lock_irq+0xdb/0x110 [ 437.092386][ T28] schedule+0xbf/0x180 [ 437.103704][ T28] ? down_read+0x69f/0xa30 [ 437.114033][ T28] schedule_preempt_disabled+0xf/0x20 [ 437.127482][ T28] down_read+0x6ff/0xa30 [ 437.140278][ T28] ? __down_common+0x8b0/0x8b0 [ 437.152105][ T28] ? do_raw_spin_lock+0x14a/0x370 [ 437.165291][ T28] ? do_raw_spin_unlock+0x137/0x8a0 [ 437.178679][ T28] iterate_supers+0xac/0x1e0 [ 437.190433][ T28] ? do_quotactl+0x6c0/0x6c0 [ 437.203411][ T28] __se_sys_quotactl+0x347/0x770 [ 437.217531][ T28] ? __x64_sys_quotactl+0xa0/0xa0 [ 437.231013][ T28] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 437.247702][ T28] ? print_irqtrace_events+0x210/0x210 [ 437.260074][ T28] ? syscall_enter_from_user_mode+0xcf/0x230 [ 437.274042][ T28] do_syscall_64+0x3b/0xb0 [ 437.284233][ T28] ? clear_bhb_loop+0x45/0xa0 [ 437.296896][ T28] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 437.317079][ T28] RIP: 0033:0x7f1084b7dff9 [ 437.329850][ T28] RSP: 002b:00007f1085917038 EFLAGS: 00000246 ORIG_RAX: 00000000000000b3 [ 437.347906][ T28] RAX: ffffffffffffffda RBX: 00007f1084d35f80 RCX: 00007f1084b7dff9 [ 437.365008][ T28] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff80000102 [ 437.378524][ T28] RBP: 00007f1084bf0296 R08: 0000000000000000 R09: 0000000000000000 [ 437.387132][ T28] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 437.395645][ T28] R13: 0000000000000000 R14: 00007f1084d35f80 R15: 00007ffeeba9bb38 [ 437.404982][ T28] [ 437.408259][ T28] [ 437.408259][ T28] Showing all locks held in the system: [ 437.417849][ T28] 1 lock held by rcu_tasks_kthre/12: [ 437.444213][ T28] #0: ffffffff8d32b1d0 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xe30 [ 437.458277][ T28] 1 lock held by rcu_tasks_trace/13: [ 437.471601][ T28] #0: ffffffff8d32b9d0 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xe30 [ 437.483191][ T28] 1 lock held by khungtaskd/28: [ 437.488166][ T28] #0: ffffffff8d32b000 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x51/0x290 [ 437.498620][ T28] 2 locks held by getty/3396: [ 437.503478][ T28] #0: ffff88814ae2e098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70 [ 437.513512][ T28] #1: ffffc900031262f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6a7/0x1db0 [ 437.523860][ T28] 2 locks held by kworker/0:3/3629: [ 437.529276][ T28] #0: ffff888017c72138 ((wq_completion)rcu_gp){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0 [ 437.541818][ T28] #1: ffffc90003a8fd20 ((work_completion)(&rew->rew_work)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0 [ 437.553522][ T28] 5 locks held by kworker/u4:7/3725: [ 437.558926][ T28] #0: ffff888017e1e938 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0 [ 437.569384][ T28] #1: ffffc900044afd20 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0 [ 437.579591][ T28] #2: ffffffff8e4ee490 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0xf1/0xb60 [ 437.589070][ T28] #3: ffffffff8e4fa7e8 (rtnl_mutex){+.+.}-{3:3}, at: ip_tunnel_delete_nets+0xc9/0x330 [ 437.598956][ T28] #4: ffffffff8d3305f8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x4f0/0x930 [ 437.610027][ T28] 2 locks held by kworker/u4:9/3837: [ 437.615444][ T28] 1 lock held by syz.3.500/5396: [ 437.620404][ T28] #0: ffff88805a84c0e0 (&type->s_umount_key#51/1){+.+.}-{3:3}, at: alloc_super+0x217/0x930 [ 437.630618][ T28] 1 lock held by syz.2.1016/7048: [ 437.635773][ T28] #0: ffff88805a84c0e0 (&type->s_umount_key#59){++++}-{3:3}, at: iterate_supers+0xac/0x1e0 [ 437.647252][ T28] 1 lock held by syz.1.1927/9731: [ 437.653326][ T28] #0: ffffffff8d3304c0 (rcu_state.barrier_mutex){+.+.}-{3:3}, at: rcu_barrier+0x48/0x5f0 [ 437.663424][ T28] 2 locks held by syz.0.1926/9735: [ 437.668609][ T28] #0: ffffffff8e4e0cc8 (br_ioctl_mutex){+.+.}-{3:3}, at: sock_ioctl+0x26f/0x770 [ 437.677887][ T28] #1: ffffffff8e4fa7e8 (rtnl_mutex){+.+.}-{3:3}, at: br_ioctl_stub+0x9f/0xaa0 [ 437.687024][ T28] 1 lock held by syz.0.1926/9739: [ 437.692163][ T28] #0: ffffffff8e4fa7e8 (rtnl_mutex){+.+.}-{3:3}, at: packet_mc_add+0x28/0x930 [ 437.701190][ T28] 1 lock held by syz.0.1926/9740: [ 437.706303][ T28] #0: ffffffff8e4e0cc8 (br_ioctl_mutex){+.+.}-{3:3}, at: sock_ioctl+0x26f/0x770 [ 437.715741][ T28] [ 437.718366][ T28] ============================================= [ 437.718366][ T28] [ 437.727297][ T28] NMI backtrace for cpu 0 [ 437.731665][ T28] CPU: 0 PID: 28 Comm: khungtaskd Not tainted 6.1.112-syzkaller #0 [ 437.739591][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 437.749763][ T28] Call Trace: [ 437.753077][ T28] [ 437.756021][ T28] dump_stack_lvl+0x1e3/0x2cb [ 437.760722][ T28] ? nf_tcp_handle_invalid+0x642/0x642 [ 437.766210][ T28] ? panic+0x764/0x764 [ 437.770393][ T28] ? vprintk_emit+0x622/0x740 [ 437.775220][ T28] ? printk_sprint+0x490/0x490 [ 437.780027][ T28] ? nmi_cpu_backtrace+0x252/0x560 [ 437.785168][ T28] nmi_cpu_backtrace+0x4e1/0x560 [ 437.790220][ T28] ? nmi_trigger_cpumask_backtrace+0x3f0/0x3f0 [ 437.796489][ T28] ? _printk+0xd1/0x111 [ 437.800671][ T28] ? panic+0x764/0x764 [ 437.804850][ T28] ? __wake_up_klogd+0xcc/0x100 [ 437.809715][ T28] ? panic+0x764/0x764 [ 437.813800][ T28] ? nmi_trigger_cpumask_backtrace+0xe0/0x3f0 [ 437.819884][ T28] ? arch_trigger_cpumask_backtrace+0x10/0x10 [ 437.825972][ T28] nmi_trigger_cpumask_backtrace+0x1ae/0x3f0 [ 437.831974][ T28] watchdog+0xf88/0xfd0 [ 437.836156][ T28] ? watchdog+0x1f8/0xfd0 [ 437.840507][ T28] kthread+0x28d/0x320 [ 437.844595][ T28] ? hungtask_pm_notify+0x50/0x50 [ 437.849659][ T28] ? kthread_blkcg+0xd0/0xd0 [ 437.854282][ T28] ret_from_fork+0x1f/0x30 [ 437.858742][ T28] [ 437.863204][ T28] Sending NMI from CPU 0 to CPUs 1: [ 437.868464][ C1] NMI backtrace for cpu 1 skipped: idling at acpi_idle_do_entry+0x10f/0x340 [ 437.886890][ T28] Kernel panic - not syncing: hung_task: blocked tasks [ 437.893789][ T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted 6.1.112-syzkaller #0 [ 437.901794][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 437.911951][ T28] Call Trace: [ 437.915240][ T28] [ 437.918176][ T28] dump_stack_lvl+0x1e3/0x2cb [ 437.922878][ T28] ? nf_tcp_handle_invalid+0x642/0x642 [ 437.928357][ T28] ? panic+0x764/0x764 [ 437.932439][ T28] ? llist_add_batch+0x160/0x1d0 [ 437.937398][ T28] ? vscnprintf+0x59/0x80 [ 437.941744][ T28] panic+0x318/0x764 [ 437.945652][ T28] ? nmi_trigger_cpumask_backtrace+0x2bf/0x3f0 [ 437.951822][ T28] ? memcpy_page_flushcache+0xfc/0xfc [ 437.957222][ T28] ? nmi_trigger_cpumask_backtrace+0x2bf/0x3f0 [ 437.963520][ T28] ? nmi_trigger_cpumask_backtrace+0x338/0x3f0 [ 437.969685][ T28] ? nmi_trigger_cpumask_backtrace+0x33d/0x3f0 [ 437.975864][ T28] watchdog+0xfc7/0xfd0 [ 437.980129][ T28] ? watchdog+0x1f8/0xfd0 [ 437.984475][ T28] kthread+0x28d/0x320 [ 437.988584][ T28] ? hungtask_pm_notify+0x50/0x50 [ 437.993622][ T28] ? kthread_blkcg+0xd0/0xd0 [ 437.998220][ T28] ret_from_fork+0x1f/0x30 [ 438.002665][ T28] [ 438.005970][ T28] Kernel Offset: disabled [ 438.010330][ T28] Rebooting in 86400 seconds..