last executing test programs: 1m39.277246557s ago: executing program 1: socket$packet(0x11, 0x2, 0x300) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) syz_open_procfs(0x0, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000040)="833dcb396b9042550ecdb570d90b9581153866c080b0c1bcec1e053d9265ee8d77f531bebb62db5ac02f854749738695c02e7b58fab70e9cdaadf7460a4c9db6287a7004c079cba13f1a775ace0aa1b41c1d9f", 0x53) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 1m38.687170866s ago: executing program 1: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0xe, 0x0, 0x2, 0x3}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x3, 0x9, 0x1}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, 0xffffffffffffffff}, &(0x7f0000000040), &(0x7f00000005c0)}, 0x20) syz_emit_ethernet(0x9a, &(0x7f0000000400)=ANY=[@ANYBLOB="0180c200000300000000000008004500008c0000000000219078ac1414aaffffffff000000000401907800cad69b00a0c246e682b08a76bf96840f540ae8177898386b2b4c66470559451359294417f49af2f39f4d776bd33f63724da8fef1b9722125ffcf9d095d3c7b9d71066ab0969e0d9be3991030766113e5ecbd060bb4eca5353e70897467b42791a4465dd9f7a065076264eb48d19d2b3c8d158079e073fc38ea9535acf23f523e9bd1722c9df7f5084344f5fb6243229178f70ea92ec2013807728c3085590aa73a45ebde84ff63621c12fe7dac47bc1847"], 0x0) syz_usb_connect(0x0, 0x10e, &(0x7f0000000380)=ANY=[@ANYBLOB="120100006a249f08ec1888323a3f010203010902fc0001870000000904e600030e01000006240600011005240008000d240f01000000000000a0010606241a0000000c241b000000000000ff01000424020c9024", @ANYRES16=r1], 0x0) r2 = socket$rds(0x15, 0x5, 0x0) bind$rds(r2, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10) sendmsg$rds(r2, &(0x7f0000001600)={&(0x7f0000000040)={0x2, 0x0, @private=0xa010100}, 0x10, 0x0, 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x200000}, &(0x7f0000000140)=[{&(0x7f0000002640)=""/102394, 0x18ffa}], 0x1}}], 0x48}, 0x0) prctl$PR_SET_SECUREBITS(0x1c, 0x7) r3 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000040)={0x0, 0x0}, &(0x7f0000cab000)=0x7) ftruncate(r0, 0x4) setuid(r4) r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000200), r3) sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r3, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000240)={&(0x7f0000000500)={0x9c, r5, 0x2, 0x70bd27, 0x25dfdbfe, {}, [{@pci={{0x8}, {0x11}}, {0xd}}, {@pci={{0x8}, {0x11}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}]}, 0x9c}, 0x1, 0x0, 0x0, 0x80080}, 0x4010) r6 = open(&(0x7f0000000000)='./file0\x00', 0x8e040, 0x90) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r3, 0x10e, 0x2, &(0x7f0000000100)=0x1c, 0x4) fcntl$setlease(r6, 0x400, 0x0) setreuid(0x0, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) sendmsg$inet(0xffffffffffffffff, &(0x7f0000001640)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev, @multicast1}}}], 0x20}, 0x0) r7 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000002c0)={&(0x7f00000001c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@enum]}}, 0x0, 0x26}, 0x20) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000000c0)={r7, 0x58, &(0x7f0000000040)}, 0x10) fcntl$setlease(r6, 0x400, 0x2) bpf$MAP_CREATE(0x0, 0x0, 0x0) 1m34.572912899s ago: executing program 1: pidfd_send_signal(0xffffffffffffffff, 0x0, 0x0, 0x8) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r0, r1, 0x2, 0x2}, 0x10) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="180000000000000000000000000000006112000000000000950000000000000051fa7824c74186dc02ec0696c37b64e3b24da3180100000005165c0f63cdc2e82818254950ee03568b8809a1ff4c7c4750eabfafcb9531b31e6a86827d1010c5a909ab98e00e19644a88e95ba26d1c9eecddb2d11c541418ceeb29b9b6829c6e433822bdb3cc85244aab60c1aae1314d7381fcfeb970bea672cf1e926f6a51479343144648a07a975bd89dc398712376610f6254f12495b4658319684387f6f3543205d4bc4ce05b8b961103673dff7f158052e62b20f05fd24108d8363d44fcd0f8f3647899762a17282a1914452d11f557c28f396eebdc858558db0276d14f9035f2b5f703e5be7e4acf8b78c2834ae5805fffee38a9a0033d520bcf6b08ede50899d4b9bdf85c71c5de2503dab358f42a2624c7daa9ed44039aab46419496362e54cfad05a0004ac71a003d7b85d07191bed4e5a890826300214146f7ed569985439baa355c2766dd056f5d79e454f3d873095e7a237bc06d035a8d601f21746d886419f38b34a495040000000071c2f0cce8c93cc17e9afa314fcb2ba15d646c66b0f65021829f87d988b4e2d71753b1549fa734f0b2e56dbd21ed2e09d0cddad721971637f384eed3034597c93e1c52f42cad0ed09c395dc6e9703660fefa1c80f467367c006f25caf0cbcefd13d68839893e39c588eb032905f91cafa4996dbf0c9be9654db05fb918086cc8228d02a3092c0830b8f587a5624515298b2d4eb2bde6f9a2eb83d53f717f13fa7552d92c51dbd32ea50c490ecd085d2811a7555c538cffffff7f00000000dd872244bfa64779e0f43a9c277e2910b7ccdc3d6726d34ad2101033a623ca2a49ad344884289130bc71cee2b7de62bf48129ae1af052a2d46a61625735a9eea7f793946b3229e861d8ea49806b3f7d4295f6b000000000000f337b1ceb2d8a65dcdcd895d7ba37098d2593fdaaef445af5bee02019c00000099b13ecda2a5b37de0519e974cba92ebaf0f701611a9b027ce04340bda4594cc9049c3f101629ab028145e004209ebe71a6fe84af50804000000000000004a27213354964e250a98fe357676f94b6947383e320fbb1118f586d5b9b1b977e1e1a4490ff67703a9b5900f8a6f8a805879dd91ec5ff435b219c53680c0ae04dcc4ef69b98fcb0d6b6a03a8b71a66b4e2876dc4b610444bf10000000000b046b6ae5d68156bcbd6d8793ade9a22ac8fc7857e5bbc14adc4e12b08f350c6789283b9990c72e64372a1f79769a8bdc632fc1a0b3417855d8b7d25ca4d404c23631ad3d2f55dcd385371c86170a4bca58c2b2b4eabc365f45bd10bb45b0c5bc354456a52be18d9b44014d20a3c51c8f013dade83562e73278662829e4f5a9ac00fd91178468c737f0872d97d38d11a176be5a0d7294c51eb161eddcfefa8837c7430721851ec2a107af0df6d43e732bbc01e76c66895eb85d36798d61622773591ee21ad9f6a1b73fa9cf3ffeb8a00b63af800a81d0fb8aa29df8b8ad6fbafefb5802a23cbdeeabceda5bfc5ff2fa5c1d61d04a1324794c6ed000696d9f04010c35474e690545c3d9bd836d4cef2585ba616e01c3d000000000000000000470ebc6f3453ecbf3047e4547d7632d3ad21798e730cb5d1da059b5bdb8107815dff995c0788906790406dfb4f8ee9f24ff94233e2e6e581e6e5de33a5f254c9a8b612547473c3001df3928dac9203b744619082421a8da7c00000000000000000000000000000018a73ef40cca690fb7595c6962984f8276677be6f66cbdbccf1896433808c9c84d74ac4a7c186a04a2250972f7acb156b21f9826b6acb7db32c4e3b3ec8b59fd972975edb1da872d81a35e4fda2f5cbde6b40bea20418c6e9dad30b791eea58f53e80fee4dd7fe08373ea2784fcd3a65261de71eb866458d2c22a"], &(0x7f0000000100)='GPL\x00'}, 0x70) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r2, r3, 0x2, 0x2}, 0x10) bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="18010000007b00000000000000000000850000007b00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r5 = getpid() sched_setscheduler(r5, 0x0, &(0x7f00000002c0)=0x5) futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000080)='netlink_extack\x00', r4}, 0x10) r6 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0x158, 0x10, 0x133, 0x0, 0x0, {{@in=@rand_addr=0x64010101, @in6=@remote}, {@in, 0x0, 0x32}, @in6=@mcast2, {}, {}, {}, 0x0, 0x0, 0x2}, [@algo_aead={0x4c, 0x12, {{'rfc4543(rfc4106-gcm-aesni)\x00'}}}, @encap={0x1c, 0x16, {0x0, 0x4e22, 0x0, @in6=@private1}}]}, 0x158}}, 0x0) r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={@cgroup=r7, 0x2, 0x1, 0x0, &(0x7f0000000380)=[0x0, 0x0], 0x2, 0x0, 0x0, 0x0, 0x0}, 0x40) 1m33.029113994s ago: executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x80042, 0x0) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000340)="06", 0x1}, {0x0, 0x2}], 0x2) 53.926189149s ago: executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x80042, 0x0) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000340)="06", 0x1}, {0x0, 0x2}], 0x2) 24.863357701s ago: executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x80042, 0x0) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000340)="06", 0x1}, {0x0, 0x2}], 0x2) 9.406666719s ago: executing program 3: r0 = open(&(0x7f0000000200)='./bus\x00', 0x14507e, 0x0) fallocate(r0, 0x0, 0x0, 0x1000f8) sendfile(r0, r0, 0x0, 0x100000000) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') r3 = dup(r1) mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 8.028725946s ago: executing program 2: socket$nl_route(0x10, 0x3, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_BSS(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)={0x2c, r1, 0xe0536804369fd543, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_P2P_OPPPS={0x5}, @NL80211_ATTR_BSS_CTS_PROT={0x5}]}, 0x2c}}, 0x0) r3 = socket(0x10, 0x803, 0x0) sendto(r3, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r3, &(0x7f00000037c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xb}, 0x90) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_GET_SCAN(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010700000000000000002000000008000300", @ANYRES32=r6], 0x1c}}, 0x0) 8.024026397s ago: executing program 3: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x0, 0x0) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r0, &(0x7f0000000240)=[{0x0}], 0x1, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x6}]}) openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x180000e, &(0x7f00000001c0)={[{@usrjquota}, {@mblk_io_submit}, {@acl}, {@auto_da_alloc}, {@block_validity}, {@quota}]}, 0x3, 0x434, &(0x7f00000002c0)="$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") r1 = creat(&(0x7f00000001c0)='./file1\x00', 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000200), 0x208e24b) write$binfmt_elf64(r1, &(0x7f0000001a40)=ANY=[], 0xfd14) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) 7.415115293s ago: executing program 0: r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000001c0)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) r1 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000e2793b10d10501200006010203010902120008000000000904"], 0x0) syz_usb_control_io$uac1(r1, 0x0, &(0x7f00000007c0)={0x44, &(0x7f0000000040)={0x0, 0x0, 0x1, '\x00'}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 7.34336348s ago: executing program 2: syz_mount_image$iso9660(&(0x7f0000000080), &(0x7f0000000540)='./file0\x00', 0x320c81c, &(0x7f0000000380)=ANY=[@ANYBLOB="636865636b3d7374726963742c6d61703d61636f726e2c686964652c6e6f726f636b2c636865636b3d72656c617865642c6e6f6a6f6c6965742c6d6f64653d3078303030303030303030303030303030302c626c6f636b3d3078303030303030303030303030303430302c00ef49cf86458fe7d77ad665fd54ecde2920ecf341fdc99e3dd3bbb43add61fbd65ef0936a80c2f39e63"], 0x1, 0x545, &(0x7f0000000ac0)="$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") openat$tun(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) creat(&(0x7f0000000300)='./bus\x00', 0x0) open(&(0x7f0000000440)='./bus\x00', 0x0, 0x0) 6.648978857s ago: executing program 2: socket$inet6(0xa, 0x0, 0x9) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x2000000000000078, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x43}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x0, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r0}, 0x10) sched_setscheduler(0x0, 0x0, &(0x7f0000000100)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETOFFLOAD(r3, 0xc004743e, 0x20001439) 6.204398607s ago: executing program 3: bind$l2tp(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @loopback}, 0x10) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000001e80)=@raw={'raw\x00', 0x4008, 0x3, 0x240, 0xd8, 0x500b, 0x148, 0x0, 0x148, 0x1a8, 0x240, 0x240, 0x1a8, 0x240, 0x7fffffe, 0x0, {[{{@ip={@local, @rand_addr, 0x0, 0x0, 'ip6gretap0\x00', 'team_slave_0\x00'}, 0x0, 0xbe, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@ip={@rand_addr, @private, 0x0, 0x0, 'ip6gre0\x00', 'bridge_slave_1\x00'}, 0x0, 0x70, 0xd0}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv6=@remote}}}], {{'\x00', 0x0, 0x70, 0xfffffffffffffee9}, {0x28}}}}, 0xfe29) syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000500)=ANY=[@ANYBLOB='nfs=nostale_ro,uni_xlate=1,uni_xlate=0,gid=', @ANYRESHEX=0x0, @ANYBLOB=',uni_xlate=1,nonumtail=0,iocharset=cpush,\x00'], 0x1, 0x28d, &(0x7f0000000240)="$eJzs3cFLG1kcB/BfTNZEYUkOC7LLwmbZy55EXfawp1UWF5YNtLTk0J4qNdJirKAg1IN6k/ZvaP+F9throYfSa/+BUii20Iv25KGQkk6iiU2jsYbU8vkc9PHy+zov42OcGZmXaz8vLc4vry7s7e1ELpeKzHRE7KeiEEORjsRWAADfkv1aLXZriVPEh/owJACgz/Zrf92NOPXffwDgHOpw/X9wTZ/aOui7OJjRAQD98EX3/939B4Bz6fKVq//PlEqzl4rFXMTS9lp5rZx8T16fWYibUY1KTEQ+3jf/U5CcLdS//vtfaXaiWPe6ELmlzUZ+c62cbs9PRj4KnfOTxUSUW/PfxWgj/2I0KjEV+fihc36qY344fv+tZfvjkY/n12M5qjEf9WySz0bExmSx+M+F0mG+fl5Tzn6sAwAAAAAAAAAAAAAAAAAAAACAfhgvNuUaPe3r94wfFhTa19dJqlvXBxrpuj7Q0fV5MvFTZnDvGwAAAAAAAAAAAAAAAAAAAL4mq7fXF+eq1cpKt8atZw+e7GSTwFy1+dT+camOjVQj3Ftq+6TFf598PN//+ure0Zcysb6Y7X3/nG3j8S8D2GhlJTK9pJ7u3Pjxj9WxPz9XE5nWnjv16dJWU59IHX5y5ix3+FDLFH2bjxg+7aTt3njYbEy/+6SmOZkqKyOD+J22NsbuT8892nj5ptGTjmNSXQ4atfTZH4gAAAAAAAAAAAAAAAAAAICWx60HPRIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGJzDz//vtZGNtp5cW83wwQZ2awN9fwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAUPchAAD//26KiX0=") syz_mount_image$fuse(0x0, &(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000440)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f00000004c0)='smb3\x00', 0x0, &(0x7f0000000500)='acl') r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) recvmsg(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0) r3 = socket$inet6(0xa, 0x80003, 0xff) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/dev\x00') read$char_usb(r4, &(0x7f0000000880)=""/4096, 0x1000) sendmsg$NL80211_CMD_GET_COALESCE(r4, &(0x7f0000000980)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000940)={&(0x7f0000000900)={0x28, 0x0, 0x200, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8, 0x1, 0x40}, @void, @val={0xc, 0x99, {0x6, 0x12}}}}, [""]}, 0x28}, 0x1, 0x0, 0x0, 0x48084}, 0x8010) setsockopt$inet6_int(r3, 0x29, 0x16, &(0x7f0000fcb000), 0x4) r5 = socket$inet6(0xa, 0x80003, 0xff) setsockopt$inet6_int(r5, 0x29, 0x16, &(0x7f0000fcb000), 0x4) syz_mount_image$minix(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x280085e, &(0x7f0000000100)=ANY=[], 0xa, 0x229, &(0x7f00000005c0)="$eJzs2z1PFEEcx/HfPtxxoIARtTCaEI1oI+dDZWHUjoo3QEXgVOIaUbSAmAiNWphQ2dlYmZhYWBqDnbHyBViY2GmIFJdYWbBmz32Am3vO3a4e30/D7Pxm2NkNc/eH5QRgz7qqcVmylA8OjhUOrI9ZWS8JQEr88Ou26yfsKATQ324OZ70CANnYuia9OCX9LD+ck5OPyoKgAvi6KWlj4olWFeb2gKRXnyU3rh+21qSjbphbBQ1W1xcvpdPRfGvIqD+C+UNxvm9HMhjnZ05G59+vYY1oNBckBzUW5vPx/CNN6x23reoIAID+ZGmyWd5wgK3rC17pXN08V8nP183zlfxCk/xifDwQt2aeTz9471/eDvLJuTvefKNlAqjB7mD/fzmetJ0m+9+ts/+rf08AkL6l5ZVbs57nP5IqjdK9sCdsRH8RSHocY0xXGtEzhxYGR08ojSj4Hjt6HHP6+oR57d27CjtZ2Kik3tyof7ihGtG3qb/3JO6xe3HndzVO/Pj9ePHZ23etDH7T5ins+KduZqNUrhojW+rhdY0bu2DWK7Q23Vr1/TZPWvPlIvnngEK3X4kApK14//ZicWl55eyCI+lGKRe94U9936xU9sXG9T2A/1fypl8rXTN6/N2H0x8//Spfev20gzNfkfTBfCAIAAAAAAAAAAAAAADadkiHs14CAAAAgJSYn/65O9Ltjy5lfY0AAAAAAAAAAAAAAAAAAPSbPwEAAP//dhAJcA==") creat(0x0, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) r6 = syz_io_uring_setup(0x1fa4, &(0x7f0000000080)={0x0, 0x0, 0x80}, &(0x7f0000000100), &(0x7f0000000280)) r7 = syz_open_dev$vcsa(&(0x7f00000001c0), 0x8000, 0x210000) io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f0000000800)=[{0x0}, {0x0}, {&(0x7f00000018c0)=""/12, 0xc}], 0x3) setsockopt$MRT_TABLE(r7, 0x0, 0xcf, &(0x7f0000000200), 0x4) io_uring_enter(r6, 0x54, 0x0, 0xf, 0x0, 0x18) 4.68941478s ago: executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$ppp(0xffffffffffffff9c, 0x0, 0x101042, 0x0) ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f0000000040)) ioctl$PPPIOCSACTIVE(r1, 0x40047459, &(0x7f0000000080)={0xfffffffffffffe43, 0x0}) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000002007910480000000000710433000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x0, 0xfd90, &(0x7f000000cf3d)=""/195}, 0x14) r2 = epoll_create1(0x0) sendmmsg(r0, &(0x7f0000001680)=[{{&(0x7f0000000480)=@ax25={{0x3, @null, 0x3}, [@null, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @bcast, @bcast, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x80, &(0x7f0000001640)=[{&(0x7f0000000500)="b974d5e017d762af139cfd3dc5ac674644bd37aafd10ed601feb065f08c9957eb73173e9defa87c339b05baa4a2d79a323fa3636a576ad43593c482523edab5762b82aa518e3653e6ebd6468b4ac363b13470ad23f18cbcd0a7624a96529f9ddb4c091155ddbc271385f291978ef33db26324df8ad62a6367d0e07762d37443f4e2e60f44fbe259333e42f704629b41d8e699b59b3b0130b2b3424fe6eaa4c11174fa17855587148ae640a7365f70af1e1a3dc56fb28f72e12e0573ccc2131d6827f6f3962086cac048b00548681be64c50378fea01f1a0d02886a010210cba27d824d1a0c693540f4aec0ff93a0977c8b72f9dcbd206931a3dfc76923b96cdbcafb5a02165d33319807460b096d6229a0b0109bc988b6f1b7706413384c49cf9c3b2d219266f68641c184c8594b21182881fd9e81aedd1c48e3c3fa8a254a60db7b637ddfe9970086fc3fdc6c4fc75d4b89bac094d94b14f6746f99717f2efb67244b5535bc50fc683b4fdec61cca23d2aba17d43b34d75ebbe3efbaae29dec7731e199c291cd47add350eb8f26509a32e66a6f94b14a3500ec240ebc44a9fb16843b2409d2bf408516edbef1412000184e86c623280086c8bef0ef4fd6310cfb629641e0f14c6ba6586959faf4ef5b93fdef74c2ae719ef92e264312d88a0fbf96dd8e62bfff92e51659a5d4508c52553d284a5774cc82ed5b576c2e57b0a442d7f86137247b06e278f25ecce7d9fc3cbc472c54966f566e63aafa6b7b22d04f72b4d9223ecb931e962c8a32cbc5f4d74609cae11bb63309c8d634b0f960ae0a7a01041715701ffff2eddbdf05ff48d555c9634c5387c6388f12b7b4689e81d1216ad298f6895eb0f3b23446d9c573b99fce4966221d70e76f9b57a75b9a815445948077cb778626476988292385c1e6ae68870f6fd52784f6f974d93a7db2535d8b8252f9f0b8f36555d9bbf27fbd4220577a3dd59fcab7aabf53e8eb1fd5c0aa64e4a1e59938e6f1d868de82b2573f495b43a38627ca7aadce97913f343d89f3f23f33e742a482299e6c6cc7f619795aef903f75cb2bc70a14c74f2161a4a1f7b57da3c9bc7ae6f7cebd64384891481e2ef4892e538de63ab5be7ffdbd5c7bacf5aa34c04373e16fb7307b2adfe8d3c77155f83d4bce1b89982f9bfe6e437624611534175babe1c9c769d44876eb200457be24814714fec65b11944ce0c9432f58dfc17f841fcd7e9b1c2516923e32e2bc335b4ee841ce1507ea818fa862aee6c061b05ca95e326c38f5a2c974c20351e4152f55e7c06aea41f3ae7383603c492b4771a7705b23c3d265c3a197c93c0e1d1f5c9e0ee62d63fec659eaeee7e18e768c378ed108060689866fb20ef1806227a897ef5b85f724ec824b7c6f298921e31dd570ced49dca995dbde1d96624f46386f07e1d4291a7385bb016c30d9eb47ff963ffb65041b4c805096f217af228bdd9a6a34f8439d7e71e94954544f4de5f0fe5d699fae65093b0b36f5950596b20b758a55e3da207b2ca0905399f7eb056d315f8cf31e4752e6c7f2850c3809e6fb98a009949063936f6c084edb8c319658ee39f872a8df12428f96d481c858a5cac7630d6f2827778079747e7e2b1e7bcdf7127e206d7fba03ab646837fa8b7b1a27d678fb22608a0e9ee03777e3c0455fc2b9f74e7b258c521f9adbc59b605ac779bf86da9eb367a86ce622369eaa6e0b516e5fcbfdadf97449f1e5da786b0d8dcaf54feb878a15e30e20933633714e29f730f7582cd60ad16a6d03d55d8f1a9f38daa9752ca963f73983b942dc3b076b580e03711a8e681f44d30d4052ef52fbcce03c96efb0107b0f12845e224570c5fbf40dc36761140c6a046ec858e4f2203960ca014a8b5e724efe8ade3444caa549f9a4ae16640741f92001eb3f96e409549e023973bf83d7e8ee1ccf1bb351c1382467b7f41d5f69a2e091635d6f20eefbd362d6d6442b0a426b6c9c4c87a35906cb9a4b7623aa8f431772fbaaa223cb51cbdf5fe8f6f2a3c382489f9a40acde5b9d812717cee72743164ee988294c27a7d72b373ad0e69596ed976ff890fe56df720183b278752a09d61a1554ca7d93c04fe27cbd4e2ca18d448810c8d4612893858b23124b09600f956cc36b41c2911f55bcfe06c0e545b8a2a317a9f03391b9afd05bb169dfc03152f05d03be0d0d2538fc76474a6acdade3c17b594a482664a9f0bcf7484887762ff1ac5444c00a44e1bc5d35b62938b420f7076a7716df77464e13dde4113a506c94ed1d7a7d39bd2bcdddb889f9b2535550dbd687867a4950031654b03fe46eeaf5bbf1a780fc3b6d2cbb45628f38b30744e0b143601f3c5573014bdf8f264137f072330e9328d36cbf646bf1405b1f96b16ae6a00f651adebeeda74bedcaa6488e80a9814c357e6522119aab3e433f91e1cb2b2e722a61a049d4064d23662c7b6f5fb8ae5bb5b9ecd129bb3a08ee9e78443523c08864b63e705fec6751c805f57c72ac43fe88ff0c80bd839c599850370d4093b0a1855b16942813831304d084683e7804c7bd51408a6f1f19023cb653899f0771c96e6b8504ea1440beb4cf93ce39e666c8131ba49588371d2b56a80956351d927ec74b3c49d923408793a5b806548675164faa20bb7acd41eb5abe09bf611814d5d547c09cd85c10993e955095a3cb2973535a75e6e2c6753b3ef6e3392801627d7ce03930841c697ee94d11df9dc5a36399700656bd9c9a41de24cc0634c70da3dd22781ac5d87333397b1181f101cab963f32d18229d2b13d6b8b307aa33fb527469e61d262eea14d133d0f54f3a5c0d7dfdc4772018215775d19907abd76bf762815428575d55b95c060173eed7479bda20858e6956ef1b155a5e9516b349124a268023a87c7ac39cbe9f209579dfd8496c764dcf08fa28a9e267f460cf665ba73f52c44ce784331c12c068ee59750589be5df1b23830f24bf947a4871e479f5ba8a6d7a7d3408d3aec04ccc176d0339e1cf82a409a1886403648cfa054ca16cfff8a8c7cd49d121cadbe66b32f25220b1e3436e412c6ee372256dbfefe135fe7fd4b32ee3b1efca16ef88f8d7cc16cb25e9c86763a4592230a34293a14dc82eadfce2a3491add4a23ab9a923af44376108e055c35fc235869ecbfd68789834f2b3f6337ce2cd1f72b1ae7ef951b4f78dd186916298ae12c7e878b1a682aa7b39c360d5c2ffa75798add21b4aaa7a94cadf40b894589db0c8e2c77c6a9ee6acb6b8df6325a544b9b15de8df3e97ff8e80af4891be53bace033ea06a5bb3fbfa49f9b65a441c2c60551551c7bd0f2b2c0584008c7f76f062c18457058cbee1d9cbc82ebdee298a08f83175ca40cb0cd08e6839645b442ce8dd71f955607228658ea4a1204dd3bd2d66d4ae7747a51c77680089e99b85e6d9c860375d6e24e8839d80132e4b34d17bbdcae090b265b6267b9c82d37a0b666594bac52dad2ffb98b7fea875b9b6c1e947db1098afbf2b2c3d0b9b48e7868d0892abea1ab14885197f21a5c8a1e3e900cae7347fb881fbeb9f78aad909e22e0c1665ead6706bcf31d7b7021abdcc07975fe9b8168759f633fb402a1e626d41757c54b406d2585e47b742ea0681078bd72bea74b87e25584aafd3c101f050b91b727465930339fa73e866cc6ec0a8788bf1d433ef94a7b169f80e70d66275639241ee2d0d9f28f69dbd59bc67d9d5304c78d30845ecd44abbfa41469804dd34af5346d68c8d99dd57070e8bd1e0d607c9976ca29edf305a71c204f2703947fc670fcec90f46bdf0b3b6bad4c6d11fb8f2fc98d915a6d33a7231eb81d5568c271d75057f77af09f511df12642aa6ba889151a98796a47d6389a5b028e91fd24d021f80aab0ed69c5fb1bb788081d849899a65112ad39e66a9037b35889eb68d2202321b3336ddbe1d3d8eaab890418decf7b1ef5784341d87190744d8845036e2aa19402e23b63ecd113b96a5eb01031e3b035fdd7b6168fbf50a798bd66533d1275f7e7dd31066a5b0e96073df4cd703bcd10e35ee4c82178457f083f077ecb40647a95ea723f12fb2d58e433d609dcfc40140977b809cdc16cfe1240b06786093f304f62e4c3810174d9b47c4d5996f5fd3c2605148d286e064fa04a259b940af847d6fe42cb3a946b785f469c65a8518c6186860e71ea0647c737444dc1828a8753ae65c498acf63a60a96ffee0851f5eeadfc042bbea837a0876cf6ed3a356135b0ee808dce2f23e56d066ccccffa3d6ce07e25609e13dfba5a1239df46e6109ddae70d22269f8204ad1a3becce48ffb13c2759924025d606bbe15946a7e738a304c92a83eda806038f9f73f16ecb605b23cb291568029ecbf0251e53d28c49f9a40bf204b300ee0f6704a914f540809ba67906f2ce1f9c3a97f012012d986a1b7f753baa40a093f5789b60b0f062b2a2c911d3468731e3b57775691278f5951042adbc0065185144704a3584c4eb1e3b3f8cd984d1e30d535ebb4dcf665096a52cf393f1ef110c4c2be60f2ae1785ef2c277ba5f42522a2dc5ec1bbf007fa4fa96f25af050f976ff42f01197e1dfb6d9fa98b3a1f44974780f8be4d338fd86625675d6a2002e19205ea5795769d3ac2b5e9de18634ea4f730c709aeb9240f729fcd5ea056bd97e8d06c823356f75b09d2f355440c94abe3a220282fd5ea59956a9b618f9e35d17fc48654c01d0bd01d01c6e1100bc87030992209c98c190c36a0632a1c6751abe174c71fe67dd6cf15a2478a958adb67b239706ba3637f8739bcedd57c50f0cad46f328329fee2449597303a9583159a8d7cefdec97929a7bf3d0ecc71214996d7a5a63776c31b3f8f4eebe0f25fc5a22cbcf46af6955eb4a9cb8129c402982cc6ec73d0824d32322a4db1b4016087468fccf1b5efbdee8c00750699bac8ef528b970024db88fc480e4921173f7cd66c958244df789f774d3bbd028e5ecb10c970fc0d3607d4398d149c3a8bda828e093142501ff329818582a9b42c995307ba2d5677637f571aa0610925dbc08a5d055f2014aa43c5d17eaea848c7ede102df0c8d122f08a4f53934653ade2d6a21afe9f683f52863731f2b1bf9dfcdf2fe06c710ffeec6c93fefca4e92c9240d955d418298651444eed0acc42319ad0f72fbb283dd3f2887f36aaafc3286f97eae61269284d6fda8627c84e239d879600385d377741ee5a62f2f59fbefa023014b3655d9f79b649f97bad9d00e0c2c225ea698acf795ba5a9d586f116bf046a5fc6bd645ed93f35bd3d3ea11a16c580b69b6ae19830cb4e5d908a891924b023dd72aa9f2fda15c5ae24d5c3924f12d90f1fab39a259d1bb7415af1247a9acb7cfbf5ff5ca0ea3c7ced93dfe3c5799adb9342dbefb342be0abf60b1aa155a20be75aa868c28235377415a59d03ed4e0c021ccf98e212e1861c14f1e483382d732885a50053b5f62887d6b6e9bb294fe305bb3a5c45e296bc5ae45d504ea12330ca7f5379e1aaea7fac8a28f979d331fe1957e2dbe14dbbc1b9fe8b39019672641ab669dd2abfd1502e188d5366db2153f402e35ace744e409788f7e5bd359d431e0442ef5714d9afea265dfcd25fc0774ad2cab2ce9de194b6ebd6d115aa386f78a10e01908ab0929d1c7155cf6d8414770d0cb18c91792e5a0797b1a5c36ff7da5f7338de84c75ee9d9845b76e037c4bc4aec0502a7464678a619c381a1750f3331ea7b8052c227a7bfb26824e3e9d6399c2d2732d33277eaf07e19197c6da1212131fdda593009c96bfe5b843c0131", 0x1000}, {&(0x7f0000000400)="196a0f3bc4fbf5f938af76e41c73cb74f3e5da9c", 0x14}, {&(0x7f0000001500)="cfc10d6824df7fbf9466d4b43339c05920799179d177c498cf5f5d44142ed4b20ef893183654ab6d55baef19a05b2ab39bba5635dbd7ce6f4ae325868918d8a4e80fc5807582910b7e3b001b4921a4c15ee10048b2c36df2a14c9a21fb86728a3ab782b915cd238b7551ee44806caee7ca462864a099cc1febf33820e12f81c0b71803b07b309f34c94bd482132fc948cc357d3e056ffa897634fefc6b00552355bb4f2c5a70303896ea7acddf2a51df79425578104b7822a78c7eb9f040c1264319a343649afa9dbcbaf4dbf76cfd2eb1c927294e499cf6018c017108f0b52991982fdefd243d8c03ca2da6a88d9a", 0xef}, {&(0x7f0000001600)="80355fdfa3abaf43f380d5e9e8d1b98b87c150f33b1e04", 0x17}], 0x4, &(0x7f0000001780)=[{0x70, 0x119, 0xcc10d1a, "74787b0112fe575cd12b268bacf156ca948825c025e0cdaf4e36241eae54d5173d25501470d0509ea7a542ddf49e072df6070ca52cc9896b47f3f39e07370bd2f0f644d1f75bab1a0a502cb77fa84fe72e30dd566acfdb8858a6e9e04d7604"}, {0xf0, 0x0, 0x7, "43195a63baf1aefacc40f3e19b2d0dfab9ae751595e60911f40ba5d34248579b32109f91fa71dee345a94c3c02884d0812f1ed6f78747227edfe537dc950aedc4ba216f05b1e42d476295f4da72b97f759c4dbb3dc3b089e4c45a56e95896e838037ac3dc557a8a78e1d7a9f63f74dda375c9fd6d783b0c4e14ff50491671eb06bf7b7fa1c2990b0b2eb3ac64e9001943a2dfcd18325269a85690fdf3ed1a11226fa54905991cb06e732a7ef65f1911770d93ecd47addeef3124c492ef2c233b52eb5067252dc36d402779ea4c0a6a08ff158cc1b5a96891ed0793e00794fc8b"}, {0xa8, 0x185, 0x0, "dcc7f04f4f08ac2b435fb20978c86ea18efa954da331f4709c33eee193913779f53232293c922052ca0cba40161dc03924f8a6a16544110f55c67703a7399c7bc363ffed132a7d67a5d3ae8cc2048bcb07bb9303e9c416327ec02bb11af504b042b0bc7a0a360c960b8fcf68e3affa093f0c5310055473cf59d538dd55a301bf3c1b384ecedda58a887af5864d082963b60f06"}], 0x208}}], 0x1, 0x11) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000180)) write$ppp(r1, &(0x7f0000000440)=')z', 0x2) ppoll(&(0x7f0000000140)=[{r2}], 0x1, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000180)='illinois\x00', 0x9) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000019c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELCHAIN={0x2f4, 0x5, 0xa, 0x6, 0x0, 0x0, {0xa, 0x0, 0x9}, [@NFTA_CHAIN_HOOK={0x44, 0x4, 0x0, 0x1, [@NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x1137eb01}, @NFTA_HOOK_DEV={0x14, 0x3, 'dvmrp1\x00'}, @NFTA_HOOK_DEV={0x14, 0x3, 'veth0_to_batadv\x00'}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xfffffffffffffffe}, @NFTA_CHAIN_USERDATA={0xf1, 0xc, "68ba6874e2a6199c3551038492d72816a5c5ada9e922ba6e1ac0b1a4be313139dcbbd326d0316988285f6f3884c98165b42cc200deac3835075326bed2aec243eca77ae3a83cfa58ae45fc3d7e684b5d32b5e708090840c0eef6acb802915d0e5f13fca26b75d777ff78a7bcdc629c5e701fd5f35c22f95f18a29b1d907987b4a150368d16321387f2c68b03428f60fa17d22e8379370899922cf86f044d2b031cd46322b41247458fb983a6206c2de013326ed3d3bf2d2634cff6044af002a2e68e0ef6d5f8207582f99f8ff269ba85e626aee7bb9892f812db5db94bf48d33738167599b818ff29b864bf3d4"}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x3}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_USERDATA={0xb4, 0xc, "b8486717d31bf34de435021553d1d73d60c7402fa8ce2a14660ceadb6d5763e1e7040cbb0ec73147c69e717c8f621e701b096604350f5f56d1879f209c7c8dbf59375851d6a7eb5520b497c932b0e9269b0df706b646d6eceb2d4b35ab3bfcb05c22e58d4b94c9d704914526defd962a410b32e7d3fa23d58268c67658a03408b4df199ec5c9150378045024a041b07b2dc57518c6461b2b01d265326c3d4d3a185357a98afa52db45cd91de2cea1fde"}, @NFTA_CHAIN_USERDATA={0xb1, 0xc, "371f1f857ed82733fd7f0907d35aeef2c1de02c75dc4b39eaafdfcee25dcfb931d3cf52cbd0156d740263131ce9aacfa723b77f3a62ab7b1fbce160fbfc7f0e87eb3245d0a8603fd93496a6048f8dbfe0e55e90c9d849560536a50edf69afc6242244840d5c6fcedae09b3f48451e38bb15f9518bbb874b923de4ad729800457f3ad459a452a0f41c30ec0d8179a4705af4a32f9f232998ee5c17e795cd34a4d530f892979704c4d1e779f918a"}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}, @NFTA_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x10000}]}], {0x14}}, 0x368}}, 0x0) connect$inet6(r3, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r4 = socket$inet6(0x10, 0x2, 0x4) sendto$inet6(r4, &(0x7f0000000080)="4c00000012001f15b9409b849ac00a00a5784004000000000000030038c88cc055c5ac27a6c5b068d0bf46d323452536005ad94a461cdbfee9bdb942352359a351d1ec0cffc8792cd8000080", 0x4c, 0x0, 0x0, 0x0) 4.61081545s ago: executing program 0: r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000640), 0x0, 0x0) r1 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f0000000100)={0x1b, "5660359c3245d11f0000000000000000000000000f00"}) ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000000)={0x6, "340b7832ceefd131b8e6498c25f58fad9987ffe93bbabd18cf501922de974a27"}) ioctl$SYNC_IOC_FILE_INFO(0xffffffffffffffff, 0xc0383e04, &(0x7f0000000280)={""/32, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000a40)=[{}]}) 4.448379605s ago: executing program 3: r0 = signalfd(0xffffffffffffffff, 0x0, 0x0) r1 = socket$packet(0x11, 0x0, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000480)) sendto$packet(r1, &(0x7f0000000080)="030600ffffffba00004000", 0xb, 0x4000030, 0x0, 0x0) close(r0) prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) r3 = socket(0x840000000002, 0x3, 0x9) connect$inet(r3, &(0x7f0000000540)={0x2, 0x0, @dev}, 0x10) sendmmsg$inet(r3, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x300, 0x401eb94) 4.253248664s ago: executing program 0: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00', r0}, 0x10) r1 = io_uring_setup(0x1694, &(0x7f0000000080)) io_uring_register$IORING_REGISTER_BUFFERS2(r1, 0xf, &(0x7f0000002700)={0x1, 0x2, 0x0, &(0x7f0000000200)=[{0x0}], 0x0}, 0x20) 3.682133469s ago: executing program 0: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000001c0), r0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000340), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000380)={'wpan3\x00', 0x0}) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LLSEC_ADD_DEV(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000005c0)=ANY=[@ANYRES16], 0x40}, 0x4, 0x700000000000000}, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x4, &(0x7f0000000080)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x8b}]}, &(0x7f0000000000)='GPL\x00', 0x5}, 0x90) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(r5, 0x8933, 0x0) sendmsg$NL802154_CMD_NEW_SEC_DEV(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="c58e00000000000000001a00000008000300", @ANYRES32, @ANYBLOB="0c002e8006"], 0x28}}, 0x0) sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r1, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000004c0)={&(0x7f00000003c0)={0x54, r2, 0x4, 0x70bd28, 0x25dfdbfc, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x5}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x6}]}, 0x54}, 0x1, 0x0, 0x0, 0x8884}, 0x40000) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r7) sendmsg$NLBL_MGMT_C_ADD(r7, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000ec0)={0x114, r8, 0xe701ac47a3d23ecd, 0x0, 0x0, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_DOMAIN={0xce, 0x1, 'C\xec\xf8\xa0w\x15|\xd8\xbcs\xe1\xb93\x14\xcd\xcb\xb6\xb9\xbb\x84\xe5\xbc\xdb\x7f\x9a\xf2\xea\xcc\x91:v@\xe83-\x1d\xaagQl\x7f\tKt\fc\x1f\x17]\xd5\xd0\xf0\xa8\xeb\xd2g\x92\x04\x00\x00\x00od\xe6,\xd3@I\x17\xf3\xbees0\xad\xc6\xbf/*\xb6(o\x91t\x12\x93U6\xf4@n\xdc\xdc\x8a7y\x81FY\xbe\xbbc\xd2\xc3\x01\xa5\xe2V\x8c\xb3im~\xd2V\xdaG\xbdbF\xc8n\x86\xac\x9c\xfb\xda\xe2&\"\xb4:\x13\xe9\tc\x85\xb4\xcb\x17\xbfm\x846\xe7\x7fp\x9eCdb\xad;\xa2\x8fs\xbf6\xe8\xe3Xg3&\xe2 \xd6\n\x9d=~<\x93/\xaf\x89\x06+\x96]\xb5+\xee\xff8^D*\xdb\xb8\xd8t\x80\xd4\x8fK=E0\xe8R\x83'}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @dev}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}]}, 0x114}}, 0x0) 3.618217328s ago: executing program 4: socket$nl_route(0x10, 0x3, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_BSS(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)={0x2c, r1, 0xe0536804369fd543, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_P2P_OPPPS={0x5}, @NL80211_ATTR_BSS_CTS_PROT={0x5}]}, 0x2c}}, 0x0) r3 = socket(0x10, 0x803, 0x6) sendto(0xffffffffffffffff, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r3, &(0x7f00000037c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xb}, 0x90) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_GET_SCAN(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010700000000000000002000000008000300", @ANYRES32=r6], 0x1c}}, 0x0) 3.328283813s ago: executing program 2: sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) preadv(r0, &(0x7f0000000580)=[{&(0x7f0000000640)=""/102396, 0x18ffc}], 0x1, 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0) socket$nl_generic(0x10, 0x3, 0x10) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) r2 = socket(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000100)={0x1c, 0x19, 0x1, 0x0, 0x0, {0x2, 0xd601, 0x9}, [@nested={0x5, 0x0, 0x0, 0x1, [@generic="9e"]}]}, 0x1c}}, 0x0) mlock2(&(0x7f0000018000/0x2000)=nil, 0x2000, 0x0) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00') openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) getpid() ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}]}) 3.153062853s ago: executing program 4: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TCSETA(r0, 0x5406, &(0x7f0000000200)={0x7f05, 0x0, 0x0, 0x5, 0x0, "5f330000a90100f9"}) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCL_GETMOUSEREPORTING(r1, 0x5412, &(0x7f00000000c0)=0x13) poll(&(0x7f0000000100)=[{r1}], 0x1, 0xe7f1) ioctl$TIOCL_GETMOUSEREPORTING(r1, 0x5412, &(0x7f00000006c0)=0x1a) 3.148523174s ago: executing program 3: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x0, 0x0) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r0, &(0x7f0000000240)=[{0x0}], 0x1, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x6}]}) openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x180000e, &(0x7f00000001c0)={[{@usrjquota}, {@mblk_io_submit}, {@acl}, {@auto_da_alloc}, {@block_validity}, {@quota}]}, 0x3, 0x434, &(0x7f00000002c0)="$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") r1 = creat(&(0x7f00000001c0)='./file1\x00', 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000200), 0x208e24b) write$binfmt_elf64(r1, &(0x7f0000001a40)=ANY=[], 0xfd14) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) 2.407841705s ago: executing program 0: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000740)=ANY=[@ANYBLOB="120100005ab05740450c088085e10000000109021200b8dc0000000904"], 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) 1.885548811s ago: executing program 4: madvise(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0) madvise(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) r0 = socket$rds(0x15, 0x5, 0x0) setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f00000005c0), 0x4) r1 = dup(r0) setsockopt$RDS_FREE_MR(r1, 0x114, 0x3, &(0x7f0000000f00), 0x10) 1.313405394s ago: executing program 4: socket$inet6_tcp(0xa, 0x1, 0x0) r0 = syz_io_uring_setup(0x5c90, &(0x7f0000000140)={0x0, 0x0, 0x10100}, &(0x7f0000000600)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet_mptcp(0x2, 0x1, 0x106) syz_io_uring_submit(r1, r2, &(0x7f0000000740)=@IORING_OP_ACCEPT={0xd, 0xa, 0x0, r3, 0x0}) listen(r3, 0x0) io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0) shutdown(r3, 0x1) 806.607813ms ago: executing program 3: bind$l2tp(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @loopback}, 0x10) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000001e80)=@raw={'raw\x00', 0x4008, 0x3, 0x240, 0xd8, 0x500b, 0x148, 0x0, 0x148, 0x1a8, 0x240, 0x240, 0x1a8, 0x240, 0x7fffffe, 0x0, {[{{@ip={@local, @rand_addr, 0x0, 0x0, 'ip6gretap0\x00', 'team_slave_0\x00'}, 0x0, 0xbe, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@ip={@rand_addr, @private, 0x0, 0x0, 'ip6gre0\x00', 'bridge_slave_1\x00'}, 0x0, 0x70, 0xd0}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv6=@remote}}}], {{'\x00', 0x0, 0x70, 0xfffffffffffffee9}, {0x28}}}}, 0xfe29) syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000500)=ANY=[@ANYBLOB='nfs=nostale_ro,uni_xlate=1,uni_xlate=0,gid=', @ANYRESHEX=0x0, @ANYBLOB=',uni_xlate=1,nonumtail=0,iocharset=cpush,\x00'], 0x1, 0x28d, &(0x7f0000000240)="$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") syz_mount_image$fuse(0x0, &(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000440)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f00000004c0)='smb3\x00', 0x0, &(0x7f0000000500)='acl') 765.909543ms ago: executing program 4: r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000640), 0x0, 0x0) r1 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f0000000100)={0x1b, "5660359c3245d11f0000000000000000000000000f00"}) ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000000)={0x6, "340b7832ceefd131b8e6498c25f58fad9987ffe93bbabd18cf501922de974a27"}) ioctl$SYNC_IOC_FILE_INFO(0xffffffffffffffff, 0xc0383e04, &(0x7f0000000280)={""/32, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000a40)=[{}]}) 458.969373ms ago: executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00', r0}, 0x10) r1 = io_uring_setup(0x1694, &(0x7f0000000080)) io_uring_register$IORING_REGISTER_BUFFERS2(r1, 0xf, &(0x7f0000002700)={0x1, 0x2, 0x0, &(0x7f0000000200)=[{0x0}], 0x0}, 0x20) 298.029879ms ago: executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00'}) r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r3) sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000800)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) write$nci(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="6103014003017db278"], 0x9) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000380)=ANY=[], 0xff2e) write$binfmt_script(r5, 0x0, 0x0) ioctl$TIOCVHANGUP(r5, 0x5437, 0x0) fstatfs(0xffffffffffffffff, &(0x7f0000000000)=""/50) r6 = socket(0x0, 0x3, 0x0) socket(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000080)) sendmsg$nl_route_sched(r6, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) syz_usbip_server_init(0x0) syz_usbip_server_init(0x0) syz_usbip_server_init(0x0) syz_usbip_server_init(0x0) syz_usbip_server_init(0x3) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) 0s ago: executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$ppp(0xffffffffffffff9c, 0x0, 0x101042, 0x0) ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f0000000040)) ioctl$PPPIOCSACTIVE(r1, 0x40047459, &(0x7f0000000080)={0xfffffffffffffe43, 0x0}) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000002007910480000000000710433000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x0, 0xfd90, &(0x7f000000cf3d)=""/195}, 0x14) r2 = epoll_create1(0x0) sendmmsg(r0, &(0x7f0000001680)=[{{&(0x7f0000000480)=@ax25={{0x3, @null, 0x3}, [@null, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @bcast, @bcast, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x80, &(0x7f0000001640)=[{&(0x7f0000000500)="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", 0x1000}, {&(0x7f0000000400)="196a0f3bc4fbf5f938af76e41c73cb74f3e5da9c", 0x14}, {&(0x7f0000001500)="cfc10d6824df7fbf9466d4b43339c05920799179d177c498cf5f5d44142ed4b20ef893183654ab6d55baef19a05b2ab39bba5635dbd7ce6f4ae325868918d8a4e80fc5807582910b7e3b001b4921a4c15ee10048b2c36df2a14c9a21fb86728a3ab782b915cd238b7551ee44806caee7ca462864a099cc1febf33820e12f81c0b71803b07b309f34c94bd482132fc948cc357d3e056ffa897634fefc6b00552355bb4f2c5a70303896ea7acddf2a51df79425578104b7822a78c7eb9f040c1264319a343649afa9dbcbaf4dbf76cfd2eb1c927294e499cf6018c017108f0b52991982fdefd243d8c03ca2da6a88d9a", 0xef}, {&(0x7f0000001600)="80355fdfa3abaf43f380d5e9e8d1b98b87c150f33b1e04", 0x17}], 0x4, &(0x7f0000001780)=[{0x70, 0x119, 0xcc10d1a, "74787b0112fe575cd12b268bacf156ca948825c025e0cdaf4e36241eae54d5173d25501470d0509ea7a542ddf49e072df6070ca52cc9896b47f3f39e07370bd2f0f644d1f75bab1a0a502cb77fa84fe72e30dd566acfdb8858a6e9e04d7604"}, {0xf0, 0x0, 0x7, "43195a63baf1aefacc40f3e19b2d0dfab9ae751595e60911f40ba5d34248579b32109f91fa71dee345a94c3c02884d0812f1ed6f78747227edfe537dc950aedc4ba216f05b1e42d476295f4da72b97f759c4dbb3dc3b089e4c45a56e95896e838037ac3dc557a8a78e1d7a9f63f74dda375c9fd6d783b0c4e14ff50491671eb06bf7b7fa1c2990b0b2eb3ac64e9001943a2dfcd18325269a85690fdf3ed1a11226fa54905991cb06e732a7ef65f1911770d93ecd47addeef3124c492ef2c233b52eb5067252dc36d402779ea4c0a6a08ff158cc1b5a96891ed0793e00794fc8b"}, {0xa8, 0x185, 0x0, "dcc7f04f4f08ac2b435fb20978c86ea18efa954da331f4709c33eee193913779f53232293c922052ca0cba40161dc03924f8a6a16544110f55c67703a7399c7bc363ffed132a7d67a5d3ae8cc2048bcb07bb9303e9c416327ec02bb11af504b042b0bc7a0a360c960b8fcf68e3affa093f0c5310055473cf59d538dd55a301bf3c1b384ecedda58a887af5864d082963b60f06"}], 0x208}}], 0x1, 0x11) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000180)) write$ppp(r1, &(0x7f0000000440)=')z', 0x2) ppoll(&(0x7f0000000140)=[{r2}], 0x1, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000180)='illinois\x00', 0x9) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000019c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELCHAIN={0x2f4, 0x5, 0xa, 0x6, 0x0, 0x0, {0xa, 0x0, 0x9}, [@NFTA_CHAIN_HOOK={0x44, 0x4, 0x0, 0x1, [@NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x1137eb01}, @NFTA_HOOK_DEV={0x14, 0x3, 'dvmrp1\x00'}, @NFTA_HOOK_DEV={0x14, 0x3, 'veth0_to_batadv\x00'}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xfffffffffffffffe}, @NFTA_CHAIN_USERDATA={0xf1, 0xc, "68ba6874e2a6199c3551038492d72816a5c5ada9e922ba6e1ac0b1a4be313139dcbbd326d0316988285f6f3884c98165b42cc200deac3835075326bed2aec243eca77ae3a83cfa58ae45fc3d7e684b5d32b5e708090840c0eef6acb802915d0e5f13fca26b75d777ff78a7bcdc629c5e701fd5f35c22f95f18a29b1d907987b4a150368d16321387f2c68b03428f60fa17d22e8379370899922cf86f044d2b031cd46322b41247458fb983a6206c2de013326ed3d3bf2d2634cff6044af002a2e68e0ef6d5f8207582f99f8ff269ba85e626aee7bb9892f812db5db94bf48d33738167599b818ff29b864bf3d4"}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x3}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_USERDATA={0xb4, 0xc, "b8486717d31bf34de435021553d1d73d60c7402fa8ce2a14660ceadb6d5763e1e7040cbb0ec73147c69e717c8f621e701b096604350f5f56d1879f209c7c8dbf59375851d6a7eb5520b497c932b0e9269b0df706b646d6eceb2d4b35ab3bfcb05c22e58d4b94c9d704914526defd962a410b32e7d3fa23d58268c67658a03408b4df199ec5c9150378045024a041b07b2dc57518c6461b2b01d265326c3d4d3a185357a98afa52db45cd91de2cea1fde"}, @NFTA_CHAIN_USERDATA={0xb1, 0xc, "371f1f857ed82733fd7f0907d35aeef2c1de02c75dc4b39eaafdfcee25dcfb931d3cf52cbd0156d740263131ce9aacfa723b77f3a62ab7b1fbce160fbfc7f0e87eb3245d0a8603fd93496a6048f8dbfe0e55e90c9d849560536a50edf69afc6242244840d5c6fcedae09b3f48451e38bb15f9518bbb874b923de4ad729800457f3ad459a452a0f41c30ec0d8179a4705af4a32f9f232998ee5c17e795cd34a4d530f892979704c4d1e779f918a"}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}, @NFTA_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x10000}]}], {0x14}}, 0x368}}, 0x0) connect$inet6(r3, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r4 = socket$inet6(0x10, 0x2, 0x4) sendto$inet6(r4, &(0x7f0000000080)="4c00000012001f15b9409b849ac00a00a5784004000000000000030038c88cc055c5ac27a6c5b068d0bf46d323452536005ad94a461cdbfee9bdb942352359a351d1ec0cffc8792cd8000080", 0x4c, 0x0, 0x0, 0x0) kernel console output (not intermixed with test programs): k needed: Please wait. [ 418.308099][ T29] audit: type=1800 audit(1717779180.693:37): pid=7081 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="" name="bus" dev="sda1" ino=1962 res=0 errno=0 [ 418.323535][ T7080] squashfs image failed sanity check [ 418.420212][ T7063] XFS (loop0): Quotacheck: Done. [ 418.716212][ T5497] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 418.984509][ T7084] loop1: detected capacity change from 0 to 4096 [ 419.089585][ T7084] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 419.383894][ T7092] loop4: detected capacity change from 0 to 64 [ 419.422851][ T7092] hfs: unable to parse mount options [ 419.933565][ T7090] loop2: detected capacity change from 0 to 65536 [ 420.056414][ T7090] XFS (loop2): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 420.370526][ T7092] loop4: detected capacity change from 0 to 32768 [ 420.414193][ T7090] XFS (loop2): Ending clean mount [ 420.500387][ T7092] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 420.515434][ T7090] XFS (loop2): Quotacheck needed: Please wait. [ 420.567414][ T5118] XFS (loop2): Metadata CRC error detected at xfs_allocbt_read_verify+0xae/0x2f0, xfs_bnobt block 0x4 [ 420.579094][ T5118] XFS (loop2): Unmount and run xfs_repair [ 420.585241][ T5118] XFS (loop2): First 128 bytes of corrupted metadata buffer: [ 420.593532][ T5118] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff AB3B............ [ 420.602736][ T5118] 00000010: 00 00 00 00 00 00 00 04 00 00 00 01 00 00 00 10 ................ [ 420.611963][ T5118] 00000020: d6 f6 9d bd 8c 5d 46 be b8 8e 92 c0 ae 88 ce b2 .....]F......... [ 420.621328][ T5118] 00000030: 00 00 00 00 27 32 e3 f9 03 00 00 00 00 00 00 0a ....'2.......... [ 420.630530][ T5118] 00000040: 00 00 00 40 00 00 3f c0 00 00 00 00 00 00 00 00 ...@..?......... [ 420.643188][ T5118] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 420.653562][ T5118] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 420.662739][ T5118] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 420.728336][ T3304] XFS (loop2): metadata I/O error in "xfs_btree_read_buf_block+0x354/0x5c0" at daddr 0x4 len 2 error 74 [ 420.866156][ T7090] XFS (loop2): Quotacheck: Unsuccessful (Error -117): Disabling quotas. [ 420.915086][ T5139] XFS (loop2): Metadata CRC error detected at xfs_allocbt_read_verify+0xae/0x2f0, xfs_bnobt block 0x4 [ 420.926994][ T5139] XFS (loop2): Unmount and run xfs_repair [ 420.933096][ T5139] XFS (loop2): First 128 bytes of corrupted metadata buffer: [ 420.940284][ T5079] Bluetooth: hci0: command 0x0406 tx timeout [ 420.940731][ T5139] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff AB3B............ [ 420.959563][ T5139] 00000010: 00 00 00 00 00 00 00 04 00 00 00 01 00 00 00 10 ................ [ 420.970037][ T5139] 00000020: d6 f6 9d bd 8c 5d 46 be b8 8e 92 c0 ae 88 ce b2 .....]F......... [ 420.979119][ T5139] 00000030: 00 00 00 00 27 32 e3 f9 03 00 00 00 00 00 00 0a ....'2.......... [ 420.988388][ T5139] 00000040: 00 00 00 40 00 00 3f c0 00 00 00 00 00 00 00 00 ...@..?......... [ 420.997636][ T5139] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 421.006884][ T5139] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 421.016179][ T5139] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 421.025565][ T7090] XFS (loop2): metadata I/O error in "xfs_btree_read_buf_block+0x354/0x5c0" at daddr 0x4 len 2 error 74 [ 421.103897][ T7090] XFS (loop2): Metadata I/O Error (0x1) detected at xfs_trans_read_buf_map+0x766/0xf20 (fs/xfs/xfs_trans_buf.c:296). Shutting down filesystem. [ 421.119138][ T7090] XFS (loop2): Please unmount the filesystem and rectify the problem(s) [ 421.266638][ T7092] XFS (loop4): Ending clean mount [ 421.327381][ T7092] XFS (loop4): Quotacheck needed: Please wait. [ 421.445934][ T7092] XFS (loop4): Quotacheck: Done. [ 421.488706][ T5126] usb 3-1: new high-speed USB device number 14 using dummy_hcd [ 421.840375][ T5126] usb 3-1: Using ep0 maxpacket: 8 [ 421.931125][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 421.938828][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 421.946883][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 421.954628][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 421.962478][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 421.982046][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 421.989724][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 421.997457][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 422.005219][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 422.012975][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 422.021049][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 422.028694][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 422.036417][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 422.044557][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 422.052309][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 422.060024][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 422.067665][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 422.081552][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 422.089197][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 422.098654][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 422.106396][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 422.114147][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 422.121864][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 422.129518][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 422.137560][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 422.145290][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 422.153036][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 422.160856][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 422.168517][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 422.182460][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 422.191858][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 422.199514][ T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 422.294084][ T10] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz0] on syz0 [ 422.390298][ T5126] usb 3-1: unable to read config index 0 descriptor/all [ 422.397711][ T5126] usb 3-1: can't read configurations, error -71 [ 422.444555][ T5401] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 422.553355][ T5425] XFS (loop2): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 422.700823][ T7131] warning: `syz-executor.0' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 423.030584][ T3304] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 423.120648][ T43] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 423.181024][ T3304] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 423.277427][ T3304] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 423.449531][ T3304] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 423.524566][ T7133] loop1: detected capacity change from 0 to 4096 [ 423.532605][ T43] usb 1-1: config 0 has no interfaces? [ 423.538372][ T43] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 423.547848][ T43] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 423.566449][ T7133] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512). [ 423.632953][ T43] usb 1-1: config 0 descriptor?? [ 423.856080][ T7133] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 423.864620][ T3304] bridge_slave_1: left allmulticast mode [ 423.870841][ T3304] bridge_slave_1: left promiscuous mode [ 423.877405][ T3304] bridge0: port 2(bridge_slave_1) entered disabled state [ 423.887453][ T7133] ntfs3: loop1: Failed to load $Extend (-22). [ 423.902774][ T7133] ntfs3: loop1: Failed to initialize $Extend. [ 423.942325][ T3304] bridge_slave_0: left allmulticast mode [ 423.948368][ T3304] bridge_slave_0: left promiscuous mode [ 423.955363][ T3304] bridge0: port 1(bridge_slave_0) entered disabled state [ 424.028148][ T29] audit: type=1800 audit(1717779186.433:38): pid=7133 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=33 res=0 errno=0 [ 424.086757][ T43] usb 1-1: USB disconnect, device number 12 [ 424.467663][ T7141] loop3: detected capacity change from 0 to 8 [ 424.562392][ T7141] squashfs image failed sanity check [ 424.611728][ T3304] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 424.672773][ T3304] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 424.715560][ T3304] bond0 (unregistering): Released all slaves [ 425.450932][ T7153] loop4: detected capacity change from 0 to 64 [ 425.529178][ T7153] hfs: unable to parse mount options [ 425.595966][ T3304] hsr_slave_0: left promiscuous mode [ 425.632413][ T3304] hsr_slave_1: left promiscuous mode [ 426.148674][ T7156] loop0: detected capacity change from 0 to 512 [ 426.290634][ T3304] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 426.298483][ T3304] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 426.360821][ T3304] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 426.368540][ T3304] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 426.380139][ T7154] loop3: detected capacity change from 0 to 4096 [ 426.423578][ T7154] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 426.485393][ T3304] veth1_macvtap: left promiscuous mode [ 426.491341][ T3304] veth0_macvtap: left promiscuous mode [ 426.497231][ T3304] veth1_vlan: left promiscuous mode [ 426.503014][ T3304] veth0_vlan: left promiscuous mode [ 426.531851][ T7153] loop4: detected capacity change from 0 to 32768 [ 426.602550][ T7156] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 426.653159][ T7156] EXT4-fs (loop0): 1 truncate cleaned up [ 426.659332][ T7156] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 426.728373][ T5087] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 426.737679][ T5087] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 426.747131][ T7153] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 426.969225][ T5087] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 426.985785][ T5087] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 427.005370][ T5087] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 427.019764][ T5087] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 427.272669][ T5497] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 427.528841][ T7153] XFS (loop4): Ending clean mount [ 427.543794][ T7153] XFS (loop4): Quotacheck needed: Please wait. [ 427.569175][ T3304] team0 (unregistering): Port device team_slave_1 removed [ 427.648009][ T7153] XFS (loop4): Quotacheck: Done. [ 427.653741][ T3304] team0 (unregistering): Port device team_slave_0 removed [ 427.967784][ T7173] loop0: detected capacity change from 0 to 256 [ 428.452328][ T29] audit: type=1800 audit(1717779190.833:39): pid=7173 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file1" dev="loop0" ino=1048635 res=0 errno=0 [ 428.473998][ T29] audit: type=1800 audit(1717779190.853:40): pid=7173 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file1" dev="loop0" ino=1048635 res=0 errno=0 [ 428.496395][ T29] audit: type=1800 audit(1717779190.913:41): pid=7173 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file2" dev="loop0" ino=1048636 res=0 errno=0 [ 428.594336][ T29] audit: type=1800 audit(1717779190.983:42): pid=7173 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file2" dev="loop0" ino=1048636 res=0 errno=0 [ 428.971894][ T5401] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 429.160807][ T5087] Bluetooth: hci0: command tx timeout [ 429.783693][ T7164] chnl_net:caif_netlink_parms(): no params data found [ 430.014139][ T5079] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 430.023914][ T5079] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 430.040930][ T5079] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 430.058381][ T5079] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 430.087750][ T5079] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 430.102107][ T5079] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 430.422117][ T7193] loop3: detected capacity change from 0 to 256 [ 430.458980][ T7187] loop0: detected capacity change from 0 to 8 [ 430.530437][ T7187] squashfs image failed sanity check [ 430.696511][ T7193] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 430.846861][ T7164] bridge0: port 1(bridge_slave_0) entered blocking state [ 430.854963][ T7164] bridge0: port 1(bridge_slave_0) entered disabled state [ 430.855929][ T7193] ------------[ cut here ]------------ [ 430.863810][ T7164] bridge_slave_0: entered allmulticast mode [ 430.867932][ T7193] WARNING: CPU: 0 PID: 7193 at mm/page_alloc.c:4551 __alloc_pages+0x62e/0xe70 [ 430.876760][ T7164] bridge_slave_0: entered promiscuous mode [ 430.889668][ T7193] Modules linked in: [ 430.897397][ T7193] CPU: 0 PID: 7193 Comm: syz-executor.3 Not tainted 6.9.0-syzkaller-02707-g614da38e2f7a #0 [ 430.907785][ T7193] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 430.918242][ T7193] RIP: 0010:__alloc_pages+0x62e/0xe70 [ 430.924030][ T7193] Code: a8 e9 43 02 00 00 44 89 f7 e8 ee 2f 15 00 e9 89 fa ff ff 48 c7 c7 c2 e7 90 91 e8 1d 23 15 00 c6 00 00 c6 05 b5 08 62 0f 01 90 <0f> 0b 90 e9 76 fa ff ff 89 7d c8 89 4d c4 e8 bf 2f 15 00 8b 4d c4 [ 430.944105][ T7193] RSP: 0018:ffff8881160976c0 EFLAGS: 00010282 [ 430.950671][ T7193] RAX: ffff88823fa587c2 RBX: 0000000000040d40 RCX: 000000023f0ba7c0 [ 430.958892][ T7193] RDX: ffff88823f0ba7c0 RSI: ffff88813fff9020 RDI: ffffffff9190e7c0 [ 430.967267][ T7193] RBP: ffff888116097790 R08: ffffea000000000f R09: 0000000000000000 [ 430.975597][ T7193] R10: ffff8881158976f0 R11: 0000000000000004 R12: 0000000000040d40 [ 430.990586][ T7193] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001 [ 430.998808][ T7193] FS: 00007f6041dde6c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 431.009781][ T7193] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 431.016799][ T7193] CR2: 0000000000000000 CR3: 000000011b5e4000 CR4: 00000000003506f0 [ 431.025145][ T7193] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 431.033842][ T7193] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 431.042248][ T7193] Call Trace: [ 431.045689][ T7193] [ 431.060420][ T7193] ? show_trace_log_lvl+0x3b1/0x500 [ 431.065975][ T7193] ? __kmalloc_large_node+0x11e/0x370 [ 431.071813][ T7193] ? show_regs+0x148/0x160 [ 431.076522][ T7193] ? __warn+0x2c2/0x770 [ 431.081067][ T7193] ? __alloc_pages+0x62e/0xe70 [ 431.092854][ T7193] ? report_bug+0x929/0xbd0 [ 431.099416][ T7193] ? __alloc_pages+0x62e/0xe70 [ 431.104585][ T7193] ? handle_bug+0x47/0x70 [ 431.109217][ T7193] ? exc_invalid_op+0x1f/0x50 [ 431.114322][ T7193] ? asm_exc_invalid_op+0x1f/0x30 [ 431.119673][ T7193] ? __alloc_pages+0x62e/0xe70 [ 431.124829][ T7193] ? kmsan_get_metadata+0x146/0x1d0 [ 431.130659][ T7193] ? kmsan_get_metadata+0x146/0x1d0 [ 431.136141][ T7193] __kmalloc_large_node+0x11e/0x370 [ 431.141738][ T7193] __kmalloc+0xab2/0x1060 [ 431.146333][ T7193] ? v9fs_fid_xattr_get+0x436/0x570 [ 431.151908][ T7193] ? smc_clc_match_eid+0x53/0x410 [ 431.157193][ T7193] ? v9fs_fid_get_acl+0xe9/0x370 [ 431.162619][ T7193] v9fs_fid_get_acl+0xe9/0x370 [ 431.167673][ T7193] v9fs_get_acl+0xd5/0x720 [ 431.174733][ T7193] v9fs_fid_iget_dotl+0x60e/0x7e0 [ 431.186744][ T7193] v9fs_mount+0xc0c/0x12b0 [ 431.198262][ T7193] legacy_get_tree+0x114/0x290 [ 431.205161][ T7193] ? __pfx_v9fs_mount+0x10/0x10 [ 431.210425][ T7193] ? __pfx_legacy_get_tree+0x10/0x10 [ 431.216017][ T7193] vfs_get_tree+0xa7/0x570 [ 431.221433][ T7193] ? mount_capable+0x97/0x120 [ 431.226407][ T7193] do_new_mount+0x71f/0x15e0 [ 431.231392][ T7193] ? kmsan_get_metadata+0x146/0x1d0 [ 431.236893][ T7193] path_mount+0x742/0x1f20 [ 431.238889][ T7164] bridge0: port 2(bridge_slave_1) entered blocking state [ 431.241630][ T7193] ? user_path_at_empty+0x325/0x3a0 [ 431.249122][ T7164] bridge0: port 2(bridge_slave_1) entered disabled state [ 431.254127][ T7193] __se_sys_mount+0x725/0x810 [ 431.261847][ T7164] bridge_slave_1: entered allmulticast mode [ 431.265986][ T7193] ? kmsan_get_metadata+0x146/0x1d0 [ 431.275346][ T7164] bridge_slave_1: entered promiscuous mode [ 431.277227][ T7193] __x64_sys_mount+0xe4/0x150 [ 431.296335][ T7193] x64_sys_call+0x2bf4/0x3b50 [ 431.303106][ T7193] do_syscall_64+0xcf/0x1e0 [ 431.307920][ T7193] ? clear_bhb_loop+0x25/0x80 [ 431.313073][ T7193] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 431.319293][ T7193] RIP: 0033:0x7f604107cf69 [ 431.324084][ T7193] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 431.331815][ T5079] Bluetooth: hci0: command tx timeout [ 431.343990][ T7193] RSP: 002b:00007f6041dde0c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 431.344137][ T7193] RAX: ffffffffffffffda RBX: 00007f60411b3f80 RCX: 00007f604107cf69 [ 431.366564][ T7193] RDX: 0000000020000b80 RSI: 00000000200003c0 RDI: 0000000000000000 [ 431.375352][ T7193] RBP: 00007f60410da6fe R08: 0000000020000500 R09: 0000000000000000 [ 431.383680][ T7193] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 431.398567][ T7193] R13: 000000000000000b R14: 00007f60411b3f80 R15: 00007fffae3f9e68 [ 431.408887][ T7193] [ 431.412202][ T7193] ---[ end trace 0000000000000000 ]--- [ 431.664403][ T7164] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 431.743300][ T7164] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 431.967882][ T7164] team0: Port device team_slave_0 added [ 431.993780][ T7164] team0: Port device team_slave_1 added [ 432.002268][ T7188] chnl_net:caif_netlink_parms(): no params data found [ 432.154666][ T5079] Bluetooth: hci1: command tx timeout [ 432.234964][ T7164] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 432.242236][ T7164] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 432.268750][ T7164] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 432.276715][ T7210] loop3: detected capacity change from 0 to 4096 [ 432.326509][ T7207] loop0: detected capacity change from 0 to 8 [ 432.396442][ T7214] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 432.421141][ T7207] squashfs image failed sanity check [ 432.439721][ T7164] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 432.447053][ T7164] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 432.473511][ T7164] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 432.782924][ T7164] hsr_slave_0: entered promiscuous mode [ 432.833048][ T7164] hsr_slave_1: entered promiscuous mode [ 432.865108][ T7164] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 432.874515][ T7164] Cannot create hsr debugfs directory [ 433.357616][ T7223] loop0: detected capacity change from 0 to 256 [ 433.410547][ T5079] Bluetooth: hci0: command tx timeout [ 433.508710][ T7223] fuse: Unknown parameter 'user_id00000000000000000000' [ 433.532009][ T7223] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 433.703472][ T7188] bridge0: port 1(bridge_slave_0) entered blocking state [ 433.711298][ T7188] bridge0: port 1(bridge_slave_0) entered disabled state [ 433.724752][ T7188] bridge_slave_0: entered allmulticast mode [ 433.734640][ T7188] bridge_slave_0: entered promiscuous mode [ 433.858174][ T3304] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 433.885678][ T7188] bridge0: port 2(bridge_slave_1) entered blocking state [ 433.897262][ T7188] bridge0: port 2(bridge_slave_1) entered disabled state [ 433.906284][ T7228] loop4: detected capacity change from 0 to 64 [ 433.907019][ T7188] bridge_slave_1: entered allmulticast mode [ 433.925406][ T7188] bridge_slave_1: entered promiscuous mode [ 433.932084][ T7228] hfs: unable to parse mount options [ 434.168291][ T3304] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 434.220575][ T5079] Bluetooth: hci1: command tx timeout [ 434.507609][ T3304] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 434.534465][ T7229] loop3: detected capacity change from 0 to 4096 [ 434.561358][ T7188] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 434.636089][ T7229] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 434.736551][ T3304] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 434.845522][ T7228] loop4: detected capacity change from 0 to 32768 [ 434.858017][ T7188] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 434.903027][ T7228] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 435.146271][ T7188] team0: Port device team_slave_0 added [ 435.186407][ T7188] team0: Port device team_slave_1 added [ 435.264110][ T3304] bridge_slave_1: left allmulticast mode [ 435.270259][ T3304] bridge_slave_1: left promiscuous mode [ 435.276816][ T3304] bridge0: port 2(bridge_slave_1) entered disabled state [ 435.317363][ T3304] bridge_slave_0: left allmulticast mode [ 435.323646][ T3304] bridge_slave_0: left promiscuous mode [ 435.333374][ T3304] bridge0: port 1(bridge_slave_0) entered disabled state [ 435.491590][ T5079] Bluetooth: hci0: command tx timeout [ 435.627423][ T7228] XFS (loop4): Ending clean mount [ 435.660662][ T7228] XFS (loop4): Quotacheck needed: Please wait. [ 435.746837][ T7228] XFS (loop4): Quotacheck: Done. [ 435.918599][ T3304] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 435.968785][ T3304] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 436.043481][ T3304] bond0 (unregistering): Released all slaves [ 436.171085][ T7248] fuse: Unknown parameter 'rO%¦EæU C×ootmode' [ 436.301856][ T5079] Bluetooth: hci1: command tx timeout [ 436.570755][ T7188] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 436.577924][ T7188] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 436.604366][ T7188] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 436.703977][ T5401] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 436.776663][ T7188] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 436.785039][ T7188] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 436.811425][ T7188] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 436.833280][ T7164] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 436.902614][ T7164] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 437.136934][ T7261] loop3: detected capacity change from 0 to 256 [ 437.166120][ T7256] loop0: detected capacity change from 0 to 8 [ 437.189373][ T7164] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 437.206531][ T7256] squashfs image failed sanity check [ 437.219641][ T7261] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 437.313785][ T7164] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 437.444777][ T3304] hsr_slave_0: left promiscuous mode [ 437.492347][ T3304] hsr_slave_1: left promiscuous mode [ 437.530749][ T3304] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 437.539542][ T3304] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 437.606492][ T3304] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 437.614604][ T3304] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 437.703674][ T3304] veth1_macvtap: left promiscuous mode [ 437.709446][ T3304] veth0_macvtap: left promiscuous mode [ 437.716904][ T3304] veth1_vlan: left promiscuous mode [ 437.722615][ T3304] veth0_vlan: left promiscuous mode [ 438.370098][ T5079] Bluetooth: hci1: command tx timeout [ 438.511902][ T7268] loop0: detected capacity change from 0 to 8 [ 438.526099][ T7268] squashfs image failed sanity check [ 438.689331][ T3304] team0 (unregistering): Port device team_slave_1 removed [ 438.728183][ T3304] team0 (unregistering): Port device team_slave_0 removed [ 439.022858][ T7188] hsr_slave_0: entered promiscuous mode [ 439.052965][ T7188] hsr_slave_1: entered promiscuous mode [ 439.103193][ T7188] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 439.111225][ T7188] Cannot create hsr debugfs directory [ 439.642751][ T10] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 440.100214][ T10] usb 1-1: config 1 has an invalid descriptor of length 29, skipping remainder of the config [ 440.110891][ T10] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 64, changing to 10 [ 440.122357][ T10] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024 [ 440.132823][ T10] usb 1-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 440.247713][ T7287] loop4: detected capacity change from 0 to 4096 [ 440.318805][ T7287] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512). [ 440.358715][ T7164] 8021q: adding VLAN 0 to HW filter on device bond0 [ 440.382168][ T10] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 440.391880][ T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 440.400662][ T10] usb 1-1: Product: syz [ 440.408976][ T10] usb 1-1: Manufacturer: syz [ 440.415127][ T10] usb 1-1: SerialNumber: syz [ 440.576265][ T7164] 8021q: adding VLAN 0 to HW filter on device team0 [ 440.670789][ T5118] bridge0: port 1(bridge_slave_0) entered blocking state [ 440.678464][ T5118] bridge0: port 1(bridge_slave_0) entered forwarding state [ 440.821881][ T5118] bridge0: port 2(bridge_slave_1) entered blocking state [ 440.829707][ T5118] bridge0: port 2(bridge_slave_1) entered forwarding state [ 440.831547][ T7285] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 441.036521][ T7188] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 441.165165][ T7188] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 441.275274][ T7188] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 441.345156][ T7188] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 441.697631][ T7285] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 441.966598][ T29] audit: type=1326 audit(1717779204.353:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7294 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=317 compat=0 ip=0x7f43be27cf69 code=0x0 [ 442.105478][ T10] cdc_ncm 1-1:1.0: bind() failure [ 442.122732][ T10] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found [ 442.130814][ T10] cdc_ncm 1-1:1.1: bind() failure [ 442.380510][ T5126] usb 1-1: USB disconnect, device number 13 [ 442.814585][ T7188] 8021q: adding VLAN 0 to HW filter on device bond0 [ 442.942131][ T7305] loop3: detected capacity change from 0 to 64 [ 443.005511][ T7188] 8021q: adding VLAN 0 to HW filter on device team0 [ 443.011282][ T7305] hfs: unable to parse mount options [ 443.106134][ T5126] bridge0: port 1(bridge_slave_0) entered blocking state [ 443.113924][ T5126] bridge0: port 1(bridge_slave_0) entered forwarding state [ 443.275260][ T5126] bridge0: port 2(bridge_slave_1) entered blocking state [ 443.283024][ T5126] bridge0: port 2(bridge_slave_1) entered forwarding state [ 443.849373][ T7164] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 443.903242][ T7305] loop3: detected capacity change from 0 to 32768 [ 443.904476][ T7302] loop4: detected capacity change from 0 to 4096 [ 443.938953][ T7188] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 443.950817][ T7188] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 444.030410][ T7302] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512). [ 444.066237][ T7305] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 444.178974][ T7314] loop0: detected capacity change from 0 to 256 [ 444.443550][ T7164] veth0_vlan: entered promiscuous mode [ 444.550374][ T7314] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 444.551806][ T7164] veth1_vlan: entered promiscuous mode [ 444.664215][ T7305] XFS (loop3): Ending clean mount [ 444.677805][ T7305] XFS (loop3): Quotacheck needed: Please wait. [ 444.835743][ T7305] XFS (loop3): Quotacheck: Done. [ 445.037578][ T7164] veth0_macvtap: entered promiscuous mode [ 445.091482][ T7164] veth1_macvtap: entered promiscuous mode [ 445.199365][ T7164] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 445.210257][ T7164] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 445.222982][ T7164] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 445.234870][ T7164] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 445.245067][ T7164] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 445.255842][ T7164] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 445.271003][ T7164] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 445.371086][ T7164] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 445.381932][ T7164] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 445.392040][ T7164] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 445.402786][ T7164] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 445.412984][ T7164] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 445.428675][ T7164] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 445.444877][ T7164] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 445.639397][ T7164] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 445.648996][ T7164] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 445.660202][ T7164] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 445.669226][ T7164] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 445.964582][ T6510] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 446.023308][ T7328] netlink: 'syz-executor.0': attribute type 64 has an invalid length. [ 446.035921][ T7328] A link change request failed with some changes committed already. Interface macsec0 may have been left with an inconsistent configuration, please check. [ 446.107597][ T7188] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 446.382296][ T7326] loop4: detected capacity change from 0 to 8 [ 446.418184][ T7326] squashfs image failed sanity check [ 446.596748][ T7188] veth0_vlan: entered promiscuous mode [ 446.708352][ T7188] veth1_vlan: entered promiscuous mode [ 447.032413][ T7188] veth0_macvtap: entered promiscuous mode [ 447.144183][ T7188] veth1_macvtap: entered promiscuous mode [ 447.292111][ T7188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 447.303550][ T7188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 447.313694][ T7188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 447.324470][ T7188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 447.334616][ T7188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 447.345433][ T7188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 447.355521][ T7188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 447.371323][ T7188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 447.387685][ T7188] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 447.451072][ T7188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 447.463504][ T7188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 447.478816][ T7188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 447.491010][ T7188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 447.503224][ T7188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 447.513971][ T7188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 447.524086][ T7188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 447.534788][ T7188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 447.549656][ T7188] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 447.745934][ T7188] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 447.755188][ T7188] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 447.764829][ T7188] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 447.773956][ T7188] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 448.364342][ T7357] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'. [ 449.460378][ T5128] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 449.599601][ T7364] loop4: detected capacity change from 0 to 4096 [ 449.634061][ T7364] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512). [ 449.831074][ T5128] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 449.841912][ T5128] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 449.966134][ T5128] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 449.977385][ T5128] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 449.986705][ T5128] usb 4-1: SerialNumber: syz [ 450.325515][ T7377] loop0: detected capacity change from 0 to 256 [ 450.372266][ T5128] usb 4-1: 0:2 : does not exist [ 450.377471][ T5128] usb 4-1: unit 120 not found! [ 450.383688][ T5128] usb 4-1: unit 102 not found! [ 450.528219][ T5128] usb 4-1: USB disconnect, device number 6 [ 450.582716][ T7377] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 450.706235][ T7383] loop4: detected capacity change from 0 to 64 [ 450.729119][ T7383] hfs: unable to parse mount options [ 451.691765][ T7383] loop4: detected capacity change from 0 to 32768 [ 451.727914][ T7383] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 451.984549][ T7404] loop0: detected capacity change from 0 to 512 [ 452.091817][ T7404] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 452.223113][ T7383] XFS (loop4): Ending clean mount [ 452.232452][ T7394] loop3: detected capacity change from 0 to 8 [ 452.250536][ T7383] XFS (loop4): Quotacheck needed: Please wait. [ 452.273558][ T7394] squashfs image failed sanity check [ 452.283279][ T7404] EXT4-fs (loop0): 1 orphan inode deleted [ 452.295355][ T7404] EXT4-fs (loop0): 1 truncate cleaned up [ 452.301440][ T7404] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 452.344269][ T7383] XFS (loop4): Quotacheck: Done. [ 452.441144][ T7404] EXT4-fs error (device loop0): ext4_lookup:1854: inode #15: comm syz-executor.0: iget: bad extra_isize 46 (inode size 256) [ 452.487223][ T7404] EXT4-fs (loop0): Remounting filesystem read-only [ 452.720604][ T3443] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 452.728668][ T3443] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 452.856715][ T3488] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 452.864870][ T3488] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 453.290696][ T5401] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 453.450214][ T29] audit: type=1800 audit(1717779215.823:44): pid=7417 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1954 res=0 errno=0 [ 453.471832][ T29] audit: type=1800 audit(1717779215.833:45): pid=7417 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1954 res=0 errno=0 [ 453.492898][ T29] audit: type=1800 audit(1717779215.833:46): pid=7417 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1954 res=0 errno=0 [ 454.147036][ T3304] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 454.147132][ T3304] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 454.319210][ T5118] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 454.319308][ T5118] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 454.363355][ T5497] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 455.021078][ T7425] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'. [ 455.241404][ T29] audit: type=1326 audit(1717779217.623:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7423 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7faa6487cf69 code=0x0 [ 455.770330][ T5126] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 456.068013][ T5126] usb 1-1: Using ep0 maxpacket: 32 [ 456.231765][ T5126] usb 1-1: config index 0 descriptor too short (expected 156, got 27) [ 456.240640][ T5126] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 456.421232][ T5126] usb 1-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 456.430777][ T5126] usb 1-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 456.439492][ T5126] usb 1-1: Product: syz [ 456.444011][ T5126] usb 1-1: Manufacturer: syz [ 456.448878][ T5126] usb 1-1: SerialNumber: syz [ 456.475219][ T5126] usb 1-1: config 0 descriptor?? [ 456.566479][ T5126] ldusb 1-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 456.608385][ T5126] ldusb 1-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 456.981760][ T7448] loop4: detected capacity change from 0 to 256 [ 457.115581][ T7448] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 457.125314][ T7446] loop1: detected capacity change from 0 to 4096 [ 457.162950][ T7446] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 457.701934][ T7456] loop4: detected capacity change from 0 to 64 [ 457.744754][ T7456] hfs: unable to parse mount options [ 458.213487][ T7453] loop3: detected capacity change from 0 to 8 [ 458.299137][ T7453] squashfs image failed sanity check [ 458.436010][ T7461] netlink: 'syz-executor.1': attribute type 22 has an invalid length. [ 458.624971][ T7456] loop4: detected capacity change from 0 to 32768 [ 458.664599][ T10] usb 1-1: USB disconnect, device number 14 [ 458.702356][ T10] ldusb 1-1:0.0: LD USB Device #0 now disconnected [ 458.724366][ T7456] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 459.176508][ T7473] loop1: detected capacity change from 0 to 256 [ 459.187710][ T7456] XFS (loop4): Ending clean mount [ 459.198472][ T7471] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 459.269444][ T7456] XFS (loop4): Quotacheck needed: Please wait. [ 459.399436][ T7456] XFS (loop4): Quotacheck: Done. [ 459.438251][ T7478] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. [ 459.732311][ T29] audit: type=1326 audit(1717779222.123:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7474 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f604107cf69 code=0x0 [ 460.419990][ T5401] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 460.713695][ T7496] loop2: detected capacity change from 0 to 256 [ 460.854889][ T7496] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 461.540472][ T5118] usb 1-1: new high-speed USB device number 15 using dummy_hcd [ 461.696856][ T7502] loop3: detected capacity change from 0 to 4096 [ 461.811476][ T5118] usb 1-1: Using ep0 maxpacket: 32 [ 461.818113][ T7502] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 461.941238][ T5118] usb 1-1: config index 0 descriptor too short (expected 156, got 27) [ 461.950118][ T5118] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 462.181784][ T5118] usb 1-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 462.191545][ T5118] usb 1-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 462.200476][ T5118] usb 1-1: Product: syz [ 462.204875][ T5118] usb 1-1: Manufacturer: syz [ 462.209708][ T5118] usb 1-1: SerialNumber: syz [ 462.232086][ T5118] usb 1-1: config 0 descriptor?? [ 462.320105][ T5118] ldusb 1-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 462.355255][ T5118] ldusb 1-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 462.786873][ T7515] loop2: detected capacity change from 0 to 8 [ 462.831318][ T7522] capability: warning: `syz-executor.4' uses 32-bit capabilities (legacy support in use) [ 462.858107][ T7515] squashfs image failed sanity check [ 463.337403][ T7530] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'. [ 463.504122][ T7533] loop4: detected capacity change from 0 to 64 [ 463.534579][ T7533] hfs: unable to parse mount options [ 463.577724][ T29] audit: type=1326 audit(1717779226.033:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7527 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7faa6487cf69 code=0x0 [ 463.586162][ T7534] loop2: detected capacity change from 0 to 64 [ 463.669500][ T7534] hfs: unable to parse mount options [ 464.464683][ T7537] loop3: detected capacity change from 0 to 32768 [ 464.597659][ T7533] loop4: detected capacity change from 0 to 32768 [ 464.635296][ T7537] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 464.844927][ T7533] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 464.912018][ T1230] ieee802154 phy0 wpan0: encryption failed: -22 [ 464.918731][ T1230] ieee802154 phy1 wpan1: encryption failed: -22 [ 465.219533][ T5118] usb 1-1: USB disconnect, device number 15 [ 465.346143][ T5118] ldusb 1-1:0.0: LD USB Device #0 now disconnected [ 465.442862][ T7534] loop2: detected capacity change from 0 to 32768 [ 465.528310][ T7537] XFS (loop3): Ending clean mount [ 465.544330][ T7534] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 465.571291][ T7537] XFS (loop3): Quotacheck needed: Please wait. [ 465.788277][ T7537] XFS (loop3): Quotacheck: Done. [ 466.326801][ T7560] loop0: detected capacity change from 0 to 32768 [ 466.436558][ T7533] XFS (loop4): Ending clean mount [ 466.513000][ T7533] XFS (loop4): Quotacheck needed: Please wait. [ 466.581360][ T7534] XFS (loop2): Ending clean mount [ 466.607639][ T7534] XFS (loop2): Quotacheck needed: Please wait. [ 466.667777][ T7533] XFS (loop4): Quotacheck: Done. [ 466.799618][ T7534] XFS (loop2): Quotacheck: Done. [ 466.896839][ T7164] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 466.947210][ T5401] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 467.235623][ T6510] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 468.026704][ T7572] loop1: detected capacity change from 0 to 8 [ 468.071459][ T7572] squashfs image failed sanity check [ 468.488854][ T7578] netlink: 'syz-executor.4': attribute type 1 has an invalid length. [ 468.748750][ T7584] loop0: detected capacity change from 0 to 256 [ 468.896862][ T7584] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 468.981766][ T7587] netlink: 256 bytes leftover after parsing attributes in process `syz-executor.1'. [ 469.416866][ T7586] loop2: detected capacity change from 0 to 4096 [ 469.462792][ T7586] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 469.756534][ T7596] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'. [ 469.844780][ T5128] usb 1-1: new high-speed USB device number 16 using dummy_hcd [ 469.991499][ T29] audit: type=1326 audit(1717779232.393:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7593 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7faa6487cf69 code=0x0 [ 470.195073][ T5128] usb 1-1: Using ep0 maxpacket: 32 [ 470.337762][ T5128] usb 1-1: config index 0 descriptor too short (expected 156, got 27) [ 470.346250][ T7604] loop4: detected capacity change from 0 to 64 [ 470.352101][ T7604] hfs: unable to parse mount options [ 470.352885][ T5128] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 470.572034][ T5128] usb 1-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 470.581612][ T5128] usb 1-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 470.590384][ T5128] usb 1-1: Product: syz [ 470.594760][ T5128] usb 1-1: Manufacturer: syz [ 470.599568][ T5128] usb 1-1: SerialNumber: syz [ 470.731087][ T5128] usb 1-1: config 0 descriptor?? [ 470.786427][ T5128] ldusb 1-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 470.875686][ T5128] ldusb 1-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 471.046648][ T7606] loop2: detected capacity change from 0 to 64 [ 471.113453][ T7606] hfs: unable to parse mount options [ 471.223355][ T7604] loop4: detected capacity change from 0 to 32768 [ 472.077886][ T7606] loop2: detected capacity change from 0 to 32768 [ 472.107706][ T7604] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 472.123076][ T7606] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 472.549106][ T7604] XFS (loop4): Ending clean mount [ 472.582270][ T7604] XFS (loop4): Quotacheck needed: Please wait. [ 472.614964][ T5128] usb 1-1: USB disconnect, device number 16 [ 472.621499][ T7606] XFS (loop2): Ending clean mount [ 472.636803][ T5128] ldusb 1-1:0.0: LD USB Device #0 now disconnected [ 472.662025][ T7606] XFS (loop2): Quotacheck needed: Please wait. [ 472.730854][ T7604] XFS (loop4): Quotacheck: Done. [ 472.882805][ T7606] XFS (loop2): Quotacheck: Done. [ 473.048636][ T7632] loop0: detected capacity change from 0 to 512 [ 473.114129][ T7632] ext2: Unknown parameter 'mask' [ 473.843053][ T7641] loop1: detected capacity change from 0 to 8 [ 473.857385][ T5401] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 473.896178][ T7641] squashfs image failed sanity check [ 474.023890][ T7643] loop3: detected capacity change from 0 to 256 [ 474.117414][ T7643] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 474.316480][ T7164] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 475.122967][ T7653] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'. [ 475.318632][ T7656] dvmrp2: entered allmulticast mode [ 475.354557][ T7649] loop1: detected capacity change from 0 to 4096 [ 475.361483][ T29] audit: type=1326 audit(1717779237.733:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7650 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f53a3a7cf69 code=0x0 [ 475.417467][ T7657] 9pnet_fd: Insufficient options for proto=fd [ 475.540836][ T7649] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 475.816098][ T29] audit: type=1326 audit(1717779238.273:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7658 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43be27cf69 code=0x7ffc0000 [ 475.845130][ T29] audit: type=1326 audit(1717779238.273:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7658 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f43be27cf69 code=0x7ffc0000 [ 475.870225][ T29] audit: type=1326 audit(1717779238.273:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7658 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43be27cf69 code=0x7ffc0000 [ 475.894227][ T29] audit: type=1326 audit(1717779238.273:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7658 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f43be27cf69 code=0x7ffc0000 [ 475.917614][ T29] audit: type=1326 audit(1717779238.283:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7658 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43be27cf69 code=0x7ffc0000 [ 475.946794][ T29] audit: type=1326 audit(1717779238.283:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7658 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f43be27cf69 code=0x7ffc0000 [ 475.971666][ T29] audit: type=1326 audit(1717779238.283:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7658 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43be27cf69 code=0x7ffc0000 [ 475.994865][ T29] audit: type=1326 audit(1717779238.283:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7658 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f43be27cf69 code=0x7ffc0000 [ 476.018040][ T29] audit: type=1326 audit(1717779238.283:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7658 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43be27cf69 code=0x7ffc0000 [ 477.436439][ T7671] loop2: detected capacity change from 0 to 32768 [ 477.443203][ T787] usb 1-1: new high-speed USB device number 17 using dummy_hcd [ 477.917382][ T7694] loop3: detected capacity change from 0 to 64 [ 477.931553][ T787] usb 1-1: Using ep0 maxpacket: 32 [ 477.969795][ T7694] hfs: unable to parse mount options [ 477.971097][ T7671] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 477.987622][ T7689] netlink: 830 bytes leftover after parsing attributes in process `syz-executor.4'. [ 478.051252][ T787] usb 1-1: config index 0 descriptor too short (expected 156, got 27) [ 478.051419][ T787] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 478.823659][ T7671] XFS (loop2): Ending clean mount [ 478.859702][ T7694] loop3: detected capacity change from 0 to 32768 [ 478.936621][ T7694] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 478.993497][ T787] usb 1-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 479.003002][ T787] usb 1-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 479.014191][ T787] usb 1-1: Product: syz [ 479.019385][ T787] usb 1-1: Manufacturer: syz [ 479.024305][ T787] usb 1-1: SerialNumber: syz [ 479.102860][ T787] usb 1-1: config 0 descriptor?? [ 479.122958][ T7164] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 479.147364][ T787] ldusb 1-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 479.232708][ T787] ldusb 1-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 479.379799][ T787] usb 1-1: USB disconnect, device number 17 [ 479.390688][ T787] ldusb 1-1:0.0: LD USB Device #0 now disconnected [ 479.444113][ T7694] XFS (loop3): Ending clean mount [ 479.470920][ T7694] XFS (loop3): Quotacheck needed: Please wait. [ 479.500843][ T5128] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 479.543985][ T7694] XFS (loop3): Quotacheck: Done. [ 479.831753][ T7709] loop1: detected capacity change from 0 to 8 [ 479.871187][ T7709] squashfs image failed sanity check [ 479.937229][ T5128] usb 5-1: config index 0 descriptor too short (expected 113, got 72) [ 480.155591][ T5128] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 480.165224][ T5128] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 480.173695][ T5128] usb 5-1: Product: syz [ 480.178100][ T5128] usb 5-1: Manufacturer: syz [ 480.183066][ T5128] usb 5-1: SerialNumber: syz [ 480.306233][ T5128] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 480.718153][ T6510] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 480.765887][ T7719] loop2: detected capacity change from 0 to 256 [ 480.997943][ T7719] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 481.120649][ T10] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 481.360688][ T7717] loop0: detected capacity change from 0 to 40427 [ 481.404020][ T7717] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 481.412245][ T7717] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 481.508307][ T7717] F2FS-fs (loop0): Found nat_bits in checkpoint [ 481.836422][ T7717] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 481.843982][ T7717] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 482.024346][ T7721] loop1: detected capacity change from 0 to 32768 [ 482.951746][ T7721] loop1: detected capacity change from 0 to 256 [ 483.092667][ T10] usb 5-1: Service connection timeout for: 256 [ 483.099300][ T10] ath9k_htc 5-1:1.0: ath9k_htc: Unable to initialize HTC services [ 483.161441][ T787] usb 5-1: USB disconnect, device number 11 [ 483.243405][ T10] ath9k_htc: Failed to initialize the device [ 483.286454][ T787] usb 5-1: ath9k_htc: USB layer deinitialized [ 483.533183][ T7729] loop2: detected capacity change from 0 to 4096 [ 483.568644][ T7729] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 484.595546][ T7744] loop3: detected capacity change from 0 to 16 [ 484.620311][ T5118] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 484.630155][ T7744] erofs: (device loop3): mounted with root inode @ nid 36. [ 484.911919][ T5118] usb 5-1: Using ep0 maxpacket: 16 [ 484.969503][ T7748] usb usb8: check_ctrlrecip: process 7748 (syz-executor.0) requesting ep 01 but needs 81 [ 484.980548][ T7748] usb usb8: usbfs: process 7748 (syz-executor.0) did not claim interface 0 before use [ 485.002221][ T7749] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'. [ 485.081094][ T5118] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 485.092885][ T5118] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 485.103198][ T5118] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 485.116539][ T5118] usb 5-1: New USB device found, idVendor=1b1c, idProduct=1b02, bcdDevice= 0.00 [ 485.121718][ T7751] loop3: detected capacity change from 0 to 256 [ 485.125874][ T5118] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 485.192248][ T5118] usb 5-1: config 0 descriptor?? [ 485.410354][ T7754] loop0: detected capacity change from 0 to 64 [ 485.434317][ T7754] hfs: unable to parse mount options [ 485.695050][ T5118] corsair 0003:1B1C:1B02.0003: unknown main item tag 0x0 [ 485.760743][ T43] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 485.838435][ T5118] corsair 0003:1B1C:1B02.0003: hidraw0: USB HID v0.00 Device [HID 1b1c:1b02] on usb-dummy_hcd.4-1/input0 [ 486.364858][ T7754] loop0: detected capacity change from 0 to 32768 [ 486.623359][ T7754] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 487.157586][ T7757] loop3: detected capacity change from 0 to 8 [ 487.168942][ T7757] squashfs image failed sanity check [ 487.224119][ T7774] loop2: detected capacity change from 0 to 256 [ 487.264844][ T7774] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 487.639632][ T7754] XFS (loop0): Ending clean mount [ 487.666062][ T7754] XFS (loop0): Quotacheck needed: Please wait. [ 487.781021][ T7754] XFS (loop0): Quotacheck: Done. [ 489.626319][ T7779] loop1: detected capacity change from 0 to 32768 [ 489.688649][ T7779] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (7779) [ 489.718105][ T7779] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 489.728734][ T7779] BTRFS info (device loop1): using sha256 (sha256-generic) checksum algorithm [ 489.740320][ T7779] BTRFS info (device loop1): using free-space-tree [ 490.616662][ T5118] corsair 0003:1B1C:1B02.0003: Failed to get K90 initial state (error -71). [ 490.630572][ T5118] usb 5-1: USB disconnect, device number 12 [ 490.727826][ T5497] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 490.743923][ T7188] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 491.021885][ T7799] loop2: detected capacity change from 0 to 1024 [ 491.107866][ T7799] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 491.625980][ T7164] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 492.512640][ T7815] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'. [ 492.714644][ T7820] loop4: detected capacity change from 0 to 256 [ 492.918502][ T7820] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 493.186723][ T7817] loop0: detected capacity change from 0 to 4096 [ 493.219754][ T7817] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 493.872070][ T7830] loop2: detected capacity change from 0 to 512 [ 493.947597][ T7830] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz-executor.2: bg 0: block 393: padding at end of block bitmap is not set [ 494.000107][ T7830] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6537: Corrupt filesystem [ 494.049174][ T7830] EXT4-fs (loop2): 2 truncates cleaned up [ 494.057464][ T7830] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 494.145976][ T7823] loop4: detected capacity change from 0 to 8 [ 494.194499][ T7823] squashfs image failed sanity check [ 494.299787][ T7164] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 494.421009][ T7840] loop0: detected capacity change from 0 to 64 [ 494.464424][ T7840] hfs: unable to parse mount options [ 495.417269][ T7840] loop0: detected capacity change from 0 to 32768 [ 495.522998][ T7840] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 495.613498][ T7848] loop2: detected capacity change from 0 to 4096 [ 495.796235][ T7864] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 495.962037][ T7848] NILFS (loop2): inode bitmap is inconsistent for reserved inodes [ 495.970733][ T7848] NILFS (loop2): repaired inode bitmap for reserved inodes [ 495.995466][ T7840] XFS (loop0): Ending clean mount [ 496.059686][ T7840] XFS (loop0): Quotacheck needed: Please wait. [ 496.140587][ T7840] XFS (loop0): Quotacheck: Done. [ 496.507136][ T7871] loop3: detected capacity change from 0 to 512 [ 496.600565][ T7871] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e01c, mo2=0002] [ 496.609289][ T7871] System zones: 1-12 [ 496.637961][ T7871] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz-executor.3: invalid indirect mapped block 1 (level 1) [ 496.692075][ T7871] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz-executor.3: invalid indirect mapped block 7 (level 2) [ 496.736105][ T7874] loop1: detected capacity change from 0 to 256 [ 496.748806][ T7871] EXT4-fs (loop3): 1 truncate cleaned up [ 496.755010][ T7871] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 497.018619][ T7874] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 497.113580][ T5497] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 497.157962][ T7878] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'. [ 497.257643][ T6510] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 497.690772][ T7885] Bluetooth: MGMT ver 1.22 [ 497.729489][ T7884] loop3: detected capacity change from 0 to 512 [ 497.896500][ T7884] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz-executor.3: bg 0: block 393: padding at end of block bitmap is not set [ 498.010804][ T7884] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6537: Corrupt filesystem [ 498.038707][ T7884] EXT4-fs (loop3): 2 truncates cleaned up [ 498.045397][ T7884] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 498.395347][ T29] kauditd_printk_skb: 14 callbacks suppressed [ 498.395426][ T29] audit: type=1800 audit(1717779260.853:75): pid=7889 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1961 res=0 errno=0 [ 498.422993][ T29] audit: type=1800 audit(1717779260.853:76): pid=7889 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1961 res=0 errno=0 [ 498.820558][ T43] usb 3-1: new high-speed USB device number 16 using dummy_hcd [ 499.222738][ T43] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 499.233309][ T43] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 499.352755][ T43] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 499.362620][ T43] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 499.371070][ T43] usb 3-1: SerialNumber: syz [ 499.726494][ T7891] loop0: detected capacity change from 0 to 4096 [ 499.790203][ T7891] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 500.892972][ T6510] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 501.470179][ T43] usb 3-1: 0:2 : does not exist [ 501.475359][ T43] usb 3-1: unit 5: unexpected type 0x09 [ 501.521699][ T5139] usb 1-1: new high-speed USB device number 18 using dummy_hcd [ 501.627478][ T43] usb 3-1: USB disconnect, device number 16 [ 501.925004][ T5139] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 501.936421][ T5139] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 501.949045][ T5139] usb 1-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00 [ 501.959258][ T5139] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 502.008191][ T5139] usb 1-1: config 0 descriptor?? [ 502.395028][ T7919] loop3: detected capacity change from 0 to 256 [ 502.486588][ T7919] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 502.524685][ T5139] cm6533_jd 0003:0D8C:0022.0004: unknown main item tag 0x0 [ 502.532761][ T5139] cm6533_jd 0003:0D8C:0022.0004: unknown main item tag 0x0 [ 502.617252][ T5139] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:0D8C:0022.0004/input/input36 [ 502.657955][ T7921] loop2: detected capacity change from 0 to 1024 [ 502.723335][ T5139] cm6533_jd 0003:0D8C:0022.0004: input,hiddev0,hidraw0: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.0-1/input0 [ 502.765802][ T7903] netlink: 'syz-executor.0': attribute type 3 has an invalid length. [ 502.775258][ T7903] netlink: 666 bytes leftover after parsing attributes in process `syz-executor.0'. [ 502.787628][ T7921] hfsplus: failed to load root directory [ 502.894296][ T43] usb 1-1: USB disconnect, device number 18 [ 503.835517][ T7931] loop3: detected capacity change from 0 to 4096 [ 503.889406][ T7931] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 503.964641][ T7944] loop0: detected capacity change from 0 to 256 [ 505.007241][ T7955] program syz-executor.0 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 505.360786][ T7962] loop2: detected capacity change from 0 to 256 [ 505.405061][ T10] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 505.470980][ T7962] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 505.690104][ T10] usb 2-1: Using ep0 maxpacket: 8 [ 505.871692][ T10] usb 2-1: config 135 has an invalid interface number: 230 but max is 0 [ 505.880417][ T10] usb 2-1: config 135 has an invalid descriptor of length 103, skipping remainder of the config [ 505.891222][ T10] usb 2-1: config 135 has no interface number 0 [ 505.897736][ T10] usb 2-1: config 135 interface 230 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3 [ 506.101053][ T7969] loop2: detected capacity change from 0 to 16 [ 506.114713][ T10] usb 2-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=3f.3a [ 506.116847][ T7965] loop0: detected capacity change from 0 to 4096 [ 506.124264][ T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 506.124401][ T10] usb 2-1: Product: syz [ 506.124508][ T10] usb 2-1: Manufacturer: syz [ 506.124613][ T10] usb 2-1: SerialNumber: syz [ 506.163258][ T7969] erofs: (device loop2): mounted with root inode @ nid 36. [ 506.242851][ T7965] NILFS (loop0): unsupported revision (superblock rev.=1.0, current rev.=2.0). Please check the version of mkfs.nilfs(2). [ 507.890187][ T5087] Bluetooth: hci5: command 0x0406 tx timeout [ 508.007739][ T5139] usb 2-1: USB disconnect, device number 8 [ 508.017739][ T5079] Bluetooth: hci2: unexpected event for opcode 0x0c2d [ 508.025213][ T5126] usb 1-1: new high-speed USB device number 19 using dummy_hcd [ 509.127269][ T7987] loop2: detected capacity change from 0 to 40427 [ 509.197636][ T7987] F2FS-fs (loop2): Found nat_bits in checkpoint [ 509.492297][ T7990] loop3: detected capacity change from 0 to 4096 [ 509.503191][ T7987] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 509.545655][ T7990] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 509.575370][ T8000] netlink: 'syz-executor.1': attribute type 22 has an invalid length. [ 509.702226][ T5126] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 509.713237][ T5126] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 509.724436][ T7164] syz-executor.2: attempt to access beyond end of device [ 509.724436][ T7164] loop2: rw=2049, sector=45096, nr_sectors = 16 limit=40427 [ 509.951282][ T5126] usb 1-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=48.99 [ 509.960841][ T5126] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 509.969091][ T5126] usb 1-1: Product: syz [ 509.973667][ T5126] usb 1-1: Manufacturer: syz [ 509.978483][ T5126] usb 1-1: SerialNumber: syz [ 509.992888][ T8002] loop4: detected capacity change from 0 to 256 [ 510.066230][ T5126] usb 1-1: config 0 descriptor?? [ 510.185403][ T8002] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 510.383913][ T7979] netlink: 'syz-executor.0': attribute type 1 has an invalid length. [ 510.392567][ T7979] netlink: 228 bytes leftover after parsing attributes in process `syz-executor.0'. [ 510.723730][ T7979] loop0: detected capacity change from 0 to 2048 [ 510.818715][ T7979] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 510.926390][ T3106] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 511.001825][ T7979] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 511.027965][ T5126] usb 1-1: USB disconnect, device number 19 [ 511.112973][ T3106] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 511.296787][ T3106] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 511.441515][ T3106] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 511.796891][ T3106] bridge_slave_1: left allmulticast mode [ 511.802957][ T3106] bridge_slave_1: left promiscuous mode [ 511.809528][ T3106] bridge0: port 2(bridge_slave_1) entered disabled state [ 511.911947][ T3106] bridge_slave_0: left allmulticast mode [ 511.917841][ T3106] bridge_slave_0: left promiscuous mode [ 511.924548][ T3106] bridge0: port 1(bridge_slave_0) entered disabled state [ 512.091748][ T5079] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 512.100565][ T5079] Bluetooth: hci2: Injecting HCI hardware error event [ 512.108160][ T5079] Bluetooth: hci2: hardware error 0x00 [ 512.523576][ T3106] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 512.549487][ T3106] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 512.580625][ T3106] bond0 (unregistering): Released all slaves [ 512.632236][ T8010] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'. [ 512.677335][ T8011] netlink: 'syz-executor.3': attribute type 4 has an invalid length. [ 512.685916][ T8011] netlink: 'syz-executor.3': attribute type 5 has an invalid length. [ 513.483297][ T8024] loop0: detected capacity change from 0 to 32768 [ 513.513014][ T8024] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (8024) [ 513.970993][ T8024] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 513.981677][ T8024] BTRFS info (device loop0): using sha256 (sha256-generic) checksum algorithm [ 513.993009][ T8024] BTRFS info (device loop0): using free-space-tree [ 514.165369][ T8028] loop4: detected capacity change from 0 to 2048 [ 514.304982][ T8028] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 514.340016][ T5079] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 514.756244][ T3106] hsr_slave_0: left promiscuous mode [ 515.949879][ C1] sched: RT throttling activated [ 515.952339][ T3106] hsr_slave_1: left promiscuous mode [ 516.448492][ T8045] loop2: detected capacity change from 0 to 40427 [ 516.461635][ T3106] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 516.469588][ T3106] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 516.531145][ T8024] BTRFS error (device loop0): open_ctree failed [ 516.621969][ T3106] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 516.629674][ T3106] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 516.663017][ T8045] F2FS-fs (loop2): Found nat_bits in checkpoint [ 516.692088][ T5087] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 516.701546][ T5087] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 516.710842][ T5087] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 516.723996][ T5087] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 516.735094][ T5087] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 516.744431][ T5087] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 516.907649][ T3106] veth1_macvtap: left promiscuous mode [ 516.913679][ T3106] veth0_macvtap: left promiscuous mode [ 516.919575][ T3106] veth1_vlan: left promiscuous mode [ 516.925267][ T3106] veth0_vlan: left promiscuous mode [ 516.960506][ T8045] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 517.926858][ T3106] team0 (unregistering): Port device team_slave_1 removed [ 517.958517][ T3106] team0 (unregistering): Port device team_slave_0 removed [ 517.995886][ T8057] loop4: detected capacity change from 0 to 4096 [ 518.085791][ T8057] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512). [ 518.554103][ T8062] loop0: detected capacity change from 0 to 256 [ 518.601404][ T7164] syz-executor.2: attempt to access beyond end of device [ 518.601404][ T7164] loop2: rw=2049, sector=45096, nr_sectors = 16 limit=40427 [ 518.769611][ T8062] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 518.787011][ T5079] Bluetooth: hci1: command tx timeout [ 519.651793][ T8050] chnl_net:caif_netlink_parms(): no params data found [ 520.450565][ T8070] loop3: detected capacity change from 0 to 32768 [ 520.473542][ T8070] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (8070) [ 520.506458][ T8070] BTRFS info (device loop3): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 520.517356][ T8070] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm [ 520.527782][ T8070] BTRFS info (device loop3): using free-space-tree [ 520.850320][ T5079] Bluetooth: hci1: command tx timeout [ 520.979312][ T8094] loop0: detected capacity change from 0 to 512 [ 521.126914][ T6510] BTRFS info (device loop3): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 521.212225][ T8094] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 521.225535][ T8094] ext4 filesystem being mounted at /root/syzkaller-testdir3576421030/syzkaller.S4MhVq/125/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 521.399329][ T8094] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4104: comm syz-executor.0: Allocating blocks 18-19 which overlap fs metadata [ 521.454927][ T8094] EXT4-fs error (device loop0): ext4_do_update_inode:5082: inode #2: comm syz-executor.0: corrupted inode contents [ 521.494590][ T8050] bridge0: port 1(bridge_slave_0) entered blocking state [ 521.509711][ T8050] bridge0: port 1(bridge_slave_0) entered disabled state [ 521.520329][ T8050] bridge_slave_0: entered allmulticast mode [ 521.529322][ T8050] bridge_slave_0: entered promiscuous mode [ 521.571943][ T8094] EXT4-fs error (device loop0): ext4_dirty_inode:5942: inode #2: comm syz-executor.0: mark_inode_dirty error [ 521.639633][ T8050] bridge0: port 2(bridge_slave_1) entered blocking state [ 521.647447][ T8050] bridge0: port 2(bridge_slave_1) entered disabled state [ 521.652017][ T8094] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4104: comm syz-executor.0: Allocating blocks 18-19 which overlap fs metadata [ 521.655342][ T8050] bridge_slave_1: entered allmulticast mode [ 521.677867][ T8050] bridge_slave_1: entered promiscuous mode [ 521.770369][ T8] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 521.937911][ T8050] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 522.025417][ T8050] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 522.071262][ T8] usb 5-1: Using ep0 maxpacket: 8 [ 522.237301][ T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 522.248639][ T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 522.258793][ T8] usb 5-1: New USB device found, idVendor=04d8, idProduct=f002, bcdDevice= 0.00 [ 522.268275][ T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 522.271813][ T5497] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 522.300502][ T8050] team0: Port device team_slave_0 added [ 522.337460][ T8] usb 5-1: config 0 descriptor?? [ 522.350030][ T8050] team0: Port device team_slave_1 added [ 522.660599][ T8050] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 522.667771][ T8050] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 522.696566][ T8050] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 522.830545][ T8] hid-picolcd 0003:04D8:F002.0005: unknown main item tag 0x0 [ 522.847983][ T8] hid-picolcd 0003:04D8:F002.0005: unknown main item tag 0x0 [ 522.930440][ T5079] Bluetooth: hci1: command tx timeout [ 522.952377][ T8050] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 522.959534][ T8050] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 522.985975][ T8050] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 523.107284][ T8102] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 523.116509][ T8102] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 523.223411][ T8] hid-picolcd 0003:04D8:F002.0005: No report with id 0xf3 found [ 523.231541][ T8] hid-picolcd 0003:04D8:F002.0005: No report with id 0xf4 found [ 523.332428][ T8102] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 523.341585][ T8102] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 523.548459][ T8] usb 5-1: USB disconnect, device number 13 [ 523.640008][ T8116] loop0: detected capacity change from 0 to 40427 [ 523.744631][ T8050] hsr_slave_0: entered promiscuous mode [ 523.775479][ T8116] F2FS-fs (loop0): Found nat_bits in checkpoint [ 523.832353][ T8050] hsr_slave_1: entered promiscuous mode [ 524.027438][ T8050] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 524.035528][ T8050] Cannot create hsr debugfs directory [ 524.049642][ T8116] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 524.081054][ T10] usb 3-1: new high-speed USB device number 17 using dummy_hcd [ 524.318435][ T5497] syz-executor.0: attempt to access beyond end of device [ 524.318435][ T5497] loop0: rw=2049, sector=45096, nr_sectors = 16 limit=40427 [ 524.542619][ T10] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 524.554363][ T10] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 524.567690][ T10] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 524.582741][ T10] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 524.697240][ T10] usb 3-1: config 0 descriptor?? [ 524.837032][ T8123] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.2'. [ 525.010859][ T5079] Bluetooth: hci1: command tx timeout [ 525.038803][ T10] usb 3-1: can't set config #0, error -71 [ 525.055554][ T10] usb 3-1: USB disconnect, device number 17 [ 526.336440][ T1230] ieee802154 phy0 wpan0: encryption failed: -22 [ 526.343887][ T1230] ieee802154 phy1 wpan1: encryption failed: -22 [ 526.481032][ T8133] loop3: detected capacity change from 0 to 4096 [ 526.652356][ T8133] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512). [ 528.244265][ T8050] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 528.342460][ T8050] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 528.482991][ T8050] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 528.616240][ T8050] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 529.906154][ T8149] loop0: detected capacity change from 0 to 512 [ 530.033883][ T8133] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 530.086637][ T8133] ntfs3: loop3: Failed to read $AttrDef (-4). [ 530.127318][ T8151] sctp: [Deprecated]: syz-executor.4 (pid 8151) Use of struct sctp_assoc_value in delayed_ack socket option. [ 530.127318][ T8151] Use struct sctp_sack_info instead [ 530.178459][ T8149] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 530.192000][ T8149] ext4 filesystem being mounted at /root/syzkaller-testdir3576421030/syzkaller.S4MhVq/128/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 530.381185][ T8050] 8021q: adding VLAN 0 to HW filter on device bond0 [ 530.663186][ T8050] 8021q: adding VLAN 0 to HW filter on device team0 [ 530.765917][ T10] bridge0: port 1(bridge_slave_0) entered blocking state [ 530.773721][ T10] bridge0: port 1(bridge_slave_0) entered forwarding state [ 530.938029][ T10] bridge0: port 2(bridge_slave_1) entered blocking state [ 530.945826][ T10] bridge0: port 2(bridge_slave_1) entered forwarding state [ 531.272316][ T29] audit: type=1804 audit(1717779293.523:77): pid=8162 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3576421030/syzkaller.S4MhVq/128/bus/bus" dev="loop0" ino=18 res=1 errno=0 [ 532.680416][ T5497] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 532.820426][ T8170] loop3: detected capacity change from 0 to 512 [ 533.147071][ T8170] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.3: corrupted in-inode xattr: invalid ea_ino [ 533.252311][ T8170] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 533.323832][ T8170] EXT4-fs (loop3): mounted filesystem 00000007-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 534.177762][ T8188] loop0: detected capacity change from 0 to 512 [ 535.983122][ T8188] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 537.613182][ T8188] EXT4-fs: error -4 creating inode table initialization thread [ 537.621720][ T8188] EXT4-fs (loop0): mount failed [ 538.168525][ T6510] EXT4-fs (loop3): unmounting filesystem 00000007-0000-0000-0000-000000000000. [ 538.537614][ T8050] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 539.066983][ T8050] veth0_vlan: entered promiscuous mode [ 539.138598][ T8050] veth1_vlan: entered promiscuous mode [ 539.371668][ T8050] veth0_macvtap: entered promiscuous mode [ 539.441250][ T8050] veth1_macvtap: entered promiscuous mode [ 539.638842][ T8050] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 539.649658][ T8050] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 539.660050][ T8050] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 539.670833][ T8050] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 539.680955][ T8050] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 539.691879][ T8050] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 539.701976][ T8050] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 539.712749][ T8050] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 539.727712][ T8050] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 539.818533][ T8228] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 540.034916][ T8050] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 540.053290][ T8050] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 540.064873][ T8050] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 540.075567][ T8050] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 540.085663][ T8050] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 540.096287][ T8050] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 540.106306][ T8050] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 540.116918][ T8050] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 540.131281][ T8050] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 540.374716][ T8226] loop3: detected capacity change from 0 to 512 [ 540.433828][ T8050] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 540.443394][ T8050] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 540.457880][ T8050] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 540.468947][ T8050] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 540.665628][ T8226] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.3: corrupted in-inode xattr: invalid ea_ino [ 540.781435][ T8226] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 540.846797][ T8226] EXT4-fs (loop3): mounted filesystem 00000007-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 541.450937][ T5126] usb 5-1: new full-speed USB device number 14 using dummy_hcd [ 541.761490][ T6510] EXT4-fs (loop3): unmounting filesystem 00000007-0000-0000-0000-000000000000. [ 541.900920][ T5126] usb 5-1: config 0 has an invalid interface number: 5 but max is 1 [ 541.909314][ T5126] usb 5-1: config 0 has an invalid interface number: 18 but max is 1 [ 541.917953][ T5126] usb 5-1: config 0 has no interface number 0 [ 541.924960][ T5126] usb 5-1: config 0 has no interface number 1 [ 541.931425][ T5126] usb 5-1: config 0 interface 5 has no altsetting 0 [ 542.160279][ T5126] usb 5-1: New USB device found, idVendor=05d1, idProduct=9008, bcdDevice=1b.c2 [ 542.169647][ T5126] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 542.178015][ T5126] usb 5-1: Product: syz [ 542.183689][ T5126] usb 5-1: Manufacturer: syz [ 542.195124][ T5126] usb 5-1: SerialNumber: syz [ 542.262338][ T5126] usb 5-1: config 0 descriptor?? [ 542.316722][ T5126] ftdi_sio 5-1:0.5: FTDI USB Serial Device converter detected [ 542.326343][ T5126] ftdi_sio ttyUSB0: unknown device type: 0x1bc2 [ 542.339434][ T5126] ftdi_sio 5-1:0.18: FTDI USB Serial Device converter detected [ 542.348828][ T5126] ftdi_sio ttyUSB1: unknown device type: 0x1bc2 [ 542.617604][ T10] usb 5-1: USB disconnect, device number 14 [ 542.626922][ T10] ftdi_sio 5-1:0.5: device disconnected [ 542.636391][ T10] ftdi_sio 5-1:0.18: device disconnected [ 544.989728][ T8286] loop0: detected capacity change from 0 to 512 [ 545.136252][ T8286] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.0: corrupted in-inode xattr: invalid ea_ino [ 545.165530][ T8286] EXT4-fs error (device loop0): ext4_orphan_get:1399: comm syz-executor.0: couldn't read orphan inode 15 (err -117) [ 545.195342][ T8286] EXT4-fs (loop0): mounted filesystem 00000007-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 545.945479][ T5497] EXT4-fs (loop0): unmounting filesystem 00000007-0000-0000-0000-000000000000. [ 546.491551][ T8314] 9pnet_fd: p9_fd_create_tcp (8314): problem connecting socket to 127.0.0.1 [ 546.569092][ T3106] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 546.578042][ T3106] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 546.601860][ T8316] loop4: detected capacity change from 0 to 132 [ 546.708555][ T4419] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 546.717352][ T4419] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 546.814818][ T8317] loop2: detected capacity change from 0 to 512 [ 546.864374][ T8317] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 547.011241][ T8317] EXT4-fs (loop2): 1 orphan inode deleted [ 547.017338][ T8317] EXT4-fs (loop2): 1 truncate cleaned up [ 547.023360][ T8317] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 547.735755][ T8322] loop0: detected capacity change from 0 to 2048 [ 548.005094][ T8317] syz-executor.2 (8317) used greatest stack depth: 5232 bytes left [ 549.592171][ T8291] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1216: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 549.652892][ T7164] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 549.674006][ T4419] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 549.801424][ T8322] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 549.981062][ T4419] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 550.146759][ T4419] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 550.282410][ T5497] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 550.350034][ T4419] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 550.672083][ T4419] bridge_slave_1: left allmulticast mode [ 550.677990][ T4419] bridge_slave_1: left promiscuous mode [ 550.685200][ T4419] bridge0: port 2(bridge_slave_1) entered disabled state [ 550.807105][ T4419] bridge_slave_0: left allmulticast mode [ 550.813527][ T4419] bridge_slave_0: left promiscuous mode [ 550.820212][ T4419] bridge0: port 1(bridge_slave_0) entered disabled state [ 554.805321][ T5087] Bluetooth: hci0: command 0x0406 tx timeout [ 554.907949][ T4419] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 555.041816][ T4419] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 555.115780][ T4419] bond0 (unregistering): Released all slaves [ 556.049411][ T8366] loop0: detected capacity change from 0 to 512 [ 556.154490][ T8366] ext4: Unknown parameter 'dont_measure' [ 556.369621][ T29] audit: type=1326 audit(1717779318.763:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8364 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f53a3a7cf69 code=0x0 [ 556.413440][ T4419] hsr_slave_0: left promiscuous mode [ 556.447772][ T4419] hsr_slave_1: left promiscuous mode [ 556.501150][ T4419] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 556.508872][ T4419] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 556.543252][ T4419] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 556.551106][ T4419] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 556.622032][ T4419] veth1_macvtap: left promiscuous mode [ 556.629011][ T4419] veth0_macvtap: left promiscuous mode [ 556.635064][ T4419] veth1_vlan: left promiscuous mode [ 556.640712][ T4419] veth0_vlan: left promiscuous mode [ 556.818068][ T5087] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 556.960539][ T5087] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 556.972220][ T5087] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 556.995981][ T5087] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 557.116235][ T5087] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 557.125797][ T5087] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 557.743966][ T4419] team0 (unregistering): Port device team_slave_1 removed [ 557.850133][ T4419] team0 (unregistering): Port device team_slave_0 removed [ 558.203425][ T8370] netlink: 9 bytes leftover after parsing attributes in process `syz-executor.0'. [ 558.266906][ T8370] gretap0: entered promiscuous mode [ 558.277666][ T8370] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 558.334153][ T8371] netlink: 5 bytes leftover after parsing attributes in process `syz-executor.0'. [ 558.334630][ T8371] 0ªX¹¦D: renamed from gretap0 [ 558.351185][ T8371] 0ªX¹¦D: left promiscuous mode [ 558.351286][ T8371] 0ªX¹¦D: entered allmulticast mode [ 558.359539][ T8371] A link change request failed with some changes committed already. Interface 30ªX¹¦D may have been left with an inconsistent configuration, please check. [ 559.179981][ T5079] Bluetooth: hci1: command tx timeout [ 560.720571][ T8374] chnl_net:caif_netlink_parms(): no params data found [ 560.900078][ T4537] usb 5-1: new high-speed USB device number 15 using dummy_hcd [ 561.250233][ T5079] Bluetooth: hci1: command tx timeout [ 561.320613][ T4537] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 561.332211][ T4537] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 561.347273][ T4537] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 561.357655][ T4537] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 561.396128][ T8392] loop0: detected capacity change from 0 to 4096 [ 561.471544][ T4537] usb 5-1: config 0 descriptor?? [ 561.658439][ T8392] NILFS (loop0): invalid segment: Checksum error in segment payload [ 561.667022][ T8392] NILFS (loop0): trying rollback from an earlier position [ 561.807704][ T8392] NILFS (loop0): recovery complete [ 561.820899][ T8404] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 561.974399][ T29] audit: type=1326 audit(1717779324.373:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8405 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2f0e7cf69 code=0x7ffc0000 [ 561.997839][ T29] audit: type=1326 audit(1717779324.373:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8405 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=297 compat=0 ip=0x7fb2f0e7cf69 code=0x7ffc0000 [ 562.021273][ T29] audit: type=1326 audit(1717779324.383:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8405 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2f0e7cf69 code=0x7ffc0000 [ 562.044456][ T29] audit: type=1326 audit(1717779324.383:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8405 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2f0e7cf69 code=0x7ffc0000 [ 562.173069][ T4537] usb 5-1: language id specifier not provided by device, defaulting to English [ 562.220811][ T8374] bridge0: port 1(bridge_slave_0) entered blocking state [ 562.228252][ T8374] bridge0: port 1(bridge_slave_0) entered disabled state [ 562.237043][ T8374] bridge_slave_0: entered allmulticast mode [ 562.245062][ T8374] bridge_slave_0: entered promiscuous mode [ 562.299530][ T8374] bridge0: port 2(bridge_slave_1) entered blocking state [ 562.309721][ T8374] bridge0: port 2(bridge_slave_1) entered disabled state [ 562.317548][ T8374] bridge_slave_1: entered allmulticast mode [ 562.325828][ T8374] bridge_slave_1: entered promiscuous mode [ 562.527634][ T8374] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 562.621929][ T4537] uclogic 0003:256C:006D.0006: failed retrieving Huion firmware version: -71 [ 562.631302][ T4537] uclogic 0003:256C:006D.0006: failed probing parameters: -71 [ 562.639290][ T4537] uclogic 0003:256C:006D.0006: probe with driver uclogic failed with error -71 [ 562.665600][ T8374] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 562.775642][ T4537] usb 5-1: USB disconnect, device number 15 [ 562.897080][ T8374] team0: Port device team_slave_0 added [ 562.925953][ T8374] team0: Port device team_slave_1 added [ 563.248067][ T8374] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 563.255864][ T8374] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 563.288825][ T8374] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 563.335047][ T5079] Bluetooth: hci1: command tx timeout [ 563.393758][ T8374] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 563.401098][ T8374] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 563.427439][ T8374] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 563.791430][ T8374] hsr_slave_0: entered promiscuous mode [ 563.856269][ T8374] hsr_slave_1: entered promiscuous mode [ 563.891200][ T8374] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 563.900169][ T8374] Cannot create hsr debugfs directory [ 563.979256][ T8418] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'. [ 564.785240][ T8423] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'. [ 565.413158][ T5079] Bluetooth: hci1: command tx timeout [ 565.835698][ T8374] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 565.936697][ T8374] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 566.012105][ T8374] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 566.071360][ T8374] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 567.445832][ T8374] 8021q: adding VLAN 0 to HW filter on device bond0 [ 567.465912][ T29] audit: type=1800 audit(1717779329.853:83): pid=8427 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.4" name="memory.events" dev="sda1" ino=1959 res=0 errno=0 [ 567.594590][ T8374] 8021q: adding VLAN 0 to HW filter on device team0 [ 567.663725][ T5118] bridge0: port 1(bridge_slave_0) entered blocking state [ 567.671516][ T5118] bridge0: port 1(bridge_slave_0) entered forwarding state [ 567.789306][ T5118] bridge0: port 2(bridge_slave_1) entered blocking state [ 567.797108][ T5118] bridge0: port 2(bridge_slave_1) entered forwarding state [ 568.087825][ T8374] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 569.039935][ T29] audit: type=1800 audit(1717779331.253:84): pid=8442 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.2" name="memory.events" dev="sda1" ino=1957 res=0 errno=0 [ 569.209107][ T8456] delete_channel: no stack [ 569.728694][ T8374] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 570.223201][ T8374] veth0_vlan: entered promiscuous mode [ 570.345170][ T8374] veth1_vlan: entered promiscuous mode [ 570.582201][ T8488] loop0: detected capacity change from 0 to 512 [ 570.729620][ T8488] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 570.735450][ T8374] veth0_macvtap: entered promiscuous mode [ 570.770874][ T8488] EXT4-fs (loop0): 1 truncate cleaned up [ 570.776780][ T8488] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 570.870894][ T8374] veth1_macvtap: entered promiscuous mode [ 570.881965][ T8488] EXT4-fs error (device loop0): ext4_map_blocks:580: inode #2: block 4: comm syz-executor.0: lblock 0 mapped to illegal pblock 4 (length 1) [ 570.951148][ T8488] EXT4-fs (loop0): Remounting filesystem read-only [ 571.142601][ T8374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 571.153448][ T8374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 571.165931][ T8374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 571.178012][ T8374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 571.188160][ T8374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 571.198858][ T8374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 571.208939][ T8374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 571.219748][ T8374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 571.234807][ T8374] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 571.292047][ T5497] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 571.417893][ T8374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 571.429399][ T8374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 571.439617][ T8374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 571.450695][ T8374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 571.460848][ T8374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 571.471653][ T8374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 571.488791][ T8374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 571.504942][ T8374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 571.520029][ T8374] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 571.593780][ T8374] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 571.603038][ T8374] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 571.612156][ T8374] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 571.621347][ T8374] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 572.530498][ T8] usb 3-1: new high-speed USB device number 18 using dummy_hcd [ 572.677899][ T8503] delete_channel: no stack [ 572.828906][ T8] usb 3-1: Using ep0 maxpacket: 8 [ 572.960760][ T8] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 572.972185][ T8] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 572.982489][ T8] usb 3-1: New USB device found, idVendor=17ef, idProduct=6067, bcdDevice= 0.00 [ 572.992045][ T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 573.044489][ T8] usb 3-1: config 0 descriptor?? [ 573.093812][ T8518] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 573.197423][ T8521] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'. [ 573.556930][ T8] lenovo 0003:17EF:6067.0007: unknown main item tag 0x0 [ 573.564448][ T8] lenovo 0003:17EF:6067.0007: unknown main item tag 0x0 [ 573.575830][ T8] lenovo 0003:17EF:6067.0007: unknown main item tag 0x0 [ 573.586891][ T8] lenovo 0003:17EF:6067.0007: unknown main item tag 0x0 [ 573.594362][ T8] lenovo 0003:17EF:6067.0007: unknown main item tag 0x0 [ 573.601719][ T8] lenovo 0003:17EF:6067.0007: unknown main item tag 0x0 [ 573.608934][ T8] lenovo 0003:17EF:6067.0007: unknown main item tag 0x0 [ 573.702066][ T8] lenovo 0003:17EF:6067.0007: hidraw0: USB HID v0.00 Device [HID 17ef:6067] on usb-dummy_hcd.2-1/input0 [ 573.835227][ T5118] usb 3-1: USB disconnect, device number 18 [ 574.908397][ T8546] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 574.919457][ T8546] netlink: 'syz-executor.4': attribute type 15 has an invalid length. [ 574.943986][ T8546] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 574.955338][ T8546] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 574.965901][ T8546] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 574.975398][ T8546] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 574.984645][ T8546] vxlan0: entered promiscuous mode [ 576.301459][ T8555] delete_channel: no stack [ 576.767737][ T8575] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 577.543169][ T8582] loop3: detected capacity change from 0 to 2048 [ 577.789142][ T3488] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 577.797508][ T3488] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 577.861306][ T8582] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 577.957584][ T3488] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 577.965905][ T3488] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 578.230595][ T29] audit: type=1326 audit(1717779340.663:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8593 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53a3a7cf69 code=0x7ffc0000 [ 578.231772][ T4419] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1216: group 0, [ 578.256389][ T29] audit: type=1326 audit(1717779340.663:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8593 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53a3a7cf69 code=0x7ffc0000 [ 578.256622][ T29] audit: type=1326 audit(1717779340.663:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8593 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f53a3a7cf69 code=0x7ffc0000 [ 578.256841][ T29] audit: type=1326 audit(1717779340.663:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8593 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53a3a7cf69 code=0x7ffc0000 [ 578.351593][ T4419] block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 578.396926][ T4419] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 33 with error 28 [ 578.409651][ T4419] EXT4-fs (loop3): This should not happen!! Data will be lost [ 578.409651][ T4419] [ 578.419599][ T4419] EXT4-fs (loop3): Total free blocks count 0 [ 578.425908][ T4419] EXT4-fs (loop3): Free/Dirty block details [ 578.432379][ T4419] EXT4-fs (loop3): free_blocks=2415919104 [ 578.445635][ T4419] EXT4-fs (loop3): dirty_blocks=48 [ 578.453792][ T4419] EXT4-fs (loop3): Block reservation details [ 578.460201][ T4419] EXT4-fs (loop3): i_reserved_data_blocks=3 [ 578.552239][ T6510] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 578.865132][ T3488] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 579.005722][ T3488] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 579.146984][ T3488] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 579.324998][ T3488] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 579.688968][ T3488] bridge_slave_1: left allmulticast mode [ 579.695119][ T3488] bridge_slave_1: left promiscuous mode [ 579.701930][ T3488] bridge0: port 2(bridge_slave_1) entered disabled state [ 579.763819][ T3488] bridge_slave_0: left allmulticast mode [ 579.772253][ T3488] bridge_slave_0: left promiscuous mode [ 579.778523][ T3488] bridge0: port 1(bridge_slave_0) entered disabled state [ 580.267795][ T3488] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 580.321011][ T8611] delete_channel: no stack [ 580.423880][ T3488] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 580.493191][ T3488] bond0 (unregistering): Released all slaves [ 581.657267][ T8633] loop0: detected capacity change from 0 to 512 [ 581.876511][ T8633] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 581.890311][ T8633] ext4 filesystem being mounted at /root/syzkaller-testdir3576421030/syzkaller.S4MhVq/166/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 581.991549][ T3488] hsr_slave_0: left promiscuous mode [ 582.025026][ T3488] hsr_slave_1: left promiscuous mode [ 582.049301][ T8633] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 582.083789][ T3488] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 582.091883][ T3488] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 582.140321][ T3488] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 582.147987][ T3488] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 582.163082][ T5087] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 582.188252][ T5087] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 582.200839][ T5087] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 582.224725][ T5087] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 582.250993][ T3488] veth1_macvtap: left promiscuous mode [ 582.256725][ T3488] veth0_macvtap: left promiscuous mode [ 582.262714][ T3488] veth1_vlan: left promiscuous mode [ 582.268257][ T3488] veth0_vlan: left promiscuous mode [ 582.308309][ T5087] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 582.410989][ T5087] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 582.664254][ T5497] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 583.261697][ T3488] team0 (unregistering): Port device team_slave_1 removed [ 583.358656][ T3488] team0 (unregistering): Port device team_slave_0 removed [ 584.432453][ T8667] syz-executor.2[8667] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 584.434134][ T8667] syz-executor.2[8667] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 584.452589][ T5087] Bluetooth: hci1: command tx timeout [ 584.503460][ T8656] delete_channel: no stack [ 584.558435][ T8667] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'. [ 584.568189][ T8667] tipc: Started in network mode [ 584.573414][ T8667] tipc: Node identity 6, cluster identity 4711 [ 584.579765][ T8667] tipc: Node number set to 6 [ 584.921234][ T8645] chnl_net:caif_netlink_parms(): no params data found [ 585.278710][ T8680] loop2: detected capacity change from 0 to 512 [ 585.412730][ T8680] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 585.493573][ T8680] EXT4-fs (loop2): 1 truncate cleaned up [ 585.500162][ T8680] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 585.538297][ T8680] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 585.558595][ T8680] EXT4-fs warning (device loop2): ext4_xattr_set_entry:1793: inode #15: comm syz-executor.2: unable to update i_inline_off [ 585.561181][ T8685] overlay: ./file0 is not a directory [ 585.576145][ T8680] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2847: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 586.077150][ T8687] EXT4-fs error (device loop2): ext4_xattr_ibody_get:653: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 586.169210][ T8687] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.2: corrupted in-inode xattr: overlapping e_value [ 586.334573][ T8680] syz-executor.2 (8680) used greatest stack depth: 4768 bytes left [ 586.539573][ T5087] Bluetooth: hci1: command tx timeout [ 586.722388][ T7164] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 587.260008][ T8645] bridge0: port 1(bridge_slave_0) entered blocking state [ 587.267708][ T8645] bridge0: port 1(bridge_slave_0) entered disabled state [ 587.275480][ T8645] bridge_slave_0: entered allmulticast mode [ 587.284434][ T8645] bridge_slave_0: entered promiscuous mode [ 587.362764][ T8645] bridge0: port 2(bridge_slave_1) entered blocking state [ 587.370659][ T8645] bridge0: port 2(bridge_slave_1) entered disabled state [ 587.378359][ T8645] bridge_slave_1: entered allmulticast mode [ 587.387404][ T8645] bridge_slave_1: entered promiscuous mode [ 587.689085][ T8706] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.0'. [ 587.820443][ T1230] ieee802154 phy0 wpan0: encryption failed: -22 [ 587.827099][ T1230] ieee802154 phy1 wpan1: encryption failed: -22 [ 588.153252][ T8645] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 588.395095][ T8645] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 588.618245][ T5087] Bluetooth: hci1: command tx timeout [ 588.865703][ T8645] team0: Port device team_slave_0 added [ 589.001563][ T8645] team0: Port device team_slave_1 added [ 589.557498][ T8645] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 589.564800][ T8645] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 589.591059][ T8645] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 589.896820][ T8645] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 589.904566][ T8645] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 589.935015][ T8645] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 589.971862][ T8712] delete_channel: no stack [ 590.455692][ T8645] hsr_slave_0: entered promiscuous mode [ 590.514236][ T8645] hsr_slave_1: entered promiscuous mode [ 590.573010][ T8645] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 590.580974][ T8645] Cannot create hsr debugfs directory [ 590.691144][ T5087] Bluetooth: hci1: command tx timeout [ 590.708007][ T8730] loop0: detected capacity change from 0 to 1024 [ 590.847618][ T8730] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 590.860681][ T8730] ext4 filesystem being mounted at /root/syzkaller-testdir3576421030/syzkaller.S4MhVq/173/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 591.274995][ T29] audit: type=1804 audit(1717779353.633:89): pid=8730 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3576421030/syzkaller.S4MhVq/173/file1/file1" dev="loop0" ino=15 res=1 errno=0 [ 591.673189][ T5497] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 592.113470][ T8645] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 592.276710][ T8645] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 592.600883][ T8645] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 592.927240][ T8645] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 594.205934][ T29] audit: type=1800 audit(1717779356.623:90): pid=8755 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1947 res=0 errno=0 [ 594.368815][ T8760] 9pnet_fd: Insufficient options for proto=fd [ 594.523871][ T8645] 8021q: adding VLAN 0 to HW filter on device bond0 [ 594.601738][ T8645] 8021q: adding VLAN 0 to HW filter on device team0 [ 594.682369][ T787] bridge0: port 1(bridge_slave_0) entered blocking state [ 594.690263][ T787] bridge0: port 1(bridge_slave_0) entered forwarding state [ 594.795446][ T787] bridge0: port 2(bridge_slave_1) entered blocking state [ 594.803475][ T787] bridge0: port 2(bridge_slave_1) entered forwarding state [ 595.008703][ T8645] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 595.175763][ T29] audit: type=1800 audit(1717779357.603:91): pid=8756 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.3" name="bus" dev="sda1" ino=1947 res=0 errno=0 [ 595.964266][ T29] audit: type=1326 audit(1717779358.393:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8773 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f604107cf69 code=0x0 [ 596.171861][ T8780] loop3: detected capacity change from 0 to 512 [ 596.203055][ T8780] EXT4-fs: Ignoring removed mblk_io_submit option [ 596.231513][ T8780] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 596.368453][ T8780] EXT4-fs (loop3): 1 truncate cleaned up [ 596.375903][ T8780] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 596.449549][ T8788] loop2: detected capacity change from 0 to 164 [ 596.703601][ T8645] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 596.820992][ T5126] usb 1-1: new high-speed USB device number 20 using dummy_hcd [ 596.985996][ T787] usb 5-1: new high-speed USB device number 16 using dummy_hcd [ 597.060600][ T5126] usb 1-1: Using ep0 maxpacket: 16 [ 597.093248][ T8645] veth0_vlan: entered promiscuous mode [ 597.170565][ T8645] veth1_vlan: entered promiscuous mode [ 597.216074][ T5126] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 8 [ 597.372458][ T787] usb 5-1: config 220 has too many interfaces: 184, using maximum allowed: 32 [ 597.383009][ T787] usb 5-1: config 220 has 1 interface, different from the descriptor's value: 184 [ 597.393076][ T787] usb 5-1: New USB device found, idVendor=0c45, idProduct=8008, bcdDevice=e1.85 [ 597.402509][ T787] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 597.424481][ T6510] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 597.460517][ T5126] usb 1-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00 [ 597.470431][ T5126] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 597.478674][ T5126] usb 1-1: Product: syz [ 597.483516][ T5126] usb 1-1: Manufacturer: syz [ 597.488338][ T5126] usb 1-1: SerialNumber: syz [ 597.524316][ T8645] veth0_macvtap: entered promiscuous mode [ 597.553208][ T5126] usb 1-1: config 0 descriptor?? [ 597.578137][ T787] gspca_main: sn9c2028-2.14.0 probing 0c45:8008 [ 597.615363][ T8645] veth1_macvtap: entered promiscuous mode [ 597.626276][ T5126] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected [ 597.638152][ T5126] usb 1-1: Detected FT232R [ 597.776674][ T8645] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 597.787693][ T8645] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 597.798854][ T8645] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 597.809999][ T8645] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 597.820697][ T8645] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 597.831428][ T8645] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 597.841539][ T8645] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 597.852271][ T8645] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 597.867010][ T8645] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 597.907129][ T787] gspca_sn9c2028: read1 error -32 [ 597.954176][ T787] gspca_sn9c2028: read1 error -71 [ 597.960848][ T8800] loop3: detected capacity change from 0 to 256 [ 597.983887][ T787] gspca_sn9c2028: read1 error -71 [ 597.989517][ T787] sn9c2028 5-1:220.0: probe with driver sn9c2028 failed with error -71 [ 598.035839][ T787] usb 5-1: USB disconnect, device number 16 [ 598.067640][ T8645] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 598.079311][ T8645] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 598.090831][ T8645] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 598.108613][ T8645] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 598.120672][ T8645] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 598.132502][ T8645] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 598.142599][ T8645] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 598.153430][ T8645] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 598.168142][ T8645] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 598.182858][ T5126] ftdi_sio ttyUSB0: Unable to write latency timer: -71 [ 598.211842][ T5126] ftdi_sio 1-1:0.0: GPIO initialisation failed: -71 [ 598.226612][ T5126] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 598.239659][ T5126] usb 1-1: USB disconnect, device number 20 [ 598.264680][ T5126] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 598.275587][ T5126] ftdi_sio 1-1:0.0: device disconnected [ 598.280697][ T8800] FAT-fs (loop3): IO charset cpush not found [ 598.344030][ T8645] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 598.353684][ T8645] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 598.362766][ T8645] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 598.371981][ T8645] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 598.412240][ T8800] smb3: Unexpected value for 'acl' [ 598.555529][ T8800] loop3: detected capacity change from 0 to 64 [ 600.768846][ T29] audit: type=1326 audit(1717779363.183:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8834 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f604107cf69 code=0x0 [ 600.879640][ T8843] loop3: detected capacity change from 0 to 512 [ 600.954937][ T8843] EXT4-fs: Ignoring removed mblk_io_submit option [ 601.009668][ T8843] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 601.118321][ T8843] EXT4-fs (loop3): 1 truncate cleaned up [ 601.127073][ T8843] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 601.830917][ T787] usb 1-1: new high-speed USB device number 21 using dummy_hcd [ 602.340652][ T787] usb 1-1: config 220 has too many interfaces: 184, using maximum allowed: 32 [ 602.349871][ T787] usb 1-1: config 220 has 1 interface, different from the descriptor's value: 184 [ 602.359417][ T787] usb 1-1: New USB device found, idVendor=0c45, idProduct=8008, bcdDevice=e1.85 [ 602.368999][ T787] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 602.448990][ T6510] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 602.524613][ T787] gspca_main: sn9c2028-2.14.0 probing 0c45:8008 [ 602.755058][ T787] gspca_sn9c2028: read1 error -32 [ 602.804757][ T787] gspca_sn9c2028: read1 error -71 [ 602.855719][ T787] gspca_sn9c2028: read1 error -71 [ 602.861884][ T787] sn9c2028 1-1:220.0: probe with driver sn9c2028 failed with error -71 [ 602.933618][ T787] usb 1-1: USB disconnect, device number 21 [ 602.962811][ T8865] loop3: detected capacity change from 0 to 256 [ 603.433756][ T3819] nci: nci_add_new_protocol: the target found does not have the desired protocol [ 603.441773][ T8865] FAT-fs (loop3): IO charset cpush not found [ 603.443068][ T3819] ===================================================== [ 603.443207][ T3819] BUG: KMSAN: uninit-value in nci_ntf_packet+0x2ac8/0x39c0 [ 603.463712][ T3819] nci_ntf_packet+0x2ac8/0x39c0 [ 603.468749][ T3819] nci_rx_work+0x288/0x5d0 [ 603.473400][ T3819] process_scheduled_works+0xa81/0x1bd0 [ 603.479135][ T3819] worker_thread+0xea5/0x1560 [ 603.484145][ T3819] kthread+0x3e2/0x540 [ 603.488416][ T3819] ret_from_fork+0x6d/0x90 [ 603.493104][ T3819] ret_from_fork_asm+0x1a/0x30 [ 603.498064][ T3819] [ 603.500534][ T3819] Uninit was created at: [ 603.504986][ T3819] kmem_cache_alloc_node+0x622/0xc90 [ 603.510537][ T3819] kmalloc_reserve+0x13d/0x4a0 [ 603.515497][ T3819] __alloc_skb+0x35b/0x7a0 [ 603.520145][ T3819] virtual_ncidev_write+0x6d/0x290 [ 603.526360][ T3819] vfs_write+0x497/0x14d0 2024/06/07 16:56:05 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF [ 603.531206][ T3819] ksys_write+0x20f/0x4c0 [ 603.535741][ T3819] __x64_sys_write+0x93/0xe0 [ 603.541400][ T3819] x64_sys_call+0x3062/0x3b50 [ 603.546277][ T3819] do_syscall_64+0xcf/0x1e0 [ 603.551056][ T3819] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 603.557152][ T3819] [ 603.559561][ T3819] CPU: 1 PID: 3819 Comm: kworker/u8:23 Tainted: G W 6.9.0-syzkaller-02707-g614da38e2f7a #0 [ 603.571997][ T3819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 603.583205][ T3819] Workqueue: nfc2_nci_rx_wq nci_rx_work [ 603.588933][ T3819] ===================================================== [ 603.596638][ T3819] Disabling lock debugging due to kernel taint [ 603.602981][ T3819] Kernel panic - not syncing: kmsan.panic set ... [ 603.609507][ T3819] CPU: 1 PID: 3819 Comm: kworker/u8:23 Tainted: G B W 6.9.0-syzkaller-02707-g614da38e2f7a #0 [ 603.621041][ T3819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 603.631233][ T3819] Workqueue: nfc2_nci_rx_wq nci_rx_work [ 603.636960][ T3819] Call Trace: [ 603.640337][ T3819] [ 603.643368][ T3819] dump_stack_lvl+0x216/0x2d0 [ 603.648241][ T3819] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 603.654234][ T3819] dump_stack+0x1e/0x30 [ 603.658573][ T3819] panic+0x4e2/0xcd0 [ 603.662647][ T3819] ? kmsan_get_metadata+0xf1/0x1d0 [ 603.667936][ T3819] kmsan_report+0x2d5/0x2e0 [ 603.672602][ T3819] ? __msan_warning+0x95/0x120 [ 603.677512][ T3819] ? nci_ntf_packet+0x2ac8/0x39c0 [ 603.682704][ T3819] ? nci_rx_work+0x288/0x5d0 [ 603.687441][ T3819] ? process_scheduled_works+0xa81/0x1bd0 [ 603.693332][ T3819] ? worker_thread+0xea5/0x1560 [ 603.698357][ T3819] ? kthread+0x3e2/0x540 [ 603.702776][ T3819] ? ret_from_fork+0x6d/0x90 [ 603.707519][ T3819] ? ret_from_fork_asm+0x1a/0x30 [ 603.712654][ T3819] ? vprintk_default+0x3e/0x50 [ 603.717620][ T3819] ? vprintk+0xee/0xf0 [ 603.721850][ T3819] ? _printk+0x157/0x190 [ 603.726278][ T3819] ? kmsan_get_metadata+0x146/0x1d0 [ 603.731647][ T3819] ? nci_add_new_protocol+0x159/0x870 [ 603.737204][ T3819] ? nci_add_new_protocol+0x51/0x870 [ 603.742674][ T3819] ? nci_add_new_protocol+0x5a0/0x870 [ 603.748229][ T3819] __msan_warning+0x95/0x120 [ 603.752965][ T3819] nci_ntf_packet+0x2ac8/0x39c0 [ 603.757998][ T3819] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 603.764299][ T3819] nci_rx_work+0x288/0x5d0 [ 603.768905][ T3819] ? __pfx_nci_rx_work+0x10/0x10 [ 603.774017][ T3819] process_scheduled_works+0xa81/0x1bd0 [ 603.779777][ T3819] worker_thread+0xea5/0x1560 [ 603.784663][ T3819] kthread+0x3e2/0x540 [ 603.788904][ T3819] ? __pfx_worker_thread+0x10/0x10 [ 603.794195][ T3819] ? __pfx_kthread+0x10/0x10 [ 603.798966][ T3819] ret_from_fork+0x6d/0x90 [ 603.803540][ T3819] ? __pfx_kthread+0x10/0x10 [ 603.808312][ T3819] ret_from_fork_asm+0x1a/0x30 [ 603.813275][ T3819] [ 603.816600][ T3819] Kernel Offset: disabled [ 603.820980][ T3819] Rebooting in 86400 seconds..